1097 Edr Jobs - Page 18

Level - L3 The CDC Head is a Band 9 leadership role responsible for the end-to-end governance, delivery, and transformation of Cyber Defense Center operations. This role oversees a multi-tiered team of around100 security professionals across L1L4, spanning SOC, SecOps, Threat Hunting, Engineering, AppSec, DevSecOps, VM, AI and Automation domains. The CDC Head acts as the single point of accountability for service delivery, SLA adherence, and strategic alignment with client security objectives. Strategic Leadership & Governance - Define and drive the CDCs vision, roadmap, and transformation strategy, including the shift toward autonomous SOC operations using GenAI and agentic AI - Lead govern...

Level - L3 The CDC Head is a Band 9 leadership role responsible for the end-to-end governance, delivery, and transformation of Cyber Defense Center operations. This role oversees a multi-tiered team of around100 security professionals across L1L4, spanning SOC, SecOps, Threat Hunting, Engineering, AppSec, DevSecOps, VM, AI and Automation domains. The CDC Head acts as the single point of accountability for service delivery, SLA adherence, and strategic alignment with client security objectives. Strategic Leadership & Governance - Define and drive the CDCs vision, roadmap, and transformation strategy, including the shift toward autonomous SOC operations using GenAI and agentic AI - Lead govern...

Level -L3 Lead the development of threat hunting hypotheses using threat intelligence, MITRE ATT&CK, and kill chain models Guide the team in conducting hunts across SIEM, EDR/XDR, and network telemetry to uncover hidden threats Validate and refine threat intelligence to ensure it is actionable and relevant Translate hunting outcomes into detection logic and use cases for SIEM and SOAR platforms Collaborate with content developers to build and tune correlation rules and analytics Identify gaps in visibility and recommend improvements to logging and telemetry coverage Escalate confirmed findings to L3 incident response teams with detailed evidence and RCA Recommend preventive and detective cou...

Level -L3 Lead the development of threat hunting hypotheses using threat intelligence, MITRE ATT&CK, and kill chain models Guide the team in conducting hunts across SIEM, EDR/XDR, and network telemetry to uncover hidden threats Validate and refine threat intelligence to ensure it is actionable and relevant Translate hunting outcomes into detection logic and use cases for SIEM and SOAR platforms Collaborate with content developers to build and tune correlation rules and analytics Identify gaps in visibility and recommend improvements to logging and telemetry coverage Escalate confirmed findings to L3 incident response teams with detailed evidence and RCA Recommend preventive and detective cou...

Level -L3 Lead the development of threat hunting hypotheses using threat intelligence, MITRE ATT&CK, and kill chain models Guide the team in conducting hunts across SIEM, EDR/XDR, and network telemetry to uncover hidden threats Validate and refine threat intelligence to ensure it is actionable and relevant Translate hunting outcomes into detection logic and use cases for SIEM and SOAR platforms Collaborate with content developers to build and tune correlation rules and analytics Identify gaps in visibility and recommend improvements to logging and telemetry coverage Escalate confirmed findings to L3 incident response teams with detailed evidence and RCA Recommend preventive and detective cou...

Level -L3 Lead the development of threat hunting hypotheses using threat intelligence, MITRE ATT&CK, and kill chain models Guide the team in conducting hunts across SIEM, EDR/XDR, and network telemetry to uncover hidden threats Validate and refine threat intelligence to ensure it is actionable and relevant Translate hunting outcomes into detection logic and use cases for SIEM and SOAR platforms Collaborate with content developers to build and tune correlation rules and analytics Identify gaps in visibility and recommend improvements to logging and telemetry coverage Escalate confirmed findings to L3 incident response teams with detailed evidence and RCA Recommend preventive and detective cou...

Level -L3 Lead the development of threat hunting hypotheses using threat intelligence, MITRE ATT&CK, and kill chain models Guide the team in conducting hunts across SIEM, EDR/XDR, and network telemetry to uncover hidden threats Validate and refine threat intelligence to ensure it is actionable and relevant Translate hunting outcomes into detection logic and use cases for SIEM and SOAR platforms Collaborate with content developers to build and tune correlation rules and analytics Identify gaps in visibility and recommend improvements to logging and telemetry coverage Escalate confirmed findings to L3 incident response teams with detailed evidence and RCA Recommend preventive and detective cou...

