Director of Security Operations overseeing incident response tasks at Gartner. Leading a geographically dispersed team and improving capabilities for detecting and responding to threats.
About the role
- SOC Analyst focusing on real-time security monitoring and incident response for Atos Group in Bengaluru, ensuring proactive threat detection and effective response to incidents.
Responsibilities
- Monitor security logs in real time within the Security Operations Centre (SOC) from multiple network and security devices.
- Ensure timely detection, notification, investigation, and containment of threats across customer environments.
- Map observed adversary behaviors and incidents to relevant MITRE ATT&CK tactics and techniques for accurate threat classification.
- Enrich incident investigations using the MITRE ATT&CK framework to identify attacker objectives and predict potential next steps.
- Collaborate with Threat Intelligence teams to correlate Indicators of Compromise (IOCs) and Tactics, Techniques, and Procedures (TTPs) for proactive threat hunting.
- Review and validate incidents to ensure adherence to standard operating procedures (SOPs).
- Provide training, mentoring, and feedback to SOC analysts to improve quality of analysis and MITRE ATT&CK adoption.
- Identify and implement continuous improvements in monitoring use cases, threat scenarios, and operational procedures.
- Interact with customers to address queries and recommend service improvements.
- Perform root cause analysis (RCA) for monitoring errors, service gaps, and security incidents.
- Create weekly, monthly, and ad-hoc reports for clients and internal stakeholders.
- Periodically tune detection rules to reduce false positives and enhance alert accuracy.
- Collaborate with internal teams and external vendors during incident response and mitigation efforts.
- Conduct detailed RCA for security incidents and provide containment and remediation recommendations.
- Coordinate external audits and evidence collection related to SOC 2, SOX, NIST Cybersecurity Framework, and other compliance standards.
- Stay current with emerging threats, attack techniques, and security technologies.
- Track and manage key SOC KPIs and generate reports for core stakeholders.
Requirements
- Minimum 2 years of experience in a Security Operations Centre (SOC) or similar security operations role.
- Strong technical and operational understanding of SOC processes and workflows.
- Hands-on experience with SIEM platforms, including log ingestion, correlation, tuning, and analysis.
- Solid understanding of networking concepts (OSI Model, TCP/IP) and operating systems.
- Familiarity with security infrastructure components such as firewalls, proxies, WAFs, antivirus/EDR, and email gateways.
- Good understanding of the Cyber Kill Chain and MITRE ATT&CK framework.
- Ability to assist, guide, and mentor junior analysts with technical maturity and professionalism.
- Strong verbal and written communication skills.
- Excellent problem-solving and critical-thinking abilities.
- Eagerness to learn and stay updated with the evolving cybersecurity landscape.
Benefits
- Health insurance
- Retirement plans
- Professional development
- Paid time off
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Senior Manager for Product Security Ops & Strategy at Salesforce overseeing strategic initiatives and ensuring alignment with security goals. Driving operational excellence and executive communication across teams.
Principal SOC Engineer shaping cyber defense at The Missing Link. Engaging with clients and mentoring engineers in advanced security technologies.
Security Operations Manager responsible for planning and managing security programs at Cox Enterprises. Collaborating with stakeholders and analyzing security vulnerabilities while conducting investigations.
Security Operations Centre Analyst for Paysafe, responding to real - time security alerts and assisting Incident Response in security events. Requires collaboration in a global team environment with various security frameworks.
Manage global corporate security operations programs at OpenAI, collaborating across teams to enhance security measures. Focus on operational standards and program development for effective security initiatives.
Senior SOC Analyst leading advanced security monitoring and response across various platforms. Collaborating with teams to strengthen security posture and mentor junior analysts.
SOC Analyst developing cybersecurity solutions at Capgemini for leading organizations. Engaging in incident response and security operations in a collaborative environment with global colleagues.
Security Operations Engineer focused on secure coding practices and incident response at LUZA Group. Collaborating with security, engineering, and DevOps teams to reinforce organizational security posture.
SECOPS Engineer ensuring security and infrastructure management for a prominent Legal Tech SaaS company. Engaging globally with a focus on automation and cybersecurity expertise in Paris.