SOC Analyst L2- Mumbai

Job Title: L2 SOC Analyst – LogRhythm SIEM
Location: Mumbai, India Employment Type: Full-Time | Onsite About the Role: We are looking for an experienced L2 SOC Analyst to strengthen our Security Operations Center in Mumbai. The ideal candidate will have 2 to 5 years of hands-on experience in security monitoring and incident analysis, particularly on LogRhythm SIEM. You will be responsible for in-depth analysis, incident investigation, escalation, and coordination with response teams. Key Responsibilities: • Monitor, analyze, and triage security alerts from LogRhythm SIEM and other security platforms • Investigate and validate security incidents with detailed analysis and impact assessment • Conduct threat hunting and advanced log correlation as per SOC playbooks • Respond to incidents as per defined escalation matrix and coordinate with internal/external teams • Perform root cause analysis, recommend containment and mitigation actions • Provide guidance and mentorship to L1 SOC Analysts for escalated incidents • Prepare incident reports, analysis summaries, and dashboards for management • Monitor and report SIEM health, log source integration issues, and tuning requirements • Participate in continuous improvement of detection rules and SOC processes • Work in 24x7 rotational shifts with readiness for critical incident handling Required Skills & Competencies: • 2 to 5 years of SOC operations experience, with a focus on SIEM monitoring and incident handling • Strong hands-on experience with LogRhythm SIEM (Mandatory) • Good understanding of security threats, attack vectors, malware behavior, and common vulnerabilities • Practical experience in analyzing logs from firewalls, IDS/IPS, endpoint security, and cloud platforms • Familiarity with MITRE ATT&CK framework and threat intelligence usage • Strong analytical thinking, incident response capabilities, and problem-solving skills • Good communication skills for incident reporting and escalation Preferred Certifications: • LogRhythm Certified Deployment Engineer (LCDE) or LogRhythm Certified SOC Analyst (LCSA) - Optional • CompTIA Security+, CEH, CySA+, or equivalent security certifications • Any threat hunting or incident response certification is a plus Work Mode: Onsite – Mumbai SOC Facility Shift: 24x7 Rotational Shifts (Including Nights and Weekends)