1461 Incident Response Jobs - Page 15

Employment Type: Full-time Job Description: We are looking for an experienced Senior System Security Administrator with 8+ years of expertise in managing, securing, and optimizing enterprise systems. The candidate will focus on Active Directory (AD), Antivirus solutions with Endpoint Detection and Response (AV-EDR), and DNS & DHCP services. This role requires advanced troubleshooting skills, a deep understanding of system security principles, and relevant industry certifications. Roles and Responsibilities • Design, implement, and manage multi-domain Active Directory environments. • Develop and enforce AD policies, including Group Policy Objects (GPOs), user and device management, and OU structures. • Ensure AD security by implementing privileged access management, auditing, and securing domain controllers. • Troubleshoot and resolve AD replication, authentication, and authorization issues. • Deploy, manage, and optimize enterprise AV-EDR solutions (e.g., CrowdStrike, Sophos). • Monitor, detect, and respond to endpoint security threats and vulnerabilities. • Conduct regular updates, patching, and fine-tuning of AV-EDR policies. • Perform threat analysis, incident response, and root cause investigation for endpoint-related incidents. • Configure and maintain enterprise DNS and DHCP systems (e.g., Infoblox, Windows Server). • Ensure high availability, redundancy, and fault tolerance of DNS & DHCP services. • Implement DNSSEC, IPAM solutions, and other security measures to prevent spoofing,

About Our Company: SpinSci Technologies is a leading innovator in the healthcare technology sector, dedicated to developing cutting-edge products that enhance patient care, streamline operations, and improve health outcomes. We are rapidly expanding our cloud infrastructure across both Amazon Web Services (AWS) and Oracle Cloud Infrastructure (OCI) to deliver highly secure, scalable, and reliable healthcare solutions. We are seeking a passionate and skilled SecOps Engineer to join our growing team and fortify our security posture. Job Summary: As a SecOps Engineer, you will play a critical role in safeguarding our cloud-native healthcare products and infrastructure hosted on AWS and OCI. You will be responsible for the detection, analysis, and response to security incidents, while also proactively identifying and mitigating security risks. This role requires a strong understanding of cloud security principles, incident response methodologies, vulnerability management, and the unique compliance requirements within the healthcare industry (e.g., HIPAA, GDPRSOC 2, ISO 27001). Key Responsibilities: Security Monitoring & Alerting: Design, implement, and manage security monitoring tools and platforms (e.g., SIEM, EDR, Cloud Native Security Tools) across AWS and OCI environments. Develop and fine-tune security alerts, dashboards, and reports to detect suspicious activities, anomalies, and potential threats. Perform real-time security event analysis and triage. Incident Response & Management: Lead security incident response efforts from detection to resolution, including containment, eradication, recovery, and post-mortem analysis. Develop, maintain, and test incident response plans and playbooks. Coordinate with internal teams (DevOps, Engineering, IT) and external stakeholders during security incidents. Vulnerability Management: Conduct vulnerability scanning, penetration testing coordination, and security assessments of cloud infrastructure, applications, and network components. Prioritize, track, and validate remediation of identified vulnerabilities. Cloud Security Operations: Implement and enforce security best practices for AWS and OCI services (e.g., IAM, network security, data encryption, security groups, WAFs, security policies). Automate security tasks, responses, and deployments using Infrastructure as Code (IaC) tools (e.g., CloudFormation, Terraform). Manage cloud access controls, ensuring least privilege access principles are followed. Compliance & Audit Support: Ensure adherence to healthcare industry regulations (e.g., HIPAA, HITECH) and security standards (e.g., SOC 2, ISO 27001). Assist in internal and external security audits, providing necessary documentation and evidence. Implement controls to meet compliance requirements. Security Tooling & Automation: Evaluate, deploy, and manage security tools and technologies that enhance our SecOps capabilities. Drive automation initiatives to improve the efficiency and effectiveness of security operations. Security Awareness & Training: Contribute to fostering a strong security culture within the organization. Provide guidance and support to development and operations teams on secure coding and infrastructure practices. Required Qualifications: Bachelors degree in computer science, Information Security, or a related field; or equivalent practical experience. 3-5+ years of experience in Security Operations (SecOps), Cyber Security, or a similar role, with a strong focus on cloud environments. Demonstrable experience with security services and best practices in AWS . Familiarity with security concepts and services in Oracle Cloud Infrastructure (OCI) . Strong understanding of security frameworks and compliance standards relevant to healthcare (e.g., HIPAA, SOC 2, ISO 27001). Experience with SIEM (Security Information and Event Management) tools (e.g., Splunk, ELK Stack, Sumo Logic, Sentinel). Proficiency in scripting languages (e.g., Python, Bash) for automation and data analysis. Solid understanding of networking protocols, operating systems (Linux/Windows), and web application security. Experience with incident response methodologies and tools. Excellent analytical, problem-solving, and communication skills. Preferred Qualifications: AWS Security Specialty certification or other relevant AWS certifications. OCI Foundations Associate, OCI Security Professional, or other relevant OCI certifications. Experience with container security (Docker, Kubernetes) and serverless technologies. Familiarity with DevSecOps principles and integrating security into CI/CD pipelines. Experience with vulnerability management platforms (e.g., Qualys, Tenable, Nessus). Knowledge of penetration testing methodologies and tools.

Role & responsibilities The Cyber Security Team Lead will support the Head of Information Security in the development, implementation, and management of the organization's information security strategy. This role involves overseeing daily operations, ensuring the security of information assets, managing security incidents, and fostering a security-conscious culture within the organisation. Key Responsibilities: Strategic Support: Assist in the development and execution of the organization's information security strategy and policies. Provide strategic guidance and leadership in all areas of information security. Operational Management: Oversee day-to-day security operations, including monitoring, threat management, and incident response. Ensure effective 24/7 monitoring and incident handling. Risk Management: Identify and assess security risks, and develop mitigation strategies. Conduct regular security audits and vulnerability assessments. Incident Response: Lead the response to security incidents and breaches, ensuring timely and effective resolution. Develop and maintain the incident response plan, including conducting regular drills. Compliance and Governance: Ensure compliance with relevant security standards, regulations, and frameworks (e.g., ISO 27001, NIST, GDPR). Maintain up-to-date documentation of security policies, procedures, and incidents. Team Leadership: Supervise and mentor the information security team, providing guidance and support. Foster a collaborative and high-performance team environment. Training and Awareness: Develop and deliver security training and awareness programs for employees. Promote a culture of security awareness throughout the organization. Stakeholder Collaboration: Collaborate with IT, legal, HR, and other departments to ensure cohesive security practices. Serve as a key point of contact for security-related matters with external partners and vendors. Preferred candidate profile Education: Bachelors degree in Computer Science, Information Technology, Cybersecurity, or a related field. Masters degree is a plus. Certifications: Relevant certifications such as CISSP, CISM, CISA, or equivalent. Experience: Minimum of 7-10 years of experience in information security, with at least 3 years in a leadership role. Proven experience in managing security operations, incident response, and risk management. Skills and Competencies: Technical Expertise: Strong knowledge of information security principles, technologies, and best practices. Experience with security tools and technologies such as SIEM, firewalls, IDS/IPS, and endpoint protection. Analytical Skills: Ability to analyse complex security issues and develop effective solutions. Strong risk assessment and management skills. Leadership and Communication: Excellent leadership and team management skills. Strong verbal and written communication skills, with the ability to convey complex security concepts to non-technical stakeholders. Problem-Solving: Strong critical thinking and problem-solving abilities. Ability to remain calm and effective in high-pressure situations. Additional Requirements: Availability for on-call duties and to respond to security incidents outside regular working hours. Willingness to travel as needed.

