Security Operations Center Analyst III
Sanganan IT Solutions Pvt Ltd.Noida, Republic Of India, IN1 day ago
Job descriptionLead targeted threat hunting activities based on hypotheses and threat intelligence using KQL, MITRE ATT&CK, and behavioral analytics. Design and develop advanced detection content (Sigma rules, UEBA baselines, custom rules) across SIEM and EDR platforms. Identify and close detection gaps through continuous telemetry analysis and logic refinement. Coordinate log source visibility reviews, baselining, and high-fidelity use case design. Produce and distribute Weekly Threat Intelligence Digests summarizing current threats, attack trends, and IOCs relevant to customer environments. Map observed activities to TTPs and threat actor profiles. Maintain threat dashboards and feed integrations to support proactive defense. Lead biweekly Alert Tuning efforts to analyze false positives, adjust thresholds, and suppress noisy detections. Deliver a formal Biweekly Alert Tuning Report outlining tuning actions, impact assessments, and next steps. Collaborate with content authors to implement rule changes and push updates to production environments via controlled change processes. Serve as the final escalation point for Priority 1 (P1) or crisis-level incidents, ensuring incident bridge calls, executive reporting, and customer coordination occur within SLA timelines. Perform deep-dive investigations into root causes and adversary techniques. Own incident post-mortems and RCA (Root Cause Analysis) documentation. Ensure compliance with the IR lifecycle from detection to closure, with audit-ready documentation. Prepare and deliver Monthly and Quarterly Security Reports to MSSP clients covering : Alert trends, threat landscape updates, SLA / KPI dashboards Executive summaries, incident breakdowns, and risk remediation insights Present findings to customer stakeholders via scheduled service review meetings and executive briefings. Ensure SLA compliance targets are tracked and reported, including MTTD, MTTR, escalation compliance, and false positive rates. Plan, facilitate, and report on Quarterly Incident Response Tabletop Exercises with internal and external stakeholders. Develop realistic, role-based tabletop scenarios (ransomware, insider threat, data exfiltration, etc.). Deliver Tabletop Exercise Reports with participant feedback, lessons learned, and actionable improvements. Contribute to MSSP onboarding by helping define : Log source mapping and ingestion validation Detection rule baselines, alert taxonomy, and escalation matrix Secure communication procedures and SLA / OLA handoff alignment Support pre-engagement risk assessments and operational readiness reviews. Bachelor’s Degree in Cybersecurity, Computer Science, Information Systems, or related field. Master’s Degree is a plus. Microsoft Certified : Security Operations Analyst Associate GIAC (GCIA, GCIH, GCFA, GNFA) CompTIA CySA+, CASP+, or equivalent MITRE ATT&CK Defender (MAD) certification is advantageous Expert in SIEM technologies (Microsoft Sentinel preferred), KQL, log analysis, and data correlation. Hands-on experience with EDR tools (Defender for Endpoint, CrowdStrike, etc.). Strong knowledge of MITRE ATT&CK, NIST IR lifecycle, and threat modeling. Familiarity with threat intel platforms (MISP, Anomaly, Recorded Future). Understanding of cloud security (Azure, M365, hybrid environments). Strong presentation and documentation skills, especially for executive and customer audiences. Proven ability to lead and manage cross-functional engagements (internal & external). Analytical mindset with an investigative approach to threat detection. Ability to work independently in high-pressure and time-sensitive environments. Proven English communication skills supported by professional certifications such as IELTS, TOEIC, or BEC. Ability to write technical and executive-level documentation in English, including reports, presentations, and incident summaries. 8-10+ years of experience in cybersecurity operations, with at least 2 years in a Level 2 or Level 3 SOC role. Experience in delivering threat hunts, writing detection content, and handling major security incidents. Prior MSSP experience or customer-facing security role is a significant advantage.
Job Title : Level 3 Security Operations Center (SOC) Analyst
Job Type : Full Time
Job Location :
- WORK FROM NOIDA OFFICE, PLEASE DON'T APPLY IF YOU ARE LOOKING FOR HYBRID OR WORK FROM HOME
- Short notice period or immediate joiners are preferred.
SOC Analyst L3
Job Title : Level 3 Security Operations Center (SOC) Analyst
Job Type : Full-Time / Contract
Job Overview :
As a Level 3 SOC Analyst, you will lead advanced threat hunting, detection engineering, and incident response planning activities within a 24 / 7 MSSP environment. You’ll act as a strategic escalation point for complex incidents and bridge threat intelligence, engineering, and client-facing security functions. You will also be responsible for delivering high-impact deliverables, such as Threat Intelligence Digests, Alert Tuning Reports, and Customer-Facing Security Presentations—all aligned to operational SLAs and governance frameworks.
This role requires strong leadership, technical expertise in modern SIEM and EDR platforms (especially Microsoft Sentinel), and experience in executing MSSP service delivery obligations, including IR tabletop exercises, SLA / KPI dashboards, and quarterly threat reviews.
Key Responsibilities :
1. Advanced Threat Hunting & Detection Engineering
2. Threat Intelligence & Operational Reporting
3. Alert Tuning & Detection Optimization
4. Incident Response Leadership & Crisis Escalation
5. MSSP Reporting & Executive Briefings
6. IR Tabletop Exercise Management
7. SOC Governance & Pre-Onboarding Support
Required Skills & Qualifications :
1. Education :
2. Certifications (Preferred) :
3. Technical Skills :
4. Soft Skills :
Experience :
Create a job alert for this search
Security Analyst • Noida, Republic Of India, IN
Related jobs
- Promoted
Security Operations Center Analyst
Tata Consultancy ServicesGreater Delhi Area, India Deploy, configure, and maintain SIEM solutions (e.Monitor and analyze security events and alerts from the SIEM system.Tune SIEM rules, filters, and use cases to reduce false positives and improve d...Show moreLast updated: 27 days ago
- Promoted
- New!
