830 Endpoint Security Jobs - Page 12

You are invited to join our team as a skilled and vigilant L1 Cyber Security Professional for EDR Operations within our dynamic security team. Your primary responsibility will involve monitoring, analyzing, and responding to security incidents, particularly focusing on Carbon Black EDR alerts and maintaining SLAs. As a qualified candidate, you should possess a Graduation/Post-graduation degree in Computers, Information Systems, Computer Science, or Information Technology Systems with 5 to 7 years of relevant work experience as a security analyst, including hands-on experience with EDRs. It is preferred that you hold at least one cyber security certification such as CEH, CompTIA+, etc. Additionally, familiarity with banking business practices and IT trends in the banking sector would be beneficial. Your role will require you to proactively research and monitor Carbon Black EDR, identify potential threats, troubleshoot EDR agent-related issues, and analyze endpoint data to detect Indicators of Compromise (IOCs) and suspicious activities. Furthermore, you should be well-versed in threats like phishing, ransomware, spyware, and have the ability to decode encrypted scripts for alert execution comprehension. In this position, you will conduct initial triage and assessment of security incidents, escalate confirmed incidents to the appropriate teams, and ensure all EDR operations and tickets are resolved within SLAs. It is essential to have expertise in TCP/IP network traffic, Internet protocols, event log analysis, and stay updated with the latest cybersecurity threats, vulnerabilities, and trends relevant to endpoints. Moreover, you should be familiar with Runbooks, Playbooks, and Standard Operating Procedures, possess strong analytical skills to support conclusions, and maintain awareness of industry best practices for endpoint security and threat detection. Effective communication, teamwork, positive attitude, and a sense of ownership are key personal skills required for this role. If you are ready to take on this exciting opportunity and meet the specified qualifications, please share your updated resume with us at kanchana@kaivale.com.,

As a Security Admin Engineer at Luminar Technologies, you will play a crucial role in designing, building, monitoring, and enforcing the security infrastructure of a rapidly growing US public company. Your responsibilities will revolve around ensuring the security, confidentiality, integrity, and availability of company data and systems. Collaborating with various functions within the organization, you will be at the forefront of designing security solutions to protect information from threats, ensuring business continuity, and regulatory compliance. A key aspect of your role will involve designing and implementing a Unified Security and Observability Platform (USOP) architecture, including forwarders, indexers, and search heads, to cater to the company's security and operational needs. You will configure and manage USOP applications, develop data ingestion strategies, and create dashboards, reports, and alerts to facilitate security monitoring and incident response. Additionally, you will design and implement architectures like UEM, MDM, CNAPP, EDR, and ZTNA to meet security and operational requirements, ensuring the secure monitoring and control of all endpoints. Your expertise will be crucial in analyzing security incidents, identifying vulnerabilities, and recommending strategies to enhance the company's security posture. Furthermore, you will collaborate with cross-functional teams to mitigate security risks, deploy and configure security tools, and maintain security policies, procedures, and standards in compliance with regulations and best practices. Staying abreast of the latest security trends and technologies, you will continuously assess and improve the company's security posture while providing 24x7 support for critical security incidents as part of an on-call rotation. To qualify for this role, you should possess a Bachelor's Degree in computer science, cybersecurity, or a related discipline, along with at least 7 years of relevant work experience. Your technical proficiency in designing and maintaining enterprise-level security infrastructure, knowledge of security concepts and principles, and familiarity with industry standards and regulatory requirements will be essential. Strong problem-solving skills, attention to detail, self-motivation, and excellent communication skills are also key attributes for success in this position. Preferred qualifications include advanced experience in security engineering roles, knowledge of advanced security tools and automation, familiarity with agile methodologies, and experience in Automotive, Finance, or High-Tech industries. Experience with autonomous vehicles or connected cars would be an added advantage, highlighting your potential to excel in this dynamic and innovative environment at Luminar Technologies.,

