2856 Qradar Jobs - Page 16

Description Primary Skills: Scripting and Automation Threat Detection and Analysis Log Analysis and Monitoring Named Job Posting? (if Yes - needs to be approved by SCSC) Additional Details Global Grade C Level To Be Defined Named Job Posting? (if Yes - needs to be approved by SCSC) No Remote work possibility Yes Global Role Family To be defined Local Role Name To be defined Local Skills Scripting and Automation Languages RequiredENGLISH Role Rarity To Be Defined

Description Primary Skills: Incident Management and Response System and Network Knowledge Post-Incident Analysis and Improvement Secondary Skills: Automation and Scripting Communication and Coordination Knowledge of Standards and Best Practices Named Job Posting? (if Yes - needs to be approved by SCSC) Additional Details Global Grade C Level To Be Defined Named Job Posting? (if Yes - needs to be approved by SCSC) No Remote work possibility Yes Global Role Family To be defined Local Role Name To be defined Local Skills Incident Management and Response Languages RequiredENGLISH Role Rarity To Be Defined

Description Primary Skills: Incident Management and Response System and Network Knowledge Post-Incident Analysis and Improvement Secondary Skills: Automation and Scripting Communication and Coordination Named Job Posting? (if Yes - needs to be approved by SCSC) Additional Details Global Grade C Level To Be Defined Named Job Posting? (if Yes - needs to be approved by SCSC) No Remote work possibility Yes Global Role Family To be defined Local Role Name To be defined Local Skills Incident Management and Response Languages RequiredENGLISH Role Rarity To Be Defined

Responsible for operationalization of new security platforms to enable security operations Center to stay ahead of emerging and current threats. Security Information Event Management & Analytics Platforms integration Trellix SIEM(Mcafee) Build Co relation rules from different integrated sources that drive security analytics and incident response. Custom integration of Log sources and SIEM content development. Act as a Subject Matter Expert for Onpremise SIEM solution.. Configure and troubleshoot Mcfaee SIEM components and related functionalities. Plan and onboard different data sources such as: Windows, linux, AD, Firewall, other security tools integration. Candidates with prior experience o...

ArcSight SIEM platform management. Devices onboarding on ArcSight SIEM. Custom Parser development. EPS license (2.5K) assessment. Upgrade of ArcSight SIEM components. Architectural Assessment of ArcSight SIEM

Job requisition ID :: 91132 Date: Nov 11, 2025 Location: Delhi Designation: Assistant Manager Entity: Deloitte Touche Tohmatsu India LLP Your potential, unleashed. India’s impact on the global economy has increased at an exponential rate and Deloitte presents an opportunity to unleash and realize your potential amongst cutting edge leaders, and organizations shaping the future of the region, and indeed, the world beyond. At Deloitte, your whole self to work, every day. Combine that with our drive to propel with purpose and you have the perfect playground to collaborate, innovate, grow, and make an impact that matters. The team Deloitte helps organizations prevent cyberattacks and protect val...

The Security Engineer will be responsible for developing and delivering advanced cybersecurity training programs. The trainer should possess hands-on expertise in security tools, frameworks, and real-world attack–defense techniques to effectively train students, professionals, and corporate participants. Key Responsibilities: Deliver instructor-led training (ILT) and workshops on Cybersecurity, Network Security, Ethical Hacking, and VAPT . Design, update, and improve course curriculum, lab exercises, and training materials . Conduct hands-on labs on tools such as Burp Suite, Nessus, Metasploit, Wireshark, etc. Mentor and guide learners in practical cybersecurity projects and assessments. Eva...

Role & responsibilities • Perform Security Event monitoring using SIEM, EDR, XDR tools, analysing security events, and identifying potential threats. • Log analysis and investigation of cyber threat, incident response, and mitigation using established frameworks and tools. • Perform root causes analysis, develop incident response plans, SOPs and collaborate with Security and IT teams to resolve incidents. • Troubleshoot issues related to Splunk ES deployment, configuration, and performance. • SIEM administration and maintenance activities like Log integration, Deployment and management of Forwarders, Splunk Apps, Dashboard and rule creation. • Respond, follow up, document and handle the secu...

Role: SOC Analyst (L2/L3) Experience: 4 -12 Year Location: Mumbai Job Description: Key Responsibilities: Perform real-time security monitoring, analysis, and incident response for enterprise systems, networks, and applications. Investigate security alerts and correlate events using SIEM tools (e.g., Splunk, QRadar, ArcSight, Azure Sentinel). Conduct threat hunting, log analysis, and root cause investigations for potential or actual incidents. Manage the incident response lifecycle — triage, containment, eradication, recovery, and post-incident review. Escalate incidents to higher levels (L3 or CSIRT) as per defined playbooks. Develop and tune correlation rules, dashboards, and detection use ...

