CrawlJobs Logo
NTT DATA Logo NTT DATA · IT - Administration

SOC Engineer - L3

India, Mumbai · Job Posted June 09, 2026
Apply Position
Job Link Share

Job Description

The Information Security Analyst is a seasoned subject matter expert, responsible for protecting the organization's computer networks from cyber-attacks, and to help set and maintain security standards. This role is required to monitor the organization's computer networks for security issues, install security software, and document any security issues or breaches found. The Information Security Analyst is responsible for assisting in the planning, implementation, and management of information security measures to safeguard the organization's digital assets and systems and contributes to maintaining a secure and compliant environment.

Job Responsibility

  • Monitors security alerts and events from various sources, investigates potential threats, and escalates incidents as necessary
  • Assists in the implementation and monitoring of security controls, including firewalls, intrusion detection systems, and access controls
  • Performs regular vulnerability assessments, analyses scan results, and assists in prioritizing and remediating identified vulnerabilities
  • Supports the incident response team in investigating security incidents, documenting findings, and participating in remediation efforts
  • Assists in ensuring compliance with industry standards (for example, GDPR, ISO 27001) by conducting assessments and implementing necessary controls
  • Installs security measures and operates software to protect systems and information infrastructure, including firewalls and data encryption programs
  • Documents security breaches and assess the damage they cause
  • Works with the security team to perform tests and uncover network vulnerabilities
  • Fixes detected vulnerabilities to maintain a high-security standard
  • Develops organizational best practices for IT security
  • Performs penetration testing and upgrades systems to unable security software
  • Installs and upgrades antivirus software and tests and evaluates new technology
  • Assists with the installation of security software and understands information security management
  • Researches security enhancements and makes recommendations to management
  • Stays abreast of information technology trends and security standards
  • Contributes to security awareness initiatives by creating training materials, conducting workshops, and educating employees about best security practices
  • Maintains accurate records of security incidents, assessments, and actions taken for reporting and audit purposes
  • Assists in the management and maintenance of security tools, including antivirus software, encryption tools, and security information and event management (SIEM) systems
  • Participates in risk assessments to identify potential security threats, vulnerabilities, and associated risks to the organization
  • Collaborates with cross-functional teams, IT, and other teams to ensure security measures are integrated into the organization's processes and projects
  • Performs any other related task as required

Requirements

  • Excellent communication skills to effectively convey technical information to non-technical stakeholders
  • Excellent analytical thinking and problem-solving skills to prevent hacking on a network
  • Ability to identify and evaluate potential risks and to develop solutions
  • Ability to identify and mitigate network vulnerabilities and explain how to avoid them
  • Seasoned proficiency in understanding of firewalls, proxies, SIEM, antivirus, and IDPS concepts
  • Seasoned proficiency in understanding of patch management with the ability to deploy patches in a timely manner whilst understanding business impact
  • Seasoned proficiency with MAC and OS
  • Seasoned familiarity with security frameworks, standards, and regulations (for example, NIST, CIS, GDPR)
  • Seasoned proficiency of understanding in network and system architecture, protocols, and security controls
  • Strong analytical skills to analyze security incidents and assess potential risks
  • Ability to work both independently and collaboratively in a fast-paced environment
  • Bachelor's degree or equivalent in information security, cybersecurity, computer science, or related
  • Security certifications such as CompTIA Security+, Certified Information Systems Security Professional (CISSP), or Certified Information Security Manager (CISM) are advantageous
  • Seasoned demonstrated experience in information security or cybersecurity, or related roles
  • Seasoned demonstrated experience working in a global IT organization
  • Seasoned demonstrated experience with computer network penetration testing and techniques
  • Seasoned demonstrated experience with security assessment and vulnerability scanning tools

Nice to have

Security certifications such as CompTIA Security+, Certified Information Systems Security Professional (CISSP), or Certified Information Security Manager (CISM) are advantageous

