2435 Qradar Jobs - Page 6

Job Description Must Have: Skill required: SIEM architect - Focusing on log source onboarding ,design architectures,work flows,Client stakeholder Interactions, understanding of overall network infrastructure. XSIAM Admin Looking after log source onboarding,Profiles/polices maintenance, usecase development, Integrations, playbooks, Platform support, Parser development Palo_XDR Admin Agent deployments/Troubleshooting, tailored policyprofile creations,alert handling, Threat Hunting,Agent maintenance Content Development Use case development(XQL),Threat hunting, Parser development, Python knowledge is required. XSIAM_SOAR Developer Custom integrations, Playbook Development Key Responsibilities Le...

Job Description o Monitor health of SIEM components and create incidents to the support team for action. o Create use cases to find the malicious activity in the infrastructure. o Aware of current attacks and implement new use cases to avoid impact of prevailing attacks in cyber world. o Create rules, reports, dashboards as per requirement o Work with internal teams to obtain an in-depth understanding of security requirements in order to translate them into policies, procedures, and plans. o Analyzing new features and hot fixes released by SIEM and plan the upgrades as required o Patch upgrades o Overall Version upgrades to avail new features and enhancements o Work with vendors to resolve S...

Tech Consultant-DLP Total 6-`10 years of experience with 5+ years in Symantec DLP Good working experience with data protection/security controls such as data scanning, data leakage protection/prevention. Has good understanding of risk assessments and ISO 27001 and incident response Good communication skills and stakeholder management. Has 5+ years of experience with data protection controls. An experienced security specialist with deep understanding of DLP/Data at rest scanning, incident handling and alert handling on DLP. Has very good insight to the working of DLP. Is a certified cyber security professional, with a minimum of ISO 27001 or CISM, CRISC. Has good understanding of Security Gov...

Candidate Persona Ability to work with very large and complex network. Self-motivated individual and creative thinker who will take ownership of tasks and projects, able to work with the team, and manages tasks effectively and has a proven track record of consist and organized outputs. The ideal candidate will demonstrate an eagerness to understand complex problems and requirements, an aptitude for translating these problems into workable designs and solutions, and will possess a keen eye for detail. Skills Required 4+ years for, L2 8+ years for L3: Hands-on experience in 2 or more of the SIEM Analysis and SIEM content management areas Having knowledge/experience on SIEM experience preferabl...

Job requisition ID :: 91153 Date: Oct 29, 2025 Location: Hyderabad Designation: Manager Entity: Deloitte Touche Tohmatsu India LLP Your potential, unleashed. India’s impact on the global economy has increased at an exponential rate and Deloitte presents an opportunity to unleash and realize your potential amongst cutting edge leaders, and organizations shaping the future of the region, and indeed, the world beyond. At Deloitte, your whole self to work, every day. Combine that with our drive to propel with purpose and you have the perfect playground to collaborate, innovate, grow, and make an impact that matters. The team Deloitte helps organizations prevent cyberattacks and protect valuable ...

Job Description Job Title: SOC -2 Consultant Skills: AIG is looking for experienced soc 2 consultants on full/part time and contractual role. Preffered skills are- SOC monitoring, working knowledge in any of the SIEM tools like ArcSight , Qradar , Splunk , McAfee Nitro, Active monitoring of Security events using SIEM (based on standard operating procedure), CCNA / Security+/ Network+ CEH certified / SIEM technology certified (optional) (ArcSight , Qradar , Splunk , McAfee Nitro, Manage engine Log360), Knowledge of IPS/IDS, Knowledge of firewalls and intrusion detection systems, Strong analytical and problem solving skills, Knowledge of SIEM, IDS/IPS, Endpoint Protection, Firewalls, Proxy, Se...

About the Role We’re looking for a Cyber Security Engineer to strengthen our security posture and safeguard systems, data, and networks. You’ll work closely with the IT and development teams to identify vulnerabilities, deploy defenses, and respond to incidents efficiently. Key Responsibilities •⁠ ⁠Monitor and analyse network traffic for unusual activities or security breaches. •⁠ ⁠Implement, configure, and manage security tools — firewalls, IDS/IPS, endpoint protection, and SIEM solutions. •⁠ ⁠Conduct regular vulnerability assessments and penetration testing (VAPT). •⁠ ⁠Collaborate with DevOps/Cloud teams to ensure secure infrastructure (AWS, Azure, GCP). •⁠ ⁠Respond to and document securit...