Role Overview: Seeking a skilled and motivated L1 Analyst – Dark Web Monitoring & Threat Intelligence to join our Security Operations Center (SOC) team. In this role, the analyst will focus on dark web intelligence gathering, analysis, and reporting, leveraging platforms such as CloudSEK to identify potential threats, data leaks, credential exposures, and emerging risks to the customer’s environment. The candidate will also support the wider SOC with actionable threat intelligence to strengthen detection, response, and proactive defense capabilities. Key Responsibilities Dark Web Monitoring & Analysis Continuously monitor dark web, deep web, and surface web sources using CloudSEK and other t...

Job Title: Pre-Sales Consultant – SOC (Security Operations Center) Location: Department: Sales / Cybersecurity Reporting to: Head – Sales / Business Development / CTO Job Type: Full-time About the Role: The Pre-Sales SOC Consultant will work closely with the sales and technical teams to understand customer security requirements and position our SOC services (Managed SOC, SIEM, Threat Intelligence, Dark Web Monitoring, Incident Response, etc.). The role involves solution designing, preparing technical proposals, delivering product demos, and supporting RFP/RFQ compliance. Key Responsibilities: Technical / Pre-Sales Activities: · Understand client cybersecurity needs and translate them into SO...

We are looking for a highly experienced Senior Cybersecurity Engineer with advanced skills in Splunk, CrowdStrike, vulnerability management, and identity provider (IDP) systems. This role will be instrumental in building robust detection, response, and identity-integrated security capabilities to defend against evolving threats. The ideal candidate will have a hands-on, security engineering mindset and a proven track record working across endpoint protection, SIEM, and identity systems. Key Responsibilities: Deploy, manage, and optimize Splunk Enterprise Security (ES) for real-time detection, alerting, and correlation of security events. Design and build custom SPL queries, dashboards, and t...

Project Role : Security Delivery Practitioner Project Role Description : Assist in defining requirements, designing and building security components, and testing efforts. Must have skills : Security Information and Event Management (SIEM) Good to have skills : NA Minimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary: The QRadar L2 Security Analyst plays a critical role in analyzing, investigating, and responding to security incidents. This role involves advanced use of IBM QRadar SIEM for threat detection, offense tuning, and incident response coordination. Roles & Responsibilities: • Analyze and investigate escalated security incidents ...

Key Responsibilities Configure, manage, and troubleshoot Fortinet Firewalls and Cisco Layer 3 switches . Manage core network infrastructure , including multiple ILLs , firewalls , and HA Layer 3 switches across sites integrated with data centers . Configure and maintain P2P and IPsec VPN tunnels . Administer endpoint security tools such as Netskope , CrowdStrike , and CoSoSys Endpoint Protector . Basic working knowledge of IBM QRadar (SIEM) for security monitoring. Hands-on experience with LAN, WLAN, and WAN technologies. Ensure network security , incident response, and adherence to best practices. Support Business Continuity Planning (BCP) for network resilience. Apply strong analytical and...

Roles & Responsibilities The individual is responsible for providing a cybersecurity solution and subject matter expertise including design & architecture Act as a Cybersecurity lead within the Cybersecurity Practice and drive customer communications & engagements, opportunities, OEM communications Architect multi-stack and multi-layer cyber defense solutions, considering applicable framework and Zero Trust approach for global customers Work closely with the technical team to ensure that technical knowledge is maintained and that the project gets delivered as designed. Work with partner vendors and develop technical peer relationships. Proactively share knowledge with the team and supports t...

Job description Position: SOC Trainer (Security Operations Centre Trainer) Course Duration: 25 Days Location - Onsite - Kota, Rajasthan Class Schedule: Monday to Friday (1.5 Hours per Day) Course Level: Beginner to Advanced Payout: 22k to 25k + Accomodation Candidates having 1 or 2 years of experience with good communication skills can apply. Role Overview: ASD Academy is seeking an experienced SOC Trainer to deliver structured training sessions on Security Operations Centre (SOC) practices. The trainer will be responsible for guiding students from beginner to advanced levels, ensuring they gain a comprehensive understanding of SOC principles, tools, and real-world applications. Key Responsi...

Job Description SOC Trainer – ASD Academy Position: SOC Trainer (Security Operations Center Trainer) Course Duration: 1 month Course Level: Beginner to Advanced Payout: 22k to 25k + Accomotions Candidates having 1-2 years of experience with god commincation skills can apply. Role Overview: ASD Academy is seeking an experienced SOC Trainer to deliver structured training sessions on Security Operations Center (SOC) practices. The trainer will be responsible for guiding students from beginner to advanced levels, ensuring they gain a comprehensive understanding of SOC principles, tools, and real-world applications. Key Responsibilities: ✔ Conduct engaging and interactive online/offline SOC train...

