40 Defender Jobs

Join our team as a Security Analyst in India, where you will play a crucial role in assessing, triaging, and proactively responding to security-related threats, incidents, and events. You will be tasked with defending our assets, information, and systems from unauthorized access, use, disclosure, disruption, modification, perusal, inspection, recording, or destruction. By collaborating with internal and external stakeholders, including third-party suppliers, you will ensure that incident response, user access, alert monitoring, root cause analysis, and scenario planning activities are carried out in accordance with standard operating procedures and to a high standard. This role is available at the associate vice president level. In this role, you will work across various domains, stakeholders, and specialists to anticipate and identify security events, incidents, and trends that could impact the bank, our customers, employees, or assets adversely. Your responsibilities will include contributing to security operations, conducting root cause analysis on security incidents, providing training and scenario planning, preparing reports and briefings, and developing response plans, procedures, and playbooks to enhance response capability. Moreover, you will proactively manage risks to achieve key security-related customer and compliance outcomes, participate in security operations such as production support, incident response, and on-call rotations, maintain security response processes, and ensure the delivery of security-related services align with expectations. Act swiftly in responding to customer queries and complaints, establish feedback loops to enhance service and response, and analyze large volumes of data to identify trends and causal factors. We are seeking an individual with a strong passion for cloud security and automation utilizing Agile and DevOps methodologies and promoting a shift-left culture that integrates security analysis into each CI/CD stage. The ideal candidate will have experience with Azure Cloud and security stack, including Defender, Azure Sentinel, and Azure Security Centre, automated security assessments, third-party security tools integration, and compliance standards like PCI-DSS. Additionally, you should possess expertise in security controls, the ability to communicate technical issues to various stakeholders, experience in penetration testing and vulnerability management, and an understanding of Agile methodologies gained through working in an Agile team.,

At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture, and technology to become the best version of you. We are counting on your unique voice and perspective to help EY become even better. Join us and build an exceptional experience for yourself and a better working world for all. As a CMS-TDR Senior at EY, you will work as a Senior Analyst within our cyber security team. Your role will involve assisting clients in detecting and responding to security incidents with the support of SIEM, EDR, and NSM solutions. Your key responsibilities will include: - Operational support using SIEM solutions (Splunk, Sentinel, CrowdStrike Falcon LogScale), EDR (CrowdStrike, Defender, Carbon Black), and NSM (Fidelis, ExtraHop) for multiple customers. - Specializing in second-level incident validation and detailed investigations. - Performing incident coordination and communication with clients to ensure effective containment, eradication, and recovery. - Providing SIEM support activities, including ad hoc reporting and basic troubleshooting. - Advising customers on best practices and use cases to achieve customer end-state requirements. - Providing near real-time analysis, investigating, reporting, remediating, coordinating, and tracking security-related activities for customers. Skills and attributes for success include: - Customer service orientation, meeting commitments, and seeking feedback for improvement. - Good knowledge of SIEM technologies such as Splunk, Azure Sentinel, CrowdStrike Falcon LogScale from a security analyst's perspective. - Troubleshooting issues associated with SIEM solutions. - Ability to work with minimal supervision. - Exposure to IoT/OT monitoring (Claroty, Nozomi Networks) is a plus. - Experience in security monitoring and cyber incident response. - Knowledge in ELK Stack, network monitoring technology platforms (Fidelis XPS, ExtraHop), and endpoint protection tools (Carbon Black, Tanium, CrowdStrike, Defender). To qualify for this role, you must have: - A B.Tech./B.E. degree with sound technical skills. - Ability to work in 24x7 shifts. - Strong command of verbal and written English. - Technical acumen and critical thinking abilities. - Strong interpersonal and presentation skills. - Minimum 3 years of hands-on experience in SIEM/EDR/NSM solutions. - Certification in any of the SIEM platforms. - Knowledge of RegEx, Perl scripting, and SQL query language. - Certifications such as CCSA, CEH, CISSP, GCIH, GIAC. Working at EY offers: - Inspiring and meaningful projects. - Education, coaching, and personal development opportunities. - Support, coaching, and feedback from engaging colleagues. - Opportunities for skills development and career progression. - Freedom and flexibility to shape your role according to your needs. EY is dedicated to building a better working world by creating long-term value for clients, people, and society and building trust in the capital markets. Our diverse teams across 150 countries provide trust through assurance and help clients grow, transform, and operate in various sectors. We ask better questions to find new answers for the complex issues facing our world today.,

