2313 Incident Response Jobs - Page 24

As a Security Technician specializing in Network Detection and Response (NDR), your role will involve implementing and operationalizing NDR capabilities to detect lateral movement and advanced network-based threats. You will lead and manage the investigation of complex security incidents in the Security Operations Center (SOC) and collaborate closely with the cybersecurity incident response team to contain and mitigate threats. Your responsibilities will include performing deep dive analysis, identifying root causes, and assessing attack vectors. Additionally, you will collaborate with threat intelligence and SOC teams to enhance detection rules and use cases, as well as mentor and guide L1 ...

As an Airfield Safety and Security Officer, your role involves inspecting and evaluating various airfield facilities to ensure compliance with safety and security regulations. You will be responsible for monitoring and directing the movement of vehicles, persons, and equipment on the airfield to ensure safe and efficient operations. Your key responsibilities include: - Inspecting airfield facilities such as runways, taxiways, safety areas, paved & non-paved surfaces, lighting, signage, and markings for compliance with safety and security regulations. - Verifying compliance with assigned aircraft parking spaces to maximize facility utilization. - Enforcing airport regulations and issuing infr...

As a Data Service Specialist at Repario Data Services, a fast-growing global legal data services organization, you will be assigned ownership of a specific project piece. Your primary responsibility will be to prepare, process, and perform quality control on electronic data to provide high-quality results to clients within time-sensitive deadlines. This position is within the Data Services Department, supporting e-discovery services, hosting services, and production support services. **Key Responsibilities:** - Understand all aspects of eDiscovery and forensics workflow, from data receiving to client delivery and data disposition - Ingest, dedupe, and apply complex data filtering criteria, a...

As an experienced Infrastructure Compliance Manager, your role will involve ensuring the bank's infrastructure meets all RBI compliance requirements and implementing security and operational controls for infrastructure systems. You will conduct regular infrastructure assessments to ensure adherence to internal security policies, industry standards, and RBI regulations. Your responsibilities will also include leading and implementing zero-day patching processes, overseeing the identification, remediation, and patching of security vulnerabilities, defining best practices for patch management, and preparing compliance reports for senior management. Key Responsibilities: - Ensure RBI compliance ...

As a Security Operations Center (SOC) Lead at Intellect Design Arena, you will play a crucial role in managing the Security Operations Center team to ensure the operational effectiveness of security monitoring, incident response, and threat intelligence processes. Your responsibilities will include: - Leading day-to-day SOC operations and overseeing a team of analysts and engineers in a 24x7 environment. - Acting as the Level 3 (L3) escalation point for all major security incidents and SOC administrative needs. - Implementing, operating, and continuously improving SOC processes related to threat monitoring, detection, and response. - Developing and maintaining incident response playbooks for...

You will have the opportunity to build a unique career at EY, with global scale, support, inclusive culture, and technology to help you become the best version of yourself. Your voice and perspective are valued to contribute to making EY even better. Join EY to create an exceptional experience for yourself and contribute to building a better working world for all. **Role Overview:** As a Senior in Cyber Managed Service - Threat Detection & Response - Security Orchestration, Automation, and Response (Splunk SOAR), you will be responsible for various key capabilities: **Key Responsibilities:** - Demonstrate excellent teamwork skills, passion, and drive to succeed in combating cyber threats. - ...

You will be leading a team of security analysts through an 8-hour rotational shift schedule, conducting real-time security monitoring and responding to incidents across various networks using a variety of tools and methodologies. Your role will involve maintaining support for the group's infrastructure to ensure service levels meet expectations. Additionally, you will be responsible for developing and managing Security Information and Event Management (SIEM) use cases, identifying and documenting incidents through proactive threat hunting procedures, and executing vulnerability assessments within the company's network infrastructure. Collaboration with stakeholders to mitigate identified ris...

As a Senior Support Engineer, you will be responsible for handling escalated technical support cases from Tier 1 & Tier 2 teams. Your role will involve diagnosing and troubleshooting advanced software, hardware, and networking issues. In addition, you will collaborate with development, QA, and product teams to resolve bugs and enhance system stability. It will be your duty to analyze trends and root causes to implement long-term solutions. You will also be required to maintain and update documentation, FAQs, and knowledge bases to ensure accurate and accessible information for all stakeholders. Key Responsibilities: - Handle escalated technical support cases from Tier 1 & Tier 2 teams - Diag...

