830 Endpoint Security Jobs - Page 20

Must Have Skills Windows Servers | Domain Controllers | Active Directory | Azure Active Directory | Group Policy Enterprise Proxy Solution - Preferably Zscaler or Netskope. Inline CASB, Web DLP. Zero Trust Platform (Zero Trust Application Access / Zero Trust Remote VPN) Privilege Access Management (PIM/PAM) Basics of hardware, networking, IP addressing, VLAN, LAN, WAN, MPLS Endpoint Security Management. Preferably EDR/XDR CS Falcon, Sentinel One, MS Defender for Endpoint, DLP, ATP, Web Security. Good in Soft skills, logical and analytical thinking, troubleshooting and problem management, ticketing systems, SLA Management, Good to have Azure information protection Microsoft Enterprise Mobility and Security Office 365 Security administration Cloud Computing Basics with Azure / AWS Security administration Web Application Firewall management. Qualifications Basic Graduation and Proficiency in technology areas mentioned. Professional Certifications would be an added advantage. Qualifications Basic Graduation and Proficiency in technology areas mentioned. Professional Certifications would be an added advantage. Additional Information 100% Work from Office (24 X7) Rotational shifts Current office location is Vikhroli however team will move to Thane (GB) in few months Job Location

Who We Are At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward – always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities. The Role Are you a tech-savvy problem-solver with a passion for ensuring optimal network performance? If so, look no further – Kyndryl is seeking a Security Support Specialist who will be the go-to expert for installing, maintaining, and troubleshooting computer networks. As our Security Support Specialist, you'll be working in a complex, multi-vendor environment, and will use your analytical skills to identify and resolve network issues, make configuration changes, and implement security policies. This role requires someone who can think on their feet, test and apply corrective actions (including emergency changes), and participate in change reviews as needed. And with the ever-changing nature of technology, you'll be constantly learning and growing in your role. You will work alongside a talented team of experts to plan and execute routine network changes, troubleshoot and solve network issues and outages, and maintain excellent communication with our end customers, project managers, and service engineers. You’ll be responsible for maintaining network components, monitoring network performance, and maintaining network security. You will also be providing user support for network-related issues, ensuring that our customers receive the highest level of support possible. If you're ready to take on a fast-paced and rewarding role in the world of network support, apply to join the Kyndryl team today! Key Responsibilities: Integrate firewall solutions with SIEM, IDS/IPS, endpoint protection, and cloud security tools Monitor network performance and security systems, responding to security incidents and conducting root cause analysis Investigate and respond to security breaches, malware infections, and intrusion attempts and Major incident handling Configure and manage EDR and XDR solutions, enterprise antivirus solutions (such as TrendMicro, CrowdStrike, or similar), Web Application Firewalls (WAF) in on-premises and cloud environments & NAC for wired, wireless, and VPN network access control. Monitor and analyze security alerts, logs, and reports for malware infections and security incidents install and uninstall endpoint security solutions Implement network virtualization, micro-segmentation, distributed firewalling (DFW). Design and implement .1X authentication, MAB (MAC Authentication Bypass), posture assessment, and profiling policies Understanding of PKI, certificate-based authentication, endpoint profiling, and device posture assessment Configure, and manage Arcon PAM solutions to secure privileged accounts and sensitive data across the organization, troubleshoot PAM issues. Implement and optimize web filtering policies, SSL decryption, and content inspection Configure DLP rules, keyword detection, fingerprinting, and machine learning-based policies Monitor and analyze DLP alerts, incidents, and logs for potential data breaches or policy violations. Your Future at Kyndryl Every position at Kyndryl offers a way forward to grow your career, from Junior Administrator to Architect. We have training and upskilling programs that you won’t find anywhere else, including hands-on experience, learning opportunities, and the chance to certify in all four major platforms. One of the benefits of Kyndryl is that we work with customers in a variety of industries, from banking to retail. Whether you want to broaden your knowledge base or narrow your scope and specialize in a specific sector, you can find your opportunity here. Who You Are You’re good at what you do and possess the required experience to prove it. However, equally as important – you have a growth mindset; keen to drive your own personal and professional development. You are customer-focused – someone who prioritizes customer success in their work. And finally, you’re open and borderless – naturally inclusive in how you work with others. Required Technical and Professional Expertise Strong knowledge of network security, endpoint security Experience in cybersecurity, SOC, or security engineering roles. 12+ years of Total IT experience. Hands-on experience with SDWAN, PaloAlto , FortiGate and Checkpoint. Implement and maintain VPNs, IPSec tunnels, and SSL VPNs using Palo Alto and FortiGate technologies Proficiency in routing protocols BGP, OSPFConfigure proxy and network access control (NAC) solutions Hands-on experience with FortiManager, and FortiAnalyzerCreate and Perform firmware upgrades, patches, and routine maintenance on firewalls. Hands-on experience with WAF, IBM DAM, IBM GDE, Forcepoint Proxy, DLP, Email Gateway. Preferred Technical and Professional Experience Experience with DAM solutions such as IBM Guardium. BSc. B.E./B. Tech, M.E. /M. Tech Ability to monitor and audit database activities for unauthorized access and suspicious activities & Experience with Thales Cipher Trust. Understanding of key management solutions (KMS) and Hardware Security Modules (HSMs). Troubleshoot and optimize NSX networking components, including VXLAN, Overlay, Edge Services Gateway (ESG), and Distributed Logical Routers (DLR) Configure NSX Security Policies, NAT, VPN, Load Balancing, and Firewall rules Expertise in NSX-T components such as Transport Zones, Edge Nodes, and T0/T1 Gateways. Certifications (Preferred, but not Mandatory): Network Virtualization (VCTA-NV) , Forcepoint DLP, Web Security Administrator Certification , CEH , CompTIA Security+ Being You Diversity is a whole lot more than what we look like or where we come from, it’s how we think and who we are. We welcome people of all cultures, backgrounds, and experiences. But we’re not doing it single-handily: Our Kyndryl Inclusion Networks are only one of many ways we create a workplace where all Kyndryls can find and provide support and advice. This dedication to welcoming everyone into our company means that Kyndryl gives you – and everyone next to you – the ability to bring your whole self to work, individually and collectively, and support the activation of our equitable culture. That’s the Kyndryl Way. What You Can Expect With state-of-the-art resources and Fortune 100 clients, every day is an opportunity to innovate, build new capabilities, new relationships, new processes, and new value. Kyndryl cares about your well-being and prides itself on offering benefits that give you choice, reflect the diversity of our employees and support you and your family through the moments that matter – wherever you are in your life journey. Our employee learning programs give you access to the best learning in the industry to receive certifications, including Microsoft, Google, Amazon, Skillsoft, and many more. Through our company-wide volunteering and giving platform, you can donate, start fundraisers, volunteer, and search over 2 million non-profit organizations. At Kyndryl, we invest heavily in you, we want you to succeed so that together, we will all succeed. Get Referred! If you know someone that works at Kyndryl, when asked ‘How Did You Hear About Us’ during the application process, select ‘Employee Referral’ and enter your contact's Kyndryl email address.