As an experienced L3 SOC Analyst, you will play a crucial role in managing security incidents and ensuring the protection of our clients" data and systems. You will be responsible for utilizing your expertise in SIEM tools such as QRadar, Sentinel, or Splunk to detect and respond to security threats effectively. Your strong knowledge of attack patterns, Tools, Techniques, and Procedures (TTPs) will be essential in identifying and mitigating risks. Your primary responsibilities will include acting as an escalation point for high and critical severity security incidents, conducting thorough investigations to assess impact, and analyzing attack patterns to provide recommendations for security improvements. You will also be actively involved in proactive threat hunting, log analysis, and collaborating with IT and security teams to enhance security processes effectively. In addition to hands-on experience with system logs, network traffic analysis, and security tools, your ability to identify Indicators of Compromise (IOCs) and Advanced Persistent Threats (APTs) will be crucial in ensuring the detection of potential threats. You will be expected to document and update incident response processes, participate in team meetings and executive briefings, and train team members on security tools and incident resolution procedures. Your proficiency in setting up SIEM solutions, troubleshooting connectivity issues, and familiarity with security frameworks and best practices will be considered advantageous. Your role will require you to provide guidance on mitigating risks, improving security hygiene, and identifying gaps in security processes to propose enhancements effectively. Join us at UST, a global digital transformation solutions provider with a deep commitment to innovation and agility. With over 30,000 employees in 30 countries, we partner with the world's best companies to drive real impact through transformation. If you are passionate about cybersecurity and eager to make a difference, we welcome you to be a part of our team and help us build for boundless impact, touching billions of lives in the process.,

Shift timings- 2 PM -11 PM Primary skills Azure Security Defender, Sentinel,(identity, Endpoint, etc.) Secondary skills Azure Infrastructure, Office 365 collab workloads Required Skills & Experience: Technical Expertise: Strong understanding of Azure security offerings, including but not limited to: Microsoft Defender for Cloud / Endpoint / Identity Microsoft Sentinel (SIEM/SOAR) Microsoft Entra (Identity Governance, Conditional Access) Hands-on experience with cloud security assessments, PoC deployments, and client workshops. Familiarity with Zero Trust architecture and related best practices. Professional Experience: 5+ years in IT security roles, with 2+ years focused on Azure or cloud security. Proven track record of leading technical engagements independently. Soft Skills: Excellent communication and presentation skills. Ability to articulate technical concepts to both technical and business audiences. Self-starter who thrives in a fast-paced, client-facing environment. Preferred Qualifications: Microsoft certifications (e.g., SC-100, AZ-500, SC-200) Experience working with Microsoft partners or within funded engagement programs. Exposure to regulatory compliance frameworks (e.g., ISO, NIST, GDPR) Key Responsibilities: Client Engagements: Conduct security assessments and discovery workshops to understand client environments, security gaps, and cloud readiness. Deliver technical Proof of Concepts (PoCs) and hands-on demonstrations of Microsoft Azure security solutions. Host and facilitate technical workshops on Zero Trust, Microsoft Defender, Sentinel, Entra, and related technologies. Provide technology walkthroughs, highlight use cases, and share practical experience to illustrate business value. Solution Design & Implementation: Design and recommend secure architectures and configurations using Azure-native tools and services. Collaborate on solution development, documentation, and client readiness for security modernization. Internal & Cross-Functional Collaboration: Work closely with Sales, PreSales, and regional delivery teams to align on customer needs, technical strategy, and success metrics. Contribute to proposal development and client presentations from a technical security standpoint. Thought Leadership & Enablement: Stay updated on Azure security advancements and share knowledge internally and with clients. Support internal enablement sessions and mentor junior team members, where applicable.

Threat Protection Engineer | ACPL Must have Microsoft Threat Detection & Protection, Defender, and Cloud Security experience. Should be able to provide L3 support.its a 2 yrs bond with ACPL Company/Manesar location-Hybrid

You are a skilled and proactive Vulnerability Management Analyst with 3 to 6 years of experience who will be joining the security team at CyberProof, a UST Company. In this role, you will be responsible for leading the day-to-day operations of vulnerability assessment and remediation efforts for a client. You will work hands-on with tools like Qualys, Defender, Crowdstrike, and Nessus. Your sharp analysis, technical precision, and mentoring mindset will have a direct impact on the enterprise's security posture. Your key responsibilities will include leading and overseeing vulnerability assessment scans using various tools, configuring and scheduling scans, interpreting assessment findings, and supporting ongoing remediation efforts. You will also be responsible for managing and maintaining up-to-date vulnerability, asset, and configuration databases, performing continuous asset discovery, and ensuring comprehensive scan coverage. Prioritizing vulnerabilities based on criticality, exploitability, and potential business impact will be a crucial part of your role. Additionally, you will mentor junior analysts, escalate risks, coordinate mitigation tasks, and ensure adherence to company and customer information security standards and regulatory compliance. Preferred qualifications for this role include proven experience in vulnerability management, familiarity with CVSS scoring, patch management cycles, and vulnerability lifecycle workflows. Strong analytical skills with the ability to translate complex technical findings into actionable risk narratives are essential. Experience working in hybrid cloud or enterprise environments would be advantageous. Certifications like CompTIA Security+, CEH, or Qualys Vulnerability Management Specialist are also considered beneficial.,

Role & responsibilities - Assessing and troubleshooting CyberArk and other PAM solution installations - Assisting in the daily operations of CyberArk and other PAM solutions - Execution of daily tasks, support tickets, and provisioning tasks as assigned or routed via the ticketing system - Applies knowledge, skills and abilities to implement a process or procedure, timely and professionally. - Responsible for Privileged User account administration of various Windows and UNIX accounts using CyberArk components. - Integrating various platforms with CyberArk, such as different LDAP providers, Windows servers, UNIX servers, Databases and networking Devices. - Creating and Managing Safes, Platforms and Owners. - Central Policy Manager (CPM) policies management or redistribution. - Perform health check monitoring on all CyberArk severs to ensure consistent availability of the system to end-user. - Ability to document installation procedures, Standard Operating Procedures (SOP), etc. - Extensive experience with digital password vaulting solutions - Experience in programming (Perl, Python, PowerShell, Administrative scripting) a plus - Basic understanding of high-availability (HA) and failover implementations for network infrastructure and server systems - Providing an overview of CyberArk and equivalent Privileged Access Management solution capabilities - CPM Plugins and PSM connector Build and Customization skills - Communicates project status and escalates issues as needed.

