2439 Qradar Jobs - Page 20

At Sogeti, we believe the best is inside every one of us. Whether you are early in your career or at the top of your game, well encourage you to fulfill your potentialto be better. Through our shared passion for technology, our entrepreneurial culture , and our focus on continuous learning, well provide everything you need to doyour best work and become the best you can be. Your Role Lead deployment, configuration, and management of endpoint protection platforms across multiple operating systems. Troubleshoot and resolve endpoint security issues including incident investigation, log analysis, and vulnerability remediation. Develop and enforce endpoint security policies, procedures, and best ...

Experience: 4+ Yrs Job Location: Mumbai About the Role Configure, and maintain the SIEM platform (e.g., ELK, Splunk, QRadar, ArcSight, LogRhythm, Sentinel, etc.). Develop and fine-tune correlation rules, alerts, and dashboards to support SOC use cases. Onboard log sources from various platforms (Windows, Linux, cloud, network devices, applications). Perform health checks, upgrades, and patch management of SIEM components. Work closely with SOC analysts to improve detection capabilities and reduce false positives. Collaborate with threat intel and incident response teams to create advanced detection logic. Automate log ingestion and alert tuning using scripting (Python, PowerShell, etc.). Dev...

About Gruve Gruve is an innovative software services startup dedicated to transforming enterprises to AI powerhouses. We specialize in cybersecurity, customer experience, cloud infrastructure, and advanced technologies such as Large Language Models (LLMs). Our mission is to assist our customers in their business strategies utilizing their data to make more intelligent decisions. As a well-funded early-stage startup, Gruve offers a dynamic environment with strong customer and partner networks. About The Role Gruve Technologies is looking for an experienced Threat Hunter Analyst to join our cybersecurity team. The ideal candidate will proactively search for advanced threats, identify stealthy ...

Skills : 10yrs relevant experience on ServiceNow Core Development and Integrations. Worked on atleast 2 Products of ServiceNow (CSM HRSD ITSM ITBM ITOM ITAM SecOps Good hands-on with JavaScript, Angular JS, HTML/CSS Mandatory to have CSA (Certified ServiceNow Admin), Good to have CIS CAD Responsibilities for ServiceNow Developer ServiceNow Developer with experience on HRSD, CSM, ITSM, SPM, GRC SecOps, ITOM, ITAM. Configure Enhance the ServiceNow Platform to meet the Identified Business requirements and Functional needs. Utilize ServiceNow PluginsAutomation tools to build Innovative Solutions. Develop integrations leveraging point-to-point interfaces, Web Services file based transfers, etc. S...

Managed Services SOC Manager Job Summary: The Security Operations Center (SOC) Security L-1 Analyst serves in a SOC team, is responsible for conducting information security investigations as a result of security incidents identified by the Level-1 security analysts who are monitoring the security consoles from various SOC entry channels (SIEM, Tickets, Email and Phone). The L1 SOC Security Analyst is expected to have a solid understanding of information security and computer systems concepts and should be ready to work in shifts. An engineer in this position act as a point of escalation for Level-1 SOC security analysts in support of information security investigations to provide guidance an...

Role Summary We are looking for 5 to7 years of Experience The SOC L2 Analyst is responsible for in-depth investigation, triage, escalation, and response to security incidents. This role acts as the primary responder for escalated threats and requires advanced analytical skills, incident management experience, and proficiency in modern security tools and methodologies -Responsibilities: Monitor, analyze, and investigate security alerts from SIEM, EDR, email gateways, and other sources -Conduct detailed investigations into suspicious activities, validate true/false positives, and perform root cause analysis of incidents. - Coordinate incident response and containment procedures for verified se...

Roles and Responsibility Provide daily summary reports on activities and configure client tasks. Purge events frequently and offer help desk support. Troubleshoot during agent installation and provide VPN evidences. Support users in installing or uninstalling agents and resolving agent communication issues. Assist in agent upgrades and generate/share MIS reports with end-users. Troubleshoot policy-related issues and whitelist IPs and PFIDs. Share granular details of infringements and provide root cause analysis documents. Job Requirements Strong knowledge of security analysis and troubleshooting. Excellent communication and problem-solving skills. Ability to work independently and as part of...

About the Role We’re looking for a motivated and talented individual interested in working on Load balancer (F5), WAF, Palo Alto Firewall, DDOs and Network Security. Key Responsibilities Security Rule creation on Palo Alto and FortiGate firewall Create NAT rule on Palo Alto and FortiGate firewall. Security profiles and Log forwarding profile creation /modification. Zone security profile Troubleshooting High CPU Utilization Troubleshooting application issues at L4 and L7 level Troubleshooting NAT (src, dst, static, translation related and hit related) issues Application override Global Protect VPN Backup multiple firewalls Firmware upgrade Device monitoring and Health monitoring and investiga...

