1461 Incident Response Jobs - Page 13

As a Threat Detection & Response specialist, your role involves implementing and enhancing threat detection capabilities utilizing various Microsoft security tools such as Microsoft Defender for Endpoint (MDE), Microsoft Defender for O365, Microsoft Defender for XDR, Microsoft Defender for Identity, and Azure Security Center. Your primary responsibility will be to conduct security monitoring by continuously analyzing and investigating security alerts and incidents using Microsoft security solutions. Additionally, you will lead and participate in incident response efforts, including triage, containment, eradication, and recovery, leveraging Microsoft's threat protection tools. It will be part of your duties to integrate threat intelligence into the existing infrastructure to boost threat detection, prevention, and response strategies. Regular vulnerability assessments will also be conducted to identify and mitigate vulnerabilities in collaboration with relevant teams. You will be involved in developing and implementing automated workflows for threat detection and response utilizing tools like Azure Logic Apps and Microsoft Power Automate. Ensuring compliance with security policies and regulatory requirements through audits will also be crucial for this role. In addition, you will perform security assessments of cloud resources to identify and address potential threats and vulnerabilities. Collaboration with IT, DevOps, and other teams is essential to integrate security best practices and threat protection measures into cloud projects. You will also be responsible for providing guidance and training to internal teams on threat protection best practices and tools. It is important to stay updated on the latest threat protection trends, techniques, and technologies to continuously enhance the organization's security posture. This is a full-time, permanent position with benefits including health insurance and provident fund. The work schedule includes day shifts from Monday to Friday with rotational shifts. The work location is in person, fostering a collaborative and hands-on approach to security management.,

As a Senior SOC Analyst at AML RightSource, you will play a crucial role in monitoring and analyzing security events to ensure the highest quality of service and compliance with regulatory requirements. Your expertise will be utilized to conduct investigations, provide technical guidance to junior analysts, and develop standard operating procedures for the SOC. Your responsibilities will include monitoring security events from various sources, conducting security incident investigations, participating in security assessments and penetration testing, and conducting threat hunting activities to identify and respond to advanced persistent threats. Additionally, you will collaborate with other teams to maintain the security of the organization's infrastructure, stay updated on new security threats and mitigation techniques, and provide regular reports on the SOC's performance. To excel in this role, you should possess a Bachelor's degree in Computer Science or related field, along with a minimum of 2.5 years of experience in a SOC or security operations role. Strong knowledge of security technologies, familiarity with security standards and frameworks, and experience in security incident response are essential. Excellent analytical and problem-solving skills, the ability to work well in a team, and strong communication skills are also required. Possession of relevant security certifications such as CISSP, CISM, or GSEC is highly desirable.,

You will be joining NTT DATA as a DevOps - Digital Solution Consultant Lead Consultant based in Hyderabad, Telangana, India. As the DevOps Engineer, you will be primarily responsible for ensuring the overall health, performance, and capacity of our Internet-facing services. Your role will involve providing guidance and mentorship to engineers across different teams, setting high technical standards for automation and engineering tooling, and implementing standard engineering practices such as auto-scaling, CI/CD, release engineering, and high availability in all engineering components. In this position, you will collaborate with external data centers and AWS for provisioning, outages, and maintenance activities. Familiarity with Rails and deployment tools like Capistrano is required, and experience with Jenkins will be advantageous. You will play a crucial role in rolling out and deploying new product features and installations, ensuring rapid iteration and continuous growth. Being vigilant about current CVEs, potential attack vectors, and vulnerabilities is essential, and you will be responsible for applying patches promptly. Your responsibilities will also include handling incident responses, troubleshooting, and fixes for various products and services. Collaboration with development teams to design platforms with scalability, operability, and performance in mind is crucial. Additionally, you will participate in a 24x7 rotation for production issue escalations and continuously evaluate and adapt to new technologies. NTT DATA is a global innovator of business and technology services with a commitment to helping clients innovate, optimize, and transform for long-term success. As a Global Top Employer, we have diverse experts in over 50 countries and a strong partner ecosystem. Our services encompass business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation, and management of applications, infrastructure, and connectivity. NTT DATA is a leading provider of digital and AI infrastructure globally, operating as part of the NTT Group with significant investments in R&D to support organizations and society in navigating the digital future confidently and sustainably. For more information, visit us at us.nttdata.com.,