Role & responsibilities Office 365 & Defender- Experience with O365 implementations ideally across multiple sites and geos Migration experience from Exchange, Google to Office 365 Understand attribute management as it relates to O365 identities such as user objects, O365 Groups, Exchange shared mailboxes, License Management etc Active Directory knowledge Deployment knowledge on Exchange server O365 features deployment knowledge - Good understanding of core and secondary O365 services such as Teams, OneDrive for Business, SharePoint,Planner, To-Do etc Good Communication skills. 2. Microsoft Defender Management Scope a. Microsoft Defender for Endpoint (MDE): Endpoint Protection : Ensuring that Microsoft Defender is deployed across all endpoints (servers, desktops, laptops, etc.) for real-time threat protection. Threat Detection and Response : Configuring policies for threat detection, managing alerts, and responding to incidents. Automated Investigation and Remediation : Setting up automatic responses for detected threats, such as isolating an infected endpoint or blocking a malicious process. Vulnerability Management : Identifying and addressing security vulnerabilities on endpoints, including applying patches and updates. Device Control and Configuration : Managing security configurations, M365/EMS: Understand attribute management as it relates to O365 identities such as user objects, O365 Groups Active Directory knowledge M365 features deployment knowledge Enterprise mobility + security deployment experience Good understanding of Azure and Active Directory in a multi forest/domain infrastructure, including authentication and authorization principles. User account management and troubleshooting Good Communication skills. Preferred candidate profile O365, Exchange, On prem, Active Directory, Defender , Security , Compliance Perks and benefits

As a Cloud security Engineer Manager, you are responsible for safeguarding our cloud infrastructure and ensuring the security of our Azure and on-premises environment. This role focuses on implementing robust security measures, monitoring security events, and responding to incidents to protect our organization from threats. With a strong emphasis on Azure Sentinel and Microsoft Defender, this position will play a key role in enhancing our security posture, ensuring compliance with industry standards, and supporting the secure deployment of cloud based applications. This position requires a proactive and detail-oriented professional who can collaborate effectively with cross-functional teams to integrate security best practices into all aspects of our cloud operations. 2. Responsibilities Design and implement security solutions for enterprise systems and applications based on ManpowerGroups Security Standards including IaaS, PaaS, and other cloud services Conduct security assessments and vulnerability testing to identify and mitigate potential security risks, including Azure Security Center and third-party solutions Collaborate with cross-functional teams to ensure security measures are integrated into all aspects of the organization. Provide guidance and support to other teams on security best practices and procedures. Provide technical expertise and ownership in the diagnosis and resolution of issues, including the determination and provision of workaround solution or escalation to service owners Stay up to date with the latest security trends and technologies to ensure the organization is protected against emerging threats. Expertise in utilizing Microsoft Defender for Cloud, Defender for Endpoint, and Defender for Identity to provide comprehensive threat protection Experience with continuous security monitoring, log analysis, and threat detection using Azure Monitor, Log Analytics, and Kusto Query Language (KQL) Deep understanding of security tools like Sentinel One, Zscaler, Mimecast, Splunk, Tanium and Qualys Strong skills in incident response, including root cause analysis, threat hunting, and automated response actions. Understanding of data protection mechanisms, including encryption, key management, and data loss prevention (DLP) in Azure. Proficiency in scripting and automation using PowerShell, Azure CLI, and ARM templates to streamline security operations. Understanding of Azure Active Directory, implementing multi-factor authentication (MFA), and configuring role-based access control (RBAC) Maintain a library of deployable and documented cloud design patterns, based on the application portfolio, as a basis for deploying services to the cloud Experience with integrating security practices into DevOps workflows, including CI/CD pipelines and infrastructure as code (IaC) Work closely with IT security to monitor the company's cloud privacy. Work closely with the Enterprise Architecture organization in aligning the engineering execution roadmap. 0 of 1 Hinduja Global Solutions Limited Manage and engage closely with architecture, technical lead and engineering partners from various vendors and partner organizations. 3. Qualifications Required Skill: Expertise in Microsoft Azure Security. Bachelor's degree in Computer Science, Computer Engineering, Information Technology or relevant field. Must have 15+ years' experience in designing, executing and supporting IT cloud security solutions for any large multinational corporation at Global or Regional level. Positive attitude and a strong commitment to delivering quality work. Excellent knowledge of cloud computing technologies and current computing trends. Experience as a team leader Experience with Azure security implementation at enterprise level Exposure to multiple, diverse technologies and processing environments Knowledge of all components of technical architecture Knowledge of business process re-engineering principles and processes Strong understanding of network architecture and application development methodologies Strong understanding of SOA, object-oriented analysis and design, and/or client/server systems Effective communication skills (written and verbal) to properly articulate complicated cloud reports to management and other IT development partners. Passion for building data driven culture, growing talents and hunger for making big impact. Strong interest and curiosity in leveraging the latest in tech to solve customer problems. Experience in communicating with end users, technical & business teams to collect requirements, describe product features, and technical designs. Experience meeting goals in a fast-paced environment with rapidly changing needs Demonstrated success building cross-functional relationships in a dynamic, global environment. Know how to work with customers and articulate their challenges. Functional knowledge of ecommerce, supply chain, and order management Hands-on experience using and/or configuration of one or more of the following, are a plus: Microsoft E5 stack Bicep Sentinel ARM Tenable Security Center/Nessus Defender Ansible/PowerShell Terraform

