Senior SOC (Security Operations Center) Engineer

Enable your future

At TDCX, we believe that every career move should propel you forward. Work alongside innovative teams, support the growth of the world’s most forward-thinking brands, and explore what’s possible when human expertise meets technology. Together, we’ll enable the future — starting with yours.

• Competitive remuneration, great perks, and performance incentives
• Comprehensive medical, insurance, or social security coverage
• World-class workspaces
• Engaging activities and recognition programs
• Strong learning and development plans for your career growth
• Positive work culture that enables your future
• Easy to locate area with direct access to public transport
• Flexible working arrangements
• Be coached and mentored by experts in your field
• Join a global company, winner of hundreds of industry awards

1. Security Monitoring & Incident Response

• Monitor and analyze security alerts from SIEM, XDR, and other security tools
• Perform triage, investigation, and escalation of security incidents based on defined SLAs
• Support incident response activities including containment, eradication, and recovery
• Conduct root cause analysis and contribute to post-incident reviews
• Handle and manage security incident tickets and alerts as part of SOC operations, ensuring proper tracking, escalation, and closure

1. Detection Engineering & Use Case Optimization

• Develop, tune, and optimize SIEM correlation rules and detection use cases
• Reduce false positives and improve alert quality and relevance
• Align detection logic with MITRE ATT&CK framework and emerging threat patterns

1. SOC Operations & Process Improvement

• Maintain and improve SOC playbooks, runbooks, and standard operating procedures
• Ensure consistent execution of incident handling processes across shifts
• Support SOC maturity initiatives, including readiness for extended or 24/7 operations
• Support internal, external, and client audits by preparing required evidence and documentation related to security operations and incident handling

1. Threat Intelligence Integration

• Leverage threat intelligence platforms to enrich alerts and investigations
• Identify and track emerging threats relevant to the organization
• Translate threat intelligence into actionable detection improvements

1. Automation & Tool Optimization

• Identify opportunities to automate SOC tasks (alert enrichment, triage workflows)
• Support integration between SIEM, XDR, and ticketing systems
• Enhance visibility through dashboards and reporting improvements

1. Reporting & Metrics

• Support SOC reporting
• Provide insights to improve detection coverage and operational efficiency
• Maintain accurate and detailed documentation of security incidents, including timelines and chain of events
• Prepare incident reports and post-incident analysis documentation
• Generate statistical and trend reports to support analysis and continuous improvement of SOC operations

1. Any other duties and responsibilities that may be assigned to you by the management from time to time, within your nature/classification of employment in the organization and as may be deemed necessary by the company in its evolving business exigencies and requirements.

1. Bachelor’s degree in Information Technology, Cybersecurity, or a related field
2. Minimum of 3–5 years of experience in SOC operations, security monitoring, or incident response
3. Hands-on experience with:

• SIEM platforms
• EDR/XDR tools
• Log analysis and event correlation

1. Strong understanding of:

• Incident response lifecycle
• Threat detection and analysis
• MITRE ATT&CK framework

1. Proven experience in:

• Security incident investigation and escalation
• Detection rule tuning and optimization
• Working in a multi-region or 24/7 SOC environment

1. Experience in scripting or automation (e.g., Python, PowerShell) is an advantage
2. Strong analytical, documentation, and communication skills
3. Demonstrated people management experience, with a background leading SOC analysts as a Supervisor, SME, or Team Leader