2392 Incident Response Jobs - Page 39

Job Overview: The SOC L1 Analyst will be a key member of the Security Operations Center team, responsible for initial monitoring, detection, and analysis of security incidents. This role involves working closely with senior analysts and engineers to ensure the security of the organizations infrastructure. The ideal candidate should possess a foundational understanding of cybersecurity and be eager to grow their expertise in security operations. Key Responsibilities: Monitor security events and alerts from various security tools and platforms. Perform initial analysis and triage of security incidents to assess their impact and urgency. Escalate verified incidents to L2 and L3 teams for furthe...

When you join Verizon You want more out of a career A place to share your ideas freely ? even if theyre daring or different Where the true you can learn, grow, and thrive At Verizon, we power and empower how people live, work and play by connecting them to what brings them joy We do what we love ? driving innovation, creativity, and impact in the world Our V Team is a community of people who anticipate, lead, and believe that listening is where learning begins In crisis and in celebration, we come together ? lifting our communities and building trust in how we show up, everywhere & always Want inJoin the #VTeamLife, What Youll Be Doing,, The work you'll be doing is to support mission and bus...

Experience Required- Incident management, managing alerts end to end or incidents happening, Investigation & Analysis, remediation action to IT provider, Crisis Management Support, Automation Integration, Remediation & Containment Conduct detailed investigations into security alerts to determine the scope, impact, and root cause of incidents. Utilize Microsoft Defender, Sentinel, and Azure tools for analysis and incident management. Solid experience with Microsoft security technologies , especially Microsoft Defender XDR and Sentinel. Good to have- Certifications in incident response, such as GCIH , GCFA , GCIA , or similar. Good communication skills, able to engage with stakeholders at all ...

As a Security Engineer specializing in Threat Correlation and Tool Optimization, you will serve as the technical subject matter expert for improving the fidelity, prioritization, and integration of vulnerability data across a multi-cloud and hybrid enterprise environment. This role is focused on optimizing inputs from a wide range of scanning and detection tools including endpoint, network, and cloud-native platformsand enriching them with contextual data such as threat intelligence, asset criticality, and exploitability indicators. You will work across industry standard tools and technologies, and external threat/risk platforms (e.g., BitSight, Recorded Future), as well as integrate finding...

In this role at Tradeweb Markets, you will be part of Tradeweb's Security Operations team, contributing to the protection of clients and employees from evolving threats. Your responsibilities will include overseeing a team of SOC engineers, enhancing existing security operations processes, and collaborating with various cybersecurity experts and business teams. As a key member of the technical incident response team, you will focus on forensics, log analysis, and threat intelligence to ensure a secure environment. **Key Responsibilities:** - Oversee a team of SOC engineers to provide 24x7x365 detection and response capabilities - Enhance existing processes to deliver measurable results acros...

Role Overview: You will be responsible for implementing and managing security controls, conducting vulnerability assessments, responding to security incidents, managing cybersecurity risks, providing training on cybersecurity best practices, contributing to disaster recovery and business continuity plans, and ensuring compliance with cybersecurity regulations and standards. Additionally, you will be involved in reporting security status to management, managing vendor relationships, collaborating with other departments, providing technical support and advice, staying up to date on cybersecurity trends, and problem-solving. Key Responsibilities: - Implementing and maintaining security controls...

As a DevOps Engineer, you will be responsible for defining and implementing DevOps strategies that are aligned with the business goals. Your role will involve leading cross-functional teams to enhance collaboration between development, QA, and operations. Additionally, you will design, implement, and manage Continuous Integration/Continuous Deployment (CI/CD) pipelines to automate build, test, and deployment processes, thereby accelerating release cycles. Key Responsibilities: - Design and implement CI/CD pipelines to automate build, test, and deployment processes. - Manage Infrastructure as Code using tools such as Terraform, CloudFormation, and Ansible. - Oversee cloud platforms like AWS, ...

