SOC Analyst L3
Sanganan IT Solutions Pvt Ltd.Noida, Uttar Pradesh, India16 hours ago
Job descriptionLead targeted threat hunting activities based on hypotheses and threat intelligence using KQL, MITRE ATT&CK, and behavioral analytics. Design and develop advanced detection content (Sigma rules, UEBA baselines, custom rules) across SIEM and EDR platforms. Identify and close detection gaps through continuous telemetry analysis and logic refinement. Coordinate log source visibility reviews, baselining, and high-fidelity use case design. Produce and distribute Weekly Threat Intelligence Digests summarizing current threats, attack trends, and IOCs relevant to customer environments. Map observed activities to TTPs and threat actor profiles. Maintain threat dashboards and feed integrations to support proactive defense. Lead biweekly Alert Tuning efforts to analyze false positives, adjust thresholds, and suppress noisy detections. Deliver a formal Biweekly Alert Tuning Report outlining tuning actions, impact assessments, and next steps. Collaborate with content authors to implement rule changes and push updates to production environments via controlled change processes. Serve as the final escalation point for Priority 1 (P1) or crisis-level incidents, ensuring incident bridge calls, executive reporting, and customer coordination occur within SLA timelines. Perform deep-dive investigations into root causes and adversary techniques. Own incident post-mortems and RCA (Root Cause Analysis) documentation. Ensure compliance with the IR lifecycle from detection to closure, with audit-ready documentation. Prepare and deliver Monthly and Quarterly Security Reports to MSSP clients covering : Alert trends, threat landscape updates, SLA / KPI dashboards Executive summaries, incident breakdowns, and risk remediation insights Present findings to customer stakeholders via scheduled service review meetings and executive briefings. Ensure SLA compliance targets are tracked and reported, including MTTD, MTTR, escalation compliance, and false positive rates. Plan, facilitate, and report on Quarterly Incident Response Tabletop Exercises with internal and external stakeholders. Develop realistic, role-based tabletop scenarios (ransomware, insider threat, data exfiltration, etc.). Deliver Tabletop Exercise Reports with participant feedback, lessons learned, and actionable improvements. Contribute to MSSP onboarding by helping define : Log source mapping and ingestion validation Detection rule baselines, alert taxonomy, and escalation matrix Secure communication procedures and SLA / OLA handoff alignment Support pre-engagement risk assessments and operational readiness reviews. Bachelor’s Degree in Cybersecurity, Computer Science, Information Systems, or related field. Master’s Degree is a plus. Microsoft Certified : Security Operations Analyst Associate GIAC (GCIA, GCIH, GCFA, GNFA) CompTIA CySA+, CASP+, or equivalent MITRE ATT&CK Defender (MAD) certification is advantageous Expert in SIEM technologies (Microsoft Sentinel preferred), KQL, log analysis, and data correlation. Hands-on experience with EDR tools (Defender for Endpoint, CrowdStrike, etc.). Strong knowledge of MITRE ATT&CK, NIST IR lifecycle, and threat modeling. Familiarity with threat intel platforms (MISP, Anomaly, Recorded Future). Understanding of cloud security (Azure, M365, hybrid environments). Strong presentation and documentation skills, especially for executive and customer audiences. Proven ability to lead and manage cross-functional engagements (internal & external). Analytical mindset with an investigative approach to threat detection. Ability to work independently in high-pressure and time-sensitive environments. Proven English communication skills supported by professional certifications such as IELTS, TOEIC, or BEC. Ability to write technical and executive-level documentation in English, including reports, presentations, and incident summaries. 8-10+ years of experience in cybersecurity operations, with at least 2 years in a Level 2 or Level 3 SOC role. Experience in delivering threat hunts, writing detection content, and handling major security incidents. Prior MSSP experience or customer-facing security role is a significant advantage.
Job Title : Level 3 Security Operations Center (SOC) Analyst
Job Type : Full Time
Job Location :
- WORK FROM NOIDA OFFICE, PLEASE DON'T APPLY IF YOU ARE LOOKING FOR HYBRID OR WORK FROM HOME
- Short notice period or immediate joiners are preferred.
SOC Analyst L3
Job Title : Level 3 Security Operations Center (SOC) Analyst
Job Type : Full-Time / Contract
Job Overview :
As a Level 3 SOC Analyst, you will lead advanced threat hunting, detection engineering, and incident response planning activities within a 24 / 7 MSSP environment. You’ll act as a strategic escalation point for complex incidents and bridge threat intelligence, engineering, and client-facing security functions. You will also be responsible for delivering high-impact deliverables, such as Threat Intelligence Digests, Alert Tuning Reports, and Customer-Facing Security Presentations—all aligned to operational SLAs and governance frameworks.
This role requires strong leadership, technical expertise in modern SIEM and EDR platforms (especially Microsoft Sentinel), and experience in executing MSSP service delivery obligations, including IR tabletop exercises, SLA / KPI dashboards, and quarterly threat reviews.
Key Responsibilities :
1. Advanced Threat Hunting & Detection Engineering
2. Threat Intelligence & Operational Reporting
3. Alert Tuning & Detection Optimization
4. Incident Response Leadership & Crisis Escalation
5. MSSP Reporting & Executive Briefings
6. IR Tabletop Exercise Management
7. SOC Governance & Pre-Onboarding Support
Required Skills & Qualifications :
1. Education :
2. Certifications (Preferred) :
3. Technical Skills :
4. Soft Skills :
Experience :
Create a job alert for this search
Soc Analyst • Noida, Uttar Pradesh, India
Related jobs
)
- Promoted
- New!
