Senior SOC Analyst

About Trianz

Trianz is a leading-edge technology platforms and services company that accelerates digital transformations at Fortune 100 and emerging companies worldwide in data & analytics, digital experiences, cloud infrastructure, and security. The company has developed a disruptive “IP Led Transformations” vision, strategy, and business model over the past 3 years. Some of the company’s IP was recently acquired by AWS and its overall business model has taken off sharply in 2024.

Trianz is led by Sri Manchala, a former special forces officer from the Indian army and author of Crossing the Digital Faultline | Trianz, and a team of veterans from well-known firms such as Deloitte, HCL, KPMG, Wipro, Microsoft, TATA, AWS, GE, etc.

About Trianz

Trianz believes that companies around the world face three challenges in their digital transformation journeys - shrinking ‘time to transform’ due to competition & AI, lack of digital-ready talent, and uncertain economic conditions. To help clients leapfrog over these challenges, Trianz has built IP and platforms that have transformed the adoption of the cloud, data, analytics & insights AI.

Specifically, the following Trianz platforms are changing the way companies approach transformations in various disciplines:

• Concierto: A fully automated platform to Migrate, Manage, and Maximize the multi & hybrid cloud. A zero code and SaaS platform, Concierto allows teams to migrate to AWS, Azure and GCP and manage them efficiently from a single pane of glass. Visit www.concierto.cloud for more information.
• Concierto Insights & Agentic AI: is a Data to AI SaaS platform designed to drive data-led transformation at lightning speed. Through conversational AI, organizations seamlessly engage with all their data, unlocking real-time insights, and uncovering hidden opportunities and risks—all within one powerful platform. Visit www.avriodata.ai to know more.
• Pulse: Recognizing that workforces will be distributed, mobile, and fluid, Trianz has built a ‘future of work’ digital workplace platform called Pulse. Visit www.trianz.com/Pulse

Since the market launch of this strategy in mid-2023, Trianz has experienced enormous growth, success and recognition.

• Some of Trianz’ built IP in data and analytics was acquired by Amazon. Since then, Trianz has been made an engineering partner of Amazon for building/supporting connected ecosystems across multiple AWS platforms.
• Most recently, Trianz and AWS have signed a strategic collaboration agreement within which the two companies will work on joint roadmaps/solutions for the cloud; AWS will buy Trianz | Concierto in bulk for AWS partners to use for migrations; AWS will also recommend Concierto to their MSPs and finally, AWS Professional Services and Trianz have signed an agreement for joint solutioning and customer delivery. Read more: Trianz enters into a Strategic Collaboration Agreement with AWS to Revolutionize Cloud Adoption and Management (yahoo.com)

Given all this, Trianz is experiencing a significant demand for its SW platforms and consequent growth. To support this growth, Trianz has recently raised private equity capital to scale the company over the next several years (Trianz Announces Strategic Growth Capital Investment by Capital Square Partners (prnewswire.com). It is now bolstering its senior and mid-level leadership with top talent across GTM, Engineering, Services, and Partnership organizations. We are seeking leaders driven by our purpose - to help customers accelerate digital transformations and build the next generation software and services organization.

About the Role

We are seeking a highly skilled Senior SOC Analyst to strengthen our cybersecurity detection engineering function. This role will focus on designing, standardizing, and optimizing detection logic across key security tools to elevate overall detection quality and reduce noise.

The ideal candidate brings deep experience creating high-fidelity endpoint detections, enriching alerts with vulnerability data, and collaborating with SOC and threat intelligence teams. This role is distinctly focused on detection engineering—not automation—requiring a strong analytical mindset, precise engineering skills, and hands-on expertise with CrowdStrike Falcon, SentinelOne, and Rapid7

What You'll Be Doing:

Detection Engineering & Development

• Design, build, and refine high-quality detection logic in CrowdStrike Falcon and SentinelOne (S1).
• Develop standardized detection engineering workflows, documentation, and quality controls.
• Conduct regular tuning of existing detections to improve fidelity and reduce false positives.
• Translate threat intelligence, adversary TTPs, and ATT&CK-based behaviors into actionable detections.

Alert Enrichment & Signal Quality

• Leverage vulnerability data from Rapid7 to create context-rich detections and improve alert prioritization.
• Validate detection performance through testing, simulation, and SOC feedback loops.
• Collaborate with SOC teams to ensure detections align with operational requirements and response workflows.

Cross-Functional Collaboration

• Work closely with SOC Operations, Threat Intelligence, and Security Engineering teams to align detection logic with evolving threat landscapes.
• Maintain a clear boundary between detection engineering and automation or SOAR workflows.
• Provide subject matter expertise and mentorship to junior analysts.

Why Join Us:

• Be part of a rapidly rising, global technology innovator whose platforms and services are engaged by Fortune 1000 companies and industry leaders such as Microsoft & Amazon.
• Immerse yourself in a culture where creativity is celebrated and encouraged.
• Engage in thrilling projects and opportunities for your professional growth.
• Contribute to our quest to redefine the industry.
• Competitive compensation and benefits with occasional ‘distinctive benefits’ that set us apart.

Who you are:

• A minimum of 12 years of overall experience in IT Infrastructure domains, including at least 5 years of hands-on experience in Security Operations, Detection Engineering, or related cybersecurity functions
• 5+ years in Security Operations, Detection Engineering, Threat Hunting, or Incident Response.
• Proven hands-on experience creating detections in:
  • CrowdStrike Falcon
  • SentinelOne (S1)
• Experience enriching and correlating security signals using Rapid7 or similar vulnerability management tools.

Core Technical Skills

• Strong understanding of SOC workflows, alert triage, incident response, and threat hunting methodologies.
• Expertise mapping detections to frameworks like MITRE ATT&CK, CIS, and NIST.
• Ability to convert threat intelligence reports into high-fidelity detection logic.
• Familiarity with detection lifecycle management: design → test → tune → deploy → monitor.

Education:

• Bachelor’s degree in computer science, Electrical Engineering, or Cybersecurity, Computer Science, Information Security, or a related field preferred.