We are seeking an experienced QRadar Incident Forensic Specialist to manage the deployment, configuration, and day-to-day operations of the QRadar SIEM platform while supporting incident response and forensic investigations. The ideal candidate will play a critical role in enhancing security monitoring, investigating incidents, and ensuring seamless SIEM operations. This role requires a blend of expertise in QRadar deployment, incident handling, and forensic analysis to improve the organization’s security posture, Plan, design, and deploy QRadar SIEM environments including Incident forensic, ensuring proper integration with network devices, servers, and applications Required education Bachel...

SOC Analyst works within the 24/7 Cyber Fusion Center (CFC). The role is responsible for monitoring, triaging, analyzing and escalating incidents and events in the technology environment. This Senior SOC Analyst will evaluate data collected from a variety of cyber operations tools (e.g., SIEM, IDS/IPS, Firewalls, network traffic logs, cloud platforms, and SOAR solutions to analyze events that occur within the environments for the purposes of detecting and mitigating threats in both structured and unstructured situations. Individuals in this role are proactive and well-versed in log, identity, cloud, network, and root cause analysis Required education Bachelor's Degree Preferred education Mas...

This Position reports to: IS Department Manager for Compliance and Risk Advisory Your role and responsibilities (Mandatory) In this role, you will have the opportunity to establish and maintain operational methods, service compliance, and procedures. Each day, you will be responsible for planning, design, implementation and continuous improvement within governance, compliance, assurance, and/or risk. You will also showcase your expertise by guiding, advising, or supporting in all operational aspects, including document management and systems and procedures analysis. The work model for the role is #LI #Hybrid You will be mainly accountable for: Monitoring the implementation, communication, an...

Requirements Key Responsibility Area24*7 SIEM Monitoring for MSSP environment and alert on Incidents/alerts Maintains record of security monitoring and incident response activities, utilizing case management. Incident Management and coordinate with customer for Incident closure Registering and Handling customer complaints First level incident handling Prepares brief reports of analysis methodology and results Tagging of events based on priority levels & severity levels Follow Standard Operating Procedures to perform rst level troubleshooting Generates end-of-shift reports for documentation and knowledge transfer to subsequent analysts on duty SLA management Escalate to L2 in case of any devi...

Join our Team About This Opportunity We are now looking for a Security Analyst professional. This job role is responsible for monitoring, coordination, support, management, and execution of reactive maintenance activities to ensure that services provided to customers are continuously available and performing to Service Level Agreement (SLA) performance levels. The professional will work alongside a highly skilled, diverse team, making sure that the information assets, that we are responsible to protect, are secured. What You Will Do Support the following systems and functions: Security event management on 24*7 shift Monitor incoming event queues for potential security incidents Security inci...

Join our Team About This Opportunity We are now looking for a Security Analyst professional. This job role is responsible for monitoring, coordination, support, management, and execution of reactive maintenance activities to ensure that services provided to customers are continuously available and performing to Service Level Agreement (SLA) performance levels. The professional will work alongside a highly skilled, diverse team, making sure that the information assets, that we are responsible to protect, are secured. What You Will Do Support the following systems and functions: Security event management on 24*7 shift Monitor incoming event queues for potential security incidents Security inci...

Interview Date - 18th Sep - Thursday Job Location - Mumbai /Vikhroli 🔎 Open Positions: SOC Analyst Level 2 (L2) SOC Analyst Level 3 (L3) Please refer to the job description below for your kind reference: 🛡️ SOC Analyst – Level 2 (L2) / Level 3 (L3) 🎯 Primary Responsibilities: Deep-dive investigation of escalated incidents Conduct root cause analysis and threat containment Coordinate with IT, DevOps, and other teams for remediation Develop and refine incident response playbooks Perform Event and Risk Detection (ERD) using advanced analytics 🧰 Required Skills: Proficiency in QRadar rule creation and custom use case development Experience with forensic tools (Wireshark, Volatility, Autopsy) Fam...

Driven by transformative digital technologies and trends, we are RIB and we’ve made it our purpose to propel the industry forward and make engineering and construction more efficient and sustainable. Built on deep industry expertise and best practice, and with our people at the heart of everything we do, we deliver the world's leading end-to-end lifecycle solutions that empower our industry to build better. With a steadfast commitment to innovation and a keen eye on the future, RIB comprises over 2,500 talented individuals who extend our software’s reach to over 100 countries worldwide. We are experienced experts and professionals from different cultures and backgrounds and we collaborate cl...

Company Description InfoSorse is a premier technology training institute dedicated to providing world-class, industry-aligned education to learners across Africa and beyond. Founded in 2015 and headquartered in Ghana, InfoSorse Technology Institute offers 18-month Professional Diploma programs and flexible short courses in fields such as Data Analytics, Software Engineering, Cybersecurity, and Cloud Computing. Learners graduate job-ready with industry certifications, hands-on projects, internships for real-world experience, and comprehensive career support. InfoSorse is committed to shaping the next generation of global tech leaders. Role Description This is a full-time remote role for a Cyb...