Job Description . Lead with consultative customer conversations and proactively identify cyber security sales opportunities in company's existing account base & new accounts. • Own, develop and execute all areas of the sales cycle for cyber security opportunities. • Understand and map customer business objectives, IT strategy, technical and commercial requirements to relevant technology solutions. • Clearly articulate how security solutions can deliver customer business value. • Collaborate with cross-functional teams like coverage, pre-sales, delivery teams etc. for overall success of business. • Contribute to the development and growth of the company's cyber security proposition. Requirements Minimum of bachelor's degree in engineering and MBA or equivalent Minimum 5+ Years of experience managing sales of cybersecurity solutions across OEM or Systems Integration organizations. Existing relationships with CIO/CISO/Security decision-makers and with key cybersecurity OEMs Ability to develop strategy, be creative, have technical aptitude, solve problems, and adapt. Enthusiastic and self-motivated. Excellent interpersonal, verbal and written communication skills

SCCM Company: - Crayon Software Experts India Private Limited Role: - Solution Delivery Architect Location: Delhi NCR (Noida & Gurgaon) We are looking for a Cloud Solution Engineer who has a passion for cloud with knowledge of different environments SCCM, Intune, Defender for Endpoint Ideal candidates should have technical experience in SCCM & Active Directory and the ability to help customers get value. Installing, configuring, and maintaining the SCCM environment, including the central administration site, primary sites, and distribution points Managing software updates, including planning, and implementing software update groups and packages Monitoring the health and performance of the SCCM environment, troubleshooting issues, and providing technical support to Customer Developing and implementing SCCM processes and procedures to ensure the stability and security of the environment. Creating and maintaining SCCM reports, queries, and collections to support reporting and compliance requirements. Automating software deployment and distribution using SCCM, including scripting and creating custom packages and tasks sequences Ability to analyse and solve complex problems in a fast-paced environment. Excellent communication and interpersonal skills, including the ability to collaborate effectively with cross-functional teams. Good Understanding of TCP/IP and other networking services: DNS, WINS, DHCP, Routing. Understanding of WMI and familiarity with WQL Queries Well verse knowledge for Microsoft Endpoint Manager (Intune) Managing the Co-Management , Tenant Attach with Microsoft Endpoint Manager Key Skills : Windows Active Directory, Microsoft Endpoint Configuration Manager, DHCP Server, DNS Server, Microsoft Azure Active Directory, Microsoft Intune, Application Packaging, Patch Management, Troubleshooting Eligibility Total work experience from 3 - 10 years Relevant Experience: 5 + Years with Active directory, SCCM, Intune 3+ years of customer interaction in a consultant, technical delivery Nice to Have Active Directory migration projects including, ADMT migrations, AD LDS, and 3rd Party tools. SAML 2.0 and cloud SSO providers such as Azure AD Premium, Okta, or ADFS Defender for Endpoint Enterprise Mobility & Security (EM+S) Professional Certifications MS 100, MS 101, MD 100, MD 101, 70-703

