SOC ENGINEER

Job Title: SOC Analyst / SOC Engineer (L1/L2)

Location: Chennai

Work Mode: Work from Office

Experience: 2–7 Years

Key Responsibilities:

• Monitor and analyse security events from SIEM, EDR, firewall, IDS/IPS and other security tools.
• Perform triage and investigation of security alerts and incidents.
• Identify, validate and respond to potential threats and vulnerabilities.
• Escalate confirmed incidents to higher tiers with detailed findings.
• Execute initial containment and remediation actions as per SOPs.
• Analyse logs from servers, endpoints, network and security devices.
• Prepare incident reports, RCA and documentation.
• Assist in threat hunting and proactive monitoring activities.
• Tune detection rules and reduce false positives.
• Ensure adherence to SOC processes, SLAs and compliance standards.

Required Skills:

• Strong understanding of networking fundamentals and protocols.
• Hands-on experience with SIEM tools (Splunk/QRadar/ArcSight/Sentinel or similar).
• Knowledge of common cyber attack techniques and MITRE ATT&CK.
• Familiarity with Windows/Linux event logs and endpoint security.
• Understanding of incident response lifecycle and SOC operations.
• Good analytical, troubleshooting and communication skills.

Good to Have:

• Exposure to EDR, SOAR or threat intelligence platforms.
• Basic scripting skills (Python/PowerShell).
• Certifications such as Security+, CEH, CySA+ or equivalent.

Role Objective:

Provide continuous monitoring, detection and L1/L2 response to cybersecurity incidents to ensure the security and resilience of enterprise systems and data.