SOC Analyst L3Confidential • Noida, India
SOC Analyst L3
Confidential • Noida, India
6 days ago
Job descriptionLead targeted threat hunting activities based on hypotheses and threat intelligence using KQL, MITRE ATT&CK, and behavioral analytics. Design and develop advanced detection content (Sigma rules, UEBA baselines, custom rules) across SIEM and EDR platforms. Identify and close detection gaps through continuous telemetry analysis and logic refinement. Coordinate log source visibility reviews, baselining, and high-fidelity use case design. Produce and distribute Weekly Threat Intelligence Digests summarizing current threats, attack trends, and IOCs relevant to customer environments. Map observed activities to TTPs and threat actor profiles. Maintain threat dashboards and feed integrations to support proactive defense. Lead biweekly Alert Tuning efforts to analyze false positives, adjust thresholds, and suppress noisy detections. Deliver a formal Biweekly Alert Tuning Report outlining tuning actions, impact assessments, and next steps. Collaborate with content authors to implement rule changes and push updates to production environments via controlled change processes. Serve as the final escalation point for Priority 1 (P1) or crisis-level incidents, ensuring incident bridge calls, executive reporting, and customer coordination occur within SLA timelines. Perform deep-dive investigations into root causes and adversary techniques. Own incident post-mortems and RCA (Root Cause Analysis) documentation. Ensure compliance with the IR lifecycle from detection to closure, with audit-ready documentation. Prepare and deliver Monthly and Quarterly Security Reports to MSSP clients covering : Alert trends, threat landscape updates, SLA / KPI dashboards Executive summaries, incident breakdowns, and risk remediation insights Present findings to customer stakeholders via scheduled service review meetings and executive briefings. Ensure SLA compliance targets are tracked and reported, including MTTD, MTTR, escalation compliance, and false positive rates. Plan, facilitate, and report on Quarterly Incident Response Tabletop Exercises with internal and external stakeholders. Develop realistic, role-based tabletop scenarios (ransomware, insider threat, data exfiltration, etc.). Deliver Tabletop Exercise Reports with participant feedback, lessons learned, and actionable improvements. Contribute to MSSP onboarding by helping define : Log source mapping and ingestion validation Detection rule baselines, alert taxonomy, and escalation matrix Secure communication procedures and SLA / OLA handoff alignment Support pre-engagement risk assessments and operational readiness reviews. Bachelor's Degree in Cybersecurity, Computer Science, Information Systems, or related field. Master's Degree is a plus. Microsoft Certified : Security Operations Analyst Associate GIAC (GCIA, GCIH, GCFA, GNFA) CompTIA CySA+, CASP+, or equivalent MITRE ATT&CK Defender (MAD) certification is advantageous Expert in SIEM technologies (Microsoft Sentinel preferred), KQL, log analysis, and data correlation. Hands-on experience with EDR tools (Defender for Endpoint, CrowdStrike, etc.). Strong knowledge of MITRE ATT&CK, NIST IR lifecycle, and threat modeling. Familiarity with threat intel platforms (MISP, Anomaly, Recorded Future). Understanding of cloud security (Azure, M365, hybrid environments). Strong presentation and documentation skills, especially for executive and customer audiences. Proven ability to lead and manage cross-functional engagements (internal & external). Analytical mindset with an investigative approach to threat detection. Ability to work independently in high-pressure and time-sensitive environments. Proven English communication skills supported by professional certifications such as IELTS, TOEIC, or BEC. Ability to write technical and executive-level documentation in English, including reports, presentations, and incident summaries. 8-10+ years of experience in cybersecurity operations, with at least 2 years in a Level 2 or Level 3 SOC role. Experience in delivering threat hunts, writing detection content, and handling major security incidents. Prior MSSP experience or customer-facing security role is a significant advantage.
Job Title : Level 3 Security Operations Center (SOC) Analyst
Job Type : Full Time
Job Location :
- WORK FROM NOIDA OFFICE, PLEASE DON'T APPLY IF YOU ARE LOOKING FOR HYBRID OR WORK FROM HOME
- Short notice period or immediate joiners are preferred.
SOC Analyst L3
Job Title : Level 3 Security Operations Center (SOC) Analyst
Job Type : Full-Time / Contract
Job Overview :
As a Level 3 SOC Analyst, you will lead advanced threat hunting, detection engineering, and incident response planning activities within a 24 / 7 MSSP environment. You'll act as a strategic escalation point for complex incidents and bridge threat intelligence, engineering, and client-facing security functions. You will also be responsible for delivering high-impact deliverables, such as Threat Intelligence Digests, Alert Tuning Reports, and Customer-Facing Security Presentations—all aligned to operational SLAs and governance frameworks.
This role requires strong leadership, technical expertise in modern SIEM and EDR platforms (especially Microsoft Sentinel), and experience in executing MSSP service delivery obligations, including IR tabletop exercises, SLA / KPI dashboards, and quarterly threat reviews.
Key Responsibilities :
1. Advanced Threat Hunting & Detection Engineering
2. Threat Intelligence & Operational Reporting
3. Alert Tuning & Detection Optimization
4. Incident Response Leadership & Crisis Escalation
5. MSSP Reporting & Executive Briefings
6. IR Tabletop Exercise Management
7. SOC Governance & Pre-Onboarding Support
Required Skills & Qualifications :
1. Education :
2. Certifications (Preferred) :
3. Technical Skills :
4. Soft Skills :
Experience :
Skills Required
Cloud Security, M365, threat modeling , crowdstrike , Azure
Create a job alert for this search
Soc Analyst • Noida, India
Related jobs
SOC Analyst
Confidential • Gurgaon / Gurugram, India
Monitor SIEM Console & Dashboards and provide response to the internal team on reported incidents.Monitor and review the activities.
