Job Description

We are seeking a skilled and proactive

Level 2 Security Operations Center (SOC) Analyst

with hands-on experience in

Wazuh SIEM/XDR

,

Microsoft Office 365 Security

, and advanced incident response capabilities. The ideal candidate will play a critical role in triaging, investigating, and escalating security alerts and threats within our Hybrid SNOC (Security and Network Operations Center) environment.

Key Responsibilities:

Monitor and triage security alerts in real-time across multiple sources (EDR, Wazuh SIEM, Microsoft Defender for Office 365, etc.). Conduct deep-dive investigations of escalated alerts and determine the severity, scope, and impact of potential threats. Perform threat detection and analysis using

Wazuh

, correlating logs and alerts from endpoints, cloud services, and network appliances. Analyze email threats, suspicious attachments, phishing attempts, and unauthorized access within

Microsoft 365 environments

, including Secure Score, Compliance Score, Defender for Cloud Apps, and Attack Simulation tools. Coordinate with L1 SOC Analysts to validate, enrich, and escalate incidents appropriately. Document findings, create incident tickets, and support threat remediation and mitigation efforts. Conduct routine threat hunts and log reviews as part of proactive detection. Collaborate with threat intelligence and response teams on persistent threats and zero-day indicators. Assist in maintaining SOC documentation, playbooks, and escalation procedures. Support domain security configurations and monitoring: SPF, DKIM, DMARC.

Required Skills and Qualifications:

2-4 years

of hands-on experience as a SOC Analyst or Cybersecurity Specialist. Proven experience using

Wazuh

for SIEM/XDR monitoring and threat detection. Strong understanding of

Microsoft 365 Security architecture

, including Defender for Office 365, Azure AD Conditional Access, MFA, and Compliance Manager. Familiarity with incident classification, severity levels, and handling procedures (SOPs). Experience with

ticketing and change management systems

(e.g., Andromeda or similar). Knowledge of common threat vectors, MITRE ATT&CK framework, and alert prioritization. Fluent in English, both written and verbal, with the ability to document technical details clearly and effectively. Strong attention to detail, critical thinking, and problem-solving skills.

Preferred Certifications:

Microsoft 365 Certified: Security Administrator Associate (MS-500) Wazuh Fundamentals or Wazuh Certified Engineer CompTIA CySA+ or Security+ EC-Council Certified SOC Analyst (CSA) Certified Ethical Hacker (CEH)

Shift Coverage:

Must be flexible to work in

rotational shifts

, including nights, weekends, and holidays, as part of a

24/7

SOC environment.
Job Types: Full-time, Permanent

Pay: ₹50,000.00 - ₹100,000.00 per month

Benefits:

Cell phone reimbursement Internet reimbursement Paid sick time Paid time off Work from home
Work Location: Remote