Talent.com
L2 Security Operations Center Analyst - Threat Hunting

L2 Security Operations Center Analyst - Threat Hunting

Digihelic Solutions Private LimitedMumbai
19 days ago
Job description

Description :

Location : Mumbai, India

Experience : 5+ Years

Mode of Work : 5 Days Office (Full-time On-site)

Reporting To : SOC Manager / Security Operations Lead

About the Role :

We are seeking an experienced and dedicated L2 Security Operations Center (SOC) Analyst to join our team in Mumbai.

This is a full-time, 5-day on-site position. The ideal candidate will have a minimum of 5 years of experience in a SOC environment, with at least 2 years operating specifically at the L2 level.

You will be responsible for advanced threat detection, in-depth security incident analysis, and effective response across our enterprise.

Your expertise with SIEM and EDR platforms will be critical in maintaining the security posture of the organization.

Key Responsibilities :

Incident Detection and Analysis :

  • Perform in-depth analysis and investigation of security events escalated from L1 analysts or automatically triggered by security tools.
  • Identify, triage, and prioritize complex security incidents using data from SIEM (QRadar), EDR, network logs, and other security telemetry.
  • Conduct log correlation and data enrichment to determine the scope, root cause, and impact of security incidents.

Incident Response (IR) :

  • Execute defined Incident Response (IR) procedures to contain, eradicate, and recover from security incidents (e.g., malware outbreaks, unauthorized access, data exfiltration).
  • Coordinate and communicate with cross-functional IT teams during critical incidents.
  • Document detailed post-incident reports, timelines, and lessons learned.

    • Threat Hunting and Monitoring :

  • Proactively perform threat hunting within the network and endpoints to identify subtle or persistent threats that bypass standard security controls.
  • Develop and refine custom correlation rules, alerts, and dashboards within QRadar SIEM to improve detection capabilities.

    • Tool Management and Expertise :

  • Expertly operate and maintain security tools, including the SIEM platform (QRadar).
  • Utilize EDR tools such as CrowdStrike or Microsoft Defender for forensic analysis, host-based threat investigation, and remote response actions.

    • Process Improvement and Mentorship :

  • Contribute to the continuous improvement of SOC procedures, playbooks, and runbooks.
  • Act as a technical escalation point and mentor for L1 SOC Analysts.

    • Required Qualifications and Experience :

    Experience :

  • Minimum 5 years of professional experience working in a Security Operations Center (SOC) environment.
  • Minimum 2 years of experience specifically operating as an L2 SOC Analyst or similar advanced role.

    • Technical Skills :

  • Expert-level experience with SIEM tools, specifically IBM QRadar. This includes rule creation, dashboard development, log source integration, and advanced query writing.
  • Hands-on experience with an EDR (Endpoint Detection and Response) solution such as CrowdStrike or Microsoft Defender.
  • Proven experience executing all phases of the Incident Response lifecycle.

    • Educational Qualification (Mandatory) :

  • B.Tech in Computer Science (CS) / B.E. in Computer Science (CS) OR Master of Computer Applications (MCA).

    • (ref : hirist.tech)

    Create a job alert for this search

    Security Analyst • Mumbai

    Related jobs
    • Promoted
    Cyber Security Specialist

    Cyber Security Specialist

    Tiger AdvisoryKalyan-Dombivli, IN
    Tiger Advisory provides premier cybersecurity consulting services, helping clients manage risks, strengthen resilience, and achieve compliance in an ever-evolving digital landscape.Our mission is t...Show moreLast updated: 29 days ago
    • Promoted
    Senior Security Engineer

    Senior Security Engineer

    CBTSmumbai city, maharashtra, in
    Senior level roles as IT Security Architect, IT Security Engineer, IT Security Auditor, Cyber-Security Analyst, Cyber-Intelligence Analyst. Certifications, Accreditations, Licenses.One or more of th...Show moreLast updated: 10 days ago
    • Promoted
    ESDS - Security Operations Center Lead - Incident Management

    ESDS - Security Operations Center Lead - Incident Management

    ESDS Software Solution Pvt. Ltd.Mumbai
    We are seeking a highly skilled and experienced Senior SOC with 7-10 years of hands-on experience in cybersecurity, specializing in threat detection, incident management, and team leadership.In thi...Show moreLast updated: 30+ days ago
    • Promoted
    Cyber Security Consulting Manager - Vulnerability Assessment

    Cyber Security Consulting Manager - Vulnerability Assessment

    Uniqus ConsultechMumbai
    Responsibility : We endeavour to guide sustainable transformation in business and society at large, with the vision to shape a more balanced planet for the coming generations....Show moreLast updated: 30+ days ago
    Director - Data Center ( Cyber Security )

    Director - Data Center ( Cyber Security )