Level : L3 Continuously monitor endpoint telemetry for Indicators of Attack (IOAs) and Indicators of Compromise (IOCs). Validate and triage alerts generated by Falcon Insight, and escalate confirmed threats to L2/L3 SOC teams Use Real Time Response (RTR) to investigate and remediate threats directly on endpoints without disrupting operations Assist in troubleshooting sensor-related issues, including log collection and root cause analysis Raise and manage support cases with CrowdStrike for unresolved technical problems Maintain documentation of known issues, fixes, and deployment best practices. Conduct proactive threat hunting using Falcons historical and real-time data. Leverage CrowdStrike...

Level : L3 Continuously monitor endpoint telemetry for Indicators of Attack (IOAs) and Indicators of Compromise (IOCs). Validate and triage alerts generated by Falcon Insight, and escalate confirmed threats to L2/L3 SOC teams Use Real Time Response (RTR) to investigate and remediate threats directly on endpoints without disrupting operations Assist in troubleshooting sensor-related issues, including log collection and root cause analysis Raise and manage support cases with CrowdStrike for unresolved technical problems Maintain documentation of known issues, fixes, and deployment best practices. Conduct proactive threat hunting using Falcons historical and real-time data. Leverage CrowdStrike...

Level : L3 Continuously monitor endpoint telemetry for Indicators of Attack (IOAs) and Indicators of Compromise (IOCs). Validate and triage alerts generated by Falcon Insight, and escalate confirmed threats to L2/L3 SOC teams Use Real Time Response (RTR) to investigate and remediate threats directly on endpoints without disrupting operations Assist in troubleshooting sensor-related issues, including log collection and root cause analysis Raise and manage support cases with CrowdStrike for unresolved technical problems Maintain documentation of known issues, fixes, and deployment best practices. Conduct proactive threat hunting using Falcons historical and real-time data. Leverage CrowdStrike...

Level : L3 Continuously monitor endpoint telemetry for Indicators of Attack (IOAs) and Indicators of Compromise (IOCs). Validate and triage alerts generated by Falcon Insight, and escalate confirmed threats to L2/L3 SOC teams Use Real Time Response (RTR) to investigate and remediate threats directly on endpoints without disrupting operations Assist in troubleshooting sensor-related issues, including log collection and root cause analysis Raise and manage support cases with CrowdStrike for unresolved technical problems Maintain documentation of known issues, fixes, and deployment best practices. Conduct proactive threat hunting using Falcons historical and real-time data. Leverage CrowdStrike...

Level : L3 Continuously monitor endpoint telemetry for Indicators of Attack (IOAs) and Indicators of Compromise (IOCs). Validate and triage alerts generated by Falcon Insight, and escalate confirmed threats to L2/L3 SOC teams Use Real Time Response (RTR) to investigate and remediate threats directly on endpoints without disrupting operations Assist in troubleshooting sensor-related issues, including log collection and root cause analysis Raise and manage support cases with CrowdStrike for unresolved technical problems Maintain documentation of known issues, fixes, and deployment best practices. Conduct proactive threat hunting using Falcons historical and real-time data. Leverage CrowdStrike...

## Who Youll Be Youre a strategic leader who thrives on solving complex security challenges. You combine curiosity, data-driven decision-making, and a relentless drive for improvement to protect people, assets, and privacy across our global footprint. - Persistent problem-solver who translates privacy and security standards into practical solutions - Trusted communicator whose peers rely on your guidance and follow your lead - Self-starter who absorbs context quickly and works with entrepreneurial energy - Passionate about researching, implementing, and championing security and privacy best practices - Organized yet flexibletackling obstacles with a can-do attitude and calm focus under press...

Certifications Required :OEM Certifications from Security vendors like PaloAlto, Splunk, Cisco, Trelix, Forcepoint,crowdstrike, Microsoft etc.. EDR (Endpoint Detection and Response): Cisco, Paloalto Cortex, CrowdStrike, SentinelOne, etc. DLP (Data Loss Prevention): Trelix, Forcepoint, Symantec, etc. Cloud Security: PaloAlto PrismaCloud, TrendMicro, etc. SIEM (Security Information and Event Management): Splunk Email & Web Security: Cisco, Proofpoint, Zscaler, etc. SASE (Secure Access Service Edge): PaloAlto, Cisco, Zscaler, etc. Should work on RFPs, Define SOWs Design & Implement Security Solutions : Architect and develop comprehensive cybersecurity solutions tailored to client needs, followi...

