2320 Incident Response Jobs - Page 30

Role & responsibilities Detect, Analyze, Investigate, and report qualified security incidents to the Client as per the defined SLA Provide recommendations to the security incidents reported as per SLA Investigates incidents using various security event sources (FW, IDS, PROXY, AD, EDR, DLP etc.). Investigations into non-standard incidents and execution of standard scenarios. Provide dashboard and data related to Incidents/Offenses for governance reports. Escalates to L3 if investigations uncover unusual or atypical situations. Monitoring unhealthy log source/data source and escalate to engineering team to fix them. Participate in incident response (IR) efforts; detect, identify, respond, con...

Role Overview We are looking for a SOC Architect / Lead to design, implement, and lead our next-generation Security Operations Center . This role requires expertise in SOC architecture, Elastic Stack, SIEM/SOAR, threat detection, and security leadership . You will oversee the SOC team, define strategy, integrate threat intelligence, and ensure proactive defense and compliance Key Responsibilities Design and implement SOC architecture (Elastic SIEM, SOAR, threat intel integrations, alert pipelines). Lead SOC Engineers in building and tuning custom dashboards & correlation rules . Define detection logic, anomaly detection, and proactive threat hunting methodologies . Establish incident respons...

Role Overview - The Security Operations & Projects Manager will oversee all SOC-related projects and teams , ensuring smooth execution of technical deliverables, on-time delivery, and alignment with customer expectations. The role requires a mix of cybersecurity knowledge, project management skills, and leadership capabilities . You will act as the bridge between technical SOC teams, executive leadership, and customers . Role & responsibilities Project & Program Management Manage end-to-end delivery of SOC, SIEM, and threat intelligence projects. Create and track project plans, milestones, budgets, and resource allocation. Coordinate between SOC Engineers, SOC Architect, CTI teams, Red Team,...

As the Director of Data Protection at Cognizant, you will play a crucial role in overseeing the corporate security's data protection strategy and ensuring regulatory compliance. Your responsibilities will include training staff, communicating with regulators, and identifying data processing risks within internal systems. Your expertise in data protection law and practices, combined with a deep understanding of Cognizant's infrastructure and organizational structure, will be essential for success in this role. Key Responsibilities: - Adopt a risk-based approach to data protection - Serve as the main point of contact for Corporate Security in handling complaints, queries, notices, and other no...

Role Overview: As a highly skilled Azure Security Analyst at Global Power Components, your primary responsibility will be to safeguard the Azure cloud infrastructure. You will monitor and analyze security events, detect anomalies, respond to threats in real-time, and generate detailed incident reports with mitigation recommendations. Additionally, you will continuously monitor Azure cloud environments using advanced security tools and dashboards. Key Responsibilities: - Conduct regular security audits and risk assessments of Azure-based systems to identify vulnerabilities and implement corrective measures. - Develop, implement, and enforce Azure-specific security policies and best practices....

Role Overview: As a Senior Cyber Security Engineer at SAP Fioneer, you will play a crucial role in safeguarding digital assets and ensuring the highest level of security for clients. Your expertise in managing and securing complex environments, with a focus on O365 Security Tools, zScaler, MS Sentinel, SIEM, and Azure Security, will enable you to implement and oversee security solutions that protect organizational assets and improve security posture. Key Responsibilities: - Design, implement, and manage security solutions leveraging O365 Security Tools, zScaler, MS Sentinel, and SIEM to support the Security Architecture of Fioneer. - Develop and maintain comprehensive security strategies for...

As a Senior Network Security Consultant at Black Box, you will utilize your expertise in Enterprise Network Security technologies to safeguard the integrity of network systems. Your primary responsibilities will include: - Managing and maintaining critical security infrastructure - Ensuring optimal security configurations on firewalls (Fortinet, Cisco FTD, Palo Alto) - Overseeing SASE solutions (Zscaler, Prisma, Umbrella) for secure remote access and cloud security You will be instrumental in: - Firewall administration - Policy and rule configuration - Incident response and troubleshooting - Providing technical support for security enhancements Your role will also involve: - Automation and o...

Role Overview: As an Incident Response Senior Analyst (IRSA), you will play a crucial role in effectively responding to and mitigating security incidents within the organization. Your primary responsibility will be to lead investigations into cyber threats, identify root causes of incidents, and develop appropriate response strategies. You will work closely with cross-functional teams to contain incidents, minimize impact, and prevent future occurrences. In this role, you will utilize your expertise in security tools and technologies to analyze security events, assess their potential impact, and coordinate response efforts. You will also be responsible for documenting incident details, inclu...

