27 Defender Xdr Jobs

Role: Head of Cyber Defense Center (CDC) Band 9(7 Years+) Role Overview The CDC Head is a senior leadership role accountable for the end-to-end governance, delivery, and transformation of Cyber Defense Center operations. The role leads a multi-tier organization of 100 security professionals (L1L4) across SOC, SecOps, Incident Response, Threat Hunting, Security Engineering, AppSec, DevSecOps, Vulnerability Management, and AI-driven Automation. The CDC Head serves as the single point of accountability for service delivery excellence, SLA adherence, operational resilience, and strategic alignment with client cybersecurity objectivesdriving the evolution toward a self-driving, AI-augmented SOC ....

At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we're counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. CMS-TDR Senior As part of our EY-cyber security team, who shall work as SME for Defender XDR security solutions in CMS TDR team The opportunity We're looking for Senior Consultant with expertise in Microsoft Defender. This is a fantastic opportunity to be part of a leading firm whilst being instrumental in the growth of a new service offering...

We are looking for a skilled Security Analyst to join our team, focusing on protecting our own and our clients' cloud infrastructure and digital assets primarily through the Microsoft 365 and Azure security ecosystem. This role combines hands-on security operations, incident response, threat detection, and continuous improvement of our security posture across cloud and hybrid environments. Experience with other platforms, such as AWS, Google, is a distinct advantage. You will help propose, plan, and implement best practice solutions. Thereafter, monitor and respond to security threats, manage security configurations, develop operational documentation, and work with both Microsoft-native and ...

We are M&G Global Services Private Limited (formerly known as 10FA India Private Limited, and prior to that Prudential Global Services Private Limited). We are a fully owned subsidiary of the M&G group of companies, operating as a Global Capability Centre providing a range of value adding services to the Group since 2003. Our purpose is to give everyone real confidence to put their money to work. With a heritage dating back more than 175 years, we have a long history of innovation in savings and investments, combining asset management and insurance expertise to offer a wide range of solutions. Our two distinct operating segments, Asset Management and Life, work together to provide access to ...

At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we're counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. CMS-TDR Senior As part of our EY-cyber security team, who shall work as SME for Defender XDR security solutions in CMS TDR team The opportunity We're looking for Senior Consultant with expertise in Microsoft Defender. This is a fantastic opportunity to be part of a leading firm whilst being instrumental in the growth of a new service offering...

Summary Position Summary Cyber Deloitte Cyber understands the unique challenges and opportunities businesses face in cybersecurity. Join our team to deliver powerful insights to help our clients navigate the ever-changing threat landscape. Through powerful insights and managed services that simplify complexity, we enable businesses to operate with resilience, grow with confidence, and proactively manage to secure achievements. Position Summary Level: Manager Work You'll Do: As a Manager for Microsoft 365 Security Consulting, you will lead teams and client engagements, guiding organizations through the complexities of securing their Microsoft 365 environments. You will play a pivotal role in ...

Summary Position Summary Cyber Deloitte Cyber understands the unique challenges and opportunities businesses face in cybersecurity. Join our team to deliver powerful insights to help our clients navigate the ever-changing threat design, and technology as we partner with clients to transform finance. Position Summary Level: Solution Delivery Advisor Work you'll do: As a Microsoft 365 Security Consultant, you will be at the front lines with our clients supporting them with their Cyber needs specifically helping them navigate the journey on securing their Microsoft 365 (M365) platform. This will include: Serve as an engineer/consultant for Microsoft security technologies including Purview, Intu...

Summary Position Summary Cyber Deloitte Cyber understands the unique challenges and opportunities businesses face in cybersecurity. Join our team to deliver powerful insights to help our clients navigate the ever-changing threat design, and technology as we partner with clients to transform finance. Position Summary Level: Solution Delivery Advisor Work you'll do: As a Microsoft 365 Security Consultant, you will be at the front lines with our clients supporting them with their Cyber needs specifically helping them navigate the journey on securing their Microsoft 365 (M365) platform. This will include: Serve as an engineer/consultant for Microsoft security technologies including Purview, Intu...

Summary Position Summary Cyber Deloitte Cyber understands the unique challenges and opportunities businesses face in cybersecurity. Join our team to deliver powerful insights to help our clients navigate the ever-changing threat design, and technology as we partner with clients to transform finance. Position Summary Level: Solution Delivery Advisor Work you'll do: As a Microsoft 365 Security Consultant, you will be at the front lines with our clients supporting them with their Cyber needs specifically helping them navigate the journey on securing their Microsoft 365 (M365) platform. This will include: Serve as an engineer/consultant for Microsoft security technologies including Purview, Intu...