Greetings from Technogen !!! We thank you for taking time about your competencies and skills, while allowing us an opportunity to explain about us and our Technogen, we understand that your experience and expertise are relevant the current open with our clients. About Technogen : TechnoGen Brief Overview:- TechnoGen, Inc. is an ISO 9001:2015, ISO 20000-1:2011, ISO 27001:2013, and CMMI Level 3 Global IT Services Company headquartered in Chantilly, Virginia. TechnoGen, Inc. (TGI) is a Minority & Women-Owned Small Business with over 20 years of experience providing end-to-end IT Services and Solutions to the Public and Private sectors. TGI provides highly skilled and certied professionals and has successfully executed more than 345 projects. TechnoGen is committed to helping our clients solve complex problems and achieve their goals, on time and under budget. LinkedIn: https://www.linkedin.com/company/technogeninc/about/ Job Title :Endpoint Security Lead Required Experience : 10+ years Location : Hyderabad. Job Summary :- The Endpoint Security Engineering Lead is responsible for leading the design, implementation, and governance of the following Service Lanes: Endpoint Security, Event Logging and Monitoring, Digital Asset Protection, Security Engineering and Digital Forensics. The position will oversee the implementation, coverage and efficacy of security agents and their corresponding consoles to ensure assets are secured from threats external and internal. An additional area of accountability is to ensure the availability and integrity of audit logs for use in alerting and investigations. The final area of oversight is the program for Digital Forensics, in which forensic artifacts will be gathered and managed, to accommodate the requests from other areas of the business. Lead and manage the Endpoint Security team, which encompasses the following programs Asset Discovery and Management Locate unknown devices on Networks to triage and limit access to sensitive resources Endpoint Controls Oversee the coverage and operational status of Security agents which are part of Security Requirements Detection and Response Continuously analyze and tune policies within Security tools within the Endpoint realm to ensure they are providing the highest fidelity alerts Lead and manage the Digital Asset Protection team, which encompasses the following programs DAP/RAP To ensure that digital assets are only shared with persons with legitimate need/permissions Secure File Transfer Maintenance and improvement of the Kiteworks platform to ensure that files shared externally can be done so in a controlled manner Lead the Endpoint Security Engineering Team, which is responsible for assisting in any area which needs additional automation/integration work, POV/POC of new tools, anything outside of the expertise of SMEs in each Program. Lead and manage the Digital Forensics team, which handles the maintenance and improvement of the Digital Forensics Infrastructure as well as the collection of Forensic artifacts requested by Business Units, mainly HR and Legal. Lead the Logging and Event Monitoring team, which is responsible for ensuring that all audit logs are collected and place in a central and managed location. This team will also ensure that the logs that are ingested are parsed and organized so that searches are easy for other teams to craft. Manages and is responsible for the successful completion of all tasks in assigned projects. Available 24/7 for any critical security incident response that may arise which requires immediate resolution. Work to ensure security tooling within environments are operational and operating at needed levels of service and availability. Develops and assists the program leads with metrics to measure the effectiveness of all the programs. Maintains current knowledge of relevant information security identity, authentication, authorization, and governance technology and techniques, bringing forth ideas for modernization and improvement. Manage “Continuous Improvement” efforts, in respect to information security tooling and systems. Contribute to security requirements, standards, procedures, and reference architectures to comply with policies and technical standards. Other Duties as Required Job Requirements Certification/Licenses: - Preferable CySA+ / CASP+ / OSCP / ODSA / Any GIAC / CISSP Knowledge: Endpoint Security Tools, MITRE ATT&CK framework, Security event analysis, Linux, Mac, Windows, EDR, SIEM, DLP, Secure File Transfer services, Cloud and SaaS administration, Program Management, OS hardening, CIS benchmarks, Security Requirements, Security Policies, NIST 800.53, Proof of Concept/Value efforts, DFIR, Vulnerability Management, Data Protection, Insider Threat, regulatory compliance, CIA triad. Skills: Ability to think outside the box, pivot and prioritize rapidly changing priorities and be fully invested in making an impact to the overall security and all its complexities Excellent prioritization, decision making, critical thinking, communication, and relationship building skills. Strong ability to work collaboratively across teams during high-stress situations. Ability to work independently and in a team environment. Strong ability to build, influence, lead and motivate effective teams towards end results. Ability to write and present effective materials, including presentations, status reporting, etc. Ability to lead effective meetings that are tailored to the audience. Ability to negotiate with customers to reach agreement on common goals and service levels. Ability to conduct thorough root cause analysis to resolve issues. Experience: 7+ years’ experience in Security Engineering, Security Analysis, Data Protection, DFIR. BS degree preferred, or equivalent proven work exeperience Advanced scripting skills (Python, PowerShell, Bash) Ability to communicate technical ideas to business users and other teams Self-driven individual with good project management skills Solid understanding of large-scale applications, network architectures, monitoring and fault management. Skilled in examining and re-engineering Cybersecurity operations and procedures, formulating policy, and developing strategies. Ability to analyze complex problems, interpret operational needs, and develop integrated, creative solutions. Advanced analytical, evaluative, and objective critical thinking skills. Ability to gather data, compile information, and prepare reports for Executive Management Skilled in organizing resources and establishing priorities. Ability to supervise and train employees, to include organizing, prioritizing, and scheduling work assignments. Ability to provide technical guidance and leadership to professional personnel in area of expertise. Ability to provide and drive data collection needs for various annual Corporate Audits: SOX, PCI, etc. Best Regards, Syam.M | Sr.IT Recruiter syambabu.m@technogenindia.com www.technogenindia.com | Follow us on LinkedIn

Responsibilities: * Collaborate with security teams on threat response plans * Monitor endpoints for suspicious activity * Analyze SIEM data for threats & incidents * Conduct regular SOC audits & reporting *SIEM CV- hr@megahertzinfotech.com

Job Title: Specialist IT and Network Security Location: Noida # of Positions: 1 # Experience: 8-10 Years About MPS MPS, a leading global provider of platforms and content solutions for the digital world, was established as an Indian subsidiary of Macmillan (Holdings) Limited in 1970. The long service history as a captive business allowed MPS to build unique capabilities and talents through strategic partner programs. MPS is now a global partner to the world’s leading enterprises, learning companies, publishers, libraries, and content aggregators. After a change of majority stake in 2011-12 and with an entrepreneurial mindset MPS developed significant momentum as a result of consistent reinvestment in the business and five successful acquisitions in the same number of years. MPS is listed on the major stock exchanges in India with a market capitalization upward of INR 1,000 crores. More than 2,500 professionals power MPS across seven delivery centres in India and seven client-servicing offices in the US. Primary Duties & Responsibilities We, at MPS Limited, are looking for a Specialist – IT and network security. The candidate must possess the following skills: Candidate should have a 8-10 years of experience in the IT industry with at least 5 years in IT Security/Cyber Security and other related areas. Candidate should have a proper technical background to perform technical compliance activities (Windows/Linux operating systems, DBMS, and cloud are in scope) Candidate should have key expertise in the areas of Endpoint Protection, SIEM, IDS/IPS, WAF, FIM, Identity and Access Management Candidate should have expertise in Network Management Systems. Candidate must have expertise in managing infrastructure security on a cloud platform. Candidate should possess skills to implement endpoint security solutions to effectively block threats or access attempts prior to entry and block risky or malicious activities. Candidate should have a key understanding of technology, IT, and governance aspects from an information security perspective. The candidate should possess skills to analyze and assess IT risks (cyber security, network security, data protection and confidentiality, technology change, technology reliability, cloud) assumed by the business. Identify and evaluate the effectiveness of controls designed to address those risks Candidate needs to work closely with the internal Compliance and Security team to assess the organization’s IT security framework and implement solutions as per industry best practices. The candidate will also be responsible to coordinate effectively with IT Infrastructure and Information Security team during internal, external and client-mandated audits and assessments. Implement best practices and service improvement plans under the scope. Also ensure policies, procedures, and SOPs are maintained and followed. Candidate should also have clear understanding of security frameworks and certifications like NIST, ISO27001 and ISMS. Manage technical support, lead a team, support, supervise, and provide directions and mentorship for tech support and service delivery Maintain availability, sanity, and health of the internal user devices Ensure the security of data, network access, and backup systems Maintain a record of asset, compliance, system changes, and IT incidents/problems Hands-on experience with computer networks, network administration and network installation, datacenter management, and data governance. Strong technical and analytical skills and willingness to keep up with the industry, and regulatory developments and learn new concepts and methods Strengthening of organization’s business continuity posture Candidate should have experience in working in teams and managing internal and external stakeholders. Qualification Bachelor's degree in computer science or related field. Experience in information security or related field. Experience with computer network penetration testing and techniques. Understanding of firewalls, proxies, SIEM, antivirus, and IDS/IPS concepts. Ability to identify and mitigate network vulnerabilities and explain how to avoid them. Understanding of patch management with the ability to deploy patches in a timely manner while understanding the business impact Sound knowledge of identity and access management and deploying tools to manage single sign-on. Sound understanding of IT infrastructure with significant hands-on experience in cloud platforms. Hands-on experience in addressing observations during internal and external IT audits and assessments Higher level Microsoft/networking/cloud/info security qualification/accreditation Ability to work effectively & guide technical team members. Degree qualification in IT-related discipline Highly self-motivated; able to operate autonomously in a dynamic environment Strong oral and written communication skills. Ability to multitask Good time management skills. Website www.mpslimited.com Please Contact if interested.

