SOC Content Detection EngineerSanganan IT Solutions Pvt Ltd. • India
No longer accepting applications
SOC Content Detection Engineer
Sanganan IT Solutions Pvt Ltd. • India
30+ days ago
Job descriptionDesign and implement custom detection rules using KQL , Sigma , and behavioral analytics. Map detection logic to MITRE ATT&CK techniques and threat actor profiles. Develop UEBA baselines and anomaly detection use cases. Analyze alert performance and lead biweekly tuning cycles to reduce false positives. Collaborate with L2 / L3 analysts to refine detection thresholds and suppression logic. Maintain a detection content repository with version control and change logs. Conduct log source visibility reviews and telemetry gap analysis. Recommend log onboarding priorities based on threat coverage and customer environments. Validate parsing, normalization, and enrichment of ingested data. Operationalize threat intelligence into detection content and hunt scenarios. Integrate IOCs, TTPs, and threat actor indicators into rule logic and enrichment workflows. Maintain detection playbooks, rule documentation, and tuning reports. Ensure detection content aligns with MSSP governance frameworks and audit requirements. Support change control processes for rule deployment and rollback. Work closely with SOC analysts, onboarding consultants, and automation engineers. Provide training and guidance on detection logic, rule writing, and tuning best practices. Participate in incident post-mortems to identify detection gaps and improvement areas. Bachelor’s degree in Cybersecurity, Computer Science, or related field. Required : Microsoft Certified : Security Operations Analyst Associate Preferred : MITRE ATT&CK Defender (MAD), GIAC (GCIA, GMON), CompTIA CySA+ Expert-level proficiency in KQL, Microsoft Sentinel, and Defender XDR. Experience with Sigma rule development, UEBA, and SIEM tuning. Strong understanding of log source telemetry, data normalization, and alert lifecycle. Familiarity with threat intelligence platforms and MITRE ATT&CK mapping. Analytical mindset with strong attention to detail. Excellent documentation and presentation skills. Ability to collaborate across technical and operational teams. Fluent English communication skills (spoken and written). 5+ years in SOC or cybersecurity operations , with at least 2 years in detection engineering or SIEM content development . Prior experience in MSSP environments or multi-tenant SOC platforms is highly preferred.
Department : Managed Services & Support & Security Operations Center (SOC)
Job Type : Full-Time
Reports To : SOC Team Lead / Head of Cybersecurity Services
Full-time
- WORK FROM NOIDA OFFICE, PLEASE DON'T APPLY IF YOU ARE LOOKING FOR HYBRID OR WORK FROM HOME
- Short notice period or immediate joiners are preferred.
Job Overview :
We are seeking a technically skilled and detail-oriented SOC Content Detection Engineer to lead the development, optimization, and governance of detection content across Microsoft Sentinel and Defender XDR platforms. This role is critical to ensuring high-fidelity alerting, minimizing false positives, and aligning detection logic with threat intelligence and MITRE ATT&CK frameworks. The ideal candidate will have deep experience in KQL, Sigma rule development, and SOC telemetry analysis within MSSP environments.
Key Responsibilities :
1. Detection Content Development
2. Alert Tuning & Optimization
3. Telemetry & Visibility Engineering
4. Threat Intelligence Integration
5. Governance & Documentation
6. Collaboration & Enablement
Required Skills & Qualifications :
1. Education
2. Certifications
3. Technical Skills
4. Soft Skills
Experience :
Create a job alert for this search
Soc Engineer • India
Related jobs
Principal SoC Design Verification Methodology Engineer
Mulya Technologies • India, India
Principal Gen AI based SoC Design Verification Methodology Engineer.We are a US based Stealth mode Start-up.Hyderabad / Bangalore / Remote ( any where in India ).
We unify the processes used in Semi...Show more
Last updated: 30+ days ago • Promoted
L2 Security Analyst- Soc Advanced
Art Technology and Software • Cochin, Republic Of India, IN
Job Title : Infosec L2 Security Analyst (Security Operations Center - Advanced).Location : From Kochi Office (Onsite).The L2 Security Analyst is responsible for performing advanced incident analysis,...Show more
Last updated: 30+ days ago • Promoted
Soc Content Detection Engineer
Sanganan IT Solutions Pvt Ltd. • Republic Of India, IN
Managed Services & Support & Security Operations Center (SOC).SOC Team Lead / Head of Cybersecurity Services.WORK FROM NOIDA OFFICE, PLEASE DON'T APPLY IF YOU ARE LOOKING FOR HYBRID OR WORK FROM HO...Show more
Last updated: 18 hours ago • Promoted • New!
