7 Claroty Jobs

Role Overview: You will be joining the EY cyber security team as a CMS-TDR Senior, where you will work as a Senior Analyst assisting clients in detecting and responding to security incidents using SIEM, EDR, and NSM solutions. Your role will involve operational support, incident validation, coordination, and communication with clients to ensure effective containment, eradication, and recovery of security incidents. Key Responsibilities: - Provide operational support using SIEM solutions (Splunk, Sentinel, CrowdStrike Falcon LogScale), EDR (CrowdStrike, Defender, Carbon Black), and NSM (Fidelis, ExtraHop) for multiple customers. - Specialize in second-level incident validation and detailed investigation. - Perform incident coordination and communication with clients for effective containment, eradication, and recovery. - Conduct SIEM support activities including adhoc reporting and basic troubleshooting. - Advise customers on best practices and use cases to achieve end-state requirements. - Provide near real-time analysis, investigation, reporting, remediation, coordination, and tracking of security-related activities for customers. Qualifications Required: - B. Tech./ B.E. with sound technical skills. - Ability to work in 24x7 shifts. - Strong command of verbal and written English language. - Demonstrate technical acumen and critical thinking abilities. - Strong interpersonal and presentation skills. - Minimum 3 years of hands-on experience in SIEM/EDR/NSM solutions. - Certification in any of the SIEM platforms. - Knowledge of RegEx, Perl scripting, and SQL query language. - Certification - CCSA, CEH, CISSP, GCIH. Additional Details: At EY, you will have the opportunity to work on inspiring and meaningful projects, receive support, coaching, and feedback from engaging colleagues, develop new skills, progress your career, and have the freedom and flexibility to handle your role in a way that suits you. EY is dedicated to building a better working world by creating long-term value for clients, people, and society, and building trust in the capital markets through diverse teams in over 150 countries.,

As a Senior Associate Engineer in IT Service Management, you will be responsible for various tasks related to IT Service Management practices, policies, and procedures within the organization. Your primary focus will be on effectively managing and delivering IT services to ensure alignment with business objectives and meet the needs of end-users. By following best practices and emphasizing continuous improvement, you will contribute to enhancing user satisfaction and productivity. Your responsibilities will include writing, testing, and documenting technical work products such as code, scripts, and processes in accordance with organizational standards. You will also be expected to prioritize reliability, quality, reusability, and craftsmanship of products and systems while breaking down complex designs to anticipate potential issues and guide the team in implementing best practices for improving reliability, security, and observability in systems under development. Additionally, you will need to observe the environment, identify problems, and explore new approaches during root cause analysis. You will be involved in designing and implementing self-contained systems within your team's domain and defining test suites and instrumentation to ensure latency and availability targets are met. To be successful in this role, you should have a Bachelor's degree in Computer Science, Computer Engineering, Technology, Information Systems (CIS/MIS), or Engineering, along with at least 1 year of experience in designing, developing, and implementing large-scale solutions in production environments. Key Responsibilities: - Maintain and update asset & software asset records in HAM & SAM tools and CMDB. - Monitor asset & software usage and license compliance across environments. - Assist all IT teams in OS and application patching utilizing Tanium. - Manage & Maintain Claroty IOT/OT asset discovery. - Maintain and install Claroty collectors working with IT field support. - Assist in software audits and reconciliation of entitlements vs. deployments. - Support procurement and contract teams with software entitlement validation. - Collaborate with IT, security, and finance teams to ensure alignment on software usage and cost allocation. - Identify opportunities for license optimization and cost savings. - Generate reports and dashboards to support decision-making and compliance. - Participate in the development and refinement of SAM processes and documentation. - Provide support for escalations related to software licensing and asset tracking. Please note that this list of responsibilities may not be exhaustive, and additional essential functions may be required based on the needs of the organization. Management may modify the job or assign additional tasks as necessary, while adhering to legal and collective bargaining obligations. Your contribution to IT Service Management will play a crucial role in the overall success of the organization.,

