Walk-in || SOC L2/L3
Tata Consultancy Services · Mumbai, Maharashtra, India
Tata Consultancy Services · Mumbai, Maharashtra, India
**Role & responsibilities** The SOC (L2/L3) is responsible for advanced security monitoring, incident investigation, threat hunting, and response. This role acts as an escalation point for L1 analysts while also handling complex threats, improving detection capabilities, and strengthening overall security posture. **Key Responsibilities** **Monitoring & Investigation** - Monitor and analyze security alerts from SIEM, EDR, IDS/IPS, and other tools - Investigate escalated incidents from L1 analysts **Incident Response** - Handle complex incidents such as: - Malware outbreaks - Phishing attacks - Insider threats - Data exfiltration **Threat Hunting & Detection** - Conduct proactive threat hunting using threat intelligence and MITRE ATT&CK - Develop and tune SIEM correlation rules and detection use cases - Identify gaps in monitoring and improve detection coverage **Security Operations & Engineering** - Work with tools such as: - SIEM (Splunk, QRadar, Sentinel) - EDR/XDR (CrowdStrike, Defender, SentinelOne) - SOAR platforms - Improve incident response playbooks and procedures **Advanced Analysis (L3 Focus)** - Perform malware analysis (basic/intermediate) - Correlate threat intelligence (IOCs, TTPs) **Collaboration & Reporting** - Coordinate with IT, network, cloud, and security teams - Provide detailed incident reports and recommendations.