Senior Cybersecurity SOC Engineer – Threat Hunting

1 day ago


Bengaluru, Karnataka, India Triune Infomatics Inc Full time

Role: Senior Cybersecurity SOC Engineer – Threat Hunting & Incident Response

Working Hours: Monday to Friday, 9 AM – 5 PM PST (U.S. Business Hours)

Reporting To: Security Operations (SecOps) Leader – USA

About the Role: We are seeking an elite Senior Cybersecurity SOC Engineer—a hands-on security expert with deep technical knowledge and proven experience in threat hunting, incident response, and SOC program maturity. This role will report directly to the SecOps Manager in India and requires someone who thrives in a collaborative environment and leads by example. If you are a true expert with Microsoft Sentinel, CrowdStrike, MDE, SOAR platforms, MITRE ATT&CK framework, APT detection, and scripting, this role offers a great opportunity to build and defend a modern SOC environment.

Please note: This is not a SOC Analyst role. Candidates must have 7-10+ years of hands-on SOC Engineer experience with deep threat hunting and incident response expertise. Must be available to work U.S. business hours (PST timezone).

Key Responsibilities:

  • Threat Hunting:
  • Lead proactive threat hunting initiatives aligned with MITRE ATT&CK framework to identify, investigate, and mitigate advanced threats and adversary behaviors.
  • Use telemetry from Microsoft Sentinel, CrowdStrike Falcon, MDE, and other tools to detect anomalies and emerging attack patterns.
  • Develop and optimize threat hunting queries and playbooks using KQL, Python, and PowerShell.
  • Continuously improve detection coverage to reduce dwell time and prevent breaches.
  • Incident Response:
  • Design, implement, and maintain an effective Incident Response (IR) program and playbooks covering APTs, ransomware, insider threats, and complex multi-stage attacks.
  • Lead investigations on high-fidelity security alerts, conduct root cause analysis, containment, eradication, and recovery.
  • Utilize CrowdStrike Falcon EDR (including RTR), Microsoft Defender for Endpoint, and Tenable for comprehensive endpoint and vulnerability correlation during incidents.
  • Perform network forensics and packet analysis using Fortinet and Palo Alto firewall logs.
  • Manage cloud security incidents within Azure (Azure Sentinel, Security Center) and Microsoft 365 environments.
  • Coordinate with internal teams and external partners for timely, coordinated response to security incidents.
  • SOC Engineering & Program Maturity:
  • Build and mature the SOC's SIEM and SOAR architecture, detection engineering, and response automation.
  • Develop advanced detection logic, hunting queries, and automation workflows.
  • Mentor junior SOC members and act as a technical escalation point.
  • Collaborate with managed SOC partners and other security teams to enhance detection and response capabilities.

Required Experience & Skills:

  • 7+ years of hands-on experience in SOC engineering, with a strong focus on threat hunting and incident response.

Expertise in:

  • Microsoft Sentinel (SIEM & SOAR) and advanced KQL queries for hunting and IR
  • CrowdStrike Falcon EDR (RTR, IOAs, threat containment)
  • Microsoft Defender for Endpoint (MDE) telemetry and IR
  • Tenable vulnerability correlation during investigations
  • Fortinet and Palo Alto firewalls for forensic analysis
  • Microsoft Entra ID (Azure AD), SSO, Conditional Access, MFA security controls
  • Deep operational knowledge of MITRE ATT&CK for threat hunting, detection tuning, and adversary simulation.
  • Proven ability to analyze and respond to APTs, malware persistence, lateral movement, privilege escalation, command & control, and data exfiltration incidents.
  • Strong scripting skills (KQL, Python, PowerShell) for threat hunting automation and incident response workflows.
  • Experience with SOAR platforms integration and automation (Microsoft Sentinel SOAR, Palo Alto XSOAR).
  • Excellent communication, collaboration, and mentoring abilities.
  • Must be able to work U.S. business hours (PST timezone).

Preferred Certifications:

  • GCFA, GCIH, GCTI, CISSP, AZ-500, MS-500, or equivalent.
  • MITRE ATT&CK Defender (MAD), OSCP, or Red Team certifications are a strong plus.