Location: Bangalore, Mumbai, Gurgaon, Noida, Key Responsibilities: Design, configure, and fine-tune Data Loss Prevention (DLP) policies and rules. Manage DLP incidents from detection through investigation and resolution. Conduct continuous monitoring and analysis of DLP alerts and system performance. Collaborate with clients to understand their data protection needs and implement effective DLP solutions. Provide expertise in DLP technologies and best practices. Develop and maintain documentation related to DLP configurations and procedures. Required Skills & Qualifications: Bachelor's or Master's degree in Computer Science, Information Systems, or a relevant field. Overall Experience: 6-8 years in Information Security, with 4-7 years specifically in Data Security, Privacy, and Information Security roles. DLP Experience: Hands-on experience (2-3 years) in managing privacy and data protection programs or providing consulting services in these areas. Technical Proficiency: Proven hands-on experience with leading DLP tools and technologies such as Symantec DLP, Forcepoint DLP, Microsoft Information Protection, and Microsoft Purview. Policy Management: Expertise in DLP policy configuration, incident monitoring, investigation, and resolution. Regulatory Knowledge: Strong understanding of relevant legal and regulatory requirements, including IT Act 2000, GDPR, BS10012, India's Data Protection Act, DADP Act, and other country-specific data protection acts (especially across Middle East Countries). Communication: Excellent written and verbal communication skills, strong interpersonal and collaborative abilities, and the capacity to articulate privacy, security, and risk concepts to both technical and non-technical audiences. Analytical & Project Management Skills: Exhibit excellent analytical skills, the ability to manage multiple projects under strict timelines, and thrive in a demanding, dynamic environment. Demonstrated project management skills, including scheduling and resource management. Discretion: Ability to handle sensitive information with utmost discretion and professionalism. Certifications: Required: Certified Information Systems Security Professional (CISSP), Certified Information Privacy Professional (CIPP). Good to have: Certified Data Privacy Solutions Engineer (CDPSE), Certified Information Security Manager (CISM), Certified Ethical Hacker (CEH).

Role & responsibilities A Microsoft Defender implementation job description typically involves configuring, deploying, and managing Microsoft Defender solutions, including Defender for Endpoint and other related products, to enhance endpoint security and threat detection capabilities Location - PAN India

We are seeking a passionate and skilled M365 L1 Support Engineer to join our team. As a Level 1 Support Engineer, you will be responsible for providing advanced support for Microsoft 365 services, ensuring seamless operation and security of our clients environments. You will collaborate with clients and internal teams to resolve issues, implement solutions, and maintain a high level of service excellence. Key Responsibilities: Technical Support: Provide Level 1 support for Microsoft 365 services, including Office, Intune, Entra ID, Defender for Office, and Endpoint Security. Office Applications: Knowledge of Office applications, assisting users with Outlook, Word, Excel, PowerPoint, and other Office apps. Intune Management: Configure, deploy, and manage mobile devices and applications using Microsoft Intune, ensuring compliance and security. Entra ID Management: Handle user identities and access management through Entra ID, supporting MFA and SSO solutions. Defender Security: Implement and manage Defender for Office and Endpoint to protect against threats and vulnerabilities, monitoring security alerts. Documentation: Maintain comprehensive documentation of configurations, processes, and troubleshooting steps. Customer Service: Deliver exceptional customer service by effectively communicating with clients and addressing their needs promptly. Collaboration: Work closely with other team members and departments to ensure seamless integration and operation of M365 services. Key Skills and Qualifications: Microsoft 365 Expertise: Strong understanding of Microsoft 365 services, including Office, Intune, Entra ID, Defender for Office, and Endpoint Security. Office Applications: Knowledge of Office applications and providing user support. Intune Management: Proficiency in configuring and managing Intune for mobile device and application management. Entra ID Knowledge: Familiarity with user identity and access management using Entra ID. Security Solutions: Experience with Defender for Office and Endpoint Security. Technical Support: Excellent troubleshooting skills and the ability to resolve complex technical issues. Communication: Strong verbal and written communication skills. Customer Focus: Commitment to providing exceptional customer service and addressing client needs. Documentation: Ability to create and maintain clear and concise documentation. Preferred Qualifications: Relevant certifications such as Microsoft 365 Certified: Modern Desktop Administrator Associate or similar. Experience with other Microsoft technologies, such as SharePoint, Teams, or Power Platform. Familiarity with PowerShell scripting for automation.

