176 Incident Handling Jobs - Page 2

About the Role: We are seeking a highly skilled and passionate Ethical Hacker Trainer to deliver top-quality training in ethical hacking, penetration testing, and cybersecurity practices . As a trainer, you will be responsible for designing and delivering engaging, hands-on learning experiences that equip learners with practical hacking skills, security awareness, and industry-recognized certifications. Key Responsibilities: Training Delivery: Deliver instructor-led training (ILT) and virtual instructor-led training (vILT) sessions on Ethical Hacking , Penetration Testing , and related topics. Teach courses aligned with certifications like CEH (Certified Ethical Hacker) , CompTIA PenTest+ , ...

Experience in SIEM Tool like ArcSight, LogRhythm SIEM, Threat Intelligence, Malware Analysis, Incident Response Responsible for the technical Administration or troubleshooting in SIEM ensuring the efficient functionality of the solution Responsible for Incident Validation, Incident Analysis, Solution Recommendation, Good knowledge on implementation, installation, integration troubleshooting and overall functionalities of Arcsight ArcSight rule base fine tuning, Ongoing log source modifications, Configuration/policy changes, General SIEM Administration, SIEM Content Development Troubleshooting of an incident within IT Security incident response teams of SOC. Apply investigation techniques to ...

As an Incident Manager IV at our organization, you will be the critical link between Support, Engineering, and Infrastructure teams. You will lead the investigation and coordination of production issues in our SaaS product a complex ecosystem of Spring-based microservices, ML models, and data pipelines hosted on AWS. Your expertise will directly improve customer satisfaction, product quality, and operational efficiency by ensuring timely issue resolution, thorough root cause analysis, and actionable learnings. This is a hands-on technical engineering role, not a people management position. Role Value You will contribute to product reliability and customer trust by identifying, analyzing, and...

Experience in SIEM Tool like ArcSight, LogRhythm SIEM, Threat Intelligence, Malware Analysis, Incident Response Responsible for the technical Administration or troubleshooting in SIEM ensuring the efficient functionality of the solution Responsible for Incident Validation, Incident Analysis, Solution Recommendation, Good knowledge on implementation, installation, integration troubleshooting and overall functionalities of Arcsight ArcSight rule base fine tuning, Ongoing log source modifications, Configuration/policy changes, General SIEM Administration, SIEM Content Development Troubleshooting of an incident within IT Security incident response teams of SOC. Apply investigation techniques to ...

Role & responsibilities Detect, Analyze, Investigate, and report qualified security incidents to the Client as per the defined SLA Provide recommendations to the security incidents reported as per SLA Investigates incidents using various security event sources (FW, IDS, PROXY, AD, EDR, DLP etc.). Investigations into non-standard incidents and execution of standard scenarios. Provide dashboard and data related to Incidents/Offenses for governance reports. Escalates to L3 if investigations uncover unusual or atypical situations. Monitoring unhealthy log source/data source and escalate to engineering team to fix them. Participate in incident response (IR) efforts; detect, identify, respond, con...

Role & responsibilities Conduct regular site visits to ensure deployment of guards as per the agreed strength and schedule. Verify that all security personnel follow post instructions, SOPs, and client protocols. Supervise and guide site supervisors and guards in daily operations. Verify attendance, shift rosters, and leave management of deployed personnel. Facilitate recruitment, induction, and training of new security staff. Maintain regular communication with client representatives to address security concerns. Submit daily, weekly, and monthly operational reports. Conduct incident reporting and investigation for any breaches, thefts, or emergencies. Act as the first responder for inciden...

Job Title: Cyber Security Intern Role Description We are looking for student interns who are looking to up skill themselves in the domain of Cyber Security. This is an exciting opportunity to gain real-world experience in cyber threat monitoring, incident response, and security tools - all while learning from a world-class team. The first 2-3 months will be a rigorous technical training and the next 3 months will be an internship program with us. The entire program consists of interactive classes, practice sessions, labs, recorded content, assignments, real-time scenarios, hands-on activities and project work. This is an ultimate launch pad for your cybersecurity career. It's not just a typi...

As a SOC Analyst II at Insight, you will play a crucial role in detecting and reporting cybersecurity incidents to clients. Your responsibilities will include: - Participating in the daily cybersecurity threat monitoring of Insight Managed Security Services (MSS) clients - Monitoring SIEM incident queue, performing incident triage & ticketing, and providing support until resolution - Performing threat analysis on events reported by security technologies supported by MSS - Identifying indicators of compromise within threat events, potential false positives, policy violations, intrusion attempts, and compromises - Enriching security events with intelligence from multiple technologies, open-sou...