Your Career Were seeking an experienced Cloud SRE lead to lead high-severity incident and problem management across our GCP-centric platforms. This role combines deep technical troubleshooting with process ownership, ensuring rapid recovery, root cause elimination, and long-term reliability improvements. You will own L3 OnCall responsibilities, drive post-incident learning, and champion automation and operational excellence. Implement and lead post-mortem processes within SLAs, identify root causes, and drive corrective actions to reduce repeat incidents. Your Impact : In your technical and leadership capacity you will contribute to a seamless production site reliability operations , partnering closely with regional and global SRE counterparts with special attention to the below Incident Analysis & Problem Management: Implement and lead post-mortem processes within SLAs, identify root causes, and drive corrective actions to reduce repeat incidents. Establish and maintain a problem backlog, ensuring timely resolution and continuous process improvement. Troubleshooting: Rapidly diagnose and resolve failures across Kubernetes, Terraform, and GCP using advanced troubleshooting frameworks. Preventative Measures: Implement automation and enhanced monitoring to proactively detect issues and reduce incident frequency. Stakeholder Communication: Work with GCP / AWS TAMs and othre vendors to request new features or followups for updates. Mentorship: Coach and elevate SRE and DevOps teams, promoting best practices in reliability and incident/problem management. Documentation: Establish and maintain a problem backlog, ensuring timely resolution and continuous process improvement. Envision the future or SRE with AI/ML : Ability to envision how a modern SRE team should operate leveraging AI/ML Qualifications Your Experience 12+ years of experience in SRE/DevOps/Infrastructure roles, with a strong foundation in cloud-based environments. 5+ years of proven experience managing SRE/DevOps teams, preferably with a strong focus on Google Cloud Platform (GCP). Deep hands-on knowledge of Terraform, Kubernetes (GKE), GitLab CI/CD, and modern observability practices (e.g., Prometheus, OpenTelemetry). Strong experience in managing incident response and postmortems, reducing MTTR, and driving proactive reliability improvements. Proficiency with cloud platforms such as GCP & AWS. Solid grasp of Infrastructure as Code, container orchestration, and scalable cloud architectures. Track record of building tools for system reliability, automated remediation, and performance tuning. Experience leveraging AI/ML-based operations tools for automation, anomaly detection, and predictive alerting is a plus. Expertise in SLI/SLO/SLA design and implementation, and driving operational maturity through data. Strong interpersonal and leadership skills, with a demonstrated ability to coach, mentor, and inspire teams. Effective communicator, capable of translating complex technical concepts to non-technical stakeholders. Committed to inclusion, collaboration, and creating a culture where every voice is heard and respected. Additional Information The Team To stay ahead of the curve, its critical to know where the curve is, and how to anticipate the changes were facing. For the fastest-growing cybersecurity company, the curve is the evolution of cyberattacks and access technology and the products and services that dedicatedly address them. Our engineering team is at the core of our products connected directly to the mission of preventing cyberattacks and enabling secure access to all on-prem and cloud applications. They are constantly innovating challenging the way we, and the industry, think about Access and security. These engineers arent shy about building products to solve problems no one has pursued before. They define the industry, instead of waiting for directions. We need individuals who feel comfortable in ambiguity, excited by the prospect of challenge, and empowered by the unknown risks facing our everyday lives that are only enabled by a secure digital environment. Our engineering team is provided with an unrivaled chance to create the products and practices that will support our company growth over the next decade, defining the cybersecurity industry as we know it. If you see the potential of how incredible people and products can transform a business, this is the team for you. If the prospect of affecting tens of millions of people, enabling them to work remotely securely and easily in ways never done before, thrill you - you belong with us.

Technical Skills- Penetration Testing, Vulnerability Management, Web Application Security, Network Security, Cloud Security (AWS, Azure), Security Compliance (HIPAA, PCI DSS, ISO 27001, NIST), Security Documentation, Security Tools (Qualys, Burp Suite, Nessus, Metasploit), Security Operations, Incident Response, Forensic Analysis, Risk Assessment, Security Audits Experience: 10+ years City: Bengaluru, Noida, Pune, Mumbai, Hyderabad, Mohali, Panchkula, Chennai Job Description: The candidate will have expertise in penetration testing, cloud security, compliance frameworks (HIPAA, PCI DSS), security documentation, and security tools such as Qualys, Burp Suite, and other industry-standard solutions Strong communication skills and the ability to document security processes effectively are essential for this role Key Responsibilities Penetration Testing & Vulnerability ManagementPerform penetration testing on web applications, networks, and cloud environments to identify security vulnerabilities Utilize tools like Burp Suite, Qualys, Nessus, Metasploit, and other scanning tools to detect threats Work with development and operations teams to remediate vulnerabilities and strengthen security posture Cloud SecurityEnsure cloud security best practices for AWS, Azure, and other cloud platforms Implement security controls for cloud-hosted applications and workloads Conduct security assessments and recommend security enhancements Compliance & Regulatory SecurityEnsure compliance with HIPAA, PCI DSS, ISO 27001, NIST, and other security frameworks Conduct audits, risk assessments, and compliance gap analysis Assist in developing policies, procedures, and security documentation to meet regulatory requirements Security Operations & Incident ResponseMonitor security logs and alerts for threat detection and response Work with security teams to investigate and mitigate security incidents Conduct forensic analysis in the event of security breaches Documentation & CommunicationDevelop and maintain security policies, procedures, and technical documentation Create security reports and communicate findings effectively to stakeholders Provide security training and awareness programs for employees