As an IT System Administrator and Infrastructure & Operations (I&O) professional based in Bannerghatta Road, 1st Stage BTM Layout, Bangalore, your primary responsibilities will include: - Installing, configuring, and maintaining both physical and virtual servers. - Conducting regular system monitoring to ensure the integrity and availability of hardware, server resources, and key processes. - Performing backups, system updates, patch management, and disaster recovery drills. Within the Infrastructure & Operations (I&O) domain, you will be expected to: - Monitor and manage network infrastructure such as switches, routers, firewalls, and VPNs. - Guarantee uptime, performance, and capacity plan...

Role Overview: As the IT & OT Infrastructure, Data, and Applications Security Manager at Godrej Agrovet, you will be responsible for leading the security strategy and implementation for IT & OT environments. Your role will involve ensuring the security of critical infrastructure, network systems, and applications to protect them from cyber threats while maintaining operational continuity. Collaboration with cross-functional teams will be crucial to safeguard digital assets effectively. Key Responsibilities: - Develop, implement, and maintain security policies, procedures, and controls for IT & OT infrastructure components. - Collaborate with IT teams to ensure secure integration between IT a...

Role Overview: As a Data Security professional with expertise in DLP (Data Loss Prevention) solutions, policy creation, and incident response, you will play a crucial role in designing and analyzing DLP policies. Your responsibilities will include utilizing data security tools like DLP and CASB, optimizing the DLP process to detect false-positive events, and ensuring the security of internal data. You will need to demonstrate proficiency in ITIL Foundation, incident management, and hands-on experience in security incident response. Moreover, your coordination skills will be essential for collaborating with various business units during DLP events and incidents, while effectively communicatin...

Role Overview: As a Network Security Design professional in the MDR category at the Pune location, your primary responsibility will be architecting and designing secure network infrastructures in banking environments. Your focus will be on ensuring scalability, performance, and compliance with industry standards. Key Responsibilities: - Leverage SolarWinds for advanced network monitoring and performance management to maintain operational efficiency and quickly identify any issues. - Design, implement, and manage Intrusion Prevention and Detection Systems (IPS/IDS) to protect network traffic from malicious activities. - Oversee the configuration and optimization of firewalls such as Fortinet ...

As a highly motivated and talented Symantec DLP Engineer, you will be joining a fast-paced, dynamic, and challenging environment. Your primary responsibility will be to demonstrate a conceptual understanding of Symantec Data Loss Prevention (DLP) and collaborate effectively within a global team setting. You must possess excellent analytical, communication, and presentation skills to excel in this role. Your key responsibilities will include: - Implementing DLP technology across a large enterprise with hands-on experience - Working on DLP security solutions encompassing Symantec DLP Endpoint, Discover, Web & Email - Designing and implementing Symantec DLP solution - Expertise in designing and...

Role Overview: You will be joining Dezerv as an Infrastructure Security Lead, reporting directly to the Chief Information Security Officer (CISO). Your primary responsibility will be securing the network, systems, and cloud environments, with a focus on AWS. Your role will involve designing and implementing a comprehensive vulnerability management program and ensuring regulatory and compliance standards are met. Key Responsibilities: - **Vulnerability Management:** Design, implement, and manage the end-to-end vulnerability management program. This includes executing network and infrastructure vulnerability scans, prioritizing findings, and collaborating with technology teams for timely remed...

As a Security Analyst in the Risk Consulting team at EY, you will be responsible for various privacy/data protection related projects for customers globally. Your role will involve designing, engineering, and implementing cutting-edge cloud platform security to transform business applications into scalable, elastic systems. You will work on all layers of the Cloud stack, including IaaS, PaaS, SaaS layers, big data platform, Authentication/Authorization, data encryption techniques, and other security services. Your focus will be on ensuring the security of the product and service for the cloud big data platform, with an understanding of ETL, data consumption, data migration security, and data...

As a Cyber Security Specialist, you will play a critical role in safeguarding the organization's digital assets, focusing on Cyber Threat Intelligence Services to identify and mitigate potential threats. Your expertise in Cyber Security and Cloud, along with experience in CrowdStrike, will be essential in ensuring the security of systems. This hybrid role offers flexibility in working remotely and on-site during day shifts. - Lead the development and implementation of advanced cyber threat intelligence strategies to protect organizational assets - Oversee the monitoring and analysis of security threats using CrowdStrike and other advanced tools - Provide expert guidance on cloud security bes...

As a Level 2 SOC Security Analyst at Airtel, you will be responsible for conducting information security investigations in response to security incidents identified through various SOC entry channels such as SIEM, Tickets, Email, and Phone. You will act as a point of escalation to provide guidance and oversight on incident resolution and containment techniques. Key Responsibilities: - Creating and maintaining SOC run books for SIEM tools. - Coordinating responses to information security incidents. - Mentoring security analysts on various operational tasks related to risk management, information security controls, incident analysis, incident response, and SIEM monitoring. - Documenting incide...