At EY, you'll have the opportunity to shape a unique career tailored to your individual strengths, with the global reach, support, diverse culture, and cutting-edge technology needed to unleash your full potential. Your distinctive voice and perspective are valued at EY as we strive for continuous improvement. Join our team to create an exceptional experience for yourself while contributing to a better working world for all. As a CMS-TDR Senior at EY, you will be a key member of our cybersecurity team, serving as a Senior Analyst responsible for assisting clients in identifying and responding to security incidents using SIEM, EDR, and NSM solutions. Your primary responsibilities will include: - Providing operational support utilizing SIEM solutions (Splunk, Sentinel), EDR (CrowdStrike, Defender, Carbon Black), and NSM (Fidelis, ExtraHop) for multiple clients. - Specializing in second-level incident validation and conducting detailed investigations. - Coordinating and communicating with clients to ensure effective incident containment, eradication, and recovery. - Conducting SIEM support activities such as adhoc reporting and basic troubleshooting. - Advising customers on best practices and use cases for achieving their desired security objectives using these solutions. - Offering near real-time analysis, investigation, reporting, remediation, coordination, and tracking of security-related activities for clients. Required skills and attributes for success: - Customer service orientation with a focus on meeting commitments and seeking feedback for continuous improvement. - Proficiency in SIEM technologies like Splunk, Azure Sentinel from a security analyst's perspective. - Ability to troubleshoot issues related to SIEM solutions. - Capability to work independently with minimal supervision. - Exposure to IOT/OT monitoring tools (Claroty, Nozomi Networks) is advantageous. - Strong knowledge and experience in Security Monitoring and Cyber Incident Response. - Familiarity with ELK Stack, Network monitoring platforms like Fidelis XPS, ExtraHop, and endpoint protection tools such as Carbon Black, Tanium, CrowdStrike, Defender, etc. Qualifications for this role include: - Bachelor's degree in Engineering with a strong technical background. - Availability to work in 24x7 shifts. - Excellent command of verbal and written English. - Demonstrated technical expertise and critical thinking skills. - Strong interpersonal and presentation abilities. - Minimum of 3 years hands-on experience in SIEM/EDR/NSM solutions. - Certification in any SIEM platform and knowledge of RegEx, Perl scripting, and SQL query language. - Certifications such as CCSA, CEH, CISSP, GCIH are preferred. Additionally, project management skills are desirable for this role. Working at EY offers: - Engaging and diverse projects with clients ranging from startups to Fortune 500 companies. - Opportunities for education, coaching, and personal development. - Supportive colleagues, feedback, and coaching. - Room for skill development and career progression. - A flexible work environment that empowers you to excel in your role. EY is committed to building a better working world by creating long-term value for clients, people, and society while fostering trust in capital markets. Through data and technology, EY teams worldwide provide assurance and help clients grow, transform, and operate effectively in today's complex landscape. Whether in assurance, consulting, law, strategy, tax, or transactions, EY teams drive innovation by asking the right questions to address the challenges of our time.,

At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture, and technology to become the best version of you. And we're counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. As part of our EY-cyber security team, you will work as a SOC analyst who will assist clients in detecting and responding to security incidents with the support of their SIEM, EDR, and NSM solutions. We are looking for a Security Analyst with experience in SIEM, EDR, and NSM solutions. Your key responsibilities include: - Providing operational support using SIEM solutions (Splunk, Sentinel), EDR Solution (Defender, CrowdStrike, Carbon Black), NSM (Fidelis, ExtraHop) for multiple customers. - Handling the first level of monitoring and triaging of security alerts. - Conducting initial data gathering and investigation using SIEM, EDR, and NSM solutions. - Providing near real-time analysis, investigation, and reporting security incidents for customers. Skills and attributes for success: - Customer Service oriented - meets commitments to customers and seeks feedback from customers to identify improvement opportunities. - Good knowledge of SIEM technologies such as Splunk, Azure Sentinel from a Security analyst's point of view. - Exposure to IOT/OT monitoring (Claroty, Nozomi Networks, etc.) is a plus. - Good knowledge and experience in Security Monitoring. - Good knowledge and experience in Cyber Incident Response. - Knowledge in Network monitoring technology platforms such as Fidelis XPS, ExtraHop. - Knowledge in endpoint protection tools, techniques, and platforms such as Carbon Black, Tanium, CrowdStrike, Defender ATP, etc. To qualify for the role, you must have: - B. Tech./ B.E. with sound technical skills. - Ability to work in 24x7 shifts. - Strong command of verbal and written English language. - Demonstrate both technical acumen and critical thinking abilities. - Strong interpersonal and presentation skills. - Hands-on experience in SIEM, EDR, and NSM solutions. - Certification in any of the SIEM platforms. - Knowledge of RegEx, Perl scripting, and SQL query language. - Certification - CEH, ECSA, ECIH, Splunk Power User. Working at EY offers: At EY, we're dedicated to helping our clients, from startups to Fortune 500 companies, and the work we do with them is as varied as they are. You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees, and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer: - Support, coaching, and feedback from some of the most engaging colleagues around. - Opportunities to develop new skills and progress your career. - The freedom and flexibility to handle your role in a way that's right for you. EY | Building a better working world: EY exists to build a better working world, helping to create long-term value for clients, people, and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform, and operate. Working across assurance, consulting, law, strategy, tax, and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.,