5+ yrs Exp in Azure cloud infrastructure AZ -104/305 certified Infrastructure as Code - Terraform, Bicep/ARM Azure Compute Networking Kubernetes Azure PaaS services Azure Active Directory RBAC Security tools Powershell/Python CI/CD Sentinel Defender

Role & responsibilities 1. Strong experience in Cyberark 2. Experiecne PAM Implemetation 3 Certification Mandatory (Defender OR PAM)

Role & responsibilities Office 365 & Defender- Experience with O365 implementations ideally across multiple sites and geos Migration experience from Exchange, Google to Office 365 Understand attribute management as it relates to O365 identities such as user objects, O365 Groups, Exchange shared mailboxes, License Management etc Active Directory knowledge Deployment knowledge on Exchange server O365 features deployment knowledge - Good understanding of core and secondary O365 services such as Teams, OneDrive for Business, SharePoint,Planner, To-Do etc Good Communication skills. 2. Microsoft Defender Management Scope a. Microsoft Defender for Endpoint (MDE): Endpoint Protection : Ensuring that Microsoft Defender is deployed across all endpoints (servers, desktops, laptops, etc.) for real-time threat protection. Threat Detection and Response : Configuring policies for threat detection, managing alerts, and responding to incidents. Automated Investigation and Remediation : Setting up automatic responses for detected threats, such as isolating an infected endpoint or blocking a malicious process. Vulnerability Management : Identifying and addressing security vulnerabilities on endpoints, including applying patches and updates. Device Control and Configuration : Managing security configurations, M365/EMS: Understand attribute management as it relates to O365 identities such as user objects, O365 Groups Active Directory knowledge M365 features deployment knowledge Enterprise mobility + security deployment experience Good understanding of Azure and Active Directory in a multi forest/domain infrastructure, including authentication and authorization principles. User account management and troubleshooting Good Communication skills. Preferred candidate profile O365, Exchange, On prem, Active Directory, Defender , Security , Compliance Perks and benefits

Must Have Skills: 5 to 7 years of experience in deployment & implementation of Privileged Identity Management using CyberArk solution for large scale customers across various industry verticals Play active role in the execution of the project and demonstrate strong technical leadership Have a strong knowledge of the CyberArk privileged account security suite CyberArkversion 7.x, 8.x, 9.x and 10.x . Experience in the use of CyberArk PACLI to automate tasks related to user and safe management. Good understating of CyberArk components like EPM, OPM, AIM, etc. Capture detailed requirements for the CyberArk solution based on input from platform owners, eco-system owners, the target architecture and high-level requirements. Design and Architecture of the overall CyberArk implementation. Performing compliance checks on CyberArk for IT security safes and to Provide alerts and reports appropriately. Investigate, Provide RCA and resolve Incidents. Open to travel as and when required for deployment at customer sites Be a strong team player Advanced knowledge of windows/VMware administration. Advanced knowledge of Windows Cluster Server Strong grasp of network design, application/infrastructure security concepts, techniques, technologies, and tools Experience in working in an on/offshore environment and proven track record of delivering quality outcomes Customer service background – able to empathize with customer and own the issues raised to resolution Leading team contribution to any queries requiring technical specialist input Other Required Skills: Experience in deployment and implementation of anyof the other PIM tools: CA PAM (Xceedium) BeyondTrust Quest / OneIdentity Thycotic ERPM Good understanding of LDAP concepts and working experience with at least few of the following directories: Oracle Internet Directory/Oracle Virtual Directory Sun Directory Server Active Directory Tivoli Directory Server Novell Directory Server CA Directory Experience in using database client tools like Toad, etc. Experience in using standard protocols like SSH, Telnet, RDP, etc. and related tools like Putty. Experience in working with the Network devices like firewalls, routers, etc. Should have the ability to understand customer scenario and requirements (may include customized integration situations) and be capable of suggesting solutions. Excellent communication skills and ability to work with global counterparts. Knowledge of basic networking Experience in Windows and Linux operating systems from PIM integration and debugging perspective Exposure to virtual environments with experience in integrating ESX, ESX(i) hosts with the PIM solution. Good troubleshooting skills Runbook documentation Qualifications: 5-7 years of strong PAM implementation experience Strong oral and written communications skills Customer Facing Exposure is must Open to travel requirements

