L2 SOC analyst with zscaler

Company Profile:
Founded in 1976, CGI is among the largest independent IT and business consulting services firms in the world. With 94,000 consultants and professionals across the globe, CGI delivers an end-to-end portfolio of capabilities, from strategic IT and business consulting to systems integration, managed IT and business process services and intellectual property solutions. CGI works with clients through a local relationship model complemented by a global delivery network that helps clients digitally transform their organizations and accelerate results. CGI Fiscal 2024 reported revenue is CA$14.68 billion and CGI shares are listed on the TSX (GIB.A) and the NYSE (GIB). Learn more at cgi.com.

Job Title: L2 SOC Analyst with Zscaler
Position: SSE
Experience: 8 to 12 years
Category: Software Development/ Engineering
Shift: Canada Shift – EST
Main location: Bangalore, Chennai
Position ID: J1125-1485
Employment Type: Full Time
Education Qualification: Bachelor's degree in Computer Science or related field or higher with minimum 8 years of relevant experience.
Budget – LPA

Job Summary
We are seeking a highly skilled L2 SOC Analyst with experience in Security Operations, Vulnerability Assessment, and Zscaler technologies. The ideal candidate will be responsible for monitoring security events, identifying threats, managing vulnerabilities, and supporting secure access through Zscaler platforms. This role demands strong analytical skills, a proactive mindset, and the ability to collaborate with cross-functional teams to strengthen the organization’s security posture.
________________________________________
Key Responsibilities
Security Monitoring & Incident Response

• Monitor security alerts and events through SIEM tools (e.g., QRadar, Splunk).
• Perform initial triage, classification, and escalation of security incidents.
• Investigate security alerts, analyze patterns, and determine potential threats.
• Document incidents, findings, and resolutions in accordance with SOC processes.
• Support incident response activities, including containment and remediation.

Vulnerability Assessment & Management

• Conduct vulnerability scans using tools such as Qualys, Nessus, Rapid7, etc.
• Analyze scan results, validate vulnerabilities, and assess business impact.
• Work with application, infrastructure, and DevOps teams to track and remediate vulnerabilities.
• Prioritize vulnerabilities based on risk scoring (CVSS) and threat context.
• Prepare vulnerability reports and dashboards for leadership and stakeholders.

Zscaler (ZIA/ZPA) Security Operations

• Monitor and manage Zscaler security alerts, logs, and user activity.
• Troubleshoot Zscaler-related issues impacting users or network traffic.
• Maintain and optimize Zscaler policies, including URL filtering, threat protection, and access control.
• Support onboarding/offboarding activities for Zscaler users and devices.
• Work with the network security team to ensure correct routing and policy enforcement.

Threat Hunting & Analysis

• Perform proactive threat hunting using SIEM and endpoint tools.
• Investigate suspicious behavior, anomalies, and potential compromise indicators (IOCs).
• Recommend enhancements to detection rules and use cases.

Reporting & Documentation

• Prepare daily/weekly SOC reports, incident summaries, and vulnerability dashboards.
• Maintain accurate documentation for SOPs, incident runbooks, and security workflows.
• Present findings to security leadership and recommend improvements.

________________________________________
Required Skills & Qualifications

• 2–5 years of experience as a SOC Analyst or Security Operations Engineer.
• Hands-on experience with SIEM tools (QRadar, Splunk, Sentinel, etc.).
• Strong knowledge of vulnerability scanners (Qualys/Nessus/Rapid7).
• Working experience with Zscaler Internet Access (ZIA) and Zscaler Private Access (ZPA).
• Good understanding of firewalls, proxies, DNS, HTTP/HTTPS traffic, and networking fundamentals.
• Familiarity with threat intelligence sources and security frameworks (MITRE ATT&CK, NIST).
• Analytical mindset with excellent communication and documentation skills.
• Ability to work in 24/7 SOC environments, including rotational shifts.

________________________________________
Preferred Qualifications

• Relevant certifications such as:

o Security+, CEH, CYSA+, GSEC
o Zscaler Certified Administrator (ZCA) or Zscaler Certified Cloud Professional (ZCCP)
o Qualys/Vulnerability Management certifications

• Experience with EDR tools (CrowdStrike, SentinelOne, Defender ATP).
• Knowledge of scripting (Python, PowerShell) for automation.

Life at CGI:
It is rooted in ownership, teamwork, respect and belonging. Here, you’ll reach your full potential because…
You are invited to be an owner from day 1 as we work together to bring our Dream to life. That’s why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company’s strategy and direction
Your work creates value. You’ll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise
You’ll shape your career by joining a company built to grow and last. You’ll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons
Come join our team, one of the largest IT and business consulting services firms in the world