As a CyberSecurity Team Lead, you will be responsible for acting as the primary point of contact for Managed Detection and Response (MDR) client engagements, ensuring seamless project execution. You will drive the implementation of emerging threat intelligence to identify affected systems and assess the scope of attacks. Developing, documenting, and maintaining SOC processes, standards, and alert triage procedures will be crucial to ensure effective and timely response. Your role will involve defining and refining playbooks for cyber threat response operations, autonomously conducting investigations, and escalating incidents based on defined protocols. - Mentor, guide, and lead SOC analysts ...

Role Overview: As a Secops/Network Security Operations professional at Arthur Grand Technologies Inc in Chennai, your primary responsibility will be to design and maintain secure, high-performance network architectures that comply with policies. You will be proficient in utilizing tools such as Sentinel, MS Defender, Palo Alto Firewalls (HA), IDS/IPS, and other vulnerability management tools to ensure the security of the network. Key Responsibilities: - Lead advanced incident response activities, including triage, investigations, and documentation. - Develop incident plans, conduct threat hunts, and create detection use cases using SIEM and threat intelligence. - Enhance detection capabiliti...

As a Senior in Cyber Managed Service - Threat Detection & Response focusing on Security Orchestration, Automation and Response (Splunk SOAR), your role at EY will involve working with a team to deliver innovative integrations and playbooks, ensuring practical solutions to customer challenges. Your responsibilities will include: - Executing and maintaining Splunk SOAR analytical processes - Managing the Splunk SOAR platform - Developing custom scripts and playbooks for task automation - Leveraging Python, REST API, JSON, and basic SQL In this position, you will utilize Incident Response and Threat Intelligence tools, create efficient Python-based Playbooks, and use the Splunk SOAR platform fo...

Role Overview: As a seasoned Technology Leader specializing in cybersecurity solutions, you will be responsible for developing and executing a comprehensive technology roadmap that aligns with business objectives and industry standards. Your role will involve designing and managing enterprise-grade cybersecurity platforms such as Splunk and QRadar to ensure seamless integration across diverse OT and IT environments. Innovation will be a key aspect of your responsibilities as you lead the design and development of advanced cybersecurity tools including SIEM, XDR, next-gen firewalls, and secure networking solutions. Your focus will be on driving innovation to address the unique challenges of O...

Role Overview: As a Lead SOC Analyst at Snowflake, you will play a crucial role in shaping the future of the AI Data Cloud. Your responsibilities will include being the service owner of security triage in India, where you will lead a team of Triage Analysts by hiring, coaching, training, and supervising them. You will also be responsible for performing quality assurance checks on their alerts and maturing the security triage process. Collaborating with other security teams to handle more triage tasks will be a key aspect of your role. Being part of a global team, you will have the opportunity to learn from industry experts and serve as the front-line of the Incident Response Team. Your day-t...

As a Data Security Specialist, you will play a vital role in developing, implementing, and optimizing Insider Risk Management (IRM) and Data Loss Prevention (DLP) strategies and policies for our clients. Your responsibilities will involve collaborating with various teams to safeguard client environments, maintain security posture, and ensure compliance with data protection regulations. Your expertise will be instrumental in mitigating data security risks and upholding the highest standards of data governance. - Collaborate on implementing and managing Data Security solutions and technologies like Microsoft Purview Insider Risk Management, Microsoft Purview Data Loss Prevention, and Microsoft...

As an SRE, Automation Leader at Chubb, you will be responsible for ensuring the reliability, performance, and scalability of applications in a production environment. Your role will involve collaborating closely with development, operations, and product teams to design and implement robust application support strategies, troubleshoot complex issues, and enhance system performance. Key Responsibilities: - Pilot SRE adoption in traditional application support teams by studying and assessing existing application architecture, identifying areas for improvement in reliability and performance, and defining critical user journeys to align SRE practices with user experience. - Establish SLOs, implem...

Desired qualifications • Bachelors degree in computer science, Cybersecurity, or related field, or equivalent experience. • Minimum of 5-9 years of experience in cybersecurity, IT security operations, or incident response. • Prior experience in a Security Operations Center (SOC) or handling security incidents in an enterprise environment. • Experience with security monitoring, SIEM platform tuning, and threat detection engineering. Technical Skills: - Advanced proficiency with Splunk, Azure Sentinel, ELK SIEM & EDR platforms (experience with other SIEM platforms like Azure Sentinel is a plus). - In-depth understanding of network protocols (TCP/IP, DNS, HTTP, etc.), security devices (firewall...