← Back to history

Pipeline run

d3ae15fd-f095-458e-9a00-7a3bb162445e

Client output enrichment

v2 Skill cluster · Nature of work · AI index · Tech stack maturity · Evidence · KRA description

Nature of work

—

no_db_connection

Tech stack maturity

Mainstream Modern

AI index (0 = no AI use, 5 = totally AI-dependent · v2.1)

0.00 / 5

· Title match

· Has AI skill

· AI skill (primary)

· AI skill (secondary)

· On AI team

· Builds AI products

vocab breakdown (legacy)

Assistants (×1): —

Frameworks (×2): —

Models / concepts (×3): —

Evidence — skills matched in JD (15)

SIEM Splunk QRadar Microsoft Sentinel Linux Windows Python Bash PowerShell AWS Azure GCP Nessus Qualys MITRE ATT&CK

Skill cluster (0 dimension groups, role-scoped)

No dimension groups computed for this JD.

Status: extract_from_jd_done Created: 2026-05-12T04:44:06.760465Z Updated: 2026-05-12T04:44:06.760465Z

Flow Current 3-step pipeline

1 POST /skills/extract-from-jd

2 POST /skills/extract-details

3 POST /skills/final-role-output

Role Chosen role & resolution

No chosen role stored for this run.

Job description

Job Title: Security Operations Engineer (SOC Analyst)

Experience: 2–6 Years
Location: Noida / Bengaluru / Remote

About the Role

We are looking for a Security Operations Engineer to monitor, detect, investigate, and respond to cybersecurity threats across enterprise infrastructure and cloud environments. You will work closely with infrastructure, DevOps, and compliance teams to strengthen security posture and improve incident response capabilities.

Key Responsibilities
Monitor SIEM dashboards and security alerts for suspicious activities
Investigate security incidents, threats, and vulnerabilities
Perform log analysis across endpoints, servers, and cloud systems
Develop and maintain incident response procedures and playbooks
Conduct threat hunting and malware analysis activities
Collaborate with engineering teams to remediate security findings
Manage endpoint detection and response (EDR) solutions
Perform vulnerability assessments and coordinate patch management
Generate security reports and compliance documentation
Required Skills
Strong understanding of networking protocols and system security
Experience with SIEM tools such as Splunk, QRadar, or Microsoft Sentinel
Knowledge of firewalls, IDS/IPS, VPNs, and endpoint security tools
Familiarity with Linux and Windows system administration
Understanding of common attack vectors and MITRE ATT&CK framework
Experience with scripting using Python, Bash, or PowerShell
Knowledge of cloud security concepts in AWS, Azure, or GCP
Familiarity with vulnerability scanning tools like Nessus or Qualys
Good to Have
Experience with digital forensics and malware analysis
Exposure to SOAR platforms and security automation
Certifications such as CEH, Security+, CySA+, or CISSP
Understanding of compliance standards like ISO 27001 or SOC 2
Qualification
Bachelor’s degree in Cybersecurity, Computer Science, or related field
Strong analytical and incident-handling skills
Ability to work in rotational shifts if required

Skills from this JD

Each row merges API 1 extraction, API 2 library match / v3 orchestration (dimensions + locked dims), and API 3 persistence tags.

SIEM Primary No API 2 row (run stopped after API 1 or history missing)

Splunk Primary No API 2 row (run stopped after API 1 or history missing)

QRadar Primary No API 2 row (run stopped after API 1 or history missing)

Microsoft Sentinel Primary No API 2 row (run stopped after API 1 or history missing)

Linux Primary No API 2 row (run stopped after API 1 or history missing)

Windows Primary No API 2 row (run stopped after API 1 or history missing)

Python Primary No API 2 row (run stopped after API 1 or history missing)

Bash Primary No API 2 row (run stopped after API 1 or history missing)

PowerShell Primary No API 2 row (run stopped after API 1 or history missing)

AWS Primary No API 2 row (run stopped after API 1 or history missing)

Azure Primary No API 2 row (run stopped after API 1 or history missing)

GCP Primary No API 2 row (run stopped after API 1 or history missing)

Nessus Secondary No API 2 row (run stopped after API 1 or history missing)

Qualys Secondary No API 2 row (run stopped after API 1 or history missing)

MITRE ATT&CK Secondary No API 2 row (run stopped after API 1 or history missing)

Library artifacts (this run)

No artifact rows for this run.

API 1 — extract-from-jd click to toggle

{
  "final_skills": [
    {
      "is_primary": true,
      "skill_name": "SIEM"
    },
    {
      "is_primary": true,
      "skill_name": "Splunk"
    },
    {
      "is_primary": true,
      "skill_name": "QRadar"
    },
    {
      "is_primary": true,
      "skill_name": "Microsoft Sentinel"
    },
    {
      "is_primary": true,
      "skill_name": "Linux"
    },
    {
      "is_primary": true,
      "skill_name": "Windows"
    },
    {
      "is_primary": true,
      "skill_name": "Python"
    },
    {
      "is_primary": true,
      "skill_name": "Bash"
    },
    {
      "is_primary": true,
      "skill_name": "PowerShell"
    },
    {
      "is_primary": true,
      "skill_name": "AWS"
    },
    {
      "is_primary": true,
      "skill_name": "Azure"
    },
    {
      "is_primary": true,
      "skill_name": "GCP"
    },
    {
      "is_primary": false,
      "skill_name": "Nessus"
    },
    {
      "is_primary": false,
      "skill_name": "Qualys"
    },
    {
      "is_primary": false,
      "skill_name": "MITRE ATT\u0026CK"
    }
  ],
  "run_id": null
}

API 2 — extract-details

{}

API 3 — final-role-output

{}

LLM Calls

Every model call made for this run, in pipeline order. Click a card to see the model's response.

Loading…