SOC Analyst L3Confidential • Noida, India
SOC Analyst L3
Confidential • Noida, India
15 days ago
Job descriptionLead targeted threat hunting activities based on hypotheses and threat intelligence using KQL, MITRE ATT&CK, and behavioral analytics. Design and develop advanced detection content (Sigma rules, UEBA baselines, custom rules) across SIEM and EDR platforms. Identify and close detection gaps through continuous telemetry analysis and logic refinement. Coordinate log source visibility reviews, baselining, and high-fidelity use case design. Produce and distribute Weekly Threat Intelligence Digests summarizing current threats, attack trends, and IOCs relevant to customer environments. Map observed activities to TTPs and threat actor profiles. Maintain threat dashboards and feed integrations to support proactive defense. Lead biweekly Alert Tuning efforts to analyze false positives, adjust thresholds, and suppress noisy detections. Deliver a formal Biweekly Alert Tuning Report outlining tuning actions, impact assessments, and next steps. Collaborate with content authors to implement rule changes and push updates to production environments via controlled change processes. Serve as the final escalation point for Priority 1 (P1) or crisis-level incidents, ensuring incident bridge calls, executive reporting, and customer coordination occur within SLA timelines. Perform deep-dive investigations into root causes and adversary techniques. Own incident post-mortems and RCA (Root Cause Analysis) documentation. Ensure compliance with the IR lifecycle from detection to closure, with audit-ready documentation. Prepare and deliver Monthly and Quarterly Security Reports to MSSP clients covering : Alert trends, threat landscape updates, SLA / KPI dashboards Executive summaries, incident breakdowns, and risk remediation insights Present findings to customer stakeholders via scheduled service review meetings and executive briefings. Ensure SLA compliance targets are tracked and reported, including MTTD, MTTR, escalation compliance, and false positive rates. Plan, facilitate, and report on Quarterly Incident Response Tabletop Exercises with internal and external stakeholders. Develop realistic, role-based tabletop scenarios (ransomware, insider threat, data exfiltration, etc.). Deliver Tabletop Exercise Reports with participant feedback, lessons learned, and actionable improvements. Contribute to MSSP onboarding by helping define : Log source mapping and ingestion validation Detection rule baselines, alert taxonomy, and escalation matrix Secure communication procedures and SLA / OLA handoff alignment Support pre-engagement risk assessments and operational readiness reviews. Bachelor's Degree in Cybersecurity, Computer Science, Information Systems, or related field. Master's Degree is a plus. Microsoft Certified : Security Operations Analyst Associate GIAC (GCIA, GCIH, GCFA, GNFA) CompTIA CySA+, CASP+, or equivalent MITRE ATT&CK Defender (MAD) certification is advantageous Expert in SIEM technologies (Microsoft Sentinel preferred), KQL, log analysis, and data correlation. Hands-on experience with EDR tools (Defender for Endpoint, CrowdStrike, etc.). Strong knowledge of MITRE ATT&CK, NIST IR lifecycle, and threat modeling. Familiarity with threat intel platforms (MISP, Anomaly, Recorded Future). Understanding of cloud security (Azure, M365, hybrid environments). Strong presentation and documentation skills, especially for executive and customer audiences. Proven ability to lead and manage cross-functional engagements (internal & external). Analytical mindset with an investigative approach to threat detection. Ability to work independently in high-pressure and time-sensitive environments. Proven English communication skills supported by professional certifications such as IELTS, TOEIC, or BEC. Ability to write technical and executive-level documentation in English, including reports, presentations, and incident summaries. 8-10+ years of experience in cybersecurity operations, with at least 2 years in a Level 2 or Level 3 SOC role. Experience in delivering threat hunts, writing detection content, and handling major security incidents. Prior MSSP experience or customer-facing security role is a significant advantage.
Job Title : Level 3 Security Operations Center (SOC) Analyst
Job Type : Full Time
Job Location :
- WORK FROM NOIDA OFFICE, PLEASE DON'T APPLY IF YOU ARE LOOKING FOR HYBRID OR WORK FROM HOME
- Short notice period or immediate joiners are preferred.
SOC Analyst L3
Job Title : Level 3 Security Operations Center (SOC) Analyst
Job Type : Full-Time / Contract
Job Overview :
As a Level 3 SOC Analyst, you will lead advanced threat hunting, detection engineering, and incident response planning activities within a 24 / 7 MSSP environment. You'll act as a strategic escalation point for complex incidents and bridge threat intelligence, engineering, and client-facing security functions. You will also be responsible for delivering high-impact deliverables, such as Threat Intelligence Digests, Alert Tuning Reports, and Customer-Facing Security Presentations—all aligned to operational SLAs and governance frameworks.
This role requires strong leadership, technical expertise in modern SIEM and EDR platforms (especially Microsoft Sentinel), and experience in executing MSSP service delivery obligations, including IR tabletop exercises, SLA / KPI dashboards, and quarterly threat reviews.
Key Responsibilities :
1. Advanced Threat Hunting & Detection Engineering
2. Threat Intelligence & Operational Reporting
3. Alert Tuning & Detection Optimization
4. Incident Response Leadership & Crisis Escalation
5. MSSP Reporting & Executive Briefings
6. IR Tabletop Exercise Management
7. SOC Governance & Pre-Onboarding Support
Required Skills & Qualifications :
1. Education :
2. Certifications (Preferred) :
3. Technical Skills :
4. Soft Skills :
Experience :
Skills Required
Cloud Security, M365, threat modeling , crowdstrike , Azure
Create a job alert for this search
Soc Analyst • Noida, India
Related jobs
SOC Design Verification Lead
L&T Technology Services • Delhi, India
L&T Technologies is looking to hire for SOC DV Lead role.Job Location : Bangalore Job Title : SoC DV Lead YEARS OF EXPERIENCE : 8+ Years.