Role: SOC Manager Microsoft Sentinel & SOC Services Location: Bangalore (Work from Office) Department: Security Practice Reporting To: Head of Security Practice Job Summary We are seeking a highly skilled and experienced SOC Manager to lead our Security Operations Center (SOC), with deep expertise in Microsoft Sentinel and Microsoft Security technologies. The ideal candidate will be responsible for managing 24x7 SOC operations, overseeing a multi-tier analyst team, and ensuring effective detection, response, and continuous improvement across all security monitoring services. This role requires strong technical leadership, operational discipline, and a forward-thinking approach to evolve the SOC using automation, threat intelligence, machine learning, and purple teaming. Key Responsibilities Lead and manage end-to-end SOC operations including Tier 1, 2, and 3 analysts, threat hunters, and incident responders. Design and optimize SIEM workflows, detection rules, hunting queries, and SOAR playbooks using Microsoft Sentinel. Ensure timely triage, investigation, containment, and response to security incidents as per SLAs. Build and maintain automation workflows using Logic Apps for Sentinel-based SOAR. Integrate and manage diverse log sources, including Defender suite, cloud workloads, identity platforms, and third-party security solutions. Drive continuous improvement through automation, ML-based detections, threat hunting, and purple teaming. Develop, review, and maintain SOC runbooks, playbooks, and use case libraries. Define and report on key metrics such as MTTD, MTTR, alert-to-incident ratio, and false positive rates. Ensure SOC alignment with regulatory and industry frameworks (NIST, ISO 27001, RBI, GDPR). Collaborate with internal and external stakeholders on incident reviews, compliance audits, and threat landscape updates. Participate in client onboarding, governance meetings, and SOC service reviews. Ability to manage distributed teams across time zones with a strong focus on collaboration, mentorship, and performance management. Required Skills and Experience 6 - 12 years of experience in cybersecurity operations, with minimum 24 years in a SOC leadership role. Proven hands-on experience managing Microsoft Sentinel in MSSP or enterprise environments. Expertise in KQL, UEBA, custom rule tuning, Sentinel analytics, and connector integrations. Knowledge of MITRE ATT&CK, threat modeling, and detection engineering. Experience with incident response lifecycle, forensic investigations, and root cause analysis. Strong knowledge of Microsoft 365 Defender stack (Defender for Endpoint, Identity, O365, Cloud Apps). Experience integrating with platforms like ServiceNow, Freshdesk and other Ticketing Systems Strong stakeholder communication, executive reporting, and client-facing experience. Preferred Certifications SC-200: Microsoft Security Operations Analyst SC-100: Microsoft Cybersecurity Architect AZ-500: Azure Security Engineer Associate

Job Title: Principal IT/OT Security Architect Manufacturing Sector Location: Bangalore Division: Industrial Security, Automation & Network Modernization Level: Principal Engineer Secure What Moves the World and Automate It Americas manufacturing sector isnt just under pressure from cyber threats its being pushed to modernize faster than ever. At Surya Technologies , were not just defending factories. Were helping them transform , using automation, intelligent observability, and solutions-as-code to bring repeatability and resilience to industrial environments. Were hiring a Principal IT/OT Security Architect to lead the charge in converging cybersecurity, networking, automation, and compliance across mid-market and enterprise manufacturers in the Southeast. This isnt a clipboard-and-checklist kind of role. You’ll build solutions that scale — powered by code, infused with AI-driven observability, and designed to run on the plant floor with the same reliability as a CNC machine. What You’ll Do Architect converged IT/OT security solutions that are scalable, secure, and automation-ready Use infrastructure-as-code (IaC) principles to define network, sensor, and control plane configurations — versioned, peer-reviewed, repeatable Integrate AI-powered observability platforms like Datadog or Defender for IoT for anomaly detection and visibility Lead zero trust architecture projects for OT — combining microsegmentation, NAC, and managed detection Build automated compliance frameworks for CMMC, NIST 800-171, and IEC 62443 — transforming audits from nightmares into workflows Develop standard deployment patterns that enable your work to scale across 50+ factories Partner with Surya’s automation and platform engineering teams to build tools, APIs, and templates that replace manual configuration Represent Surya in technical conversations with CIOs, plant engineers, and auditors — helping each group understand the mission in their own language Serve as the technical backbone of the manufacturing practice, mentoring future engineers and shaping go-to-market solutions What You Bring 7+ years in cybersecurity, industrial networking, or automation architecture Experience in designing and deploying secure industrial networks — VLANs, firewalls, switches, segmented zones Proficiency in tools like Claroty, Defender for IoT, Nozomi , and Tenable.ot Comfortable writing and reviewing YAML, Terraform, or Ansible playbooks for infrastructure or security automation Familiar with using AI/ML tools or anomaly detection engines in monitoring pipelines Strong understanding of compliance frameworks (CMMC, NIST, ISO, IEC 62443) and how to translate them into codified technical controls Passion for turning security into a platform , not just a service — if you’ve ever turned an SOW into a repo, you belong here Comfortable in a hard hat and a hoodie — you can talk to both an OT technician and a CISO Why This Role Matters Manufacturing is entering its most vulnerable — and most transformative — decade. AI, automation, and security are colliding on the factory floor, and someone has to build the playbook for how it all works together. That someone is you. This role is your opportunity to be the architect behind secure, smart, and scalable factories , not just protect the status quo. You’ll design systems once and deploy them dozens of times — with repeatability, resilience, and intelligence baked in from day one. Why Surya Surya is a next-generation managed services firm built for industrial modernization . We help manufacturers go from legacy to leading edge — combining cloud platforms, security, observability, and AI-driven automation. We’re growing rapidly in the Southeast and building a team of the best technical minds in the region. You won’t be buried in bureaucracy here — you’ll be building the standard others follow. Join Us If you’ve ever said, “There has to be a better way to secure and scale factory environments” — you’re right. Now help us build it. Apply now — and lead the future of manufacturing security, one intelligent deployment at a time.

