
Specialist I, Cyber Defense Operation Centre
4 days ago
Job Title:
Specialist I, Cyber Defense Operation Centre (TCF)Job Description
We are looking for an experienced and proactive SOC Analyst – Level 2 (L2) to join our Managed Security Services Provider (MSSP) team. In this role, you will handle advanced security investigations, lead incident response for escalated cases, fine-tune detection capabilities, and mentor L1 analysts. You will be expected to have strong technical expertise across security platforms, incident handling processes, and threat analysis to ensure timely and accurate response to security incidents in a 24x7 environment.Key ResponsibilitiesInvestigate and respond to escalated security incidents from L1 analysts, ensuring timely containment, eradication, and recovery.
Perform in-depth log and packet analysis to identify root causes and attack vectors.
Correlate alerts across multiple data sources (SIEM, EDR, IDS/IPS, cloud, threat intel) for context-rich investigations.
Conduct malware analysis (static/dynamic) and assess potential impact on client systems.
Create and refine incident response playbooks, use cases, and correlation rules.
Collaborate with threat intelligence teams to enrich investigations and proactively identify emerging threats.
Lead the onboarding and configuration validation for new clients and POCs.
Support tuning of SIEM and EDR rules to reduce false positives and improve detection accuracy.
Mentor and provide technical guidance to L1 analysts, ensuring knowledge transfer and skill growth.
Document detailed investigation reports for incidents, ensuring compliance with client and regulatory requirements.
SIEM: Palo Alto XSIAM/XDR, Splunk, Microsoft Sentinel, QRadar, LogRhythm
EDR: CrowdStrike Falcon, SentinelOne, Microsoft Defender for Endpoint, Palo Alto Cortex XDR
Network Security: IDS/IPS (Snort, Suricata), Next-Gen Firewalls (Palo Alto, Fortinet, Cisco)
Threat Intelligence: VirusTotal, Anomali ThreatStream, Recorded Future, MISP
Forensics: FTK, EnCase, Volatility, Autopsy (awareness)
Case Management: ServiceNow, JIRA, TheHive
Cloud Security: AWS Security Hub, Azure Security Center, GCP Security Command Center
Vulnerability Management: Qualys, Tenable Nessus, Rapid7 InsightVM
Bachelor's degree in Computer Science, Information Security, or related field (or equivalent experience).
Experience: 2–4 years in a SOC, incident response, or security operations role.
Strong understanding of cyber attack techniques, MITRE ATT&CK framework, and incident handling methodologies.
Proficiency in log analysis, endpoint forensics, and network traffic analysis.
Experience with SIEM and EDR tool configuration, alert tuning, and custom rule creation.
Working knowledge of scripting languages (Python, PowerShell, Bash) for automation and analysis is a plus.
Preferred Certifications: GCIA, GCIH, CEH, CompTIA CySA+, Microsoft SC-200, or equivalent.
Strong problem-solving skills and ability to work on complex incidents under pressure.
Excellent written and verbal communication for clear incident reporting and stakeholder updates.
Collaborative mindset with the ability to mentor junior analysts and contribute to team development.
Proactive in learning and adapting to evolving threats, tools, and best practices.
Location:
IND Gurgaon - Bld 14 IT SEZ Unit 1, 17th C & D and Gd Flr DLanguage Requirements:
Time Type:
Full timeIf you are a California resident, by submitting your information, you acknowledge that you have read and have access to the Job Applicant Privacy Notice for California Residents
-
Real Time Analyst
4 days ago
IND Gurgaon - Bld IT SEZ Unit , th C & D and Gd Flr D, India CNX Full time ₹ 5,00,000 - ₹ 15,00,000 per yearJob Title:Real Time AnalystJob DescriptionConcentrix is a technology-enabled global business services company specializing in customer engagement and improving business performance. We partner with ambitious, progressive executives around the world to future-proof their business and stay ahead of the competition and customer expectations.Role and Key...