The company Yubi, formerly known as CredAvenue, is a pioneer in redefining global debt markets by facilitating the flow of finance between borrowers, lenders, and investors. Yubi is committed to fostering transparency, collaboration, and the power of possibility in the financial services industry. As a disruptor in India's debt market, Yubi has expanded its reach to global corporate markets with a comprehensive suite of seven products. Yubi prides itself on providing a platform for individuals to unleash their potential, offering avenues for growth and opportunity without fear or obstacles. The company's vision is to transform the traditional debt ecosystem through technology and innovation. As a Senior SOC Engineer at Yubi, you will play a critical role in managing the Cyber Defence Centre (SOC) in a 24/7 environment. Your responsibilities will include handling security incidents, providing rapid response, and ensuring the security and privacy of enterprise and client data. You will be expected to have a deep understanding of IT and Network Infrastructure tools and technologies. Key Responsibilities: - Act as a key member of the cyber security function to ensure data security and privacy. - Provide 24x7 monitoring as the first line of defence against potential threats. - Enhance SOC tools, design/improve working practices, and incident responses. - Conduct threat hunting through analysis of security system logs and data sources to identify attacks and irregularities. - Stay updated on emerging cybersecurity threats and develop threat profiles. - Utilize SIEM, PAM, CASB, EDR, and other threat detection platforms. - Develop and execute crisis communication plans for senior management and stakeholders. - Measure SOC performance metrics and communicate the value of security operations to business leaders. Requirements: - GCTI, GCDA certification - Experience in Security Incident Response and Handling techniques - Proficiency in log management, Windows Server systems, cloud platforms, and virtualization technologies - Working knowledge of compliance standards such as ISO27001, PCI-DSS & Cyber Essentials Plus - Familiarity with SIEM Tools, Nessus or other Vulnerability management tools, and security operations principles - Understanding of firewall, IDS/IPS configuration, email and web filtering services Preferred Qualifications: - Bachelor's Degree in computer science with a minimum of 7 years of related experience - Experience working in or with a Security Operations Centre and managing security incidents Join Yubi, a dynamic and innovative company with a mission to revolutionize the debt market and create a purposeful impact. Be part of a diverse team of motivated individuals dedicated to driving change in the financial services industry.,

You will be responsible for setting up and supporting HA/DR solutions/ replication, leading efforts related to system and SQL performance tuning, index/ partition creation and management, setting up log shipping, Mirroring/log forwarding, and analyzing traces. Additionally, you will architect, design, implement, and administer database consolidation platforms. Your duties will include monitoring, software installs and upgrades, scripting, automation, incident response, and documentation. You will also be required to perform DB restores and point-in-time recovery. If you have experience in troubleshooting and resolving database integrity issues, performance issues, blocking and deadlocking issues, replication issues, log shipping issues, connectivity issues, and security issues, this role is for you. You should have hands-on experience in Performance Tuning, Query Optimization, monitoring, and troubleshooting tools. A solid understanding of indexes, index management, integrity checks, configuration, patching, statistics, and effective creation and management of indexes is essential for this position.,

As a Security Incident Management professional, you will be responsible for overseeing the bank's incident response and management program. This involves developing and testing incident response plans, coordinating responses to security incidents, and ensuring timely reporting to the RBI when required. You will also be in charge of implementing measures for continuous monitoring of the bank's information systems to promptly detect and respond to security incidents. Your role will involve utilizing threat intelligence to stay informed about emerging threats in order to enhance the bank's security posture. Additionally, your work experience in configuring and managing SOC solutions such as XDR, SIEM, SOAR, Threat Intelligence, etc., will be crucial for this position. You will be expected to assess cyber threats and fine-tune SOC/SIEM/XDR alerts to ensure the bank's systems are adequately protected. Overall, your expertise in security incident management, continuous monitoring, threat intelligence, and SOC solutions will play a vital role in safeguarding the bank's information systems and responding effectively to security incidents.,

As a Senior SOC Analyst at AML RightSource, you will play a crucial role in ensuring the security and compliance of our clients" financial systems. You will be responsible for monitoring and analyzing security events using various technologies like SIEM systems and intrusion detection/prevention systems. Your expertise will be utilized in conducting thorough investigations into security incidents, providing technical guidance to junior analysts, and developing and maintaining standard operating procedures for the SOC. Your role will also involve participating in security assessments, penetration testing activities, and threat hunting to identify and respond to advanced persistent threats. In the event of security incidents, you will coordinate with other teams to contain and remediate the threats efficiently. Staying updated on emerging security threats and collaborating with IT and other teams to ensure the organization's infrastructure and systems" security will be essential aspects of your responsibilities. Additionally, you will be expected to provide regular reports to management on the SOC's performance and effectiveness. To qualify for this position, you should hold a Bachelor's degree in Computer Science, Information Systems, or a related field, along with a minimum of 2.5 years of experience in a SOC or security operations role. A strong understanding of security technologies, familiarity with security standards and frameworks, and experience in security incident response are crucial requirements. Excellent analytical skills, the ability to work effectively in a team, and strong communication skills are also essential. Possessing relevant security certifications such as CISSP, CISM, or GSEC will be considered highly desirable for this role.,