Project Role : Application Lead Project Role Description : Lead the effort to design, build and configure applications, acting as the primary point of contact. Must have skills : Microsoft Endpoint Configuration Manager Good to have skills : NAMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time educationJob Title:MECM/SCCM L2 Support Engineer.Experience:56 YearsManagement level:CL10Job Type:Full-TimeWork Mode:HybridJob Summary :The MECM (Microsoft Endpoint Configuration Manager) / SCCM (System Center Configuration Manager) L2 Support Engineer will be responsible for providing second-level support for endpoint management systems, including patch management, software distribution, and compliance reporting. The role involves working closely with L1 support, IT operations, and security teams to ensure a stable and secure end-user computing environment.Key Responsibilities:Provide L2 support for MECM/SCCM-related issues, including troubleshooting client and server-side problems.Monitor and manage software deployments, patch compliance, and system updates.Support monthly patching cycles (WSUS integration, SUP, ADR, maintenance windows).Assist with application packaging and deployment using SCCM.Perform client health checks and remediation for non-compliant systems.Monitor SCCM infrastructure and perform basic administration tasks.Manage collections, task sequences, and operating system deployment (OSD) processes.Generate and analyze reports (via SSRS or Power BI) for patching, compliance, and inventory.Work on incident, problem, and change management processes (ITIL-based).Collaborate with vendors and cross-functional teams to resolve complex issuesTechnical Skills Required:Strong experience in MECM/SCCM administration and support.Good knowledge of Windows Server and Windows OS (7, 10, 11).Application packaging tools (MSI, PowerShell, VBScript) knowledge is an advantage.Familiarity with Active Directory, Group Policy, and WSUS.Understanding of Patch Management Lifecycle and Security Baselines.Scripting knowledge (PowerShell preferred).Experience with remote tools (CM Remote Tools, RDP, etc.).Reporting experience with SCCM reports and/or Power BI.Windows server administration and patch management. Soft Skills: Strong analytical and troubleshooting skills.Excellent communication and documentation skills.Ability to work independently and within a team.Customer-focused with a proactive mindset.Certifications (Preferred but not mandatory):Microsoft Certified:Endpoint Administrator AssociateITIL Foundation CertificationCompTIA A+ / Network+ / Security+ (optional) Qualification 15 years full time education

Job Role : Cyber Security Engineer--Work From Office Experience : 5 to 10 Yrs Key Skills: Security tools integration and management, Onboarding, Log integration, writing rules and polices in Cloud Security/SIEM/EDR/Antivirus/XDR/MDR/SOAR tool/IPS & IDS Notice Period : 0 to 15 days(Must) Should be willing to work in Second shift Company: Cyber Towers, Quadrant 3, 3rd floor, Madhapur, Hyderabad -- 500081. Job Overview: They plan, implement, and maintain security measures, respond to security incidents, and identify vulnerabilities. Their roles vary depending on the specific area of security, such as network, application, or cloud security. Here's a more detailed breakdown of their responsibilities: Security Planning and Implementation: Designing and implementing security controls: This includes firewalls, intrusion detection systems, and access control mechanisms. Developing security policies and procedures: Establishing guidelines for secure operations and data handling. Performing risk assessments: Identifying potential vulnerabilities and threats. Implementing security tools and technologies: Integrating security software and hardware into the organization's infrastructure. Analyze and recommend improvements to network, system, and application architectures to enhance security. Research, design, and implement cybersecurity solutions that protect the organizations systems and products. Collaborate with DevOps, Platform Engineering, and Architecture teams to ensure security is embedded in the design and development of applications and systems. Actively participate in the change management process, ensuring security considerations are prioritized in system upgrades and modifications. Design and deploy automated security controls to improve efficiency in risk identification, configuration management, and security assessments. Develop and refine security policies to address cloud security misconfigurations, leveraging cloud-native security technologies. Implement logging and monitoring solutions for cloud environments to enhance SOC team capabilities in detecting and responding to security incidents. Assess and review emerging technologies to identify potential security risks and implement mitigation strategies. Design and deploy innovative security technologies to address evolving security challenges. Conduct vulnerability scanning, anomaly detection, and risk assessment to enhance the security posture. Work closely with security architects to develop and deploy security solutions that address cloud-specific risks. Take ownership of security posture improvements, ensuring strict security policies and controls align with business objectives. Research and stay up to date on emerging security threats and provide strategic recommendations to strengthen security defenses. Qualifications & experience: Hands-on experience with implementing security controls, including Database security, Web content filtering, Anomaly detection & response, Vulnerability scanning & management Proficiency in at least one scripting language (e.g., Perl, Python, PowerShell, Bash) for automation and security tooling. Expertise in at least one of the following security domains: Cloud-native security (e.g., IAM, security groups, encryption), Endpoint security (e.g., EDR/XDR, mobile security) Strong familiarity with industry security frameworks and regulations, including: NIST Cybersecurity Framework (CSF) , CIS Controls, HIPAA, GDPR compliance Ability to assess compliance requirements and implement security controls to ensure adherence. Strong problem-solving and analytical skills, with the ability to assess complex security risks and develop mitigation strategies. Excellent communication and interpersonal skills, with the ability to engage both technical and non-technical stakeholders. Proven ability to work independently, manage projects, and contribute as an integral part of a high-performing security team.