AKS Container Security Engineer
Xsell Resources • India, India
We are urgently seeking a Certified CKA / CKS Senior AKS Container Security Engineer for our healthcare client.Open to Immediate joiners only.
We are seeking a highly skilled AKS (Azure Kubernetes Ser...Show more
Last updated: 8 days ago • Promoted
Senior 3D Secure Implementation specialist
Art Technology and Software • India, India
Client Implementation & Onboarding : .Lead end-to-end client 3DS implementations, including onboarding, integration, testing, and go-live for 3DS solutions.
Collaborate with cross-functional teams to ...Show more
Last updated: 24 days ago • Promoted
L2 / L2.5 Security Operations Center (Soc) Analyst
TOCUMULUS • Chennai, Republic Of India, IN
We are seeking a skilled and detail-oriented L2 / L2.Security Operations Center (SOC) Analyst to join our Security Operations team.
This role sits at the critical intersection of threat detection, inc...Show more
Last updated: 5 days ago • Promoted
Principal Technical Engineer - Pharmacovigilance Signal Detection Solutions
Qinecsa Solutions • India, India
Principal Technical Engineer - Pharmacovigilance Signal Detection Solutions.We are seeking a Principal Technical Engineer to design and develop pharmacovigilance signal detection solutions based on...Show more
Last updated: 5 days ago • Promoted
Cyber Security Engineer
CareerUS Solutions • India, India
Cyber Security Engineer – Job Description.The Cyber Security Engineer is responsible for designing, implementing, and maintaining security systems to protect the organization’s computer networks, a...Show more
Last updated: 18 days ago • Promoted
Cyber Security Specialist
Innefu Labs • India
We are seeking experienced and detail-oriented professionals for the role.The selected candidates will be responsible for assisting cybercrime investigations by collecting and analysing digital evi...Show more
Last updated: 27 days ago • Promoted
TAVS Tech Cyber Security Specialist / Engineer | Pune
DigiHelic Solutions Pvt. Ltd. • India, India
Title : TAVS Tech Cyber Security Specialist.Strong hands-on experience with HashiCorp Vault (preferred) or CyberArk / CA PAM.
Good understanding of security protocols : HTTP / HTTPS, TLS, REST / SOAP, SAM...Show more
Last updated: 13 hours ago • Promoted • New!
Cloud Security and DevOps Engineer
Recfront • India, India
Cloud Security and DevOps Engineer (GCP + AI-Driven) .Our client is redefining hormone health by blending clinical expertise, data-driven innovation, and a fully integrated digital platform.They em...Show more
Last updated: 2 days ago • Promoted
Soc Manager
Network Intelligence • Republic Of India, IN
The SOC Manager will lead and mature the Security Operations Center (SOC), overseeing threat monitoring, detection, incident response, and overall security operations.
This role requires strong lead...Show more
Last updated: 18 days ago • Promoted
Information Security Manager - US
Scrut Automation • India, India
Job Description : Information Security Manager - US.Position : Information Security Manager - US.Shift Timing : 6 : 00 PM - 3 : 00 AM IST.
Scrut Automation is an information security and compliance monit...Show more
Last updated: 1 day ago • Promoted
Lead Security Engineer
Arcana • India, India
As our Lead Security Engineer, you'll own and elevate Arcana's overall security posture - cloud, on-prem, and everything in between.
You'll design and enforce policies, automate controls, and harden...Show more
Last updated: 30+ days ago • Promoted
Security Operations Engineer
ITPeopleNetwork • India
We are looking for a junior to mid-level.Saviynt Identity Access Management (IAM / IGA).CyberArk Endpoint Privilege Manager (EPM).
The ideal candidate will assist in user access governance, email thre...Show more
Last updated: 10 days ago • Promoted
Staff SoC Design Verification Methodology Engineer
Mulya Technologies • India, India
Staff based SoC Design Verification Methodology Engineer.We are a US based Stealth mode Start-up.Hyderabad / Bangalore / Remote ( any where in India ).
We unify the processes used in Semiconductor a...Show more
Last updated: 30+ days ago • Promoted
Senior Application Security Engineer
Sphera • India, India
Sphera is a leading global provider of enterprise software and services that enables companies to manage and optimize their environmental, health, safety and sustainability.Our mission is to create...Show more
Last updated: 18 days ago • Promoted
AI Security Lead
Delphi Consulting Middle East • India, India
Join Delphi - Where Innovation meets transformation.At Delphi, we believe in creating an environment where our people thrive.
We are committed to supporting your personal goals, family, and overall ...Show more
Last updated: 10 days ago • Promoted