55 Mitre Attack Jobs

Hiring: Solution Architect (SIEM & SOAR) Location: Gurgaon (Cyber Hub) Experience: 25 Years | L2/L3 We are looking for a skilled SIEM Implementation Engineer with strong Presales / Solution Architect exposure to join our team. The ideal candidate should have hands-on SIEM experience along with excellent client-facing and solution consulting skills. Key Responsibilities End-to-end SIEM implementation & log source onboarding Parser creation, Use Case & Correlation Rule development Health Check, Performance Tuning, HA & DR Support Prepare Runbooks, SOPs & Architecture Documents Participate in Presales calls, Requirement Gathering & POCs Support Solution Designing, HLD/LLD & BOQ preparation Cond...

Position Summary The Security Operations Team Lead will oversee the design, implementation, monitoring, and operational management of all IT security projects, tools, and platforms to strengthen the enterprise security posture. The role demands strong hands-on technical depth across security technologies, process excellence, and day-to-day oversight of security operations for the assigned geography. The position requires expertise across security tools and platforms (CrowdStrike, ZTNA solutions such as Zscaler/Cloudflare/MS ZTNA, MS Defender, Entra ID, O365, EDR/XDR/SOAR/SIEM including Logscale/Splunk, Email Security, Cisco platforms, Password Managers, AD Plus, HSM, DLP, etc.). The lead is ...

Key Responsibilities 1. Adversary Simulation Design, plan, and execute advanced APT-style attack scenarios to rigorously test organizational defenses. Conduct full-scope Red Team engagements covering network, application, cloud, and physical security vectors. Map findings to the MITRE ATT&CK framework and communicate impact to technical and business stakeholders. Emulate real-world threat actors using appropriate TTPs to measure detection, prevention, and response capabilities. Tools & Frameworks: MITRE ATT&CK, Cyber Kill Chain, Cobalt Strike (licensed), Sliver, Empire, Metasploit 2. Initial Access & Reconnaissance Perform extensive OSINT collection , surface enumeration, and threat reconnai...

Role: SOC SPECIALIST (L1L3) Experienc e: (2-5 yrs) Role Overview Perform VAPT, monitor, detect, analyze, and respond to cybersecurity threats. Work across L1, L2, and L3 tiers based on expertise and escalation needs. Ensure continuous security operations and incident handling. Key Responsibilities Perform continuous VAPT on web and mobile applications, Threat hunting based on indicators of compromise, Conduct vulnerability analysis and correlation, Coordinate with Dev teams for containment actions, Perform malware analysis (basic to intermediate), Validate false positives and tune SIEM rules Continuous monitoring of SIEM alerts, Log analysis for basic anomalies, Initial triage and categoriza...

Please read the JD carefully and then apply Deploy the red team infrastructure as required and then dispose it afterwards. Develop custom implants to evade EDR and other tools. Design and execute realistic attack simulations to test the effectiveness of security controls and incident response processes. Conduct full spectrum of cyber kill chain, including reconnaissance, exploitation, lateral movement, privilege escalation, and persistence. Develop and deploy custom scripts, tools, and payloads to mimic advanced threat actors. Identify and exploit vulnerabilities in systems, networks, and applications to achieve defined objectives. Collaborate with the Blue Team to improve threat detection, ...

Job Description Job Title: Threat & Security Incident Response Specialist (Offshore) Position Reports To: Information Security Lead Business Unit: IT Basic Purpose: Primarily focused on security operations, threat intelligence and incident response. Will respond to security alerts, perform threat hunting and escalate critical alerts. Will help enhance and optimize the threat intelligence platform and incident response processes. Will also help with tuning and optimization of security events and alerts. Experience/Skills: Must have proficiencies: Experience & advanced knowledge & understanding of threat TTPs (tactics, techniques & processes) and MITRE framework Experience & advanced knowledge...

Your work profile. As Manager in our Cyber Team, youll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations: - Key Responsibilities: • Client Engagement & Solutioning: Engage with clients to understand their cybersecurity requirements, challenges, especially around SOC operations. Design and propose tailored SOC solutions including SIEM, SOAR, threat intelligence, incident response, and managed detection & response (MDR). Lead technical discussions, presentations, and demonstrations to articulate the value of proposed solutions. • Proposal & Bid Management: Respond to RFPs/RFIs/RFQs with detailed technical content and soluti...

____________________________________________________________________________ - PLEASE SAVE WHATSAPP # +91 98114 11414 (Ashima)/ 9315248639 (Nishant) - Ashima/ Nishant/Shreedevi is your POC from RexOreo Pvt Ltd. -Queries : All emails will come from id : team@rexoreo.com , so please keep an eye. _____________________________________________________________________________ Top Selection & Auto Elimination Criteria: Only Immediate joiners (0-30 days) Candidates Exprienced & Expert in ALL skills mentioned in " Must-Have Technical Skills " below in JD Need to apply Mode : 4 days work from Office , 1 day WFH Relevant experiense range 10+ Years Position : L3 /L4 SOC Architect / Sr. SIEM Engineer Exp...

