SOC / Nework Security Operations EngineerKey Roles & Responsibilities: Incident Handling & AnalysisHandle L2 escalations from SOC L1 analysts for Fortinet and Arista-related security alerts.Perform deep-dive analysis of security incidents such as intrusions, malware, ransomware, DDoS, and policy violations.Lead incident containment, eradication, and recovery activities as per SOC processes.Security Operations & MonitoringMonitor, analyze, and correlate events from FortiSIEM, FortiAnalyzer, FortiGate, and Arista network/security telemetry.Ensure adherence to SLAs for incident response (MTTD / MTTR).Act as point of contact during major security incidents.Tool Configuration & TuningFine-tune Fortinet firewall policies, IPS/IDS signatures, and security profiles.Optimize SIEM correlation rules and reduce false positives.Support onboarding of new devices, log sources, and integrations into SOC tools.Root Cause Analysis & ReportingPerform Root Cause Analysis (RCA) for security incidents.Prepare detailed incident reports and recommendations for preventive controls.Contribute to SOC dashboards, metrics, and management reports.Process & Knowledge ImprovementUpdate SOPs, runbooks, and incident response playbooks.Guide and mentor L1 SOC analysts.Participate in security drills, audits, and compliance activities.Coordination & EscalationCoordinate with network, system, and application teams for incident resolution.Escalate critical incidents to SOC Manager / customer stakeholders when required. Required Technical SkillsStrong hands-on experience with Fortinet solutions: FortiGate (Firewall, VPN, IPS/IDS)FortiSIEMFortiAnalyzerWorking knowledge of Arista switches and network telemetry.Good understanding of: TCP/IP, routing, switching, firewallsNetwork & endpoint security conceptsSIEM, log analysis, and threat detectionExperience with security frameworks and best practices. Qualifications & Experience4–7 years of experience in SOC / Network Security operations.Bachelor’s degree in IT, Computer Science, or related field.Fortinet certifications (NSE 4 / NSE 5 / NSE 6)/ GCIA /GCIH /CySA+ )– preferred.Experience in 24x7 SOC environments and shift operations.Strong communication, documentation, and analytical skills.