SOC Analyst L3
Sanganan IT Solutions Pvt Ltd.Noida, Uttar Pradesh, India Level 3 Security Operations Center (SOC) Analyst.WORK FROM NOIDA OFFICE, PLEASE DON'T APPLY IF YOU ARE LOOKING FOR HYBRID OR WORK FROM HOME.
Short notice period or immediate joiners are preferred.Le...Show moreLast updated: 1 hour ago
- Promoted
SOC Analyst
ConfidentialGurgaon / Gurugram, India Monitor SIEM Console & Dashboards and provide response to the internal team on reported incidents.Monitor and review the activities.
Monitor & Reporting of system components health and take necessar...Show moreLast updated: 9 days ago
- Promoted
SOC Engineer
Webologix Ltd / INCDelhi, India Review daily operational activities and timely mentor junior analysts - Conduct detailed analysis on escalated events and handover the call to the Incident Response team along with appropriate evid...Show moreLast updated: 30+ days ago
- Promoted
SOC Admin
NMS ConsultantDelhi, India We are looking for an experienced SOC Administrator to join our cybersecurity team.The ideal candidate will have strong hands-on experience in managing and developing use cases within Security Info...Show moreLast updated: 1 day ago
- Promoted
ChargePoint - Senior SOC Analyst - SIEM
ChargePointGurgaon About Us : With electric vehicles expected to be nearly 30% of new vehicle sales by 2025 and more than 50% by 2040, electric mobility is be...Show moreLast updated: 30+ days ago
- Promoted
Capgemini - SOC Operations Analyst - SIEM
Capgemini Technology Services India LimitedGurugram SOC Operations : Mumbai, Pune, Hyderabad, Chennai, Noida, Gurgaon, Bangalore, Gandhinagar Choosing Capgemini means choosing a company where you will be empow...Show moreLast updated: 30+ days ago
- Promoted
SOC Analyst L3 (Sentinel is must)
ConfidentialGurgaon / Gurugram To support our continued success and deliver a Fanatical Experience to our customers, Rackspace Cyber Defence is looking for an Indian based Security Operations Analyst (L3) to support Rackspaces s...Show moreLast updated: 30+ days ago
- Promoted
SOC Lead
ITC InfotechDelhi, India Lead and manage day-to-day SOC operations to ensure proactive detection and response to cyber threats.Drive operational excellence, process maturity, and automation across SOC functions.Coordinate ...Show moreLast updated: 5 days ago
- Promoted
SOC Lead
Tata Consultancy ServicesDelhi, India Role : SOC Lead Location : Mumbai (Candidates only from Mumbai location) Type : Fulltime Interview date : 15th November 2025(Virtual Interview) Experience : 8+ Years must.
Must have hand on experience on...Show moreLast updated: 5 days ago
- Promoted
SOC & ISO 27001 Compliance Specialist
Somnetics (Som Imaging Informatics Pvt. Ltd.)Delhi, India Location : Kolkata Mode : Preferable WFO Timing : US Shift.About the role : We’re looking for a detail-driven Compliance Specialist to help lead our SOC 2 and ISO 27001 initiatives.You’ll manage aud...Show moreLast updated: 24 days ago
- Promoted
- New!
Soc Analyst L3
Sanganan IT Solutions Pvt Ltd.Noida, Republic Of India, IN Level 3 Security Operations Center (SOC) Analyst.WORK FROM NOIDA OFFICE, PLEASE DON'T APPLY IF YOU ARE LOOKING FOR HYBRID OR WORK FROM HOME.
Short notice period or immediate joiners are preferred.Le...Show moreLast updated: 11 hours ago
- Promoted
SIEM / SOC Analyst
Tata Consultancy ServicesNoida, Republic Of India, IN TCS has been a great pioneer in feeding the fire of Young Techies like you.We are a global leader in the technology arena and there's nothing that can stop us from growing together.Role • • : Cyber Se...Show moreLast updated: 5 days ago
- Promoted
SOC Engineer - L3
ITC InfotechDelhi, India Location : Hyderabad Mode : Hybrid.Role Summary Act as the senior-level analyst responsible for handling complex security incidents and advanced threats.
Lead investigations, triage escalations from L...Show moreLast updated: 5 days ago
- Promoted
SOC SupportL2 / L3
ConfidentialNoida Teamware Solutions is seeking a dedicated.You'll be a critical part of our cybersecurity team, responsible for advanced threat detection, incident response, and in-depth analysis of security events...Show moreLast updated: 30+ days ago
- Promoted
L1 SOC Analyst
USTDelhi, India UST is looking for a L1 SOC Analyst with atleast 2-3 years of exp.NP : Immediate to 30 days only.Location : Kochi, Trivandrum, Hyderabad.
The primary role of a SOC Level 1 Analyst is to serve as the ...Show moreLast updated: 3 days ago
- Promoted
L2 Security Analyst- SOC Advanced
Art Technology and SoftwareDelhi, India Job Title : Infosec L2 Security Analyst (Security Operations Center - Advanced) Location : From Kochi Office (Onsite).Job Summary : The L2 Security Analyst is responsible for performing advanced incid...Show moreLast updated: 26 days ago
- Promoted
Lead
MindsprintDelhi, India SOC Tools Engineering and Operation lead at Mindsprint, Chennai.Qualification : BE / BTech / MSC / or equivalent degree.How to apply : Please send your updated resume to palani.
The SOC Engineering and Ope...Show moreLast updated: 5 days ago
- Promoted
RTL Design Integration Lint / CDC
Sequentia Technologies pvt ltdDelhi, India RTL Design Integration Lint / CDC 3-10 Yrs Exp Notice Period : Immediate to 1 Month BLR / Hyd locations.Experience with micro architecture design and system design.
Strong background in RTL design Verilo...Show moreLast updated: 12 days ago