This job offer is not available in your country.
SOC Content Detection Engineer
Sanganan IT Solutions Pvt Ltd.Noida, Uttar Pradesh, India1 day ago
Job descriptionAnalyze alert performance and lead biweekly tuning cycles to reduce false positives. Collaborate with L2 / L3 analysts to refine detection thresholds and suppression logic. Maintain a detection content repository with version control and change logs. Conduct log source visibility reviews and telemetry gap analysis. Recommend log onboarding priorities based on threat coverage and customer environments. Validate parsing, normalization, and enrichment of ingested data. Operationalize threat intelligence into detection content and hunt scenarios. Integrate IOCs, TTPs, and threat actor indicators into rule logic and enrichment workflows. Maintain detection playbooks, rule documentation, and tuning reports. Ensure detection content aligns with MSSP governance frameworks and audit requirements. Support change control processes for rule deployment and rollback. Work closely with SOC analysts, onboarding consultants, and automation engineers. Provide training and guidance on detection logic, rule writing, and tuning best practices. Participate in incident post-mortems to identify detection gaps and improvement areas. Bachelor’s degree in Cybersecurity, Computer Science, or related field. Required : Microsoft Certified : Security Operations Analyst Associate Preferred : MITRE ATT&CK Defender (MAD), GIAC (GCIA, GMON), CompTIA CySA+ Expert-level proficiency in KQL, Microsoft Sentinel, and Defender XDR. Experience with Sigma rule development, UEBA, and SIEM tuning. Strong understanding of log source telemetry, data normalization, and alert lifecycle. Familiarity with threat intelligence platforms and MITRE ATT&CK mapping. Analytical mindset with strong attention to detail. Excellent documentation and presentation skills. Ability to collaborate across technical and operational teams. Fluent English communication skills (spoken and written). 5+ years in SOC or cybersecurity operations , with at least 2 years in detection engineering or SIEM content development . Prior experience in MSSP environments or multi-tenant SOC platforms is highly preferred.
WORK FROM NOIDA OFFICE, PLEASE DON'T APPLY IF YOU ARE LOOKING FOR HYBRID OR WORK FROM HOME
Department : Managed Services & Support & Security Operations Center (SOC)
Job Type : Full-Time
Reports To : SOC Team Lead / Head of Cybersecurity Services
Job Overview :
We are seeking a technically skilled and detail-oriented SOC Content Detection Engineer to lead the development, optimization, and governance of detection content across Microsoft Sentinel and Defender XDR platforms. This role is critical to ensuring high-fidelity alerting, minimizing false positives, and aligning detection logic with threat intelligence and MITRE ATT&CK frameworks. The ideal candidate will have deep experience in KQL, Sigma rule development, and SOC telemetry analysis within MSSP environments.
Key Responsibilities :
1. Detection Content Development
- Design and implement custom detection rules using KQL , Sigma , and behavioral analytics.
- Map detection logic to MITRE ATT&CK techniques and threat actor profiles.
- Develop UEBA baselines and anomaly detection use cases.
2. Alert Tuning & Optimization
3. Telemetry & Visibility Engineering
4. Threat Intelligence Integration
5. Governance & Documentation
6. Collaboration & Enablement
Required Skills & Qualifications :
1. Education
2. Certifications
3. Technical Skills
4. Soft Skills
Experience :
Create a job alert for this search
Soc Engineer • Noida, Uttar Pradesh, India
Related jobs
This role goes beyond traditional detection engineering : you’ll help improve and build our.AI feedback, and quantify detection efficacy at enterprise scale.