Design and implement endpoint security solutions Develop and report enterprise level metrics for endpoint security controls Maintain endpoint protection infrastructure Ensure that security systems documentation is up to date Maintain awareness of latest security risks and exploits Collaborate with network and systems administrators Ensure that security solutions are integrated seamlessly Bring up concerns to management regarding endpoint security Participate in incident response efforts Implement tasks critical to a company's Endpoint technologies Develop and implement security policies and procedures for end-users

At Honeywell, we are dedicated to creating a better future and are searching for individuals to join our global team of future shapers. When you become part of Honeywell, you enter a performance-driven culture filled with diverse leaders, innovators, and doers who are reshaping the future. Our team is committed to supporting each other and realizing our vision through various job functions. Innovation is at the core of our businesses as we strive to define the future. The opportunities for growth and recognition on a global scale are endless for those who demonstrate a passion for performance. We are currently looking for a cybersecurity engineer who possesses creativity and forward-thinking skills to develop and enhance cybersecurity solutions that address unique security challenges within critical infrastructure and industrial sectors. This role involves providing on-site cybersecurity services for Honeywell customers in industries such as Oil and Gas, Power Generation, Life Sciences, and more. Responsibilities include consulting, troubleshooting, network design, implementation, assessments, and other relevant tasks. **Key Responsibilities:** - Take the lead in assigned projects, ensuring timely delivery, staying within budget, and achieving customer satisfaction. - Stay updated on cybersecurity solutions and expand knowledge in designated network disciplines. - Maintain relevant cybersecurity certifications such as CCNA, CISSP, GICSP, or similar. - Keep abreast of industry security standards like IEC-62443, ISO 27000. - Establish strong relationships with internal and external customers by providing accurate technical support. - Diagnose issues and offer timely technical solutions in response to customer inquiries. - Handle network configuration, troubleshooting, firewall setup, and other related tasks. - Uphold industrial safety awareness by completing pertinent safety certifications. **Basic Qualifications:** - Bachelor's degree in computer-related fields or equivalent experience. - Cisco Certified Network/Design/Security Professional (at least one certification). - GICSP/CISSP Certified Information Systems Security Professional or similar certification. - 5+ years of experience in Networking, endpoint security, and IT security audits/assessments. - 3+ years of experience in Security Projects. - 2+ years of experience in Cybersecurity Vulnerability or Risk assessment. - Proficiency in Microsoft Active Directory, DNS, WSUS, and Terminal Server. - Experience in vulnerability scanning and assessments using tools like Nessus and NMAP. - Proven experience in designing or deploying projects leveraging virtualization, preferably VMware. - Network Security Experience: Firewalls, ACL, IDS, IPS, SIEM, particularly with Cisco Routers, Switches, or Firewalls. - Experience with antivirus systems, backup & restore solutions, and providing network services on customer sites. - Strong written and oral communication skills. - Willingness to travel 30-65%. **Preferred Qualifications and Experience:** - 3 years experience in Operational Technology (OT). - IEC-62443 Risk Assessment/Design/Maintenance Certification (at least one). - Knowledge of various networking protocols. - Awareness of OT cybersecurity best practices. - Proficiency in preparing design specifications. - Ability to work independently. - Excellent troubleshooting skills for resolving complex network issues. Honeywell is a trusted partner in solving complex challenges in automation, aviation, and energy transition. We offer actionable solutions and innovation through our Aerospace Technologies, Building Automation, Energy and Sustainability Solutions, and Industrial Automation business segments, all powered by our Honeywell Forge software, to create a smarter, safer, and more sustainable world.,

At Seclore, we're redefining how enterprises secure their dataanytime, anywhere. As a Senior Sales Engineer, youll be at the forefront of that mission. Youll work hand-in-hand with the sales team, acting as a trusted technical advisor and solution architect for prospects and customers. If youre passionate about uncovering needs, crafting innovative solutions, and building strong customer relationships, wed love to talk. Here's what you will get to explore: Sales Collaboration: Work alongside the sales team to introduce Seclores data-centric security solutions to prospective customers. Discovery Solution Design: Lead discovery sessions to deeply understand customer needs, then design and deliver tailored technical presentations and demos to C-level and technical audiences. Technical Expertise: Become a subject matter expert in Seclores platform, leveraging product capabilities to create impactful, customized solutions. Proof of Value Execution: Define use cases, success criteria, and test scenarios. Coordinate technical setup and environmental prerequisites. Guide the customer through evaluation, provide support, and ensure a successful closure. Proposal RFP Support: Collaborate on technical content, pricing models, and implementation plans for RFPs and RFIs. Market Insight: Track security market trends, competitive products, and create internal battlecards to aid in strategic selling. Customer Advocacy: Act as the voice of the customer internally, offering feedback to Product Management and Engineering. Partner Enablement: Support ecosystem partners in developing best-fit solutions. Cross-Functional Collaboration: Work closely with Product, Engineering, Delivery, and Support to ensure alignment during the sales cycle. We can see the next Entrepreneur At Seclore if you: Have a Bachelors or Masters degree in a relevant field. Experience: 7+ years in a customer-facing Sales Engineering or Pre-Sales role at an enterprise software company, ideally in the data security domain. Communication: Strong written and verbal communication skills, with the ability to convey technical concepts to both technical and non-technical stakeholders. Presentation: Proven experience delivering compelling product demos, technical presentations, and user training sessions. Mindset: Self-driven, collaborative, and adaptablewith a focus on closing deals and thriving in a fast-paced startup culture. Bonus Points (Preferred Skills) Experience with data-centric security technologies such as: DLP, Data Classification, Encryption, Threat Intelligence CASB, Endpoint Security, Email Security, Cloud Security Cloud environment understanding like Azure, AWS, etc. AD and User Authentication tools and services Certifications in cybersecurity or related domains Familiarity with verticals like BFSI, Pharma, Manufacturing etc. and their compliances and regulations CRM proficiency and a structured approach to asynchronous work and documentation Why do we call Seclorites Entrepreneurs, not Employees We value and support those who take the initiative and calculate risks. We have an attitude of a problem solver and an aptitude that is tech agnostic. You get to work with the smartest minds in the business. We are thriving, not living. At Seclore, it is not just about work but about creating outstanding employee experiences. Our supportive and open culture enables our team to thrive.

Organisation : Novamesh Ltd (TATA Commununications Ltd) Position : L1, Location Belapur, Customerlocation Shift : 9x5 Job Summary: We are seeking a well-rounded Security SolutionsSpecialist with hands-on experience in deploying, configuring, and managingsecurity platforms including EfficientIP (DNS, DHCP, IPAM), PicusSecurity (Breach and Attack Simulation), Varonis (Data Security& Governance), and ColorTokens (Microsegmentation & Zero Trust).The candidate will play a key role in optimizing the security posture of theorganization through proactive technology implementation, tuning, andcontinuous improvement. Key Responsibilities: EfficientIP (DNS Security & DDI Management): Configure and manage DDI (DNS, DHCP, IPAM) solutions using EfficientIP. Implement DNS threat protection, DNS tunneling detection, and response actions. Integrate EfficientIP with SIEM/SOC platforms for alerting and incident enrichment. Picus Security (Breach and Attack Simulation - BAS): Operate and tune the Picus BAS platform to continuously validate security controls. Conduct attack simulations mapped to MITRE ATT&CK to identify gaps in defenses. Collaborate with red/blue teams to interpret simulation outcomes and drive improvements. Varonis (Data Security and Insider Threat): Deploy and maintain Varonis to monitor access to critical data repositories (file shares, SharePoint, OneDrive, etc.). Investigate anomalous file activity, permissions misuse, and potential data exfiltration attempts. Support data classification, audit, and compliance initiatives (e.g., GDPR, HIPAA, PCI). ColorTokens (Microsegmentation & Zero Trust): Implement Zero Trust and application-layer segmentation policies using ColorTokens platform. Monitor east-west traffic, define security zones, and restrict lateral movement. Work with infrastructure and cloud teams to enforce policy across hybrid environments. Required Qualifications: Education: B.E./B.Tech/MCA/M.Sc. in Computer Science or Information Technology Certification : CEH

