Sr SOC Analyst (4 years experience)

As a Senior SOC Analyst you will lead complex incident investigations, drive detection improvements, and serve as a technical escalation point for the SOC. You will mentor junior analysts, own incident post-mortems, and collaborate with Engineering, IT, and Threat Intelligence to improve detection, response, and automation.

• Lead triage and end-to-end incident response for high-severity incidents (containment, eradication, recovery).
• Perform host and network forensics; build timelines and evidence packages for investigations.
• Design, develop and tune advanced detections (SIEM rules, analytics, Sigma rules, KQL/SPL).
• Conduct proactive threat hunting and map findings to ATT&CK techniques.
• Mentor L1/L2 analysts, run tabletop exercises, and keep playbooks/runbooks current.
• Coordinate cross-team remediation (patching, firewall rules, endpoint isolation) and communicate impact to stakeholders.
• Contribute to automation/SOAR playbooks to reduce mean-time-to-detect/respond.
• Produce clear incident reports and threat intelligence summaries for technical and business audiences.

• Bachelor’s degree in Computer Science, IT, Cybersecurity, or equivalent experience.
• Minimum 4 years hands-on SOC experience (SIEM + EDR/XDR + incident response).
• Strong expertise with SIEM platforms (Wazuh/Splunk/Microsoft Sentinel), EDR tools (Trend Micro, Microsoft Defender, CrowdStrike, Sophos), and log analytics (KQL/SPL/ELK).
• Experience with host & memory forensics, network forensics, and threat hunting methodologies.
• Scripting/automation skills (PowerShell, Python, Bash) for tooling and automation.
• Solid understanding of networking (TCP/IP, DNS, HTTP/S), authentication, and common adversary TTPs.
• Excellent written and verbal communication; able to present technical findings to leadership.
• Able to work in shift rotations when required.

• GCIA, GCIH, OSCP, OSCE, or relevant DFIR/hunting certifications.
• Experience with cloud-native logs and detection (Azure/AWS).
• Prior experience building SOAR playbooks or detection engineering pipelines.

• Ownership of critical detection & response responsibilities and opportunity to shape SOC strategy.
• Support for advanced certifications, training, and conference attendance.
• Competitive compensation, health benefits, and flexible working options (role-dependent).

Send your resume to careers@isstechnologies.in with subject line“Sr SOC Analyst — IWSOCSR505”