Talent.com
This job offer is not available in your country.
(Immediate joiners only)Senior Cybersecurity SOC Engineer – Threat Hunting & Incident Response

(Immediate joiners only)Senior Cybersecurity SOC Engineer – Threat Hunting & Incident Response

Triune Infomatics Incthane, maharashtra, in
6 days ago
Job description

Role : Senior Cybersecurity SOC Engineer – Threat Hunting & Incident Response

Working Hours : Monday to Friday, 9 AM – 5 PM PST (U.S. Business Hours)

Reporting To : Security Operations (SecOps) Leader – USA

About the Role : We are seeking an elite Senior Cybersecurity SOC Engineer—a hands-on security expert with deep technical knowledge and proven experience in threat hunting, incident response, and SOC program maturity. This role will report directly to the SecOps Manager in India and requires someone who thrives in a collaborative environment and leads by example. If you are a true expert with Microsoft Sentinel, CrowdStrike, MDE, SOAR platforms, MITRE ATT&CK framework, APT detection, and scripting, this role offers a great opportunity to build and defend a modern SOC environment.

Please note : This is not a SOC Analyst role. Candidates must have 7-10+ years of hands-on SOC Engineer experience with deep threat hunting and incident response expertise. Must be available to work U.S. business hours (PST timezone).

Key Responsibilities :

  • Threat Hunting :
  • Lead proactive threat hunting initiatives aligned with MITRE ATT&CK framework to identify, investigate, and mitigate advanced threats and adversary behaviors.
  • Use telemetry from Microsoft Sentinel, CrowdStrike Falcon, MDE, and other tools to detect anomalies and emerging attack patterns.
  • Develop and optimize threat hunting queries and playbooks using KQL, Python, and PowerShell.
  • Continuously improve detection coverage to reduce dwell time and prevent breaches.
  • Incident Response :
  • Design, implement, and maintain an effective Incident Response (IR) program and playbooks covering APTs, ransomware, insider threats, and complex multi-stage attacks.
  • Lead investigations on high-fidelity security alerts, conduct root cause analysis, containment, eradication, and recovery.
  • Utilize CrowdStrike Falcon EDR (including RTR), Microsoft Defender for Endpoint, and Tenable for comprehensive endpoint and vulnerability correlation during incidents.
  • Perform network forensics and packet analysis using Fortinet and Palo Alto firewall logs.
  • Manage cloud security incidents within Azure (Azure Sentinel, Security Center) and Microsoft 365 environments.
  • Coordinate with internal teams and external partners for timely, coordinated response to security incidents.
  • SOC Engineering & Program Maturity :
  • Build and mature the SOC’s SIEM and SOAR architecture, detection engineering, and response automation.
  • Develop advanced detection logic, hunting queries, and automation workflows.
  • Mentor junior SOC members and act as a technical escalation point.
  • Collaborate with managed SOC partners and other security teams to enhance detection and response capabilities.

Required Experience & Skills :

  • 7+ years of hands-on experience in SOC engineering, with a strong focus on threat hunting and incident response.

    • Expertise in :

  • Microsoft Sentinel (SIEM & SOAR) and advanced KQL queries for hunting and IR
  • CrowdStrike Falcon EDR (RTR, IOAs, threat containment)
  • Microsoft Defender for Endpoint (MDE) telemetry and IR
  • Tenable vulnerability correlation during investigations
  • Fortinet and Palo Alto firewalls for forensic analysis
  • Microsoft Entra ID (Azure AD), SSO, Conditional Access, MFA security controls
  • Deep operational knowledge of MITRE ATT&CK for threat hunting, detection tuning, and adversary simulation.
  • Proven ability to analyze and respond to APTs, malware persistence, lateral movement, privilege escalation, command & control, and data exfiltration incidents.
  • Strong scripting skills (KQL, Python, PowerShell) for threat hunting automation and incident response workflows.
  • Experience with SOAR platforms integration and automation (Microsoft Sentinel SOAR, Palo Alto XSOAR).
  • Excellent communication, collaboration, and mentoring abilities.
  • Must be able to work U.S. business hours (PST timezone).