JOB DESCRIPTION: Responsible for responding to security incidents identified by internal controls or external SOC partners Strictly adhere to service level agreements (SLAs), metrics and business scorecard obligations for ticket handling security incidents and events. Hands-on experience with Security Information and Event Management (SIEM) tools such as Splunk, IBM Q-Radar, Microsoft Sentinel, LogRhythm, or ArcSight. Proficient in Incident Response and automation workflows as it relates to Security Operations. Detects, identifies, and responds to cyber events, and incidents in line with cyber security policies and procedures. Should be capable of independently leading and managing security ...

Job Title: CRM Administrator - Case Management System (CaseAware) Location: Onsite, Smartworks 43EQ, Balewadi High Street, Pune Shift: Night Shift (Full Overlap with U.S. EST) 6:00 PM 3:00 AM IST (to ensure overlap with U.S. Eastern Time zone) Experience: 512 years Openings: 3 (1 Lead + 2 Junior/Mid-Level) Employment Type: Full-Time, Permanent About Reliable Group Reliable Group is a U.S.-based organization headquartered in New York , with two offices in India Pune (Balewadi High Street) and Navi Mumbai (Airoli) We operate across three strategic business verticals: On-Demand: Providing specialized technology talent for global clients. GCC (Global Capability Centers): Helping enterprises buil...

Skill Problem Manager Location Chennai Key responsibilities Track and communicate progress of problem(s) to relevant parties. Review progress/results with client and/or (senior) management. Maintain Known Error database. Problem management reporting and metrics Drive the process the adherence during any Incident Handling Participate in the Incidents to ensure that all parties contribute to the resolution. Coordinate between multiple support teams and with vendors to delivery incident resolution. Validate the Incident Report for the appropriate update and ensure that the RCA is delivered as required. Inform the respective owners on the open incidents. Validate the impact on the incident and u...

Role Purpose The purpose of this role is to design, test and maintain software programs for operating systems or applications which needs to be deployed at a client end and ensure its meet 100% quality assurance parameters The RDS ACE BAU and Migration project involves supporting and maintaining existing IBM Integration Bus (IIB) services on the AWS E2 platform, while also leading the migration of these services to IBM App Connect Enterprise (ACE) on AWS EKS. The role also includes supporting and migrating IBM MQ services to AWS EKS using StatefulSets. This is a hands-on role requiring expertise in integration technologies, cloud platforms, and container orchestration. Key Responsibilities P...

As a Security Managed Services Engineer (L1) at NTT DATA, your primary responsibility is to provide a managed service to clients, ensuring the operational continuity of their Firewall infrastructure. Your main objective will be to proactively identify, investigate, and route incidents to the correct resolver group, with a focus on maintaining zero missed service level agreement (SLA) conditions. You will be handling first-line support for standard and low complexity incidents and service requests. Additionally, you may also contribute to and support project work as needed. Key Responsibilities: - Assessment and management of Data Protection breaches in collaboration with the Senior Manager, ...

Job Summary: We are hiring an Ethical Hacker to help identify and fix security vulnerabilities in our systems. This role suits individuals passionate about cybersecurity and ethical hacking. Key Responsibilities: Perform penetration testing and vulnerability assessments. Document findings and suggest remediation strategies. Assist in developing secure coding practices and policies. Stay updated with the latest security threats and tools. Requirements: Bachelors degree in Cybersecurity, IT, or related field. Basic knowledge of ethical hacking tools (Nmap, Metasploit, Burp Suite). Understanding of OWASP Top 10 and network security principles. Interest in certifications like CEH, OSCP (not mand...

As a DLP Operations Analyst at our company in Mumbai, your role will involve managing Data Loss Prevention (DLP) tools, particularly Zscaler. You will be responsible for monitoring, analyzing, and responding to DLP alerts and incidents, investigating data leakage incidents, maintaining incident documentation, generating reports, and optimizing DLP policies. Collaboration with internal stakeholders and staying updated on industry best practices will be essential. Key Responsibilities: - Monitor, analyze, and respond to DLP alerts and incidents following defined processes. - Investigate data leakage incidents and coordinate with internal teams for resolution. - Maintain incident documentation ...

Team Lead - SOC Location: Hyderabad Exp: 8+ Yrs SHI Solutions India Pvt Ltd looking for SOC Lead with experience in a combination of risk management, Information security and IT roles Bachelors degree in Computer Science, Information Technology, or equivalent experience with professional security management certification Security Operations Centre and Incident Response skills Analytical Skills Cybersecurity and Network Security expertise Strong problem-solving abilities Excellent communication and teamwork skills Relevant certifications such as CISSP, CEH, or CompTIA Security+ Bachelor's degree in Computer Science, Information Technology, or related field Knowledge of common information secu...