You will be responsible for overseeing and managing risks associated with internal stakeholders, external vendors, suppliers, and partners engaged by the bank. Your critical role will ensure compliance with regulatory Risk Management guidelines, mitigate operational, financial, and cybersecurity risks, and safeguard the bank's reputation. You will work closely with internal stakeholders and external vendors to establish a robust risk management framework, conduct due diligence, and monitor ongoing compliance. - **Policy & Framework**: - Develop and review the Bank's Outsourcing/Third Party/Vendor Risk Management Framework and the Risk Assessment Templates. - Implement the framework in coordi...

Role Overview: You will be joining the Defender Experts (DEX) Research team within Microsoft Security, whose mission is to protect customers from advanced cyberattacks by transforming raw signals into intelligence. As a Threat Researcher, you will collaborate with researchers, analysts, and detection engineers to advance managed Sentinel expertise and drive research on emerging cloud threats impacting both Microsoft and third-party products. Your work will directly contribute to developing real-time protections for enterprises worldwide and enhancing threat detection and response capabilities within Microsoft Sentinel. This role offers a unique opportunity to work at scale, tackle complex cl...

Customer Services encompasses a range of activities supporting Nokia customers, including technical support, account management, operations, maintenance, network design, deployment, integration, transformation, and training. The team drives revenue growth and enhanced customer satisfaction throughout the service lifecyclefrom planning and design to deployment, integration, optimization, operation, and maintenance. Managed Services is responsible for the ongoing operation and performance of customer networks, proactively proposing and implementing upgrades based on business needs. This includes the technical management and operation of contracted IT and telecommunications services provided to...

Customer Services encompasses a range of activities supporting Nokia customers, including technical support, account management, operations, maintenance, network design, deployment, integration, transformation, and training. The team drives revenue growth and enhanced customer satisfaction throughout the service lifecyclefrom planning and design to deployment, integration, optimization, operation, and maintenance. Managed Services is responsible for the ongoing operation and performance of customer networks, proactively proposing and implementing upgrades based on business needs. This includes the technical management and operation of contracted IT and telecommunications services provided to...

Job Purpose Information security team member (with skip level reporting to CISO) who is proficient in maintaining & managing Cloud Security, Container security & CICD deployment. Information Security tool management & governance. Understanding of regulatory requirements, maintaining the tool compliance, configuring the tool policy, logs review & alert/incident handling. Driving information Security projects & Monitoring Key Risk Indicators (KRIs) for Information Security. Duties and Responsibilities A-Minimum required Accountabilities for this role Role: The CSPM Specialist is responsible for continuously monitoring and improving the security posture of cloud environments (AWS, Azure, GCP) b...

Overall management of Google Adwords Building strategies to identify new opportunities Analyze web traffic and implementing SEO/SEM, marketing and sales performance metrics.

Job Purpose Information security tech team member (with skip level reporting to CISO) who is proficient in maintaining & managing WAF technology, Information Security tool management & governance. Understanding of regulatory requirements, maintaining the tool compliance, configuring the tool policy, logs review & alert/incident handling. Driving information Security projects & Monitoring Key Risk Indicators (KRIs) for Information Security. Duties and Responsibilities A-Minimum required Accountabilities for this role Application & Network Security Expertise: Strong hands-on experience in Web Application Firewall (WAF) deployment, configuration, and management (e.g., Akamai, Cloudflare, F5 ASM...

Role & responsibilities We are seeking a highly skilled Technical Project Manager with strong experience in Cybersecurity Operations , Vulnerability Management , and Security Operations Center (SOC) environments. The ideal candidate will bridge the gap between technical teams and business stakeholders, driving the execution of cybersecurity projects while ensuring operational excellence in a high-security environment. Required Skills & Experience: 5+ years of experience in Cybersecurity Operations , including hands-on experience in SOC and Vulnerability Management . 2+ years in a Project Manager or Technical Program Manager role within a cybersecurity context. Solid understanding of cybersec...

Your Role We are seeking a highly skilled and experienced SOC Lead / L3 Analyst with deep expertise in SIEM platform engineering , log integration , security incident management , and advanced threat detection with 8+ years of experience for Bangalore location . The ideal candidate will lead critical security incidents, guide junior analysts, and contribute to the strategic evolution of security operations through technology evaluations and process enhancements. Design, implement, and manage SIEM platforms including log ingestion, parsing, normalization, and correlation. Develop and maintain SIEM dashboards, alerts, and reports to support threat detection and compliance. Oversee production m...

