T

Walkin Drive 27th Saturday For SOC L2/L3

Tata Consultancy Services · Bengaluru, Karnataka, India - Chennai, Tamil Nadu, India - Hyderabad, Telangana, India

3–9 yrs experiencefull_timePosted 3w ago
Apply now →

Job description

**Experience Range: 6 to 15 Years** **Location: Chennai, Bangalore and Hyderbad** **Interview Mode: Face to Face Interview** **Job Description:** The SOC Analyst (L2/L3) is responsible for advanced security monitoring, incident investigation, threat hunting, and response. This role acts as an escalation point for L1 analysts while also handling complex threats, improving detection capabilities, and strengthening overall security posture.**Key Responsibilities Monitoring & Investigation** - Monitor and analyze security alerts from SIEM, EDR, IDS/IPS, and other tools - Investigate escalated incidents from L1 analysts - Perform deep log analysis across endpoints, networks, and cloud environments - Validate true positives and eliminate false positives **Incident Response** - Lead or support incident response lifecycle (triage containment eradication recovery) - Handle complex incidents such as: - Malware outbreaks - Phishing attacks - Insider threats - Data exfiltration - Perform root cause analysis and document findings **Threat Hunting & Detection** - Conduct proactive threat hunting using threat intelligence and MITRE ATT&CK - Develop and tune SIEM correlation rules and detection use cases - Identify gaps in monitoring and improve detection coverage **Security Operations & Engineering** - Work with tools such as: - SIEM (Splunk, QRadar, Sentinel) - EDR/XDR (CrowdStrike, Defender, SentinelOne) - SOAR platforms - Create and maintain dashboards, alerts, and automation workflows - Improve incident response playbooks and procedures **Advanced Analysis (L3 Focus)** - Perform malware analysis (basic/intermediate) - Support digital forensics investigations - Analyze network traffic (PCAP) and endpoint artifacts - Correlate threat intelligence (IOCs, TTPs) **Collaboration & Reporting** - Coordinate with IT, network, cloud, and security teams - Provide detailed incident reports and recommendations - Support audits, compliance requirements, and security assessments