Your potential, unleashed. Indias impact on the global economy has increased at an exponential rate and Deloitte presents an opportunity to unleash and realize your potential amongst cutting edge leaders, and organizations shaping the future of the region, and indeed, the world beyond. At Deloitte, your whole self to work, every day. Combine that with our drive to propel with purpose and you have the perfect playground to collaborate, innovate, grow, and make an impact that matters. The team Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure, vigilant, and resilientnot only by looking at how to prevent and respond to attacks, but at how to manage cyber risk in a way that allows you to unleash new opportunities. Embed cyber risk at the start of strategy development for more effective management of information and technology risks. Your work profile As an Assistant Manager in our Cyber Team, you’ll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations:- Preferred Knowledge The role requires efficient incident response and digital forensics skills to minimize the impact of cyber risks. The individual will oversee Security monitoring, Security tools Operations, Security incidents, ensure incidents are managed effectively and reported to stakeholders. This role primarily consists of first responder activities and to conducting thorough response activities on behalf of a wide variety of clients across every sector. The role requires efficient incident response and digital forensics skills to minimize the impact of cyber risks. The individual will oversee Security monitoring, Security tools Operations, Security incidents, ensure incidents are managed effectively and reported to stakeholders. This role primarily consists of first responder activities and to conducting thorough response activities on behalf of a wide variety of clients across every sector. Demonstrates proven expertise and success in incident handling, triage of events, network analysis and threat detection, trend analysis. Should have the following skills: Deep understanding of computer intrusion activities, incident response techniques, tools, and procedures Knowledge of Windows, Active Directory, DNS & Linux operating systems, Good Experience in SIEM monitoring (QRadar, Sentinel) Knowledge of SOAR technologies, working with playbooks (Cortex, Phantom, Demisto) Working experience and knowledge of ITSM tools for incident management. Must be action oriented and have a proactive approach to solving issues. Knowledge of security logs, log quality review. Knowledge on IT (Operating systems, networking, databases) and IT security knowledge (system and network security) including IT security tools. Good knowledge of office collaboration tools Roles & Responsibilities Detect, Analyse, Investigate, and report qualified security incidents to the Client as per the defined SLA Provide recommendations to the security incidents reported as per SLA Investigates incidents using various security event sources (FW, IDS, PROXY, AD, EDR, DLP etc.). Investigations into non-standard incidents and execution of standard scenarios. Provide dashboard and data related to Incidents/Offenses for governance reports. Escalates to L3 if investigations uncover unusual or atypical situations. Monitoring unhealthy log source/data source and escalate to engineering team to fix them. Participate in incident response (IR) efforts; detect, identify, respond, contain and remediate all information security incidents. Rapidly and accurately determine the source of a security incident and moving quickly to identify and apply containment, mitigation, and remediation steps. Contribute to the execution of Cyber Security operations, incident response, and investigations spanning across all functions of the Corporate Security organization. Track, monitor incident actions while applying intelligence, situational awareness to prioritise incident actions based on risk Responsible for Incident and Breach communications, assessments, and reports and customer facing, to include leadership and executive management for the purpose of enabling Senior Management to make decisions in a crisis Develop and document processes to ensure consistent and scalable response operations Deliver tabletop IR assessments and real-life IR simulations at a technical and executive level. Conduct in-depth root cause analysis on complex malware and user/system behaviour event Gather and analyse forensic evidence for cyber security incidents and investigations. Develop and document enhanced event analysis and incident response processes and procedures. Required Knowledge Overall experience of at least 4+ years in SIEM monitoring and Cyber security Incident response and Management Hands-on experience with security tools and devices, operating systems, and/or networking devices desired. Proven skills and experience in log analysis, incident investigations Experience working across diverse teams to facilitate solutions Experience working with Security practitioners Willingness to working 24/7 environment in rotating shifts. Ability to work in time-sensitive and stressful situations with ease and professionalism, possess an efficient and versatile communication style Evidence handling Data acquisition (Disk, Memory, Mobile, Cloud, Enterprise Wide) Digital forensics (Windows, Mac OS, Linux/Unix) Thorough understanding of Cyber kill chain and MITRE ATT&CK framework. Experience with one or more of SIEM tools such as QRadar, Sentinel, etc... is required Experience on EDR tools for Incident response and threat hunting (Crowdstrike, MS Defender, Sentinel One) Strong knowledge and experience with commonly used forensic toolsets, including EnCase, FTK. Experience reviewing raw logs and performing advanced data correlation and analysis (i.e., firewall, network flow, IPS, endpoint protection, web application, host OS, database, AAA, etc) Experience of network & host-based forensic analysis and techniques Experience of malware analysis and understanding attack techniques. Industry certifications such as along with experience will be a bonus. Experience in lieu of certification will be taken into consideration Required Qualification Bachelor’s/Master’s Degree (Full-Time) Certifications Certifications like ECIH v2, CHFI, GCIH or GCIA is preferred. Abilities Strong English verbal, written communication, report writing and presentations skills. Ability to multitask and prioritize work effectively. Responsive to challenging tasking. Highly motivated self-starter giving attention to detail. Strong analytical skills and efficient problem solving. Capable to operate in a challenging and fast-paced environment. How you’ll grow Connect for impact Our exceptional team of professionals across the globe are solving some of the world’s most complex business problems, as well as directly supporting our communities, the planet, and each other. Know more in our Global Impact Report and our India Impact Report. Empower to lead You can be a leader irrespective of your career level. Our colleagues are characterized by their ability to inspire, support, and provide opportunities for people to deliver their best and grow both as professionals and human beings. Know more about Deloitte and our One Young World partnership. Inclusion for all At Deloitte, people are valued and respected for who they are and are trusted to add value to their clients, teams and communities in a way that reflects their own unique capabilities. Know more about everyday steps that you can take to be more inclusive. At Deloitte, we believe in the unique skills, attitude and potential each and every one of us brings to the table to make an impact that matters. Drive your career At Deloitte, you are encouraged to take ownership of your career. We recognize there is no one size fits all career path, and global, cross-business mobility and up / re-skilling are all within the range of possibilities to shape a unique and fulfilling career. Know more about Life at Deloitte. Everyone’s welcome entrust your happiness to us Our workspaces and initiatives are geared towards your 360-degree happiness. This includes specific needs you may have in terms of accessibility, flexibility, safety and security, and caregiving. Here’s a glimpse of things that are in store for you. Interview tips We want job seekers exploring opportunities at Deloitte to feel prepared, confident and comfortable. To help you with your interview, we suggest that you do your research, know some background about the organization and the business area you’re applying to. Check out recruiting tips from Deloitte professionals.

As a Specialist - Cyber Security at Accelya in Mumbai, you will play a critical role in implementing and managing the company's information security strategy. Your responsibilities will include focusing on security architecture and engineering, compliance, risk management, and serving as a business security liaison when necessary. You will work closely with various departments to ensure the security of the company's information assets and compliance with relevant regulations and standards. In terms of Security Architecture and Engineering, you will be responsible for maintaining and implementing the security architecture framework to ensure the integrity, confidentiality, and availability of information assets. This will involve overseeing the implementation of security solutions such as network security, endpoint security, and cloud security. You will collaborate with IT and engineering teams to integrate security best practices into system and application development. Additionally, you will perform regular scans for PCI compliance and share periodical reports related to vulnerabilities with other teams for necessary follow-up. Regarding Compliance and Risk Management, you will ensure compliance with relevant regulations, standards, and frameworks like PCI DSS, GDPR, ISO 27001, and NIST. You will participate in and conduct regular security assessments and audits to identify vulnerabilities and recommend remediation actions. Moreover, you will develop and maintain incident response plans and coordinate responses to security incidents. To qualify for this role, you should possess a Bachelor's degree in Information Technology, Computer Science, Information Security, or a related field. A Master's degree is preferred. Professional certifications such as CC, CEH, CompTIA Network+, CCNA, CISSP, CISM, CRISC, or similar are highly desirable. You should have a minimum of 6 years of experience with at least 1 year in information security and at least 3 years in a network engineer or software developer role. Additionally, you should have experience managing vulnerability platforms for internal and external scanning, overseeing deployment of relevant scanning appliances, and a strong understanding of engineering, IT frameworks, standards, and regulations. Accelya offers an open culture, challenging opportunities, flexible working hours, a smart working environment with hybrid remote/office arrangements, work-life balance, and an excellent, dynamic, multicultural atmosphere. It is an Equal Opportunity employer. Accelya is a leading global software provider to the airline industry, supporting over 200 airlines with an open, modular software platform that enables innovative airlines to drive growth, delight customers, and take control of their retailing. With over 2,000 employees across 10 global offices and owned by Vista Equity Partners, Accelya partners with industry leaders to deliver leading-edge technologies and enable innovation-led growth for the airline industry. For more information, please visit www.accelya.com. Join us at Accelya and be a part of shaping the future of the air transport industry!,

