173 Incident Handling Jobs

You are in search of an experienced Network Operations Center (NOC) Engineer who thrives in a dynamic and fast-paced environment at Eagle Eye Networks. As part of the team, you will oversee and participate in the monitoring and maintenance of server, network, and application health. Your responsibilities will include responding to alerts, following runbooks, and escalating issues to the appropriate teams when needed. Your contribution in this critical role will help shape the incident management processes and directly contribute to delivering top-tier services to customers. **Key Responsibilities:** - Monitor server, network, and application health and take immediate action to maintain high ...

• 3-6 years of experience in a SOC environment, with at least 2 years in an L2 role. • Strong hands-on experience with SOAR platforms (e.g., Palo Alto Cortex XSOAR, Splunk SOAR, IBM Resilient, CISCO XSOAR, etc.). • Proven ability to design, build, and maintain SOAR playbooks. • Solid understanding of SIEM tools (e.g., Palo Alto Cortex XSIAM, Splunk). • Hands-on experience in managing Vulnerability Management solution like Qualys and Tenable experience.

Your role and responsibilities We are seeking an experienced QRadar Incident Forensic Specialist to manage the deployment, configuration, and day-to-day operations of the QRadar SIEM platform while supporting incident response and forensic investigations. The ideal candidate will play a critical role in enhancing security monitoring, investigating incidents, and ensuring seamless SIEM operations. This role requires a blend of expertise in QRadar deployment, incident handling, and forensic analysis to improve the organization€™s security posture, Plan, design, and deploy QRadar SIEM environments including Incident forensic, ensuring proper integration with network devices, servers, and applic...

Job Description: Minimum 5+ years of experience Use Case Development : Knowledge of organizational risks and threats to design relevant and effective detection rules. Log Sources : Understanding log formats, sources, and parsing for accurate data utilization in use cases. SIEM and Analytics Tools : Familiarity with platforms like Securonix, Sentinel, or Splunk to implement and monitor use cases. Alert Logic: Ability to define thresholds, logic, and conditions to reduce false positives and improve detection accuracy. Incident Response Needs : Awareness of incident response workflows to align use cases with actionable intelligence. Performance Metrics : Skills to create and optimize KPI/KRI re...

ResMed is a global leader in connected devices and digital health. We help millions of people sleep, breathe, and live better lives. Are you ready to help fuel our growth? As ResMed continues to evolve with the future of healthcare, our customer-centric organization focuses on cloud-connected devices and digital health technologies that are designed to help treat and manage sleep apnea, COPD, and other chronic respiratory diseases that, together, affect over one billion people worldwide. Lets talk about the team and you: At ResMed, we support millions of patients and healthcare partners globally and the systems behind that care must be resilient. Youll be part of our Global Technology Soluti...

Tech Consultant-DLP Total 6-`10 years of experience with 5+ years in Symantec DLP Good working experience with data protection/security controls such as data scanning, data leakage protection/prevention. Has good understanding of risk assessments and ISO 27001 and incident response Good communication skills and stakeholder management. Has 5+ years of experience with data protection controls. An experienced security specialist with deep understanding of DLP/Data at rest scanning, incident handling and alert handling on DLP. Has very good insight to the working of DLP. Is a certified cyber security professional, with a minimum of ISO 27001 or CISM, CRISC. Has good understanding of Security Gov...

Role & responsibilities The Supervising Associate within GDS Data Protection team will be responsible for supporting all aspects of the GDS Data Protection program, with a primary focus on Data Incident Response Management, leveraging knowledge and industry expertise to enhance processes, support monitoring and reporting requirements and developing learning materials. You will be expected to support the Data Protection Lead in managing and participating on global projects and networks. You will be required to consult and collaborate effectively with key internal and external DP stakeholders [e.g., Services Lines (Business units), Functions (internal departments), EY Technology, multiple DP n...

Your role and responsibilities We are seeking an experienced QRadar Incident Forensic Specialist to manage the deployment, configuration, and day-to-day operations of the QRadar SIEM platform while supporting incident response and forensic investigations. The ideal candidate will play a critical role in enhancing security monitoring, investigating incidents, and ensuring seamless SIEM operations. This role requires a blend of expertise in QRadar deployment, incident handling, and forensic analysis to improve the organizations security posture, Plan, design, and deploy QRadar SIEM environments including Incident forensic, ensuring proper integration with network devices, servers, and applicat...

