Senior Cybersecurity SOC Engineer – Threat Hunting

1 day ago


Bengaluru, Karnataka, India Triune Infomatics Inc Full time
Role: Senior Cybersecurity SOC Engineer – Threat Hunting & Incident Response

Working Hours: Monday to Friday, 9 AM – 5 PM PST (U.S. Business Hours)

Reporting To: Security Operations (SecOps) Leader – USA

About the Role: We are seeking an elite Senior Cybersecurity SOC Engineer—a hands-on security expert with deep technical knowledge and proven experience in threat hunting, incident response, and SOC program maturity. This role will report directly to the SecOps Manager in India and requires someone who thrives in a collaborative environment and leads by example. If you are a true expert with Microsoft Sentinel, CrowdStrike, MDE, SOAR platforms, MITRE ATT&CK framework, APT detection, and scripting, this role offers a great opportunity to build and defend a modern SOC environment.

Please note: This is not a SOC Analyst role. Candidates must have 7-10+ years of hands-on SOC Engineer experience with deep threat hunting and incident response expertise. Must be available to work U.S. business hours (PST timezone).

Key Responsibilities:

- Threat Hunting:
- Lead proactive threat hunting initiatives aligned with MITRE ATT&CK framework to identify, investigate, and mitigate advanced threats and adversary behaviors.
- Use telemetry from Microsoft Sentinel, CrowdStrike Falcon, MDE, and other tools to detect anomalies and emerging attack patterns.
- Develop and optimize threat hunting queries and playbooks using KQL, Python, and PowerShell.
- Continuously improve detection coverage to reduce dwell time and prevent breaches.
- Incident Response:
- Design, implement, and maintain an effective Incident Response (IR) program and playbooks covering APTs, ransomware, insider threats, and complex multi-stage attacks.
- Lead investigations on high-fidelity security alerts, conduct root cause analysis, containment, eradication, and recovery.
- Utilize CrowdStrike Falcon EDR (including RTR), Microsoft Defender for Endpoint, and Tenable for comprehensive endpoint and vulnerability correlation during incidents.
- Perform network forensics and packet analysis using Fortinet and Palo Alto firewall logs.
- Manage cloud security incidents within Azure (Azure Sentinel, Security Center) and Microsoft 365 environments.
- Coordinate with internal teams and external partners for timely, coordinated response to security incidents.
- SOC Engineering & Program Maturity:
- Build and mature the SOC's SIEM and SOAR architecture, detection engineering, and response automation.
- Develop advanced detection logic, hunting queries, and automation workflows.
- Mentor junior SOC members and act as a technical escalation point.
- Collaborate with managed SOC partners and other security teams to enhance detection and response capabilities.

Required Experience & Skills:

- 7+ years of hands-on experience in SOC engineering, with a strong focus on threat hunting and incident response.

Expertise in:

- Microsoft Sentinel (SIEM & SOAR) and advanced KQL queries for hunting and IR
- CrowdStrike Falcon EDR (RTR, IOAs, threat containment)
- Microsoft Defender for Endpoint (MDE) telemetry and IR
- Tenable vulnerability correlation during investigations
- Fortinet and Palo Alto firewalls for forensic analysis
- Microsoft Entra ID (Azure AD), SSO, Conditional Access, MFA security controls
- Deep operational knowledge of MITRE ATT&CK for threat hunting, detection tuning, and adversary simulation.
- Proven ability to analyze and respond to APTs, malware persistence, lateral movement, privilege escalation, command & control, and data exfiltration incidents.
- Strong scripting skills (KQL, Python, PowerShell) for threat hunting automation and incident response workflows.
- Experience with SOAR platforms integration and automation (Microsoft Sentinel SOAR, Palo Alto XSOAR).
- Excellent communication, collaboration, and mentoring abilities.
- Must be able to work U.S. business hours (PST timezone).

Preferred Certifications:

- GCFA, GCIH, GCTI, CISSP, AZ-500, MS-500, or equivalent.
- MITRE ATT&CK Defender (MAD), OSCP, or Red Team certifications are a strong plus.

