115 Incident Analysis Jobs

As a Cyber Security Incident Response Handler at FlexibleIR in Mumbai, you will play a crucial role in defending India's largest Critical Infrastructure companies against major Cyber attacks and ensuring overall Crisis Management for the organization. **Key Responsibilities:** - Monitor, detect, and respond to cyber security incidents - Conduct real-time incident analysis and ensure timely response to threats - Manage security tools and platforms effectively - Develop and update incident response playbooks for various cyber attack scenarios - Coordinate with internal teams to mitigate risks - Perform post-incident analysis and reporting to enhance the incident response process **Qualificatio...

Role Overview: Smarsh is the leader in communications compliance, archiving, and analytics, providing compliance across a broad set of channels and insights on captured data. Customers manage millions of daily conversations across various channels, ensuring compliance and uncovering hidden patterns and relationships within their data. As the Lead Security Operations Analyst, you play a critical role in the Security Operations Center (SOC) by handling escalated incidents, conducting in-depth analysis, incident response coordination, mentoring analysts, real-time security monitoring, threat hunting, and ensuring compliance with security policies and standards. Key Responsibilities: - Conduct d...

Job Description: We are seeking a highly skilled and motivated Incident Response Coordinator to join our Security Operations team. This role involves planning, coordinating, and managing responses to security incidents, ensuring accurate execution of processes and timely completion of documentation and communications. The ideal candidate for the Incident Response Coordinator role is an experienced professional with the soft skills that enable effective performance in high-stakes environments. They are an active listener with strong analytical and problem-solving abilities to quickly assess and address complex incidents, and the ability to confidently communicate clear, concise updates to div...

Advanced Incident Analysis: Utilize advanced tools and techniques to analyze and investigate security incidents detected within the organization's networks and systems. Incident Response: Lead incident response efforts, coordinating with internal and external stakeholders to mitigate and remediate security incidents promptly. Team Leadership: Provide mentorship and guidance to the L1 SOC team, assisting in the development of their skills in incident analysis, parser creation, rule views, and report management. Parser Creation: Develop and maintain parsers to enhance the capability of the SOC's security information and event management (SIEM) system in detecting and correlating security event...

Continuous Monitoring Incident Classification, Prioritization & Triage Incident Analysis Initial Incident response & remediation support. Feedback to Content team for correlation rule fine-tuning Documentation of activities

Responsibilities for this position include: Performs advanced analysis to include forensic seizures of hardware , malware triage and dynamic analysis , and determination of the scope of compromise during a cyber incident Perform top-level threat analysis and investigate security events in accordance to MITRE ATT&CK Framework. Understands CSIRT functions and participates in analysis , containment , and eradication of cyber security events and incidents Perform analysis of logs from various security controls , including , but not limited to , firewall , proxy , host intrusion prevention systems , endpoint security , application and system logs , to identify possible threats to network security...

Responsibilities for this position include: Performs advanced analysis to include forensic seizures of hardware , malware triage and dynamic analysis , and determination of the scope of compromise during a cyber incident Perform top-level threat analysis and investigate security events in accordance to MITRE ATT&CK Framework. Understands CSIRT functions and participates in analysis , containment , and eradication of cyber security events and incidents Perform analysis of logs from various security controls , including , but not limited to , firewall , proxy , host intrusion prevention systems , endpoint security , application and system logs , to identify possible threats to network security...

Role Overview: You will be responsible for analysing, identifying, rectifying, and recommending specific improvement measures to enhance the security posture of the organization by protecting sensitive information. Your role includes ensuring customer centricity, monitoring and safeguarding log sources and security access, planning for disaster recovery, monitoring for attacks and intrusions, conducting security assessments and risk analysis, as well as handling security incidents escalated by the L1 team in 24x7 rotational shifts. You will also be using advanced analytics tools to determine emerging threat patterns and vulnerabilities, analysing attacks, creating reports and dashboards, coo...

As a Data Protection Supervising Associate (STS) at EY, you will play a crucial role in protecting the security infrastructure by providing technical support and implementing data at rest encryption. You will collaborate with various stakeholders to apply appropriate solutions and technologies to safeguard data at rest. Your responsibilities will include: - Providing basic and advanced technical support for the daily management, administration, and maintenance activities related to encryption technologies - Offering technical assistance to escalated issues from different support teams and implementing data at rest encryption following security consultants" guidelines - Applying industry fram...