Flipkart is looking for Senior Security Engineer - Cyber Defense to join our dynamic team and embark on a rewarding career journey Analyzing customer needs to determine appropriate solutions for complex technical issues Creating technical diagrams, flowcharts, formulas, and other written documentation to support projects Providing guidance to junior engineers on projects within their areas of expertise Conducting research on new technologies and products in order to recommend improvements to current processes Developing designs for new products or systems based on customer specifications Researching existing technologies to determine how they could be applied in new ways to solve problems Reviewing existing products or concepts to ensure compliance with industry standards, regulations, and company policies Preparing proposals for new projects, identifying potential problems, and proposing solutions Estimating costs and scheduling requirements for projects and evaluating results

Job Summary: The Junior End User Computing (EUC) Support is responsible for leading and managing the team that delivers high-quality support and services for all end-user computing needs across the organization. This role ensures smooth operation, high availability, and a user-focused approach to EUC services, including desktops, laptops, mobile devices, virtual desktop infrastructure (VDI), and collaboration tools. 10 years Exp Key Responsibilities: Service Delivery Oversee day-to-day operations of EUC support across global/regional offices. Ensure timely resolution of incidents, service requests, and escalations. Manage software and hardware lifecycles, including procurement, deployment, and decommissioning. Technology & Tools Management Drive improvements in endpoint management (SCCM, Intune, Manage Engine, etc.). Maintain and evolve compliance tools platforms and endpoint security measures. Standardize EUC environments to reduce complexity and improve user experience. Stakeholder Management Act as the point of contact for senior stakeholders regarding EUC support. Regularly review service feedback and identify opportunities for improvement. Manage vendor relationships and service contracts related to EUC tools and services. Manage client escalations and have regular connect with the client. Daily, Weekly, Monthly and Quarterly review with client. Preferred Certifications (Optional): ITIL v4 Foundation / Intermediate Microsoft 365 Certified: Modern Desktop Administrator Associate

Position - Key Account Manager Location - Gurgaon/Gurugram Experience - 5+ Years Any Graduates / MBA in Sales/Marketing management will be preferred. Job description Work Experience 5+ Years in Industry IT Services Responsible for the incremental revenue growth on both IT product and services offerings. Hands on experience with any UEM, VDI, Cyber Security, Data Center, Cloud Service sales, IT Infrastructure sales and working with OEM clients. Work closely with OEM Account Managers in designated accounts and workout winning strategy. Protecting the Existing Revenue Stream from Competition & Downward Tariff Revision. Achieve monthly, quarterly, and annual revenue targets for IT hardware, peripherals, IT services, and software solutions. Facilitating Collections Team to ensure timely payments and reduction in bad debts Manages detailed Account dossier and updates periodically. Adhere and comply to all processes and systems of organization. Encourage an atmosphere of trust, openness and communication and an attitude based on working together and shared objectives Interested candidates can apply on *divya.b@sofomation.com*

Job Role : Cyber Security Engineer--Work From Office Experience : 4 to 8 Yrs Key Skills: Security tools integration and management, Onboarding, Log ingestion, writing rules and polices in Cloud Security/SIEM/EDR/Antivirus/XDR/Firewall/MDR/SOAR tool Notice Period : 0 to 30 days Should be willing to work in Second shift Company: Cyber Towers, Quadrant 3, 3rd floor, Madhapur, Hyderabad -- 500081. Job Overview: They plan, implement, and maintain security measures, respond to security incidents, and identify vulnerabilities. Their roles vary depending on the specific area of security, such as network, application, or cloud security. Here's a more detailed breakdown of their responsibilities: Security Planning and Implementation: Designing and implementing security controls: This includes firewalls, intrusion detection systems, and access control mechanisms. Developing security policies and procedures: Establishing guidelines for secure operations and data handling. Performing risk assessments: Identifying potential vulnerabilities and threats. Implementing security tools and technologies: Integrating security software and hardware into the organization's infrastructure. Analyze and recommend improvements to network, system, and application architectures to enhance security. Research, design, and implement cybersecurity solutions that protect the organizations systems and products. Collaborate with DevOps, Platform Engineering, and Architecture teams to ensure security is embedded in the design and development of applications and systems. Actively participate in the change management process, ensuring security considerations are prioritized in system upgrades and modifications. Design and deploy automated security controls to improve efficiency in risk identification, configuration management, and security assessments. Develop and refine security policies to address cloud security misconfigurations, leveraging cloud-native security technologies. Implement logging and monitoring solutions for cloud environments to enhance SOC team capabilities in detecting and responding to security incidents. Assess and review emerging technologies to identify potential security risks and implement mitigation strategies. Design and deploy innovative security technologies to address evolving security challenges. Conduct vulnerability scanning, anomaly detection, and risk assessment to enhance the security posture. Work closely with security architects to develop and deploy security solutions that address cloud-specific risks. Take ownership of security posture improvements, ensuring strict security policies and controls align with business objectives. Research and stay up to date on emerging security threats and provide strategic recommendations to strengthen security defenses. Qualifications & experience: Hands-on experience with implementing security controls, including Database security, Web content filtering, Anomaly detection & response, Vulnerability scanning & management Proficiency in at least one scripting language (e.g., Perl, Python, PowerShell, Bash) for automation and security tooling. Expertise in at least one of the following security domains: Cloud-native security (e.g., IAM, security groups, encryption), Endpoint security (e.g., EDR/XDR, mobile security) Strong familiarity with industry security frameworks and regulations, including: NIST Cybersecurity Framework (CSF) , CIS Controls, HIPAA, GDPR compliance Ability to assess compliance requirements and implement security controls to ensure adherence. Strong problem-solving and analytical skills, with the ability to assess complex security risks and develop mitigation strategies. Excellent communication and interpersonal skills, with the ability to engage both technical and non-technical stakeholders. Proven ability to work independently, manage projects, and contribute as an integral part of a high-performing security team.