Job Title: Cyber Security Analyst Department: Group Services (IT) / Business Systems Reports To: Cyber Security Lead Location: Noida, India Work Model: Hybrid Employment Type: Full-time Seniority Level: Junior Level Role Overview We are looking for a dedicated Cyber Security Analyst to join our in-house security operations team in Noida. This position offers an excellent opportunity for a professional eager to develop a career in information security and play a crucial role in protecting our organizations assets, systems, and users from cyber threats. As a Cyber Security Analyst, you’ll monitor our corporate and cloud environments for indicators of compromise, respond to alerts, and support ...

3 years of hands-on experience as a Threat Hunter in enterprise environments. Strong experience with SIEM platforms (Splunk, Google SecOps, Azure Sentinel, etc.) and EDR solutions (CrowdStrike, SentinelOne, MS Defender for endpoints, etc.). Perks and benefits Medical Benefits and variable perks

___________________________________________________________________________ - PLEASE SAVE WHATSAPP # +91 98114 11414 (Ashima)/ 9315248639 (Nishant) - Ashima/ Nishant/Shreedevi is your POC from RexOreo Pvt Ltd. -Queries : All emails will come from id : team@rexoreo.com , so please keep an eye. _____________________________________________________________________________ Top Selection & Auto Elimination Criteria: Only Immediate joiners (0-30 days) Candidates Exprienced & Expert in ALL skills mentioned in " Must-Have Technical Skills " below in JD Need to apply Mode : 4 days work from Office , 1 day WFH Relevant experiense range 10+ Years Position : L3 /L4 SOC Architect / Sr. SIEM Engineer Expe...

5+ years of experience in incident response and/or computer forensics Extensive experience within an enterprise scale organisation; including hands-on experience of complex data centre environments, preferably in the finance or similarly regulated sector Industry recognised cyber security related certifications including; CEH, EnCE, CRISC, SANS GSEC, GCIH, GCIA, GIAC, GCFA, GNFA, GASF and/or CISSP. Formal education and advanced degree in Information Security, Cyber-security, Computer Science or similar and/or commensurate demonstrated work experience in the same.

Your potential, unleashed. Indias impact on the global economy has increased at an exponential rate and Deloitte presents an opportunity to unleash and realize your potential amongst cutting edge leaders, and organizations shaping the future of the region, and indeed, the world beyond. At Deloitte, your whole self to work, every day. Combine that with our drive to propel with purpose and you have the perfect playground to collaborate, innovate, grow, and make an impact that matters. The team Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure, vigilant, and resilientnot only by looking at how to prevent and respond to attacks, but at how ...

Must-Haves: Minimum experience of 6 years in engineering & operations of security & compliance of cloud systems is a must-have Good knowledge of Cloud Services (like Azure servers, GCP servers) Good knowledge of Operating Systems (Windows servers & clients, Linux servers & clients, Mac clients) Good knowledge of Endpoint Security Tools functionalities and structure Good knowledge of networking concept (Security Groups, NACL's, routing, switching, proxy, firewall) Understanding of common cloud IT issues

Title: Senior Cyber Security Threat Hunter Location: Kolkata(WFO) Mode: Permanent with Nexucon Job Summary The Cybersecurity Threat Hunter will proactively search for indicators of compromise, malicious activities, and advanced persistent threats (APTs) across the healthcare environment. This role demands deep technical expertise in adversary tactics, techniques, and procedures (TTPs), strong analytical and investigative skills, and the ability to leverage threat intelligence to detect, analyze, and contain sophisticated cyber threats. Key Responsibilities Conduct proactive threat hunting to identify malicious activity, undetected threats, and adversary behaviors across enterprise and health...

Bloom Energy, a solid oxide fuel cell company, is currently expanding its cybersecurity incident monitoring and response team and is looking for Security Operations Center (SoC) Analysts. The person working in the SOC team operates the security monitoring solutions, reacting timely to security events as identified. This individual should be a dynamic professional who is looking for a rewarding future in one of todays most exciting security technologies Roles: As our Security Engineer and SOC Operations Analyst, you will be part of a SOC team and cover broad aspects of Bloom Energy Security Engineering, Cyber Security monitoring and incident response operations. Working closely with SOC Manag...

Salary: Competitive; commensurate with skills and experience Working Days: 5 Days Key Responsibilities: Design, develop, and automate exploit templates and verifiers for diverse vulnerabilities (web, Active Directory, cloud) with safe reproducibility. Adapt public exploits, discover zero-day vulnerabilities, and codify attack strategies for varied environments. Extend and integrate offensive security toolchains (BloodHound, Cobalt Strike, Sliver, Nuclei, ZAP, etc.) into automated pipelines. Translate adversarial thinking into structured attack scenarios, pivot rules, and fallback strategies for autonomous testing frameworks. Conduct cutting-edge research on emerging attack vectors by monitor...

