Staff Engineer - Cloud Security operations

SOC Engineer Job Description

Location : India, Bangalore

About Us:

Aviatrix is a leader in cloud networking and security solutions, helping organizations enhance their network visibility, security, and operational efficiency across multi-cloud environments. We work with a managed detection and response (MDR) providerto maintain high standards of security for our customers, and we’re looking for a skilled SOC Engineer to join our team to support and enhance our internal security operations.

Job Overview:

As a Detection and Response Engineer, you will play a critical role in our Security Operations Center (SOC) by working closely with our MDR provider, monitoring security events, and coordinating incident responses with our enterprise security and
product security teams. You will help analyze, investigate, and respond to potential security incidents, contributing to the ontinuous improvement of Aviatrix’s security posture. This is a hands-on, mid-level position that requires a solid understanding
of cloud network security, incident response, and SOC processes.

Key Responsibilities:

• Monitor and Analyze Security Alerts: Collaborate with our MDR provider to monitor and review security alerts, conduct initial triage, and analyze potential security incidents.
• Incident Investigation and Response: Perform incident investigations as a tier-2+ level analyst by gathering relevant data, conducting analysis, and coordinating responses for incidents affecting internal or customer-facing cloud infrastructure.
• Collaborate closely with Enterprise Security and Product Security teams on mitigation strategies and RCA.
• Threat Detection and Mitigation: Work with the SOC team and MDR provider to identify, contain, and remediate security threats, with a focus on cloud and network security threats.
• Tool Management and Optimization: Support and optimize security tools and platforms (e.g., SIEM, EDR, NDR) to enhance detection capabilities, improve workflows, and reduce false positives.
• Documentation and Reporting: Maintain detailed incident documentation and contribute to security reports, dashboards, and metrics to track SOC performance.
• Threat Intelligence Integration: Leverage threat intelligence to inform detection and response strategies, working with the MDR provider to implement updated threat indicators.
• Continuous Improvement: Contribute to the development of SOC playbooks, incident response procedures, custom detection rules, and best practices for cloud network and security operations.
• Required Skills and Experience:

Education and Certification: Bachelor’s degree in Computer Science, Information Security, or a related field, or equivalent work experience. Industry certifications (e.g., CompTIA Security+, AWS Certified Security, GCIH) are a plus. Deep
knowledge of the MITRE attack framework.

Programming Proficiency: Skilled in one or more programming or scripting languages, such as Python or Go, for automation tasks; knowledge of IaC tools such as Terraform is a plus

Experience: 4-6 years of experience in a SOC environment or in security operations, with a focus on cloud network security and incident response.

Cloud Security Knowledge: Solid experience with cloud platforms (AWS, Azure, GCP) and cloud security concepts and controls.

Technical Skills:

Proficiency in using and optimizing SOC tools, such as SOAR, SIEM, EDR, and NDR solutions; experience with log analysis, network security monitoring, and threat detection tools; Solid understanding of endpoint protection, routers, switches, perimeter security, authentication, encryption, and VPN solutions 

Incident Response: Solid understanding of incident response methodologies, including investigation, containment, eradication, and recovery.

Threat Intelligence Awareness: Familiarity with leveraging threat intelligence to enhance detection and response capabilities. Ability to work in an operational environment with flexible working hours and ability to be on call, including nights and
weekends

Why Join Us:

• Opportunity to work with cutting-edge cloud network security products.
• Collaborative, fast-paced work environment with opportunities for career growth.
• Contribute to a growing SOC team that prioritizes continuous improvement and innovation.

Soft Skills:

• Strong analytical skills and attention to detail.
• Effective communication and documentation abilities for reporting incidents and collaborating with teams.
• Ability to work in a fast-paced environment and manage multiple incidents or tasks simultaneously.