Customer Engagement Solution Designing Solution Presentation Collaboration Industry Insights CISCO networking Provide insights to improve service offerings and drive innovation.

Cloud Engineer II (Security+M365) Shift-24*7(Rotational shift) strong focus on Microsoft 365, Purview, Microsoft Entra, and Defender. About the team: Our team consists of skilled and experienced professionals who are committed to delivering high-quality work in cloud migration, DevOps, FinOps, datacenter migrations, AD migration and Infrastructure security across multi-cloud. Engage with clients to understand their business objectives and technical requirements. Strong understanding of cloud security frameworks and architectures. Collaborate with development, operations, and security teams to ensure seamless integration and deployment of cloud services. Be AmbITious: This opportunity is not just about what you do today but also about where you can go tomorrow. When you bring your hunger, heart, and harmony to Insight, your potential will be met with continuous opportunities to upskill, earn promotions, and elevate your career. Desired Candidate Profile Engage with clients to understand their business objectives and technical requirements. Minimum of 3-5+ years of experience in cloud engineering and consulting, with a strong focus on Security services including Microsoft Purview and Defender. Hands-on experience with Microsoft Purview for data governance, compliance, and information protection. Hands-on experience with Microsoft Defender for Endpoint for security threat detection and remediation. Strong knowledge of Microsoft Defender Suite including Defender for Office 365, Identity, and Endpoint. Expertise in Office 365 Security & Compliance Center for threat management and incident response. Experience implementing Endpoint Security solutions across hybrid environments. Ability to design and enforce security policies aligned with organizational risk and compliance goals. Strong understanding of cloud security frameworks and architectures. Collaborate with development, operations, and security teams to ensure seamless integration and deployment of cloud services. Understanding of Zero Trust security models and their application within modern workplace solutions. Monitor and optimize cloud performance, cost, and security. Stay up to date with the latest cloud services, features, and best practices. Excellent problem-solving skills and attention to detail. Knowledge and experience working with ServiceNow and the ITIL Service Management Framework. Qualifications: Bachelors degree in computer science, Information Technology, or a related field. Minimum of 3-5 years of experience in cloud engineering and consulting, with a strong focus on Microsoft 365, Purview, Microsoft Entra, and Defender. Exceptional problem-solving skills and strategic thinking abilities. Excellent communication and interpersonal skills, with the ability to articulate complex technical concepts to diverse audiences. Relevant certifications such as Microsoft Certified: Implement Information Protection in Microsoft 365 are highly desirable Behavioral Skills Email Communication, Presentation, Public Speaking Strategic Thinking, Transactions Processing, Planning Analytical Thinking, Scientific Temperament Interpersonal Skills, Nurturing Relationships Customer Service Orientation, Business Appreciation About Insight: Founded in 1988, Insight is headquartered in Chandler, Arizona, USA and has more and has more than 13000+ Teammates worldwide with global presence in Canada, United Kingdom, Germany, Australia, India, Singapore and many more. With offices in the prime location -Gurgaon, Noida and Bangalore we have 1000+ teammates operating from India. As a Fortune 500-ranked global provider of Digital Innovation, Cloud Data Center Transformation and Supply Chain Optimization solutions and services, we help clients successfully manage their IT today while transforming for tomorrow, recognized for its excellence. Insight is an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, sexual orientation or any other characteristic protected by law. Today's talent leads tomorrow's success. Learn about careers at Insight: https://www.insight.com/en_US/careers/india.html