At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture, and technology to become the best version of you. We are counting on your unique voice and perspective to help EY become even better. Join us and build an exceptional experience for yourself and a better working world for all. As a CMS-TDR Senior at EY, you will work as a Senior Analyst within our cyber security team. Your role will involve assisting clients in detecting and responding to security incidents with the support of SIEM, EDR, and NSM solutions. Your key responsibilities will include: - Operational support using SIEM solutions (Splunk, Sentinel, CrowdStrike Falcon LogScale), EDR (CrowdStrike, Defender, Carbon Black), and NSM (Fidelis, ExtraHop) for multiple customers. - Specializing in second-level incident validation and detailed investigations. - Performing incident coordination and communication with clients to ensure effective containment, eradication, and recovery. - Providing SIEM support activities, including ad hoc reporting and basic troubleshooting. - Advising customers on best practices and use cases to achieve customer end-state requirements. - Providing near real-time analysis, investigating, reporting, remediating, coordinating, and tracking security-related activities for customers. Skills and attributes for success include: - Customer service orientation, meeting commitments, and seeking feedback for improvement. - Good knowledge of SIEM technologies such as Splunk, Azure Sentinel, CrowdStrike Falcon LogScale from a security analyst's perspective. - Troubleshooting issues associated with SIEM solutions. - Ability to work with minimal supervision. - Exposure to IoT/OT monitoring (Claroty, Nozomi Networks) is a plus. - Experience in security monitoring and cyber incident response. - Knowledge in ELK Stack, network monitoring technology platforms (Fidelis XPS, ExtraHop), and endpoint protection tools (Carbon Black, Tanium, CrowdStrike, Defender). To qualify for this role, you must have: - A B.Tech./B.E. degree with sound technical skills. - Ability to work in 24x7 shifts. - Strong command of verbal and written English. - Technical acumen and critical thinking abilities. - Strong interpersonal and presentation skills. - Minimum 3 years of hands-on experience in SIEM/EDR/NSM solutions. - Certification in any of the SIEM platforms. - Knowledge of RegEx, Perl scripting, and SQL query language. - Certifications such as CCSA, CEH, CISSP, GCIH, GIAC. Working at EY offers: - Inspiring and meaningful projects. - Education, coaching, and personal development opportunities. - Support, coaching, and feedback from engaging colleagues. - Opportunities for skills development and career progression. - Freedom and flexibility to shape your role according to your needs. EY is dedicated to building a better working world by creating long-term value for clients, people, and society and building trust in the capital markets. Our diverse teams across 150 countries provide trust through assurance and help clients grow, transform, and operate in various sectors. We ask better questions to find new answers for the complex issues facing our world today.,