You are a highly skilled NOC Security & Backup/Disaster Recovery Engineer responsible for ensuring the availability, reliability, and security of the IT infrastructure for both OneMind and its customers. Your role involves providing 24x7x365 support, resolving incidents, and ensuring business continuity by combining expertise in network operations, security monitoring, and backup/disaster recovery. Your responsibilities include providing first-level 24x7x365 escalation support, monitoring, troubleshooting, and maintaining network, server, and storage infrastructure using various tools, answering customer calls to deliver technical support, diagnosing and resolving issues across different environments, configuring, operating, and upgrading routers, switches, and firewalls, administering and monitoring enterprise backup solutions, executing, testing, and documenting backup and disaster recovery plans, monitoring storage performance and capacity, responding to security incidents, using remote administration tools to diagnose and remediate issues, and creating detailed documentation of calls, incidents, backup logs, and system changes. You should have a strong technical knowledge of networking, operating systems, and storage infrastructure, proficiency in IP networking fundamentals, experience with enterprise backup and disaster recovery solutions, familiarity with network security principles and incident response practices, ability to monitor performance metrics and recommend improvements, strong troubleshooting skills, and excellent communication skills. Preferred qualifications include Cisco Certified Network Associate (CCNA) or higher certification, certification in Backup & Disaster Recovery or Business Continuity Planning (BCP), experience with storage replication technologies and high-availability solutions, 1-3 years of experience in a Network Operations Center (NOC) environment, and willingness to participate in on-call rotations and respond to emergencies promptly. The benefits of this position include attractive bonus/incentive plans, comprehensive healthcare coverage, flexible remote work options, a supportive work environment, stable career opportunities with room for growth and paid certifications, and generous rewards and recognition programs, along with 18 paid holidays.,

About the Company Cloud4C Services is a visionary Cloud Managed Services Provider (MSP) recognized in Gartner's Magic Quadrant (2021). With expertise in multi-cloud migration, management, and disaster recovery, we offer zero data loss guarantees and military-grade security under a single SLA. Operating in 25 countries, we cater to 4000+ global enterprises, including 60 Fortune 500 firms. As certified partners with Azure, AWS, GCP, and Oracle Cloud, we drive seamless digital transformation through our award-winning Hybrid Managed Services model. About the Role We are in search of a Lead Network & Security Engineer proficient in Cloud Hyperscalers (OCI/GCP) to oversee the design, implementation, and maintenance of secure, scalable, and resilient network architectures. The ideal candidate will possess a track record of leading technical teams, spearheading network and security projects, and ensuring adherence to enterprise standards and cloud best practices. Responsibilities Lead the development, deployment, and maintenance of enterprise-grade network & security solutions across OCI/GCP and hybrid environments. Design and oversee firewalls, VPNs, load balancers, IDS/IPS, routing, switching, and cloud-native security tools. Establish and enforce network security policies, compliance standards, and best practices. Collaborate with cloud architects, DevOps, and application teams to ensure secure and optimized connectivity. Take charge of incident response, troubleshooting, and root-cause analysis for network/security incidents. Mentor and provide guidance to junior engineers, promoting knowledge sharing and technical advancement. Assess and integrate new network and security technologies to bolster the organization's cloud security posture. Qualifications Possess 8+ years of IT Infrastructure experience with a focus on network & security engineering. Demonstrate expertise in Hyperscalers (OCI/GCP), encompassing VCN/VPC, subnets, routing, peering, cloud firewalls, and cloud-native security services. Show proficiency in Cisco, Juniper, Checkpoint, Palo Alto, and Fortinet technologies. Hands-on experience with SD-WAN, Zero Trust Network Access (ZTNA), and cloud security tools. Expertise in TCP/IP, DNS, DHCP, VPN, MPLS, BGP, OSPF, SSL/TLS, IPSec. Familiarity with IAM, SIEM, SOAR, endpoint security, and compliance frameworks (ISO 27001, PCI-DSS, GDPR, etc.). Possess exceptional troubleshooting skills to address complex incidents. Previous experience in team leadership or technical lead roles. Required Skills 8+ years of IT Infrastructure experience focusing on network & security engineering. Proven expertise in Hyperscalers (OCI/GCP), covering VCN/VPC, subnets, routing, peering, cloud firewalls, and cloud-native security services. Strong knowledge of Cisco, Juniper, Checkpoint, Palo Alto, and Fortinet technologies. Hands-on experience with SD-WAN, Zero Trust Network Access (ZTNA), and cloud security tools. Expertise in TCP/IP, DNS, DHCP, VPN, MPLS, BGP, OSPF, SSL/TLS, IPSec. Familiarity with IAM, SIEM, SOAR, endpoint security, and compliance frameworks (ISO 27001, PCI-DSS, GDPR, etc.). Exceptional troubleshooting skills with the ability to resolve intricate incidents. Previous involvement in team leadership or technical lead positions. Preferred Skills Hold certifications such as OCI Architect, Google Professional Cloud Network Engineer, CCNP Security, CISSP, or equivalent. Experience in multi-cloud networking and hybrid cloud security. Knowledge of automation/scripting (Python, Terraform, Ansible) for network operations.,

We are seeking a proactive and experienced L2 Security Operations Analyst to join our Security Operations Centre (SOC) team. In this role, you will play a crucial part in detecting, analyzing, and responding to cybersecurity incidents across a hybrid infrastructure that includes AWS Cloud, on-prem infrastructure, and various endpoint systems like Linux, Windows, and macOS. Your expertise with SIEM, EDR, firewalls, and cloud-native security tools, combined with a deep understanding of threat landscapes and incident response processes, will be essential. As an L2 Security Operations Analyst, your responsibilities will include acting as the primary escalation point for the L1 team, investigating, validating, and escalating security alerts, monitoring and analyzing security events from multiple sources, triaging security alerts, correlating data to identify malicious activity patterns, refining detection use cases, updating incident response runbooks, developing automation using SOAR platforms, documenting incidents and root cause analysis, providing status reports and metrics, and collaborating with various teams for investigation and remediation. To qualify for this role, you should have a Bachelor's degree in information security, Computer Science, or a related field, along with 3-6 years of experience in a SOC or cybersecurity operations role. Proficiency in SIEM tools such as Sentinel and Splunk, hands-on experience with EDR/XDR platforms like CrowdStrike and Sentinel One, a strong understanding of network protocols, operating systems, malware analysis, and threat actor behavior, familiarity with frameworks like MITRE ATT&CK and NIST CSF, incident response and investigation skills, and experience with ticketing systems and incident tracking tools are required. If you are looking to join a dynamic team and contribute your expertise to enhancing our cybersecurity posture, we encourage you to apply for the L2 Security Operations Analyst position at mPokket.,