Scope of Position: The Senior Analyst for Cybersecurity will perform data analysis, incident response, investigative analysis, and research on existing and emerging cyber threats, particularly those directed against the company's global networks. You will be charged with part of leading the maturation and optimization of our EDR capability through the development of custom content that focuses on threat actor TTPs and reduces false positives. You will be expected to "think like an adversary" and engage in threat hunting operations leveraging your understanding of the tactics, techniques and procedures employed by advanced threats combined with intelligence from multiple sources and provide reporting and briefings to other teams and leadership to maintain appropriate levels of situational awareness. RESPONSIBILITIES: Review and build host-based detection content in EDR solutions such as Sentinel One, Microsoft Defender and other leading vendors. Perform network traffic analysis utilizing raw packet data, net flow, IDS, and custom sensor output and mentor cyber analysts. Leverage understanding of tactics, techniques and procedures associated with advanced threats to create and evolve custom detections that mitigate highly dynamic threats to the enterprise. Proactively research advanced and emerging cyber threats, and apply analytical understanding of attacker methodologies, system vulnerabilities, and key indicators of attacks and exploits in threat hunting efforts Execute as needed in each of the six phases of incident response: Preparation, Identification, Containment, Eradication, Recovery, and Lessons Learned Collaborate using information and knowledge sharing networks and professional relationships. Education and Experience: Bachelor's degree and 5+ years of threat analysis and/or incident response experience - additional years of relevant experience may be considered in lieu of Bachelor's degree Relevant certifications (CISSP, SANS GIAC, CEH, etc.) REQUIREMENTS: Threat analysis and/or incident response experience Understanding of cyber threat models, including ATT&CK, Cyber Kill Chain, Racetrack, Diamond Model, etc. Experience working with EDR tools Experience with a SIEM-type platform Experience performing analysis and correlation of log data and forensic artifacts from multiple sources. Must be proficient, verbally and in writing with the English language.

OT Cybersecurity Engineer for Digital Industries Customer Services, India About Siemens Accelerating transformation for industries For us, it all starts and ends with our customers. Maximizing value for them is what drives us! Combining the real world of automation with the digital world of information technology opens up completely new possibilities for our customers in all industries, empowering them to make better decisions and enable them to accelerate their transformation to become a Digital Enterprise. With our unique portfolio, we can make a decisive contribution to sustainable industrial innovation- transforming the everyday and creating a better tomorrow for societies and people around the world. Cybersecurity for Industry We give Cybersecurity for Industry the highest priority in successful digitalization, so we place it at the center of our development of innovative products, solutions, and services. We rely on the multilayer Defense in Depth concept strengthened by Zero Trust principles. This ensures reliable and always up-to-date protection on all levels, thanks to three pillars- plant security, network security, and system integrity- including Industrial Cybersecurity Services. At Digital Industries we create and implement digital manufacturing concepts for our vertical customer based on the Digital Enterprise software suite, TIA, MindSphere, Industrial Edge and Industrial cybersecurity offerings from Digital Industries. Are you passionate about safeguarding critical infrastructure and ensuring the security of industrial control systemsJoin our team as a Cybersecurity Engineer and play a pivotal role in protecting our ICS and SIS systems, networks, and information. Key Responsibilities: Security MeasuresEngineer, implement, and monitor robust security measures to protect ICS and SIS systems, related networks, and sensitive information. System Security Identify and define system security requirements to ensure comprehensive protection. Security ArchitectureDesign and develop detailed cybersecurity architectures and designs, adhering to industry-standard blueprints and best practices. Implementing Backup Solutions and ManagementImplement and manage system backup technologies like Acronis, Veritas, Veeam and other providers, overseeing installation and deployment. Threat Detection and Vulnerability monitoringImplement solution like Claroty or Nozomi at ICS for the customers. Installing remediation to risk score for the customer. Endpoint SecurityDeploy and manage endpoint security and application control solutions from providers like McAfee, as well as SIEM solutions such as McAfee, Splunk, and Q-radar etc. Network SecurityImplement and manage network-based firewalls (e.g., Siemens, Fortinet, Palo Alto, CISCO), network troubleshooting, and intrusion detection products. Network ManagementInstall and manage network management solutions like SiNEC NMS, SolarWinds, WhatsUp Gold etc. Firmware UpdatesConduct firmware updates for various automation control systems, switches, and firewalls. Domain Controller ConfigurationConfigure and deploy domain controller settings and policies to defined computer groups as per approved list for ICS. Host-Based SecurityImplement host-based security technologies, including antivirus, data leakage prevention, host IPS, whitelisting, and anomaly detection. Installation and TestingPerform installation, configuration, and testing activities at both factory and customer sites, with experience in Factory Acceptance Testing (FAT) and Site Acceptance Testing (SAT). DocumentationPrepare comprehensive system documentation, including functional design specifications, backup systems documentation, firewall configurations, network diagrams, system architectures, asset inventory, FAT and SAT procedures, and operation & maintenance manuals. Experience 5 to 6 years of experience in working for OT Security systems design, implementation and consulting with at least some experience in industrial automation systems design. Proven experience in cybersecurity, particularly in ICS. Strong understanding of cybersecurity principles and best practices. Proficiency in managing backup technologies, endpoint security, SIEM solutions, and network-based firewalls. Hands-on experience with network management solutions and firmware updates. Ability to configure domain controllers and implement host-based security technologies. Excellent documentation skills and experience with FAT and SAT procedures. Education o Bachelors degree in engineering (Electrical Engineering, Computer Engineering, or related field). A degree in Cybersecurity is preferred. o Valid certification in OT security (e.g., CISSP, GICSP, OSCP) would be additional advantage. Business Travel You will be in the delivery and implementation team and hence should be willing to travel and experience various manufacturing sites across India

