3 Chronicle Jobs

Preferred Knowledge The role requires efficient incident response and digital forensics skills to minimise the impact of cyber risks. The individual will oversee Security monitoring, Security tools Operations, Security incidents, ensure incidents are managed effectively and reported to stakeholders. This role primarily consists of first responder activities and to conducting thorough response activities on behalf of a wide variety of clients across every sector. Candidate required to work in complex security environments and alongside SOC team to design, communicate and execute incident response, containment, and remediation plans. Support incident response team analysts and incident management teams. Analyse tools, processes, and procedures for responding to cyber intrusions and come up with new methods for detecting cyber adversaries. Demonstrates proven expertise and success in incident handling, triage of events, network analysis and threat detection, trend analysis. Should have the following skills: Deep understanding of computer intrusion activities, incident response techniques, tools, and procedures Knowledge of Windows, Active Directory, DNS & Linux operating systems, Good Experience in SIEM monitoring (QRadar, Sentinel, Splunk, chronicle) Knowledge of SOAR technologies, working with playbooks (Cortex, chronicle, Splunk SOAR) Experience handling malware incidents and detections from EDR (MS Defender, Crowdstrike, SenitnelOne etc..) Working experience and knowledge of ITSM tools for incident management. Must be action oriented and have a proactive approach to solving issues. Knowledge of security logs, log quality review. Knowledge on IT (Operating systems, networking, databases) and IT security knowledge (system and network security) including IT security tools. Good knowledge of office collaboration tools Detect, Analyze, Investigate, and report qualified security incidents to the Client as per the defined SLA Provide recommendations to the security incidents reported as per SLA Investigates incidents using various security event sources (FW, IDS, PROXY, AD, EDR, DLP etc.). Investigations into non-standard incidents and execution of standard scenarios. Provide dashboard and data related to Incidents/Offenses for governance reports. Escalates to L3 if investigations uncover unusual or atypical situations. Monitoring unhealthy log source/data source and escalate to engineering team to fix them. Participate in incident response (IR) efforts; detect, identify, respond, contain and remediate all information security incidents. Rapidly and accurately determine the source of a security incident and moving quickly to identify and apply containment, mitigation, and remediation steps. Contribute to the execution of Cyber Security operations, incident response, and investigations spanning across all functions of the Corporate Security organization. Track, monitor incident actions while applying intelligence, situational awareness to prioritise incident actions based on risk Responsible for Incident and Breach communications, assessments, and reports and customer facing, to include leadership and executive management for the purpose of enabling Senior Management to make decisions in a crisis Develop and document processes to ensure consistent and scalable response operations.

Job Title: Application Security SME Location: Bangalore, India (Mandatory) Best fit Roles: Web Application Penetration Testing, API Testing, Network Penetration Testing Mobile Application Penetration Testing, Source Code Review, Thick Client Application Testing Certifications: Certified Ethical Hacker (CEH), Certified Red Team Professional (CRTP), Certified AppSec Pentester (CAPen), Certified API Security Analyst (CASA), OffSec Certified Professional (OSCP) Job Title: SDLC SUPPORT SME Location: Pune, India Best fit Roles: SAST SME, DAST SME , DevSecOps Integration specialist, SDLC Secure Developer, Automated Scripting Knowledge The Key Skills Proficient in SDLC Security with experience in both Agile and Waterfall Software Development Life Cycles. Understanding of integration & automation of various security technologies including SAST, DAST, MAST, IAST, container security tools within DevOps tooling pipeline (Jenkins, GitHub, Chef, Ansible, Nexus, etc). Understanding of platform-specific security risks, common vulnerabilities for web and architectures that are commonly used by mobile application. (HTML, XML, JavaScript, JSON, REST, Microservices etc.). Tools Proficiency in one or more tools like Checkmarx, Invicti(Netsparker), Quokka(Kryptowire), IriusRisk, Aquasec, etc. Job Title: Vulnerability Management SME Location: Hyderabad, India (Preferred) || Pune, India Requirement: CISA, CRISC, CISM, CISSP, CGEIT The Key Skills In-Depth knowledge of Vulnerabilities, Threat, Risk, Vulnerabilities Identification and Remediation. Must have