SOC L3 Analyst

Job Description

About Us:Bosch is a leading automotive company with mission Invented for life .We are seeking ahighly experienced Level 3 SOC Analyst to join our dynamic Cybersecurity team. This role iscrucial for enhancing our security posture, leading incident response efforts, andcontributing to the continuous improvement of our security operations.Role Summary: We are looking for a seasoned Cybersecurity Specialist with extensive experience insecurity operations, incident response, digital forensics, and governance. The idealcandidate will possess a deep understanding of cloud-native SIEM platforms, automotivesecurity standards, and have a proven track record of leading and coordinating complexcybersecurity initiatives. This role requires a hands-on approach to advanced threatdetection, incident analysis, and proactive security enhancements, as well as the ability tomentor and guide junior SOC analysts.Key Responsibilities:o Lead complex cybersecurity incidents from detection to resolution, includingadvanced malware analysis, ransomware response, and digital forensicsinvestigations across production and IT systems.o Coordinate incident response activities with internal teams, externalpartnerso Develop and implement incident response playbooks, procedures, andrunbooks.o Handon with Microsoft Defender ,sentinel and forensic tools for deep-diveanalysis.o Operate and optimize cloud-native SIEM platforms (AWS GuardDuty, AzureSentinel, GCP) for advanced threat detection, correlation, and anomalyanalysis.o Develop, tune, and maintain SIEM rules, alerts, and dashboards toproactively identify emerging threats.o Evaluate, integrate, and leverage SOAR platforms for automated playbookexecution and incident remediation.o Perform proactive threat hunting based on threat intelligence and adversarytactics, techniques, and procedures (TTPs).o Support internal and third-party audits by preparing technical evidence andprocess documentation.o Contribute to the design, planning, and operationalization.o Provide cybersecurity inputs for validation and penetration testing activities.o Evaluate and recommend new security technologies and solutions toenhance the organization's security posture.Required Qualifications:Experience:o 10+ years of progressive experience in cybersecurity, with at least 5 years in aLevel 3 SOC Analyst, Incident Response Lead, or similar advanced securityoperations role.o Proven experience in leading digital forensics and incident response forcomplex cyberattacks (e.g., malware, ransomware).o Extensive hands-on experience with cloud-native SIEM platforms (AWSGuardDuty, Azure Sentinel, GCP) and traditional SIEMs (e.g., Splunk).o Exposure in vulnerability management and application security testing.o Experience with GDPRTechnical Skills:o Proficiency in scripting/programming languages (PowerShell, Python) forautomation and analysis.o Deep knowledge of Cyber Security Operations, Incident Response, DigitalForensics, and Malware Analysis.o Expertise in application security tools (Metasploit/Kali Linux/mimikatz).o Hands-on experience with EDR solutions and SOAR platforms.o Familiarity with various security technologies and frameworks (e.g., SOCArchitecture).. Certifications (Highly Preferred):o GCFA (SANS FOR508)/ GIAC Certificationso CISSPo CEH (Certified Ethical Hacker)o CHFI (Certified Hacking Forensic Investigator)o CTIASoft Skills:o Excellent analytical and problem-solving skills, with a keen eye for detail.o Strong leadership and mentorship abilities for junior analysts.o Exceptional communication (written and verbal) and presentation skills,capable of interacting with technical and non-technical stakeholders.o Ability to manage multiple priorities in a fast-paced environment.o Strong collaboration skills fo

Qualifications

B.E/B.Tech/Equivalent

Additional Information

10+ years