Role & responsibilities Manage and optimize M365 E5 Security Suite (Defender XDR, Entra ID, Purview). Implement Zero Trust, Conditional Access, and MFA . Administer Intune for compliance and device management. Lead threat detection, response, and posture improvement . Automate and report using PowerShell & Graph API . Preferred candidate profile M365 E5 Security & Intune Specialist

Our mission is to protect customers from cybersecurity threats. Our vision is to deliver a comprehensive AI-driven security stack that provides best-in-class protection.Our Threat Protection strategy at Microsoft spans multiple products and services, providingstate-of-the-artprotection across the entire digital estate.Our culture is centred on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations thatimpactbillions of lives around the world. You can help usto achieveour mission. We are looking for a Cloud Solution Architect (CSA) , specializing in Security who is passionate...

We are seeking a SOC Operations Specialist to strengthen our cybersecurity defense and response capabilities. The role involves leading threat detection, investigation, and automation efforts using Microsoft Sentinel and Defender XDR . You'll be working closely with cross-functional teams to enhance the organization's overall security posture through advanced analytics, automation, and proactive threat hunting. Key Responsibilities Lead end-to-end threat detection, investigation, and response using Microsoft Sentinel & Defender XDR. Develop and optimize KQL queries , custom analytics rules, dashboards, and automated playbooks. Administer and maintain Sentinel environments , integrations, and...

Who We Are At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl We are always moving forward always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities. The Role Are you passionate about protecting companies from cyber threats Do you want to be part of a team that safeguards the digital assets of cutting-edge organizations Look no further Kyndryl is seeking a Cybersecurity Specialist to join our team of talented Technical Specialists. As a Cybersecurity Specialist, you will be at the forefront of protectin...

WORK FROM NOIDA OFFICE, PLEASE DON'T APPLY IF YOU ARE LOOKING FOR HYBRID OR WORK FROM HOME Department: Managed Services & Support & Security Operations Center (SOC) Job Type: Full-Time Reports To: SOC Team Lead / Head of Cybersecurity Services Job Overview: We are seeking a technically skilled and detail-oriented SOC Content Detection Engineer to lead the development, optimization, and governance of detection content across Microsoft Sentinel and Defender XDR platforms. This role is critical to ensuring high-fidelity alerting, minimizing false positives, and aligning detection logic with threat intelligence and MITRE ATT&CK frameworks. The ideal candidate will have deep experience in KQL, Si...

Xylem is a Fortune 500 global water solutions company dedicated to advancing sustainable impact and empowering the people who make water work every day. As a leading water technology company with 23,000 employees operating in over 150 countries, Xylem is at the forefront of addressing the world's most critical water challenges. We invite passionate individuals to join our team, dedicated to exceeding customer expectations through innovative and sustainable solutions. Job Summary As a Security Analyst at Xylem, you will play a key role in safeguarding our digital infrastructure. You will monitor, analyze, and respond to security threats using industry-leading tools such as XDR, NGFW, and emai...

MSSP Onboarding & Enablement Consultant (SOC + MSS) Job Type: Full-Time Location: Noida / Singapore (SGT timezone alignment) Reports To: SOC Team Lead / Head of Cybersecurity Services Job Overview We are seeking a versatile and customer-centric MSSP Onboarding & Enablement Consultant to lead onboarding efforts across both Security Operations (SOC) and Managed IT Services (MSS). This role is pivotal in ensuring seamless integration of Microsoft 365, Azure, Microsoft Sentinel, Defender XDR, and related services into MSSP customer environments. The ideal candidate will possess: Deep technical expertise Strong consulting skills Ability to deliver onboarding excellence across both security and IT...

Overview: Highly skilled Azure Security Engineer with expertise in Microsoft Defender for Cloud, Microsoft XDR, and SC-100-level security architecture. The ideal candidate will be responsible for conducting comprehensive security posture assessments across client environments, identifying vulnerabilities, and recommending remediation strategies aligned with industry standards such as HIPAA, GDPR, and FEDRAMP. Detailed JD: > Conduct security posture assessments using Microsoft Defender for Cloud and XDR tools. > Analyze and report on threat detection, vulnerability management, and compliance posture across Azure workloads for a integrated security architecture across IAM, ITM and TVM. > Knowl...

Overview: Highly skilled Azure Security Engineer with expertise in Microsoft Defender for Cloud, Microsoft XDR, and SC-100-level security architecture. The ideal candidate will be responsible for conducting comprehensive security posture assessments across client environments, identifying vulnerabilities, and recommending remediation strategies aligned with industry standards such as HIPAA, GDPR, and FEDRAMP. Detailed JD: > Conduct security posture assessments using Microsoft Defender for Cloud and XDR tools. > Analyze and report on threat detection, vulnerability management, and compliance posture across Azure workloads for a integrated security architecture across IAM, ITM and TVM. > Knowl...