Job requisition ID :: 91132 Date: Nov 11, 2025 Location: Delhi Designation: Assistant Manager Entity: Deloitte Touche Tohmatsu India LLP Your potential, unleashed. India’s impact on the global economy has increased at an exponential rate and Deloitte presents an opportunity to unleash and realize your potential amongst cutting edge leaders, and organizations shaping the future of the region, and indeed, the world beyond. At Deloitte, your whole self to work, every day. Combine that with our drive to propel with purpose and you have the perfect playground to collaborate, innovate, grow, and make an impact that matters. The team Deloitte helps organizations prevent cyberattacks and protect val...

Required Skills & Experience 7-10 years of experience in a SOC or cybersecurity operations role. Proficiency with Secureworks Taegis and Microsoft Defender (Endpoint, Identity, Cloud), including rule tuning, log analysis, and case management. Experience with SIEM tools (e.g., Splunk, QRadar, Elastic Stack) and SOAR platforms. Strong understanding of TCP/IP, DNS, HTTP/S, and other network protocols. Familiarity with endpoint detection tools (e.g., Defender for Endpoint), IDS/IPS, and vulnerability scanners (e.g., Nessus, Qualys). Scripting skills in Python, Bash, or PowerShell for automation and data parsing. Nice to Have Skills & Experience Bachelor’s degree in Cybersecurity, Computer Scienc...

About The Role Project Role : Security Delivery Lead Project Role Description : Leads the implementation and delivery of Security Services projects, leveraging our global delivery capability (method, tools, training, assets). Must have skills : Security Information and Event Management (SIEM) Good to have skills : NAMinimum 15 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Delivery Lead, you will lead the implementation and delivery of Security Services projects, leveraging our global delivery capability. You will be responsible for ensuring the successful execution of projects, utilizing our method, tools, training, and asse...

Work experience - 5+ Years Proactively lead and support incident response team during an incident. Experience in advance investigation, triaging, analysis and escalation of security incidents with recommendations Hands-on basic experience with configurations and management of SIEM tools(Qradar)including log source integrations, custom parser built, fine tuning and optimizing the correlation rules and use cases recommendations Is MUST. Proven Experience on any of the Security information and event management (SIEM) tools using Qradar Data-driven threat hunting using SIEM, EDR and XDR tools Basic Experience is SOAR tools such as Qradar Resilient, PaloAlto XSOAR Identify quick defence technique...

Proactively lead and support incident response team during an incident. * Experience in advance investigation, triaging, analysis and escalation of security incidents with recommendations * Hands-on basic experience with configurations and management of SIEM tools(Qradar) including log source integrations, custom parser built, fine tuning and optimizing the correlation rules and use cases recommendations Is MUST. * Proven Experience on any of the Security information and event management (SIEM) tools using Qradar * Data-driven threat hunting using SIEM, EDR and XDR tools * Basic Experience is SOAR tools such as Qradar Resilient, PaloAlto XSOAR * Identify quick defence techniques till permane...

Design, implement, and manage application security controls, leveraging security recommendations. Requirement of Splunk, ,Siem Tool. Having deep Knowledge of Ibm Qradar

Position: Pre & Post sales Engineer (Solution Architect) Exp: 5+ Years Location: Mumbai Key Responsibilities: Pre-Sales: • Engage with CISOs, IT security teams, and stakeholders to understand cybersecurity requirements. • Design and present security solutions aligned to threats, compliance, and business risks. • Deliver technical product demos for solutions like SIEM, SOAR, EDR, NDR, DLP, IAM, MFA, Firewall, Zero Trust, etc. • Support RFP/RFI responses with detailed technical documentation and solution design. • Support the sales team in responding to RFPs/RFIs with detailed technical inputs. • Design solution architecture in alignment with client needs and company offerings. • Execute Proof...

L2 SOC Analyst An L2 Analyst will collaborate with security experts, investigate complex incidents, and ensure thesecurity of our critical systems. If you have a passion for cybersecurity and enjoy working in a fast-paced environment, this is the perfect opportunity for you.Responsibilities1. Perform deep analysis to security incidents to identify the full kill chain2. Perform remediation steps according to the findings or initiate steps for remediation3. Prepare RCA for major incidents4. Handle L2 and above level technical escalations from L1 Operations team and resolve withinSLA.5. Identify the security gaps and need to recommend new rules/solution to L3/Customer6. Need to suggest finetuni...