We are looking for a skilled professional with 6-9 years of experience to join our team as an SIEM specialist. The ideal candidate will have a strong background in security information and event management. Roles and Responsibility Design, implement, and manage SIEM systems to ensure the security and integrity of our organization's data. Develop and maintain dashboards and reports to provide insights into security threats and trends. Collaborate with cross-functional teams to identify and mitigate potential security risks. Conduct regular vulnerability assessments and penetration testing to identify weaknesses. Analyze log files and system logs to detect anomalies and suspicious activity. Develop and enforce security policies and procedures to ensure compliance with industry standards. Job Requirements Strong understanding of security principles and technologies such as firewalls, intrusion detection systems, and encryption. Experience with SIEM tools such as Splunk, LogRhythm, or QRadar. Excellent analytical and problem-solving skills with attention to detail. Ability to work effectively in a fast-paced environment and meet deadlines. Strong communication and collaboration skills to work with technical and non-technical stakeholders. Familiarity with industry standards and regulations related to security such as HIPAA, PCI-DSS, or NIST.

Project Role : Security Engineer Project Role Description : Apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Must have skills : Splunk Security Information and Event Management (SIEM) Good to have skills : Microsoft Azure SentinelMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Engineer, you will apply security skills to design, build, and protect enterprise systems, applications, data, assets, and people. You will provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Be a crucial part of ensuring the security of the organization's digital assets. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work-related problems.- Implement security measures to protect systems, networks, and data.- Conduct security assessments and audits to identify vulnerabilities.- Develop and implement security policies and procedures.- Stay updated on the latest security trends and technologies.- Collaborate with cross-functional teams to enhance security measures. Professional & Technical Skills: - Must To Have Skills: Proficiency in Splunk Security Information and Event Management (SIEM).- Good To Have Skills: Experience with Microsoft Azure Sentinel.- Strong understanding of security principles and practices.- Knowledge of threat intelligence and incident response.- Experience in security monitoring and analysis. Additional Information:- The candidate should have a minimum of 3 years of experience in Splunk Security Information and Event Management (SIEM).- This position is based at our Bengaluru office.- A 15 years full-time education is required. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Competitor Analysis Good to have skills : Security Architecture Design, Jenkins, BambooMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :To drive competitive intelligence initiatives focused exclusively on cybersecurity services. This role supports strategic stakeholders by delivering deep-dive insights on peer organizations in the cybersecurity services space. The analyst will research, track, and interpret competitor strategies, offerings, market moves, and client positioning to inform go-to-market actions and service differentiation. Roles & Responsibilities:Conduct in-depth competitive research on global and regional cybersecurity service providers, including consulting-led firms, MSSPs, and niche players.Develop and maintain competitor profiles that include service offerings (e.g., MxDR, Identity & Access Management, Cloud Security, OT Security), delivery models, alliances, certifications, and client segments.Monitor market movements such as deal wins/losses, acquisitions, leadership changes, analyst rankings, investments, and capability launches.Support the creation of battle cards, SWOT analyses, benchmarking reports, and win-loss summaries tailored to specific cybersecurity service lines.Track and interpret positioning of competitors across analyst reports (e.g., Gartner, IDC, Forrester, ISG, HFS, Everest Group) and translate these insights for sales, marketing, and delivery teams.Collaborate with internal stakeholders (e.g., Client account teams, Cyber industry leads, MU leads) to refine competitive narratives and validate field intel.Contribute to periodic competitive landscape reports and newsletters focused on trends in the cybersecurity services market.Maintain an internal repository of intelligence assets, including slides, transcripts, and data extracts for easy consumption and reuse. Professional & Technical Skills: -Basic understanding of cybersecurity domains such as threat detection, managed services, incident response, IAM, and zero trust.Proficiency in secondary research techniques and comfort with navigating open-source and premium databases (e.g., Gartner, IDC, LinkedIn, company filings).Strong analytical mindset with the ability to structure insights from fragmented data points.Excellent PowerPoint and business writing skills able to write succinct, executive-ready outputs.Comfort working in a fast-paced environment, balancing ad hoc requests with structured deliverables.A collaborative mindset with a willingness to learn from technical and business stakeholders. Additional Information:- The candidate should have minimum 3 years of experience in Competitor Analysis.- This position is based at our Bengaluru office.- A 15 years full time education is required.Exposure to market intelligence or strategy support functions within a services organization is a plus.Understanding of cybersecurity services value chain:advisory, implementation, and managed services.Familiarity with analyst frameworks like Gartner Magic Quadrants, Forrester Waves, and ISG Provider Lens in cybersecurity. Qualification 15 years full time education

Lead & focus: Demonstrate clear & calm leadership, setting the tone for each response Command and coordinate a response to security incidents, relevant threats, and high profile security events Scope a response to the next best actions Ensure response is sustainable for all resources involved Support beyond normal shift hours in an emergency or during times of staff shortage Coordinate & communicate: Delegate tasks in a timely manner and manage them to closure Facilitate incident / threat resolution through prompt communication across multiple teams Document status and regularly communicate updates to stakeholders and senior management Develop and track key metrics and reporting related to incident management Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional expertise Incident Response, Soc Management Preferred technical and professional experience Threat Hunting