Design and maintain modular, high-fideli...Show moreLast updated: 1 day ago
- Promoted
SOC
ConfidentialGurgaon / Gurugram Minimum 2-12 years of professional experience in cybersecurity, with experience in a SOC environment.Deep understanding of networking, system administration, cloud environments (AWS / Azure / GCP) and ...Show moreLast updated: 25 days ago
- Promoted
SOC Level-1 Analyst
Airtel DigitalNew Delhi, Delhi, India The Security Operation Centre (SOC) Information Security Analyst is the first level of monitoring in the SOC.The position monitors and responds to security events from managed customer security sys...Show moreLast updated: 1 day ago
- Promoted
SOC Engineer
Webologix Ltd / INCDelhi, India Job Position : SOC Engineer Location : PAN.Experience : 5+ to 10+ Years Must have : Forensics - Others Roles Responsibilities Review daily operational activities and timely mentor junior analysts Condu...Show moreLast updated: 7 days ago
- Promoted
Director of Technical Engineering - Pharmacovigilance Signal Detection Solutions
Qinecsa SolutionsMeerut, IN Qinecsa is a trusted, global partners bringing together best-in-class technology and scientific expertise to connect life science companies, public health, and regulatory sectors to the right safet...Show moreLast updated: 21 days ago
- Promoted
AWS security engineer
JRD SystemsDelhi, IN We are seeking a highly skilled.Senior DevOps / Platform Engineer.The ideal candidate will have deep expertise in infrastructure automation, Terraform, and cloud platform management, with a strong De...Show moreLast updated: 11 days ago
- Promoted
Content Safety Expert
AceolutionMeerut, IN Your primary goal will be to identify and analyze potential safety policy violations, such as Hate Speech, Harassment, Sexually Explicit Content, Dangerous and Harmful Acts, and Child Safety concer...Show moreLast updated: 1 day ago
- Promoted
Cyber Security Engineer
Paramount Computer SystemsDelhi, IN Identity Governance and Administration (IGA).The role involves designing, implementing, and supporting enterprise-grade IGA solutions to ensure secure, efficient, and compliant identity lifecycle m...Show moreLast updated: 11 days ago
- Promoted
SOC / SIEM
Tata Consultancy ServicesDelhi, India Incidents investigation and Triaging.Analyze complex security incidents escalated from L1 and L2.Identify root cause and attack vectors.
Proactively search for hidden threats or intrusions that bypa...Show moreLast updated: 1 day ago
- Promoted
- New!
Senior Detection Engineer - MITRE ATT&CK framework - XDR - EDR - AI - Cyber Security Startup - Remot
CareerXperts ConsultingDelhi, India This role goes beyond traditional detection engineering : you’ll help improve and build our.Detection Engineering Agent , responsible for continuously grading and improving detection coverage based...Show moreLast updated: 16 hours ago
- Promoted
Senior Security Engineer, SOC
PoshmarkDelhi, India Monitor and analyze security event logs and alerts to detect potential incidents, and lead investigations for containment, eradication, and recovery.
Lead security incident investigation, containmen...Show moreLast updated: 7 days ago
- Promoted
SOC Level 1 Engineer
ConfidentialDelhi SIEM,VAPT tools,Forensic Analysis,Incident Handling,log analysis, monitoring, detecting and investigating security incidents and breaches,networking protocols and cyber security concepts Preparatio...Show moreLast updated: 30+ days ago
- Promoted
SOC Engineer
Tata Consultancy ServicesDelhi, India Monitor security alerts and events from various sources, including Microsoft Sentinel, Defender for Endpoint and Defender for Cloud.
Perform log management : Perform log ingestion, define use cases, ...Show moreLast updated: 7 days ago
- Promoted
- New!
▷ Urgent Search! SOC Content Detection Engineer
Sanganan IT Solutions Pvt Ltd.Noida, Uttar Pradesh, India WORK FROM NOIDA OFFICE, PLEASE DON'T APPLY IF YOU ARE LOOKING FOR HYBRID OR WORK FROM HOME Department : Managed Services & Support & Security Operations Center (SOC) Job Type : Full-Time Reports T...Show moreLast updated: less than 1 hour ago
- Promoted
- New!
SOC Analyst
RecruinDelhi, India Role Overview : Seeking a skilled and motivated L1 Analyst – Dark Web Monitoring & Threat Intelligence to join our Security Operations Center (SOC) team.
In this role, the analyst will focus on dark ...Show moreLast updated: 16 hours ago
- Promoted
Senior Detection Engineer - MITRE ATT&CK framework - XDR - EDR - AI - Cyber Security Startup - Remote - CTC INR 50 L
CareerXperts Consultingnarela, delhi, inRemote
- Promoted
- New!
Principal Technical Engineer(Pharmacovigilance - Signal Detection Solutions)
Qinecsa SolutionsDelhi, IN We are seeking a Principal Technical Engineer to design and develop pharmacovigilance signal detection solutions based on our flagship Qinecsa Vigilance Workbench signal detection platform.The idea...Show moreLast updated: 19 hours ago
- Promoted
- New!
Information Security Engineer
SodexoNew Delhi, Delhi, India Operational security automation is the process of automating some or all aspects of SOC or VOC operations.Replacing manual workflows with automated ones.
A fundamental building block of automation i...Show moreLast updated: 19 hours ago
- Promoted
Lead Security Engineer
ArcanaMeerut, IN As our Lead Security Engineer, you'll own and elevate Arcana's overall security posture - cloud, on-prem, and everything in between.
You'll design and enforce policies, automate controls, and harden...Show moreLast updated: 30+ days ago