2320 Incident Response Jobs - Page 21

Design and implement custom WAF rules, including traffic filtering based on headers, IPs, and user-agent strings. Monitor WAF dashboards for threat detection and mitigation. Analyze and respond to security incidents related to web applications. Collaborate with application and infrastructure teams to fine-tune WAF policies. Perform regular rule audits and updates based on evolving threat landscapes. Manage WAF configurations and ensure alignment with security best practices. Participate in change management and incident response processes. Coordinate with vendors like Akamai, Imperva, and Cloudflare for support and enhancements. Conduct performance tuning and ensure minimal false positives. ...

Job Description Role Purpose The purpose of this role is to analyse, identify, rectify & recommend specific improvement measures that help in the security posture of the organization by protecting the sensitive information Do Ensuring customer centricity by providing apt cybersecurity Monitoring and safeguarding the log sources and security access Planning for disaster recovery in the event of any security breaches Monitor for attacks, intrusions and unusual, unauthorized or illegal activity Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems Conduct security assessments, risk analysis and root cause analysis of sec...

We are hiring for Associate in Incident Response Team with UnitedLex India Private Limited. Location: Gurgaon (Work from Office). Shift Timings: Gurgaon Morning Shift 8:30AM - 5:30PM Night Shift 6:30 PM to 3:30 AM Working Days: 5 Days. Cab facilities : Both side cabs, if location will be in our transport . Work Type: Fixed Time Hire. Work Duration: One Month (Extendable Contract depending on Individual performance & Business requirements). Position: Associate (Incident Response) About Us: Unitedlex India Pvt. Ltd. (Formerly known as iRunway India Pvt Ltd) is a data and professional services company delivering outcomes for high-performing law firms and corporate legal departments in the areas...

As a SIEM - Security Center Operations Specialist at NTT DATA in Noida, Uttar Pradesh, India, you will play a crucial role in ensuring the security and integrity of the organization's systems. Your responsibilities will include: - Applying principles, concepts, technologies, and standards of the professional field - Utilizing research, information gathering, analytical, and interpretation skills to address problems of diverse scope - Creating formal documentation such as reports, slide decks, and architecture diagrams - Leading and/or assisting in incident response efforts - Developing content in industry-leading SIEM tools like Splunk, including queries, dashboards, and reports - Supporting...

Role Overview: As a Security Operations Engineer at Cisco, you will be a part of the Security Operations Team responsible for upholding the security posture of the organization. The focus will be on three key pillars: Incident Response, Vulnerability Management, and Threat Detection. Your role will involve delivering a robust security program to protect a portfolio of products. Successful employees in this role exhibit deep technical expertise, strong interpersonal skills, and the ability to build relationships effectively. Collaboration across teams is essential to achieve collective goals and drive decisions efficiently. Key Responsibilities: - Serve as the incident commander during securi...

Role Overview: As the Head of Cyber Resilience, your primary responsibility will be to develop and implement enterprise-wide cyber resilience strategies. You will oversee risk management, incident response, and business continuity efforts to safeguard critical assets and ensure operational resilience in a constantly changing threat environment. Key Responsibilities: - Demonstrated experience in continuous improvement and process optimization. - Proficiency in using automation tools such as Ansible, Puppet, Chef, or equivalent. - Strong understanding of risk and controls. - Ability to effectively communicate technical threats, scenarios, controls, and risks to both technical and business stak...

As a SIEM SOAR/Platform Engineer at EY, you will play a crucial role in designing, developing, and maintaining security automation playbooks using Palo Alto Cortex XSOAR. Your expertise in security automation and orchestration will be essential in integrating various security tools with XSOAR to enhance incident response capabilities. You will collaborate with the SOC team to automate and streamline incident response processes and develop custom scripts and integrations using Python or other relevant programming languages. Key Responsibilities: - Design, develop, and maintain security automation playbooks using XSOAR. - Integrate various security tools and systems with XSOAR to enhance incid...