    • Preferred Certifications :

  • GCFA, GCIH, GCTI, CISSP, AZ-500, MS-500, or equivalent.
  • MITRE ATT&CK Defender (MAD), OSCP, or Red Team certifications are a strong plus.
    • Create a job alert for this search

    Cybersecurity Engineer • thane, maharashtra, in

    Related jobs
    • Promoted
    SOC Analyst L2 / L3 - SIEM,IBM Qradar,SOAR,Threat hunting,Forensics - 4+ Years - Mumbai Vikhroli

    SOC Analyst L2 / L3 - SIEM,IBM Qradar,SOAR,Threat hunting,Forensics - 4+ Years - Mumbai Vikhroli

    Innova ESImumbai, maharashtra, in
    Interview Date - 18th Sep - Thursday.Job Location - Mumbai / Vikhroli.Please refer to the job description below for your kind reference : . SOC Analyst – Level 2 (L2) / Level 3 (L3).Deep-dive investiga...Show moreLast updated: 5 days ago
    • Promoted
    Senior Security Operations Center (SOC) Analyst

    Senior Security Operations Center (SOC) Analyst

    ConfidentialMumbai
    We are seeking a highly skilled and motivated Senior SOC Analyst to join our dynamic team.You will play a critical role in safeguarding our organization's information assets by monitoring, detectin...Show moreLast updated: 30+ days ago
    • Promoted
    opening with Big 4 Consulting firm ||Soc analyst||Mumbai

    opening with Big 4 Consulting firm ||Soc analyst||Mumbai

    ConfidentialNavi Mumbai, Mumbai City, Mumbai
    Mandatory skill sets : • Minimum 2-12 years of professional experience in.Deep understanding of networking, system administration,. AWS / Azure / GCP) and security architecture.Experience with EDR, SIEM,...Show moreLast updated: 7 days ago
    • Promoted
    Cyber Netsec Ops Eng 3

    Cyber Netsec Ops Eng 3

    ConfidentialMumbai City, Navi Mumbai, Mumbai
    Zensar Technologies is looking for Cyber Netsec Ops Eng 3 to join our dynamic team and embark on a rewarding career journeyMonitor and analyze network security threats and incidents.Respond to cybe...Show moreLast updated: 15 days ago
    • Promoted
    Security Operations Center -Lead

    Security Operations Center -Lead

    ConfidentialMumbai, India
    We are seeking a highly skilled and experienced Senior SOC with 7-10 years of hands-on experience in cybersecurity, specializing in threat detection, incident management, and team leadership.In thi...Show moreLast updated: 7 days ago
    • Promoted
    Global SOC SME

    Global SOC SME

    ConfidentialMumbai
    The Global security operation centre (GSOC) Plays a critical role in monitoring and responding to security incident on a global scale. GSOC) integrate intelligence and analytics with technology to m...Show moreLast updated: 5 days ago
    • Promoted
    (Immediate joiners only)Senior Cybersecurity SOC Engineer – Threat Hunting & Incident Response

    (Immediate joiners only)Senior Cybersecurity SOC Engineer – Threat Hunting & Incident Response

    Triune Infomatics Incnavi mumbai, maharashtra, in
    Role : Senior Cybersecurity SOC Engineer – Threat Hunting & Incident Response.Working Hours : Monday to Friday, 9 AM – 5 PM PST (U. Reporting To : Security Operations (SecOps) Leader – USA.We are seeki...Show moreLast updated: 6 days ago
    • Promoted
    Security Lead

    Security Lead

    Eventus Securitymumbai, maharashtra, in
    Job Title : Security Lead (SOC).Location : Ahmedabad and Navi Mumbai.Responsibility Areas – Security Lead (L3) – SOC.Lead high-priority security investigations and incident response activities, ensur...Show moreLast updated: 30+ days ago
    • Promoted
    SOC