As part of the Global Security Operations team at Tower Research Capital, you will play a crucial role in continually enhancing the security posture and services by monitoring, identifying, and addressing security gaps and countermeasures. Your responsibilities will include: - Monitoring alerts for potential security incidents and information requests through various channels and tools. - Performing basic triage of potential security incidents, determining nature, priority, and eliminating false positives. - Investigating and validating alerts to identify scope, impact, and root cause using available telemetry and threat intelligence. - Escalating confirmed incidents with comprehensive evide...

As a Cyber Security Engineer at our company located in Noida Sec-132, you will be responsible for ensuring the security of our systems and networks. Your role will involve the following key responsibilities: - Hands-on experience with EDR/XDR platforms such as CrowdStrike, SentinelOne, Trend Micro, and Seqrite. - Knowledge of Data Loss Prevention (DLP) and Email Security solutions. - Proficiency in security console management including alert monitoring, remediation, and reporting. - Strong skills in threat hunting, log analysis, and IOC identification. - Experience with security hardening and baseline configuration of endpoints/servers. - Familiarity with ASRM frameworks and compliance-focus...

As the IT Infra and Cybersecurity Lead for a leading Real Estate Developer in Bangalore, your role will involve establishing and maintaining the enterprise vision, strategy, and program to ensure information assets and technologies are adequately protected. You will work closely with executive management to determine acceptable levels of risk for the organization and lead efforts to safeguard the company's information systems and data. **Responsibilities:** - **IT Infrastructure:** - Lead the planning, deployment, and management of IT infrastructure including servers, networks, storage, and cloud services. - Ensure high availability, performance, and scalability of infrastructure systems. - ...

As a Security Platform Engineering Manager/Associate Director at Lilly, you will lead a team of security platform engineers, driving best-in-class engineering practices and ensuring operational excellence. Your role involves fostering a first-time-right and automation-first mindset, defining optimal engineering methodologies, and promoting Agile adoption within the team. You will establish robust testing and design frameworks, ensuring the resilience and efficiency of security solutions. **Key Responsibilities:** - Lead, mentor, and empower a team of security engineers, serving as the key escalation point for technical challenges. - Provide strategic direction for the security platform team,...

As a Cyber Security Junior Analyst in the Risk department of SOC/RISK team in Mumbai, your role involves monitoring SIEM Alerts round the clock, including night shifts rotationally. You will investigate detected alerts, conduct incident response, and document and report incidents to the concerned Resolver Groups using Ticketing Tools. Additionally, you will monitor network traffic, perform threat hunting to identify compromised systems, mitigate denial of service attacks, and address resource abuse/exploitation. In case of SLA breach leading to delay in incident resolution, you will escalate the incident promptly. Monitoring the health and performance of SIEM and other security tools is also...

Role Overview: Join Strategy's IT Security group as a Senior Application Security Engineer and play a crucial role in safeguarding Strategy's software applications while using modern security and AI tooling. In this position, you will be responsible for establishing innovative security practices throughout the software development lifecycle, ensuring that our software products are resilient against novel threats and vulnerabilities. Key Responsibilities: - **Security Architecture:** Design and implement application security architecture and processes, ensuring they align with industry best practices and regulatory requirements. - **Secure SDLC:** Manage a risk-balanced SDLC by integrating th...

How you'll make an impact Experience of implementation and development of SOAR solutions like Swimlane, Cortex XSOAR, Tines, devo, Exabeam SOAR, Splunk SOAR etc The primary purpose of this role is to act as the orchestration strategist in identifying incident response activity where mitigating controls would be automated. This is accomplished in a four pronged approach: Identify mitigating controls through repetitive manual processes within the SOC Analyst community that complies with client security policy and industry best practices In concert with Data Scientists, within the "Proactive Hunting" process, translate complex, and non-complex Incident Response event patterns into an automated ...

As a Data Center Systems Monitor, you will be responsible for ensuring the smooth operation and performance of data center systems. Your key responsibilities will include: - Monitoring data center systems such as servers, storage devices, and network equipment using monitoring tools. - Responding to alerts promptly and taking appropriate action to resolve issues or escalating them to higher-level support when necessary. - Performing regular health checks on data center equipment to maintain optimal performance. - Providing L1/L2 support for hardware and software issues, including server reboots, network connectivity problems, and hardware failures. - Coordinating with L2/L3/L4 engineers and ...

Profile description We are seeking an Information Security Professional to join our team. The successful candidate will be responsible for monitoring, detecting, and analyzing security incidents, as well as performing risk assessments, implementing security measures, and ensuring compliance with ISO 27001/ ISO 22301 standards. Job description KEY SKILLS AND CAPABILITIES Monitor and analyze security events and incidents using Security Information and Event Management (SIEM) tools. Enhance and build cyber threat detection use cases, tuning for accuracy and reducing false positives. Investigate and respond to security incidents, performing root cause analysis and recommending preventive measure...

