CrawlJobs Logo
NTT DATA Logo NTT DATA · IT - Administration

SOC Engineer - L2

India, Mumbai · Job Posted January 25, 2026
Apply Position
Job Link Share

Job Description

Join a dynamic team as a Senior Security Managed Services Engineer, where you'll manage security infrastructures, resolve incidents, and collaborate with teams to enhance client experiences. Proficiency in ticketing tools and strong analytical skills are essential for success in this role.

Job Responsibility

  • Ensure that our clients' security infrastructures and systems remain operational
  • Monitor, identify, investigate, and resolve technical incidents and problems, restoring service efficiently
  • Handle client requests or tickets with technical expertise, ensuring they are resolved within the agreed service level agreement (SLA)
  • Actively manage work queues, perform operational tasks, and update tickets with resolution actions
  • Identify issues and errors early on, log incidents promptly and provide second-level support, communicating effectively with other teams and clients to extend support when needed
  • Execute changes responsibly, flag risks and mitigation plans, and ensure all changes have proper approvals
  • Work closely with automation teams to optimize efforts and automate routine tasks, ensuring seamless handovers during shift changes
  • Audit incident and request tickets for quality, recommend improvements, and contribute to trend analysis reports to identify automation opportunities
  • Act as a go-to for initial client escalations, assist L1 Security Engineers with triage and troubleshooting, and support project work when required
  • Contribute to the change management process to ensure thorough documentation, effective planning and execution of maintenance activities, and compliance with standard procedures

Requirements

  • Experience with managed services handling security infrastructure
  • Working knowledge of ticketing tools, preferably ServiceNow
  • Proficiency in active listening, with techniques like paraphrasing and probing for further information
  • Excellent planning skills, able to anticipate and adjust to changing circumstances
  • Strong ability to communicate and engage across different cultures and social groups
  • Adaptability to changing conditions and flexibility in approach
  • Client-focused mindset, always putting their needs and positive experience first
  • A positive outlook and the ability to work well under pressure
  • Willingness to put in longer hours when necessary
  • Bachelor's degree or equivalent qualification in IT/Computing, or relevant work experience
NTT DATA - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

SOC Engineer - L2

8 matching positions

SOC Engineer - L2

Join NTT DATA as an Information Security Analyst, where you will play a crucial ...
Location
Location
India , Mumbai
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree or equivalent in information security, cybersecurity, computer science, or related
  • Moderate level of demonstrated experience in information security or cybersecurity, or related roles
  • Moderate level of demonstrated experience working in a global IT organization
  • Moderate level of demonstrated experience with computer network penetration testing and techniques
  • Moderate level of demonstrated experience with security assessment and vulnerability scanning tools
  • Good communication skills to effectively convey technical information to non-technical stakeholders
  • Good analytical thinking and problem-solving skills to prevent hacking on a network
  • Ability to identify and evaluate potential risks and to develop solutions
  • Ability to identify and mitigate network vulnerabilities and explain how to avoid them
  • Understands firewalls, proxies, SIEM, antivirus, and IDPS concepts
Job Responsibility
Job Responsibility
  • Monitors security alerts and events from various sources, investigates potential threats, and escalates incidents as necessary
  • Assists in the implementation and monitoring of security controls, including firewalls, intrusion detection systems, and access controls
  • Performs regular vulnerability assessments, analyses scan results, and assists in prioritizing and remediating identified vulnerabilities
  • Supports the incident response team in investigating security incidents, documenting findings, and participating in remediation efforts
  • Assists in ensuring compliance with industry standards (for example, GDPR, ISO 27001) by conducting assessments and implementing necessary controls
  • Installs security measures and operates software to protect systems and information infrastructure, including firewalls and data encryption programs
  • Documents security breaches and assess the damage they cause
  • Works with the security team to perform tests and uncover network vulnerabilities
  • Fixes detected vulnerabilities to maintain a high-security standard
  • Develops organizational best practices for IT security
  • Fulltime
Read More
Arrow Right

Server Load Balancer Engineer (L2)