  • Bengaluru, Karnataka, India beBeeThreatHunter Full time US$ 1,25,000 - US$ 1,75,000

    Job Title: Cybersecurity Engineer - Threat Hunter Job Description:As a Senior Cybersecurity SOC Engineer, you will be responsible for leading proactive threat hunting initiatives to identify and mitigate advanced threats. You will use telemetry from various tools to detect anomalies and emerging attack patterns. Your responsibilities will include developing...

  • soc - l2

    2 weeks ago


    Bengaluru, Karnataka, India Phygital Insights Full time

    Job DescriptionSOC Analyst L2 is responsible for a broad range of responsibilities with a primary emphasis on Log analysis, threat and event monitoring and data loss prevention to contribute to effective remediation of security incidents.- The SOC Senior Analyst position is responsible for in-depth investigation, root cause analysis, use-case finetuning and...


  • Bengaluru, Karnataka, India beBeeSecurity Full time ₹ 1,50,00,000 - ₹ 2,50,00,000

    About our Security Operations Center.We help businesses stay operational and resilient in a complex cybersecurity landscape. Breaches happen—but with our cutting-edge platform, companies can minimize the impact of breaches by preventing ransomware and malware spread.We enable organizations to continue operating while breaches are contained, ensuring...


  • Bengaluru, Karnataka, India AiiR Response Full time

    Company DescriptionAiiR Response Inc. is the first AI-driven breach response and extortion management platform, designed to automate negotiations, investigations, and recovery. Our platform, powered by our virtual analyst CEIRA, streamlines ransom negotiations, tracks cryptocurrency payments, conducts forensic investigations, and automates breach...


  • Bengaluru, Karnataka, India beBeeCybersecurity Full time

    Job DescriptionWe are seeking a highly skilled Security Analyst to join our team. As a member of the Security Response and Investigations (SRI) team, you will play a critical role in responding to security incidents and mitigating security threats across the company.You will be part of the vSOC team, which is responsible for handling triage for all security...

  • SOC Lead Engineer

    4 weeks ago


    Bengaluru, Karnataka, India Versa Networks Full time

    SOC Lead EngineerLocation: BangaloreExperience: 8- 15 YRSJob SummaryThe SOC Lead Engineer is responsible for overseeing the Security Operations Center team, ensuring 24/7 monitoring, detection, analysis, and response to security threats.This role involves managing incident response processes, optimising security tools, and leading a team of security analysts...


  • Bengaluru, Karnataka, India beBeeCyberSecurityThreatModeller Full time ₹ 10,00,000 - ₹ 15,00,000

    Job Title: Cyber Security Threat Modeller","We are seeking an innovative Cyber Security Threat Modeller who can leverage large language models to enhance detection capabilities. The ideal candidate has a strong foundation in incident response and threat triage, with expertise in security operations and AI-driven cybersecurity workflows.","Design and evaluate...

  • Director of SOC

    4 days ago


    Bengaluru, Karnataka, India First Advantage Full time ₹ 15,00,000 - ₹ 20,00,000 per year

    Position OverviewThe Director of SOC Engineering and Response is a senior leadership role responsible for the strategic vision, engineering, and operational effectiveness of the Security Operations Center (SOC). This individual is charged with designing, implementing, and continuously improving the technological tools, processes, and team capabilities that...

  • Security Professional

    19 hours ago


    Bengaluru, Karnataka, India beBeeCybersecurity Full time ₹ 8,00,000 - ₹ 12,34,567

    Protect your organization by leveraging the power of AI-driven security platforms. AiiR streamlines ransom negotiations, tracks cryptocurrency payments, conducts forensic investigations, and automates breach notifications.This is a remote contract role for a SOC Analyst – Detection & Response. As a key member of our team, you will be responsible for...


  • Bengaluru, Karnataka, India beBeeCybersecurity Full time ₹ 1,80,00,000 - ₹ 2,50,00,000

    Senior Cybersecurity Specialist – Threat IntelligenceThis is a high-level position for an expert cybersecurity professional with in-depth technical knowledge and proven experience in threat hunting, incident response, and security operations center (SOC) program maturity.About the Role:This role will report directly to the head of SecOps and requires...