Soc L3 Incident Handler

1 day ago

New Delhi, India Tata Consultancy Services Full time

Role: Soc L3 Incident HandlerExp: 10+yearsLocation: BangaloreInterview Mode: Virtual (Teams)Interview Date: 15-Nov-2025Job Description:Primary Skill: (Must Have)- Experience in Cyber Threat incident response, vulnerability research, malware analysis and exploit investigation. - Demonstrated experience in computer security related disciplines, including but not limited to the following subject areas: software vulnerabilities and exploitation, host forensics, malware analysis, network traffic analysis, Insider Threat and web-focused security topics. - Knowledgeable about modern security related subjects and trends, for example, Advanced Persistent Threat (APT), Spear Phishing, and credential compromise techniques - Proven ability to drive large scale, high visibility projects with high collaboration and leadership - Excellent judgment, decision making skills, and the ability to work under pressure - Excellent written and oral communication skills - Excellent presentation skills and experience of presenting to senior management - Solid understanding of events, related fields in log records and alerts reported by various data sources such as Windows/Unix systems, IDS/IPS, AV, HIDS/HIPS, WAFs, firewalls, and web proxies - Develop and improve the existing EDR Specific usecases for enhanced detection. - Analyze the TTP's of the emerging threats and co-ordinate with the EDR team to develop use cases at EDR. - Closely co-ordinate and provide continuous support for CSIRT team in an event of a P1/P2 Security Incidents. - Conduct a Security Incident tabletop simulation internally with in SOC to gauge the process and track improvements. - Handle BEC emails targeted against VIP users within the OrganizationDescription –- Use Case Development: Knowledge of organizational risks and threats to design relevant and effective detection rules. - Log Sources: Understanding log formats, sources, and parsing for accurate data utilization in use cases. - SIEM and Analytics Tools: Familiarity with platforms like Securonix, Sentinel, or Splunk to implement and monitor use cases. - Alert Logic: Ability to define thresholds, logic, and conditions to reduce false positives and improve detection accuracy. - Incident Response Needs: Awareness of incident response workflows to align use cases with actionable intelligence. - Performance Metrics: Skills to create and optimize KPI/KRI reports to track detection and response performance. - Fine-Tuning Methodology: Experience in analyzing alert data to refine use cases and adjust logic periodically. Detect and respond to company-wide security incidents, coordinating cross-functional teams to mitigate and eradicate threats. - Incident response lead for high impact cyber security incidents - Triage events, escalations and incidents to determine remediation and resolution actions - Coordinate appropriate response activities across teams or directly with stakeholders to rapidly remediate potential threats - Develop playbooks to improve processes and information sharing across teams - Initiative and project-related support to provide Security Operations and Incident Response perspective and subject matter expertise - Contribute technical and process improvements within the team - Participate in current operations, on call rotation. Which includes some after-hours responsibilities and escalations.

  • Soc L3 Incident Handler

    1 day ago

    Delhi, India Tata Consultancy Services Full time

    Role: Soc L3 Incident HandlerExp: 10+yearsLocation: BangaloreInterview Mode: Virtual (Teams)Interview Date: 15-Nov-2025Job Description:Primary Skill:(Must Have)Experience in Cyber Threat incident response, vulnerability research, malware analysis and exploit investigation.Demonstrated experience in computer security related disciplines, including but not...

  • Soc L3 Incident Handler

    2 days ago

    Delhi, India Tata Consultancy Services Full time

    Role: Soc L3 Incident HandlerExp: 10+yearsLocation: BangaloreInterview Mode: Virtual (Teams)Interview Date: 15-Nov-2025Job Description:Primary Skill: (Must Have)Experience in Cyber Threat incident response, vulnerability research, malware analysis and exploit investigation.Demonstrated experience in computer security related disciplines, including but not...

  • SOC Engineer

    1 week ago

    New Delhi, India ITC Infotech Full time

    SOC Engineer - L3Location: HyderabadMode: HybridRole Summary- Act as the senior-level analyst responsible for handling complex security incidents and advanced threats. - Lead investigations, triage escalations from L1/L2 analysts, and coordinate response actions. - Serve as the technical expert for SOC operations, threat detection, and remediation. Key...

  • SOC Engineer

    7 days ago

    New Delhi, India ITC Infotech Full time

    SOC Engineer - L3Location: Hyderabad Mode: HybridRole Summary Act as the senior-level analyst responsible for handling complex security incidents and advanced threats. Lead investigations, triage escalations from L1/L2 analysts, and coordinate response actions. Serve as the technical expert for SOC operations, threat detection, and remediation. Key...

  • Incident Responder

    3 days ago

    New Delhi, India SQ1 Security Full time

    Job Overview:As an SQ1 Security Cyber Defense Incident Responder within the Global Cybersecurity Operations Center (CSOC), you will serve as a key technical expert responsible for managing and responding to advanced cyber threats, performing detailed investigations, and strengthening the customer’s overall security posture. This role blends hands-on...

  • Incident Responder

    1 week ago

    New Delhi, India SQ1 Security Full time

    Job Overview:As an SQ1 Security Cyber Defense Incident Responder within the Global Cybersecurity Operations Center (CSOC), you will serve as a key technical expert responsible for managing and responding to advanced cyber threats, performing detailed investigations, and strengthening the customer’s overall security posture. This role blends hands-on...

  • SOC Lead

    1 week ago

    New Delhi, India ITC Infotech Full time

    SOC LeadLocation: Bangalore Mode: HybridRole Summary: Lead and manage day-to-day SOC operations to ensure proactive detection and response to cyber threats. Drive operational excellence, process maturity, and automation across SOC functions. Coordinate incident response, threat intelligence, and security monitoring for enterprise or customer environments.Key...

  • SOC Analyst L2/L3

    3 days ago

    New Delhi, India Innova ESI Full time

    Job Location - MumbaiOpen Positions: SOC Analyst Level 2 (L2) SOC Analyst Level 3 (L3)Please refer to the job description below for your kind reference:️ SOC Analyst – Level 2 (L2) / Level 3 (L3)Primary Responsibilities: Deep-dive investigation of escalated incidents Conduct root cause analysis and threat containment Coordinate with IT, DevOps, and other...

  • SOC Analyst L3

    3 days ago

    New Delhi, India Sanganan IT Solutions Pvt Ltd. Full time

    Job Title: Level 3 Security Operations Center (SOC) AnalystJob Type: Full TimeJob Location:- WORK FROM NOIDA OFFICE, PLEASE DON'T APPLY IF YOU ARE LOOKING FOR HYBRID OR WORK FROM HOME - Short notice period or immediate joiners are preferred.SOC Analyst L3Job Title: Level 3 Security Operations Center (SOC) AnalystJob Type: Full-Time / ContractJob Overview:As...

  • Cyber Security Incident Response handler

    3 weeks ago

    New Delhi, India FlexibleIR Full time

    A very interesting and responsible role to defend India's largest Critical Infrastructure companies against major Cyber attacks and overall Crisis Management in general for the organisation !!!Company DescriptionFlexibleIR helps organizations be prepared for cyber attacks by providing a process-centered approach to building strong cyber Incident Response...