Join a company that is pushing the boundaries of what is possible. We are renown...
Location
Location
India , Kolkata
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Provide Level 2 support for all incidents and service requests related to DMZ SLBs and perimeter GSLBs, resolving complex issues escalated from L1 teams
  • Perform routine health checks, proactive monitoring, and performance tuning of the load balancing infrastructure
  • Execute change requests for network and security modifications, including new virtual server configurations, pool member updates, and rule/iRule adjustments, following strict change management protocols
  • Assist with regular patching, software upgrades, and hardware maintenance of F5 BIG-IP devices and other related infrastructure, often during non-business hours
  • Implement and enforce network security policies and best practices specific to the banking sector, including PCI DSS and other regulatory requirements
  • Act as a liaison between L1 and L3 support teams, developers, and project managers
  • Assist with security audits, provide evidence of compliance, and address any security or vulnerability findings related to the load balancing environment
  • Ensure application traffic flows securely through the DMZ and across multiple data centers, coordinating with Security Operations Center (SOC) teams as needed
  • Shall analyze incidents & identify root causes and act for containment and remediation
  • Shall co-ordinate with the different departments/stakeholders for incident analysis and remedial action
Job Responsibility
Job Responsibility
  • Provide Level 2 support for all incidents and service requests related to DMZ SLBs and perimeter GSLBs, resolving complex issues escalated from L1 teams
  • Perform routine health checks, proactive monitoring, and performance tuning of the load balancing infrastructure
  • Execute change requests for network and security modifications, including new virtual server configurations, pool member updates, and rule/iRule adjustments, following strict change management protocols
  • Assist with regular patching, software upgrades, and hardware maintenance of F5 BIG-IP devices and other related infrastructure, often during non-business hours
  • Implement and enforce network security policies and best practices specific to the banking sector, including PCI DSS and other regulatory requirements
  • Act as a liaison between L1 and L3 support teams, developers, and project managers
  • Assist with security audits, provide evidence of compliance, and address any security or vulnerability findings related to the load balancing environment
  • Ensure application traffic flows securely through the DMZ and across multiple data centers, coordinating with Security Operations Center (SOC) teams as needed
  • Shall analyze incidents & identify root causes and act for containment and remediation
  • Shall co-ordinate with the different departments/stakeholders for incident analysis and remedial action
  • Fulltime
Read More
Arrow Right

Senior Information Security Engineer (SOC)

We are looking for a Senior SOC Engineer to strengthen our Security Operations c...
Location
Location
Qatar , Doha
Salary
Salary:
Not provided
qic.digital Logo
QIC digital hub
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in Information Security as an L2/L3 SOC Analyst/Engineer with strong focus on Incident Response
  • Strong understanding of the incident lifecycle, detection engineering, and response escalation
  • Hands-on experience with SIEM/SOAR platforms (e.g., Splunk, Sentinel, Chronicle, QRadar, Wazuh)
  • Experience conducting security investigations and root cause analysis, as well as documenting those
  • Understanding of common log sources (network, endpoint, identity, application)
  • Experience developing detection rules and playbooks (Sigma, KQL, YAML, etc.)
  • Knowledge of ISO 27001 standards, MITRE ATT&CK and threat intelligence practices
  • Basic scripting or automation skills (Python or Bash)
  • Strong documentation, communication, and cross-team collaboration skills
Job Responsibility
Job Responsibility
  • Define and continuously improve security processes, procedures, and incident response playbooks
  • Optimize security event and log collection based on risk and detection relevance
  • Oversee and improve incident response workflows through post-incident analysis and lessons learned
  • Collaborate with L1-L2 security team members to expand detection coverage and develop new use cases
  • Participate in major security incident investigations, providing technical analysis and remediation guidance
  • Standardize automation and orchestration across SIEM, SOAR, EDR and related tools
  • Ensure alignment of security operations with security policies and frameworks (ISO 27001, NIST, MITRE ATT&CK)
  • Review security architecture for cloud and on-prem environments and recommend improvements
  • Lead investigation and response for high and critical severity incidents
  • Track remediation actions and ensure closure of identified security gaps
What we offer
What we offer
  • Extra paid leave
  • Language classes
  • Meeting with experts
  • Professional development
  • QIC running club
  • Relocation support
  • Remote health insurance
  • Tax consultations
  • Travel discounts
  • USD, EUR, or AED salary payouts
  • Fulltime
Read More
Arrow Right

