IT Cyber Defense Analyst

New

India, 24/7 rotational shiftsFull-TimeMiddle

Salary not disclosed

Apply NowOpens the employer's application page

Job Details

2–4 years of experience in SOC operations, cybersecurity, or information security roles within enterprise environments.
Strong understanding of Windows and Linux systems, including server and application hardening practices.
Hands-on experience with security tools including Azure security services, EDR/XDR platforms (e.g., CrowdStrike, Microsoft Defender), and SIEM tools.
Experience with security platforms such as Palo Alto, Cisco, IDS/IPS, DLP, MFA, or encryption/key management systems.
Solid understanding of networking fundamentals including TCP/IP and protocols such as HTTP, FTP, SMTP, and DNS.
Familiarity with common cyber threats such as DDoS, SQL injection, XSS, reconnaissance, and attack detection techniques.
Knowledge of vulnerability scanning tools such as Nessus, Qualys, Acunetix, or Metasploit is a plus.
Scripting experience in Bash, PowerShell, or Python for automation and incident response support.
Understanding of frameworks such as MITRE ATT&CK and/or Cyber Kill Chain.
Awareness of compliance standards such as PCI-DSS, SOX, and HIPAA.
Strong analytical, communication, and problem-solving skills with ability to work in high-pressure environments.
Relevant certifications such as CompTIA Security+, CEH, or CISSP are a plus.
Ability to work in rotational 24/7 shifts.

Triage, analyze, and respond to security incidents identified through SOC monitoring tools and security alerts.
Monitor and investigate events using SIEM, EDR, and XDR platforms such as Splunk, Rapid7, ArcSight, or similar technologies.
Perform log analysis and correlation across multiple systems to detect threats, anomalies, and potential security breaches.
Support incident escalation and coordination with SOC leadership, infrastructure teams, and business units for resolution.
Identify opportunities to optimize SIEM rules, reduce false positives, and improve automation and alert accuracy.
Monitor threat intelligence feeds and vendor alerts to proactively identify emerging vulnerabilities and risks.
Collaborate with IT and security teams to prioritize vulnerability remediation and track mitigation efforts.
Assist in developing and maintaining incident response procedures, playbooks, and SOC documentation.
Support security tooling improvements, dashboards, and reporting for operational and executive visibility.
Participate in continuous monitoring of enterprise environments to ensure compliance and security posture alignment.

View Full Description & ApplyYou'll be redirected to the employer's site