knowledge of Security Testing and good exposure of vulnerabilities listed in OWASP Top 10/SANS 25. Cultivate a culture of continuous self-improvement, professional development, and self-directed learning, encouraging team members to maintain subject matter expertise in both their specific areas and the broader cybersecurity domain. Expertise in Risk and Compliance Management, Vulnerability Management, and Security Testing. Job Title: CyberArk Engineer Location: Mumbai The Key Skills: Proven experience working as a CyberArk Engineer, CyberArk Administrator, or similar role, with at least 2+ years of experience in designing, implementing, and supporting CyberArk solutions. Expertise in CyberArk PAS Suite components, including EPV, PSM, CPM, PVWA, and AIM, and proficiency in CyberArk REST API, PACLI, and scripting languages (PowerShell, Python, etc.). Strong understanding of privileged access management (PAM) concepts, principles, and best practices, including privileged account discovery, rotation, and monitoring. Experience with integrating CyberArk with identity governance, ticketing, SIEM, and other security and IT systems using APIs, connectors, and integration frameworks. Familiarity with regulatory compliance standards, such as NIST, PCI DSS, GDPR, HIPAA, and SOX, and experience with compliance assessments and audits. Job Title: SailPoint IIQ Developer Location: Mumbai The Key Skills: 3+ years of experience working as a SailPoint IIQ Developer or similar role in Identity and Access Management. In-depth knowledge of SailPoint IIQ architecture, components, and capabilities. Strong proficiency in scripting and programming languages such as Java, BeanShell, PowerShell, or Python. Experience with IAM concepts and technologies, including RBAC, SSO, LDAP, OAuth, and SAML. Hands-on experience with integration technologies such as REST APIs, SOAP, JDBC, and SCIM. Familiarity with cloud platforms (e.g., AWS, Azure, GCP) and their IAM services is a plus.. Preferred (Good-to-Have) Credentials: SailPoint Certified IdentityIQ Associate or Professional certification. Relevant certifications such as CISSP, CISM, or IAM certifications (e.g., CIAM, CIMP) are a plus. Job Title: IBM Verify Governance Location: Pune Job Title: Saviynt Location: Pune Desired qualifications 2 to 4 years of experience working in Identity-IGA Domain with minimum 2 years of experience in Saviynt Identity Platform. Strong understanding of identity and access management principles. Proficiency in programming languages such as Java, Python, or PowerShell. Experience in working with cloud platforms such as AWS, Azure, or GCP. Saviynt certification(s) preferred. Job Title: Incident Response Location: Bangalore The Key Skills: Experience on EDR tools for Incident response and threat hunting (Crowdstrike, MS Defender, Sentinel One) Certifications like ECIH v2, CHFI, GCIH or GCIA is preferred Job Title: ISMS Location: Delhi The key skills required are as follows: Responsible for ISO 27001 based Information Security Management System implementation and sustenance Responsible for advising clients on Business Continuity Planning, IT Disaster Recovery planning Assess client information security posture, identify the gaps/risks in the existing environment and develop solutions to mitigate the identified gaps/risk Responsible to assist client in review / implement Information Security controls in areas as mentioned, but not limited to: Change management process, Incident management process, Backup process, User identity and access management, Antivirus management, SLA performance and monitoring, Media handling & Exchange of information, Physical and environmental Security, and Media & Information Handling Job Title: PCI DSS Location: Mumbai Job Title: SIEM/Sentinle/Chronicle Location: Bangalore The Key Skills: Proven experience working with QRadar SIEM and other security tools. Ability to drive call and summarizing it post discussion. Deep understanding on Windows, DB, Mail cluster, VM and Linux commands. Good Understanding of Firewall, IDP/IPS, SIEM functioning Strong understanding of network protocols, TCP/IP, and security technologies. Familiarity with log analysis and correlation techniques. Knowledge of security incident response methodologies and best practices. Understanding of common security frameworks (e.g., NIST, ISO 27001). Job Title: Forescout Location: Bangalore The Key Skills: Proven experience in configuring and designing Forescout solutions. In-depth knowledge of network security principles and practices. Familiarity with cybersecurity frameworks and compliance standards (e.g., NIST, ISO 27001). Strong analytical and problem-solving skills. Excellent communication and interpersonal skills. Relevant certifications (e.g., Forescout Certified Administrator/Engineer) are a plus. Experience with scripting languages (e.g., Python) for automation is desirable.