Cyble is at the forefront of cybersecurity intelligence, aiming to provide visibility, intelligence, and protection through cutting-edge technology. With a global presence spanning 20 countries and a commitment to proactive cyber threat detection, Cyble is dedicated to making the digital world a safer place for all. At Cyble, innovation and artificial intelligence drive our operations, ensuring continuous improvement and excellence in products and practices. We prioritize inclusivity, offering autonomy and flexibility to our team members for a balanced professional and personal life. Our culture values every voice, recognizes contributions, and encourages everyone to be part of our extraordinary mission. To learn more about Cyble, visit www.cyble.com. As a Cyber Threat Intelligence Analyst at Cyble, you will be a vital part of our cybersecurity team, responsible for identifying, analyzing, and responding to security threats to enhance our cybersecurity posture continuously. In this role, your responsibilities will include: - Staying updated on the latest cybersecurity threats, vulnerabilities, and attack techniques by monitoring threat intelligence feeds and industry sources. - Leading and participating in incident response activities, from identification to recovery, and conducting post-incident analysis for continuous improvement. - Utilizing advanced security tools to monitor networks, systems, and applications, investigating and resolving security alerts promptly and effectively. - Conducting regular vulnerability assessments, collaborating with customer teams to address identified vulnerabilities, and performing forensic analysis on security incidents and breaches. - Contributing to security research, developing security policies, procedures, and best practices, evaluating potential security risks, and collaborating with teams to implement risk mitigation strategies. - Working closely with cross-functional teams, providing clear communication of threat intelligence to technical and non-technical audiences, and staying updated on industry trends through continuous learning. To qualify for this role, you will need: - A Bachelor's degree in Cybersecurity, Information Security, or a related field. - 4+ years of experience in threat analysis, incident response, and cybersecurity. - Relevant certifications such as CISSP, CISM, GIAC, or equivalent. - Proficiency in security tools and technologies for threat detection and analysis. - Strong analytical and problem-solving skills, along with excellent written and verbal communication abilities. Join Cyble's dynamic team and be part of our mission to revolutionize cybersecurity intelligence and create a safer digital environment for all.,

You are an experienced and dynamic Director of Risk Advisory specializing in Cybersecurity, with a strong emphasis on Vulnerability Assessment & Penetration Testing (VAPT). Your role involves leading the cybersecurity consulting practice, demonstrating deep technical expertise, proven leadership skills, and the capability to handle impactful client engagements within the cybersecurity domain. Your responsibilities will include: Strategic Leadership & Practice Development: - Leading the cybersecurity risk advisory vertical, focusing on VAPT, threat management, and overall cyber resilience. - Developing and implementing strategies for cybersecurity consulting services that align with business objectives. - Establishing frameworks, methodologies, and innovative approaches for cybersecurity risk management. - Managing P&L, business development, and client portfolio growth for the cyber risk practice. Client Engagement & Delivery Management: - Leading end-to-end VAPT engagements, including scoping, planning, execution, and reporting. - Providing guidance to clients on threat detection, vulnerability remediation, and enhancing security posture. - Cultivating and nurturing strong relationships with CXO-level stakeholders and technical teams. - Ensuring delivery excellence on all client engagements with measurable business outcomes. Technical Expertise: - Offering subject matter expertise on VAPT, red teaming, threat modeling, and incident response. - Supervising testing methodologies for various platforms such as web applications, mobile apps, cloud environments, APIs, IoT, and network infrastructure. - Ensuring timely identification of security vulnerabilities and suggesting actionable mitigation strategies. - Keeping abreast of the evolving cybersecurity threat landscape and regulatory requirements. Team Leadership: - Leading, mentoring, and fostering the growth of a high-performing cybersecurity consulting team. - Conducting knowledge-sharing sessions, technical workshops, and training programs. - Driving talent acquisition and capability building within the cybersecurity practice. Required Skills & Qualifications: - Education & Certifications: Bachelor's or Master's degree in Computer Science, Information Security, or a related field. Preferred certifications include OSCP, OSWE, CREST, CEH, CISSP, CISM, ISO 27001 LA, CRTP, or equivalent. - Technical Expertise: 12+ years of experience in cyber risk advisory, VAPT, and security consulting. Proven expertise in managing enterprise-scale VAPT projects across BFSI, Telecom, and other domains. Hands-on knowledge of tools like Burp Suite, Nessus, Qualys, Metasploit, Nmap, Kali Linux, Wireshark, etc. Deep understanding of cloud security, container security, and emerging technologies. - Leadership & Business Skills: Experience in overseeing large cybersecurity programs and multiple client portfolios. Strong business acumen with a focus on revenue growth. Exceptional stakeholder management, negotiation, and presentation skills.,

As a Splunk Security Engineer / SOC Specialist at our TOP MNC, you will have the opportunity to work on cutting-edge Splunk deployments and drive innovation in cybersecurity operations. If you are passionate about security, analytics, and enjoy solving complex problems, we invite you to join our team. We are looking for individuals with 5-8 years of experience who are immediate joiners and willing to work in a Pan India(Hybrid) location. In this role, you will be responsible for driving complex Splunk deployments, addressing unique customer challenges, and working across diverse use cases. Your responsibilities will include leveraging best practices to create innovative solutions that maximize Splunk adoption and value. You will be involved in performing advanced SOC operations such as monitoring, alerting, escalation, and incident resolution. Additionally, you will triage and resolve incidents that go beyond predefined procedures, assist clients with advanced incident response and remediation, and conduct advanced intelligence research activities. If you are someone who excels in high-impact environments and is eager to contribute to the field of cybersecurity, we encourage you to apply now or share your CV at kalyani@coretek.io. Join us in making a difference in the world of cybersecurity and driving forward innovation in the industry.,

As a Level 3 Network and Security Engineer with 6-8 years of experience, you will be responsible for implementing, maintaining, and supporting data networks. Your role will include working with various technologies such as routing, switching, firewall, wireless, encryption, and cloud. You must have a solid understanding of routing protocols like OSPF, EIGRP, and BGP, as well as experience with FlexVPN, DMVPN, and wireless technologies including Juniper Mist, Cisco WLC, and Aruba. Additionally, you should possess deep knowledge of firewall technologies such as FortiGate, Palo-Alto, and Cisco ASA. In this role, you will work with appliances like ISE, HP ClearPass, Cisco ACS, IPAM, DHCP server, and Infoblox. Experience in encryptions, certificate/SSL configuration, and working with Cisco Nexus platform is essential. You should be proficient in troubleshooting VLANs, VTP, STP, Port channel, HSRP, VRRP, GLBP, VSS, VPC, VDC, and other network technologies. Furthermore, you will be expected to have expertise in Nexus technology, wireless controller troubleshooting, VPN tunnels, AWS, Azure, and tools like Zabbix and Wireshark. Your responsibilities will also include being customer-centric, handling P1/P2 escalations, incident response and resolution, and providing technical leadership within the team. To be successful in this role, you should possess CCNP and preferably CCIE certifications. You will work in a fast-paced environment, following detailed change management and incident management processes. Collaboration with other technical teams and ensuring network security infrastructure performance and availability are key aspects of this position. As part of CGI, a global IT and business consulting services firm, you will have the opportunity to contribute meaningfully, develop innovative solutions, and shape your career in a supportive and growth-oriented environment. Join us as a CGI Partner and be part of a team that values ownership, teamwork, respect, and belonging.,

