Tata Consultancy Services is an equal opportunity employer, our commitment to diversity & inclusion drives our efforts to provide equal opportunity to all candidates who meet our required knowledge & competency needs, irrespective of any socio-economic background, race, color, national origin, religion, sex, gender identity/expression, age, marital status, disability, sexual orientation or any others. We encourage anyone interested to build a career in TCS to participate in our recruitment & selection process. TCS is seeking skilled professionals to join our team as an SOC Analyst. Responsibilities Monitor, investigate, and analyze logs and alerts generated by SIEM tools such as Microsoft Sentinel, Splunk, and LogRhythm. Perform log correlation and filtering to identify malicious patterns and reduce false positives. Understand and modify existing correlation rules and develop use cases to detect anomalies and security events. Analyze various log sources including Windows Event Logs, Firewall, Proxy, VPN, DNS, and other security infrastructure logs. Utilize Extended Detection and Response (XDR) platforms such as Trend Micro Vision One, CrowdStrike Falcon, and Microsoft Defender for Endpoint. Conduct endpoint investigations, analyze process behavior, service activity, and network connections. Block known Indicators of Compromise (IOCs), investigate suspicious behavior, and recommend containment actions. Technical/Functional Skills Monitor for lateral movement, persistence techniques, and privilege escalations. Triage alerts by categorizing and prioritizing incidents (malware, unauthorized access, data leakage, etc.). Respond to security incidents and determine scope, impact, severity, and root cause. Document incident findings and escalate to appropriate stakeholders per defined processes and SLAs. Collaborate with other IT and security teams for containment, eradication, and recovery. Qualifications Advanced knowledge of English Bachelor’s or Master’s degree in Cybersecurity, Computer Science, or related field. 5+ years of experience in Security Operations Center (SOC) or threat detection roles. Strong understanding of MITRE ATT&CK framework, kill chain, and incident handling lifecycle. Hands‑on experience with SIEM and XDR tools (Trend Micro, CrowdStrike). Familiarity with security standards and compliance (ISO 27001, NIST). Relevant certifications such as CompTIA Security+, CySA+, CEH, GCIA, or similar are a plus. Candidate must be located in or willing to relocate to Querétaro. It will be requested to attend office at least 3 days per week. Boost your career and send your resume to: #J-18808-Ljbffr
Security Operations Center Analyst
TATA CONSULTANCY SERVICES
Santiago De Querétaro, Santiago De Querétaro
Publicado hace 7 días
Denunciar empleo