    SOC

    ConfidentialMumbai
    Minimum 2-12 years of professional experience in cybersecurity, with experience in a SOC environment.Deep understanding of networking, system administration, cloud environments (AWS / Azure / GCP) and ...Show moreLast updated: 7 days ago
    • Promoted
    Senior DevOps Security Engineer

    Senior DevOps Security Engineer

    JRD SystemsMumbai, IN
    We are seeking a highly skilled Senior DevOps / Platform Engineer to join our dynamic team.The ideal candidate will have extensive experience in managing and automating infrastructure, improving depl...Show moreLast updated: 2 days ago
    • Promoted
    Cyber Security Engineer - Vulnerability & Risk Management

    Cyber Security Engineer - Vulnerability & Risk Management

    BDX INDIA PRIVATE LIMITEDNavi Mumbai
    Company Overview : BDx is Asias fastest-growing data center platform, delivering colocation, build-to-suit, managed services, and interconnection solutions for hyper...Show moreLast updated: 30+ days ago
    • Promoted
    Senior cyber threat intelligence

    Senior cyber threat intelligence

    ConfidentialMumbai
    The Vulnerability Intelligence Lead role at Nomura requires an experienced cybersecurity professional with over 8 years in Information Security, including at least 3 in Cyber Threat Intelligence.Th...Show moreLast updated: 7 days ago
    • Promoted
    SOC Analyst - Cyber Security

    SOC Analyst - Cyber Security

    Xanika InfotechMumbai
    Job Summary : We are seeking a skilled and experienced Cybersecurity Analyst with hands-on expertise in DLP, EDR, and security device management.T...Show moreLast updated: 12 days ago
    • Promoted
    Cyber Security Presales Head

    Cyber Security Presales Head

    Antal InternationalMumbai
    Senior Cybersecurity Presales Consultant We are seeking an experienced Senior Cybersecurity Presales Consultant to lead enterprise-level solution design and pre-sales...Show moreLast updated: 30+ days ago
    • Promoted
    SOC Analyst

    SOC Analyst

    ConfidentialMumbai
    Tier 1 Overflow Responsibilities : .Develop new signatures and correlated searches based on a variety of requirements.Document work within a security operations ticketing system.Analyze data and even...Show moreLast updated: 18 days ago
    • Promoted
    Oracle Cloud ERP Senior Analyst (Security and Risk Management)

    Oracle Cloud ERP Senior Analyst (Security and Risk Management)

    Sikich IndiaKalyan-Dombivli, IN
    Oracle Cloud ERP Senior Analyst.Security and Risk Management) with 5+ years of related experience in Oracle Cloud or any other Tier 1 ERP application. Accounting, Advisory, and Technical professiona...Show moreLast updated: 30+ days ago
    • Promoted
    Sr. CyberArk Engineer

    Sr. CyberArk Engineer

    CyberSolveMumbai, IN
    CyberSolve is a fastest growing IAM Specialist firm in the US with aspirations of becoming the world's largest company in the IAM space. CyberSolve’s 350+ specialists solve interesting puzzles in IG...Show moreLast updated: 14 days ago
    • Promoted
    SOC SME

    SOC SME

    WTW GLOBAL DELIVERY AND SOLUTIONS INDIA PVT LTD.Mumbai
    Summary of Role : Willis Towers Watson (WTW) Technology Compliance SOC SME will ensure that the organization meets its regulatory obligations through application of a...Show moreLast updated: 5 days ago
    • Promoted
    SOC Engineer - L2

    SOC Engineer - L2

    ConfidentialMumbai, India
    Join a company that is pushing the boundaries of what is possible.We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society.Our wo...Show moreLast updated: 7 days ago
    • Promoted
    Security Operations Center Analyst

    Security Operations Center Analyst

    ConfidentialMumbai, India
    The SOC Engineer L2 must have prior experience configuring, managing, operating, and administrating various SIEM & EDR managed platforms. You will play a pivotal role in advising our clients on the ...Show moreLast updated: 7 days ago