Security Operations Center Analyst- L2
1 day ago
JOB TITLE: L2 Security Operations Center (SOC) Analyst Number of Positions One JOB PURPOSE: To act as a senior-level analyst in the 24x7 Security Operations Center (SOC), responsible for advanced security event triage, log analysis, threat investigation, and response coordination using modern security platforms such as SIEM, SOAR, EDR, and Threat Intelligence systems. The L2 SOC Engineer will also contribute to dashboard optimization, incident documentation, playbook updates, and assist in the administration of key tools such as Splunk and CrowdStrike. QUALIFICATION: Graduation CERTIFICATIONS: CompTIA CySA+ / Security+ / CEHSplunk Core Certified User / Power UserMicrosoft AZ-500 / SC-200CrowdStrike Certified Falcon Responder (CFR)Any of the above. EXPERIENCE: 6+ REPORTING TO: SOC Lead - Mohammed Sayed RESPONSIBILITIES (INCLUDES ALL TASKS): Security Monitoring & Incident Handling Triage and investigate escalated alerts from SIEM, XDR (CrowdStrike), EDR, email, and network security tools. Perform log correlation and in-depth investigations using Splunk/Elastic dashboards and queries. Handle incidents across endpoints, cloud (Azure/OCI/GCP), email, DLP, and network layers. Respond to phishing, malware, unauthorized access, and insider threat alerts. Support forensic triage using EDR tools and sandbox results (e.g., Falcon Sandbox).SOC Engineering & SIEM Operations Create, fine-tune, and optimize detection rules and dashboards in Splunk. Maintain and troubleshoot Splunk forwarders, heavy forwarders, and dashboards under guidance. Participate in log onboarding and validation for new sources (e.g., CSPM, EDR, DLP, Cloud tools). Support automation workflows and enrichment via playbooks.Tool Proficiency & Admin Support Hands-on knowledge of: SIEM: Splunk, Elastic (optional) EDR/XDR: CrowdStrike Email Security: Mimecast DLP: Forcepoint (Web/Email), Netskope (CASB/ZTNA) Vulnerability Management: Nessus, Qualys Threat Intel Tools: IOC lookups, sandboxing tools, OSINTDocumentation & ComplianceMaintain updated incident records, timelines, and evidence in ITSM or ticketing platforms.Contribute to SOP/Playbook updates, audit reports, and RCA documentation.Participate in compliance checks for ISO 27001 and internal audits.Continuous ImprovementSuggest detection logic improvements based on new threats or recurring false positives.Engage in purple teaming and threat hunting exercises as needed. TECHNICAL SKILLS /COMPETENCIES: MANDATORY 3-6 years of relevant experience in a SOC environment.Strong hands-on knowledge of SIEM (Splunk) and EDR (CrowdStrike).Experience in log analysis, threat detection, and incident handling.Good understanding of TCP/IP, DNS, HTTP, VPN, authentication, cloud security basics.Familiarity with ISO 27001, or NIST IR process is a plus.Certifications such as CompTIA CySA+, CEH, Splunk Core/User, or AZ-500 preferred. OPTIONAL SOFT SKILLS: MANDATORY Bachelors degree in computer science, Information Technology, or related field.At least 6 years of experience in support operationsStrong analytical mindset and attention to detail.Ability to prioritize under pressure and respond within SLA timelines.Proactive, accountable, and a team player.Willingness to work in shifts (24x7 SOC coverage) if required.
-
L2 Security Operations Center Analyst
2 weeks ago
Mumbai, Maharashtra, India Digihelic Solutions Private Limited Full time ₹ 15,00,000 - ₹ 25,00,000 per yearDescription :Location : Mumbai, IndiaExperience : 5+ YearsMode of Work : 5 Days Office (Full-time On-site)Reporting To : SOC Manager / Security Operations LeadAbout the Role : We are seeking an experienced and dedicated L2 Security Operations Center (SOC) Analyst to join our team in Mumbai. This is a full-time, 5-day on-site position. The ideal...
