Support Lead - India

About Persistent

We are an AI-led, platform-driven Digital Engineering and Enterprise Modernization partner, combining deep technical expertise and industry experience to help our clients anticipate what's next. Our offerings and proven solutions create a unique competitive advantage for our clients by giving them the power to see beyond and rise above. We work with many industry-leading organizations across the world, including 20 Fortune 50 companies and 4 of the 5 top banks in both the US and India, and numerous innovators across the healthcare ecosystem.

Our disruptor's mindset, commitment to client success, and agility to thrive in the dynamic environment have enabled us to sustain our growth momentum. Persistent has been recognized across top industry platforms for innovation, leadership, and inclusion. We reported $1,654.4M FY26 revenue with 17.4% Y-o-Y growth. We have delivered 24 sequential quarters of growth with $436.0M in Q4 FY26 revenue, up 3.2% Q-o-Q and 16.2% Y-o-Y growth. Our 27,500+ global team members, located in 18 countries, have been instrumental in helping the market leaders transform their industries. We have been recognized as the Fastest Growing IT Services Brand Globally in the 2026 Brand Finance IT Services 25 Report. We named a Leader in the Everest Group Private Equity (PE) Services PEAK Matrix® Assessment 2026 and Software Product Engineering PEAK Matrix® Assessment 2026.

About Position

We are seeking an experienced Cybersecurity Analyst to join our 24x7 Security Operations Center (SOC). The role focuses on advanced threat detection, incident response, and end-to-end SOC operations using IBM QRadar (SIEM) and EDR platforms (CrowdStrike / Microsoft Defender).This position acts as the primary L3 escalation point for critical incidents, while also contributing to SOC governance, reporting, and continuous operational improvement. The role requires close collaboration with cybersecurity, IT, and infrastructure teams.

• Role: Support Lead
• Location: Chennai
• Experience: Between 8 to 12 Years
• Job Type: Full Time Employment
  
  

What You'll Do

• Continuously monitor and analyze security events and incidents using advanced security tools to identify potential threats, vulnerabilities, and suspicious activities across the environment.
• Conduct in-depth investigations of security incidents by correlating alerts, logs, and telemetry data, and leveraging internal and external threat intelligence sources to determine scope, root cause, and impact.
• Perform Incident Response (IR) activities, including containment, eradication, recovery, and post-incident analysis, in line with defined playbooks and SLAs.
• Participate in proactive threat hunting activities to identify hidden or emerging threats that may evade traditional detection mechanisms and reduce false positives.
• Develop, tune, and optimize SIEM use cases and detection rules (QRadar)
• Support SOC reporting, SLAs, and KPI tracking (MTTD, MTTR)
• Contribute to SOC process improvement and operational maturity
• Act as a technical SME during major incident escalations and client discussions
• Research new and evolving threats, attack techniques, and adversary tactics that could impact the organization, and recommend improvements to detection and response capabilities.
• Stay current with the latest cybersecurity news, vulnerabilities, threat trends, and industry best practices, and provide actionable insights to continuously improve security posture.
• Collaborate with IT, infrastructure, cloud, and application teams to gain deeper understanding of the environment and improve security visibility and response efficiency.
• Maintain accurate documentation of incidents, investigations, lessons learned, and recommendations, and contribute to the enhancement of SOC processes, runbooks, and detection use cases.
• Qualifications: : Bachelors / masters degree in computer science, Cybersecurity, Information Security, or related field8-12+ years experience of Cybersecurity
  
  

Expertise You'll Bring

• Strong understanding of cybersecurity principles, concepts, and best practices across networks, endpoints, and systems.
• Proven experience in security incident detection, analysis, and response within a SOC or similar environment.
• Solid knowledge of networking fundamentals, firewalls, and operating systems (Windows and Linux).
• Hands-on familiarity with security technologies such as IBM QRadar SIEM, IDS/IPS, firewalls, endpoint detection and response (EDR) with Crowd
• Strike Falcon / Microsoft Defender (EDR/XDR), and vulnerability scanning tools.
• Solid understanding of incident response lifecycle and threat detection
• Expertise in log analysis, SIEM tuning, and threat hunting
• Working knowledge of MITRE ATTCK framework
• Experience correlating and interpreting data from multiple sources to analyze complex security issues and propose effective remediation strategies.
• Working knowledge of industry standards and frameworks, including the NIST Cybersecurity Framework and ISO/IEC 27001.
• Strong analytical and problem-solving skills, with the ability to prioritize incidents and operate effectively under pressure.
• Good communication and documentation skills, with the ability to clearly articulate technical findings to both technical and non-technical stakeholders.
• Preferred Certifications
• Certified SOC Analyst (CSA)
• CISSP, GCIH/GCIA, Comp
• TIA Security+, Crowd
• Strike/Defender certifications
• Attributes:Strong interpersonal, oral, and written communication and collaboration skills
• Strong organizational skills including the ability to adapt to shifting priorities and meet frequent deadlines,Proactive approach to problem-solving with strong judgment and decision-making capability.
• Highly resourceful and collaborative team-player, with the ability to also be independently effective and exude initiative and a sense of urgency.
• Exemplifies our customer-focused, action-oriented, results-driven culture.
• Forward looking thinker, who actively seeks opportunities, has a desire for continuous learning, and proposes solutions.
• Ability to act with discretion and maintain complete confidentiality.
• Dedicated to the clients values of non-negotiable integrity, valuing our people, exceeding client expectations, and embracing intellectual curiosity and rigor.
• Location: Chennai. Rotational 24*7 Shift / US Shifts
  
  

Education: Bachelor's or Master's degree in Computer Science, Engineering, or a related field.

Benefits

• Competitive salary and benefits package
• Culture focused on talent development with quarterly growth opportunities and company-sponsored higher education and certifications
• Opportunity to work with cutting-edge technologies
• Employee engagement initiatives such as project parties, flexible work hours, and Long Service awards
• Annual health check-ups
• Insurance coverage: group term life, personal accident, and Mediclaim hospitalization for self, spouse, two children, and parents
  
  

Values-Driven, People-Centric & Inclusive Work Environment

• Persistent is dedicated to fostering diversity and inclusion in the workplace. We invite applications from all qualified individuals, including those with disabilities, and regardless of gender or gender preference. We welcome diverse candidates from all backgrounds.
• We support hybrid work and flexible hours to fit diverse lifestyles.
• Our office is accessibility-friendly, with ergonomic setups and assistive technologies to support employees with physical disabilities.
• If you are a person with disabilities and have specific requirements, please inform us during the application process or at any time during your employment
  
  

Let's unleash your full potential at Persistent - persistent.com/careers

Persistent is an Equal Opportunity Employer and prohibits discrimination and harassment of any kind.

Security Operation Center(SOC),SIEM Management,Penetration testing,SOC Operations - EDR,XDR