JOB DESCRIPTION : Expertise in verifying.Develop functional t...Show more
Last updated: 30+ days ago • Promoted
SOC Lead
Confidential • Noida, India
At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day.
So why work at Kyndryl We are always moving forward – always pushing o...Show more
Last updated: 11 days ago • Promoted
Field CTO - Solutions Engineering - SecOps - SOAR, SIEM, DLP
CareerXperts Consulting • ghaziabad, uttar pradesh, in
Ready to Shape the Future of AI Security?.We're not looking for someone who just talks tech—we need a.Imagine this : You're in the room when a Fortune 500 CISO asks, "How do we stop AI from becoming...Show more
Last updated: 16 days ago • Promoted
L2 SOC
alliantgroup • Delhi, India
Role : L2 SOC Location : Hyderabad Shift Timings : Rotational.The company was founded in 2002 and is headquartered in Houston, Texas.
These credits and incentives are designed to encourage businesses t...Show more
Last updated: 30+ days ago • Promoted
SOC Lead
ITC Infotech • Delhi, India
SOC Lead Location : Bangalore Mode : Hybrid.Role Summary : Lead and manage day-to-day SOC operations to ensure proactive detection and response to cyber threats.
Drive operational excellence, process m...Show more
Last updated: 22 days ago • Promoted
SOC Analyst - Vulnerability Management
ValueLabs • Delhi, India
We are seeking a skilled and detail-oriented.Cybersecurity Risk & Vulnerability Engineer.The ideal candidate will have hands-on experience with industry-standard tools and frameworks, and a strong ...Show more
Last updated: 12 days ago • Promoted
SOC Engineer - L3
ITC Infotech • Delhi, India
Location : Hyderabad Mode : Hybrid.Role Summary Act as the senior-level analyst responsible for handling complex security incidents and advanced threats.
Lead investigations, triage escalations from L...Show more
Last updated: 22 days ago • Promoted
SOC Specialist
Best NanoTech • Delhi, India
Minimum 5 years of relevant experience in verification, preferably at the SoC level Must have completed at least one SoC-level verification project Strong understanding of ARM M-series core operati...Show more
Last updated: 1 day ago • Promoted
BDO Rise is hiring for our Digital Team SOC Analyst - Azure Sentinel Mandatory - Bangalore / Ahmedabad
BDO RISE Private Limited • Delhi, India
Job Duties : Escalation and investigation of complex or high-severity security incidents.Utilize advanced KQL queries for threat hunting, log analysis, and incident investigations in Microsoft Senti...Show more
Last updated: 6 days ago • Promoted
VLSI - SOC / ASIC Verification Lead / Manager
HCLTech • Delhi, India
You are a highly skilled and experienced SoC Verification Lead with a passion for pushing the boundaries of technology.With a minimum of 5 to 20Years of experience in the SoC / IP / Subsystems verifica...Show more
Last updated: 6 days ago • Promoted
SOC Analyst
Confidential • Delhi, India
YipitData is the leading market research and analytics firm for the disruptive economy and most recently raised $475M from The Carlyle Group at a valuation of over $1B.
Every day, our proprietary te...Show more
Last updated: 8 days ago • Promoted
SOC SupportL2 / L3
Confidential • Noida
Teamware Solutions is seeking a dedicated.You'll be a critical part of our cybersecurity team, responsible for advanced threat detection, incident response, and in-depth analysis of security events...Show more
Last updated: 30+ days ago • Promoted
L1 SOC Analyst
UST • Delhi, India
UST is looking for a L1 SOC Analyst with atleast 2-3 years of exp.NP : Immediate to 30 days only.Location : Kochi, Trivandrum, Hyderabad.
The primary role of a SOC Level 1 Analyst is to serve as the ...Show more
Last updated: 20 days ago • Promoted
L2 Security Analyst- SOC Advanced
Art Technology and Software • Delhi, India
Job Title : Infosec L2 Security Analyst (Security Operations Center - Advanced).Location : From Kochi Office (Onsite).The L2 Security Analyst is responsible for performing advanced incident analysis,...Show more
Last updated: 30+ days ago • Promoted
SoC Chip Lead
NXP Semiconductors • Noida, Uttar Pradesh, India
MPU Engineering team defines and develops System on Chip, ASIC’s, Digital and Analog IP’s for a wide range of products, including automotive microprocessors, application processors, microcontroller...Show more
Last updated: 30+ days ago • Promoted
Embedded Senior Crisis & Security Analyst (RSOC-Pune)
Hill & Associates Limited • Delhi, India
About the Company Hill & Associates (www.H&A”) is a leading international enterprise security and risk management consultancy owned by the G4S group, an Allied Universal ®Company.H&A provides consu...Show more
Last updated: 2 days ago • Promoted
SOC ANALYST
Confidential • Noida, India
As a leading provider of AI-powered extended managed detection and response (MXDR) services, Ontinue is on a mission to be the most trusted, 24 / 7, always-on security partner that empowers customers...Show more
Last updated: 16 days ago • Promoted
Lead
Mindsprint • Delhi, India
SOC Tools Engineering and Operation lead at Mindsprint, Chennai.Exp : 5-9 Years Job location : Chennai Work Mode : Hybrid Qualification : BE / BTech / MSC / or equivalent degree Notice period : 0-30 days.How...Show more
Last updated: 22 days ago • Promoted