Role Overview: The SIEM Content Management Engineer will be responsible for designing, developing, optimizing, and maintaining SIEM content including use cases, correlation rules, threat models, dashboards, and reports. This role plays a critical part in enhancing threat detection capabilities and aligning SIEM content with evolving threat landscapes and business requirements. Key Responsibilities: Develop and maintain SIEM use cases aligned with threat intelligence, MITRE ATT&CK framework, and business risks. Create and optimize correlation rules, alerts, dashboards, and reports in Securonix (or other SIEM platforms). Collaborate with Threat Intel, SOC, and Incident Response teams to identi...

Job Overview: The Assistant Manager Academic Operations will be responsible for end-to-end delivery of a course/program. Starting with research, anticipation and evaluation of market needs this role would be responsible for working with stakeholders of a program delivery, including the faculty, mentors, sales & marketing and content preparation teams. The role also requires one to evaluate the current offerings and implement strategies for improving the product. Responsibilities and Duties: Academic Operations: Researching about the requisite coursework to be delivered by the program and supporting the faculty with content creation. Onboarding mentors to deliver the course. Looking after sup...

About The Role Project Role : Security Advisor Project Role Description : Provide enterprise-level advice to make organizations cyber resilient. Assist in navigating the complex landscape of cyber threats, ensuring robust digital asset protection while maintaining trust with stakeholders. Must have skills : Endpoint Extended Detection and Response Good to have skills : NA Minimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Advisor, you will provide enterprise-level advice to make organizations cyber resilient. Your typical day will involve engaging with various stakeholders to assess their cybersecurity posture, identify...

About The Role Project Role : Security Engineer Project Role Description : Apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Must have skills : ServiceNow Governance, Risk, and Compliance (GRC) Good to have skills : NA Educational Qualification : 15 years full time education Summary :As a Security Engineer, you will apply your security skills to design, build, and protect enterprise systems, applications, data, assets, and people. A typical day involves collaborating with various teams to implement security measur...

About The Role Project Role : Security Advisor Project Role Description : Provide enterprise-level advice to make organizations cyber resilient. Assist in navigating the complex landscape of cyber threats, ensuring robust digital asset protection while maintaining trust with stakeholders. Must have skills : Security Information and Event Management (SIEM) Good to have skills : NA Minimum 2 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Level 1.5 SOC Analyst, your role involves deeper investigation of security alerts and confirmed incidents. You will validate escalated events using Sentinal One and Splunk SIEM, enrich them with context...

About The Role Project Role : Security Advisor Project Role Description : Provide enterprise-level advice to make organizations cyber resilient. Assist in navigating the complex landscape of cyber threats, ensuring robust digital asset protection while maintaining trust with stakeholders. Must have skills : Security Information and Event Management (SIEM) Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Advisor, you will provide enterprise-level advice to make organizations cyber resilient. Your typical day will involve engaging with various teams to assess and mitigate cyber threats, developin...

About The Role Project Role : Security Engineer Project Role Description : Apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Must have skills : SAP Security Good to have skills : NA Minimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Engineer, you will apply security skills to design, build, and protect enterprise systems, applications, data, assets, and people. Your typical day will involve collaborating with various teams to implement securi...

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Information and Event Management (SIEM) Good to have skills : NA Minimum 12 year(s) of experience is required Educational Qualification : 15 years full time education Summary :Seeking an experienced Manager to lead Security Operations with expertise in SIEM (Security Information and Event Management), SOC (Security Operations Center), and SOAR (Security Orchest...

Project Role : Security Delivery Lead Project Role Description : Leads the implementation and delivery of Security Services projects, leveraging our global delivery capability (method, tools, training, assets). Must have skills : Security Governance Good to have skills : NAMinimum 15 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Delivery Lead, you will lead the implementation and delivery of Security Services projects, leveraging our global delivery capability (method, tools, training, assets). Roles & Responsibilities:- Expected to be a SME with deep knowledge and experience.- Should have Influencing and Advisory skills.- R...

Security Incident Response: Provide timely and effective security incident response within a 24x7 SOC environment. Lead operation teams to effectively maintain the lifecycle of both on-premises and cloud-based security solutions. Manage response to security and operational incidents, and on-going security requests. Coordinate and manage security incidents to ensure swift identification, containment, and remediation. Develop and maintain incident response playbooks and procedures. Participate and contribute to industry cyber forums, both formal and informal. Support all audits and reviews requests. Monitor developments in the information security industry and communicate on the potential impa...

