SOC Analyst (L2 or L3)

As a SOC Analyst with 8-10 years of experience, you will play a crucial role in ensuring the security of the organization by performing the following key responsibilities: - Act as an escalation point for high and critical severity security incidents, conducting thorough investigations to determine potential impact and extent of compromise. - Verify and authenticate events, alerts, and incidents reported by L1 analysts. - Analyze attack patterns, Tools, Techniques and Procedures (TTPs) to identify methods of attacks and attack life cycle. - Define, plan, implement, maintain, and upgrade security measures, policies, and controls. - Conduct in-depth investigation and correlation, working towards mitigation and closure of critical incidents. - Develop and implement threat detection content, rules, and use cases for deployment in the SIEM platform. - Collaborate with cross-functional teams for end-to-end management of security incident lifecycle. - Conduct investigations to identify true positives from false positives, prioritize incidents, and recommend appropriate actions. - Ensure process compliance through regular reviews and updates of existing SOPs, processes, standards, and guidelines. - Perform advanced threat correlation between multiple security event sources. Qualifications required for this role include: - Minimum 8 years of experience in a large-scale IT environment with a focus on Cyber/Information Security. - Strong knowledge of Network security, Digital forensics, malware assessment, and Threat Hunting. - Hands-on experience with leading analytical platforms like Splunk, Qradar, Hunters, SumoLogic, Sentinel. - Knowledge of security technologies such as Email Security Gateway, SOAR, IPS/IDS, Proxy, EDR, DLP, CASB, PAM etc. - Deep understanding of MITRE ATT&CK Framework. - Customer-facing with good report-writing skills and strong communication skills. - Ability to provide technical and service leadership to L1 analysts. - Knowledge of Security Best Practices and Concepts. - Strong analytical and problem-solving skills. - Ability to lead incident investigation and response activities. - Willingness to participate in on-call rotation for after-hours security incident escalations. - Good interpersonal skills, clear communication, attentive listening, and positive attitude. In addition to the above requirements, staying up to date with emerging security threats and being able to work in a shift schedule are essential for this role.,