-
Associate Specialist
4 days ago
IND Gurgaon - Bld IT SEZ Unit , th, th and th Flr, India CNX Full time ₹ 5,00,000 - ₹ 12,00,000 per yearJob Title:Associate Specialist - Security EngineeringJob DescriptionWe are looking for a detail-oriented and security-conscious DLP Analyst to join our Managed Security Services (MSS) team. The ideal candidate will assist in monitoring, analyzing, and responding to Data Loss Prevention (DLP) alerts to help clients prevent data breaches and enforce sensitive...
-
Cyber Defense Security Intern
2 weeks ago
IND - Karnataka - BANGALORE, India Globalfoundries Engineering Private Limited Full time ₹ 40,00,000 - ₹ 80,00,000 per yearIntern - Cyber Defense Security Title: Intern - Cyber Defense and Security About GlobalFoundries GlobalFoundries is a leading full-service semiconductor foundry providing a unique combination of design, development, and fabrication services to some of the world's most inspired technology companies. With a global manufacturing footprint spanning three...
-
Director, Cyber Defense Center
1 week ago
Gurgaon, Haryana, India TP Full time ₹ 12,00,000 - ₹ 36,00,000 per yearMaximize Your Impact with TPWelcome to TP, a global hub of innovation and empowerment, where we redefine the future. With a remarkable €10 billion annual revenue and a global team of 500,000 employees serving 170 countries in over 300 languages, we lead in intelligent, digital-first solutions.As a globally certified Great Place to Work in 72 countries, our...
-
Centre Head/ Centre Manager
2 weeks ago
Gurgaon, Haryana, India CII Model Career Centre Full time ₹ 9,00,000 - ₹ 12,00,000 per yearRole & responsibilitiesJob DescriptionPosition: Centre Manager Location: Gurgaon, SikanderpurAbout the RoleWe are looking for a result-oriented Centre Manager with hands-on experience in managing end-to-end recruitment (blue & grey collar workforce), leading teams, conducting weekly job drives, liaising with government officials, and ensuring smooth client...
-
Document Capture Specialist I
2 days ago
IND | Hyderabad | iSprout, Orbit by Auro Realty, Plot No. /C, Sy.No./,th floor, India Iron Mountain Full time ₹ 1,04,000 - ₹ 1,30,878 per yearAt Iron Mountain we know that work, when done well, makes a positive impact for our customers, our employees, and our planet. That's why we need smart, committed people to join us. Whether you're looking to start your career or make a change, talk to us and see how you can elevate the power of your work at Iron Mountain.We provide expert, sustainable...
-
Threat Hunter
6 days ago
Ind – Pune Sez (All Floors Except Th And Th), India Allstate Solutions Pvt Ltd Full time ₹ 6,00,000 - ₹ 18,00,000 per yearThreat Hunter At Allstate, great things happen when our people work together to protect families and their belongings from life's uncertainties. And for more than 90 years our innovative drive has kept us a step ahead of our customers' evolving needs. From advocating for seat belts, air bags and graduated driving laws, to being an industry leader in...
-
Cyber Monitoring, Tech
4 days ago
Gurgaon, Haryana, India BlackRock Full time ₹ 4,00,000 - ₹ 12,00,000 per yearOverviewAbout this roleResponsibilitiesJoin our global team of cyber security experts, protecting our business and developing exciting capabilities on the frontline of cyber defense. The Cyber Monitoring Associate will be part of the Cyber Operations team that is responsible for monitoring and investigating alerts to identify potential incidents. The...
-
Cyber Response Manager
2 weeks ago
Gurgaon, Haryana, India NAB Full time ₹ 12,00,000 - ₹ 36,00,000 per yearJob Title:Cyber Response ManagerWork Type:PermanentLocation:DLF Downtown - GurgaonIt's more than a career at NAB. It's about more meaningful work, more global opportunities and more innovation beyond boundaries .Your job is just one part of your life. When you bring your ideas, energy, and hunger for growth, you'll be recognised and rewarded for your...
-
Cyber Security
1 week ago
Gurgaon, Haryana, India BlackRock Full time ₹ 9,00,000 - ₹ 12,00,000 per yearAbout this roleOverviewJoin our distributed team of cyber security experts, protecting our business and developing exciting capabilities on the frontline of cyber defense. Apply your passion and knowledge of cyber security to assist in the investigation of incidents. This individual will be part of the Cyber Data Protection Operations team that is...