Security Operations Analyst

Litera is seeking a proactive Security Operations Analyst to join our dynamic team in Bengaluru, Kolkata, Mumbai, New Delhi, Hyderabad, Pune, and Chennai. This role is pivotal in strengthening our cybersecurity posture by monitoring and responding to threats across our cloud and on-premises environments.

As a Security Operations Analyst, you will be instrumental in managing vulnerability assessments, orchestrating incident response, and implementing robust security controls. You will collaborate closely with IT, DevOps, and cloud engineering teams to ensure a resilient security framework and support governance and compliance initiatives, including ISO 27001 and SOC 2.

Your responsibilities will include:

• Security Monitoring and Incident Response: Utilizing advanced SIEM/XDR tools to monitor security events in multi-cloud (AWS, Azure) and on-premises environments. Leveraging AI-driven analytics to correlate alerts and employing SOAR platforms for automated incident response workflows. Investigating and escalating security incidents, assisting with root cause analysis, and refining incident response playbooks.
• Vulnerability and Threat Management: Assessing, remediating, and escalating vulnerabilities across cloud and on-prem assets, prioritizing threats with threat intelligence and AI scoring.
• Security Controls Implementation: Deploying and enforcing security controls in hybrid environments, including cloud-specific configurations, identity and access management, network segmentation, and encryption, aligned with Zero Trust principles.
• Cross-Team Collaboration: Partnering effectively with IT, DevOps, Cloud Infrastructure, and Software Engineering teams.
• Governance, Compliance, and Readiness: Ensuring adherence to ISO 27001, SOC 2, and other relevant frameworks, maintaining audit readiness, and supporting compliance gap remediation.
• Continuous Improvement and Research: Staying abreast of the latest cybersecurity trends and technologies, recommending policy enhancements, and contributing to security initiatives like cloud posture improvements and automation of response.

The ideal candidate will possess 2-3 years of cybersecurity experience, with a preference for SOC exposure and hands-on experience in cloud environments (AWS, Azure). Familiarity with SIEM/SOAR platforms (Sentinel/Defender is a plus) and basic scripting skills (Python/PowerShell) are highly valued. A Bachelor's degree in Cybersecurity, Computer Science, or a related field, along with certifications like CompTIA Security+, CEH, CISSP, or cloud security certifications, is preferred. Strong communication, teamwork, adaptability, and a passion for security best practices are essential.