Salary: Competitive; commensurate with skills and experience Working Days: 5 Days Key Responsibilities: Design, develop, and automate exploit templates and verifiers for diverse vulnerabilities (web, Active Directory, cloud) with safe reproducibility. Adapt public exploits, discover zero-day vulnerabilities, and codify attack strategies for varied environments. Extend and integrate offensive security toolchains (BloodHound, Cobalt Strike, Sliver, Nuclei, ZAP, etc.) into automated pipelines. Translate adversarial thinking into structured attack scenarios, pivot rules, and fallback strategies for autonomous testing frameworks. Conduct cutting-edge research on emerging attack vectors by monitor...

____________________________________________________________________________ - PLEASE SAVE WHATSAPP # +91 98114 11414 (Ashima)/ 9315248639 (Nishant) - Ashima/ Nishant/Shreedevi is your POC from RexOreo Pvt Ltd. -Queries : All emails will come from id : team@rexoreo.com , so please keep an eye. _____________________________________________________________________________ Top Selection & Auto Elimination Criteria: Only Delhi NCR Candidates Need to apply as we need Only Immediate joiners (0-30 days) Rotational Shift Cab facility : Yes only late night pick or drop(1 side only for Gurgaon Employees) Location : Gurgaon Mode : 5 days work from Office only Relevant experience range 9+ Position : L3 ...

Role & responsibilities: Manage, and monitor Endpoint Detection & Response (EDR) and Antivirus/NGAV solutions (e.g., CrowdStrike, Microsoft Defender for Endpoint, SentinelOne). Maintain endpoint security baselines (CIS/NIST), including hardening policies Continuously monitor endpoint alerts and logs for suspicious behavior and coordinate response with SOC/IR teams. Lead incident response for endpoint-related threats, including ransomware, malware, privilege escalation attempts. Ensure timely patching and vulnerability remediation across all endpoint platforms (Windows, macOS, Linux). Implement and maintain security controls on Domain Controllers including: LSASS protection, Credential Guard,...

Mandatory Skills : Azure Cloud Skill to Evaluate : Azure Cloud Experience : 6 to 10 Years Location : Bengaluru Job Description : Must-Haves: Minimum experience of 6 years in engineering & operations of security & compliance of cloud systems is a must-have Good knowledge of Cloud Services (like Azure servers, GCP servers) Good knowledge of Operating Systems (Windows servers & clients, Linux servers & clients, Mac clients) Good knowledge of Endpoint Security Tools functionalities and structure Good knowledge of networking concept (Security Groups, NACL's, routing, switching, proxy, firewall) Understanding of common cloud IT issues Understanding of MITRE ATTCK framework and being able to drive ...

Job Title: Cybersecurity Trainer / Faculty Department: Computer Science / Information Technology / Cybersecurity Location: K. R. Mangalam University, Gurugram Sohna Rd Hwy, Haryana 122103 Job Type: Full-time Job Summary: K. R. Mangalam University is seeking a dynamic and knowledgeable Cybersecurity Trainer/Faculty to join our academic team. The ideal candidate will be responsible for delivering engaging, practical, and industry-relevant instruction in the field of cybersecurity. You will help shape the next generation of cybersecurity professionals by teaching core concepts, current tools, and real-world best practices. Key Responsibilities:Teaching & Training Deliver lectures, lab sessions,...

Role & responsibilities We are looking for a skilled Microsoft Sentinel SIEM Engineer to join our Cybersecurity Operations team. The ideal candidate will be responsible for the deployment, configuration, integration, and operational support of Microsoft Sentinel as a core SIEM platform, ensuring efficient threat detection, incident response, and security monitoring. Key Responsibilities: Design, implement, and manage Microsoft Sentinel for enterprise security monitoring. Develop and maintain analytic rules (KQL-based) and detection use cases aligned with MITRE ATT&CK. Integrate various log sources (on-prem and cloud) including Microsoft 365, Azure, AWS, endpoints, firewalls, etc. Create and ...

Role & responsibilities Detect, Analyze, Investigate, and report qualified security incidents to the Client as per the defined SLA Provide recommendations to the security incidents reported as per SLA Investigates incidents using various security event sources (FW, IDS, PROXY, AD, EDR, DLP etc.). Investigations into non-standard incidents and execution of standard scenarios. Provide dashboard and data related to Incidents/Offenses for governance reports. Escalates to L3 if investigations uncover unusual or atypical situations. Monitoring unhealthy log source/data source and escalate to engineering team to fix them. Participate in incident response (IR) efforts; detect, identify, respond, con...

Role Overview We are seeking a highly skilled Security Engineer with expertise in threat simulation, the MITRE ATT&CK framework, and scripting. The ideal candidate will have a strong background in penetration testing, red teaming, or threat emulation, along with hands-on experience in BAS (Breach and Attack Simulation) tools. The role involves evaluating security posture, simulating real-world attack scenarios, and collaborating with SOC, threat intelligence, and automation teams to strengthen defenses. Key Responsibilities Design, execute, and manage threat simulations aligned with the MITRE ATT&CK framework. Conduct penetration testing, red team exercises, and threat emulation to identify ...