11 Automation Playbooks Jobs

Deploy Palo Alto Cortex XSIAM. Build collectors, parsers, playbooks. Develop scripts and APIs. Onboard log sources, troubleshoot. Require Palo Alto XDR/XSOAR experience, Python/Bash, threat-hunting expertise, documentation and training skills. Required Candidate profile . Responsibilities include tuning detection rules, creating dashboards and reports, and collaborating with SOC and threatintel teams to improve detection efficacy

Overview As a Threat Intelligence Analyst, you will be responsible for supporting the threat intelligence function at StoneX. You will work closely with the Exposure Management Manager and Threat Intelligence Lead Analyst to provide timely situational awareness, translate cyber threats into actionable information to ensure resources are focused on the right risks, and to reduce the probability of material impact to the company. This is an individual contributor hybrid position that requires 4 days in the office per week at the Bangaluru Office. If your resume doesn't perfectly line up with the role responsibilities and qualifications, we encourage you to apply anyway. You could be one step a...

Who We Are At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl We are always moving forward - always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities. The Role Key Responsibilities 1. Endpoint Monitoring & Threat Detection Continuously monitor endpoint telemetry for Indicators of Attack (IOAs) and Indicators of Compromise (IOCs) using CrowdStrike Falcon Insight . Validate and triage alerts to differentiate between false positives and genuine threats. Escalate confirmed or high-severity incidents to L2/...

Overview As a Threat Intelligence Analyst, you will be responsible for supporting the threat intelligence function at StoneX. You will work closely with the Exposure Management Manager and Threat Intelligence Lead Analyst to provide timely situational awareness, translate cyber threats into actionable information to ensure resources are focused on the right risks, and to reduce the probability of material impact to the company. This is an individual contributor hybrid position that requires 4 days in the office per week at the Bangaluru Office. If your resume doesn't perfectly line up with the role responsibilities and qualifications, we encourage you to apply anyway. You could be one step a...

Who We Are At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl We are always moving forward - always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities. The Role Are you passionate about protecting companies from cyber threats Do you want to be part of a team that safeguards the digital assets of cutting-edge organizations Look no further - Kyndryl is seeking a Cybersecurity Specialist to join our team of talented Technical Specialists. As a Cybersecurity Specialist, you will be at the forefront of prote...

Continuously monitor: Monitor security alerts and events from various sources, including Microsoft Sentinel, Defender for Endpoint and Defender for Cloud. Perform log management: Perform log ingestion, define use cases, and create alerts for critical assets. Develop Detection Rules: Create, implement, and fine-tune analytical rules, alerts, and queries in Microsoft Sentinel and Defender to detect security incidents and reduce false positives. Behavioral Analytics: Leverage user and entity behavior analytics (UEBA) to identify abnormal activities and enhance detection capabilities. Customize Playbooks: Develop and customize automation playbooks in Sentinel and defender to streamline incident ...

Location : Hyderabad As a Lead Expert in our Cyber Defense team, you will play a pivotal role in strengthening the organization's digital security posture and ensuring the resilience of our information systems. In this position, you will be responsible for building, managing, and continuously enhancing our Security Operations Center (SOC). Your work will directly influence how our security infrastructure detects, responds to, and mitigates threats across a complex and evolving digital environment. You will lead the design and implementation of SOC automation initiatives, leveraging technologies such as Azure Sentinel, Microsoft Logic Apps, and Python scripting to streamline detection and res...

Description In-depth understanding of how to use and the roles of the tools for specific DevOps functions. Design, develop and maintain CI and CD pipelines Develop automation playbooks for deployments, configuration management, provisioning, reporting and other recurring tasks Ensure that deployment platforms are scalable and conform to enterprise standards General understanding of pipeline technology involving Jenkins-Kubernetes with respect to Openshift. Familiar with secDevOps technologies like Kubernetes, Docker, Openshift Management and monitoring of AWS Platform Good understanding and hands on with services aws services VPC , KMS, S3, IAM, EC2, AWS transfer family ,Lambda , Cloud watch...

Cybersecurity at Providence is responsible for appropriately protecting all information relating to its caregivers and affiliates, as well as protecting its confidential business information (including information relating to its caregivers, affiliates, and patients) What will you be responsible for Lead the design and implementation of data ingestion from diverse sources, various mechanisms for integration and normalization of logs. Extension of pre-built UDMs in and creation of custom parsers where required for log sources. Integration of SIEM with other security capabilities and tools such as SOAR, EDR, threat intelligence platform, and ticketing systems. Write custom actions, scripts and...

Description In-depth understanding of how to use and the roles of the tools for specific DevOps functions. Design, develop and maintain CI and CD pipelines Develop automation playbooks for deployments, configuration management, provisioning, reporting and other recurring tasks Ensure that deployment platforms are scalable and conform to enterprise standards General understanding of pipeline technology involving Jenkins-Kubernetes with respect to Openshift. Familiar with secDevOps technologies like Kubernetes, Docker, Openshift Management and monitoring of AWS Platform Good understanding and hands on with services aws services VPC , KMS, S3, IAM, EC2, AWS transfer family ,Lambda , Cloud watch...

KEY Capabilities Experience in working with Splunk Enterprise, Splunk Enterprise Security & Splunk UEBA Minimum of Splunk Power User Certification Good knowledge in programming or Scripting languages such as Python (preferred), JavaScript (preferred), Bash, PowerShell, Bash, etc. Perform remote and on-site gap assessment of the SIEM solution. Define evaluation criteria & approach based on the Client requirement & scope factoring industry best practices & regulations Conduct interview with stakeholders, review documents (SOPs, Architecture diagrams etc.) Evaluate SIEM based on the defined criteria and prepare audit reports Good experience in providing consulting to customers during the testin...