Role & responsibilities 1. Strong experience in CyberArk 2. Experience in Implementation PAM 3. certification Defender OR PAM is Manatory

Role & responsibilities Office 365 & Defender- Experience with O365 implementations ideally across multiple sites and geos Migration experience from Exchange, Google to Office 365 Understand attribute management as it relates to O365 identities such as user objects, O365 Groups, Exchange shared mailboxes, License Management etc Active Directory knowledge Deployment knowledge on Exchange server O365 features deployment knowledge - Good understanding of core and secondary O365 services such as Teams, OneDrive for Business, SharePoint,Planner, To-Do etc Good Communication skills. 2. Microsoft Defender Management Scope a. Microsoft Defender for Endpoint (MDE): Endpoint Protection : Ensuring that Microsoft Defender is deployed across all endpoints (servers, desktops, laptops, etc.) for real-time threat protection. Threat Detection and Response : Configuring policies for threat detection, managing alerts, and responding to incidents. Automated Investigation and Remediation : Setting up automatic responses for detected threats, such as isolating an infected endpoint or blocking a malicious process. Vulnerability Management : Identifying and addressing security vulnerabilities on endpoints, including applying patches and updates. Device Control and Configuration : Managing security configurations, M365/EMS: Understand attribute management as it relates to O365 identities such as user objects, O365 Groups Active Directory knowledge M365 features deployment knowledge Enterprise mobility + security deployment experience Good understanding of Azure and Active Directory in a multi forest/domain infrastructure, including authentication and authorization principles. User account management and troubleshooting Good Communication skills. Preferred candidate profile O365, Exchange, On prem, Active Directory, Defender , Security , Compliance Perks and benefits

Responsibilities: * Design, implement & optimize Azure security solutions using Defender & Sentinel * Conduct regular security assessments on Microsoft Azure environments. Tuning alerts threats. Hands on experuence in defender,sentinel Provident fund Health insurance

About Rackspace Cyber Defence Rackspace Cyber Defence is our next generation cyber defence and security operations capability that builds on 20+ years of securing customer environments to deliver proactive, risk-based, threat-informed and intelligence driven security services. Our purpose is to enable our customers to defend against the evolving threat landscape across on-premises, private cloud, public cloud and multi-cloud workloads. Our goal is to go beyond traditional security controls to deliver cloud-native, DevOps-centric and fully integrated 24x7x365 cyber defence capabilities that deliver a proactive , threat-informed , risk-based , intelligence-driven approach to detecting and responding to threats. Our mission is to help our customers: Proactively detect and respond to cyber-attacks 24x7x365. Defend against new and emerging risks that impact their business. Reduce their attack surface across private cloud, hybrid cloud, public cloud, and multi-cloud environments. Reduce their exposure to risks that impact their identity and brand. Develop operational resilience. Maintain compliance with legal, regulatory and compliance obligations. What were looking for To support our continued success and deliver a Fanatical Experience to our customers, Rackspace Cyber Defence is looking for an Indian based Security Operations Analyst (L3) to support Rackspaces strategic customers. This role is particularly well-suited to a self-starting, experienced and motivated Sr. Sec Ops Analyst, who has a proven record of accomplishment in the cloud security monitoring and incident detection domain. As a Security Operations Analyst(L3), you will be responsible for detecting, analysing, and responding to threats posed across customer on-premises, private cloud, public cloud, and multi-cloud environments. The primary focus will be on triaging alerts and events (incident detection), which may indicate malicious activity, and determining if threats are real or not. You will also be required to liaise closely with the customers key stakeholders, which may include incident response and disaster recovery teams as well as information security. Key Accountabilities: Should have experience of 10 years in SOC and 5 years in Azure Sentinel. Ensure the Customer’s operational and production environment remains secure at all the times and any threats are raised and addressed in a timely manner. Critical incident handling & closure. Escalation management and handling escalations from L2 Analysts. Proactive discovery of threats based on MITRE ATT&CK framework. Deep investigation and analysis of critical security incidents. Post breach forensic incident analysis reporting. Review the weekly and monthly reports. Review new use cases created by L2 and implement in cloud-native SIEM (Security Information and Event Management). Assist with customer onboarding (such as use case development, identifying data sources, configuring data connectors etc) Advanced threat hunting. Develop custom dashboards and reporting templates. Develop complex to customer specific use cases. Advanced platform administration. Solution recommendation for issues. Co-ordinate with vendor for issue resolution. Basic and intermediate playbook and workflow enhancement. Maintain close working relationships with relevant teams and individual key stakeholders, such as incident response and disaster recovery teams as well as information security etc. Develop the custom parsers for the incident and alert enrichment. Problem specific playbook and workflow creation and enhancements Required to work flexible timings. Skills and Experience: Existing experience as a Security Operations Analyst, or equivalent. Experience of working in large scale, public cloud environments and with using cloud native security monitoring tools such as: Microsoft Sentinel Microsoft 365 Defender Microsoft Defender for Cloud Endpoint Detection & Response (EDR) tools such as Crowdstrike, Microsoft Defender for Endpoint. Firewalls and network security tools such as Palo Alto, Fortinet, Juniper, and Cisco. Web Application Firewall (WAF) tools such as Cloudflare, Akamai and Azure WAF. Email Security tools such as Proofpoint, Mimecast and Microsoft Defender for Office Data Loss Prevention (DLP) tools such as Microsoft Purview, McAfee and Symantec