SOC Analyst L3
Sanganan IT Solutions Pvt Ltd.Noida, Uttar Pradesh, India Level 3 Security Operations Center (SOC) Analyst.WORK FROM NOIDA OFFICE, PLEASE DON'T APPLY IF YOU ARE LOOKING FOR HYBRID OR WORK FROM HOME.
Short notice period or immediate joiners are preferred.Le...Show moreLast updated: 14 hours ago
- Promoted
Security Operations Center Analyst
ValueLabsDelhi, India Incident Handling & Response, Phishing email Analysis.SIEM Platforms- Monitoring, Analysis, Alerts & Reports ( LogRhythm Preferably) - Knowledge of OSI layers & Protocols - Network & Host based Fir...Show moreLast updated: 5 days ago
- Promoted
Security Operations Center Analyst
airtelDelhi, India, India The Security Operations Center (SOC) Security Analyst serves in a SOC team, is responsible for conducting information security investigations as a result of security incidents identified by the Lev...Show moreLast updated: 5 days ago
- Promoted
Security Operations Center Architect
Exela TechnologiesDelhi, India Lead and mentor the incident response (IR) team, fostering a culture of continuous improvement and collaboration.Develop, implement, and maintain the organization's incident response strategy, proc...Show moreLast updated: 4 days ago
- Promoted
Security Operations Center (SOC) Analyst
ConfidentialDelhi We are seeking a proactive and skilled.The ideal candidate will be responsible for handling day-to-day security alerts, ensuring adherence to security policies, and helping improve the overall secu...Show moreLast updated: 30+ days ago
- Promoted
Security Operations Analyst
Insight GlobalDelhi, India We are seeking a Security Operations Center (SOC) Analyst with hands-on experience in Secureworks Taegis and Microsoft Defender (Endpoint, Identity, and Cloud) to join our cybersecurity team.This r...Show moreLast updated: 23 days ago
- Promoted
Security Operations Center Analyst
ConfidentialGurugram, Gurgaon / Gurugram, India Deliver Results (Team / Organisation).IT & Information Security - Other.Note : This is a requirement for one of the Workassist Hiring Partner.
Act as the primary onsite point of contact between the cus...Show moreLast updated: 10 days ago
- Promoted
Security Operations Center Analyst
Airtel Digitalnew delhi, delhi, in The Security Operations Center (SOC) Security Analyst serves in a SOC team, is responsible for conducting information security investigations as a result of security incidents identified by the Lev...Show moreLast updated: 5 days ago
- Promoted
- New!
Security Operations Center Analyst
Insight GlobalDelhi, IN SOC or cybersecurity operations role.Proficiency with Secureworks Taegis and Microsoft Defender (Endpoint, Identity, Cloud), including rule tuning, log analysis, and case management.Splunk, QRadar,...Show moreLast updated: 5 hours ago
- Promoted
Azure Security Centre Analyst
PwCmeerut, uttar pradesh, in Seeking an Azure Security Centre Analyst with proven experience in cloud security operations within the Microsoft Azure ecosystem.
Key responsibilities include managing Azure security tools, vulnera...Show moreLast updated: 4 days ago
- Promoted
Security Operations Center Analyst
PeoplefyDelhi, India Hi Everyone, I am on lookout for.Specialist for leading product based MNC in Pune, Kharadi.Kindly refer below JD & share your resume on.
Experience with SOC, Threat Monitoring • Experience with Thre...Show moreLast updated: 27 days ago
- Promoted
- New!
Lead Cyber Security Analyst - Presales / Solutioning
Talent ToppersMeerut, IN Growing IT solutions and services company specializing in software development, cloud enablement, and digital transformation.
The company focuses on building scalable, secure, and innovative technol...Show moreLast updated: 5 hours ago
- Promoted
Security Operations Center Analyst
LenovoDelhi, India Security Operations Centre (SOC) Analyst plays a vital role in Security delivery.As a SOC Analyst Level 3, you will be on the front line of Cyber Defense, detecting & responding to Cyber Incidents ...Show moreLast updated: 16 days ago
- Promoted
Senior Information Security Operations Analyst
Cognex CorporationNoida, Uttar Pradesh, India As a Senior Information Security Operations Analyst, you will lead the strategic development, implementation, and adoption of the overall Information Security Program.
You will lead the investigatio...Show moreLast updated: 4 days ago
- Promoted
Senior Security Analyst - Security Operations Center
ConfidentialGhaziabad, India We are looking for an experienced Senior Security Analyst with a strong background in SOC operations, specializing in real-time threat detection, incident response, and SIEM management, preferably ...Show moreLast updated: 10 days ago
- Promoted
- New!
Dev Sec Ops
CTCDelhi, IN Automate build, deployment, and infrastructure provisioning using tools like.Embed security controls into application development and deployment processes (SAST, DAST, dependency scanning, containe...Show moreLast updated: 4 hours ago
- Promoted
Security Operations Centre Analyst
RingCentralDelhi, India Security Operations Centre Analyst This is a great opportunity to work at a rapidly growing, market leading Unified Communications as-a-service company.
RingCentral provides Voice-over-IP (VoIP), ho...Show moreLast updated: 18 days ago