Were looking for an experienced Cloud Cyber Defense & Incident Response Analyst to safeguard our cloud environments against evolving cyber threats. This role blends proactive threat hunting with fast, effective incident response to ensure the security, resilience, and integrity of our cloud infrastructure. The ideal candidate brings deep expertise in cloud security, threat intelligence, digital forensics, and modern incident response practices. This position follows a rotating shift schedule either 07:0015:00 IST or 00:0008:00 IST Key Responsibilities: Lead end-to-end incident handling: detection, triage, containment, eradication, and recovery. Conduct forensic analysis of cloud security incidents to determine root causes and impact. Create and maintain incident response playbooks tailored to cloud-based threats. (Bonus) Bring experience in incident management processes. Continuously monitor cloud platforms for anomalies and suspicious activities. Leverage SIEM tools, threat intel feeds, and analytics to detect potential intrusions. Perform log and network traffic analysis to identify malicious behaviors. Translate threat intelligence into actionable security improvements. Track emerging cloud-focused attack techniques and recommend defenses. Partner with cloud engineers and security teams to integrate best practices. Use cloud-native security tools and automation to enhance detection and response. Increase operational efficiency with SOAR platforms. Maintain and refine alerting and monitoring rules. Align security operations with standards such as ISO 27001 and SOC 2. Prepare detailed incident reports and recommend remediation steps. Support security audits and assessments of cloud environments. Requirements: Bachelors degree in Cybersecurity, Information Security, or related field or equivalent experience. Proven Experience in cybersecurity, cloud security, or incident response. Strong knowledge of AWS and Azure security features. Experience with SIEM, IDS/IPS, and EDR solutions. Scripting and automation skills (Python, PowerShell). Familiarity with MITRE ATT&CK framework and modern defense strategies. Proven experience in cloud-based incident response and digital forensics. Preferred Certifications : AWS Certified Security Specialty, or Microsoft Certified: Security, Compliance, and Identity Fundamentals; GIAC Certified Incident Handler (GCIH) or GIAC Cloud Forensics Responder (GCFR); CISSP or CCSP.

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Data Encryption, Public Key Infrastructure Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to document the implementation of cloud security controls and facilitating the transition to cloud security-managed operations, all while maintaining a focus on security best practices and compliance standards. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Conduct regular assessments of cloud security measures to ensure compliance with industry standards.- Mentor junior team members to enhance their understanding of cloud security practices. Professional & Technical Skills: - Must To Have Skills: Proficiency in Data Encryption, Public Key Infrastructure.- Strong understanding of cloud security principles and frameworks.- Experience with security architecture design and implementation.- Knowledge of risk assessment methodologies and security compliance standards.- Familiarity with incident response and disaster recovery planning. Additional Information:- The candidate should have minimum 5 years of experience in Data Encryption.- This position is based at our Chennai office.- A 15 years full time education is required. Qualification 15 years full time education

About The Role Project Role : Security Engineer Project Role Description : Apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Must have skills : SailPoint IdentityIQ Good to have skills : NAMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Engineer, you will apply security skills to design, build, and protect enterprise systems, applications, data, assets, and people. Your typical day will involve collaborating with various teams to implement security measures, conducting risk assessments, and ensuring compliance with security policies. You will also engage in proactive monitoring of systems to identify vulnerabilities and respond to potential threats, all while maintaining a focus on safeguarding information and business processes against cyber threats. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work related problems.- Conduct regular security assessments and audits to identify vulnerabilities.- Develop and implement security policies and procedures to enhance system security. Professional & Technical Skills: - Must To Have Skills: Proficiency in SailPoint IdentityIQ.- Good To Have Skills: Experience with identity governance and administration.- Strong understanding of security frameworks and compliance standards.- Experience with risk assessment methodologies and tools.- Familiarity with incident response and threat management processes. Additional Information:- The candidate should have minimum 3 years of experience in SailPoint IdentityIQ.- This position is based at our Bengaluru office.- A 15 years full time education is required. Qualification 15 years full time education