  • Bengaluru, Karnataka, India beBeeThreatHunter Full time US$ 1,25,000 - US$ 1,75,000

    Job Title: Cybersecurity Engineer - Threat Hunter Job Description:As a Senior Cybersecurity SOC Engineer, you will be responsible for leading proactive threat hunting initiatives to identify and mitigate advanced threats. You will use telemetry from various tools to detect anomalies and emerging attack patterns. Your responsibilities will include developing...

  • soc - l2

    2 weeks ago


    Bengaluru, Karnataka, India Phygital Insights Full time

    Job DescriptionSOC Analyst L2 is responsible for a broad range of responsibilities with a primary emphasis on Log analysis, threat and event monitoring and data loss prevention to contribute to effective remediation of security incidents.- The SOC Senior Analyst position is responsible for in-depth investigation, root cause analysis, use-case finetuning and...


  • Bengaluru, Karnataka, India beBeeSecurity Full time ₹ 1,50,00,000 - ₹ 2,50,00,000

    About our Security Operations Center.We help businesses stay operational and resilient in a complex cybersecurity landscape. Breaches happen—but with our cutting-edge platform, companies can minimize the impact of breaches by preventing ransomware and malware spread.We enable organizations to continue operating while breaches are contained, ensuring...


  • Bengaluru, Karnataka, India AiiR Response Full time

    Company DescriptionAiiR Response Inc. is the first AI-driven breach response and extortion management platform, designed to automate negotiations, investigations, and recovery. Our platform, powered by our virtual analyst CEIRA, streamlines ransom negotiations, tracks cryptocurrency payments, conducts forensic investigations, and automates breach...


  • Bengaluru, Karnataka, India beBeeSecurity Full time ₹ 1,50,00,000 - ₹ 2,50,00,000

    Elite Cybersecurity Threat InvestigatorThis role demands a seasoned cybersecurity professional with expertise in proactive threat hunting, incident response, and security operations.The ideal candidate will be responsible for spearheading advanced threat hunting initiatives aligned with the MITRE ATT&CK framework to identify, investigate, and mitigate...


  • Bengaluru, Karnataka, India beBeeCybersecurity Full time

    Job DescriptionWe are seeking a highly skilled Security Analyst to join our team. As a member of the Security Response and Investigations (SRI) team, you will play a critical role in responding to security incidents and mitigating security threats across the company.You will be part of the vSOC team, which is responsible for handling triage for all security...

  • SOC Lead Engineer

    4 weeks ago


    Bengaluru, Karnataka, India Versa Networks Full time

    SOC Lead EngineerLocation: BangaloreExperience: 8- 15 YRSJob SummaryThe SOC Lead Engineer is responsible for overseeing the Security Operations Center team, ensuring 24/7 monitoring, detection, analysis, and response to security threats.This role involves managing incident response processes, optimising security tools, and leading a team of security analysts...

  • SOC Lead Engineer

    1 day ago


    Bengaluru, Karnataka, India Versa Networks Full time

    SOC Lead Engineer Location: Bangalore Experience: 8- 15 YRS Job Summary The SOC Lead Engineer is responsible for overseeing the Security Operations Center team, ensuring 24/7 monitoring, detection, analysis, and response to security threats. This role involves managing incident response processes, optimising security tools, and leading a team of security...


  • Bengaluru, Karnataka, India beBeeCybersecurity Full time ₹ 1,80,00,000 - ₹ 2,50,00,000

    Job Title: SOC ManagerThe Security Operations Center (SOC) is a critical component of an organization's cybersecurity strategy. As a SOC Manager, you will be responsible for leading the team that monitors and responds to security threats in real-time.About UsWe are a global enterprise that provides cutting-edge cybersecurity solutions. Our mission is to...


  • Bengaluru, Karnataka, India beBeeCybersecurity Full time ₹ 2,00,00,000 - ₹ 2,50,00,000

    Director of SOC: Cybersecurity Leadership Position Job Description The Director of SOC is responsible for the strategic vision, engineering, and operational effectiveness of the Security Operations Center (SOC). This individual will design, implement, and continuously improve the technological tools, processes, and team capabilities that enable rapid...