Security Operations Engineer(Night Shift)

Job Description

Responsibilities Monitor, detect, and respond to security incidents across on-premise and cloud environments. Analyze security alerts from security tools to identify potential threats. Conduct forensic investigations and deep-dive analysis of security events to identify trends, attack techniques, and areas for improvement. Conduct proactive threat hunting across endpoint, network, and cloud environments to identify sophisticated cyber threats. Analyze security logs, behavioral patterns, and anomalies to detect indicators of compromise (IOCs) and tactics, techniques, and procedures (TTPs). Investigate security incidents, perform forensic analysis, and provide actionable recommendations for mitigation and remediation. Develop and refine threat hunting methodologies, leveraging frameworks like MITRE ATT&CK and the Cyber Kill Chain. Automate threat detection and analysis using scripting languages such as Python, PowerShell, or Bash. Continuously monitor emerging threats, vulnerabilities, and attack trends to improve detection and response strategies. Qualifications Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field (or equivalent experience). 3+ years of experience in security operations, threat hunting, or a similar cybersecurity role. Experience working with log data for detection and response (Cloud, EDR, Network, and more) Experience developing and deploying effective detection rules (Yara,Sigma, SQL based rules,Network ,etc.) Strong understanding of network security monitoring, packet analysis, and log correlation. Deep understanding of advanced threat detection methodologies and threat intelligence. Proficiency in analyzing attacker tactics, techniques, and procedures (TTPs) based on frameworks like MITRE ATT&CK. Proficiency in scripting and automation for security operations (Python, PowerShell, or Bash). Understanding of endpoint security, identity management, cloud security, detection engineering, vulnerability management, incident response, and threat intelligence. Excellent communication skills and ability to work collaboratively in a fast-paced environment.