Security Operations Center Analyst- L2
2 weeks ago
JOB TITLE:
L2 Security Operations Center (SOC) Analyst
Number of Positions
One
JOB PURPOSE:
To act as a senior-level analyst in the 24x7 Security Operations Center (SOC), responsible for advanced security event triage, log analysis, threat investigation, and response coordination using modern security platforms such as SIEM, SOAR, EDR, and Threat Intelligence systems. The L2 SOC Engineer will also contribute to dashboard optimization, incident documentation, playbook updates, and assist in the administration of key tools such as Splunk and CrowdStrike.
QUALIFICATION:
Graduation
CERTIFICATIONS:
- CompTIA CySA+ / Security+ / CEH
- Splunk Core Certified User / Power User
- Microsoft AZ-500 / SC-200
- CrowdStrike Certified Falcon Responder (CFR)
Any of the above.
EXPERIENCE:
6+
REPORTING TO:
SOC Lead - Mohammed Sayed
RESPONSIBILITIES (INCLUDES ALL TASKS):
Security Monitoring & Incident Handling
Triage and investigate escalated alerts from SIEM, XDR (CrowdStrike), EDR, email, and network security tools.
Perform log correlation and in-depth investigations using Splunk/Elastic dashboards and queries.
Handle incidents across endpoints, cloud (Azure/OCI/GCP), email, DLP, and network layers.
Respond to phishing, malware, unauthorized access, and insider threat alerts.
Support forensic triage using EDR tools and sandbox results (e.g., Falcon Sandbox).
SOC Engineering & SIEM Operations
Create, fine-tune, and optimize detection rules and dashboards in Splunk.
Maintain and troubleshoot Splunk forwarders, heavy forwarders, and dashboards under guidance.
Participate in log onboarding and validation for new sources (e.g., CSPM, EDR, DLP, Cloud tools).
Support automation workflows and enrichment via playbooks.
Tool Proficiency & Admin Support
Hands-on knowledge of:
SIEM: Splunk, Elastic (optional)
EDR/XDR: CrowdStrike
Email Security: Mimecast
DLP: Forcepoint (Web/Email), Netskope (CASB/ZTNA)
Vulnerability Management: Nessus, Qualys
Threat Intel Tools: IOC lookups, sandboxing tools, OSINT
Documentation & Compliance
- Maintain updated incident records, timelines, and evidence in ITSM or ticketing platforms.
- Contribute to SOP/Playbook updates, audit reports, and RCA documentation.
- Participate in compliance checks for ISO 27001 and internal audits.
Continuous Improvement
- Suggest detection logic improvements based on new threats or recurring false positives.
- Engage in purple teaming and threat hunting exercises as needed.
TECHNICAL SKILLS /COMPETENCIES:
MANDATORY
- 3-6 years of relevant experience in a SOC environment.
- Strong hands-on knowledge of SIEM (Splunk) and EDR (CrowdStrike).
- Experience in log analysis, threat detection, and incident handling.
- Good understanding of TCP/IP, DNS, HTTP, VPN, authentication, cloud security basics.
- Familiarity with ISO 27001, or NIST IR process is a plus.
- Certifications such as CompTIA CySA+, CEH, Splunk Core/User, or AZ-500 preferred.
OPTIONAL
SOFT SKILLS:
MANDATORY
- Bachelors degree in computer science, Information Technology, or related field.
- At least 6 years of experience in support operations
- Strong analytical mindset and attention to detail.
- Ability to prioritize under pressure and respond within SLA timelines.
- Proactive, accountable, and a team player.
- Willingness to work in shifts (24x7 SOC coverage) if required.
-
Security Operations Center Analyst- L2
4 days ago
Mumbai, Maharashtra, India Intertec Softwares Full timeJOB TITLE: L2 Security Operations Center (SOC) Analyst Number of Positions One JOB PURPOSE: To act as a senior-level analyst in the 24x7 Security Operations Center (SOC), responsible for advanced security event triage, log analysis, threat investigation, and response coordination using modern security platforms such as SIEM, SOAR, EDR, and Threat...