Responsibilities: * Design, implement & optimize Azure infrastructure using Terraform, Sentinel & Defender. * Develop automation scripts with PowerShell & ARM templates for CI/CD pipelines. Health insurance Provident fund Annual bonus

Main opportunities/challenges for this role Accountabilities, responsibilities, and main duties: Support ICT infrastructure (IT hardware, software, network and telephony infrastructure) administration, implementation and upgrades according to business and technical needs, in accordance with IT strategy, best practice, change and configuration management. Ensure availability of LAN, WAN, IPT, Internet connectivity and other IT services Provide Local IT support to staff in 24 x 7 environment Responsible for IT inventory management Monitor GTI servers, O365, SharePoint Online, Defender, Video conferencing and Mobile applications services and taking corrective action. Ensure daily backups of all servers including conducting test restores Ensure GTI systems with approved IT updates and software (IT software compliance) Ensure restricted access to server room and physical security of IT equipment s. BCP management from IT support prospective Technical Support and Vendor management Manage support call logs, provide technical resolution within agreed period and follow up on escalated issues to meet operational requirements. Coordinate with Global IS and process teams for IT operations Ensure timely first & second level of support as per the pre-defined SLAOLA. Escalate any problems/issues to relevant teams as required and follow up. Vendor Coordination for appropriate and timely IT support in place Raise IT procurement request on demand with adherence to British Council procurement policies

Key Skills: Interest in Cloud Platforms and Deployments Detail focused, able to follow and refine SOPs Interest in DevOps Deploying applications and following deployment steps, live proving, executing queries OOH (depending on experience, ability to run an ooh incident) Azure DevOps - Pipelines, Repositories, Artifacts, Security, Admin AKS Azure Kubernetes Services Concepts of DevOps and GitOps Azure container registry Azure Defender Azure Monitoring and alerts Quality gates (unit tests, Code coverage) Dot Net Pipelines Container Scanning Deploying Azure Resource via Azure DevOps CI/CD Azure BICEP (Good to know) Security and Compliance Scanning tools PowerShell automation/scripting for Azure Public Cloud - Networking, Storage & Compute Services IaC Scanning / DAST Azure policy

Job Description: 8 to 12 or more years of experience in Architecture and Designing solutions, Migrating on-prem Exchange to O365/Exchange Online. Experience working in a Transitional multi-supplier environment within a large-scale organization. Experience in leading significant technical solution design and development, leveraging existing tool suites, and proposing best-of-breed solutions. Must have strong hands-on experience working on Exchange Online Experience implementing M365 DLP, Cloud App Security, Defender, and Conditional Access Tools Experience like Bittitan, Quest, Avepoint. To maintain Exchange Hybrid Co-Existence in a multi-Active Directory Forest/Exchange Org Topology To maintain Data Sovereignty compliance (GDPR) when Multi-Geo must have to be used Migrations from Lotus Notes & GroupWise, along with InterOrg (Exchange to Exchange) and GSuite/O365 Tenant to Tenant Migrations Migrations from SharePoint on-premises, Gsuite, and other CMS tools to SharePoint Online and OneDrive for Business Must have Architectural understanding of how Third Party Archive & Journaling Email Data (Enterprise Vault, Mimecast) on legal hold is migrated appropriately (to maintain Data Immutability) Must have Architectural Proficiency in integrating Microsoft and non-Microsoft Mobile Devices/Mobile Application Management & Unified Endpoint Management solutions with Exchange/Office 365 (Intune, Airwatch, Workspace One, etc.) as well as other third-party email-aware apps (Unified Communications/Messaging, Fax, Printer/Scanners) Must have Architectural Proficiency (Design, Build, Migrate) with Office 365 Email Protection Mechanisms: Microsoft and non-Microsoft Email Hygiene/Gateway Products (Proof-Point, Exchange Online Protection, Mimecast, etc.) SPF, DKIM, and DMARC (along with ARC) Office 365 Advanced Threat Protection, Must have an architectural understanding of Microsoft 365 protections CAS, DLP, ATP, AIP Data Loss Prevention, RMS/IRM, Azure Information Protection(Classification-Labelling & Sensitive Information Types), Office 365 Message Encryption & Transport Rules Legal/Litigation Holds, Retention, Deletion, and Data Immutability Understanding of Message Retention and Data Compliance Requirements A complete knowledge of Microsoft 365 and the Collaboration technology stack Proficiency in all technical aspects of M365 implementation and Azure Active Directory (AAD) services are required. Strong communication skills express key ideas and obtain tangible feedback from cross-functional team members and stakeholders. Hand- on experience with implementation, deployment, migration, and support of core M365 services, including (but not limited to): Exchange Online – including mailbox migration, EOP, and Exchange Administration

