IT Security Analyst - SIEM

Qualifications Required:

• Strong experience in SOC / CERT / CSIRT environments

• Hands-on expertise with Microsoft Sentinel, Defender for Cloud, Defender Endpoint, Defender Identity, Office 365 Security, Exchange Security, Azure AD

• Strong knowledge of SIEM log onboarding, log management, dashboards, and playbooks

• Good understanding of MITRE ATT&CK framework, threat hunting, and detection engineering

• Knowledge of firewalls, IDS/IPS, endpoint security, anti-malware, vulnerability tools

• Strong understanding of networks, cloud infrastructure, Windows, Linux, and cyberattack techniques

• Excellent analytical, communication, and cross-functional collaboration skills If you are a proactive cybersecurity professional with a passion for staying updated on emerging threats and technologies, possess strong incident response and threat analysis skills, and are self-motivated to work with global cross-functional teams, you would be an ideal candidate for this role. As an IT Security Analyst at our leading organization in Pune, you will be responsible for various key tasks related to SOC operations, SIEM administration, threat hunting, and incident response. Your role will involve close collaboration with SOC / CERT / CSIRT teams for incident monitoring and response. Additionally, you will investigate cybersecurity incidents, conduct forensic analysis of attack patterns, and manage the SIEM architecture. Key Responsibilities:

• Collaborate with SOC / CERT / CSIRT teams for incident monitoring and response

• Investigate and respond to cybersecurity incidents, including forensic analysis of attack patterns

• Manage and support SIEM architecture, including log ingestion, parsing, and normalization

• Design and customize automated playbooks, dashboards, and monitoring workflows

• Gather, analyze, and correlate threat intelligence feeds to identify emerging threats

• Develop and fine-tune advanced KQL queries and analytics rules in Microsoft Sentinel

• Build and test hypothetical threat scenarios to strengthen detection capabilities

• Optimize detection systems to reduce false positives and improve alert precision

• Configure, monitor, and maintain security tools such as Microsoft Sentinel, Defender for Cloud, Endpoint Security, and consolidated dashboards

• Participate in security hardening, vulnerability assessments, audits, and SOC process improvements

Qualifications Required:

• Strong experience in SOC / CERT / CSIRT environments
• Hands-on expertise with Microsoft Sentinel, Defender for Cloud, Defender Endpoint, Defender Identity, Office 365 Security, Exchange Security, Azure AD
• Strong knowledge of SIEM log onboarding, log management, dashboards, and playbooks
• Good understanding of MITRE ATT&CK framework, threat hunting, and detection engineering
• Knowledge of firewalls, IDS/IPS, endpoint security, anti-malware, vulnerability tools
• Strong understanding of networks, cloud infrastructure, Windows, Linux, and cyberattack techniques
• Excellent analytical, communication, and cross-functional collaboration skills If you are a proactive cybersecurity professional with a passion for staying updated on emerging threats and technologies, possess strong incident response and threat analysis skills, and are self-motivated to work with global cross-functional teams, you would be an ideal candidate for this role.