Skip to content
SecRoles

IT Cyber Defense Analyst

JobgetherRemote (India)June 11, 2026
Remote
Full-time
SOC
Mid · 2–4 yrs

This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for an IT Cyber Defense Analyst based in India.

You will join a dynamic cybersecurity operations environment where protecting enterprise systems, detecting threats, and responding to incidents are critical to maintaining business continuity and resilience. In this role, you will work within a Security Operations Center (SOC) to monitor, analyze, and respond to security events across complex IT infrastructures. You will leverage advanced security tools and threat intelligence to identify vulnerabilities, investigate suspicious activity, and support rapid incident resolution. The position involves close collaboration with infrastructure, application, and security teams to strengthen defenses and reduce risk exposure. You will also contribute to improving detection rules, reducing false positives, and enhancing automation within security platforms. Working in a 24/7 rotational environment, you will play a key role in safeguarding enterprise systems against evolving cyber threats. This is a hands-on technical role combining analysis, incident response, and continuous security improvement.

Accountabilities:

  • Triage, analyze, and respond to security incidents identified through SOC monitoring tools and security alerts.
  • Monitor and investigate events using SIEM, EDR, and XDR platforms such as Splunk, Rapid7, ArcSight, or similar technologies.
  • Perform log analysis and correlation across multiple systems to detect threats, anomalies, and potential security breaches.
  • Support incident escalation and coordination with SOC leadership, infrastructure teams, and business units for resolution.
  • Identify opportunities to optimize SIEM rules, reduce false positives, and improve automation and alert accuracy.
  • Monitor threat intelligence feeds and vendor alerts to proactively identify emerging vulnerabilities and risks.
  • Collaborate with IT and security teams to prioritize vulnerability remediation and track mitigation efforts.
  • Assist in developing and maintaining incident response procedures, playbooks, and SOC documentation.
  • Support security tooling improvements, dashboards, and reporting for operational and executive visibility.
  • Participate in continuous monitoring of enterprise environments to ensure compliance and security posture alignment.

Requirements:

  • 2–4 years of experience in SOC operations, cybersecurity, or information security roles within enterprise environments.
  • Strong understanding of Windows and Linux systems, including server and application hardening practices.
  • Hands-on experience with security tools including Azure security services, EDR/XDR platforms (e.g., CrowdStrike, Microsoft Defender), and SIEM tools.
  • Experience with security platforms such as Palo Alto, Cisco, IDS/IPS, DLP, MFA, or encryption/key management systems.
  • Solid understanding of networking fundamentals including TCP/IP and protocols such as HTTP, FTP, SMTP, and DNS.
  • Familiarity with common cyber threats such as DDoS, SQL injection, XSS, reconnaissance, and attack detection techniques.
  • Knowledge of vulnerability scanning tools such as Nessus, Qualys, Acunetix, or Metasploit is a plus.
  • Scripting experience in Bash, PowerShell, or Python for automation and incident response support.
  • Understanding of frameworks such as MITRE ATT&CK and/or Cyber Kill Chain.
  • Awareness of compliance standards such as PCI-DSS, SOX, and HIPAA.
  • Strong analytical, communication, and problem-solving skills with ability to work in high-pressure environments.
  • Relevant certifications such as CompTIA Security+, CEH, or CISSP are a plus.
  • Ability to work in rotational 24/7 shifts.

Benefits:

  • Competitive compensation aligned with experience and cybersecurity market benchmarks.
  • Shift-based flexibility with structured rotational scheduling.
  • Opportunity to work on enterprise-scale security operations and advanced threat detection systems.
  • Exposure to modern cybersecurity tools, SIEM platforms, and cloud security environments.
  • Career growth opportunities in SOC, threat intelligence, and cybersecurity engineering.
  • Continuous learning environment with exposure to global security frameworks and best practices.
  • Health and wellness benefits depending on location and eligibility.
  • Collaborative security-focused environment with strong operational support.

How Jobgether works:

We use an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. Our system identifies the top-fitting candidates, and this shortlist is then shared directly with the hiring company. The final decision and next steps (interviews, assessments) are managed by their internal team.

We appreciate your interest and wish you the best!

 Why Apply Through Jobgether? 

Data Privacy Notice: By submitting your application, you acknowledge that Jobgether will process your personal data to evaluate your candidacy and share relevant information with the hiring employer. This processing is based on legitimate interest and pre-contractual measures under applicable data protection laws (including GDPR). You may exercise your rights (access, rectification, erasure, objection) at any time.

#LI-CL1

Job Details

Experience

Mid · 2–4 yrs

Tools & Tech

Azure
Bash
CrowdStrike
Linux
Metasploit
Microsoft Defender
Nessus
Palo Alto
PowerShell
Python
Qualys
Rapid7
Splunk
SQL
Windows

Preferred Certs

CEH
CISSP
Security+
Apply