NTT DATA - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

SOC Engineer - L3

8 matching positions

L3 SOC Analyst

Managed Services Security team are made up of teams that provide remote (offsite...
Location
Location
Ireland , Galway
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field or equivalent experience desired
  • Generally, 5+ years in SOC, Incident Response, or Threat Analysis roles
  • Strong knowledge & understanding of common attack vectors and threat actor tactics, techniques, and procedures
  • Knowledge of Elastic SIEM is preferred. If not experience on any of the other SIEM tools like Sentinel, Splunk, QRadar, LogRhythm
  • Relevant industry qualification where applicable
  • Excellent verbal and written communication skills in language to be supported
  • Advanced troubleshooting skills in a technical environment
  • Excellent analytical and problem solving skills
  • Advanced Software and hardware knowledge of computing, storage and peripheral devices
  • Specific knowledge and training with the company's products. Knowledge of multiple product lines (for example, proactive, reactive, storage, enterprise systems, tier 2 or 3 support, etc.)
Job Responsibility
Job Responsibility
  • Monitor work queues for new escalations from the L1/L2 team
  • Triage cases when there are multiple escalations in the queue
  • Perform deep-dive analysis on escalated cases
  • Uses Threat intelligence and IOA/IOC data to identify source and impact of attack
  • Clearly document your investigations as they progress and regularly add case notes to the case to maintain situational awareness
  • Complete the investigations and recommend remediations for low and medium severity security incidents
  • Initiate a war room for confirmed or suspected critical security incidents and follow the documented incident response plan
  • Complete Post Incident Review (PIR) documentation for all medium and higher severity security incidents
  • Monitor work queues for new cases requiring review
  • Triage case reviews as required
What we offer
What we offer
  • Health & Wellbeing
  • Personal & Professional Development
  • Unconditional Inclusion
  • Fulltime
Read More
Arrow Right

SOC Analyst L3

The primary function of the Tier 3 Analyst is to enhance our security operations...
Location
Location
Belgium , Diegem
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 3 to 5 years of experience in the IT security industry, preferably working in a SOC/NOC environment
  • Hands-on experience with at least two of the following: Splunk, IBM QRadar, Microsoft Defender for Endpoint, Microsoft Sentinel, Google Chronicle
  • Strong knowledge of log formats, parsing, and normalization
  • Experience with KQL, SPL, AQL, or other SIEM query languages
  • Familiarity with scripting (Python, PowerShell) for automation and enrichment
  • Deep understanding of threat detection, incident response, and cyber kill chain
  • Familiarity with MITRE ATT&CK, NIST, and CIS frameworks
  • Strong verbal and written English communication
  • Strong interpersonal and presentation skills
  • Strong analytical skills
Job Responsibility
Job Responsibility
  • Deploy, configure, and maintain SIEM platforms (Splunk, QRadar, Sentinel, Defender, Chronicle)
  • Onboard and normalize log sources across cloud and on-prem environments
  • Develop and optimize analytical rules for threat detection, anomaly detection, and behavioural analysis
  • Design and implement incident response playbooks for various threat scenarios (e.g., phishing, lateral movement, data exfiltration)
  • Integrate playbooks with SOAR platforms (e.g., Microsoft Logic Apps, XSOAR) to automate triage and response
  • Continuously refine playbooks based on threat intelligence and incident feedback
  • Monitor and analyse security alerts and events to identify potential threats
  • Perform in-depth investigations and coordinate incident response activities
  • Collaborate with threat intelligence teams to enrich detection logic
  • Conduct threat modelling exercises using frameworks like MITRE ATT&CK, STRIDE, or Kill Chain
  • Fulltime
Read More
Arrow Right

Technical Specialist -SOC (Qradar Admin) L3

Join NTT DATA as a Security Managed Services Engineer (L3) and play a vital role...
Location
Location
India , Mumbai
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience handling complex security infrastructure within a managed services environment
  • Strong background in IT engineering, preferably within medium to large ICT organizations
  • Deep working knowledge of ITIL processes
  • Proficiency in planning activities and projects well in advance
  • Strong client-focused approach, ensuring a positive client experience
  • Excellent communication skills, with the ability to work across different cultures and social groups
  • Effective listening skills and an ability to adapt to changing circumstances
  • Ability to remain calm and positive under pressure, and willingness to work longer hours when necessary
  • Bachelor's degree or equivalent qualification in IT/Computing or equivalent work experience
Job Responsibility
Job Responsibility
  • Resolving complex technical incidents
  • Managing security infrastructure
  • Mentoring junior team members
  • Proactively identifying and resolving technical incidents
  • Performing necessary checks and applying monitoring tools
  • Ensuring that all assigned infrastructure at client sites is correctly configured, installed, tested, and operational from the start
  • Diving deep into third-line support calls, uncovering the root causes of incidents and problems
  • Engaging with clients, providing continuous feedback and updating them about their systems' statuses
  • Maintaining zero missed service level agreement (SLA) conditions
  • Identifying root cause of critical incidents and implementing solutions for problems identified
  • Fulltime
Read More
Arrow Right

