SOC L2- Specialist

About Birlasoft:

Birlasoft is a global technology company enabling “next-generation” digital transformation through expertise in Cloud, AI, Data, and enterprise solutions. Combining industry proficiency with advanced digital capabilities, it helps businesses accelerate change with speed, scale, and purpose, delivering “future-ready” solutions that enhance agility, resilience, and customer experience. Part of the CKA Birla Group and led by Chairman Mrs. Amita Birla, Birlasoft’s nearly 12,000 professionals drive innovation while building a diverse, inclusive, and learning-oriented culture. With a strong focus on sustainability and long-term value creation, Birlasoft transforms enterprises and communities, earning its reputation as a trusted partner and one of the best places to work.

Job Title: SOC - L2 Specialist

Location: Noida

Educational Background – University degree in Computer Science/IT

Key Responsibilities –

• Provide technical and functional support to L1 Team with analytical feedback.
• Responsible for incident investigation, evidence collection, diagnosis, recovery within defined SLA and closing incidents
• Understand information security policies and best practices in Birlasoft environments.
• Inform management on proactive and reactive actions to ensure adherence to security policy.
• Review and understand collected metrics from monitoring systems and be aware of patterns and anomalies.
• Perform incident response, with a primary focus of eliminating the threat to the network and determining the cause of the security incident while preserving evidence for further analysis
• Ensure incidents are handed in a manner that is consistent with established playbooks
• Monitors SIEM and logging for alerts of potential network threats, intrusions, and/or compromises
• Responsible for understanding the global threat environment and general security best practices
• Assists with triage of service requests from automated sensors and internal requests for assistance
• Participates in active cyber hunting to identify and eliminate known and unknown network threats
• Interface with technical personnel from various disciplines to rapidly resolve critical issues
• Appropriately inform and advise leadership of incidents and propose effective response and/or countermeasures for containment.

Skills Required

• 5+ years’ experience in Information Security & 3+ year experience in managing the SOC
• Knowledge of industry recognized analysis frameworks (Kill Chain, Diamond Model, MITRE ATT&CK, NIST Incident Response, etc.)
• Knowledge of Cloud Computing Fundamentals, EDR, DLP, Firewall
• Thorough understanding of fundamental security and network concepts (Operating systems, intrusion/detection, TCP/IP, ports, etc.)