Role Overview: As a SOC Analyst at Capgemini, you will play a crucial role in analyzing and responding to security incidents. Your responsibilities will include incident response, threat detection, stakeholder support, threat hunting, and leveraging cyber intelligence to enhance security measures. You will have the opportunity to work on cutting-edge projects in technology and engineering while contributing to a more sustainable and inclusive world. Key Responsibilities: - Analyze and document security incidents, escalate when necessary, and facilitate handover to L3 teams. - Conduct research and data analysis to identify threats and coordinate remediation efforts. - Assist IT teams and end ...

As a Security Analyst at Assurant, your role will involve providing and serving as a resource for security and compliance related tasks and projects. You will be responsible for developing, supporting, and executing processes that enforce Assurant security policies and standards, regulatory requirements, contractual agreements/obligations, and any other IT related security or privacy requirements. This position is based in Hyderabad at the India location. Your duties and responsibilities will include: - Responding to incidents, indicators of attack/comprise, and participating as a member of the Assurant Incident Response Team - Participating in audits related to security and compliance - Enf...

As a Sr. Systems Security Engineer at AMD, your role will involve identifying cyber threats, defining security requirements, and engineering solutions to address existing threats and security issues within a global organization. In this fast-paced environment, your multi-tasking skills and attention to detail will be crucial as you stay one step ahead of cyber-criminals. Your strong interpersonal and communication skills will enable you to collaborate effectively with cross-functional teams. Your strategic problem-solving abilities will be put to the test as you provide and articulate future architectural visions and deliver end-to-end solutions in the high-tech industry. **Key Responsibilit...

As a Senior Cyber Security Engineer at Quantiphi, you will play a crucial role in developing a complete understanding of the company's technology and information systems. Your responsibilities will include designing, building, implementing, and supporting enterprise-class security systems. You will be expected to identify and communicate current and emerging security threats, as well as plan, research, and design robust security architectures for IT projects. Additionally, you will be involved in supervising vulnerability testing, risk analyses, and security assessments. Key Responsibilities: - Develop a comprehensive understanding of the company's technology and information systems. - Desig...

Job Title: Senior SDET We also recognize the importance of closing the 4-million-person cybersecurity talent gap. We aim to create a home for anyone seeking a meaningful future in cybersecurity and look for candidates across industries to join us in soulful work. More at . Role Overview: Trellix is looking for SDETs who are self-driven and passionate to work on Endpoint Detection and Response (EDR) line of products. Tasks range from manual and, automated testing (including automation development), non-functional (performance, stress, soak), solution, security testing and much more. Be part of the vision to ship top-class EDR solutions for On-Prem, Cloud or hybrid Customers. About the role: P...

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Information and Event Management (SIEM) Good to have skills : NAMinimum 2 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As an L1 SOC Analyst you are the first line of defense in monitoring and triaging security alerts. You will work primarily with Splunk SIEM and Sentinal One EDR to identify potential securi...

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Information and Event Management (SIEM) Good to have skills : NAMinimum 2 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As an L1 SOC Analyst you are the first line of defense in monitoring and triaging security alerts. You will work primarily with Splunk SIEM and Sentinal One EDR to identify potential securi...

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Palo Alto Networks Firewalls Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :Seeking a technically skilled and proactive Network Security Technical Lead to manage and enhance our enterprise security infrastructure. This role focuses on securing the network perimeter through the adminis...

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Red Teaming Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will oversee the strategic planning and execution of red team operations to emulate real-world threats and uncover security weaknesses across the organization. Your typical day will involve planning, scoping an...

About The Role Project Role : Security Architect Project Role Description : Define the security architecture, ensuring that it meets the business requirements and performance goals. Must have skills : Operational Technology (OT) Security Good to have skills : Network Security ImplementationMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Senior IT/ OT Endpoint Security engineer, you will be focused to lead the design, implementation, and management of endpoint security controls across enterprise environments. You will play a crucial role in protecting critical assets such as Server Work stations, and ICS equipments. Roles & Re...

8–10 yrs in cybersecurity with SOC (L2/L3) experience, incident response, threat hunting, log analysis & SIEM tools (Sentinel, Splunk, Securonix). Must hold active CISSP, CISM or CEH certifications along with ISO 27001 & NIST framework knowledge