SOC Analyst/Incident Response Analyst

Infinit-O is the trusted, customer-centric, and sustainable leader in Business Process Optimization. We empower finance and healthcare organizations to thrive in a digital-first world by combining specialized industry expertise and innovative technology for 20 years. We navigate complex industry landscapes to drive transformative outcomes, helping businesses streamline operations, enhance customer experience, and achieve sustainable growth backed by a world-class Net Promoter Score of 75. Our approach combines operational efficiency with a human-centered ethos, ensuring sustainable value creation for our clients and team members. As a Certified B Corporation, Infinit-O is committed to the highest standards of social and environmental performance, accountability, and transparency. We embed these values into every aspect of our operations—aligning business success with a positive impact on our clients, people, and communities. Our commitment to Diversity, Equity, and Inclusion (DEI) is integral to our mission. We believe that building inclusive, equitable teams is not only the right thing to do—it is also essential for driving innovation and better business outcomes. We actively promote equal opportunity through inclusive hiring practices, continuous learning programs, and regular equity assessments to ensure a fair and empowering workplace for all. SOC/Incident Response Analyst This position is a first-line defense role operating during critical off-hour windows (nights and weekends). The team will be responsible for the initial triage and validation of security alerts generated by Customer’s SIEM, Okta, SentinelOne, Keeper, and Google platforms. The primary objective is to investigate anomalies and escalate confirmed threats to the internal Incident Response (IR) team through PagerDuty. Core Responsibilities SIEM Alert Validation: Monitor Jira/BlinkOps for alerts pertaining to: Identity issues, compromised passwords, impossible travel, travel to restricted countries, Superadmin creation in Okta, Admin created in SentinelOne, Google admin account activity (creation/deletion), Splunk data deletion, HoneyCred access in Keeper, and suspected malicious access by Okta, Google, and other systems. Investigation: Perform manual investigation (running searches in Splunk, SentinelOne, and Client apps) to confirm alert details, determine False Positive/True Positive status, and engage the on-call IR lead. Manual IR Escalation: Identify True Positive events and provide the IR team with a handoff summary including impacted users, systems, and IP information. Skills Matrix Feature | Requirement Alert Triage: Able to investigate alerts through log entries and reconstruct user/system activity. SIEM Navigation: Competency in querying logs (training provided as needed). EDR Navigation: Ability to search SentinelOne to identify specific activity related to alerts. Communication: Ability to write clear summaries in Jira and PagerDuty. Escalation: Ability to escalate True Positives to IR through PagerDuty. Education Qualification and Experience The ideal candidate should have a Bachelor's Degree in IT, Computer Science or similar Have at least 1-2 years of experience in a similar role