At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture, and technology to become the best version of yourself. And EY is counting on your unique voice and perspective to help the organization become even better. Join us and build an exceptional experience for yourself, and contribute to creating a better working world for all. As a CMS-TDR Staff at EY, you will be part of the cyber security team and work as a SOC analyst to assist clients in detecting and responding to security incidents with the support of SIEM, EDR, and NSM solutions. **The Opportunity:** We are seeking a Security Analyst with experience in SIEM, EDR, and NSM solutions. **Your key responsibilities include:** - Providing operational support using SIEM solutions (Splunk, Sentinel, CrowdStrike Falcon LogScale), EDR Solution (Defender, CrowdStrike, Carbon Black), NSM (Fidelis, ExtraHop) for multiple customers. - Performing the first level of monitoring and triaging of security alerts. - Conducting initial data gathering and investigation using SIEM, EDR, NSM solutions. - Providing near real-time analysis, investigation, and reporting of security incidents for customers. **Skills and attributes for success:** - Customer Service oriented with a commitment to meeting customer needs and seeking feedback for improvement. - Hands-on knowledge of SIEM technologies like Splunk, Azure Sentinel, CrowdStrike Falcon LogScale from a Security analyst's perspective. - Exposure to IOT/OT monitoring tools like Claroty, Nozomi Networks is a plus. - Good knowledge and experience in Security Monitoring and Cyber Incident Response. - Familiarity with Network monitoring platforms like Fidelis XPS, ExtraHop and endpoint protection tools such as Carbon Black, Tanium, CrowdStrike, Defender ATP, etc. **To qualify for the role, you must have:** - B. Tech./ B.E. with sound technical skills. - Ability to work in 24x7 shifts. - Strong command of verbal and written English language. - Technical acumen and critical thinking abilities. - Strong interpersonal and presentation skills. - Hands-on experience in SIEM, EDR, and NSM solutions. - Certification in any of the SIEM platforms. - Knowledge of RegEx, Perl scripting, and SQL query language. - Certification such as CEH, ECSA, ECIH, Splunk Power User. **What working at EY offers:** At EY, you will work on inspiring and meaningful projects with a focus on education, coaching, and personal development. You will have opportunities for skill development, career progression, and the freedom to handle your role in a way that suits you best. EY offers support, coaching, and feedback from engaging colleagues, along with an environment that emphasizes high quality and knowledge exchange. EY is dedicated to building a better working world, creating value for clients, people, and society, and building trust in the capital markets. With diverse teams in over 150 countries, EY provides trust through assurance and helps clients grow, transform, and operate across various domains.,

Description: Cyber SOC OT Security Analyst Level 2 Experience Required: 3-6 years Location: Bengaluru Shift: Must be flexible to work in 24/7 rotational shifts including weekends Reports To: OT Security Operations Center Lead/ OT Security Manager ________________________________________ Role Overview: The OT Security Analyst Level 2 (L2) plays a pivotal role in defending operational technology (OT) environments against evolving cyber threats. This role requires a deep understanding of security incident analysis, threat detection, and incident response, specifically tailored to Industrial Control Systems (ICS) and OT networks. The analyst will investigate complex security incidents within the OT infrastructure, collaborate with IT/OT teams, and enhance security posture through actionable insights. ________________________________________ Key Responsibilities: • Conduct in-depth analysis of security events and incidents within OT environments, leveraging SIEM and OT-specific monitoring tools. • Perform root cause analysis and develop incident timelines to support forensics and remediation efforts. • Apply standard incident response frameworks (e.g., NIST, MITRE ATT&CK for ICS, Cyber Kill Chain) for threat classification and response. • Use threat intelligence platforms and sandbox environments to investigate malware and suspicious artifacts in OT networks. • Analyze access logs, network traffic, and protocol behaviours across OT systems (e.g., SCADA, DCS, PLCs). • Support investigations related to unauthorized device communications, anomalous behaviours, or compromised industrial assets. • Collaborate with OT security engineers and external vendors to escalate and remediate incidents. • Refine alert rules and detection logic to reduce false positives and improve signal-to-noise ratio in OT SOC operations. • Document incident findings and support continuous improvement of the OT SOC playbooks and knowledgebase. • Liaise with the IT SOC and CIR (Cyber Incident Response) teams to align incident handling and cross-domain investigations. • Participate in threat hunting activities tailored for OT environments using behavioural analysis and attack-path simulation. ________________________________________ Technical Skills & Knowledge: • Strong understanding of OT/ICS protocols (Modbus, DNP3, OPC, etc.) and industrial network topologies. • Hands-on experience with OT cybersecurity tools and platforms (e.g., Nozomi Networks, Claroty, Dragos). • Familiar with ISA/IEC 62443, NIST SP 800-82, NIST CSF, and ISO 27001 compliance requirements for OT. • Proficiency in using SIEM systems (e.g., Microsoft Sentinel, Splunk, QRadar) for log correlation and event triage. • Understanding of firewalls, WAFs, proxies, and network segmentation principles in OT. • Working knowledge of tools such as THOR Scanner, VMRay, or Recorded Future is a plus. • Experience in vulnerability management and patch advisory for OT assets with limited patch cycles. ________________________________________ Nice to Have: • Exposure to Red Team/Blue Team exercises focused on OT/ICS. • Familiarity with GRC platforms and risk assessment tools tailored to OT.