Thank you for your interest in joining Solventum. Solventum is a new healthcare company with a long legacy of solving big challenges that improve lives and help healthcare professionals perform at their best. At Solventum, people are at the heart of every innovation we pursue. Guided by empathy, insight, and clinical intelligence, we collaborate with the best minds in healthcare to address our customers’ toughest challenges. While we continue updating the Solventum Careers Page and applicant materials, some documents may still reflect legacy branding. Please note that all listed roles are Solventum positions, and our Privacy Policy: https://www.solventum.com/en-us/home/legal/website-privacy-statement/applicant-privacy/ applies to any personal information you submit. As it was with 3M, at Solventum all qualified applicants will receive consideration for employment without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Job Description:

The Impact You’ll Make in this Role

As a Sr. SOC Specialist on the Solventum Security Operations Center (SOC) team, you will be responsible for advanced threat detection, deep technical investigations, and senior-level expertise across the SOC technology stack. In this role, you will:

Conduct expert-level event triage, correlation, and behavioral analysis in SIEM (Splunk) to identify sophisticated threats and anomalous activity.
Lead complex investigations where solutions are not immediately apparent, applying deep technical skills and strong analytical reasoning.
Perform specialized technical analysis, including malware/sandbox review (Proofpoint, Microsoft Purview), Amazon GuardDuty event analysis, entitlement reviews, and application/security onboarding assessments.
Leverage SOAR (Swimlane) to orchestrate SOC workflows, tune automation playbooks, and recommend enhancements based on investigative insights.
Contribute to continuous tuning of SIEM detections, alerts, and enrichment logic to improve fidelity and reduce noise.
Provide senior-level technical guidance during SOC investigations, reviewing work from junior analysts and ensuring high-quality, well-documented outcomes.
Collaborate closely with CIRT, Identity, Endpoint, Network, Cloud, and IT teams to drive cohesive and technically sound incident response activities.
Develop and refine SOC runbooks, procedures, and operational playbooks with a focus on technical accuracy and practical usability.
Identify issues requiring escalation and contribute to monthly SOC reporting, metrics tracking, and post‑incident reviews.
Conduct root cause analyses and propose technical or procedural improvements based on identified gaps.
Support project-based initiatives and cross-functional efforts where deep SOC subject‑matter expertise is needed to enhance detection and response capabilities.
Triage third-party incidents and assess associated technical risks and remediation paths.

Your skills & expertise (Minimum qualifications):

Bachelor’s degree or higher in Information Security, Information Technology, Computer Science, Engineering, or a related field, or equivalent experience.
7+ years of experience in SOC operations, threat detection, or similar cybersecurity technical roles.
Advanced hands-on experience with Splunk, including queries, correlation rules, dashboards, and detection tuning.
Experience with Swimlane or other SOAR platforms, including playbook execution and workflow troubleshooting.
Experience performing senior SOC duties, including vendor interactions, sandbox analysis, entitlement reviews, dark web monitoring, and root cause analysis.
Strong understanding of log analysis, detection engineering, threat hunting, and MITRE ATT&CK.
Experience with cloud threat detection and response (AWS, Azure, GCP).
Demonstrated ability to solve complex, multi‑disciplinary problems requiring conceptual thinking and extensive technical judgment.
Excellent written and verbal communication skills, with the ability to present findings to technical and non‑technical audiences.
Ability to work flexible hours, including evenings, nights, weekends, and participation in an after-hours on-call rotation to provide critical support coverage as needed.

Additional qualifications (Nice to have):

Industry certifications such as GCIA, GCIH, GSEC, Splunk, SOAR or equivalent.
Familiarity with endpoint security, identity threat detection, or network security platforms.
Experience reviewing and approving SOC playbooks, procedures, and knowledge artifacts.
Experience developing workflows, detection content, or automation logic.

Work location:

India: Bangalore : Hybrid

Solventum is committed to maintaining the highest standards of integrity and professionalism in our recruitment process. Applicants must remain alert to fraudulent job postings and recruitment schemes that falsely claim to represent Solventum and seek to exploit job seekers.

Please note that all email communications from Solventum regarding job opportunities with the company will be from an email with a domain of @solventum.com. Be wary of unsolicited emails or messages regarding Solventum job opportunities from emails with other email domains.

Please note: your application may not be considered if you do not provide your education and work history, either by: 1) uploading a resume, or 2) entering the information into the application fields directly.

Solventum Global Terms of Use and Privacy Statement

Carefully read these Terms of Use before using this website. Your access to and use of this website and application for a job at Solventum are conditioned on your acceptance and compliance with these terms.

Please access the linked document by clicking here. Before submitting your application you will be asked to confirm your agreement with the
terms.

Sr. SOC Specialist

Solventum

Job Description

About Company

Services you might be interested in

Improve Your Resume Today