Role Overview: As a Network Security Engineer (L2) specializing in F5 WAF, DDoS, and IPSec technologies, your responsibilities will include configuring, implementing, and maintaining F5 ASMA for web application protection, designing and optimizing WAF policies, monitoring network traffic for DDoS attacks, troubleshooting and resolving F5 WAF security policy issues, implementing and troubleshooting IPSec VPNs, analyzing network traffic for potential threats, applying patches and updates, responding to security incidents, collaborating with network and security teams, and maintaining documentation for security configurations. Key Responsibilities: - Configure, implement, and maintain F5 ASMA (...

Role Overview: As a Cyber Security Specialist, you will be responsible for conducting penetration testing, vulnerability assessments, security audits, incident response, and monitoring network traffic for suspicious activities. Additionally, you need to stay updated on the latest security threats and collaborate with internal teams to enforce security best practices. Key Responsibilities: - Conduct comprehensive penetration testing and vulnerability assessments using tools like Metasploit, Nessus, Burp Suite, and Nmap. - Perform regular security audits, analyze findings, and provide recommendations for remediation. - Assist in identifying, analyzing, and responding to security incidents such...

Role Overview: As the Chief Security Officer (CSO), your role will involve overseeing and managing the overall security strategy of the organization. This encompasses both physical and digital security measures to safeguard employees, assets, and facilities. Key Responsibilities: - Developing Security Strategies: Create comprehensive security programs aimed at protecting the organization's employees, assets, and facilities. - Risk Management: Identify and mitigate potential security risks while ensuring compliance with relevant laws and regulations. - Incident Response: Manage security incidents and breaches, and implement measures to prevent future occurrences. - Team Leadership: Lead a tea...

As a Senior Threat Monitoring and Response Engineer at Zendesk, you will play a crucial role in contributing to their Threat Hunting and Incident Response programs. Your responsibilities will involve developing and implementing processes and tools to swiftly and decisively react to identified threats to Zendesk and its customers. Working closely with the Security Engineering teams, you will ensure that the right tools and techniques are in place for monitoring and detecting threats to the Zendesk platform. Key Responsibilities: - Assist with the development of Threat Hunting processes, playbooks, and frameworks. - Participate in threat hunting exercises, focusing on deficiencies requiring ad...

As a SOC Manager at ACPL Systems Pvt. Ltd., a pure play cybersecurity organization/platform, your primary responsibility will be to lead the Security Operations Centre team. You will play a crucial role in ensuring effective detection, analysis, and response to security incidents. Your duties will involve managing a team of SOC analysts, developing training programs, coordinating shift schedules, overseeing incident response, and optimizing SOC tools and processes. Key Responsibilities: - Manage and mentor a team of SOC analysts and engineers. - Develop training programs and provide ongoing support to enhance team skills and performance. - Coordinate shift schedules to ensure 24/7 SOC covera...

Role Overview: As a Cyber Risk Management Specialist at Hitachi Energy, you will play a crucial role in safeguarding the business and ensuring the delivery of secure products and services to customers. Your primary responsibility will involve collaborating with multi-stakeholder partnerships to protect the supply chain from organizational risks. You will work closely with various departments to review strategies, manage cyber risk management tools, identify vulnerabilities, and report threats to internal stakeholders. Key Responsibilities: - Communication with Stakeholders: - Communicate ongoing updates for the CRM-S program, including updates to Cybersecurity Standard, Supplier (CS-S), CRM-...

As an experienced AWS Cloud Security Engineer joining our team, you will be responsible for securing multiple diverse AWS environments. Your role will involve designing, implementing, and enforcing security policies, guardrails, and best practices to ensure the security and compliance of our cloud infrastructure. Your expertise in AWS security services, automation, and compliance frameworks will be crucial for success in this role. Key Responsibilities: - Design, implement, and maintain security policies and guardrails across diverse AWS environments. - Develop and enforce cloud security best practices to protect critical workloads, data, and infrastructure. - Implement and manage AWS-native...

You are seeking a knowledgeable and experienced Cybersecurity Trainer to deliver high-quality training sessions on cybersecurity concepts, practices, tools, and techniques. The ideal candidate will have a strong background in cybersecurity, as well as the ability to effectively communicate and train individuals at various skill levels. This role will involve preparing and presenting training materials, conducting hands-on labs, and providing ongoing support to ensure the success of cybersecurity training programs. Key Responsibilities: - Develop, design, and deliver engaging cybersecurity training programs for employees, clients, or students. - Train participants on a variety of cybersecurit...