Job Description: We are seeking a highly skilled and motivated Incident Response Coordinator to join our Security Operations team. This role involves planning, coordinating, and managing responses to security incidents, ensuring accurate execution of processes and timely completion of documentation and communications. The ideal candidate for the Incident Response Coordinator role is an experienced professional with the soft skills that enable effective performance in high-stakes environments. They are an active listener with strong analytical and problem-solving abilities to quickly assess and address complex incidents, and the ability to confidently communicate clear, concise updates to div...

Your role and responsibilities We are seeking an experienced QRadar Incident Forensic Specialist to manage the deployment, configuration, and day-to-day operations of the QRadar SIEM platform while supporting incident response and forensic investigations. The ideal candidate will play a critical role in enhancing security monitoring, investigating incidents, and ensuring seamless SIEM operations. This role requires a blend of expertise in QRadar deployment, incident handling, and forensic analysis to improve the organizations security posture, Plan, design, and deploy QRadar SIEM environments including Incident forensic, ensuring proper integration with network devices, servers, and applicat...

Role Overview: As an Application Production Support Lead at Publicis Sapient, you will be responsible for overseeing and managing the production support for customer applications. Your role will involve hands-on experience, leadership abilities, and expertise in application-level debugging, incident handling, and issue resolution. You will handle a range of issues from P1 (Critical) to P3 (Low Priority) and manage multiple issues simultaneously in a fast-paced support environment. Your primary goal will be to provide 24x7 support for customer applications, ensuring high availability and performance. You will monitor application performance and system health, handle production incidents, cond...

Monitoring and Alert Handling: Incident Triage: Security Incident Analysing Documentation Security Tool Management Email cv to urvi.s@netlabindia.com

As a Splunk Administrator/Engineer at our company in Hyderabad, you will play a crucial role in managing and maintaining the Splunk infrastructure. Your responsibilities will include: - Executing Splunk changes via runbooks and ServiceNow - Reviewing and validating configurations - Maintaining runbooks with rollback & validation steps - Supporting incident investigations & escalations - Tracking KPIs/SLAs To excel in this role, you should possess the following key skills: - Splunk administration: Search, Dashboards, ITSI (optional), troubleshooting, and monitoring - Automation: Puppet (preferred) / Ansible - Cloud & OS: AWS, Linux/Windows - Incident handling & root cause analysis - ServiceNo...

Role Overview: You will be responsible for analysing, identifying, rectifying, and recommending specific improvement measures to enhance the security posture of the organization by protecting sensitive information. Your role includes ensuring customer centricity, monitoring and safeguarding log sources and security access, planning for disaster recovery, monitoring for attacks and intrusions, conducting security assessments and risk analysis, as well as handling security incidents escalated by the L1 team in 24x7 rotational shifts. You will also be using advanced analytics tools to determine emerging threat patterns and vulnerabilities, analysing attacks, creating reports and dashboards, coo...

As a Major Incident Manager at Tesco, your primary responsibility will be to lead the response to critical incidents (major & significant), ensuring rapid recovery of services with minimal business impact. This role requires high levels of urgency, communication excellence, technical breadth, and stakeholder confidence. You will not only manage high-severity incidents but also drive proactive improvements, embed incident preparedness, and ensure that the business derives real value from its incident management capability. Key Responsibilities: - Take end-to-end ownership of major incidents across all technology towers, ensuring swift and effective resolution in alignment with business priori...

As a Lead Cyber Security Engineer at DigiValet, you will play a crucial role in ensuring the security of both on-premise and cloud-based systems. Your responsibilities will include: - **Security Patching:** Regularly update server security patches to protect systems from vulnerabilities. - **Vulnerability Assessment:** Assess and mitigate vulnerabilities for on-premise and cloud solutions to enhance overall security. - **Incident Handling:** Respond to cybersecurity incidents and manage DEFCON alerts efficiently. - **Server Hardening:** Implement measures to secure servers and prevent unauthorized access. - **Identity and Access Management:** Manage SSO, Federated Identity Solutions, remote ...

Role Overview: As an Information Security Risk Assessment Specialist at WNS (Holdings) Limited, your main responsibility will be to ensure the information security and privacy of client operations and technology infrastructure. You will be conducting various audits, reviewing contracts, supporting compliance certification, and advising business unit leaders on information security issues. Additionally, you will be responsible for handling information security incidents, data breaches investigations, and overseeing compliance activities related to information security. Key Responsibilities: - Carry out all information security risk assessments. - Conduct Privacy risk and impact assessments fo...

