Security Operations Center (SOC) Internship

MoEngage is hiring for the role of Security Operations Centre (SOC) Intern!

Responsibilities of the Intern:

• Monitor security alerts and events generated by our SIEM (Security Information and Event Management) platform (e.g., Splunk) and other security tools. 
• Perform initial triage on security alerts to distinguish between false positives and genuine security incidents.
• Assess the severity and scope of confirmed incidents 
• Participate in defining playbooks and Standard Operating Procedures (SOPs).
• Create, update, and manage incident tickets with meticulous detail, documenting the timeline, analysis steps, and mitigation actions taken.
• Assist in the containment and eradication of low-severity threats, such as confirmed phishing attempts or malware infections.
• Analyse security logs from various sources, including audit trails, operating systems (Windows/Linux), network devices, and applications.
• Contribute to the creation of daily and weekly status reports summarising security events and trends.
• Assist in tuning SIEM rules to reduce false positives and enhance the accuracy of threat detection.
• Stay current with emerging cybersecurity threats and Indicators of Compromise (IOCs).

Requirements:

• Hands-on exposure to any SIEM tool (e.g., Splunk) or cloud security monitoring tools.
• Basic knowledge of networking concepts (TCP/IP, DNS, HTTP, routing/switching).
• Familiarity with Windows and Linux operating systems and how to review system security logs.
• An understanding of common cyber threats (e.g., malware, phishing, brute force attacks, denial of service).
• Experience with scripting languages (e.g., Python, PowerShell) for basic automation or data analysis.
• Familiarity with security frameworks (e.g., MITRE ATT&CK or the Cyber Kill Chain).
• Strong analytical and critical thinking skills with a keen eye for detail.
• Excellent written and verbal communication skills for clear incident documentation.
• Ability to perform effectively under pressure and rapidly prioritise tasks in a high-alert environment.
• High level of integrity and discretion when handling sensitive security information.

Experience Level: 0 - 6months Location: Bengaluru Job Type: SOC Intern (Tier 1 Support) Duration: 6 months [PPO/Possibility to convert to FTE]

Qualification: Currently pursuing a Bachelor’s or Master’s degree in Cybersecurity, Computer Science, Information Technology, or a closely related technical field.