Experience with SIEM tool like PaloAlto XDR Experience with SOAR tool like PaloAlto XSOAR Experience with EDR tool like Crowdstrike Knowledge of Splunk queries Knowledge of assessing Incident severity, classifying them and performing initial investigations to determine the scope and impact. Good experience and exposure of Incident handling by established procedures and protocols to contain, mitigate, and resolve security incidents efficiently and effectively. Capable of identifying fine tuning requirements to avoid false-positive alerts Identify, develop and propose enhancements to existing processes and operations Ability to read and understand system data including security event logs, sys...

Role & responsibilities Detect, Analyze, Investigate, and report qualified security incidents to the Client as per the defined SLA Provide recommendations to the security incidents reported as per SLA Investigates incidents using various security event sources (FW, IDS, PROXY, AD, EDR, DLP etc.). Investigations into non-standard incidents and execution of standard scenarios. Provide dashboard and data related to Incidents/Offenses for governance reports. Escalates to L3 if investigations uncover unusual or atypical situations. Monitoring unhealthy log source/data source and escalate to engineering team to fix them. Participate in incident response (IR) efforts; detect, identify, respond, con...

Incident Manager – Manage and coordinate incident tickets, prioritize P1 issues, ensure timely resolution, track progress, escalate delays, and maintain logs. Strong communication, follow-up, and ITSM knowledge preferred.

We are seeking an experienced QRadar Incident Forensic Specialist to manage the deployment, configuration, and day-to-day operations of the QRadar SIEM platform while supporting incident response and forensic investigations. The ideal candidate will play a critical role in enhancing security monitoring, investigating incidents, and ensuring seamless SIEM operations. This role requires a blend of expertise in QRadar deployment, incident handling, and forensic analysis to improve the organization’s security posture, Plan, design, and deploy QRadar SIEM environments including Incident forensic, ensuring proper integration with network devices, servers, and applications Required education Bachel...

As a SOC Analyst at our Security Operations Center (SOC), you will play a crucial role in safeguarding our organization from cybersecurity threats. Your responsibilities will include: - Monitoring, analyzing, and responding to security incidents in real-time. - Conducting forensic investigations, root cause analysis, and developing remediation strategies. - Collaborating with cloud security teams (AWS, Azure, or GCP) to maintain a secure infrastructure. - Ensuring compliance with security policies, standards, and regulatory requirements. - Staying informed about emerging threats, vulnerabilities, and cybersecurity trends. To excel in this role, you should possess the following qualifications...

Role Overview: You will be responsible for monitoring, analyzing, and detecting security events and incidents in the 24X7 SOC Environment. Your role will include managing, tuning, and optimizing the SIEM tool (LogRhythm) to meet business requirements. Additionally, you will provide recommendations to the client's security team to enhance security controls, create operational guidelines, processes, and procedures with the SOC manager, and handle escalated security incidents with deep dive analysis, threat hunting, and malware analysis. Key Responsibilities: - Manage, tune, and optimize the SIEM tool (LogRhythm) - Provide recommendations to optimize security controls such as IDS/IPS, endpoint ...

NOTE: Only relevant profiles of immediate joiners or those who can join within 15 days will be considered. Others are requested not to apply, as irrelevant profiles will not be shortlisted. Key Responsibilities Details:- Incident & Request Handling:- Provide first-level support by logging, categorizing, and resolving incidents and service requests within SLAs. Ensure timely and accurate updates to tickets. Escalate complex or high-priority issues to L2/L3 teams as needed. Customer Service:- Communicate effectively with business users to understand issues and provide status updates. Deliver courteous and professional support over phone, email, or chat. Follow up to ensure issues are resolved ...

As a Senior Vulnerability Management Analyst at ZS, you will be responsible for leading efforts to identify, analyze, and remediate security vulnerabilities across ZS's infrastructure. Your role will involve collaborating with cross-functional teams to drive mitigation strategies, improve vulnerability management processes, and ensure timely resolution of risks. Staying current with evolving threats, technologies, and cloud security trends will be essential in enhancing ZS's overall security posture through strategic recommendations, reporting, and process optimization. **Key Responsibilities:** - Analyze and prioritize vulnerabilities from internal scans, pen tests, threat intelligence, and...

Key Responsibilities: Act as the subject matter expert (SME) forPalo Alto Cortex XDR and endpoint security. Lead investigation and response for advanced endpoint threats and alerts using XDR. Develop and fine-tune detection rules, response playbooks, and behavioral indicators. Integrate Cortex XDR with other security tools (SIEM, SOAR, firewalls, etc.). Analyze complex threat patterns, perform root cause analysis, and recommend mitigation strategies. Collaborate with SOC teams to escalate, triage, and resolve endpoint incidents. Create and maintain technical documentation, runbooks, and training materials. Support compliance and audit requirements for endpoint security. Provide L3 support an...