SOC / EDR Incident Handler - Level 2 (Microsoft Defender for Endpoint)

EMBARKGCC SERVICES PRIVATE LIMITED

📍 Gurugram, Haryana, India

Full-time Other-General Posted February 12, 2026

Apply Now Similar Jobs

Job Description

Job Description 
SOC / EDR Incident Handler - Level 2 (Microsoft Defender for Endpoint)
 
  Level 2 EDR Incident Handler responsible for owning endpoint investigations and executing incident response, serving as the primary escalation point from Level 1 within a SOC environment.
 
Primary Platform: Microsoft Defender for Endpoint (MDE)
Operating Model:  SOC / 24×7 Shift-Based

Roles & Responsibilities: 
 
Perform secondary analysis and final validation of alerts escalated from Level 1, confirming true positives and closing verified false positives with appropriate documentation.
  
Conduct in-depth endpoint investigations to analyse threat behaviour and determine scope and impact.
  
Perform basic proactive threat hunting in MDE using KQL to identify related activity or missed indicators.
  
Independently execute advanced endpoint re...

Apply for this Position

Ready to join EMBARKGCC SERVICES PRIVATE LIMITED? Click the button below to submit your application.

Submit Application

Job Details

Location

Gurugram, Haryana, India

Job Type

Full-time