* Lead Incident Response (IR): * Act as the Subject matter expert for security incidents. * Analyze and respond to security breaches, perform root cause analysis, and coordinate remediation efforts. * Provide leadership during incident investigations, ensuring rapid and thorough handling. * SOC Automation & Integration: * Leverage Python scripting and Palo Alto XSOAR to automate security processes, streamline incident response, and enhance detection capabilities. * Design, implement, and maintain playbooks within XSOAR to address emerging security threats. * Threat Hunting & Monitoring: * Proactively perform threat hunting activities to detect advanced threats that may bypass existing securi...

SIAM IM Expected: ITIL Certified, Helix ITSM tool hands on and Good to Have Telecom Industry Experience. Sanity checks on overall INCs across the program to make sure IM process is being adhered. Incidents are being taken care/updated/resolution details updated on timely basis. Provide leadership and direction during incidents, maintaining an overall incident perspective and ensure the Incident Management processes are followed. Deliver results and achieve SLA/KPI performance by focusing on effective cross functional team working Coordinate/facilitate the communication process as well as the escalation process during the course of a high priority incident. Proactively monitor incident resolu...

Requirement / Qualification Resource with minimum 4 5 years of managing SIEM. Security events Monitoring and SIEM administration/Implementation support. Proven experience on handling security incident investigation / forensics Knowledge of security and compliance regulatory standards. Create dashboards on Alien Vault Console to visualize data and events which help identify trends, anomalies and monitor the general health or security status of the environment. Monitor multiple security alerts sources, eliminate false positive and based on impact and nature of security incident escalate according to established procedures. Knowledge of Alien Vault SIEM, its components, and associates Proactive...

As an Incident Manager IV at our organization, you will be the critical link between Support, Engineering, and Infrastructure teams. You will lead the investigation and coordination of production issues in our SaaS product a complex ecosystem of Spring-based microservices, ML models, and data pipelines hosted on AWS. Your expertise will directly improve customer satisfaction, product quality, and operational efficiency by ensuring timely issue resolution, thorough root cause analysis, and actionable learnings. This is a hands-on technical engineering role, not a people management position. Role Value You will contribute to product reliability and customer trust by identifying, analyzing, and...

Description Primary Skills: Incident Management and Response System and Network Knowledge Post-Incident Analysis and Improvement Secondary Skills: Automation and Scripting Communication and Coordination Knowledge of Standards and Best Practices Named Job Posting? (if Yes - needs to be approved by SCSC) Additional Details Global Grade C Level To Be Defined Named Job Posting? (if Yes - needs to be approved by SCSC) No Remote work possibility Yes Global Role Family To be defined Local Role Name To be defined Local Skills Incident Management and Response Languages RequiredENGLISH Role Rarity To Be Defined

Description Primary Skills: Incident Management and Response System and Network Knowledge Post-Incident Analysis and Improvement Secondary Skills: Automation and Scripting Communication and Coordination Named Job Posting? (if Yes - needs to be approved by SCSC) Additional Details Global Grade C Level To Be Defined Named Job Posting? (if Yes - needs to be approved by SCSC) No Remote work possibility Yes Global Role Family To be defined Local Role Name To be defined Local Skills Incident Management and Response Languages RequiredENGLISH Role Rarity To Be Defined

Description: Primary Skills:Incident Management and Response System and Network Knowledge Post-Incident Analysis and Improvement Secondary Skills:Automation and Scripting Communication and Coordination Knowledge of Standards and Best Practices Additional Details Global Grade : C Remote work possibility : Yes Local Skills : Incident Management and Response Languages Required: : ENGLISH

Role & responsibilities Detect, Analyze, Investigate, and report qualified security incidents to the Client as per the defined SLA Provide recommendations to the security incidents reported as per SLA Investigates incidents using various security event sources (FW, IDS, PROXY, AD, EDR, DLP etc.). Investigations into non-standard incidents and execution of standard scenarios. Provide dashboard and data related to Incidents/Offenses for governance reports. Escalates to L3 if investigations uncover unusual or atypical situations. Monitoring unhealthy log source/data source and escalate to engineering team to fix them. Participate in incident response (IR) efforts; detect, identify, respond, con...