Role Purpose The purpose of this role is to design the organisations computer and network security infrastructure and protect its systems and sensitive information from cyber threats Do 1. Design and develop enterprise cyber security strategy and architecture a. Understand security requirements by evaluating business strategies and conducting system security vulnerability and risk analyses b. Identify risks associated with business processes, operations, information security programs and technology projects c. Identify and communicate current and emerging security threats and design security architecture elements to mitigate threats as they emerge d. Identify security design gaps in existing and proposed architectures and recommend changes or enhancements e. Provide product best fit analysis to ensure end to end security covering different faucets of architecture e.g. Layered security, Zoning, Integration aspects, API, Endpoint security, Data security, Compliance and regulations f. Demonstrate experience in doing security assessment against NIST Frameworks, SANS, CIS, etc. g. Provide support during technical deployment, configuration, integration and administration of security technologies h. Demonstrate experience around ITIL or Key process-oriented domains like incident management, configuration management, change management, problem management etc. i. Provide assistance for disaster recovery in the event of any security breaches, attacks, intrusions and unusual, unauthorized or illegal activity j. Provide solution of RFPs received from clients and ensure overall design assurance i. Develop a direction to manage the portfolio of to-be-solutions including systems, shared infrastructure services, applications, hardware related to cyber risk security in order to better match business outcome objectives ii. Analyse technology environment, enterprise specifics, client requirements to set a collaboration design framework/ architecture iii. Depending on the clients need with particular standards and technology stacks create complete RFPs iv. Provide technical leadership to the design, development and implementation of custom solutions through thoughtful use of modern technology v. Define and understand current state solutions and identify improvements, options & tradeoffs to define target state solutions vi. Clearly articulate and sell architectural targets, recommendations and reusable patterns and accordingly propose investment roadmaps vii. Evaluate and recommend solutions to integrate with overall technology ecosystem viii. Tracks industry and application trends and relates these to planning current and future IT needs 2. Stakeholder coordination & audit assistance a. Liaise with stakeholders in relation to cyber security issues and provide timely support and future recommendations b. Provide assistance in maintaining an information security risk register and help with internal and external audits relating to information security c. Support audit of security best practices and implementation of security principles across the organization, to meet business goals along with customer and regulatory requirements d. Assist with the creation, maintenance and delivery of cyber security awareness training to team members and customers e. Provide training to employees on issues such as spam and unwanted or malicious emails Mandatory Skills: Illumio Micro Segmentation. Experience: 8-10 Years.

You should have an understanding of various cybersecurity threats and solutions along with knowledge of security products and services offered by our company. You must be capable of translating complex technical concepts into easy-to-understand explanations for clients. It is essential to understand the client's business landscape and security posture, identify opportunities, and recommend appropriate solutions. You will be responsible for demonstrating proof-of-concepts (POCs) to showcase the value of our offerings, working with the sales team to identify potential customer needs and challenges, and participating in customer meetings and presentations to exhibit how our solutions can address those needs. Additionally, you will create technical proposals and quotes. To qualify for this role, you must possess excellent communication and presentation skills, strong analytical and problem-solving abilities, and the ability to build trust and rapport with clients. It is important to stay updated with industry knowledge and maintain a professional appearance. You should be familiar with technologies such as SIEM/SOAR, Mail Security, Firewall, Endpoint security, DLP, and SASE. The benefits of this position include a flexible work environment (leave benefits, remote options), health & accident insurance coverage, remuneration above industry standards for performers, attractive performance-based incentives, PF / ESI / Gratuity Benefits, a company-paid CUG SIM card, skill development & growth opportunities, and being part of a POSH Certified Organization.,

As a DevOps Engineer with 3-5 years of experience, you will play a crucial role in ensuring the production resiliency of systems by utilizing your expertise in software engineering and operations. Your primary responsibility will be to develop efficient ways of managing and operating applications, requiring a high level of accountability and technical prowess. Your key responsibilities will include identifying knowledge and skill gaps within the team, driving infrastructure as code adoption, maintaining vulnerability management and compliance initiatives, monitoring golden signals, proactively testing system resilience, driving continuous improvement, and participating in on-call rotations. You will work collaboratively with a team, demonstrating strong analytical and problem-solving skills, excellent written and oral communication skills, and the ability to work independently with good time management. In terms of technical skills and experience, you should have professional expertise in cloud environments such as Baremetal, AWS, Google, or Azure. You will work across Engineering and Support teams to ensure service reliability, availability, and efficiency. Your role will involve driving technical service improvements, ensuring alignment and execution across Development, Support, and Cloud Operations, and working in Linux/Unix environments. Additionally, you should have knowledge of container technologies like Docker, web servers like Nginx and Apache, infrastructure as code tools such as Terraform, Ansible, Puppet, or Chef, centralized logging solutions like Graylog, Splunk, or Elk, active monitoring tools like Grafana, New Relic, DataDog, Prometheus, security best practices, CI/CD tools like Jenkins or Gitlab, and experience with programming languages such as bash, python, Golang, node.js, or Java. You will collaborate with InfoSec and development teams to identify and mitigate code vulnerabilities, streamline deployment processes with development teams, troubleshoot and resolve infrastructure and deployment issues, utilize Tanium for endpoint security and management, work with Akamai for web performance and security solutions, and implement and manage API gateways using Kong. Your interactions will primarily be with peers, managers, and immediate supervisors within and outside the department.,