Role Overview: The purpose of your role is to analyse, identify, rectify, and recommend specific improvement measures that help in the security posture of the organization by protecting sensitive information. You will be responsible for ensuring customer centricity by providing apt cybersecurity, monitoring and safeguarding log sources and security access, planning for disaster recovery in the event of any security breaches, and monitoring for attacks, intrusions, and unusual or unauthorized activity. Additionally, you will conduct security assessments, risk analysis, and root cause analysis of security incidents. Key Responsibilities: - Ensuring customer centricity by providing apt cybersec...

Role Overview: The purpose of this role is to analyse, identify, rectify & recommend specific improvement measures that help in the security posture of the organization by protecting the sensitive information. You will be responsible for ensuring customer centricity by providing apt cybersecurity, monitoring and safeguarding the log sources and security access, planning for disaster recovery in the event of any security breaches, and monitoring for attacks, intrusions, and unusual, unauthorized, or illegal activity. Additionally, you will perform moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems, conduct security assessmen...

As an Area Officer at Secura Force Pvt Ltd., a trusted leader in professional security services, you will be responsible for managing and overseeing security operations in Pune & Panvel. Your role will include: - Supervising and guiding security staff across multiple sites - Ensuring discipline, punctuality, and professional conduct among the team - Managing manpower deployment and duty rosters efficiently - Conducting regular & surprise site inspections to maintain high service standards - Coordinating with clients to meet their security needs effectively - Training and developing guards & supervisors for improved performance - Preparing reports and handling incidents efficiently The ideal ...

Provide technical inputs for monthly customer service review reports and contribute to the creation of Service Improvement Plans. Monitor ticket queues, ensuring timely updates and comprehensive closure summaries. Apply expertise in Incident, Change, Problem, Service Request, and Configuration Management Processes. Manage, monitor, resolve, and report network security incidents involving equipment deployed across multiple client locations in India. Conduct daily incident analysis and publish reports to enhance transparency and security oversight. Maintain compliance with security policies and processes while striving for continuous improvement. Analyze key security metrics and escalate anoma...

Forescout NAC Deploy, configure, and manage Fore-scout NAC for network access control across LAN/WAN environments. Develop and enforce access control policies for endpoints and users. Integrate NAC with directory services (AD, LDAP) and SIEM platforms. Perform advanced troubleshooting of NAC-related issues including device profiling, policy enforcement failures, and network access anomalies. Handle incident response for unauthorized access attempts, rogue devices, and policy violations. Conduct root cause analysis and implement corrective actions for recurring NAC issues. Perform regular health checks, upgrades, and patching of NAC Develop and enforce network access policies and compliance s...

About the Role: We are seeking a highly skilled and passionate Ethical Hacker Trainer to deliver top-quality training in ethical hacking, penetration testing, and cybersecurity practices . As a trainer, you will be responsible for designing and delivering engaging, hands-on learning experiences that equip learners with practical hacking skills, security awareness, and industry-recognized certifications. Key Responsibilities: Training Delivery: Deliver instructor-led training (ILT) and virtual instructor-led training (vILT) sessions on Ethical Hacking , Penetration Testing , and related topics. Teach courses aligned with certifications like CEH (Certified Ethical Hacker) , CompTIA PenTest+ , ...

Experience in SIEM Tool like ArcSight, LogRhythm SIEM, Threat Intelligence, Malware Analysis, Incident Response Responsible for the technical Administration or troubleshooting in SIEM ensuring the efficient functionality of the solution Responsible for Incident Validation, Incident Analysis, Solution Recommendation, Good knowledge on implementation, installation, integration troubleshooting and overall functionalities of Arcsight ArcSight rule base fine tuning, Ongoing log source modifications, Configuration/policy changes, General SIEM Administration, SIEM Content Development Troubleshooting of an incident within IT Security incident response teams of SOC. Apply investigation techniques to ...

As an Incident Manager IV at our organization, you will be the critical link between Support, Engineering, and Infrastructure teams. You will lead the investigation and coordination of production issues in our SaaS product a complex ecosystem of Spring-based microservices, ML models, and data pipelines hosted on AWS. Your expertise will directly improve customer satisfaction, product quality, and operational efficiency by ensuring timely issue resolution, thorough root cause analysis, and actionable learnings. This is a hands-on technical engineering role, not a people management position. Role Value You will contribute to product reliability and customer trust by identifying, analyzing, and...