The role involves monitoring security alerts, analyzing logs, responding to incidents, and supporting vulnerability assessments in a SOC environment.
Position: Engineer - L1
Type: FTE
Specific job responsibilities
• Monitor and analyze security alerts generated by SIEM platforms including Elastic SIEM, Microsoft Sentinel, and other SIEM tools (e.g., Wazuh, Splunk, QRadar).• Perform continuous security monitoring of network traffic, endpoint activity, and system logs to identify suspicious or malicious behaviour.• Investigate potential security incidents by performing detailed log analysis to detect anomalies and attack patterns.• Classify security alerts accurately as True Positive or False Positive based on evidence and analysis.• Respond to security incidents promptly by following defined incident response playbooks and SOPs.• Escalate confirmed or high-severity incidents to senior SOC engineers with proper documentation, context, and impact analysis.• Conduct phishing email analysis, including:o Header and sender analysiso URL and attachment inspectiono Identification of credential-harvesting and malware delivery attempts• Track and investigate malware alerts, performing basic static and behavioral analysis using EDR telemetry and sandbox results.• Monitor and analyze endpoint activity using EDR tools such as SentinelOne and Microsoft Defender for Endpoint.• Support vulnerability assessment activities by reviewing scan results, validating findings, and assisting with remediation tracking.• Maintain accurate incident reports, investigation notes, and SOC documentation.• Follow daily threat intelligence updates and apply relevant insights to ongoing investigations.• Adhere to SOC SLAs, escalation procedures, and operational best practices.• Support client Baseline Security Reviews by reviewing security tool configurations and documenting gaps against defined security baselines.
Specific skills
• Basic to intermediate understanding of networking, security, and system administration concepts.• Knowledge of:o Network security fundamentalso Firewalls, IDS/IPS, and SIEM toolso Vulnerability assessment concepts and security best practices• Familiarity with Windows and/or Linux environments.• Hands-on exposure to:o SIEM monitoring and alert investigationo Incident response and alert triageo Endpoint detection and response (EDR) tools• Understanding of common attack techniques including phishing, malware, brute force, and credential abuse.Certifications• CEH (Certified Ethical Hacker)• Microsoft SC-200 - Security Operations Analyst• Microsoft SC-900 or equivalent security fundamentals certification
Qualification and experience
• Bachelor's degree in computer science, Information Security, Information Technology, or a related field (or equivalent practical experience).o 0-3 years of experience in:o SOC operationso Cybersecurity monitoring• Hands-on experience with SIEM tools and security alert investigation is preferred.
No. of positions: 01
Work location: Wipfli India, Bengalur
Type: FTE
Specific job responsibilities
• Monitor and analyze security alerts generated by SIEM platforms including Elastic SIEM, Microsoft Sentinel, and other SIEM tools (e.g., Wazuh, Splunk, QRadar).• Perform continuous security monitoring of network traffic, endpoint activity, and system logs to identify suspicious or malicious behaviour.• Investigate potential security incidents by performing detailed log analysis to detect anomalies and attack patterns.• Classify security alerts accurately as True Positive or False Positive based on evidence and analysis.• Respond to security incidents promptly by following defined incident response playbooks and SOPs.• Escalate confirmed or high-severity incidents to senior SOC engineers with proper documentation, context, and impact analysis.• Conduct phishing email analysis, including:o Header and sender analysiso URL and attachment inspectiono Identification of credential-harvesting and malware delivery attempts• Track and investigate malware alerts, performing basic static and behavioral analysis using EDR telemetry and sandbox results.• Monitor and analyze endpoint activity using EDR tools such as SentinelOne and Microsoft Defender for Endpoint.• Support vulnerability assessment activities by reviewing scan results, validating findings, and assisting with remediation tracking.• Maintain accurate incident reports, investigation notes, and SOC documentation.• Follow daily threat intelligence updates and apply relevant insights to ongoing investigations.• Adhere to SOC SLAs, escalation procedures, and operational best practices.• Support client Baseline Security Reviews by reviewing security tool configurations and documenting gaps against defined security baselines.
Specific skills
• Basic to intermediate understanding of networking, security, and system administration concepts.• Knowledge of:o Network security fundamentalso Firewalls, IDS/IPS, and SIEM toolso Vulnerability assessment concepts and security best practices• Familiarity with Windows and/or Linux environments.• Hands-on exposure to:o SIEM monitoring and alert investigationo Incident response and alert triageo Endpoint detection and response (EDR) tools• Understanding of common attack techniques including phishing, malware, brute force, and credential abuse.Certifications• CEH (Certified Ethical Hacker)• Microsoft SC-200 - Security Operations Analyst• Microsoft SC-900 or equivalent security fundamentals certification
Qualification and experience
• Bachelor's degree in computer science, Information Security, Information Technology, or a related field (or equivalent practical experience).o 0-3 years of experience in:o SOC operationso Cybersecurity monitoring• Hands-on experience with SIEM tools and security alert investigation is preferred.
No. of positions: 01
Work location: Wipfli India, Bengalur
Top Skills
Elastic Siem
Microsoft Defender For Endpoint
Microsoft Sentinel
Qradar
Sentinelone
Splunk
Wazuh
Wipfli Bengaluru, Karnataka, IND Office
Tower B, 4th Floor, Global Village Tech Park, Mysore Road, Bengaluru, India, 560059
Similar Jobs at Wipfli
Cloud • Fintech • Software • Business Intelligence • Consulting • Financial Services
Perform billing and accounts payable tasks including updating subcontractor timesheets, generating client billing in Workday, processing vendor invoices end-to-end, coordinating with US AP and managers for coding and payments, mailbox monitoring, and supporting peak workloads.
Top Skills:
ExcelMicrosoft PowerpointMicrosoft WordWorkday
Cloud • Fintech • Software • Business Intelligence • Consulting • Financial Services
The Campaign Analyst manages marketing campaigns, ensures data integrity, generates reports, supports logistics, and collaborates with teams to optimize performance.
Top Skills:
CanvaExcelMicrosoft Dynamics 365PowerPointZoominfo
Cloud • Fintech • Software • Business Intelligence • Consulting • Financial Services
Lead translation of business requirements into technical user stories and acceptance criteria, coordinate cross-functional Agile teams, support releases and demos, troubleshoot and test solutions, and serve as a subject-matter expert for D365 and Power Platform implementations in professional services.
Top Skills:
Agile ScrumAzure DevopsMicrosoft Dynamics 365 (D365)Microsoft Power PlatformPower AutomatePower PagesPowerapps
What you need to know about the Bengaluru Tech Scene
Dubbed the "Silicon Valley of India," Bengaluru has emerged as the nation's leading hub for information technology and a go-to destination for startups. Home to tech giants like ISRO, Infosys, Wipro and HAL, the city attracts and cultivates a rich pool of tech talent, supported by numerous educational and research institutions including the Indian Institute of Science, Bangalore Institute of Technology, and the International Institute of Information Technology.