As a Junior Endpoint Security Engineer with 12 years of hands-on experience in system integration, cybersecurity, or enterprise IT environments, you will play a crucial role in implementing and supporting endpoint security solutions. Your background in MFA, Okta, SSO, and IAM technologies will be essential in assisting with identity and access control deployments and collaborating with internal teams on enterprise security initiatives. Your key responsibilities will include deploying and supporting endpoint security tools across enterprise environments, working with IAM tools such as Okta for managing SSO and MFA, integrating security technologies across systems and applications, supporting IAM policies and access reviews, troubleshooting identity access issues, and collaborating with cross-functional IT teams for seamless integration. Additionally, you will be responsible for documenting configurations, change logs, and deployment runbooks, and staying updated on security trends, vulnerabilities, and compliance standards. To excel in this role, you should have 12 years of experience in cybersecurity, IT infrastructure, or a System Integrator environment, hands-on exposure to Okta or similar identity providers, a good understanding of IAM concepts and authentication protocols, experience with endpoint security deployment in enterprise setups, familiarity with directory services such as Active Directory or Azure AD, strong troubleshooting and analytical skills, and the ability to document technical procedures clearly and accurately. This is a full-time position with benefits including health insurance, life insurance, paid sick time, and Provident Fund. The work location is in person, and the expected start date is 01/09/2025.,

Job Description DevOps Engineer Years of Experience: 3 -5 years experience Position Summary: Dynamic, motivated individual to deliver exceptional solutions for the production resiliency of the systems. The role incorporates aspects of software engineering and operations, DevOps skills to come up with efficient ways of managing and operating applications. The role will require a high level of responsibility and accountability to deliver technical solutions. Essential Functions / Job Responsibilities: Identify knowledge and skill gaps in existing team and recommend learning paths Drive infrastructure as code adoption Maintain vulnerability management and compliance initiatives Monitor golden signals Proactively test system resilience Drives continuous improvement Participate in on-call rotations Skills Required: Proven ability to work as a part of a team Strong analytical and problem-solving skills Excellent written and oral communication skills Ability to work independently with good time management skills Demonstrates resourcefulness and strong initiative Ability to establish collaborative working relationships with extended team members Technical/Software Skills and Experience Required: Professional experience with cloud environments (Baremetal/AWS/Google/Azure) Work across Engineering and Support teams to ensure meets its goals for service reliability, availability, and efficiency. Drive technical service improvements Ensure alignment and execution across Development, Support, and Cloud Operations Knowledge and experience working in Linux/Unix environment Knowledge on container technologies like Docker Knowledge of webserver like Nginx, Apache Experience with infrastructure as code tools (Terraform, Ansible, Puppet, Chef, etc) Experience with centralized logging solutions (Graylog, Splunk, Elk, etc) Knowledge of active monitoring (Grafana, New Relic, DataDog, Prometheus etc) Understanding of security best practices Knowledge with CI/CD tools (Jenkins, Gitlab, etc) Experience with a programming language (bash, python, Golang, node.js, Java etc) Coordinate with InfoSec and development teams to identify and mitigate code vulnerabilities. Collaborate with development teams to streamline deployment processes. Troubleshoot and resolve issues related to infrastructure and deployment. Utilize Tanium for endpoint security and management. Work with Akamai for web performance and security solutions. Implement and manage API gateways using Kong. Internal and External Interaction: This position interacts with peers and managers both in and out of the department as well as their immediate manager on a regular basis.

We are seeking a skilled and customer-focused Desktop Support Engineer to provide comprehensive support for end-user systems, applications, and hardware. The ideal candidate will be responsible for diagnosing and resolving technical issues related to Windows operating systems, Microsoft 365 applications, business productivity tools, and hardware performance. You will coordinate with vendors, provide remote support, and ensure timely resolution of IT incidents and requests. Provide Level 2 remote support for Windows 10/11 laptops and approved business applications. Troubleshoot issues related to: OS performance and boot failures Application crashes and login issues User profile and configuration errors Support applications including Microsoft 365, Teams, Adobe Reader, Zscaler, and others. Perform secure remote troubleshooting using tools like VPN, RDP, TeamViewer, or AnyDesk. Create, manage, and deploy standard software images for laptops prior to delivery. Coordinate with OEM and software vendors for escalations and warranty claims. Maintain accurate ticket documentation and ensure SLA adherence. Required Skills & Experience: 3 5 years of experience in L2 desktop support or IT service desk roles. Strong knowledge of Windows OS, Microsoft 365 suite, and endpoint security tools (e.g., Zscaler). Experience with remote support tools and secure access protocols. Familiarity with ticketing systems and SLA-driven environments. Excellent communication and documentation skills. Ability to work in a 24x7 rotational support model. Microsoft Office 365, Windows, Zscaler

Requirement Tanium Administrator Number of Openings* 1 ECMS Request No (Sourcing Stage)* 533877 Duration of Contract* 3 months, will get extended Total Years of Experience* 5+ Relevant Years of Experience* 5+ Detailed JD (Roles and Responsibilities)* Tanium Administrator Roles and Responsibilities:- 1. Be versatile and able to troubleshoot with Networking issues if the device is not connecting to the console 2. Be able to Troubleshoot client issues and Tanium Module issues. 3. Be able to manage RBAC and assist in fulfilment of requests. 4. Having a Tanium Certified Operator or Certified Administrator is a plus 5. Be able to troubleshoot and maintain the console and all aspects of it. 6. overall they need to have extensive Tanium experience 7. Ability to create sensors and boards for monitoring of all module compliance Mandatory Skills* Tanium Desired Skills* Tanium Administrator , Endpoint Security Domain* Security Approx. Vendor Billing Rate (Excl. Service Tax)* 6500 INR /DAY Delivery Anchor (Screening, Interviews, Feedback)* Sundararajan_s04 Precise Work Location* Bangalore, Mohali, Chandigarh, Hybrid Background Check (Pre/Post Onboarding) Post Client Prerequisite BGV Agency* NA Shift Timings (If Different from Standard Daylight)* PST hours support Furlough/Shutdown Timings Applicable (non-payment due to client shutdowns. )