Expertise on Endpoint Security as in DLP, AV, EDR/EPP solutions Experience with EDR tools (e.g., SentinelOne, CrowdStrike) and anti-virus/anti-malware solutions. Proficiency in analyzing and mitigating endpoint security threats and managing endpoint protection policies. SIEM and Incident ResponseHands-on experience with SIEM platforms (e.g., Splunk, QRadar, Microsoft Sentinel). Strong skills in incident response, threat hunting, and forensic investigation. Access and Identity ManagementFamiliarity with IAM concepts and tools, including MFA and SSO solutions. Experience with configuring and troubleshooting access control for network and endpoint systems. Automation and ScriptingBasic scripting abilities (e.g., Python, PowerShell) for automating security processes. Excellent analytical and problem-solving skills. Effective communication skills for interacting with team members and stakeholders. Ability to work in a fast-paced environment and handle high-stakes incidents. Certifications (Preferred) CompTIA Security+, Cisco CCNA Security, Certified Ethical Hacker (CEH), or other relevant security certifications. Required education Bachelor's Degree Preferred education Bachelor's Degree Required technical and professional expertise 10 years of experience in security & infrastructure administration Experience on any Products for Implementation & Operations in SIEM, Nessus, CEH, Qualys guard, Vulnerability Assessment and Penetration Testing, Network Security, Web Application Expertise of handling industry standard risk, governance and security standard methodologies and incident response processes (detection, triage, incident analysis, remediation and reporting). have shown attention to detail and interpersonal skills and expertise to oversee input and develop relevant metrics and Competence with Microsoft Office, e.g. Word, Presentation, Excel, Visio, etc Preferred technical and professional experience Ability to multitask and work independently with minimal direction and maximum accountability. One or more security certifications. (CEH, Security+, GSEC, GCIH, etc).

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Endpoint Extended Detection and Response Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :We are seeking a skilled and detail-oriented CrowdStrike Endpoint Security Administrator to manage, maintain, and optimize our deployment of CrowdStrike Falcon. This role involves operational administration of the platform, proactive threat detection, and ensuring endpoint security across the enterprise. Roles & Responsibilities:-Administer and manage the CrowdStrike Falcon platform including configuration, tuning, and policy management.-Monitor alerts and dashboards for suspicious activity and work with incident response teams as needed.-Deploy and upgrade CrowdStrike agents across Windows, macOS, and Linux systems.-Create and maintain documentation for policies, procedures, and system configurations.-Integrate CrowdStrike with SIEMs, ticketing systems, and other security tools.-Perform regular audits and health checks to ensure endpoint coverage and compliance.-Respond to endpoint-related security incidents and assist with forensic investigations.-Collaborate with IT teams to ensure secure configuration and patch management across endpoints.-Hands-on experience with CrowdStrike Falcon (policy management, sensor deployment, event analysis).-Familiarity with EDR/XDR concepts and tools. Professional & Technical Skills: - Must To Have Skills: Proficiency in Endpoint Extended Detection and Response.- Strong understanding of cloud security principles and best practices.- Experience with security frameworks such as NIST, ISO 27001, or CIS.- Familiarity with incident response and threat hunting methodologies.- Knowledge of compliance requirements related to cloud security. Additional Information:- The candidate should have minimum 5 years of experience in Endpoint Extended Detection and Response.- This position is based at our Bengaluru office.- A 15 years full time education is required. Qualification 15 years full time education

Analyze and triage security incidents to determine their severity and impact on Infrastructure systems. Primary point of contact for Cyber Security Incident response in the Cyber Security Escalations team. Provide a first point of contact for L3 security escalations from the SOC team, ensuring a thorough review, escalation Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional expertise Conduct in-depth analysis of security events, collaborating directly with different stakeholders to escalate and thoroughly investigate incidents. Participate in Security Incident Response Team in the identification, containment, eradication, and resolution of security issues, This involves understanding the scope, impact, and root cause of incidents to tailor the response effectively, Collaborate with SOC teams to ensure effective incident response and continuous improvement. Assist in the development and refinement of SOC processes, procedures, and playbooks, Create and maintain incident reports, documenting findings, actions taken, and lessons learned Preferred technical and professional experience Stay current with emerging threats, vulnerabilities, and security technologies to proactively protect the organization. Notify Client of incident and required mitigation works. Track and update incidents and requests based on client’s updates and analysis results. Good understanding on Phishing email analysis and their terminologies Having knowledge on EDR solutions (Preferred CrowdStrike), Participate in regular SOC team meetings and provide input on improving security posture. Communicate vertically and horizontally to keep stakeholders informed and involved on Security Operations matters

