Senior Cybersecurity SOC Engineer – Threat Hunting

3 weeks ago


Bengaluru, Karnataka, India Triune Infomatics Inc Full time

Role: Senior Cybersecurity SOC Engineer – Threat Hunting & Incident Response

Working Hours: Monday to Friday, 9 AM – 5 PM PST (U.S. Business Hours)

Reporting To: Security Operations (SecOps) Leader – USA

About the Role: We are seeking an elite Senior Cybersecurity SOC Engineer—a hands-on security expert with deep technical knowledge and proven experience in threat hunting, incident response, and SOC program maturity. This role will report directly to the SecOps Manager in India and requires someone who thrives in a collaborative environment and leads by example. If you are a true expert with Microsoft Sentinel, CrowdStrike, MDE, SOAR platforms, MITRE ATT&CK framework, APT detection, and scripting, this role offers a great opportunity to build and defend a modern SOC environment.

Please note: This is not a SOC Analyst role. Candidates must have 7-10+ years of hands-on SOC Engineer experience with deep threat hunting and incident response expertise. Must be available to work U.S. business hours (PST timezone).

Key Responsibilities:

  • Threat Hunting:
  • Lead proactive threat hunting initiatives aligned with MITRE ATT&CK framework to identify, investigate, and mitigate advanced threats and adversary behaviors.
  • Use telemetry from Microsoft Sentinel, CrowdStrike Falcon, MDE, and other tools to detect anomalies and emerging attack patterns.
  • Develop and optimize threat hunting queries and playbooks using KQL, Python, and PowerShell.
  • Continuously improve detection coverage to reduce dwell time and prevent breaches.
  • Incident Response:
  • Design, implement, and maintain an effective Incident Response (IR) program and playbooks covering APTs, ransomware, insider threats, and complex multi-stage attacks.
  • Lead investigations on high-fidelity security alerts, conduct root cause analysis, containment, eradication, and recovery.
  • Utilize CrowdStrike Falcon EDR (including RTR), Microsoft Defender for Endpoint, and Tenable for comprehensive endpoint and vulnerability correlation during incidents.
  • Perform network forensics and packet analysis using Fortinet and Palo Alto firewall logs.
  • Manage cloud security incidents within Azure (Azure Sentinel, Security Center) and Microsoft 365 environments.
  • Coordinate with internal teams and external partners for timely, coordinated response to security incidents.
  • SOC Engineering & Program Maturity:
  • Build and mature the SOC's SIEM and SOAR architecture, detection engineering, and response automation.
  • Develop advanced detection logic, hunting queries, and automation workflows.
  • Mentor junior SOC members and act as a technical escalation point.
  • Collaborate with managed SOC partners and other security teams to enhance detection and response capabilities.

Required Experience & Skills:

  • 7+ years of hands-on experience in SOC engineering, with a strong focus on threat hunting and incident response.

Expertise in:

  • Microsoft Sentinel (SIEM & SOAR) and advanced KQL queries for hunting and IR
  • CrowdStrike Falcon EDR (RTR, IOAs, threat containment)
  • Microsoft Defender for Endpoint (MDE) telemetry and IR
  • Tenable vulnerability correlation during investigations
  • Fortinet and Palo Alto firewalls for forensic analysis
  • Microsoft Entra ID (Azure AD), SSO, Conditional Access, MFA security controls
  • Deep operational knowledge of MITRE ATT&CK for threat hunting, detection tuning, and adversary simulation.
  • Proven ability to analyze and respond to APTs, malware persistence, lateral movement, privilege escalation, command & control, and data exfiltration incidents.
  • Strong scripting skills (KQL, Python, PowerShell) for threat hunting automation and incident response workflows.
  • Experience with SOAR platforms integration and automation (Microsoft Sentinel SOAR, Palo Alto XSOAR).
  • Excellent communication, collaboration, and mentoring abilities.
  • Must be able to work U.S. business hours (PST timezone).

Preferred Certifications:

  • GCFA, GCIH, GCTI, CISSP, AZ-500, MS-500, or equivalent.
  • MITRE ATT&CK Defender (MAD), OSCP, or Red Team certifications are a strong plus.


