Job Description

- Senior Security Engineer (SOC Analyst)
Experience Required: 4+ Years
Location: Hyderabad (Onsite)
About the Role
OSI Digital is seeking an experienced Senior Security Engineer with 4+ years in Security Operations and Incident Response. This is a critical role within our Security Operations Center (SOC) where you will lead efforts in monitoring, detecting, and responding to sophisticated cyber threats.
The ideal candidate has strong technical expertise across SIEM, SOAR, EDR, DLP, VAPT, and phishing defense, combined with analytical skills and a proactive security mindset. You will mentor junior SOC analysts, drive automation initiatives, and collaborate with IT and business teams to continuously improve the organization's security posture.
Key Responsibilities

• Security Monitoring & Threat Detection

• Lead SOC operations by monitoring security events from SIEM, EDR, and DLP platforms.
• Perform advanced correlation, threat hunting, and anomaly detection across diverse log sources.
• Incident Response & Forensics

• Investigate, contain, and eradicate security incidents (malware, phishing, insider threats, data exfiltration, privilege abuse, etc.).
• Conduct forensic analysis of endpoints, network traffic, and logs to determine root cause.
• Prepare detailed incident reports and recommend long-term preventive measures.
• Vulnerability Management & VAPT

• Oversee vulnerability scanning, penetration testing, and remediation activities.
• Collaborate with application, infrastructure, and DevOps teams to fix critical gaps.
• Security Automation & SOAR

• Implement playbooks and automation workflows for incident response and repetitive tasks.
• Optimize SOC efficiency and reduce MTTD/MTTR through SOAR integrations.
• Phishing Defense & Awareness

• Lead phishing detection and response, including simulation campaigns and user awareness programs.
• Analyze phishing attacks, block malicious domains, and improve email security posture.
• Compliance & Governance

• Ensure alignment with industry standards such as ISO 27001, NIST, PCI-DSS, GDPR.
• Participate in audits and provide technical evidence for compliance reporting.
• Collaboration & Mentorship

• Mentor junior SOC analysts, conduct knowledge-sharing sessions, and support L1/L2 escalations.
• Work with global teams to enhance monitoring coverage and improve incident response strategies.

Required Skills & Expertise * 6+ years of experience in Security Operations / SOC Analyst roles.

• Hands-on expertise with multiple SIEM platforms (Azure Sentinel, IBM QRadar, Splunk).
• Proficiency in SOAR platforms and automation of incident response workflows.
• Strong working knowledge of:
• EDR solutions (CrowdStrike, Microsoft Defender, SentinelOne, Tanium, etc.)
• DLP technologies (Symantec, Forcepoint, Digital Guardian, etc.)
• IDS/IPS, firewalls, proxy solutions, forensic tools
• VAPT methodologies and tools (Nessus, BurpSuite, Netsparker, Kali Linux, Metasploit)
• Experience handling phishing campaigns, spear-phishing detection, and email security controls.
• Solid understanding of threat intelligence platforms, MITRE ATT&CK framework, and adversary tactics/techniques.
• Practical experience in security audits, compliance frameworks, and infrastructure/application hardening.
• Familiarity with scripting/automation (Python, PowerShell, Bash) for security tasks.
• Mandatory Certifications: At least one advanced cybersecurity certification (e.g., CISSP, CISM, GCIA, GCIH, OSCP, CEH Master). Multiple certifications preferred.
• Strong communication, documentation, and presentation skills for both technical and business stakeholders.

Why Join Us?

• Be part of a mission-critical SOC team tackling real-world cyber threats.
• Opportunity to lead initiatives in automation, threat hunting, and advanced incident response.
• Work with a broad stack of security tools and technologies across endpoints, cloud, and applications.
• Continuous learning with sponsorship for certifications and specialized training.
• A collaborative, growth-driven environment where your expertise makes a real impact.

Who We're Not Looking For

• Candidates unwilling to work onsite at our Hyderabad office.
• Professionals without hands-on SOC / incident response background.
• Individuals who lack multi-tool, cross-domain expertise in modern security operation

Skills Required