Senior Windows & Cloud Security Engineer

We are seeking an experienced professional to lead and manage enterprise-scale W...
Location
Location
India , Pune
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6–8+ years of hands-on expertise in enterprise environments
  • Strong in Active Directory (AD DS, GPO, DNS, DHCP) and hybrid identity models
  • Highly proficient with Microsoft Defender for Endpoint for server environments
  • Experienced in managing Windows workloads on Microsoft Azure (IaaS)
  • Comfortable with PowerShell scripting and automation
  • Security-first, compliance-driven, and able to communicate complex technical concepts clearly
  • Confident in taking ownership, mentoring others, and working collaboratively across teams
Job Responsibility
Job Responsibility
  • Own and operate large-scale Windows Server environments (2016/2019/2022), including design, build, hardening, patching, upgrades, and decommissioning
  • Lead server lifecycle management, performance tuning, capacity planning, and availability management
  • Act as an L3 escalation point for complex Windows Server, Active Directory, Azure, and endpoint security incidents
  • Own Microsoft Defender for Endpoint onboarding, health, policy management, and compliance reporting for Windows Servers
  • Partner with SOC and Cyber Security teams to maintain a strong security posture and support audits
  • Drive Windows security baseline implementation, vulnerability remediation, and risk analysis
  • Design, administer, and optimise Active Directory Domain Services, including GPOs, OU structures, and domain controller security
  • Lead administration of Windows Server workloads hosted on Microsoft Azure, including hybrid identity and migration activities
  • Develop and maintain automation using PowerShell to improve efficiency and standardisation
  • Mentor junior team members and contribute to high-quality documentation and SOPs
What we offer
What we offer
  • Opportunity to work on enterprise-scale, business-critical platforms within a global organisation
  • Exposure to hybrid cloud architectures and advanced security practices
  • A collaborative environment that values learning, ownership, and continuous improvement
  • The chance to influence standards, automation, and operational excellence across platforms
  • Fulltime
Read More
Arrow Right

Server Load Balancer Engineer (L2)

Join a company that is pushing the boundaries of what is possible. We are renown...
Location
Location
India , Kolkata
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Provide Level 2 support for all incidents and service requests related to DMZ SLBs and perimeter GSLBs, resolving complex issues escalated from L1 teams
  • Perform routine health checks, proactive monitoring, and performance tuning of the load balancing infrastructure
  • Execute change requests for network and security modifications, including new virtual server configurations, pool member updates, and rule/iRule adjustments, following strict change management protocols
  • Assist with regular patching, software upgrades, and hardware maintenance of F5 BIG-IP devices and other related infrastructure, often during non-business hours
  • Implement and enforce network security policies and best practices specific to the banking sector, including PCI DSS and other regulatory requirements
  • Act as a liaison between L1 and L3 support teams, developers, and project managers
  • Assist with security audits, provide evidence of compliance, and address any security or vulnerability findings related to the load balancing environment
  • Ensure application traffic flows securely through the DMZ and across multiple data centers, coordinating with Security Operations Center (SOC) teams as needed
  • Shall analyze incidents & identify root causes and act for containment and remediation
  • Shall co-ordinate with the different departments/stakeholders for incident analysis and remedial action
Job Responsibility
Job Responsibility
  • Provide Level 2 support for all incidents and service requests related to DMZ SLBs and perimeter GSLBs, resolving complex issues escalated from L1 teams
  • Perform routine health checks, proactive monitoring, and performance tuning of the load balancing infrastructure
  • Execute change requests for network and security modifications, including new virtual server configurations, pool member updates, and rule/iRule adjustments, following strict change management protocols
  • Assist with regular patching, software upgrades, and hardware maintenance of F5 BIG-IP devices and other related infrastructure, often during non-business hours
  • Implement and enforce network security policies and best practices specific to the banking sector, including PCI DSS and other regulatory requirements
  • Act as a liaison between L1 and L3 support teams, developers, and project managers
  • Assist with security audits, provide evidence of compliance, and address any security or vulnerability findings related to the load balancing environment
  • Ensure application traffic flows securely through the DMZ and across multiple data centers, coordinating with Security Operations Center (SOC) teams as needed
  • Shall analyze incidents & identify root causes and act for containment and remediation
  • Shall co-ordinate with the different departments/stakeholders for incident analysis and remedial action
  • Fulltime
Read More
Arrow Right