Shift timings- 2 PM -11 PM Primary skills Azure Security Defender, Sentinel,(identity, Endpoint, etc.) Secondary skills Azure Infrastructure, Office 365 collab workloads Required Skills & Experience: Technical Expertise: Strong understanding of Azure security offerings, including but not limited to: Microsoft Defender for Cloud / Endpoint / Identity Microsoft Sentinel (SIEM/SOAR) Microsoft Entra (Identity Governance, Conditional Access) Hands-on experience with cloud security assessments, PoC deployments, and client workshops. Familiarity with Zero Trust architecture and related best practices. Professional Experience: 5+ years in IT security roles, with 2+ years focused on Azure or cloud security. Proven track record of leading technical engagements independently. Soft Skills: Excellent communication and presentation skills. Ability to articulate technical concepts to both technical and business audiences. Self-starter who thrives in a fast-paced, client-facing environment. Preferred Qualifications: Microsoft certifications (e.g., SC-100, AZ-500, SC-200) Experience working with Microsoft partners or within funded engagement programs. Exposure to regulatory compliance frameworks (e.g., ISO, NIST, GDPR) Key Responsibilities: Client Engagements: Conduct security assessments and discovery workshops to understand client environments, security gaps, and cloud readiness. Deliver technical Proof of Concepts (PoCs) and hands-on demonstrations of Microsoft Azure security solutions. Host and facilitate technical workshops on Zero Trust, Microsoft Defender, Sentinel, Entra, and related technologies. Provide technology walkthroughs, highlight use cases, and share practical experience to illustrate business value. Solution Design & Implementation: Design and recommend secure architectures and configurations using Azure-native tools and services. Collaborate on solution development, documentation, and client readiness for security modernization. Internal & Cross-Functional Collaboration: Work closely with Sales, PreSales, and regional delivery teams to align on customer needs, technical strategy, and success metrics. Contribute to proposal development and client presentations from a technical security standpoint. Thought Leadership & Enablement: Stay updated on Azure security advancements and share knowledge internally and with clients. Support internal enablement sessions and mentor junior team members, where applicable.

As a Senior Cyber Security Analyst at Worley, you will have the opportunity to work alongside a collaborative and inclusive team to deliver projects for clients while enhancing your skills and expertise in the field. Worley is a global professional services company specializing in energy, chemicals, and resources, committed to sustainable energy solutions and providing essential resources to society. The ideal candidate for this role will be a Subject Matter Expert (SME) in Cyber Security, particularly focusing on Data Loss Prevention (DLP). You will be responsible for designing, implementing, monitoring, and reporting on information security events within the DLP scope. Your role will involve managing security tools and IT systems with a specific emphasis on DLP enablement. Key responsibilities of the role include: - Designing, implementing, and optimizing DLP policies to prevent unauthorized access and data exfiltration. - Serving as an SME for DLP solutions, technologies, and best practices. - Monitoring, analyzing, and responding to DLP alerts and incidents to enhance detection accuracy. - Ensuring compliance with data protection regulations and collaborating with cross-functional teams. To excel in this role, you should possess the following attributes: - Ability to balance security measures with business needs. - Proactive approach to identifying and mitigating data loss risks. - Proficiency in DLP solutions such as Microsoft Purview, Symantec, Forcepoint, etc. - Strong knowledge of DLP policies, content inspection techniques, and data classification models. - Experience with cloud-based DLP solutions and understanding of network security and encryption techniques. At Worley, we foster a values-inspired culture that encourages belonging, connection, and innovation. We are committed to creating a diverse, inclusive, and respectful workplace where everyone can thrive and contribute to sustainable change. Join us to explore diverse opportunities, broaden your horizons, and drive impactful transformation in the energy sector. Please note that Worley takes data protection seriously and complies with EU and local data protection laws. If you are interested in this role, please apply directly to Worley as applications through recruitment agencies will not be considered.,

As a Security leader with a background in AWS and cloud Security, you play a crucial role in defining and enforcing the security policies and procedures of the organization. With excellent written and verbal communication skills, exceptional organizational abilities, and expert-level proficiency in IT and Cloud Security, you will be responsible for architecting and implementing IT Security policies while reporting to the Director of Information Technology. In this full-time role, your essential duties and responsibilities include providing leadership and technology vision to the IT Security team, performing internal and external security audits, documenting, implementing, and monitoring adherence to IT security standards, as well as assessing and improving security metrics. You will work on enhancing security tools and operations, monitor and manage IDS, vulnerability scanning, and assessments, and serve as the Data Privacy Officer (DPO) for the company. Creating awareness within the company regarding Security, Privacy, and compliance requirements, ensuring security and privacy training for staff involved in data processing, conducting security and privacy audits, and serving as the point of contact between the company and clients for privacy controls are key aspects of your role. Additionally, you will be responsible for log aggregation and analysis, managing Anti-Virus software, addressing security and data breach-related incidents, and ensuring customer satisfaction while being accountable for individual product/project success and quality. To qualify for this position, you must hold certifications such as CISSP, Security+, or equivalent, along with having 10+ years of Cyber Security experience, 5+ years of IT management experience, 5+ years of AWS experience, and 3+ years of experience with Identity & Access Management tools. Your extensive experience with Linux & Windows Security administration, managing Cloud and Container Security, Network and Application penetration testing, vulnerability scanners, IDS, IPS deployment and monitoring, SIEM tools, security automation, incident response & management, vulnerability management, and patch management will be essential. Moreover, your role will involve ensuring organization efficiencies through continual improvement programs, representing the organization in inspections and audits, driving action plans to closure, conducting deep dive RCAs and ensuring CAPAs are closed, and maintaining a metrics-driven approach. Additional qualifications such as experience with monitoring tools like Datadog, Change Management, Configuration Management, Infrastructure as Code tools, hardening Operating Systems and Applications, endpoint security management, working in GxP environments, and familiarity with various practices will be beneficial. With no travel expectations, this role requires a dedicated and experienced professional who can effectively lead security operations and teams, prioritize security and privacy, and drive continuous improvement initiatives to enhance organizational security posture.,

At Accellor, we are a trusted consultant that uses best-of-breed Cloud technology to deliver superior customer engagement and business effectiveness for clients. We bring a deep understanding of various verticals such as Financial, Retail, High Tech, Healthcare, and more. We have created an atmosphere that encourages curiosity, constant learning, and persistence. Our employees are encouraged to grow, explore their interests, and collaborate with autonomy and delegation. We value a strong work ethic, pride, and ownership over work, along with passion, eagerness, and motivation in building solutions while keeping the bigger picture in mind. As a Senior MuleSoft Developer, your responsibilities will include developing and delivering Anypoint Platform-based projects using API-driven design, messaging patterns, and best practices in application development. You should possess skills in software development lifecycle, messaging patterns, endpoint security, interfaces with internal and external applications, and database knowledge. You will lead project development to achieve business objectives and value realization. Your role and responsibilities will involve providing technical consultation based on customer requirements, crafting actionable BRD/FSD (Blueprint), architecting solutions, analyzing integration architecture, transforming business requirements into scalable solutions, guiding implementation teams, designing integration solutions, developing Mule applications, ensuring solution quality, advising on operational concerns, creating reusable assets, adhering to design standards, and supporting integration solutions. Requirements for this position include 10+ years of experience in developing integration solutions, over 5 years of hands-on experience with MuleSoft, expert-level understanding of MuleSoft products, good skills in software development lifecycle, integration experience with AWS API gateways, knowledge of microservices architecture, experience with Anypoint Platform, Flow Design, API Design, Dataweave, CloudHub, Runtime Fabric, API Management, EDI Integration, Salesforce integrations, and more. Familiarity with integration design patterns, Cloud/SaaS applications, APIs, SDKs, and API Gateways is also required. We are seeking candidates comfortable with the CST time zone and holding a B.S. degree in Computer Science, Software Engineering, MIS, or equivalent education and experience. If you are a proactive and experienced MuleSoft Developer looking to contribute to challenging projects and work in a collaborative environment, we encourage you to apply for this position.,