  • Bengaluru, Karnataka, India Triune Infomatics Inc Full time

    Role: Senior Cybersecurity SOC Engineer – Threat Hunting & Incident Response Working Hours: Monday to Friday, 9 AM – 5 PM PST (U.S. Business Hours)Reporting To: Security Operations (SecOps) Leader – USAAbout the Role: We are seeking an elite Senior Cybersecurity SOC Engineer—a hands-on security expert with deep technical knowledge and proven...

  • SOC Lead Engineer

    2 weeks ago


    Bengaluru, Karnataka, India Versa Networks Full time

    SOC Lead EngineerLocation: BangaloreExperience: 8- 15 YRSJob SummaryThe SOC Lead Engineer is responsible for overseeing the Security Operations Center team, ensuring 24/7 monitoring, detection, analysis, and response to security threats.This role involves managing incident response processes, optimising security tools, and leading a team of security analysts...


  • Bengaluru, Karnataka, India beBeeThreat Full time ₹ 15,75,000 - ₹ 24,50,000

    Cybersecurity Threat Hunter PositionThis position is ideal for a skilled and experienced cybersecurity professional who can identify and mitigate complex threats. The successful candidate will have a strong understanding of advanced threat hunting techniques and methodologies.The role involves working closely with global customers to provide top-notch...

  • SOC Lead Engineer

    3 weeks ago


    Bengaluru, Karnataka, India Versa Networks Full time

    SOC Lead Engineer Location: Bangalore Experience: 8- 15 YRS Job Summary The SOC Lead Engineer is responsible for overseeing the Security Operations Center team, ensuring 24/7 monitoring, detection, analysis, and response to security threats. This role involves managing incident response processes, optimising security tools, and leading a team of security...


  • Bengaluru, Karnataka, India Talentmatics Full time

    We are seeking a seasoned Cybersecurity Architect with 12–16 years of experience to design, implement, and operate a Global Security Operations Center (SOC). This strategic leadership role will play a key part in strengthening our global cybersecurity posture and engaging directly with Japanese clients and stakeholders.Languages Required:- Bilingual...

  • Threat Hunter

    3 weeks ago


    Bengaluru, Karnataka, India StoneX Group Inc. Full time

    Job DescriptionOverviewConnecting clients to markets and talent to opportunityWith 4,300 employees and over 400,000 retail and institutional clients from more than 80 offices spread across five continents, were a Fortune-100, Nasdaq-listed provider, connecting clients to the global markets focusing on innovation, human connection, and providing world-class...

  • Security Expert

    2 weeks ago


    Bengaluru, Karnataka, India beBeeCybersecurity Full time ₹ 25,00,000 - ₹ 42,00,000

    About This RoleThe Lead Security Operations Analyst serves as an expert-level professional in the Security Operations Center, specializing in handling complex and critical security incidents.This senior role entails advanced threat analysis, incident response, and proactive threat hunting. The analyst also contributes to the strategic improvement of the...


  • Bengaluru, Karnataka, India beBeeSecurity Full time ₹ 2,00,00,000 - ₹ 2,50,00,000

    About UsEstablished in a global network spanning over 40 markets, this bank offers an extensive scope of commercial and investment banking products and services to businesses, governments, and individuals worldwide.Company ProfileThis bank is part of one of the worlds leading financial groups with a history spanning over 360 years. Headquartered in Tokyo,...


  • Bengaluru, Karnataka, India Triune Infomatics Inc Full time US$ 1,25,000 - US$ 1,75,000 per year

    Role: Senior Cybersecurity SOC Engineer – Threat Hunting & Incident ResponseWorking Hours: Monday to Friday, 9 AM – 5 PM PST (U.S. Business Hours)Reporting To: Security Operations (SecOps) Leader – USAAbout the Role:We are seeking an elite Senior Cybersecurity SOC Engineer—a hands-on security expert with deep technical knowledge and proven experience...


  • Bengaluru, Karnataka, India Eaglex Technology LLP Full time

    Who are we?FalconX is a pioneering team of operators, investors, and builders committed to revolutionizing institutional access to the crypto markets.Operating at the intersection of traditional finance and cutting-edge technology, FalconX addresses the industry's foremost challenges : Navigating the digital asset market can be complex and fragmented, with...