Sr Analyst
India
Apply now
Job Description
Sr Analyst
Chennai, Tamil Nadu

Job Summary

job Summary : The SOC Operations Analyst L2 is responsible for monitoring and analyzing security alerts using tools like Microsoft Sentinel. The role includes investigating incidents, identifying real threats, and supporting response and remediation activities. The analyst works on alerts escalated from L1, performs log analysis, and helps improve detection by fine-tuning rules. They also support threat hunting, automation, and maintain proper documentation and reports. This role requires good knowledge of SIEM tools, security logs, and common cyber threats, along with close coordination with internal security and IT teams. Job Description : Tools & Technologies\\\\r\\\\n\\\\r\\\\n \\\\r\\\\n\\\\r\\\\nEDR tools (Microsoft Defender, CrowdStrike, Carbon Black)\\\\r\\\\n\\\\r\\\\nEmail security tools\\\\r\\\\n\\\\r\\\\nVulnerability tools (Qualys, Nessus)\\\\r\\\\n\\\\r\\\\n \\\\r\\\\n\\\\r\\\\nQuerying & Analysis\\\\r\\\\n\\\\r\\\\n \\\\r\\\\n\\\\r\\\\nKQL / SPL / Query languages\\\\r\\\\n\\\\r\\\\nLog correlation and pattern analysis\\\\r\\\\n\\\\r\\\\n \\\\r\\\\n\\\\r\\\\nSystems & Networking\\\\r\\\\n\\\\r\\\\n \\\\r\\\\n\\\\r\\\\nNetworking basics (TCP/IP, DNS, HTTP, VPN)\\\\r\\\\n\\\\r\\\\nWindows & Linux fundamentals 

Key Responsibilities

Job Responsibilities : Job Role: Sentinel (SOC operation analyst L2) Skill set: SOC operation L2 Job description: SOC analyst L2 Key Responsibilities 🔹 Threat Monitoring & Analysis Monitor security alerts from SIEM tools (Sentinel, ArcSight, Splunk, QRadar) Perform in-depth analysis of escalated incidents (L1 → L2) Validate true positives and eliminate false positives 🔹 Incident Investigation & Response Conduct root cause analysis (RCA) for security incidents Perform log correlation across multiple sources (EDR, Firewall, AD, Cloud logs) Support incident containment and remediation actions 🔹 Use Case Tuning & Optimization Fine-tune SIEM correlation rules and alerts Reduce noise and improve detection accuracy Map detections to MITRE ATT&CK; framework 🔹 Threat Hunting (Proactive) Perform proactive threat hunting using SIEM, EDR, and threat intelligence Identify hidden or advanced threats not detected by rules Develop hypotheses-based hunting scenarios 🔹 Automation & Playbooks Support SOAR playbook execution (Sentinel Logic Apps, etc.) Assist in developing automation for repetitive tasks Integrate SIEM with ticketing systems (ServiceNow) 🔹 Reporting & Documentation Document incidents, findings, and recommendations Prepare incident reports, dashboards, and metrics Maintain SOPs, runbooks, and knowledge base 🔹 Collaboration Work closely with L1 analysts, L3 engineers, and IR teams Coordinate with IT teams for remediation actions Support audits and compliance activities Technical Skills Required Core Skills Hands-on experience with SIEM tools (Sentinel / ArcSight / Splunk / QRadar) Strong understanding of logs: Windows Event Logs Syslog / Firewall logs Cloud logs (Azure/AWS/GCP) Detection & Security Knowledge MITRE ATT&CK; framework Cyber Kill Chain Threat vectors: phishing, malware, ransomware, insider threats

Skill Requirements

Skill Requirement : Core Skills Hands-on experience with SIEM tools (Sentinel / ArcSight / Splunk / QRadar) Strong understanding of logs: Windows Event Logs Syslog / Firewall logs Cloud logs (Azure/AWS/GCP) Detection & Security Knowledge MITRE ATT&CK; framework Cyber Kill Chain Threat vectors: phishing, malware, ransomware, insider threats

Other Requirements

Other Requirement : Tools & Technologies EDR tools (Microsoft Defender, CrowdStrike, Carbon Black) Email security tools Vulnerability tools (Qualys, Nessus) Querying & Analysis KQL / SPL / Query languages Log correlation and pattern analysis Systems & Networking Networking basics (TCP/IP, DNS, HTTP, VPN) Windows & Linux fundamentals
Apply now
Information at a Glance

Why HCLTech?

At HCLTech, you'll supercharge your potential. You'll find your career. And you'll find your spark. All at a place that knows that helping its customers stay on top starts by putting its people first.

HCLTech is a global technology company, home to more than 226,300 people across 60 countries, delivering industry-leading capabilities centered around digital, engineering, cloud and AI, powered by a broad portfolio of technology services and products. We work with clients across all major verticals, providing industry solutions for Financial Services, Manufacturing, Life Sciences and Healthcare, Technology and Services, Telecom and Media, Retail and CPG, and Public Services. Consolidated revenues as of 12 months ending December 2025 totaled $14.5 billion.
23 Benefits At HCLTech, we believe in empowering our employees with comprehensive benefits that support their professional growth and enhance their well-being. When you sign up for a career with us, you gain access to: https://rmkcdn.successfactors.com/147eb21f/a701dca9-f32d-4fc9-9447-6.svg Industry-benchmarked compensation https://rmkcdn.successfactors.com/147eb21f/b0c54381-ddcc-4a33-9b35-9.svg Best-in-class healthcare benefits https://rmkcdn.successfactors.com/147eb21f/b73027be-7aae-4d36-a090-4.svg Personal time off https://rmkcdn.successfactors.com/147eb21f/d5b4fdfd-2e99-4e26-9878-9.svg Maternity and paternity benefits https://rmkcdn.successfactors.com/147eb21f/3d42b0fc-4652-435a-9ece-c.svg Access to skills / higher education programs/resources https://rmkcdn.successfactors.com/147eb21f/aeddeaf2-9e25-4584-ad11-d.svg Discounts on products and services via Benefit Box https://rmkcdn.successfactors.com/147eb21f/a9609a3b-2700-4b3c-9d90-a.svg Participate in CSR programs and live life with a purpose https://rmkcdn.successfactors.com/147eb21f/c6e33851-710f-4634-bd69-f.svg Opportunities to grow and advance your career Note: The benefits listed above vary depending on the nature of your employment and the country where you work. Some benefits may be available in some countries but not in all.