The Security Program Manager in Sydney is responsible for leading and managing the Cybersecurity Landscape for clients, ensuring the successful delivery of all contractual obligations through thought leadership and support of cybersecurity strategy. With a minimum of 8 to 10 years of experience in the Cyber Security domain, the ideal candidate will manage various security tracks within the account, including Identity & Access management, Network Security, Endpoint Security, GRC, and Application Security. In this role, you will drive excellent Customer Satisfaction and NPS by collaborating with clients, partners, employees, and agencies to ensure project success. You will support the development, implementation, and communication of cybersecurity activities and programs, as well as lead the set-up and execution of program events, briefings, and meetings. Moreover, the Security Program Manager will liaise with other teams to identify and leverage opportunities with other programs across the organization. You will be responsible for managing multi-functional team coordination, opportunity screening, benefit/cost analysis, issue resolution, and reporting to ensure SLA compliance, process adherence, and process improvisation to achieve operational objectives. Additionally, you will revise and develop processes to enhance the current Security Operations Framework, review policies, and address challenges in managing SLAs. The role also includes the management, administration, and maintenance of security devices comprising state-of-the-art technologies, as well as serving as the single point of contact with the client's CISO for existing landscape and future requirements by acting as a Security Consultant for the client.,

":" Job Title: L2 SOC Analyst LogRhythm SIEM Location: Mumbai, India Employment Type: Full-Time | Onsite About the Role: We are looking for an experienced L2 SOC Analyst to strengthen our Security Operations Center in Mumbai. The ideal candidate will have 2 to 5 years of hands-on experience in security monitoring and incident analysis, particularly on LogRhythm SIEM. You will be responsible for in-depth analysis, incident investigation, escalation, and coordination with response teams. Key Responsibilities: - Monitor, analyze, and triage security alerts from LogRhythm SIEM and other security platforms - Investigate and validate security incidents with detailed analysis and impact assessment - Conduct threat hunting and advanced log correlation as per SOC playbooks - Respond to incidents as per defined escalation matrix and coordinate with internal/external teams - Perform root cause analysis, recommend containment and mitigation actions - Provide guidance and mentorship to L1 SOC Analysts for escalated incidents - Prepare incident reports, analysis summaries, and dashboards for management - Monitor and report SIEM health, log source integration issues, and tuning requirements - Participate in continuous improvement of detection rules and SOC processes - Work in 24x7 rotational shifts with readiness for critical incident handling Required Skills & Competencies: - 2 to 5 years of SOC operations experience, with a focus on SIEM monitoring and incident handling - Strong hands-on experience with LogRhythm SIEM (Mandatory) - Good understanding of security threats, attack vectors, malware behavior, and common vulnerabilities - Practical experience in analyzing logs from firewalls, IDS/IPS, endpoint security, and cloud platforms - Familiarity with MITRE ATT&CK framework and threat intelligence usage - Strong analytical thinking, incident response capabilities, and problem-solving skills - Good communication skills for incident reporting and escalation Preferred Certifications: - LogRhythm Certified Deployment Engineer (LCDE) or LogRhythm Certified SOC Analyst (LCSA) - Optional - CompTIA Security+, CEH, CySA+, or equivalent security certifications - Any threat hunting or incident response certification is a plus Work Mode: Onsite Mumbai SOC Facility Shift: 24x7 Rotational Shifts (Including Nights and Weekends) ","

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Endpoint Extended Detection and Response Good to have skills : NAMinimum 2 year(s) of experience is required Educational Qualification : 15 years full time education Summary :We are looking for a motivated and skilled Endpoint Security Engineer with 3 plus years of experience in managing and securing endpoints using Microsoft Defender for Endpoint, Symantec Endpoint Protection, and DLP solutions. The ideal candidate will play a critical role in enhancing the security posture of our endpoints across the enterprise. Roles & Responsibilities:- Configure, manage, and monitor Microsoft Defender for Endpoint and Symantec Endpoint Protection.- Implement, manage, and tune Data Loss Prevention (DLP) policies and rules across endpoints and email gateways.- Investigate, analyze, and respond to security alerts and endpoint incidents.- Coordinate with SOC and IT teams for triage and remediation of malware, ransomware, and other endpoint-based threats.- Conduct endpoint vulnerability assessments and patch validation in coordination with vulnerability management teams.- Maintain endpoint protection baselines and enforce policy compliance across user devices.- Generate reports on endpoint protection status, incident trends, and DLP violations.- Ensure continuous improvement of endpoint threat detection and response processes.- Participate in root cause analysis (RCA) of endpoint-related security events. Professional & Technical Skills: -Strong knowledge and hands-on experience with:-Microsoft Defender for Endpoint / Microsoft 365 Defender-Symantec Endpoint Protection (SEP)-DLP solutions (Microsoft Purview DLP, Symantec DLP, or equivalent)-Understanding of endpoint threat vectors, malware, and mitigation techniques.-Familiarity with SIEM tools and EDR workflows.-Basic scripting knowledge (PowerShell, Python, or batch scripting) for automation and investigation tasks.-Strong troubleshooting skills related to endpoint protection agents and policies. Additional Information:- The candidate should have minimum 2 years of experience in Endpoint Extended Detection and Response.- This position is based at our Pune office.- A 15 years full time education is required. Bachelors degree in Cybersecurity, Computer Science, Information Technology, or a related field Preferred certifications:Microsoft SC-200 (Microsoft Security Operations Analyst) ,Symantec Endpoint Protection certification (if available) and CompTIA Security plus. Qualification 15 years full time education