Soc Analyst

Experience Required:

About the Role

Senior Security Engineer

Key Responsibilities

• Security Monitoring & Threat Detection

• Lead SOC operations by monitoring security events from SIEM, EDR, and DLP platforms.
• Perform

  advanced correlation, threat hunting, and anomaly detection

  across diverse log sources.

• Incident Response & Forensics

• Investigate, contain, and eradicate security incidents (malware, phishing, insider threats, data exfiltration, privilege abuse, etc.).
• Conduct

  forensic analysis of endpoints, network traffic, and logs

  to determine root cause.
• Prepare detailed incident reports and recommend long-term preventive measures.

• Vulnerability Management & VAPT

• Oversee vulnerability scanning, penetration testing, and remediation activities.
• Collaborate with application, infrastructure, and DevOps teams to fix critical gaps.

• Security Automation & SOAR

• Implement playbooks and automation workflows for incident response and repetitive tasks.
• Optimize SOC efficiency and reduce

  MTTD/MTTR

  through SOAR integrations.

• Phishing Defense & Awareness

• Lead phishing detection and response, including

  simulation campaigns and user awareness programs

  .
• Analyze phishing attacks, block malicious domains, and improve email security posture.

• Compliance & Governance

• Ensure alignment with industry standards such as

  ISO 27001, NIST, PCI-DSS, GDPR

  .
• Participate in audits and provide technical evidence for compliance reporting.

• Collaboration & Mentorship

• Mentor junior SOC analysts, conduct knowledge-sharing sessions, and support L1/L2 escalations.
• Work with global teams to enhance monitoring coverage and improve incident response strategies.

Required Skills & Expertise

• 6+ years of experience

  in Security Operations / SOC Analyst roles.
• Hands-on expertise with

  multiple SIEM platforms

  (Azure Sentinel, IBM QRadar, Splunk).
• Proficiency in

  SOAR platforms

  and automation of incident response workflows.
• Strong working knowledge of:

• EDR solutions

  (CrowdStrike, Microsoft Defender, SentinelOne, Tanium, etc.)

• DLP technologies

  (Symantec, Forcepoint, Digital Guardian, etc.)

• IDS/IPS, firewalls, proxy solutions, forensic tools

• VAPT methodologies

  and tools (Nessus, BurpSuite, Netsparker, Kali Linux, Metasploit)
• Experience handling

  phishing campaigns, spear-phishing detection, and email security controls

  .
• Solid understanding of

  threat intelligence platforms

  , MITRE ATT&CK framework, and adversary tactics/techniques.
• Practical experience in

  security audits, compliance frameworks, and infrastructure/application hardening

  .
• Familiarity with

  scripting/automation

  (Python, PowerShell, Bash) for security tasks.

• Mandatory Certifications:

  At least one advanced cybersecurity certification (e.g., CISSP, CISM, GCIA, GCIH, OSCP, CEH Master). Multiple certifications preferred.
• Strong

  communication, documentation, and presentation skills

  for both technical and business stakeholders.

Who We’re Not Looking For

• Candidates unwilling to work

  onsite at our Hyderabad office

  .
• Professionals without

  hands-on SOC / incident response background

  .
• Individuals who lack

  multi-tool, cross-domain expertise

  in modern security operation