We are looking for a skilled professional with 6-9 years of experience to join our team as an SIEM specialist. The ideal candidate will have a strong background in security information and event management. Roles and Responsibility Design, implement, and manage SIEM systems to ensure the security and integrity of our organization's data. Develop and maintain dashboards and reports to provide insights into security threats and trends. Collaborate with cross-functional teams to identify and mitigate potential security risks. Conduct regular vulnerability assessments and penetration testing to identify weaknesses. Analyze log files and system logs to detect anomalies and suspicious activity. Develop and enforce security policies and procedures to ensure compliance with industry standards. Job Requirements Strong understanding of security principles and technologies such as firewalls, intrusion detection systems, and encryption. Experience with SIEM tools such as Splunk, LogRhythm, or QRadar. Excellent analytical and problem-solving skills with attention to detail. Ability to work effectively in a fast-paced environment and meet deadlines. Strong communication and collaboration skills to work with technical and non-technical stakeholders. Familiarity with industry standards and regulations related to security such as HIPAA, PCI-DSS, or NIST.

We have immediate openings forSenior Systems Administrator Engineer JD: Senior Systems Administrator Engineer 7+ years of SCCM and Intune administration experience managing endpoints Clear understanding on Client Health indicators for enterprise agents such as Microsofts SCCM, Intune, Defender Antivirus, etc. Solid troubleshooting skills to identify issues related to infrastructure functionality in regard to software installations, inventory gathering and how it all flows with the diverse set of infrastructure server points for both SCCM and Intune. Analyze and plan security, OS Rollup and third-party Patches deployments based on Service Level Agreements (SLA). Ability to resolve packages, patches, and service packs issues on distribution points. Troubleshoot and resolve SCCM management point policy issues and package/patches deployment failures. Extensive experience in troubleshooting Microsoft Defender Antivirus and Microsoft Defender for Endpoint services, policies, and other endpoint protection security software

Immediate Openings on# VDI Admin _Panindia_Contract : 10+ Years : VDI Admin : Panindia Period: Immediate. Type: Contract Description Citrix VDI AWS Workspaces Azure VDS Windows patching experience working with and trouble shooting end user issues. Common tools like SCCM, McAfee, MS Defender Experience with CICD or automation will be added advantage

Primary Skills: ITSM, Change Manager Service Management, ITIL experience Secondary Skills : Knowledge of Aws/GCP/Azure would be an added advantage. Any experience of development work using ServiceNow, JAVA, SQL or REST APIs will be added advantage. JD : Support Service Continuity NFRs (Non Functional Requirement) as part of service onboarding process. Manage complex project scenarios and first level escalations. Conduct governance checks for ACTIVE services of multiple regions. Lead IBMi Data Centre Loss Role swap co-ordination for multiple regions. Support PMs & IT Service Owners of all major regions Globally (Europe, North America, Canada, APAC) across multiple lines of business within HSBC on service resilience (continuity) queries. Chair meetings with PMs/ITSOs/Project Teams in relation to NFR process and procedures. Understand and execute Service Resilience policies and procedures in accordance to FIM requirements. Adhere to teams operating model and deliver as per delivery quality parameters of the team. Participate in UAT testing for changes in Scott system. Propose and lead ideas for process improvement and/or automation. Collaboratively work with India and other regional team members. Essential Experience Excellent Verbal and written communication skills Must be able to confidently hold discussions with managers without getting pressurized. Willing to work in rotational shifts (Night shifts are generally not exceeding one week per month) Have analytical and self-driven approach A good team player with the ability to work under pressure Flexible enough to stretch self as per work requirement ITIL Foundation certified Prior experience of working in Service Resilience (Continuity) area would be an added advantage Prior experience of working in large organization with infrastructure in all major global regions would be an added advantage Knowledge of Aws/GCP/Azure would be an added advantage. Any experience of development work using ServiceNow, JAVA, SQL or REST APIs will be added advantage. Location- Chandigarh,Dadra & Nagar Haveli,Jammu,Lakshadweep,Nagar,New Delhi,Puducherry,Pune,Daman,Diu,Goa,Haveli,Sikkim

#Notice Period: Immediate . #Employment Type Contract Citrix VDI AWS Workspaces Azure VDS Windows patching experience working with and trouble shooting end user issues. Common tools like SCCM, McAfee, MS Defender Experience with CICD or automation will be added advantage.

Notice Period Immediate Employment TypeContract Must to have: Experienced in design and/or deployment of Security solutions based on Cisco NG Firewall (ASA and NGFW). Good documentation skills on Microsoft Word templates for design, implementation and migration plan. Good to have Competent experience the network security technologiestraditional firewalls, Next generation firewalls, VPNs, AAA, Cloud Security, Email Security, Endpoint Security, SIEM, etc. Excellent understanding in a wide range of Security protocols including TCP/IP, encryption protocols, application layer protocols, network & link layer protocols, device & network management protocols

Implement and manage Data Loss Prevention (DLP) strategies to protect sensitive data. You will configure and maintain DLP solutions to prevent data leaks across endpoints and networks. Expertise in DLP tools is required.