* Person should be responsible for administration & management of three or more technologies listed * Firewall, F5 WAF, F5 SSLO, Ant-DDoS, Packet Broker, Anti-Apt, IPS, etc. * Managing complete administration including but not limited of creation, modification of rules and configuration, system upgrades. * Handling escalated calls and providing SME support on above technologies. * On-boarding of new applications in F5 SSLO, F5 WAF, Packet Broker and handle critical issues for the same. * Single point of contact for above mentioned technologies. * Incident management & timely escalation of incident. Required education Bachelor's Degree Preferred education Master's Degree Required technical an...

A UEBA (User and Entity Behavior Analytics) Administrator is a cybersecurity professional responsible for deploying, configuring, maintaining, and optimizing UEBA solutions to detect and respond to anomalous user and entity behavior within an organization's network. This role is crucial in identifying insider threats, compromised accounts, and sophisticated attacks that might bypass traditional security measures. -------------------------Key ResponsibilitiesThe UEBA Administrator's responsibilities:*Deployment and Configuration:*Installing and setting up UEBA platforms and related components. *Integrating UEBA solutions with various data sources (e.g., SIEM, Active Directory, network devices...

This Position reports to: Technical Authority In this role, you will have the opportunity to execute technical assignments. Each day, you will deliver technical solutions as per agreed timeline and standards using established solutions. You will also showcase your expertise by supporting the development of technical expertise solutions and services. The work model for the role is: #LI- Onsite. This role is contributing to the to the Process Automation business in Energy Industries based in Bangalore, India You will be mainly accountable for: Design and implement project-specific system, network, and security architectures, delivering sustainable services to maintain cybersecurity standards. ...

This Position reports to: IS Dep Manager-Ops Technology&Business Your role and responsibilities: In this role, you will have the opportunity to successfully develop and implement security measures for ABB in your area of responsibility of OT Security. Each day, you will protect ABB from rapidly escalating threats. You will also showcase your expertise by staying vigilant in combating security threats, taking charge of the organizations cybersecurity, and keeping track of existing security infrastructure to ensure systems used in ABB's operational facilities are secured. The role is contributing to IS Services. You will be mainly accountable for: Support the management of OT Security Posture ...

Your role and responsibilities We are seeking an experienced QRadar Incident Forensic Specialist to manage the deployment, configuration, and day-to-day operations of the QRadar SIEM platform while supporting incident response and forensic investigations. The ideal candidate will play a critical role in enhancing security monitoring, investigating incidents, and ensuring seamless SIEM operations. This role requires a blend of expertise in QRadar deployment, incident handling, and forensic analysis to improve the organizations security posture, Plan, design, and deploy QRadar SIEM environments including Incident forensic, ensuring proper integration with network devices, servers, and applicat...

Your role and responsibilities Senior SOC Analyst works within the 24/7 Cyber Fusion Center (CFC). The role is responsible for monitoring, triaging, analyzing and escalating incidents and events in the technology environment. This Senior SOC Analyst will evaluate data collected from a variety of cyber operations tools (e.g., SIEM, IDS/IPS, Firewalls, network traffic logs, cloud platforms, and SOAR solutions to analyze events that occur within the environments for the purposes of detecting and mitigating threats in both structured and unstructured situations. Individuals in this role are proactive and well-versed in log, identity, cloud, network, and root cause analysis Required education Bac...

Your role We are seeking skilled and motivated Splunk Engineers to join our team across . In this role, you will leverage your 6 to 10 years of hands-on experience with Splunk Administration and Splunk Enterprise Security (ES) to enhance our security operations and threat detection capabilities. The idea candidate will Configure and maintainlogging, parsing, and correlation rules across various platforms (e.g., firewalls, IDS/IPS, endpoints) to improve visibility and alerting. Collaborate with SOC analysts to refine detection workflows and ensure comprehensive monitoring across systems, applications, and network environments. Work closely with SOC engineers, analysts, and other stakeholders ...

Your role We're hiring for a skilled and motivated Security Analyst- Sentinel for Bangalore location to join our Cyber Security team. The ideal candidate will have 3 to 6 years of experience in SIEM Sentinel and primary roleinvolves monitoring SIEM and other security dashboards, investigating escalated incidents, and coordinating with stakeholders for resolution. You will contribute to threat hunting, incident response, and reporting, while ensuring alignment with best practices and emerging threats. Monitor SIEM (e.g., Azure Sentinel) and security tools for threat detection. Investigate and respond to escalated incidents in rotational shifts. Perform deep-dive analysis and coordinate mitiga...