You will be responsible for improving the organization's information security posture to reduce the risk of cyber attacks on wind farms and its infrastructure, thereby minimizing financial and operational losses. Your role will involve building trust with customers and ensuring organizational compliance with regulators to avoid penalties. Cyber attacks have the potential to harm the organization's reputation and misuse its data. Therefore, a key objective will be to make the organization cyber resilient to mitigate these risks effectively. Your key responsibilities will include: - Developing, implementing, and maintaining OT security policies, standards, and procedures to safeguard critical infrastructure and operations. - Conducting regular risk assessments of OT systems and networks, identifying vulnerabilities, and implementing appropriate security controls and countermeasures to mitigate risks. - Monitoring OT systems for security threats and incidents, responding to security breaches, and implementing corrective actions to prevent recurrence. - Ensuring compliance with industry regulations and standards such as NIST, IEC 62443, and conducting regular security audits to maintain a secure environment. - Managing incidents effectively and efficiently to minimize the impact on operations. - Conducting security awareness training for employees to foster a strong security culture within the organization. - Managing relationships with OT security vendors to ensure that their products and services meet the organization's security requirements. To be successful in this role, you should have: - 7+ years of experience in OT security management with a solid understanding of security principles and best practices. - Minimum 3-5 years of experience in assessing against standards and frameworks such as IEC-62243/ISA-99, NIST CSF, NERC CIP, etc. - Relevant certifications such as CISSP, GICSP, GRID, GCIP, etc. to demonstrate your expertise in the field.,

The Network Operations Center (NOC) Manager in a Managed Service Provider (MSP) environment is a key role responsible for supervising the 24x7 NOC operations providing services including NOC, SOC, and Helpdesk to various clients. As the NOC Manager, you will play a crucial role in ensuring the availability, security, and performance of clients" IT infrastructure across different operating systems, cloud platforms, and networking environments. Reporting to the Director at the USA Headquarters, you will lead a team of NOC engineers working in rotational shifts, focusing on effective remote monitoring, management, and incident response. Your primary responsibilities will include overseeing NOC operations and incident management, leading a team of NOC engineers, managing remote monitoring and management (RMM), providing client infrastructure support, driving process improvement, and collaborating with global teams. You will work closely with the Sr. NOC Manager to enhance operational efficiency, ensure compliance with industry standards, and maintain high service standards through effective communication, leadership, and technical expertise. As an ideal candidate, you should possess 8+ years of experience in a NOC/MSP environment, with at least 3 years in a managerial role. Strong technical skills in Windows/Linux servers, cloud platforms (Azure, AWS, GCP), and networking are essential, along with hands-on experience in incident response, troubleshooting, and IT infrastructure monitoring. Additionally, leadership qualities such as team management, communication, decision-making, and documentation skills are crucial for success in this role. Preferred certifications include ITIL v4 Foundation, Microsoft Azure Administrator (AZ-104), AWS Certified SysOps Administrator, Cisco CCNA/CCNP, and CompTIA Network+/Security+. Joining our team offers the opportunity to lead a high-performing NOC team, work with cutting-edge technologies, and grow your career in a collaborative and fast-paced work environment. If you are passionate about optimizing IT infrastructure and ensuring service excellence, we invite you to apply for this exciting opportunity.,

Product Development Management is a fast-paced environment where innovative thinking is prized. Our team focuses on the delivery of products or computer-based systems for external customers. We lead and deliver the entire lifecycle from product definition and planning through to production and release. We also oversee modifications, upgrades and maintenance of the product or product line. And to make the whole process run smoothly and seamlessly, we're experts in project management, from initiation through to delivery, and liaise with other departments on technical matters. Join us to do the best work of your career and make a profound social impact as a Product Management Consultant on our Product Management Team in Pune. As a Product Management Consultant, you will be responsible for shaping Dell's Data Protection security strategy and driving the development of innovative, secure solutions across our portfolio. You will work with cross-functional teams and some of the world's most security-conscious customers to deliver technologies that protect mission-critical data and ensure compliance in a rapidly evolving cybersecurity and regulatory landscape. You will drive innovation and strategic prioritization by identifying differentiated security features through market and competitive analysis, aligning initiatives with business goals, and championing capabilities that advance our data protection offerings. Additionally, you will lead cross-functional product execution by partnering with engineering, sales, channel partners, and customers to define security requirements and deliver impactful, customer-centric solutions. Leveraging your deep technical acumen, you will engage in architectural and functional design discussions, evaluate trade-offs, challenge assumptions, and assess security risks associated with key decisions. As the Data Protection Security subject matter expert, you will support field teams and customers with clear guidance, documentation, and advocacy around product capabilities, strengths, and limitations. Moreover, you will coordinate urgent security incident responses with urgency and precision by collaborating with Engineering, Legal, Support, Communications, and incident response teams to ensure effective resolution of high-impact vulnerabilities. Every Dell Technologies team member brings something unique to the table. For this role, we are looking for individuals with 5+ years of Product Management experience or equivalent experience in engineering, support, or technical sales within the enterprise data protection and/or security domain. You should have end-to-end technical expertise in security and data protection, including encryption, identity and access management, PKI, CA certificates, and security best practices for various environments. Proven ability to create and maintain a prioritized product roadmap, communicate it effectively to stakeholders, and adapt based on market feedback and business needs is essential. Strong analytical and communication skills are required to translate customer needs, product usage data, and market trends into actionable insights while aligning cross-functional teams and building productive stakeholder relationships. Additionally, familiarity with modern security ecosystems, third-party security integrations, regulatory frameworks, and the impact of AI on security and data workflows will be advantageous. Experience with go-to-market strategy execution and a bias for action in driving cross-functional initiatives and product success are desirable qualities. Dell Technologies is committed to providing employees with a work environment free of discrimination and harassment. If you're looking for an opportunity to grow your career with some of the best minds and most advanced tech in the industry, we're looking for you. Join us to build a future that works for everyone because Progress Takes All of Us.,