Location : Mumbai, Delhi / NCR, Bengaluru , Kolkata, Chennai, Hyderabad, Ahmedabad, Pune, Remote (India-based preferred) Experience Required : 710 Years Employment Type : Contract Primary Skills Cloud Security, AWS, IAM, DLP, Security Consultant, Data Encryption, Logging, Secrets Management, Security Posture, Risk Assessment, Compliance Frameworks, SIEM, SOAR, Incident Response, Automated Security, AIin Security Job Description We are seeking an experienced Security Consultant with 710 years of deep technical expertise across AWS security practices, posture assessment, incident response, and automation in security environments. The ideal candidate will play a key role in advising on cloud security design, conducting risk assessments, and strengthening compliance and data protection mechanisms in cloud-native environments. Key Responsibilities Lead cloud security strategy and implementation for AWS-based applications Conduct Security Posture Assessments, identify gaps, and define risk prioritization plans Implement and manage AWS security controls: IAM (Identity & Access Management) Network Security & Logging Data Encryption & Secrets Management Ensure adherence to compliance frameworks (ISO 27001, NIST, CIS, etc.) Implement Data Loss Prevention (DLP), Data Masking/Obfuscation solutions Drive SIEM/SOAR integration for intelligent threat detection and response Develop and maintain Incident Response plans and coordinate response activities Conduct automated security scanning and integrate into DevSecOps pipelines Provide consultation and innovation around Agentic AI applications in security Qualifications 7+ years of hands-on experience in cloud security, with a focus on AWS Deep knowledge of IAM, encryption, secrets management, and compliance frameworks Experience with SIEM/SOAR platforms, automated scanning tools, and AI-driven security solutions Strong documentation, communication, and stakeholder collaboration skills Ability to work independently in a remote team structure

About the Role We are seeking a highly skilled Sr. Site Reliability Engineer (SRE) to lead the implementation, optimization, and management of our observability stack across cloud infrastructure. You will play a key role in ensuring the reliability, scalability, and performance of our platform, spanning microservices on Kubernetes/EC2 and mission-critical systems. This role requires strong problem-solving, automation mindset, and a proactive approach to incident management. Key Responsibilities Design, implement, and manage monitoring, logging, and alerting systems across production and non-production environments. Lead incident response, root cause analysis, and post-mortem practices for continuous improvement. Define and implement disaster recovery strategies with regular testing. Collaborate with development teams to define and track SLAs/SLOs for critical services. Optimize AWS cloud infrastructure for cost efficiency, reliability, and scalability. Build and maintain automation frameworks for deployment, scaling, and recovery using Terraform, GitLab CI/CD, and Kubernetes. Administer Kubernetes clusters, troubleshoot performance bottlenecks, and ensure high availability. Manage databases (PostgreSQL or similar), including replication and disaster recovery strategies. Contribute to infrastructure security, compliance, and best practices. Participate in the on-call rotation and handle high-priority incidents under pressure. Required Skills & Experience 4+ years of experience as an SRE, DevOps, or similar role. Strong hands-on experience with AWS services: EC2, EKS, RDS, Cognito, CloudWatch, etc. Proven expertise in Kubernetes administration in production environments. Proficiency in scripting/programming: Python, Bash, Chef (recipes, cookbooks), Ansible. Strong knowledge of Infrastructure as Code (Terraform/CloudFormation). Deep experience with observability tools: Prometheus, Grafana, ELK stack, distributed tracing. Database administration experience with PostgreSQL or similar systems. Understanding of network protocols, load balancing, and security best practices. Experience in CI/CD pipelines and GitOps workflows. Ability to handle multiple incidents and prioritize effectively under pressure. Exposure to monitoring solutions like Splunk, Datadog, Dynatrace. Preferred Qualifications AWS Certified Solutions Architect or AWS DevOps Engineer certification. Certified Kubernetes Administrator (CKA).

* Responsible for implementation partner to see project on track along with providing required reports to management and client * Handle the project as well as BAU operations while ensuring high level of systems security compliance * Coordinate with and act as an authority to resolve incidents by working with other information security specialists to correlate threat assessment data. * Analyse data, such as logs or packets captures, from various sources within the enterprise and draw conclusions regarding past and future security incidents. * Ready to support for 24/7 environment. Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional expertise * 7+ years of IT experience in security with at least 4+ Years in Security Operation Centre with SIEMs. * B.E./ B. Tech/ MCA/ M.Sc. * Maintaining SIEM/UEBA platform hygiene, Scripting, Automation SOAR Playbook Creation with Testing, with Change/Problem/Incident Management, with CP4S platform integration & dashboarding, Recovery Support. * Expertise in Security Device Management SIEM, Arcsight, Qradar, incident response, threat hunting, Use case engineering, SOC analyst, device integration with SIEM. * Working knowledge of industry standard risk, governance and security standard methodologies * Proficient in incident response processes - detection, triage, incident analysis, remediation and reporting. * Ability to multitask and work independently with minimal direction and maximum accountability. Preferred technical and professional experience * Preferred OEM Certified SOAR specialist + CEH * Ambitious individual who can work under their own direction towards agreed targets/goals and with creative approach to work * Intuitive individual with an ability to manage change and proven time management * Proven interpersonal skills while contributing to team effort by accomplishing related results as needed * Up-to-date technical knowledge by attending educational workshops, reviewing publications

