This is a fully remote position, open to applicants in India.

• Oversee and analyze alerts from SIEM, XDR, IDS/IPS, and email security systems.

• Manage incident response from start to finish: including triage, containment, root cause analysis, and reporting.

• Enhance and maintain incident response playbooks and runbooks.

• Conduct hypothesis-driven threat hunting utilizing TTPs, IOCs, and behavioral patterns.

• Integrate OSINT and threat intelligence findings into daily SOC operations.

• Monitor the dark web for compromised credentials and data breaches.

• Develop and refine high-quality detection mechanisms using MITRE ATT&CK framework.

• Upgrade SIEM dashboards, correlation rules, and SOAR automation processes.

• Minimize false positives and boost SOC operational efficiency.

• Analyze network traffic, packet captures, and protocol behaviors.

• Investigate phishing incidents and enhance email security measures.

• Onboard and validate log sources to ensure comprehensive telemetry.

• Engage in purple teaming activities to validate detections and assess defenses.

• Bachelor’s degree in computer science, Computer Engineering, a related field, or equivalent professional experience.

• A minimum of 3 years' experience in SOC, incident response, threat detection, or blue team operations.

• Practical experience with SIEM/XDR platforms and alert analysis.

• Solid understanding of email security, EDR, networking, and cloud fundamentals.

• Familiarity with the MITRE ATT&CK framework and cyber kill chain concepts.

• Proficient in Linux, basic scripting, and API tools (such as Postman).

• Preferred certifications include CompTIA CySA+ and GCIH.

• Work from home options available.

• Flexibility for in-office or hybrid work arrangements.

• Participation in Employee Belonging Groups.

• Comprehensive healthcare benefits including Dental, Medical, and Vision coverage.

• Paid time off for vacation, volunteering, and holidays.

• And so much more!

Information Security Analyst II

People also viewed