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Threat Hunting Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to assess security needs, documenting the implementation of cloud security controls, and transitioning to cloud security-managed operations. You will engage in discussions to refine security strategies and ensure that the architecture aligns with organizational objectives, while also addressing any emerging security challenges in the cloud environment. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Facilitate training sessions to enhance team knowledge and skills in security practices.- Monitor and evaluate the effectiveness of implemented security measures and recommend improvements. Professional & Technical Skills: - Must To Have Skills: Proficiency in Security Threat Hunting.- Strong understanding of cloud security principles and frameworks.- Experience with security incident response and threat intelligence.- Familiarity with security compliance standards and regulations.- Ability to analyze security risks and develop mitigation strategies. Additional Information:- The candidate should have minimum 5 years of experience in Security Threat Hunting.- This position is based at our Gurugram office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Threat Hunting Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to assess security needs, documenting the implementation of cloud security controls, and transitioning to cloud security-managed operations. You will engage in strategic discussions to align security measures with organizational objectives, ensuring a robust security posture in the cloud environment. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Facilitate training sessions to enhance team knowledge and skills in security practices.- Evaluate emerging security technologies and recommend improvements to existing security frameworks. Professional & Technical Skills: - Must To Have Skills: Proficiency in Security Threat Hunting.- Strong understanding of cloud security principles and best practices.- Experience with threat detection and incident response methodologies.- Familiarity with security compliance frameworks and regulations.- Ability to analyze security incidents and develop effective mitigation strategies. Additional Information:- The candidate should have minimum 7.5 years of experience in Security Threat Hunting.- This position is based at our Gurugram office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Security Engineer Project Role Description : Apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Must have skills : Accenture MxDR Ops Security Threat Analysis Good to have skills : NAMinimum 2 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Engineer, you will apply your security skills to design, build, and protect enterprise systems, applications, data, assets, and people. A typical day involves collaborating with various teams to implement security measures, conducting assessments to identify vulnerabilities, and ensuring that all systems are fortified against potential cyber threats. You will also engage in continuous learning to stay updated on the latest security trends and technologies, contributing to a safer digital environment for the organization. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work related problems.- Conduct regular security assessments and audits to identify vulnerabilities.- Develop and implement security policies and procedures to safeguard information and assets. Professional & Technical Skills: - Must To Have Skills: Proficiency in Accenture MxDR Ops Security Threat Analysis.- Strong understanding of security frameworks and compliance standards.- Experience with incident response and threat hunting methodologies.- Familiarity with security information and event management tools.- Knowledge of network security protocols and best practices. Additional Information:- The candidate should have minimum 2 years of experience in Accenture MxDR Ops Security Threat Analysis.- This position is based at our Bengaluru office.- A 15 years full time education is required. Qualification 15 years full time education

Role The Solutions Consultant is the evolution of the traditional Sales Engineering role, aligning how we best serve our customers in understanding their environment, providing solution guidance and ensuring value realization in their investment with Palo Alto Networks. As a Solutions Consultant you provide technical leadership and expertise and guidance in your customers security transformation journey. You will play a key role in defining technical solutions that secure a customers key business imperatives and ensuring value realization of their investment with Palo Alto Networks. You evangelize our industry leadership in on-prem, cloud, and security operations services that establish PANW as your customers cybersecurity partner of choice. Responsibilities Meeting and exceeding sales quotas by building and implementing strategic, technical account plans that target cross-platform solutions Your ability to position, demonstrate and create high level designs across the entire PANW portfolio based on customer business needs Conducting discovery to understand and articulate the key technical, operational, and commercial imperatives of your prospects and customers Working closely with Professional Services, Customer Success and Specialist teams to ensure overall customer implementation and adoption of solutions Demonstrating strong communication skills and the ability to influence through effective presentations and customer-specific demos, technical engagements, and workshops Leading successful technical validation efforts based on best practices to ensure technical win in assigned opportunities Orchestrating supporting resources (Specialists, Channel Resources, Customer Support) to ensure a one-team approach that demonstrates a cohesive strategy Promoting end-to-end solutions that include PANW and/or partner professional services to ensure customers realize business value sooner Understanding the competitive landscape and effectively differentiating our leadership Continuously investing in yourself to develop technical and professional skills that drive your ever-increasing contributions to success of our customers while actively participating within the Solutions Consultant community and at industry events Identifying technical stakeholders and cultivating relationships with key personas to build and drive a security architecture transformation roadmap Qualifications Your Experience Having experience of 10+ years in handling State government departments Understanding of data networking and/or modern application design and cloud architectures Delivering cybersecurity solutions that solve technical challenges and influence new business initiatives Influencing and gaining buy-in from key stakeholders, either in a customer-facing or internal role; prior experience in a pre-sales role is ideal Handling Government tenders , RFP Management , connects in State Government accounts & Government centric Partner ecosystem (Consulting Partners, SIs etc) Creating and delivering technical presentations, workshops, or technical validation engagements Experience in selling, designing, implementing, or managing one or more of the following solutions: Network Security firewalls (i.e., hardware and virtual), proxy, IPS/IDS, sandboxing, URL filtering, and DNS security SASE, SaaS, CNAPP and/or SOC Transformation Technologies. Partnering with Customer Support functions to ensure successful implementation and adoption of sold solutions Complex sales involving long sales processes with multiple buying centers and multi-product solutions are preferred Additional Information The Team Solutions Consultant team members work hand-in-hand with large organizations around the world to keep their digital environments protected. We educate, inspire,and empower our potential clients in their journey to transform their security architectures. You are empowered with unmatched systems and tools and a team built on joint success. You wont find someone at Palo Alto Networks that isnt committed to your success with everyone pitching in to assist when it comes to solutions selling, learning, and development. Our Solutions Consulting community is driven by the mission to be our customers cybersecurity partner of choice, protecting their digital way of life.