The role supports full end to end software development cycle, from initial client engagement, through assessments and road-mapping, to longer term engagement in an advisory capacity. As an Application Security Consultants, the person should leverage the technical expertise of the security competencies, varied product and delivery capabilities. Hands on experience in Secure SDLC, DAST, SAST, HP Fortify and Burp Suite Provide strategic advice and insights to clients based on deep domain knowledge and industry best practices. Identify potential risks and develop mitigation strategies to ensure project success and client satisfaction. Lead and coordinate incident response activities, including investigation, containment, and remediation of security incidents. Provide security training and awareness programs to developers on security policies, procedures, and best practices. Ensure applications team adhere to relevant security standards, regulatory requirements, and industry best practices (e.g., OWASP, NIST, PCI DSS). Provide support for regulatory and internal audits, diligently tracking reported observations through to closure Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional expertise BE/Btech/MCA/M.Tech. 5-7 yrs hands on experience.Hands on experience in Secure SDLC, DAST, SAST, HP Fortify and Burp SuiteEnsure applications team adhere to relevant security standards, regulatory requirements, and industry best practices (e.g., OWASP, NIST, PCI DSS). Preferred technical and professional experience OEM certification from one of the following, HP Fortify and Burp Suite

This role is responsible for supporting engineering efforts to enable and enforce identity security across JLL's global technology footprint. This position will support strategic identity security initiatives across the company as well as delivering identity security controls around both human and non-human identities. The Identity Security Engineer provides knowledge, guidance, and ownership around identity security capabilities across a range of on-premises, cloud-hosted, and third-party SaaS platforms. The ideal candidate will have a strong background in designing and executing best practices for secure management of identity and integrating multiple technologies. We are looking for a highly collaborative technical engineer who can execute at both the strategic and tactical levels in a large, complex, and highly dynamic environment. Primary Responsibilities: Support the JLL enterprise Identity Security Engineering team's focus on both human and non-human identities Serve as engineer on both implementing and supporting secure identity practices in technology architectures Systematically modify and control identity security policy, standards and guidance to address use cases related users, on-premises services, cloud service providers, and SaaS Collaborate closely with teams responsible for Active Directory, authentication services, and PKI to enable compliance with security policy and standards In partnership with the network security organization, lead the delivery of JLLs zero trust strategy for users and third parties Design privileged access management controls for all privileged accounts that minimize potential for abuse while enabling detection and response to insider and external cyber threats Provide support alongside a team of identity security professionals responsible for enabling the secure design of identity services, as well as delivering controls engineering to enforce account security policies and standards Job Requirements: 4+ years of technical cybersecurity experience with at least 5 years of identity security experience Proven experience in enhancing and maturing identity security programs across enterprise technology environments Experience with Service Account, API, token, and secrets management solutions Demonstrable experience enabling and enforcing identity security across M365 suite, internally developed applications, cloud services, and on-premises appliances Experience implementing and managing privileged access management (CyberArk preferred) solutions Experience collaborating with cyber threat management and insider threat teams to enable detection, monitoring, and incident response efforts Experience supporting Active Directory environments to ensure compliance with security policies and standards Strong knowledge of security frameworks and standards (e.g., ISO, NIST, ATT&CK) Ability to adapt and prioritize in a fast-paced work environment Excellent written and oral communication skills Work independently and within a team to build relationships and interact effectively with business partners. A desire to work within a diverse, collaborative, and driven professional environment.

Role: Threat Hunter Primary Skills 8+ years experience of working in IT Security and relevant areas like Security Operations Centre, Incident Response, Threat Intelligence, Digital Forensics, Threat Hunting, Malware Analysis etc. Should have experience to handle Incident Response for diverse financial organization environment. Proven experience in handling security events in mission critical environments, hands-on troubleshooting, analysis, and technical expertise to guide team members in resolution of incidents as agreed by SLA. In depth understanding of incident response frameworks such as NIST and SANS. Strong knowledge of enterprise detection technologies and processes (Advanced Threat Detection Tools, IDS/IPS, Network Packet Analysis, Endpoint Protection) Responsibilities: Manage all aspects of Security Incident Response and Threat Hunting including validation, monitoring, containment, log analysis, system forensic analysis, and reporting. Work closely with SOC Manager and business stakeholders to meet project deliverables. Carrying out post-incident reviews, assessing the effectiveness of controls, detection and response capability and supporting the required improvements with the responsible owners. Should be expertise in Creation of SOP and Playbook. Routinely brief and update senior leadership and other stakeholders on the active incidents and manage expectation. Collaboration with the wider teams (like IT/Business operations teams where applicable) in the production and maintenance of efficient and effective incident response playbooks on timely basis. Collaboration with External Incident Response Retainer services for end-to-end tracking and remediation of security incidents. Recommend system enhancements or compensating controls to remediate security deficiencies. Ensure preservation of all evidence as per applicable laws and regulations and maintain records of chain of custody during incidents