We are looking for a skilled SIEM Engineer with 5 to 22 years of experience. The ideal candidate will have a strong background in Splunk Enterprise architecture, distributed components, and knowledge of Splunk Cloud. Roles and Responsibility Building, maintaining, and operating Splunk Enterprise and Splunk Enterprise Security SaaS Solution. Creating correlation searches for Cyber Operation requirements. Evaluating and analyzing business requirements and designing suitable solutions. Managing, coordinating, and implementing technical project activities and enhancements to services. Conducting Incident/Problem/Recovery activities. Supporting the Joint Operations Centre and incident response te...

Responsible for proactively monitoring, analyzing, and resolving issues in production. Work with development teams, clients, and other operations support teams to maintain maximum stability, performance, and security for current environments. Application operations, client support investigations and Tier 2 task execution and investigations as needed for specific issues or investigative needs. Scripting for enhanced performance of tasks for SailPoint backend that cannot be triggered via administrative UI or set up for use through administrative UI. Evaluation of log files for transaction investigation, health of application on platform, tuning platform, may be included in normal operations du...

Technology | Microsoft Certified: Security, Compliance, and Identity Fundamentals / CISSP/CISM/CEH/GIAC CIH/CSA/CompTIA CySA+/Cisco Certified CyberOps Associate/Splunk Core Certified User/IBM Certified SOC Analyst - IBM QRadar SIEM V7.3.2 Delivery Skills required are: - Technical Skills: - *Identifying and analyzing potential threats and vulnerabilities using various tools and techniques. *Leading and managing the response to security incidents, including containment, eradication, and recovery. *Implementing and maintaining security monitoring systems, such as SIEM (Security Information and Event Management) tools. *Prioritizing and remediating vulnerabilities based on risk assessments. Oper...

8+ years of experience in incident response and/or computer forensics Extensive experience within an enterprise scale organisation ; including hands-on experience of complex data centre environments, preferably in the finance or similarly regulated sector Industry recognised cyber security related certifications including; CEH, EnCE , CRISC, SANS GSEC, GCIH, GCIA, GIAC, GCFA, GNFA, GASF and/or CISSP. Formal education and advanced degree in Information Security, Cyber-security, Computer Science or similar and/or commensurate demonstrated work experience in the same. Work Experience 8+ Years

About the Role : Site Reliability Engineer (SRE)with deep expertise inMainframe technologies like COBOL, JCL, etc. to support and enhance ourCard Management & Payment processing functions. This role will be responsible for ensuring reliability, high availability, scalability, stability and performance of mission-critical mainframe software applications and systems, with a strong focus on mainframe technologies. This role blends software engineering with systems engineering to automate operations, improve system resilience, and drive continuous improvement. What you will be doing: Act as a hybrid engineer, balancing responsibilities across software development and site reliability engineering...

Responsiblitities: Develop, implement, and manage robust security policies and procedures to protect the organizations information assets. Conduct risk assessments, vulnerability assessments, and security audits to identify and mitigate potential threats. Manage and oversee the companys vulnerability management program, including the identification, classification, and remediation of security vulnerabilities. Design and enforce security measures and policies for cloud computing environments, with a strong focus on AWS. Stay updated on the latest cybersecurity trends, threats, and technologies to continuously improve the organizations security posture. Collaborate with development and operati...

Job Purpose We are seeking a skilled Endpoint Security Engineer to join our team. The ideal candidate will be responsible for safeguarding our endpoints, implementing security measures, and ensuring compliance with industry standards. Duties and Responsibilities A-Minimum required Accountabilities for this role Own the vendor assessment end to end from scoping till closure of all observations. Work closely with IT departments to ensure effective integration of endpoint security solutions with existing infrastructure and processes. Stay current with industry trends and emerging threats, continuously seeking opportunities to enhance the organization's endpoint security posture. Evaluate, selec...

Responsibilities: Implement Security Operations modules Vulnerability Response, Threat Intelligence, and Incident Response.Integrate ServiceNow SecOps with SIEM/SOC tools (Splunk, QRadar, etc.).Automate response workflows and security playbooks.Configure dashboards for real-time security monitoring. Requirements:6+ years ServiceNow with SecOps experience.Strong knowledge of security incident and vulnerability workflows.Integration experience with security tools.SecOps certification preferred. Location - Remote,Bengaluru,Hyderabad,Delhi / NCR,Chennai,Pune,Kolkata,Ahmedabad,Mumbai