About Persistent
We are an AI-led, platform-driven Digital Engineering and Enterprise Modernization partner, combining deep technical expertise and industry experience to help our clients anticipate what’s next. Our offerings and proven solutions create a unique competitive advantage for our clients by giving them the power to see beyond and rise above. We work with many industry-leading organizations across the world, including 20 Fortune 50 companies and 4 of the 5 top banks in both the US and India, and numerous innovators across the healthcare ecosystem.
Our disruptor’s mindset, commitment to client success, and agility to thrive in the dynamic environment have enabled us to sustain our growth momentum. Persistent has been recognized across top industry platforms for innovation, leadership, and inclusion. We reported $1,654.4M FY26 revenue with 17.4% Y-o-Y growth. We have delivered 24 sequential quarters of growth with $436.0M in Q4 FY26 revenue, up 3.2% Q-o-Q and 16.2% Y-o-Y growth. Our 27,500+ global team members, located in 18 countries, have been instrumental in helping the market leaders transform their industries. We have been recognized as the Fastest Growing IT Services Brand Globally in the 2026 Brand Finance IT Services 25 Report. We named a Leader in the Everest Group Private Equity (PE) Services PEAK Matrix® Assessment 2026 and Software Product Engineering PEAK Matrix® Assessment 2026.
About Position:
As a SOC L3 Analyst you will be responsible for leading the investigation and response to complex security incidents engineering advanced detection content and optimizing security tools and processes. With a strong focus on Splunk content engineering Endpoint Detection and Response (EDR) and Security Orchestration Automation and Response (SOAR) you will enhance the SOCs capabilities to detect and mitigate advanced cyber threats.
Role: Support Engineer
Location: Pune
Experience: Between 2 to 5 Years
Job Type: Full Time Employment
What You'll Do:
-
1. Advanced Incident Response: - Lead the investigation and response to high-severity security incidents performing deep-dive analysis and root cause determination. - Develop and execute remediation plans to contain and eradicate threats. 2. Content Engineering: - Design and develop advanced detection rules alerts and dashboards in Splunk to enhance threat detection capabilities. - Continuously improve detection content based on emerging threats and attack patterns. 3. Endpoint Detection and Response (EDR): - Utilize EDR tools (e.g. Crowd
-
Strike Carbon Black) to monitor analyze and respond to endpoint threats. - Conduct advanced forensic analysis on compromised systems to identify indicators of compromise (IOCs) and tactics techniques and procedures (TTPs) used by threat actors. 4. Security Orchestration Automation and Response (SOAR): - Develop and maintain automated workflows and playbooks on the SOAR platform to streamline incident response processes. - Integrate SOAR with other security tools and systems to automate threat detection investigation and response tasks. 5. Threat Hunting: - Conduct proactive threat hunting activities to identify hidden threats and security weaknesses within the environment. - Develop and implement threat hunting methodologies and use cases. 6. Collaboration and Mentoring: - Collaborate with other SOC analysts threat intelligence teams and IT departments to improve overall security posture. - Provide mentorship and guidance to L1 and L2 analysts sharing knowledge and best practices. 7. Security Tool Optimization: - Optimize the configuration and performance of security tools including Splunk EDR and SOAR platforms. - Evaluate and recommend new security technologies and solutions to enhance SOC capabilities. 8. Documentation and Reporting: - Document incident response activities findings and outcomes in detail. - Prepare comprehensive reports and briefings for senior management and stakeholders on security incidents and SOC performance. 9. Continuous Improvement: - Stay updated with the latest cybersecurity threats trends and technologies. - Participate in training and professional development activities to enhance skills and knowledge.
Expertise You'll Bring:
Education:- Bachelors degree in computer science Information Security or a related field or equivalent experience.- 8 to 11 years of experience in cybersecurity with a focus on SOC operations incident response and security engineering.- Proficiency with Splunk including advanced search dashboard creation and content engineering.- Strong expertise in EDR tools such as Crowd-
Strike or similar.- Experience with SOAR platforms and developing automated workflows and playbooks.- Excellent analytical problem-solving and communication skills.- Ability to work independently and as part of a team in a fast-paced environment. Preferred Certifications:- Certified Information Systems Security Professional (CISSP)- GIAC Certified Incident Handler (GCIH)- GIAC Certified Forensic Analyst (GCFA)- Splunk Certified User
-
Power User
-
Architect- Certified SOAR Analyst (CSA) Working Conditions: - This role requires WFO in shifts to provide 247 security monitoring.
Education: Bachelor’s or Master’s degree in Computer Science, Engineering, or a related field.
Benefits:
-
Competitive salary and benefits package
-
Culture focused on talent development with quarterly growth opportunities and company-sponsored higher education and certifications
-
Opportunity to work with cutting-edge technologies
-
Employee engagement initiatives such as project parties, flexible work hours, and Long Service awards
-
Annual health check-ups
-
Insurance coverage: group term life, personal accident, and Mediclaim hospitalization for self, spouse, two children, and parents
Values-Driven, People-Centric & Inclusive Work Environment:
Persistent is dedicated to fostering diversity and inclusion in the workplace. We invite applications from all qualified individuals, including those with disabilities, and regardless of gender or gender preference. We welcome diverse candidates from all backgrounds.
-
We support hybrid work and flexible hours to fit diverse lifestyles.
-
Our office is accessibility-friendly, with ergonomic setups and assistive technologies to support employees with physical disabilities.
-
If you are a person with disabilities and have specific requirements, please inform us during the application process or at any time during your employment
Let’s unleash your full potential at Persistent - persistent.com/careers
“Persistent is an Equal Opportunity Employer and prohibits discrimination and harassment of any kind.”