Overview: Highly skilled Azure Security Engineer with expertise in Microsoft Defender for Cloud, Microsoft XDR, and SC-100-level security architecture. The ideal candidate will be responsible for conducting comprehensive security posture assessments across client environments, identifying vulnerabilities, and recommending remediation strategies aligned with industry standards such as HIPAA, GDPR, and FEDRAMP. Detailed JD: > Conduct security posture assessments using Microsoft Defender for Cloud and XDR tools. > Analyze and report on threat detection, vulnerability management, and compliance posture across Azure workloads for a integrated security architecture across IAM, ITM and TVM. > Knowl...

Role & responsibilities Monitor security alerts via Microsoft Sentinel and Defender XDR. 2. Perform initial triage and analysis of incidents. 3. Execute first-level containment actions (endpoint isolation, credential disablement). 4. Escalate complex incidents to L2 Team. Exhibit strong analytical and communication skills. 5. Maintain incident logs and ITSM records. 6. Prepare shift handover documentation. Preferred candidate profile 1. 1 to 3 years SOC experience. 2. Familiar with Microsoft Defender, Sentinel, QRadar, Splunk and Palo Alto. 3. Working knowledge of incident response processes on the said technologies. 4. Perform proactive Threat Intel and Threat hunting using Defender XDR, Se...

Level: L3 Lead the investigation of high and critical severity email security incidents flagged by Microsoft Defender for Office 365 (MDO). Correlate alerts across Defender XDR (including Defender for Endpoint, Identity, and Cloud Apps) to build a complete incident storyline. Use automated investigation and response (AIR) playbooks to identify impacted entities and take containment actions such as: - Soft-deleting malicious emails. - Removing suspicious inbox rules. - Blocking sender domains or URLs Perform forensic analysis of phishing, spoofing, and business email compromise (BEC) attacks. Document root cause analysis (RCA) and lessons learned for each incident Identify gaps in detection l...

Level: L3 Lead the investigation of high and critical severity email security incidents flagged by Microsoft Defender for Office 365 (MDO). Correlate alerts across Defender XDR (including Defender for Endpoint, Identity, and Cloud Apps) to build a complete incident storyline. Use automated investigation and response (AIR) playbooks to identify impacted entities and take containment actions such as: - Soft-deleting malicious emails. - Removing suspicious inbox rules. - Blocking sender domains or URLs Perform forensic analysis of phishing, spoofing, and business email compromise (BEC) attacks. Document root cause analysis (RCA) and lessons learned for each incident Identify gaps in detection l...

Level: L3 Lead the investigation of high and critical severity email security incidents flagged by Microsoft Defender for Office 365 (MDO). Correlate alerts across Defender XDR (including Defender for Endpoint, Identity, and Cloud Apps) to build a complete incident storyline. Use automated investigation and response (AIR) playbooks to identify impacted entities and take containment actions such as: - Soft-deleting malicious emails. - Removing suspicious inbox rules. - Blocking sender domains or URLs Perform forensic analysis of phishing, spoofing, and business email compromise (BEC) attacks. Document root cause analysis (RCA) and lessons learned for each incident Identify gaps in detection l...

Level: L3 Lead the investigation of high and critical severity email security incidents flagged by Microsoft Defender for Office 365 (MDO). Correlate alerts across Defender XDR (including Defender for Endpoint, Identity, and Cloud Apps) to build a complete incident storyline. Use automated investigation and response (AIR) playbooks to identify impacted entities and take containment actions such as: - Soft-deleting malicious emails. - Removing suspicious inbox rules. - Blocking sender domains or URLs Perform forensic analysis of phishing, spoofing, and business email compromise (BEC) attacks. Document root cause analysis (RCA) and lessons learned for each incident Identify gaps in detection l...

Level: L3 Lead the investigation of high and critical severity email security incidents flagged by Microsoft Defender for Office 365 (MDO). Correlate alerts across Defender XDR (including Defender for Endpoint, Identity, and Cloud Apps) to build a complete incident storyline. Use automated investigation and response (AIR) playbooks to identify impacted entities and take containment actions such as: - Soft-deleting malicious emails. - Removing suspicious inbox rules. - Blocking sender domains or URLs Perform forensic analysis of phishing, spoofing, and business email compromise (BEC) attacks. Document root cause analysis (RCA) and lessons learned for each incident Identify gaps in detection l...