Must Have Skills: 7 to 12 years of experience in deployment & implementation of Privileged Identity Management using CyberArk solution for large scale customers across various industry verticals Play active role in the execution of the project and demonstrate strong technical leadership Have a strong knowledge of the CyberArk privileged account security suite CyberArkversion 7.x, 8.x, 9.x and 10.x . Experience in the use of CyberArk PACLI to automate tasks related to user and safe management. Good understating of CyberArk components like EPM, OPM, AIM, etc. Capture detailed requirements for the CyberArk solution based on input from platform owners, eco-system owners, the target architecture and high-level requirements. Design and Architecture of the overall CyberArk implementation. Performing compliance checks on CyberArk for IT security safes and to Provide alerts and reports appropriately. Investigate, Provide RCA and resolve Incidents. Open to travel as and when required for deployment at customer sites Be a strong team player Advanced knowledge of windows/VMware administration. Advanced knowledge of Windows Cluster Server Strong grasp of network design, application/infrastructure security concepts, techniques, technologies, and tools Experience in working in an on/offshore environment and proven track record of delivering quality outcomes Customer service background able to empathize with customer and own the issues raised to resolution Leading team contribution to any queries requiring technical specialist input Other Required Skills: Experience in deployment and implementation of anyof the other PIM tools: CA PAM (Xceedium) BeyondTrust Quest / OneIdentity Thycotic ERPM Good understanding of LDAP concepts and working experience with at least few of the following directories: Oracle Internet Directory/Oracle Virtual Directory Sun Directory Server Active Directory Tivoli Directory Server Novell Directory Server CA Directory Experience in using database client tools like Toad, etc. Experience in using standard protocols like SSH, Telnet, RDP, etc. and related tools like Putty. Experience in working with the Network devices like firewalls, routers, etc. Should have the ability to understand customer scenario and requirements (may include customized integration situations) and be capable of suggesting solutions. Excellent communication skills and ability to work with global counterparts. Knowledge of basic networking Experience in Windows and Linux operating systems from PIM integration and debugging perspective Exposure to virtual environments with experience in integrating ESX, ESX(i) hosts with the PIM solution. Good troubleshooting skills Runbook documentation Qualifications: 5-7 years of strong PAM implementation experience Strong oral and written communications skills Customer Facing Exposure is must Open to travel requirements

DESIGNATION: Technical Director Microsoft & Cloud (AWS & Azure) EXPIRIENCE: 9+ Years Key Responsibilities Technical Strategy & Leadership Define and lead the technical vision and strategic roadmap for cloud adoption, Microsoft solutions, and infrastructure modernization. Act as a trusted advisor to clients and internal stakeholders on digital transformation, cloud migration, hybrid IT, and enterprise modernization. Establish architectural governance models, technology standards, and security best practices. Cloud Architecture (AWS & Azure) Lead multi-cloud architecture strategy across AWS and Azure, aligning with business and compliance goals. Oversee design and implementation of cloud-native solutions, hybrid environments, and containerized workloads (EKS/AKS). Drive automation, DevOps maturity, cost optimization, and resilience in cloud platforms. Microsoft Technology Oversight Lead high-level solution design across Microsoft 365, Microsoft Entra ID (Azure AD), Defender, Intune, and Endpoint Manager. Provide guidance on Active Directory modernization, Exchange Online, SharePoint, Power Platform, and related services. Ensure alignment with Microsoft Zero Trust, security, and compliance frameworks. Team Enablement & Delivery Oversight Mentor senior architects, consultants, and engineering teams across project lifecycles. Oversee technical delivery for high-value client projects and strategic initiatives. Review architectural designs, project plans, and solution documentation to ensure technical excellence. Client Engagement & Pre-Sales Support Participate in executive briefings, solution pitches, and RFP responses for enterprise opportunities. Collaborate with business development teams to shape client strategies and value propositions. Represent the company at industry forums, partner events, and technology conferences. Required Skills & Experience 9+ years of experience in IT leadership roles with strong hands-on technical background. Deep expertise in Microsoft enterprise solutions , including Microsoft 365, Active Directory, Azure AD, Intune, and Defender stack. Proven architecture and operational leadership in both AWS and Azure platforms. Strong understanding of infrastructure modernization, cloud security, DevOps, and identity governance. Experience in enterprise-scale migrations, cloud landing zones, and hybrid IT environments. Excellent communication, stakeholder management, and executive presentation skills. Preferred Qualifications Microsoft certifications (e.g., Microsoft Certified: Azure Solutions Architect Expert , Enterprise Administrator Expert ). AWS certifications (e.g., AWS Certified Solutions Architect Professional , DevOps Engineer Professional ).