Job Description

:
This role is for one of the Weekday's clients
Min Experience: 3 years
Location: Bengaluru
JobType: full-time
We're looking for a skilled Security Operations Engineer to strengthen our cyber defense capabilities across both on-premise and cloud environments. In this role, you'll be responsible for monitoring, detecting, and responding to security incidents, performing threat hunting, and driving automation to enhance overall security posture.
Requirements:
Key Responsibilities

• Monitor, detect, and respond to security incidents across on-premises and cloud environments.
• Analyze alerts from security tools to identify and prioritize potential threats.
• Conduct forensic investigations and perform deep-dive analyses to uncover attack patterns and areas for improvement.
• Lead proactive threat-hunting activities across endpoints, networks, and cloud environments to identify advanced threats.
• Analyze logs, behavioral patterns, and anomalies to detect indicators of compromise (IOCs) and attacker tactics, techniques, and procedures (TTPs).
• Investigate incidents, perform root-cause analysis, and recommend actionable remediation steps.
• Develop and refine threat-hunting methodologies aligned with frameworks like MITRE ATT&CK and Cyber Kill Chain.
• Automate detection and response workflows using scripting languages such as Python, PowerShell, or Bash.
• Stay updated on emerging threats, vulnerabilities, and adversarial trends to enhance detection and response strategies.

Qualifications

• Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or equivalent experience.
• Minimum 3 years of experience in security operations, threat hunting, or a similar cybersecurity function.
• Proven experience working with log data across cloud, endpoint (EDR), and network sources.
• Hands-on experience developing and deploying detection rules (YARA, Sigma, SQL-based, Network rules, etc.).
• Strong understanding of network security monitoring, packet analysis, and log correlation.
• Expertise in analyzing attacker TTPs using frameworks such as MITRE ATT&CK.
• Proficiency in scripting and automation for security operations (Python, PowerShell, Bash).
• Familiarity with endpoint security, identity management, cloud security, detection engineering, vulnerability management, and incident response.
• Excellent communication skills and ability to collaborate effectively in a fast-paced environment.

Key Skills

• Threat Hunting
• Incident Response
• Security Automation
• DLP (Data Loss Prevention)
• Cyber Threat Hunting (CTH)

Skills Required