Bestkaam Logo
Back to Jobs
Emicron TechSolutions Mumbai

Level 1 SOC Analyst (Cybersecurity) , Mumbai

Actively Reviewing

Emicron TechSolutions Mumbai

Mumbai Full-Time 1–2 yrs exp Posted 1 month ago  · Apply by Jul 18, 2026

About the Opportunity

We are a leading System Integrator and Managed Security Services provider, partnering with one of the region's most respected banking and financial services institutions to run their 24×7 Security Operations Centre. We are growing our SOC team and are looking for Level 1 SOC Analysts to join us as the first line of defence.

As an L1 analyst, you will be at the front line — monitoring alerts in real time, performing initial triage, and escalating confirmed or suspicious events to our L2 team. You'll work hands-on with an enterprise-grade security stack (SIEM, EDR, DAM, IDS/IPS, endpoint protection) inside a regulated banking environment, learning from experienced senior analysts every shift.

This is an ideal role for early-career professionals who want to build a serious cybersecurity career. We invest in training, sponsor certifications, and have a clear progression path from L1 to L2 and beyond.

What You'll DoSecurity Monitoring & Detection

•     Continuously monitor security alerts and events across SIEM, IDS/IPS, EDR, Database Activity Monitoring (DAM), and endpoint protection platforms.

•     Identify, analyse, and validate potential security incidents using established playbooks.

•     Escalate confirmed or suspicious events to L2/L3 analysts following defined escalation procedures.

Incident Response Support

•     Perform initial triage of security incidents and assign appropriate severity.

•     Assist senior analysts with incident documentation, evidence collection, and timeline reconstruction.

•     Follow standard operating procedures for containment, eradication, and recovery under L2/L3 guidance.

Security Tool Operations

•     Monitor the health and operational status of the security tool stack — SIEM, EDR, DAM, antivirus, and micro-segmentation platforms.

•     Perform routine checks on dashboards, log sources, agent coverage, and integrations.

•     Report tool-related issues to the appropriate engineering or platform teams.

Documentation, Reporting & Compliance

•     Maintain accurate records of security events, investigations, and actions taken in the ticketing system.

•     Prepare daily, weekly, and monthly SOC reports as required.

•     Support internal, external, and regulatory audit submissions.

•     Adhere to the client's cybersecurity policies, standards, and banking-sector regulatory requirements.

•     Participate in security awareness initiatives and operational drills.

Continuous Learning

•     Stay current on emerging cyber threats, attack techniques, and industry best practices.

•     Actively participate in internal training and pursue relevant cybersecurity certifications (sponsored by us).

•     Demonstrate curiosity and a willingness to learn new tools, technologies, and processes.


What We're Looking ForMust-Have

•     0–2 years of experience in cybersecurity, SOC operations, IT support, or a related domain — freshers with strong fundamentals are encouraged to apply.

•     Basic understanding of cybersecurity concepts, the threat landscape, and SOC operations.

•     Working knowledge of Windows and Linux operating systems.

•     Understanding of core networking concepts, protocols, and security fundamentals (TCP/IP, DNS, HTTP, firewalls, etc.).

•     Strong analytical and problem-solving abilities with sharp attention to detail.

•     Good verbal and written communication skills.

•     Ability to work in a 24×7 rotational shift environment, including nights and weekends.

Nice to Have

•     Hands-on exposure to any SIEM, EDR, or endpoint security tool (lab, internship, or work experience).

•     Internship, training, or project work in a SOC, NOC, or IT security environment.

•     Familiarity with the MITRE ATT&CK framework or basic log analysis.

•     Exposure to ticketing platforms (ServiceNow, Jira, Remedy, etc.).

Education

•     Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field — or equivalent practical experience.

Preferred Certifications (Optional)

•     CompTIA Security+

•     CompTIA CySA+

•     CEH (Foundational level)

•     Cisco CyberOps Associate / Cybersecurity Operations certifications

Core Strengths

•     Curious, detail-oriented, and disciplined.

•     Calm and composed under pressure in a 24×7 environment.

•     Collaborative team player who communicates clearly across shifts.

•     Genuine interest in building a long-term career in cybersecurity.


Why Join Us

•     Launch your cybersecurity career on a flagship, long-term BFSI SOC engagement.

•     Hands-on exposure to a best-in-class enterprise security stack from day one.

•     Structured mentorship from experienced L2/L3 analysts and IR specialists.

•     Clear career progression: L1 → L2 → L3 / Threat Hunting / Incident Response.

•     Company-sponsored certifications and continuous learning support.

•     Competitive compensation, shift allowances, and benefits aligned with industry best practice.