Background: AtkinsRealis(ATKINSREALIS) has recently defined the IT Services organisational strategy in support of which IT Services is transforming to revolutionise the way it provides services to the organisation, moving from a BAU focus to a business value-driven organisation Key concepts include moving to digital products; adopting agile across the organisation; leveraging the Cloud; standardising IT services across all our IT partners; and a focus on support for bids and delivery, Description Of Role: This role will report to the Senior Problem, Major Incident and Quality Manager and have operational responsibility for the Major Incident, high priority incident, escalation and managing P...

Job Description: As a Cyber Security Analyst, you will be responsible for analyzing, identifying, rectifying, and recommending specific improvement measures to enhance the security posture of the organization. Your primary focus will be on protecting sensitive information and ensuring customer-centric cybersecurity solutions. Key Responsibilities: - Ensure customer centricity by providing appropriate cybersecurity solutions - Monitor and safeguard log sources and security access - Plan for disaster recovery in the event of security breaches - Monitor for attacks, intrusions, and any unusual or unauthorized activity - Perform moderately complex log reviews and forensic analysis to identify un...

**Job Description:** Intellismith is seeking a SOC Analyst (L2 Support) to become part of their team working on a project for a globally recognized consulting firm specializing in technology, risk, compliance, and internal audit. As a SOC Analyst, your primary responsibilities will include incident analysis, determining root causes, and recommending solutions. You will also be tasked with monitoring Level 1 activities, providing real-time situational awareness to internal stakeholders, and ensuring the integration among assets remains intact. **Key Responsibilities:** - Perform incident analysis, determine root cause, and recommend solutions - Monitor and review Level 1 activities - Provide ...

We have 2 roles (opportunity) for Regional Risk Manager. One for EMEA & One for America. Therefore, working hours will be accordingly. For now, work is 100% hybrid and from Jan 2, once the GCC setup is ready, the role will become 50% hybrid as the work location will be Gurgaon i.e. work from office. Our client is British MNC with over 7000 global workforces, setting its GCC in India. The position will report to Head Risk & Business Continuity. Role & responsibilities As a Risk Manager, you will be responsible for identifying, assessing, and reporting risk across operational, financial, compliance, IT and strategic areas. The role supports mitigation planning, incident analysis, integration o...

As an Operational Risk Practitioner in the Operational Risk Management department, your role involves supporting the risk and operations functions for Retail Assets, including Digital & Fintech based Lending. Your key responsibilities include: - Assessing the quantum of operational risk and providing a view on the level of exposure relative to risk appetite. - Advising on risk mitigation strategies. - Defining Standard Operating Procedures (SOPs), Risk Registers, KRIs, and monitoring them. - Conducting the annual RCSA and analyzing reported Incidents. - Verifying Corrective and Preventive actions. - Reviewing and approving Product Notes from the ORMD perspective. - Generating relevant dashbo...

Role Overview: You will play a crucial role as a Security Operations Center (SOC) Analyst at ChargePoint, where you will monitor, analyze, and respond to security events and incidents across the organization's infrastructure. Your focus will be on identifying and mitigating threats, reducing false positives, and enriching security events with business context and threat intelligence to ensure a robust security posture. You will also have the opportunity to train junior resources on day-to-day operations, investigate security incidents, conduct threat hunting, and collaborate with other teams to enhance the accuracy of alerting systems. Key Responsibilities: - Perform Incident response, follo...

Role & responsibilities Detect, Analyze, Investigate, and report qualified security incidents to the Client as per the defined SLA Provide recommendations to the security incidents reported as per SLA Investigates incidents using various security event sources (FW, IDS, PROXY, AD, EDR, DLP etc.). Investigations into non-standard incidents and execution of standard scenarios. Provide dashboard and data related to Incidents/Offenses for governance reports. Escalates to L3 if investigations uncover unusual or atypical situations. Monitoring unhealthy log source/data source and escalate to engineering team to fix them. Participate in incident response (IR) efforts; detect, identify, respond, con...

At EY, youll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you And were counting on your unique voice and perspective to help EY become even better, too Join us and build an exceptional experience for yourself, and a better working world for all, Job Summary The Security Analyst/ Security Senior Analyst role will be primarily responsible for the daily operations of monitoring and review of PingFederate on-boarding of applications and underlying infrastructure This role will be responsible for working with end users, vendors, security leads as well as the other support teams to ensure succ...