Overview
Zoho is one of the world's most prolific software companies. With 55+ applications in nearly every major business category, including sales, marketing, customer service, accounting and back office operations, and an array of productivity and collaboration tools built from the ground up, Zoho has the depth and breadth to solve even the most complex business challenges.
With more than 130 million+ users and over 18,000 employees across the globe, hundreds of thousands of companies rely on Zoho, every day to run their businesses, including Zoho itself. With 29 years of being private, bootstrapped and profitable, we understand what it takes to run a sustainable, resilient business.
Job Role: Engineer – ITS SecOps
Experience: 1–3 Years
Work Location: Chennai
Job Description
We are looking for a proactive and skilled Engineer – ITS SecOps to join our ITS Security Operations team. The ideal candidate will have 1+ years of experience in cybersecurity or SOC operations, with a strong understanding of protecting systems, networks, and sensitive data.
In this role, you will be responsible for monitoring, detecting, investigating, and responding to security threats and incidents, as well as supporting the implementation and optimization of security controls to strengthen the organization’s overall security posture.
Key Responsibilities
- Monitor and analyze security alerts and events using SIEM, EDR/XDR, DLP, phishing protection, HIDS, honeypots, and IDS/IPS tools.
- Analyze malware, suspicious binaries, phishing payloads, and ransomware activities to identify and mitigate security threats.
- Perform proactive threat hunting across endpoints and security logs to detect hidden or advanced threats.
- Conduct log analysis and event correlation to identify Indicators of Compromise (IOCs).
- Research emerging threats and apply threat intelligence to enhance threat detection and incident response capabilities.
- Assist in tuning and optimizing security tools to reduce false positives and improve detection accuracy.
- Manage the incident response lifecycle, including detection, containment, eradication, and recovery.
- Perform incident triage, investigation, and response in accordance with established SOC processes and procedures.
- Prepare incident reports and maintain security documentation.
- Support security awareness and knowledge-sharing initiatives within the organization.
Technical Skills
- Networking fundamentals: TCP/IP, DNS, HTTP/HTTPS
- Security controls: Firewalls, VPNs, IDS/IPS, Endpoint Protection
- SIEM tools – security monitoring, log analysis, incident investigation
- Endpoint security: EDR/XDR, DLP, phishing protection, HIDS, honeypots
- Log analysis and event correlation
- Threat investigation and Indicators of Compromise (IOCs)
- Malware analysis, phishing analysis, ransomware detection
- Incident response and SOC operations
- Threat hunting techniques
- Operating systems: Windows, Linux and Mac
- Scripting (basic): Python, PowerShell and Bash
- Threat intelligence and security research
Soft Skills
- Strong analytical and problem-solving skills
- Good verbal and written communication skills
- Ability to work under pressure and handle sensitive security incidents
- Team-oriented mindset with a willingness to learn