Job Title: Application Security SME Location: Bangalore, India (Mandatory) Best fit Roles: Web Application Penetration Testing, API Testing, Network Penetration Testing Mobile Application Penetration Testing, Source Code Review, Thick Client Application Testing Certifications: Certified Ethical Hacker (CEH), Certified Red Team Professional (CRTP), Certified AppSec Pentester (CAPen), Certified API Security Analyst (CASA), OffSec Certified Professional (OSCP) Job Title: SDLC SUPPORT SME Location: Pune, India Best fit Roles: SAST SME, DAST SME , DevSecOps Integration specialist, SDLC Secure Developer, Automated Scripting Knowledge The Key Skills Proficient in SDLC Security with experience in both Agile and Waterfall Software Development Life Cycles. Understanding of integration & automation of various security technologies including SAST, DAST, MAST, IAST, container security tools within DevOps tooling pipeline (Jenkins, GitHub, Chef, Ansible, Nexus, etc). Understanding of platform-specific security risks, common vulnerabilities for web and architectures that are commonly used by mobile application. (HTML, XML, JavaScript, JSON, REST, Microservices etc.). Tools Proficiency in one or more tools like Checkmarx, Invicti(Netsparker), Quokka(Kryptowire), IriusRisk, Aquasec, etc. Job Title: Vulnerability Management SME Location: Hyderabad, India (Preferred) || Pune, India Requirement: CISA, CRISC, CISM, CISSP, CGEIT The Key Skills In-Depth knowledge of Vulnerabilities, Threat, Risk, Vulnerabilities Identification and Remediation. Must have knowledge of Security Testing and good exposure of vulnerabilities listed in OWASP Top 10/SANS 25. Cultivate a culture of continuous self-improvement, professional development, and self-directed learning, encouraging team members to maintain subject matter expertise in both their specific areas and the broader cybersecurity domain. Expertise in Risk and Compliance Management, Vulnerability Management, and Security Testing. Job Title: CyberArk Engineer Location: Mumbai The Key Skills: Proven experience working as a CyberArk Engineer, CyberArk Administrator, or similar role, with at least 2+ years of experience in designing, implementing, and supporting CyberArk solutions. Expertise in CyberArk PAS Suite components, including EPV, PSM, CPM, PVWA, and AIM, and proficiency in CyberArk REST API, PACLI, and scripting languages (PowerShell, Python, etc.). Strong understanding of privileged access management (PAM) concepts, principles, and best practices, including privileged account discovery, rotation, and monitoring. Experience with integrating CyberArk with identity governance, ticketing, SIEM, and other security and IT systems using APIs, connectors, and integration frameworks. Familiarity with regulatory compliance standards, such as NIST, PCI DSS, GDPR, HIPAA, and SOX, and experience with compliance assessments and audits. Job Title: SailPoint IIQ Developer Location: Mumbai The Key Skills: 3+ years of experience working as a SailPoint IIQ Developer or similar role in Identity and Access Management. In-depth knowledge of SailPoint IIQ architecture, components, and capabilities. Strong proficiency in scripting and programming languages such as Java, BeanShell, PowerShell, or Python. Experience with IAM concepts and technologies, including RBAC, SSO, LDAP, OAuth, and SAML. Hands-on experience with integration technologies such as REST APIs, SOAP, JDBC, and SCIM. Familiarity with cloud platforms (e.g., AWS, Azure, GCP) and their IAM services is a plus.. Preferred (Good-to-Have) Credentials: SailPoint Certified IdentityIQ Associate or Professional certification. Relevant certifications such as CISSP, CISM, or IAM certifications (e.g., CIAM, CIMP) are a plus. Job Title: IBM Verify Governance Location: Pune Job Title: Saviynt Location: Pune Desired qualifications 2 to 4 years of experience working in Identity-IGA Domain with minimum 2 years of experience in Saviynt Identity Platform. Strong understanding of identity and access management principles. Proficiency in programming languages such as Java, Python, or PowerShell. Experience in working with cloud platforms such as AWS, Azure, or GCP. Saviynt certification(s) preferred. Job Title: Incident Response Location: Bangalore The Key Skills: Experience on EDR tools for Incident response and threat hunting (Crowdstrike, MS Defender, Sentinel One) Certifications like ECIH v2, CHFI, GCIH or GCIA is preferred Job Title: ISMS Location: Delhi The key skills required are as follows: Responsible for ISO 27001 based Information Security Management System implementation and sustenance Responsible for advising clients on Business Continuity Planning, IT Disaster Recovery planning Assess client information security posture, identify the gaps/risks in the existing environment and develop solutions to mitigate the identified gaps/risk Responsible to assist client in review / implement Information Security controls in areas as mentioned, but not limited to: Change management process, Incident management process, Backup process, User identity and access management, Antivirus management, SLA performance and monitoring, Media handling & Exchange of information, Physical and environmental Security, and Media & Information Handling Job Title: PCI DSS Location: Mumbai Job Title: SIEM/Sentinle/Chronicle Location: Bangalore The Key Skills: Proven experience working with QRadar SIEM and other security tools. Ability to drive call and summarizing it post discussion. Deep understanding on Windows, DB, Mail cluster, VM and Linux commands. Good Understanding of Firewall, IDP/IPS, SIEM functioning Strong understanding of network protocols, TCP/IP, and security technologies. Familiarity with log analysis and correlation techniques. Knowledge of security incident response methodologies and best practices. Understanding of common security frameworks (e.g., NIST, ISO 27001). Job Title: Forescout Location: Bangalore The Key Skills: Proven experience in configuring and designing Forescout solutions. In-depth knowledge of network security principles and practices. Familiarity with cybersecurity frameworks and compliance standards (e.g., NIST, ISO 27001). Strong analytical and problem-solving skills. Excellent communication and interpersonal skills. Relevant certifications (e.g., Forescout Certified Administrator/Engineer) are a plus. Experience with scripting languages (e.g., Python) for automation is desirable.