Platform Support Engineer L2

The SIEM Platform Support Engineer (L2) plays a crucial role in managing escalat...
Location
Location
India , Bengaluru
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree or equivalent in Information Technology or Computer Science or related field
  • Relevant Security certifications
  • Medium level experience providing SOC platform technical support upto 8 yrs
  • SME on SIEM platforms
  • Technical troubleshooting skills
  • Customer communication skills
  • Problem-solving skills
  • Knowledge of security concepts
  • Proficient with analyzing log files and standard debugging concept
Job Responsibility
Job Responsibility
  • Escalated Ticket Handling
  • In-depth Troubleshooting
  • Data Integration and Configuration
  • Collaboration with Engineering
  • On-the-Job Training
  • SIEM Platform Expertise
  • Security Operations Support
  • Fulltime
Read More
Arrow Right

SOC Analyst L2

Location
Location
Egypt , Nasr City
Salary
Salary:
Not provided
el-delta.com Logo
El Delta Electronic Systems
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Science, Information Technology, or related field
  • CCNA/CCNP security, Certified Forensic Computer Examiner (CFCE), Certified Information Systems Security Professional (CISSP) with a focus on digital forensics, or other relevant advanced security certifications highly preferred
  • 3+ years of experience in SOC Analyst role
  • Strong understanding of computer operating systems (Windows, Linux, macOS)
  • Experience with digital forensics and analysis tools and software (e.g., EnCase, FTK, Cellebrite)
  • Experience in advanced threat hunting, and incident response
  • Knowledge of common attack vectors (e.g., phishing, malware, ransomware)
  • Understanding of threat intelligence feeds and data sources
  • Experience with security orchestration and automation platforms (SOAR)
Job Responsibility
Job Responsibility
  • Conduct in-depth analysis of security alerts and incidents escalated from L1
  • Utilize advanced threat intelligence and hunting techniques to identify and investigate sophisticated threats
  • Perform malware analysis and reverse engineering techniques
  • Investigate and analyze network traffic for malicious activity
  • Develop, maintain, and enrich threat intelligence feeds, indicators of compromise (IOCs), and other relevant threat-related data
  • Lead and coordinate incident response activities, including containment, eradication, recovery, and root cause analysis
  • Develop and implement security playbooks and response procedures
  • Collaborate with other IT teams to remediate security vulnerabilities and implement security controls
  • Conduct in-depth digital forensic investigations on compromised systems and networks
  • Collect, preserve, and analyze digital evidence according to legal and industry best practices
  • Fulltime
Read More
Arrow Right

L2 Digital Signage Engineer

The Level 2 Digital Signage Engineer provides advanced technical support, config...
Location
Location
Romania , Bucharest
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree or equivalent experience in Information Technology
  • Computer Science
  • Electronics / AV Engineering
  • Telecommunications
  • 3+ years experience in digital signage, AV systems, or IT support roles
  • Proven experience supporting enterprise or large-scale digital signage deployments
  • Experience working in a managed services or service desk environment
  • Exposure to incident, problem, and change management processes
  • Experience supporting Windows, Linux, or embedded player platforms
  • Strong analytical and structured troubleshooting skills
Job Responsibility
Job Responsibility
  • Provide Level 2 support for digital signage hardware, software, and network-related issues
  • Troubleshoot and resolve incidents escalated from Level 1 support within SLA
  • Configure, deploy, and maintain digital signage players, displays, and CMS platforms
  • Perform root cause analysis and implement permanent fixes for recurring issues
  • Support content scheduling, playback issues, and media optimisation
  • Monitor system health, performance, and uptime using monitoring tools
  • Apply firmware, OS, and application updates in line with change management processes
  • Maintain accurate technical documentation, runbooks, and asset records
  • Liaise with vendors and third-party support for issue resolution and escalations
  • Support new installations, upgrades, pilots, and proof-of-concept deployments
  • Fulltime
Read More
Arrow Right