We are looking for a skilled SIEM Engineer with 5 to 22 years of experience. The ideal candidate will have a strong background in Splunk Enterprise architecture, distributed components, and knowledge of Splunk Cloud. Roles and Responsibility Building, maintaining, and operating Splunk Enterprise and Splunk Enterprise Security SaaS Solution. Creating correlation searches for Cyber Operation requirements. Evaluating and analyzing business requirements and designing suitable solutions. Managing, coordinating, and implementing technical project activities and enhancements to services. Conducting Incident/Problem/Recovery activities. Supporting the Joint Operations Centre and incident response te...

Technology | Microsoft Certified: Security, Compliance, and Identity Fundamentals / CISSP/CISM/CEH/GIAC CIH/CSA/CompTIA CySA+/Cisco Certified CyberOps Associate/Splunk Core Certified User/IBM Certified SOC Analyst - IBM QRadar SIEM V7.3.2 Delivery Skills required are: - Technical Skills: - *Identifying and analyzing potential threats and vulnerabilities using various tools and techniques. *Leading and managing the response to security incidents, including containment, eradication, and recovery. *Implementing and maintaining security monitoring systems, such as SIEM (Security Information and Event Management) tools. *Prioritizing and remediating vulnerabilities based on risk assessments. Oper...

The Senior Threat Analyst will provide deep-level analysis for client investigations utilizing customer-provided data sources, audit, and monitoring tools at both the government and enterprise level. The Senior Threat Analyst will work closely with our Technology Engineers, Architects, and Threat Analysts to service customers. How You'll Make An Impact High-level professional writing experience regarding documenting and reporting on potential security incidents identified in customer environments including the timeline of events Work with partners to maintain an understanding of security threats, vulnerabilities, and exploits that could impact systems, networks, and assets. Provide analysis ...

We are looking for skilled Security Consultants with Vulnerability tools experience to join our team on a contract basis. The ideal candidate will have 5-25 years of experience in the field. Roles and Responsibility Conduct vulnerability assessments and penetration testing to identify security risks. Develop and implement comprehensive security strategies to mitigate vulnerabilities. Collaborate with cross-functional teams to ensure seamless integration of security measures. Stay up-to-date with emerging trends and technologies in cybersecurity. Provide expert guidance on security best practices to clients. Perform risk analysis and provide recommendations for remediation. Job Requirements S...

Responsibilities: Implement Security Operations modules Vulnerability Response, Threat Intelligence, and Incident Response.Integrate ServiceNow SecOps with SIEM/SOC tools (Splunk, QRadar, etc.).Automate response workflows and security playbooks.Configure dashboards for real-time security monitoring. Requirements:6+ years ServiceNow with SecOps experience.Strong knowledge of security incident and vulnerability workflows.Integration experience with security tools.SecOps certification preferred. Location - Remote,Bengaluru,Hyderabad,Delhi / NCR,Chennai,Pune,Kolkata,Ahmedabad,Mumbai

About Us With electric vehicles expected to be nearly 30% of new vehicle sales by 2025 and more than 50% by 2040, electric mobility is becoming a reality. ChargePoint (NYSE: CHPT) is at the center of this revolution, powering one of the world's leading EV charging networks and a comprehensive set of hardware, software and mobile solutions for every charging need across North America and Europe. We bring together drivers, businesses, automakers, policymakers, utilities and other stakeholders to make e-mobility a global reality. Since our founding in 2007, ChargePoint has focused solely on making the transition to electric easy for businesses, fleets and drivers. ChargePoint offers a once-in-a...

Job Description: SOC Analyst L2 What We're Looking For: Experience: 4-6 years in Security Operations Center (SOC). Location: Gurugram, India. Availability: Immediate joiners preferred. Key Responsibilities: 1. Monitor and analyze security events from various sources, including SIEM, IDS/IPS, and Endpoint Detection and Response. 2. Investigate and respond to security incidents, providing detailed analysis and recommendations for remediation. 3. Perform threat hunting and vulnerability assessments to identify and mitigate risks. 4. Develop and implement security monitoring use cases and detection rules. 5. Collaborate with cross-functional teams to enhance security posture and incident respons...

Responsibilities: Implement Security Operations modules Vulnerability Response, Threat Intelligence, and Incident Response. Integrate ServiceNow SecOps with SIEM/SOC tools (Splunk, QRadar, etc.). Automate response workflows and security playbooks. Configure dashboards for real-time security monitoring. Requirements: 6+ years ServiceNow with SecOps experience. Strong knowledge of security incident and vulnerability workflows. Integration experience with security tools. SecOps certification preferred. Location: Delhi NCR,Bangalore,Chennai,Pune,Kolkata,Ahmedabad,Mumbai,Hyderabad