About Company Choosing Capgemini means choosing a company where you will be empowered to shape your career in the way youd like, where youll be supported and inspired bya collaborative community of colleagues around the world, and where youll be able to reimagine whats possible. Join us and help the worlds leading organizationsunlock the value of technology and build a more sustainable, more inclusive world. Job TitleSOC L2 Total Exp- 4 to 7 Years Location- Bangalore Your Role SOC Analyst Key Skills & Experience Experience 3+ years in SOC analysis; prior network/system admin experience is a strong plus. Technical Expertise Strong in Active Directory, Kerberos, ADCS, Windows security logs, ne...

Responsibilities: * Collaborate with incident response team on DLP-related matters * Implement data loss prevention strategies using Digital Guardian technology * Conduct log analysis and troubleshoot endpoint security issues Health insurance

Role & responsibilities: The Lead Incident Response Team is responsible for overseeing the end-to-end management of technology incidents across the enterprise. This role ensures rapid detection, containment, resolution, and root cause analysis of incidents affecting critical IT services. The position requires strong leadership, technical acumen, and the ability to coordinate across multiple teams under pressure. Act as the primary liaison during major incidents, ensuring timely updates to senior leadership. Ensure adherence to incident management policies, ITIL standards, and regulatory requirements. Define and evolve the incident response strategy in alignment with business continuity and d...

Looking 2-6 years experienced DLP Analyst * Implement Symantec DLP solutions for data protection. * Respond to security incidents with incident response procedures. * Manage endpoints using Symantec Endpoint Security suite. Work from home Health insurance

Position Summary We are seeking an experienced SOC Analyst to join our Security Operations team. This role demands an individual with a strong technical background in incident analysis, SIEM administration, and rule fine-tuning. The ideal candidate will have experience working with diverse environments, including Windows, Linux, and network security, and will be well-versed in ELK stack management and troubleshooting beats agents. Key Responsibilities 1. Incident Detection and Analysis: o Conduct deep-dive analysis on security incidents, assessing root causes, and recommending solutions. o Proactively monitor and respond to security alerts, managing incident escalation and resolution process...

What were looking for We are seeking a skilled and proactive Cyber Threat Intelligence Analyst (3-5 years) to join our team and contribute to delivering a Fanatical Experience to our customers. This role is ideal for an individual with a strong background in threat intelligence gathering, analysis, and reporting, as well as hands-on experience in threat hunting and translating intelligence into actionable insights. Incident Handling and Managing Cloudsek Platform. As a Threat Intelligence Analyst, you will be responsible for identifying and analyzing emerging cyber threats, conducting threat hunting (good to have Sentinel Exp) activities to uncover hidden risks, and producing detailed report...

Analyze, detect & resolve cyber threats, monitor logs, conduct forensic analysis, handle incidents, ensure SLA adherence, manage audits & train staff. Strengthen security posture with Fortinet Firewall expertise.

Role & Responsibilities: Required Skills/qualifications: 5+ years of experience in Network Security experience, Palo Alto, CISCO, ISE etc Working knowledge of common operating systems (Windows, Linux, etc.) and basic endpoint security principles Hands-on experience with common networking services and protocols (TCP/IP, SSH, FTP, DNS, DHCP, SMTP, SSL, etc.) Experience with maintaining and operating common security technologies (IDS, IPS, Firewalls, Cloud Security, WAF, Endpoint Security, SIEM, etc.) Exceptional organizational abilities and attention to detail The ability to think creatively to find elegant solutions to complex problems Excellent verbal and written communication skills Below c...

As the Manager, Security Operations APAC at Johnson Controls Global Cyber Security (GCS) team, your role will involve leading the security operations and incident response practices for the APAC region. You will collaborate with enterprise stakeholders to ensure timely mitigation and remediation of incidents. Your responsibilities will also include continuous process improvement for security operations and incident response processes, tracking and reporting metrics, and identifying and implementing processes, procedures, and tools to enhance capabilities. Additionally, you will manage team member workloads, partner with global security operations leaders, and respond to new threats. Key Resp...