Security Architect

 About The Role  

Project Role :Security Architect

Project Role Description :Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations.
Must have skills :Security Information and Event Management (SIEM)

Good to have skills :NA
Minimum 5 year(s) of experience is required

Educational Qualification :15 years full time education
Summary:As an L3 Cyber Security Analyst, you will act as the highest-level escalation point in the SOC for investigating and responding to complex security incidents. You will lead threat hunting initiatives, develop detection techniques, perform deep-dive forensic analysis, and work closely with engineering and threat intelligence teams to continuously improve the organization's security posture. This role requires strong technical skills, a strategic mindset, and the ability to lead and mentor junior analysts. Roles & Responsibilities:- Act as a subject matter expert (SME) for advanced threat detection, investigation, and response.- Triage and lead investigations of escalated security incidents from L1 and L2 analysts.- Create and fine-tune advanced detection rules, use cases and playbooks in SIEM (CrowdStrike Next-Gen), SOAR (CrowdStrike Falcon Fusion), EDR, and other tools.- Collaborate with Threat Intelligence teams to incorporate emerging threats into detection strategy.- Onboard logs into the SIEM (CrowdStrike Next-Gen SIEM) and SOAR (CrowdStrike Falcon Fusion) using data connectors, Falcon Log Collector, and other supported ingestion methods.- Validate log ingestion, ensure proper parsing, and verify that logs align with established schemas (e.g., CEF, LEEF, Syslog, JSON).- Customize and maintain parsers, log collectors, and transformation rules.- Provide incident response support, including containment, eradication, and recovery activities.- Write detailed incident reports and post-mortem documentation for key stakeholders.- Lead and mentor L1 and L2 analysts; provide training and knowledge transfer.- Ensure compliance with internal security policies and external regulatory requirements (e.g., GDPR, ISO 27001, NIST). Professional & Technical
Skills:

-
Must To Have Skills:

Proficiency in Security Information and Event Management (SIEM).- Strong understanding of cloud security principles and practices.- Experience with security frameworks such as NIST, ISO 27001, or CIS.- Familiarity with incident response and threat detection methodologies.- Knowledge of regulatory requirements related to cloud security.- Relevant certifications (e.g., CISSP, CISM, GCIA, GCIH, CEH, CompTIA CySA+).- Deep understanding of cyber threat tactics, techniques, and procedures (TTPs).- Hands-on experience with SIEM, SOAR, and EDR/XDR platforms.- Knowledge of forensic tools and methodologies (e.g., FTK, EnCase, Volatility).
Additional Information:- The candidate should have minimum 7+ years of experience in cybersecurity, with at least 5 years in an L2/L3 SOC role.- Bachelors degree in Cybersecurity, Information Security, Computer Science, or a related field; equivalent work experience considered.- This position is based at our Bengaluru office.- A 15 years full time education is required.- Strong analytical, decision-making, and problem-solving abilities.- Strong written and verbal communication skills.- Ability to work under pressure in a fast-paced environment.- Understanding of networking, cloud security, malware analysis, and threat intelligence. Qualification 15 years full time education