Systems Engineering Senior Specialist-Vulnerability Remediation & Tanium Support

We are currently seeking a Systems Engineering Senior Specialist-Vulnerability R...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • HCL Tanium — Server, Module Server, Zone Proxy, and Client deployment and administration (intermediate to advanced level)
  • Tanium Patch, Deploy, Interact, Inventory, Comply, Connect — module configuration and operations
  • Tanium Client deployment via GPO, SCCM, Intune, and PowerShell scripting
  • Tanium sensor, package, and saved question development
  • Vulnerability Remediation
  • Understanding of CVEs
  • Tanium RBAC — user roles, computer groups, content set management
  • Tanium Relevance Language for custom sensor and targeting development
  • PowerShell and Batch scripting for Tanium automation and client management
  • Tanium Connect integration with SIEM and ITSM platforms
Job Responsibility
Job Responsibility
  • Deploy and configure Tanium Server, Tanium Module Server, Zone Proxies, and Tanium Client across enterprise environments
  • vulnerability remediation using Tanium Comply, Detect, Patch, and custom remediation packages
  • Collaborate with security teams (SOC, Threat Management, GRC) to align remediation with vulnerability SLAs and compliance frameworks
  • Drive security hardening programs across endpoints using custom sensors, packages, and benchmarks
  • Execute Tanium platform deployments following defined architecture standards, deployment runbooks, and organizational guidelines
  • Manage Tanium Client deployment at scale across Windows, Linux, and macOS endpoints using GPO, SCCM, Intune, and script-based methods
  • Configure Tanium Zone Proxies for DMZ and remote site endpoint connectivity and visibility
  • Set up and configure Tanium modules post-deployment including Tanium Patch, Deploy, Interact, Inventory, Comply, and Connect
  • Manage Tanium platform SSL certificates, authentication configurations, and RBAC role assignments during and post-deployment
  • Execute Tanium platform upgrades, module updates, and hotfix deployments following change management procedures
  • Fulltime
Read More
Arrow Right

Security Specialist Engineer

At Mobile Financial Services we enable financial inclusion - truly using Technol...
Location
Location
India , Noida
Salary
Salary:
Not provided
ericsson.com Logo
Ericsson
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Degree in Software Engineering or similar
  • Solid Linux handling knowledge in Kubernetes environment
  • Experience in Cloud/SAAS Operational Security Management, AWS will be preferred
  • Experience in container technologies e.g. Docker/Kubernetes
  • Minimum of 5 years of experience in the IT security industry, preferably working in a SOC/NOC environment
  • Better understanding of SSL/TLS
  • Better understanding of Vulnerability assessment and Management
  • Better understanding of Public Key Infrastructure
  • Working knowledge of TCP/IP and networking concepts
  • Better understanding of Certificate Management
Job Responsibility
Job Responsibility
  • Perform advanced triage and investigation of escalated security incidents from L2 and L3 analysts
  • Conduct threat hunting activities using SIEM, EDR, and network security tools
  • Correlate logs from multiple sources (firewalls, IDS/IPS, endpoints, cloud, email gateways)
  • Develop fine-tune detection rules and use cases in SIEM platforms
  • Analyze malware behavior and suspicious artifacts
  • Coordinate containment, eradication, and recovery actions during incidents
  • Review risky user behavior (impossible travel, abnormal downloads, privilege escalation)
  • Manage access controls, conditional access policies, and MFA enforcement
  • Security configuration reviews and hardening of cloud resources (VMs, storage, databases, Kubernetes, serverless)
  • Support Cloud Security Posture Management (CSPM) tools by investigating misconfigurations and policy violations
  • Fulltime
Read More
Arrow Right