As an OCI Security Engineer at our world-leading global engineering company, your primary responsibility will be to build and manage Security Operations in OCI environments globally. You will be expected to possess the following key knowledge and skills: - Proficiency in Oracle Cloud Infrastructure (OCI) services, including IAM, VCN, WAF, and encryption mechanisms. - Ensuring the secure operation of Oracle ERP applications in OCI, covering databases, middleware, and integrations. - Monitoring event queues and utilizing security management tools effectively. - Knowledge of OCI Security Services and their implementation. - Handling Reporting & MI, Management Information, KPIs, KRIs, Compliance reporting, Audits, ITGC Controls, and Data Protection Compliance. - Identifying, categorizing, prioritizing, and investigating correlated events. - Collaborating and coordinating with multiple teams on security and operational incidents within a globally distributed team. In the domain of Access Control, you will be responsible for: - Managing and monitoring identity and access management (IAM) policies in OCI. - Ensuring least privilege access and proper role-based access controls (RBAC). - Implementing and enforcing multi-factor authentication (MFA) and secure access methods for OCI resources. - Experience in Oracle Access and Segregation of Duties, along with Oracle Identity and Access Management, IDCS, Roles and Permissions, and Privileged Access. For Security Monitoring and Incident Response, you will: - Implement and manage security monitoring tools like Oracle Cloud Guard, Oracle Security Zones, and CASB. - Monitor logs and alerts for OCI services to detect and respond to potential security threats. - Develop and maintain incident response capabilities in OCI and Oracle ERP environments. - Lead the response to security incidents, including investigation, mitigation, and post-incident analysis. - Perform investigation and triage of events and incidents, escalating as per standard operating procedures. - Develop reports, dashboards, real-time rules, and filters on large-scale systems. In terms of Compliance and Governance, your responsibilities will include: - Ensuring compliance with industry standards like ITGC controls, SOX, and internal security policies. - Monitoring and enforcing security policies, procedures, and standards for OCI operations and Oracle ERP systems. - Providing guidance and training to internal teams on OCI security best practices. - Familiarity with Information Security and regulatory frameworks and standards. Lastly, in Automation and Optimization, you will be expected to: - Automate security processes and incident response workflows using OCI native tools and third-party security solutions. - Optimize the security configuration and posture of the OCI environment through continuous monitoring and improvement. - Possess knowledge of Oracle Database security and database security tools. If you are passionate about ensuring the security and compliance of OCI environments on a global scale while driving automation and optimization initiatives, we welcome you to join our team as an OCI Security Engineer.,

As the Site Reliability Engineering Manager for the Efficiency and Performance SRE team at ThousandEyes, located in Bangalore, your responsibilities will revolve around developing, building, and maintaining Resource Intelligence initiatives. These initiatives include cloud cost reporting, cloud cost management, efficiency and utilization indicators, vendor engagement, and enhancing resource- and performance-engineering tooling and protocols. Additionally, you will play a role in developing compliance automation and will be an essential part of the global follow-the-sun SRE on-call rotation. Your expertise is expected in areas such as AWS IAM, cost and resource tooling and reporting, capacity planning, and Infrastructure as Code using Terraform. Leading and inspiring a talented SRE team, fostering a culture of innovation, collaboration, and excellence will be crucial in this role. You will drive the strategic vision for managing cloud-based infrastructure resourcing and reporting systems and ensure clear communication with leadership, stakeholders, and vendors. Collaboration with infrastructure, product, and production engineering teams, including SRE peer groups, will be essential to ensure transparency and accountability of resource utilization. Providing domain-expertise oversight, guidance, and support to the product teams within ThousandEyes, staying updated with industry best practices, tooling, and automation, and driving operational excellence in operations and security processes are key responsibilities. Qualifications for this role include having led a team of 4+ engineers, possessing 4+ years of experience in building and supporting mission-critical services with a focus on automation, availability, and performance, and familiarity with operating in public cloud environments. Strong technical leadership, engineering excellence, robust incident response processes, and the ability to provide a technical vision for your team are also required. Experience in formulating a team's technical strategy and roadmap, collaborating effectively with other teams, working on large-scale distributed systems, and balancing tactical needs with strategic growth initiatives are important qualifications. For applicants applying to work in the U.S. and/or Canada, Cisco ThousandEyes offers quality medical, dental, and vision insurance, a 401(k) plan with a Cisco matching contribution, short and long-term disability coverage, basic life insurance, and various wellbeing offerings. Additionally, there are incentives based on revenue attainment, with rates varying based on performance levels.,