-
Security Operations Center Analyst
4 days ago
Mumbai, Maharashtra, India Innova ESI Full timeJob Title: Senior SOC Analyst (L3)Location: Mumbai, IndiaExperience Required: 7+ YearsEmployment Type: Full-TimeJob Summary:NTT DATA is seeking an experiencedSenior SOC Analystto join ourSecurity Operations Center (SOC)in Mumbai. The candidate will play a key role in detecting, analyzing, responding to, and preventing cybersecurity incidents across...
-
Application Security Engineer L2
4 days ago
Mumbai, Maharashtra, India Security Lit Full timeCompany DescriptionSecurity Lit is a cybersecurity organization dedicated to helping businesses identify, mitigate, and respond to modern threats, ensuring their safety and growth with peace of mind. Guided by strong core values, Security Lit promotes cyber awareness within the community and supports businesses in combating cyber-attacks. With a...
-
SOC Analyst L2 profile
15 hours ago
Mumbai, Maharashtra, India 63 moons Full timeSOC Analyst L2 profile (SIEM Gurucul) B E/B Tech SIEM, EDR, XDR, SOC Analyst Job Details: Analyse and triage security alerts escalated from L1 SOC Analysts. Investigate security incidents using SIEM, EDR, XDR, and threat intelligence tools. Conduct deep analysis to identify the full attack kill chain of security incidents. Lead and coordinate...
-
Security Admin L2
2 weeks ago
Mumbai, Maharashtra, India HireWand Technologies Full timeJob Brief:We are seeking a skilled Security Admin L2 to support security investigations, incident response, and SIEM monitoring.In this role, you will analyze alerts, guide L1 analysts, coordinate incident response, and perform deep-dive investigations across various security technologies. You will also help optimize SOC processes, fine-tune SIEM rules, and...
-
Cyber Security Specialist
1 week ago
Navi Mumbai, Maharashtra, India ESDS Software Solution Limited Full timeWe are seeking a highly skilled and experienced SOC Lead with 4 to 8 years of hands-on experience in cybersecurity, specializing in threat detection, incident management, you will be responsible for overseeing the operation and performance of our Security Operations Center, ensuring efficient threat monitoring, detection, and response for multiple client...
-
Cyber Security Specialist
1 week ago
Navi Mumbai, Maharashtra, India Esds Software Solutions Full timeWe are seeking a highly skilled and experienced SOC Lead with 4 to 8 years of hands-on experience in cybersecurity, specializing in threat detection, incident management, you will be responsible for overseeing the operation and performance of our Security Operations Center, ensuring efficient threat monitoring, detection, and response for multiple client...
-
Cyber Security Analyst L2
2 weeks ago
Mumbai, Maharashtra, India Wipro Full time ₹ 12,00,000 - ₹ 36,00,000 per yearJob DescriptionJob Title: Cyber Security Analyst L2Req Id: 112278City: MumbaiState/Province: MaharashtraPosting Start Date: 11/18/25Wipro Limited (NYSE: WIT, BSE: 507685, NSE: WIPRO) is a leading technology services and consulting company focused on building innovative solutions that address clients' most complex digital transformation needs. Leveraging our...
-
Network Security Engineer
2 weeks ago
Mumbai, Maharashtra, India Sattrix Information Security Full time ₹ 4,00,000 - ₹ 12,00,000 per yearJob Title:Network Security Engineers (L1 / L2 / L3)Location:Chennai / Mumbai / HyderabadEmployment Type:Full-time | Client RoleShifts: Rotational ShiftsWork Mode:Work from OfficeAbout the Role:We are looking for highly skilled and motivatedNetwork Security Engineers (L1, L2 & L3). You'll be responsible for managing, operating, and optimizing a wide range of...
-
SOC Analyst L2/L3
4 days ago
Mumbai, Maharashtra, India Inspira Enterprise Full timePurpose:The L2/L3 Security SOC Analyst operates security monitoring solutions, reacting promptly to security events. The role involves providing Incident Response (IR) support when analysis confirms actionable incidents, working in shifts after an initial ramp-up period.Qualifications:B.E. /B.Tech. /B.SC with a minimum of 4–5+ years of experience in...