    Talent WorxMumbai, MH, IN
    Quick Apply
    Job Summary : Responsible for establishing a comprehensive cybersecurity framework during the setup of an AI data center. This role focuses on defining and implementing robust policies and procedures...Show moreLast updated: 30+ days ago
    • Promoted
    Director - Datacenter / Cyber Security Domain

    Director - Datacenter / Cyber Security Domain

    Talent WorxMumbai
    Key Responsibilities : - Design, document, and enforce cybersecurity policies and protocols tailored for an AI data center, integrating best practi...Show moreLast updated: 30+ days ago
    • Promoted
    Security Engineer - Checkpoint & Palo Alto (L4)

    Security Engineer - Checkpoint & Palo Alto (L4)

    TECEZEMumbai, Mumbai (district)
    Security Engineer – Checkpoint & Palo Alto (L4).We are looking for an experienced.Security Engineer (L4) with expertise in Checkpoint and Palo Alto firewalls. L4-level support for critical security ...Show moreLast updated: 4 days ago
    • Promoted
    Security Operations Center Architect

    Security Operations Center Architect

    Tata Consultancy ServicesMumbai, Maharashtra, India
    Upgrade and maintenance of SIEM Device.Cyber incident and forensic investigation.Logs analysis and co-relation of security events. Self-motivated and quick learner and should be flexible in working ...Show moreLast updated: 18 days ago
    • Promoted
    Vulnerability Management - L2

    Vulnerability Management - L2

    ITC InfotechMumbai, Maharashtra, India
    Vulnerability Management Analyst – L2.ITCI Cyber Security team is looking for the role which is accountable for leading the organization’s end-to-end vulnerability lifecycle and aligning risk and c...Show moreLast updated: 10 days ago
    • Promoted
    Security Operations Centre Analyst - SIEM Tools

    Security Operations Centre Analyst - SIEM Tools

    Information technologyNavi Mumbai
    Availability : Immediate to 15 days Location : Mumbai (Thane) - Fully Work from Office Position : SOC Analyst (Sentin...Show moreLast updated: 30+ days ago
    • Promoted
    Applications Security Engineer - Vulnerability Management

    Applications Security Engineer - Vulnerability Management

    Employee ForumsMumbai
    Role Summary : We are looking for an experienced and technically skilled Application Security Engineer to strengthen our cybers...Show moreLast updated: 30+ days ago
    • Promoted
    Senior Security Engineer

    Senior Security Engineer

    TAC SecurityMumbai, Mumbai (district)
    As a Security Engineer - VAPT, you will be responsible for conducting comprehensive security assessments, identifying vulnerabilities, and implementing effective remediation strategies.Leveraging y...Show moreLast updated: 4 days ago
    • Promoted
    Security Engineer (Detection and Response)

    Security Engineer (Detection and Response)

    FoodsmartKalyan-Dombivli, IN
    Foodsmart is the leading telenutrition and foodcare solution, backed by a robust network of Registered Dietitians.Our platform is designed to foster healthier food choices, drive lasting behavior c...Show moreLast updated: 16 days ago
    • Promoted
    Security L3 Engineer

    Security L3 Engineer

    TECEZEMumbai, Maharashtra, India
    Job Title : Security L3 Engineer.We are seeking a highly skilled and experienced Security L3 Engineer to join our team.This individual will be responsible for managing, troubleshooting, and optimizi...Show moreLast updated: 15 days ago
    • Promoted
    Threat Intelligence Platform Analyst - Ethical Hacking

    Threat Intelligence Platform Analyst - Ethical Hacking

    OA Compserve Pvt ltdMumbai
    Description : Requirement Brief : - Total experience of 5+ years out of which minimum 5 years of experience in Thre...Show moreLast updated: 3 days ago
    • Promoted
    iRage - Security Engineer - Audit & Compliance

    iRage - Security Engineer - Audit & Compliance

    iRageMumbai
    We are looking for a highly skilled Security Engineer with strong expertise in audits, compliance, and penetration testing to strengthen the security posture of our high-frequency trading (HFT) inf...Show moreLast updated: 30+ days ago
    • Promoted
    Lead Security Analyst

    Lead Security Analyst

    MorningstarMumbai, Maharashtra, India
    This job is with Morningstar, an inclusive employer and a member of myGwork – the largest global platform for the LGBTQ+ business community. Please do not contact the recruiter directly.The Informat...Show moreLast updated: 30+ days ago
    • Promoted
    Network Security Analyst

    Network Security Analyst

    Cactus CommunicationsMumbai, Mumbai (district)
    CACTUS is a remote-first organization and we embrace an accelerate from anywhere culture.This role, however is an On-site role. You may be required to work from our Mumbai office based on business r...Show moreLast updated: 4 days ago