SOC L3 Analyst

Job Description

About Us: Bosch is a leading  automotive company with mission “Invented for life”  .We are seeking a highly experienced Level 3 SOC Analyst to join our dynamic Cybersecurity team. This role is crucial for enhancing our security posture, leading incident response efforts, and contributing to the continuous improvement of our security operations. Role Summary: We are looking for a seasoned Cybersecurity Specialist with extensive experience in security operations, incident response, digital forensics, and governance. The ideal candidate will possess a deep understanding of cloud-native SIEM platforms, automotive security standards, and have a proven track record of leading and coordinating complex cybersecurity initiatives. This role requires a hands-on approach to advanced threat detection, incident analysis, and proactive security enhancements, as well as the ability to mentor and guide junior SOC analysts. Key Responsibilities: o Lead complex cybersecurity incidents from detection to resolution, including advanced malware analysis, ransomware response, and digital forensics investigations across production and IT systems. o Coordinate incident response activities with internal teams, external partners o Develop and implement incident response playbooks, procedures, and runbooks. o Handon with Microsoft Defender ,sentinel   and forensic tools for deep-dive analysis. o Operate and optimize cloud-native SIEM platforms (AWS GuardDuty, Azure Sentinel, GCP) for advanced threat detection, correlation, and anomaly analysis. o Develop, tune, and maintain SIEM rules, alerts, and dashboards to proactively identify emerging threats. o Evaluate, integrate, and leverage SOAR platforms for automated playbook execution and incident remediation. o Perform proactive threat hunting based on threat intelligence and adversary tactics, techniques, and procedures (TTPs). o Support internal and third-party audits by preparing technical evidence and process documentation. o Contribute to the design, planning, and operationalization. o Provide cybersecurity inputs for validation and penetration testing activities. o Evaluate and recommend new security technologies and solutions to enhance the organization's security posture.  Required Qualifications: Experience:o 10+ years of progressive experience in cybersecurity, with at least 5 years in a Level 3 SOC Analyst, Incident Response Lead, or similar advanced security operations role. o Proven experience in leading digital forensics and incident response for complex cyberattacks (e.g., malware, ransomware). o Extensive hands-on experience with cloud-native SIEM platforms (AWS GuardDuty, Azure Sentinel, GCP) and traditional SIEMs (e.g., Splunk). o Exposure in vulnerability management and application security testing. o Experience with GDPR  Technical Skills: o Proficiency in scripting/programming languages (PowerShell, Python) for automation and analysis. o Deep knowledge of Cyber Security Operations, Incident Response, Digital Forensics, and Malware Analysis. o Expertise in application security tools (Metasploit/Kali Linux/mimikatz). o Hands-on experience with EDR solutions and SOAR platforms. o Familiarity with various security technologies and frameworks (e.g., SOC Architecture). • Certifications (Highly Preferred): o GCFA (SANS FOR508)/ GIAC Certifications o CISSP o CEH (Certified Ethical Hacker) o CHFI (Certified Hacking Forensic Investigator) o CTIA  Soft Skills: o Excellent analytical and problem-solving skills, with a keen eye for detail. o Strong leadership and mentorship abilities for junior analysts. o Exceptional communication (written and verbal) and presentation skills, capable of interacting with technical and non-technical stakeholders. o Ability to manage multiple priorities in a fast-paced environment. o Strong collaboration skills fo

Qualifications

B.E/B.Tech/Equivalent

Additional Information

10+ years