Role Core SOC Analyst
Technology SOC, SIEM
Location Bucharest, Romania
Today, the corporate landscape is dynamic, and the world ahead is full of possibilities! None of the amazing things we do at Infosys would be possible without an equally amazing culture, the environment where ideas can flourish and where you are empowered to move forward as far as your ideas will take you.
At Infosys, we assure that your career will never stand still, we will inspire you to build what’s next and we will navigate further together.
Our journey of learnability, values and trusted relationships with our clients continue to be the cornerstones of our organization and these values are upheld only because of our people.
Roles and Responsibilities :
Works on shifts covering 16 / 5 (on call for night and weekend shifts) - If staffing level permits, in a later stage.
TIER 2 Core SOC analyst could be transformed into On-Call model during nights and weekends instead of an active shift (Junior SOC analyst in night shift would often escalate to the Core SOC analyst on-call).
Monitor and triage alerts on queue from different sources and email reports to detect potential suspicious or malicious activity, to trigger the proper investigation and response if needed.
Performs investigation of the alerts based on playbooks - leveraging security tools types such as SOAR, EDR, XDR, Email Security and SIEM.
Seeks to determine the source of the threat.
Reaches out to users or stakeholders to get additional information,
Escalate to higher TIER upon need or based on playbooks.
Performs Incident response and incident handling,
Contributes to SOC efficiency improvement by identifying opportunities for automation of steps, detection tuning, playbook improvements and additional requirements that may improve IR efficiency,
Runs IOC Sweeps.
Writes, improves, and maintains playbooks, SOPs and other SOC documentation.
Guide and support Junior SOC analysts with SOC processes, tools and in alert investigation and response.
Coordinate’s escalation, response, resolution, and reporting of cybersecurity incidents.
Help raise new detection ideas.
Skills / Competencies
Acts as TIER 2 touchpoint
Good organizational and time management skills.
Good People and Client Management skills.
Accuracy and attention to detail.
An understanding of the latest trends and their role in a Cyber-sec environment.
Teamwork and Team management skills.
Self-development attitude to keep up to date with fast-changing trends.
Professional level proficiency in English language.
With 2-5 years of relevant experience Cyber Detection and Response
Desirable : CISSP or Security+ or any other cyber security certification but not mandatory.
Educational Qualifications :
Bachelor’s Degree in Engineering or Equivalent.
Infosys is a global leader in next-generation digital services and consulting. We enable clients in more than 50 countries to navigate their digital transformation.
With nearly four decades of experience in managing the systems and workings of global enterprises, we expertly steer our clients through their digital journey.
We do it by enabling the enterprise with an AI-powered core that helps prioritize the execution of change. We also empower the business with agile digital at scale to deliver unprecedented levels of performance and customer delight.
Our always-on learning agenda drives their continuous improvement through building and transferring digital skills, expertise, and ideas from our innovation ecosystem.
To learn more about Infosys and see our ideas in action please visit us at
All aspects of employment at Infosys are based on merit, competence and performance. We are committed to embracing diversity and creating an inclusive environment for all employees.
Infosys is proud to be an equal opportunity employer.
State / Region / Province
Technology Infrastructure Security SOC Operations