Monitor & Reporting of system components health and take necessar...Show more
Last updated: 17 days ago • Promoted
SOC L1 Analyst
ASSYSTEM • Gurugram, Haryana, India
As a member of the Assystem SOC team you will join an international and senior team in a very demanding unit.You will be expected to learn quickly and multi-task.
After the first training session yo...Show more
Last updated: 25 days ago • Promoted
SOC Lead
Confidential • Noida, India
At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day.
So why work at Kyndryl We are always moving forward - always pushing o...Show more
Last updated: 2 days ago • Promoted
ChargePoint - Senior SOC Analyst - SIEM
ChargePoint • Gurgaon
About Us : With electric vehicles expected to be nearly 30% of new vehicle sales by 2025 and more than 50% by 2040, electric mobility is be...Show more
Last updated: 30+ days ago • Promoted
SOC Analyst - SIEM Tools
Workassist • Gurgaon
Title : SOC Analyst Function : Cyber Security Operations / Managed Detection and Response (MDR) Experience : 3...Show more
Last updated: 28 days ago • Promoted
SOC Analyst L3 (Sentinel is must)
Confidential • Gurgaon / Gurugram
To support our continued success and deliver a Fanatical Experience to our customers, Rackspace Cyber Defence is looking for an Indian based Security Operations Analyst (L3) to support Rackspaces s...Show more
Last updated: 30+ days ago • Promoted
SOC Analyst (Tier 2)
Confidential • Noida, India
You will investigate escalations from Tier 1, perform deep-dive analysis, and assist in coordinating response efforts.Investigate escalated security alerts, incidents, and vulnerabilities.Analyze l...Show more
Last updated: 5 days ago • Promoted
SOC Lead
ITC Infotech • Delhi, India
SOC Lead Location : Bangalore Mode : Hybrid.Role Summary : Lead and manage day-to-day SOC operations to ensure proactive detection and response to cyber threats.
Drive operational excellence, process m...Show more
Last updated: 13 days ago • Promoted
SIEM / SOC Analyst
Tata Consultancy Services • Noida, Republic Of India, IN
TCS has been a great pioneer in feeding the fire of Young Techies like you.We are a global leader in the technology arena and there's nothing that can stop us from growing together.Role • • : Cyber Se...Show more
Last updated: 13 days ago • Promoted
SOC Analyst L1 / L2
Confidential • Gurgaon / Gurugram, India
Qualified Degree in Engineering, or equivalent in Computer Science / IT / MCA with minimum 3 years of experience for L1 Analyst.
Computers) with minimum 5 years of Experience for L1 Analyst).Minimum o...Show more
Last updated: 7 days ago • Promoted
Senior SOC Analyst
Confidential • Gurgaon / Gurugram, India
With electric vehicles expected to be nearly 30% of new vehicle sales by 2025 and more than 50% by 2040, electric mobility is becoming a reality.
ChargePoint (NYSE : CHPT) is at the center of this re...Show more
Last updated: 13 days ago • Promoted
SOC Analyst - L1 & L2
Confidential • Gurgaon / Gurugram, Delhi, Noida
We are seeking a motivated and skilled SOC Analyst - L1 & L2 to join our cybersecurity team in India.The ideal candidate will play a crucial role in monitoring and responding to security incidents,...Show more
Last updated: 7 days ago • Promoted
soc analyst
Confidential • Gurgaon / Gurugram, Delhi NCR
Qualified Degree in Engineering, or equivalent in Computer Science / IT / MCA with minimum 3 years of experience for L1 Analyst.
Computers) with minimum 5 years of Experience for L1 Analyst).Minimum o...Show more
Last updated: 7 days ago • Promoted
SOC SupportL2 / L3
Confidential • Noida
Teamware Solutions is seeking a dedicated.You'll be a critical part of our cybersecurity team, responsible for advanced threat detection, incident response, and in-depth analysis of security events...Show more
Last updated: 30+ days ago • Promoted
SOC Level-1 Analyst
Confidential • Delhi, India
The Security Operation Centre (SOC) Information Security Analyst is the first level of monitoring in the SOC.The position monitors and responds to security events from managed customer security sys...Show more
Last updated: 17 days ago • Promoted
SOC 2
Confidential • Noida, India
AIG is looking for experienced soc 2 consultants on full / part time and contractual role.Preffered skills are- SOC monitoring, working knowledge in any of the SIEM tools like ArcSight , Qradar , Spl...Show more
Last updated: 12 days ago • Promoted
SOC Analyst L2
Confidential • Gurgaon / Gurugram
Experience in security device management and SIEM ( Alienvault, ELK, Splunk, Wazuh, etc ).Experience in Forensics and Mitigation.
In-depth knowledge of security concepts such as cyber-attacks and te...Show more
Last updated: 5 days ago • Promoted
SOC ANALYST
Confidential • Noida, India
As a leading provider of AI-powered extended managed detection and response (MXDR) services, Ontinue is on a mission to be the most trusted, 24 / 7, always-on security partner that empowers customers...Show more
Last updated: 7 days ago • Promoted