About Zscaler Serving thousands of enterprise customers around the world including 45% of Fortune 500 companies, Zscaler (NASDAQ: ZS) was founded in 2007 with a mission to make the cloud a safe place to do business and a more enjoyable experience for enterprise users. As the operator of the world’s largest security cloud, Zscaler accelerates digital transformation so enterprises can be more agile, efficient, resilient, and secure. The pioneering, AI-powered Zscaler Zero Trust Exchange™ platform, which is found in our SASE and SSE offerings, protects thousands of enterprise customers from cyberattacks and data loss by securely connecting users, devices, and applications in any location. Named a Best Workplace in Technology by Fortune and others, Zscaler fosters an inclusive and supportive culture that is home to some of the brightest minds in the industry. If you thrive in an environment that is fast-paced and collaborative, and you are passionate about building and innovating for the greater good, come make your next move with Zscaler. Our Engineering team built the world’s largest cloud security platform from the ground up, and we keep building. With more than 100 patents and big plans for enhancing services and increasing our global footprint, the team has made us and our multitenant architecture today's cloud security leader, with more than 15 million users in 185 countries. Bring your vision and passion to our team of cloud architects, software engineers, security experts, and more who are enabling organizations worldwide to harness speed and agility with a cloud-first strategy. We're looking for an experienced Senior Staff Software Engineer to join our Shared Platform Services team. Reporting to the Manager, Software Engineering in Bangalore, you'll be responsible for: Designing, implementing, and managing scalable cloud infrastructure using Infrastructure as Code (IaC) tools Building and maintaining robust, high-availability microservices and distributed systems primarily in Java and Golang Participating in on-call rotations, responding to production incidents, and performing root cause analysis to ensure system reliability Deploying and managing security tools and implementing best practices to ensure compliance across infrastructure and applications Collaborating with engineering teams to develop infrastructure solutions and ensure continuous improvement and automation What We’re Looking For (Minumum Qualifications) 8+ years of software engineering experience with a strong focus on infrastructure and platform engineering Expert-level proficiency in Java and Golang for building production microservices Extensive experience with Infrastructure as Code tools (e.g., Terraform, Crossplane, Pulumi) and managing containerized workloads in AWS Strong background in incident response, on-call procedures, and production troubleshooting, with familiarity in monitoring tools (e.g., Prometheus, Grafana) Proficiency with security tools such as Falco, Trivy, Nessus, or Wazuh, and knowledge of building Docker container images What Will Make You Stand Out (Preferred Qualifications) Experience with service mesh technologies (e.g., Istio, Linkerd, Consul Connect) Knowledge of GitOps practices and tools (e.g., ArgoCD) Experience with infrastructure management and a deep understanding of networking and distributed systems architecture #LI-Hybrid #LI-RM6 At Zscaler, we are committed to building a team that reflects the communities we serve and the customers we work with. We foster an inclusive environment that values all backgrounds and perspectives, emphasizing collaboration and belonging. Join us in our mission to make doing business seamless and secure. Our Benefits program is one of the most important ways we support our employees. Zscaler proudly offers comprehensive and inclusive benefits to meet the diverse needs of our employees and their families throughout their life stages, including: Various health plans Time off plans for vacation and sick time Parental leave options Retirement options Education reimbursement In-office perks, and more! Learn more about Zscaler’s Future of Work strategy, hybrid working model, and benefits here. By applying for this role, you adhere to applicable laws, regulations, and Zscaler policies, including those related to security and privacy standards and guidelines. Zscaler is committed to providing equal employment opportunities to all individuals. We strive to create a workplace where employees are treated with respect and have the chance to succeed. All qualified applicants will be considered for employment without regard to race, color, religion, sex (including pregnancy or related medical conditions), age, national origin, sexual orientation, gender identity or expression, genetic information, disability status, protected veteran status, or any other characteristic protected by federal, state, or local laws. See more information by clicking on the Know Your Rights: Workplace Discrimination is Illegal link. Pay Transparency Zscaler complies with all applicable federal, state, and local pay transparency rules. Zscaler is committed to providing reasonable support (called accommodations or adjustments) in our recruiting processes for candidates who are differently abled, have long term conditions, mental health conditions or sincerely held religious beliefs, or who are neurodivergent or require pregnancy-related support.

Role & responsibilities Overall experience of at least 5+ years in SIEM monitoring and Cyber security Incident response and Management. Core Incident Response Knowledge: Deep understanding of the incident response lifecycle, cyber kill chain, and MITRE ATT&CK framework. Operating Systems: Expertise in Windows, Active Directory, DNS, and Linux platforms. SIEM Platforms: Strong experience with QRadar, Microsoft Sentinel, and other SIEM tools. SOAR Tools: Proficiency in tools like Cortex XSOAR, Splunk Phantom, and Demisto for orchestrating response. EDR Technologies: Hands-on experience with tools like CrowdStrike, Microsoft Defender for Endpoint, SentinelOne, etc. Log Analysis: Ability to interpret raw logs and perform correlation across diverse systems (network, endpoint, applications). Digital Forensics: Experience with EnCase, FTK, or other forensics toolsets; able to perform memory, disk, and network forensics. Malware Analysis: Strong understanding of malware behavior, obfuscation techniques, and basic reverse engineering. Communication: Strong verbal and written communication skills, capable of briefing technical and non-technical stakeholders. Process Orientation: Ability to document, optimize, and maintain response processes and runbooks. ITSM Tools: Familiarity with ITSM platforms (e.g., ServiceNow) for managing incidents and workflows. Preferred candidate profile The role requires strong skills in incident response and digital forensics to effectively minimize the impact of cyber risks. The individual will be responsible for overseeing security monitoring, managing security tools and operations, and ensuring security incidents are handled efficiently and reported to relevant stakeholders. This role primarily involves acting as a first responder and conducting in-depth incident response activities on behalf of a diverse range of clients across various sectors. Candidates must be capable of operating in complex security environments and working collaboratively with the SOC team to design, communicate, and execute incident response, containment, and remediation plans. They will support incident response analysts and incident management teams, while also evaluating tools, processes, and procedures for handling cyber intrusionscontinuously identifying new and improved methods for detecting and responding to adversarial threats.

About The Role - Grade Specific Key Responsibilities Install, configure, upgrade, and administer IBM ODM (Decision Centre and Decision Server) in both on-prem and cloud environments. Set up and manage ODM clusters for high availability and scalability. Collaborate with development and DevOps teams for decision service deployment and lifecycle management. Troubleshoot and resolve complex ODM issues across middleware, infrastructure, and application layers. Maintain architecture documentation, operational runbooks, and SOPs. Participate in 24/7 on-call rotation and incident response for production support. Required Skills 10+ years of hands-on experience with IBM ODM administration (Standard or Advanced Editions). In-depth knowledge of ODM architecture , deployment models, and clustering strategies. Strong experience in Linux system administration (RHEL preferred). Good understanding and hands-on experience with OpenShift or Kubernetes platforms. Experience with cloud platforms (AWS, Azure, GCP, or IBM Cloud) for ODM deployment and integration. Proficient in diagnostics, debugging, and root cause analysis for performance and availability issues.

Role & Responsibilities: Required Skills/qualifications: 5+ years of experience in Network Security experience, Palo Alto, CISCO, ISE etc Working knowledge of common operating systems (Windows, Linux, etc.) and basic endpoint security principles Hands-on experience with common networking services and protocols (TCP/IP, SSH, FTP, DNS, DHCP, SMTP, SSL, etc.) Experience with maintaining and operating common security technologies (IDS, IPS, Firewalls, Cloud Security, WAF, Endpoint Security, SIEM, etc.) Exceptional organizational abilities and attention to detail The ability to think creatively to find elegant solutions to complex problems Excellent verbal and written communication skills Below cloud skills are expected: o Strong conceptual and hands on knowledge of working in cloud security for any popular public cloud platforms like AWS, GCP, Azure. o Setting up cloud security in AWS, GCP, Azure Network/VPC Design and implementation/configuration Governance around security groups, external IP's, encryption, etc Restrict access to team/function level using least privilege model. o Automation using Terraform/Ansible or other tooling o Expert in troubleshooting and resolving issues related to cloud security o Certification in any Cloud platform would be desirable Preferred Qualifications: 5+ years of experience in Information Security, Security Operations, Incident Response, etc. (or related field) Demonstrated ability to analyze and correlate information from a wide variety of enterprise technologies Demonstrated experience managing firewalls and other security technologies Understanding of common security threats, attack vectors, vulnerabilities and exploits CompTIA Network+/Security+, GIAC (GCIA, GCIH, GSEC, GCFA, GCFE, etc.), CISSP, CEH or related certification(s) desired Mandatory Key Skills SMTP,SSL,IDS,IPS,Firewalls,Cloud Security,WAF,Endpoint Security,SIEM,AWS,GCP,Azure,VPC Design,security groups,external IPs,Linux,troubleshooting,Network Security,Palo Alto,CISCO,ISE,Windows,TCP/IP*,SSH*,FTP*,DNS*,DHCP*