Security Operations Center Analyst

Job Title : SOC Analyte

Experience : 8+ Years

Location : Mumbai

key Responsibility :

Device Integration: Integrate devices with SIEM and configure rules for effective detection. Validate and normalize log sources.

Incident Investigation & Response: Own and manage high-severity incidents (P2/P1), perform forensic analysis, and lead Root Cause Analysis (RCA). Coordinate containment and recovery efforts.

SIEM Tuning & Use-Case Enhancement: Fine-tune detection rules, create/modify SIEM rules, queries, dashboards, and develop advanced detection use cases.

Threat Hunting: Conduct proactive threat hunts using threat intelligence and IOC feeds. Document findings and recommend improvements.

Threat Intelligence Correlation: Map threats to MITRE ATT&CK techniques and correlate alerts across SIEM, EDR, NDR, and firewalls.

Incident Coordination & Escalation: Lead technical response, coordinate with IT, network, and application teams, and escalate critical incidents to SOC Manager and CISO .

Tool & Technology Optimization: Monitor and improve performance of SIEM , SOAR , EDR/XDR , NDR , and Threat Intelligence platforms.

Reporting & Documentation: Maintain incident tickets, contribute to daily SOC trackers, trend analysis, and weekly reports.

Mentoring: Guide and mentor L2 analysts, review incident summaries, and approve incident closure reports.

SOAR Automation: Test, review, and improve SOC automation tools, playbooks, and response templates.

Immediate Joiners Or Max 30 Days

Interested Candidate can Share Their CV to