As a GCP Certified DevOps or Cloud Engineer, you have the opportunity to join our dynamic team in Mumbai and contribute to innovative solutions that make a real impact. Your role will involve provisioning and managing various GCP services such as Compute Engine, GKE, Cloud Storage, VPC, and IAM using tools like Terraform or Deployment Manager. You will be responsible for designing, implementing, and optimizing CI/CD pipelines utilizing Cloud Build, Jenkins, or GitLab CI. Developing automation scripts in Python, Bash, or Go will be essential to streamline cloud operations efficiently. Containerizing applications with Docker, Kubernetes (GKE), and Helm, focusing on security and scalability, will also be a key aspect of your responsibilities. In this role, you will implement robust monitoring and alerting systems using tools like Cloud Monitoring, Prometheus, and Grafana. Additionally, you will lead incident response, disaster recovery, backups, and RCA processes while maintaining detailed architecture diagrams, runbooks, and SOPs for operational excellence. To excel in this position, you should bring at least 4 years of DevOps/Cloud Ops experience, with a strong emphasis on Google Cloud Platform (GCP). Deep hands-on experience with IaC tools such as Terraform or Deployment Manager is required, along with proficient scripting skills in Python, Bash, or Go. Your expertise in containerization with Docker, Kubernetes/GKE, and solid grasp of CI/CD concepts and tools like Cloud Build, Jenkins, and GitLab CI will be invaluable. Experience in implementing monitoring and logging solutions using Prometheus, Grafana, and Cloud Monitoring is also desired. This position is based in Mumbai with work from office flexibility. If you are passionate about DevOps, cloud automation, and building scalable infrastructure, we encourage you to apply now or refer someone from your network who would be a great fit for this exciting opportunity.,

As a Site Reliability Engineering Manager at ThousandEyes, you will lead the Efficiency and Performance SRE team based in Bangalore. Your responsibilities will include developing and maintaining Resource Intelligence initiatives such as cloud cost reporting, management, efficiency indicators, and vendor engagement. Additionally, you will work on improving resource- and performance-engineering tooling, protocols, compliance automation, and participate in the global follow-the-sun SRE on-call rotation. Your expertise in areas like AWS IAM, cost and resource tooling, capacity planning, and Infrastructure as Code using Terraform will be crucial for this role. Leading and inspiring a talented SRE team will be a key part of your role, where you will foster a culture of innovation, collaboration, and excellence. You will be responsible for driving the strategic vision for managing cloud-based infrastructure resourcing and reporting systems. Clear communication with leadership, stakeholders, vendors, infrastructure, product, and production engineering teams will be essential to ensure transparency and accountability of resource utilization. Staying current with industry best practices, tooling, and automation will be important to enhance the platform and systems. You will drive operational excellence in operations and security processes while mentoring and developing engineering talent within the Efficiency and Performance SRE team. Your role will also involve collaborating with multiple teams to execute shared goals and formulate technical strategies and roadmaps. To qualify for this role, you should have experience leading a team of 4+ engineers and a total of 4+ years of experience in building and supporting mission-critical services with a focus on automation, availability, and performance. Experience in public cloud environments, incident response processes, and technical leadership is required. You should be able to provide a strong technical vision for your team, balance tactical needs with strategic growth, and have worked on large-scale distributed systems with multi-tiered architecture.,

As an IT Analyst specializing in Security, Risk, and Compliance at the World Bank, your primary responsibility will be managing high-visibility security incident responses. You will play a crucial role in identifying, containing, and remediating critical security incidents under intense pressure and round-the-clock availability. Your technical skills and interpersonal abilities will be essential in handling high-impact incidents effectively. You will work closely with the Information Security Operations Center (ISOC) team on a 24x7x365 basis, reviewing security alerts, conducting investigative actions, and participating in all phases of the security incident response process. Your duties will include recording detailed Security Incident Response activities, developing alerts using Security Information and Event Management (SIEM) capabilities, and assisting in setting up frameworks for security incident response. You will also be responsible for maintaining technical proficiency in information security concepts, sharing knowledge through training activities, and contributing to the development of ISMS procedures related to ISOC compliance. Additionally, you will be expected to create periodic status reports, support the R&D lab, and respond to high-impact incidents such as ransomware, data leakage, and internal threats. To qualify for this role, you should hold a Bachelor's degree in computer science, information technology, systems engineering, or a related field, and have a minimum of 5 years of experience in Information Security, with a significant portion of that time spent in a SOC environment. Experience in investigations, log analysis, forensic analysis, and working with malware incidents is crucial. Familiarity with industry-standard processes, Agile methodologies, and knowledge of common hacking tools and techniques are also desirable. Preferred skillsets for this position include certifications such as GIAC Certified Intrusion Analyst (GCIA) or GIAC Certified Incident Handler (GCIH). In terms of competencies, you should demonstrate client understanding and advising, a learning orientation, broad business thinking, compliance with standards, and knowledge of emerging technology. The World Bank Group offers comprehensive benefits, including retirement plans, medical and life insurance, paid leave, and accommodations for individuals with disabilities. If you are passionate about making a meaningful impact in the field of information security and are committed to continuous learning and development, this role at the World Bank as an IT Analyst in Security, Risk, and Compliance could be the ideal opportunity for you.,