-
L2 Security Operations Center Analyst
1 day ago
Mumbai, India Digihelic Solutions Private Limited Full timeDescription :Location : Mumbai, IndiaExperience : 5+ YearsMode of Work : 5 Days Office (Full-time On-site)Reporting To : SOC Manager / Security Operations LeadAbout the Role :We are seeking an experienced and dedicated L2 Security Operations Center (SOC) Analyst to join our team in Mumbai. This is a full-time, 5-day on-site position. The ideal candidate will...
-
Security Operations Center Analyst- L2
2 days ago
Mumbai, Maharashtra, India Intertec Softwares Pvt Ltd Full time ₹ 12,00,000 - ₹ 36,00,000 per yearJOB TITLE: L2 Security Operations Center (SOC) Analyst Number of Positions One JOB PURPOSE: To act as a senior-level analyst in the 24x7 Security Operations Center (SOC), responsible for advanced security event triage, log analysis, threat investigation, and response coordination using modern security platforms such as SIEM, SOAR, EDR, and Threat...
-
Security Operations Center Analyst
5 days ago
mumbai, India Innova ESI Full timeRole: SOC Analyst (L2/L3) Experience: 4 -12 Year Location: Mumbai Job Description: Key Responsibilities: Perform real-time security monitoring, analysis, and incident response for enterprise systems, networks, and applications. Investigate security alerts and correlate events using SIEM tools (e.g., Splunk, QRadar, ArcSight, Azure Sentinel). Conduct threat...
-
Security Operations Center Analyst
5 days ago
Mumbai, India Innova ESI Full timeRole: SOC Analyst (L2/L3) Experience: 4 -12 Year Location: Mumbai Job Description: Key Responsibilities: Perform real-time security monitoring, analysis, and incident response for enterprise systems, networks, and applications. Investigate security alerts and correlate events using SIEM tools (e.g., Splunk, QRadar, ArcSight, Azure Sentinel). Conduct threat...
-
Security Operations Center Analyst
5 days ago
Mumbai, India Innova ESI Full timeRole: SOC Analyst (L2/L3) Experience: 4 -12 Year Location: Mumbai Job Description: Key Responsibilities: Perform real-time security monitoring, analysis, and incident response for enterprise systems, networks, and applications. Investigate security alerts and correlate events using SIEM tools (e.g., Splunk, QRadar, ArcSight, Azure Sentinel). Conduct threat...
-
Security Operations Center Analyst
5 days ago
Mumbai, India Innova ESI Full timeRole: SOC Analyst (L2/L3)Experience: 4 -12 YearLocation: MumbaiJob Description:Key Responsibilities:- Perform real-time security monitoring, analysis, and incident response for enterprise systems, networks, and applications.- Investigate security alerts and correlate events using SIEM tools (e.g., Splunk, QRadar, ArcSight, Azure Sentinel).- Conduct threat...
-
Security Operations Center Analyst
6 days ago
Mumbai, India Innova ESI Full timeRole: SOC Analyst (L2/L3)Experience: 4 -12 YearLocation: MumbaiJob Description:Key Responsibilities:- Perform real-time security monitoring, analysis, and incident response for enterprise systems, networks, and applications.- Investigate security alerts and correlate events using SIEM tools (e.g., Splunk, QRadar, ArcSight, Azure Sentinel).- Conduct threat...
-
Security Operations Center Analyst
6 days ago
Mumbai, India Innova ESI Full timeRole: SOC Analyst (L2/L3) Experience: 4 -12 Year Location: Mumbai Job Description: Key Responsibilities: Perform real-time security monitoring, analysis, and incident response for enterprise systems, networks, and applications. Investigate security alerts and correlate events using SIEM tools (e.g., Splunk, QRadar, ArcSight, Azure Sentinel). Conduct threat...
-
Security Operations Center Analyst
5 days ago
Mumbai, India Innova ESI Full timeRole: SOC Analyst (L2/L3) Experience: 4 -12 Year Location: Mumbai Job Description: Key Responsibilities: Perform real-time security monitoring, analysis, and incident response for enterprise systems, networks, and applications. Investigate security alerts and correlate events using SIEM tools (e.g., Splunk, QRadar, ArcSight, Azure Sentinel). Conduct threat...
