Threat Detection and Response-Analyst / Sr Analyst

Job Description :

• Perform proactive cybersecurity threat detection, analysis, assessment, and mitigation to safeguard enterprise systems and critical business assets.
• Collaborate with IT Risk, Compliance, and Internal/External Audit teams to support security assessments, ensure complete documentation, and maintain adherence to information security policies and regulatory requirements.
• Continuously identify, assess, and monitor emerging cyber threats, vulnerabilities, and risks that may impact business operations and organizational resilience.
• Develop, maintain, and enhance Security Operations Center (SOC) playbooks to standardize threat detection, incident response, monitoring, forensic investigations, and containment activities in line with industry best practices.
• Design, develop, optimize, and manage security use cases, correlation rules, dashboards, alerts, and reports within Splunk to improve detection coverage and operational efficiency.
• Evaluate and implement SIEM and SOAR enhancements by researching emerging technologies, security trends, and industry best practices to strengthen security operations capabilities.
• Monitor, tune, and optimize detection rules to reduce false positives, improve alert fidelity, and enhance overall threat detection effectiveness.
• Support incident investigation, triage, and response activities by performing log analysis, threat hunting, and root cause analysis across enterprise environments.
• Contribute to continuous process improvement initiatives by identifying automation opportunities and enhancing SOC workflows to improve operational efficiency.
• Mentor and provide technical guidance to junior team members, fostering knowledge sharing, skill development, and adherence to cybersecurity best practices.

• Performed proactive cybersecurity threat detection, analysis, assessment, and mitigation to protect enterprise systems, applications, and critical business assets.
• Collaborated with IT Risk, Compliance, and Internal/External Audit teams to support security assessments, maintain documentation, and ensure compliance with security policies and regulatory standards.
• Identified, assessed, and monitored emerging cyber threats, vulnerabilities, and operational risks to strengthen the organization's security posture.
• Developed and maintained SOC playbooks to standardize threat detection, incident response, monitoring, forensic investigations, and containment procedures.
• Designed, developed, and optimized Splunk security use cases, correlation rules, dashboards, alerts, and reports to improve detection coverage and operational visibility.
• Enhanced SIEM and SOAR platforms by researching and implementing industry best practices, automation capabilities, and emerging cybersecurity technologies.
• Tuned and optimized detection rules to minimize false positives, improve alert accuracy, and increase the effectiveness of threat detection.
• Supported incident response activities through log analysis, threat hunting, root cause analysis, and timely investigation of security events.
• Drove continuous process improvement by identifying automation opportunities and optimizing SOC workflows to improve operational efficiency and service delivery.
• Mentored junior security analysts by providing technical guidance, knowledge sharing, and best practices to strengthen team capabilities and operational excellence.