Location: Vadodara, Gujarat
Work Mode: Full-Time | Work from Office
Experience:
2 - 5 years of experience in:
- SIEM/SOAR Implementation
- Cybersecurity Professional Services
- Incident Detection & Response
- Security Monitoring & Alert Analysis
- Hands-on exposure to enterprise environments and security tools is mandatory.
Qualifications:
- Bachelor's degree in computer science, IT, Cybersecurity, Electronics, or related field
- Relevant cybersecurity certifications are an advantage:
- Splunk Certified User / Admin
- Microsoft SC-200
- IBM QRadar Certifications
- CEH / Security+ / CySA+
- Any SOC / SIEM-related certifications
About the Role:
iFalcon Consultancy Services helps enterprises solve complex IT infrastructure and cybersecurity challenges through practical, outcome-driven solutions across networking, cloud, and security domains.
We are looking for a Cybersecurity Engineer with hands-on experience in SIEM/SOAR technologies, incident response, and enterprise security operations. This role offers the opportunity to work across multiple customer environments, implement security solutions, and contribute to enterprise cybersecurity projects.
For more information, please visit our website: - https://ifalcon.co.in
Key Responsibilities:
- Implement SIEM/SOAR platforms (mandatory)
- Investigate security incidents, suspicious activities, and potential threats
- Perform triage, incident analysis, escalation, and response coordination
- Create and fine-tune SIEM correlation rules and use cases
- Work on log onboarding, parsing, normalization, and dashboard creation
- Understand and implement MITRE ATT&CK-based detection use cases
- Handle false-positive analysis and alert optimization
- Work with SOAR platforms for automation and playbook execution
- Prepare incident reports, RCA documents, and operational documentation
- Coordinate with internal teams and clients during security incidents
- Analyse security events and alerts from SIEM platforms
- Participate in security assessments, UAT, and operational handovers
- Support enterprise security projects and managed security services
Required Product Experience:
(Any 2–4 of the following domains)
SIEM Platforms
Splunk Enterprise / Enterprise Security, IBM QRadar, ArcSight, Microsoft Sentinel, FortiSIEM
SOAR Platforms
Cortex XSOAR, FortiSOAR, Splunk SOAR, Microsoft Sentinel
Technical Skills Required:
- Understanding of cyber-attack techniques and threat detection
- Knowledge of SOC and incident response lifecycle
- Knowledge of: Windows Event Logs, Syslog, Firewall logs, EDR/XDR logs, Proxy/Web security logs, Cloud security logs.
- Understanding of: MITRE ATT&CK Framework, IOC/IOA-based detections, Use-case creation, Correlation rule logic, Risk-based alerting.
- Basic understanding of: Networking, DNS, Active Directory, Linux & Windows OS
Good to Have (Not Mandatory)
- Exposure to cloud security platforms:
Azure, Microsoft Defender
- Basic scripting knowledge:
Python, PowerShell, Bash
Threat Hunting, Malware Analysis, SOAR Playbooks, Automation workflows
Soft Skills:
- Strong analytical and troubleshooting skills
- Good communication and documentation abilities
- Ability to work in a fast-paced SOC environment
- Team player with ownership mindset
- Willingness to learn new cybersecurity technologies
Why Join Us
- Opportunity to work on enterprise-level cybersecurity projects
- Exposure to global customers and advanced security technologies
- Hands-on learning in SIEM, SOAR, SOC, Cloud Security, and Incident Response
- Career growth opportunities in cybersecurity engineering and consulting
- Collaborative and technically driven work environment
- Opportunity to work with multiple enterprise security products and vendors
To Apply: Send your updated resume on [Confidential Information]
