Jobs

Interviews
Job Alerts
Tools

Upskill and Grow with AI

Mock Interview Practice interviews in realistic simulations

Coding Practice Improve your coding skills with challenges

Certification Earn certifications to validate your skills

AI Learning Get trained with AI expert sessions

Career Path AI insights for smarter career decisions

AI Job Match Score AI-Powered Job Match Against Your Resume and Optimize Your Resume

Career Tools and Resources

Resume Builder Build Professional Resume with Ease

ATS Friendliness Check Check Resume Friendliness for Applicant Tracking Systems

Auto Apply Apply to hundreds of jobs on any platform effortlessly

Co-Pilot (Chrome Extension) Your AI Assistant for Seamless Browsing Efficiency

Interview Questions Streamline interviews with ready-to-use questions

Salaries Discover market-driven salary insights across skillsets and geographies

Companies Explore leading companies actively hiring talent
For Employers

Home
>
Jobs in noida
>
Sanganan IT Solutions Pvt Ltd.
>
SOC Content Detection Engineer

SOC Content Detection Engineer

Sanganan IT Solutions Pvt Ltd.

5 years

0 Lacs

noida uttar pradesh india

Posted:6 hours ago| Platform:

Apply

Skills Required

content support security reports cybersecurity development optimization governance sentinel logic sigma analysis design tuning analyze onboarding parsing normalization documentation audit deployment collaboration automation training writing siem data presentation communication

Work Mode

Remote

Job Type

Full Time

Job Description

WORK FROM NOIDA OFFICE, PLEASE DON'T APPLY IF YOU ARE LOOKING FOR HYBRID OR WORK FROM HOME

Department:

Job Type:

Reports To:

Job Overview:

SOC Content Detection Engineer

Key Responsibilities:

Detection Content Development

· Design and implement custom detection rules using KQL

MITRE ATT&CK

· Develop UEBA baselines and anomaly detection use cases.

Alert Tuning & Optimization

· Analyze alert performance and lead biweekly tuning cycles to reduce false positives.

· Collaborate with L2/L3 analysts to refine detection thresholds and suppression logic.

· Maintain a detection content repository with version control and change logs.

3. Telemetry & Visibility Engineering

· Conduct log source visibility reviews and telemetry gap analysis.

· Recommend log onboarding priorities based on threat coverage and customer environments.

· Validate parsing, normalization, and enrichment of ingested data.

4. Threat Intelligence Integration

· Operationalize threat intelligence into detection content and hunt scenarios.

· Integrate IOCs, TTPs, and threat actor indicators into rule logic and enrichment workflows.

5. Governance & Documentation

· Maintain detection playbooks, rule documentation, and tuning reports.

· Ensure detection content aligns with MSSP governance frameworks and audit requirements.

· Support change control processes for rule deployment and rollback.

6. Collaboration & Enablement

· Work closely with SOC analysts, onboarding consultants, and automation engineers.

· Provide training and guidance on detection logic, rule writing, and tuning best practices.

· Participate in incident post-mortems to identify detection gaps and improvement areas.

Required Skills & Qualifications:

1. Education

· Bachelor’s degree in Cybersecurity, Computer Science, or related field.

2. Certifications

· Required: Microsoft Certified: Security Operations Analyst Associate

· Preferred: MITRE ATT&CK Defender (MAD), GIAC (GCIA, GMON), CompTIA CySA+

3. Technical Skills

· Expert-level proficiency in KQL, Microsoft Sentinel, and Defender XDR.

· Experience with Sigma rule development, UEBA, and SIEM tuning.

· Strong understanding of log source telemetry, data normalization, and alert lifecycle.

· Familiarity with threat intelligence platforms and MITRE ATT&CK mapping.

4. Soft Skills

· Analytical mindset with strong attention to detail.

· Excellent documentation and presentation skills.

· Ability to collaborate across technical and operational teams.

· Fluent English communication skills (spoken and written).

Experience:

5+ years
in
SOC
or
cybersecurity operations
, with at least
2 years
in
detection engineering
or
SIEM content development
.
Prior experience in MSSP environments or multi-tenant SOC platforms is highly preferred.

Mock Interview

Practice Video Interview with JobPe AI

Start Job-Specific Interview

Start Your Job Search Today

Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.

Job Application AI Bot

Apply to 20+ Portals in one click

Download Now

Download the Mobile App

Instantly access job listings, apply easily, and track applications.

Enhance Your Skills

Practice coding challenges to boost your skills

Start Practicing Now

Sanganan IT Solutions Pvt Ltd.

RecommendedJobs for You

SOC Content Detection Engineer

Sanganan IT Solutions Pvt Ltd.

noida, uttar pradesh, india

SOC Content Detection Engineer

Sanganan IT Solutions Pvt Ltd.

noida, uttar pradesh, india

Before You Leave... Find Your Perfect Job!

Login to

Please Verify Your Phone or Email

Confirm Action

Contact Us

SOC Content Detection Engineer

Experience & Salary

Skills Required

Work Mode

Job Type

Job Description

Department:

Job Type:

Reports To:

SOC Content Detection Engineer

Key Responsibilities:

Detection Content Development

· Design and implement custom detection rules using KQL

MITRE ATT&CK

Alert Tuning & Optimization

· Analyze alert performance and lead biweekly tuning cycles to reduce false positives.

· Collaborate with L2/L3 analysts to refine detection thresholds and suppression logic.

· Maintain a detection content repository with version control and change logs.

3. Telemetry & Visibility Engineering

· Conduct log source visibility reviews and telemetry gap analysis.

· Recommend log onboarding priorities based on threat coverage and customer environments.

· Validate parsing, normalization, and enrichment of ingested data.

4. Threat Intelligence Integration

· Operationalize threat intelligence into detection content and hunt scenarios.

· Integrate IOCs, TTPs, and threat actor indicators into rule logic and enrichment workflows.

5. Governance & Documentation

· Maintain detection playbooks, rule documentation, and tuning reports.

· Ensure detection content aligns with MSSP governance frameworks and audit requirements.

· Support change control processes for rule deployment and rollback.

6. Collaboration & Enablement

· Work closely with SOC analysts, onboarding consultants, and automation engineers.

· Provide training and guidance on detection logic, rule writing, and tuning best practices.

· Participate in incident post-mortems to identify detection gaps and improvement areas.

1. Education

· Bachelor’s degree in Cybersecurity, Computer Science, or related field.

2. Certifications

· Required: Microsoft Certified: Security Operations Analyst Associate

· Preferred: MITRE ATT&CK Defender (MAD), GIAC (GCIA, GMON), CompTIA CySA+

3. Technical Skills

· Expert-level proficiency in KQL, Microsoft Sentinel, and Defender XDR.

· Experience with Sigma rule development, UEBA, and SIEM tuning.

· Strong understanding of log source telemetry, data normalization, and alert lifecycle.

· Familiarity with threat intelligence platforms and MITRE ATT&CK mapping.

4. Soft Skills

· Analytical mindset with strong attention to detail.

· Excellent documentation and presentation skills.

· Ability to collaborate across technical and operational teams.

· Fluent English communication skills (spoken and written).

5+ years

SOC

cybersecurity operations

2 years

detection engineering

SIEM content development

More Jobs at Sanganan IT Solutions Pvt Ltd.