Akamai WAF Engineer

Responsible for contributing towards the build and maintenance of the organizati...
Location
Location
India , Chennai
Salary
Salary:
Not provided
comcastcorporation.com Logo
Comcast
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5–7.5 years of experience in Web Application Security
  • Strong hands-on expertise with Akamai WAF / App & API Protector
  • Deep understanding of: HTTP/HTTPS, TLS, cookies, headers
  • Web architectures and microservices
  • REST and GraphQL APIs
  • Strong knowledge of: OWASP Top 10
  • MITRE ATT&CK (application-layer focus)
  • Experience with SIEM tools (Splunk, Elastic, etc.)
  • Experience with: REST APIs
  • Python / Bash scripting
Job Responsibility
Job Responsibility
  • Design, implement, and manage Akamai WAF policies for web and API protection
  • Tune WAF rules to reduce false positives while maintaining strong security posture
  • Configure protections for: OWASP Top 10
  • API abuse and schema violations
  • Bot attacks and credential stuffing
  • Layer 7 DDoS attacks
  • Perform advanced troubleshooting of complex production issues
  • Implement custom rules using Akamai App & API Protector and Kona Rule Sets
  • Support zero-day mitigation and virtual patching for critical CVEs
  • Integrate WAF signals with SOC workflows and SIEM platforms
What we offer
What we offer
  • Paid Time off
  • Physical Wellbeing benefits
  • Financial Wellbeing benefits
  • Emotional Wellbeing benefits
  • Life Events + Family Support Benefits
  • Fulltime
Read More
Arrow Right

Security Specialist Engineer

At Mobile Financial Services we enable financial inclusion - truly using Technol...
Location
Location
India , Noida
Salary
Salary:
Not provided
ericsson.com Logo
Ericsson
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Degree in Software Engineering or similar
  • Solid Linux handling knowledge in Kubernetes environment
  • Experience in Cloud/SAAS Operational Security Management, AWS will be preferred
  • Experience in container technologies e.g. Docker/Kubernetes
  • Minimum of 5 years of experience in the IT security industry, preferably working in a SOC/NOC environment
  • Better understanding of SSL/TLS
  • Better understanding of Vulnerability assessment and Management
  • Better understanding of Public Key Infrastructure
  • Working knowledge of TCP/IP and networking concepts
  • Better understanding of Certificate Management
Job Responsibility
Job Responsibility
  • Perform advanced triage and investigation of escalated security incidents from L2 and L3 analysts
  • Conduct threat hunting activities using SIEM, EDR, and network security tools
  • Correlate logs from multiple sources (firewalls, IDS/IPS, endpoints, cloud, email gateways)
  • Develop fine-tune detection rules and use cases in SIEM platforms
  • Analyze malware behavior and suspicious artifacts
  • Coordinate containment, eradication, and recovery actions during incidents
  • Review risky user behavior (impossible travel, abnormal downloads, privilege escalation)
  • Manage access controls, conditional access policies, and MFA enforcement
  • Security configuration reviews and hardening of cloud resources (VMs, storage, databases, Kubernetes, serverless)
  • Support Cloud Security Posture Management (CSPM) tools by investigating misconfigurations and policy violations
  • Fulltime
Read More
Arrow Right

Technology Services Engineer – Data Protection & Disaster Recovery

Immediate need for a Data Protection & Disaster Recovery Technical Services Engi...
Location
Location
United States , Alpharetta, Georgia
Salary
Salary:
Not provided
tier4group.com Logo
Tier4 Group
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 2+ years in an MSP setting focused on backup/DR and Windows server environments
  • Deep Veeam proficiency
  • Solid grounding in Windows Server/AD, virtualization (preferably Hyper-V, working knowledge of VMware), storage (SMB/NFS, iSCSI), networking basics, and change control
  • PowerShell and basic API/JSON skills to automate deployments, checks, and reports
  • Security & compliance mindset: RBAC/least privilege, MFA, encryption in transit/at rest, audit artifacts for SOC 2/HIPAA
  • Excellent documentation and incident communications
  • willing to support maintenance windows/on-call
Job Responsibility
Job Responsibility
  • Own backup, restore, and resiliency outcomes for all MSP clients
  • act as the primary technical liaison for backup/DR platforms and service delivery
  • Veeam platform ownership: design, configure, and maintain Veeam Backup & Replication (SOBR, backup copy, replication, Instant Recovery, SureBackup labs)
  • manage repositories, retention, encryption, and job health
  • Immutable off-site copies: build and operate (bucket policies, retention/immutability, lifecycle/usage controls) as the off-site tier
  • Monitoring & compliance reporting: implement and tune end-to-end success/failure monitoring, alerting/escalation, daily health checks, and compliance evidence packs
  • 3-2-1 architectures: design and run three-copy / two-media / one off-site strategies using NAS appliances (QNAP/Synology) for local copy and off-site
  • document RPO/RTO per workload
  • Recovery testing & documentation: execute regular restore drills (file/VM/app-item, Instant Recovery, SureBackup verification), record results, and maintain DR runbooks with clear owners and contact trees
  • Incident response & escalation: lead backup/restore and DR events (containment, comms, status cadence, executive updates), perform RCA, and drive corrective and preventive actions
What we offer
What we offer
  • Competitive salary
  • comprehensive benefits (medical, dental, vision, life, disability, 401(k) match)
  • robust PTO
  • Fulltime
Read More
Arrow Right