Job board

Discover opportunities across our network.
companies
Jobs
Search 
jobs
Explore 
companies
My job alerts

Sr Security Analyst Noida, India Sr Security Analyst

Devo

Devo

IT
Posted on Jan 22, 2026
Apply now

Description

JOB SUMMARY
We are seeking a Senior Security Operations Center (SOC) Analyst to lead threat detection, investigation, and incident response across our enterprise and product environments.
This role is hands-on and execution-focused. The Senior SOC Analyst must possess technical leadership skills within the SOC, responsible for triaging and investigating complex security events, improving detection quality, mentoring junior analysts, and driving automation and process maturity across security operations.
The ideal candidate is analytical, calm under pressure, and technically strong, with deep experience in SIEM-based monitoring, endpoint and cloud security telemetry, and coordinated incident response. This role partners closely with Security Engineering, Infrastructure, IT, and Product teams to contain threats quickly and improve defensive posture over time.
JOB DETAILS
  • Monitor and analyze security alerts across multiple data sources, including: SIEM, EDR/XDR, Cloud security platforms, Network, and application logs
  • Perform advanced triage to distinguish true threats from false positives
  • Correlate telemetry across endpoints, cloud, identity, and network layers
  • Develop, tune, and maintain high-fidelity detection rules and alerts
  • Identify gaps in visibility and recommend improvements to logging and monitoring
  • Lead investigation of moderate to high-severity security incidents, including: Malware and ransomware, Phishing and social engineering, Credential compromise and identity abuse, Insider threats, Cloud and SaaS security incidents
  • Determine scope, impact, root cause, and attacker techniques
  • Execute containment, eradication, and recovery actions in coordination with stakeholders
  • Document incidents thoroughly, including timelines, findings, and lessons learned
  • Participate in and lead post-incident reviews and improvement initiatives
  • Conduct proactive threat hunting using hypotheses based on attacker behavior and threat intelligence
  • Analyze indicators of compromise (IOCs) and tactics, techniques, and procedures (TTPs)
  • Map observed activity to MITRE ATT&CK
  • Track emerging threats relevant to the organization’s technology stack and industry
  • Feed threat intelligence and hunting outcomes back into detection engineering
  • Design and improve SOC playbooks, runbooks, and response workflows
  • Leverage SOAR platforms, scripts, and APIs to automate alert enrichment, triage, and response
  • Reduce mean time to detect (MTTD) and mean time to respond (MTTR)
  • Continuously improve alert quality and operational efficiency
  • Identify repetitive tasks and drive automation to eliminate manual effort
  • Serve as an escalation point for MSSP
  • Mentor and coach SOC team members on investigation techniques and tools
  • Partner with: Security Engineering on detection and tooling improvements, IT and Infrastructure teams on containment and remediation, GRC teams on evidence collection and incident reporting
  • Communicate incident status and risk clearly to technical and non-technical stakeholders
  • Participate in on-call rotations and incident response coverage as required
  • Support security operations requirements aligned to industry frameworks, including: SOC 2, ISO/IEC 42001, NIST CSF / NIST 800-53, PCI DSS (as applicable)
  • Provide system-generated evidence for audits and customer security reviews
  • Ensure incident handling procedures align with documented policies and standards
  • Contribute to tabletop exercises and incident response simulations

CANDIDATE REQUIREMENTS
1. KNOWLEDGES, SKILLS AND ABILITIES
Qualifications:
  • 5+ years of experience in Security Operations, SOC, or Incident Response
  • Strong hands-on experience with: SIEM platforms, EDR/XDR tools, Log analysis and correlation
  • Solid understanding of: Network protocols and traffic analysis, Endpoint and operating system internals, Identity and access attacks
  • Experience leading or owning incident investigations
  • Strong analytical, documentation, and communication skills
2. BACKGROUND EXPERIENCES
  • A Bachelor's or Master's degree in Computer Science, Security Assurance or Relevant field
  • Experience in cloud and SaaS environments (AWS, Azure, GCP)
  • Familiarity with SOAR platforms and workflow automation
  • Threat hunting experience using MITRE ATT&CK
  • Scripting or automation experience (Python, PowerShell, Bash)
  • Experience supporting 24x7 SOC operations and on-call rotations
  • Exposure to DevSecOps or security tooling integration
  • Relevant certifications (preferred, not required): GCIA, GCIH, GCED, CISSP, or SIEM certifications

Devo does not discriminate on the basis of race, color, national origin, religion, gender, age, veteran status, sexual orientation, marital status or disability (in compliance with the Americans with Disabilities Act) with respect to employment opportunities.

Don’t meet every single requirement? At Devo we are dedicated to building a diverse, inclusive and authentic workplace, so if you’re excited about this role but your past experience doesn’t align perfectly with every qualification in the job description, we encourage you to apply anyways. You may be just the right candidate for this or other roles.

At Devo, diversity and inclusion means more than treating employees well and making them feel welcome. It is a commitment to hiring people who bring different insights because of their unique perspectives, ways of thinking, and prior experiences.

We intend to continue hiring great people and protecting our culture so everyone can be themselves and speak their minds. That way Devo will always be a place filled with purpose, energy, hard work, thoughtfulness, and respect.

To All Agencies: Please, no phone calls or emails to any employee of Devo outside of the Talent Acquisition team. Devo's policy is to only accept resumes from agencies via the Devo Agency Portal. Agencies must have a valid fee agreement in place and they must have been assigned the specific requisition to which they submit resumes, by the Talent Acquisition team. Any resume submitted outside of this process will be deemed the sole property of Devo and in the event a candidate is submitted outside of this policy is hired, no fee or payment of any kind will be paid

Apply now
See more open positions at Devo
Privacy policyCookie policy