As a Security Engineer, you will play a crucial role in configuring, managing, and maintaining the organization's security systems to safeguard the IT infrastructure and sensitive data from cyber threats. Key Responsibilities: - Firewall Security: - Configure, monitor, and maintain firewalls to protect internal networks. - Perform updates, patches, and performance tuning. - Develop and implement firewall rules for access control and prevention of unauthorized activities. - Analyze and respond to security incidents and alerts. - Conduct periodic reviews of firewall configurations for compliance. - Maintain documentation for rules, changes, and configurations. - Antivirus Management: - Adminis...

Role Overview: As a member of the SOC team, you will be responsible for leading the investigation of high-priority security incidents using tools such as Azure Sentinel SIEM, Splunk, and Microsoft Defender for Endpoint. Your role will involve performing deep-dive investigations, determining root causes, guiding the team in remediation efforts, and collaborating with other team members to resolve security incidents. Key Responsibilities: - Lead the investigation of high-priority security incidents and guide the team in remediation efforts - Use Azure Sentinel to create and refine custom detection rules for identifying new threats - Monitor and validate alerts from Microsoft Defender for Endpo...

As a SIEM - Security Center Operations Specialist at NTT DATA in Noida, Uttar Pradesh (IN-UP), India, you will be responsible for the following: - Understand and apply principles, concepts, technologies, and standards of the professional field - Apply research information gathering, analytical, and interpretation skills to problems of diverse scope - Write/create formal documentation such as reports, slide decks, and architecture diagrams - Lead and/or assist incident response efforts - Create content (queries, dashboards, reports, etc.) in industry-leading SIEM tools, such as Splunk - Support and participate in SOC engineering efforts such as tool integration, development of automation, scr...

Implement and manage SOAR solutions to improve incident response times and efficiency. Monitor security alerts, assess potential threats, and take appropriate action to mitigate risks. Analyze complex security events and provide detailed reports and recommendations. Collaborate with IT and security teams to enhance threat detection and response strategies. Develop and maintain automation scripts and playbooks for security processes. Conduct regular reviews and updates of security protocols and procedures. Provide training and guidance to junior analysts on SOAR practices and tools. Required education Bachelor's Degree Preferred education Bachelor's Degree Required technical and professional ...

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : ServiceNow Governance, Risk, and Compliance (GRC) Good to have skills : NAMinimum 3 year(s) of experience is required Educational Qualification : BTECH Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various...

Project Role : Security Engineer Project Role Description : Apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Must have skills : Splunk Security Information and Event Management (SIEM) Good to have skills : Microsoft Azure SentinelMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Engineer, you will apply security skills to design, build, and protect enterprise systems, applications, data, assets, and people. You will provide services to safe...

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Architecture Design Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will be responsible for defining the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. You will document the implementation of the cl...

The role supports full end to end software development cycle, from initial client engagement, through assessments and road-mapping, to longer term engagement in an advisory capacity. As an Application Security Consultants, the person should leverage the technical expertise of the security competencies, varied product and delivery capabilities. Hands on experience in Secure SDLC, DAST, SAST, HP Fortify and Burp Suite Provide strategic advice and insights to clients based on deep domain knowledge and industry best practices. Identify potential risks and develop mitigation strategies to ensure project success and client satisfaction. Lead and coordinate incident response activities, including i...

Your role We are seeking an experienced and highly motivated Cloud Security Engineer for 4 to 6 years for Pan India to manage the implementation and optimization of security solutions across our public and hybrid cloud infrastructure. This role requires hands-on expertise in Microsoft Defender for Cloud, Cloud Access Security Broker (CASB), Cloud Workload Protection Platforms (CWPP), and Cloud Security Posture Management (CSPM) tools. The ideal candidate will be responsible for ensuring robust visibility, security, and compliance across all cloud-native assets, workloads, and applications. Design, deploy, and manage cloud-native security architectures across Azure, AWS, and GCP environments....

Project Role : Security Engineer Project Role Description : Apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Must have skills : Accenture MxDR Ops Security Threat Analysis Good to have skills : NAMinimum 2 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Engineer, you will apply security skills to design, build, and protect enterprise systems, applications, data, assets, and people. Your typical day will involve collaborating with various teams to i...