20 Response Jobs

As a Team Lead of the SOC Analyst Team in the Cybersecurity/Security Operations department, your primary responsibility will be to guide and support a group of security analysts in their day-to-day tasks. You will oversee daily SOC operations, ensuring that the team adheres to processes, SLAs, and quality standards. Facilitating team meetings, knowledge-sharing sessions, and performance evaluations will also be part of your role. Additionally, you will schedule and coordinate shifts to maintain 24/7 coverage and proper workload distribution. Your expertise will be crucial in overseeing the detection, triage, investigation, and response to cybersecurity incidents. Working closely with threat intelligence, IT, and engineering teams, you will collaborate to remediate threats effectively. After incidents, you will conduct root cause analysis and recommend preventive measures to enhance security posture. To excel in this role, you must have a strong understanding of security frameworks like MITRE ATT&CK and NIST. Hands-on experience with tools such as CrowdStrike, Splunk, WIZ, VirusTotal, Jira, Confluence, AWS, Azure, and GCP is essential. Proficiency in incident detection, investigation, and response is required, along with familiarity in handling various alert types including IDS/IPS alerts, EDR detections, malware and forensic investigations, phishing attempts, and cloud-related security incidents. Your communication, leadership, decision-making, analytical, and problem-solving skills will be vital in managing pressure during security incidents and multitasking in a dynamic environment. The ideal candidate should have a minimum of 5-7 years of experience in a SOC environment, with at least 1-2 years of team leadership or supervisory experience. This position requires working in rotational shifts to ensure 24/7 coverage of security operations. While certifications such as CompTIA Security+ or Google Cybersecurity Professional Training are valuable, hands-on experience and leadership abilities take precedence in this role.,

As an Information Security Lead at bp, you will play a crucial role in ensuring the confidentiality, integrity, and availability of our data and information systems. Your expertise will be essential in partnering with the business to develop and deploy secure, resilient solutions and services that align with the highest standards of data protection and regulatory compliance. Your key responsibilities will include acting as the main point of contact for all Digital Security inquiries within the relevant business portfolio, building strong partnerships, and influencing positive change to serve the commercial ambitions. You will provide technical expertise in implementing digital security operating processes aligned with security standards across all value stream activities. Monitoring and assessing our digital domains, you will use innovative tools to detect and assess threats, collaborating on the identification, assessment, and management of risks. You will strategize and implement robust security measures to create a secure environment for our data and systems while also partnering with customers during security incidents to minimize impact and guide recovery efforts. Championing security awareness across the organization, you will encourage vigilance and responsibility, providing strategic insights to teams to ensure security is a cornerstone of product development and business operations. Proactively mitigating cyber risks and coordinating the remediation of findings from vulnerability scans and compliance reviews will also be part of your role. To qualify for this position, you should be degree educated, preferably with a BSc in Information Security or equivalent. Possessing certifications such as Certified Information Security Manager (CISM) or Certified Information Systems Security Professional (CISSP) would be advantageous. Knowledge of security frameworks such as ISO 27001/2, NIST, and CIS framework is highly desirable. Previous experience in similar roles in various industries such as Finance, HR, Trading, Retail, Supply, or Oil and Gas companies will be beneficial. Strong influencing skills, deep technical knowledge, and experience in delivering security solutions are essential. You should also have a track record of delivering business benefits while maintaining operational efficiency in a secure environment. This role may require up to 10% travel within the country and is eligible for relocation assistance. It is a hybrid position that allows for both office and remote working. Your skills should include expertise in areas such as digital security, incident management, risk management, secure development, security architecture, and stakeholder management, among others. Join bp in driving innovation and advancing the global energy transition by protecting our digital assets and ensuring a cyber-resilient organization.,

As an Ethics and Compliance professional at our organization, you will be responsible for various key tasks to ensure the integrity and security of our information systems. Your duties will include investigating ISMS events such as system failures and equipment failures to maintain our high security standards. You will also review ISMS policies and procedures, collaborate with different departments to ensure compliance, and provide expertise in resolving technical challenges through IT helpdesk support. Additionally, you will play a vital role in coordinating Information Security Task Force meetings, working closely with external audit firms to meet regulatory requirements, and conducting security awareness training. Your involvement in ISO 27001 objective evaluation, risk management processes, internal audits, and remediation activities will contribute significantly to our certification efforts. Monitoring operational controls for projects and preparing documentation supporting ISO 27001 implementation will also be part of your responsibilities. To be successful in this role, you should hold a bachelor's or master's degree in engineering or a related field and have 3-5 years of experience in information security. Your experience managing audits, understanding of cybersecurity frameworks, incident detection and response skills, risk management proficiency, and ability to analyze complex technical issues are essential. Strong communication and stakeholder management skills are crucial for effective collaboration with diverse teams. While certifications such as CISA are preferred, we offer a competitive compensation and flexible benefits package as part of our total rewards package. Guidehouse is an Equal Opportunity Employer committed to creating a diverse and supportive workplace. If you require accommodations during the application process, please contact Guidehouse Recruiting. We do not charge any fees or require money transfers at any stage of our recruitment process and maintain confidentiality of all information provided by applicants.,

Your role at Avient Corporation as the Senior Manager of Security Operations and Identity Management involves overseeing the security monitoring and administration of identity management processes. You will lead a global team responsible for 24x7 alerting, triage, investigation, and Incident Response, ensuring compliance with regulations and frameworks across all divisions and markets. Additionally, you will manage the Cyber Threat Intelligence program and identity lifecycle functions to automate processes and enhance cyber maturity. Key Responsibilities: - Ensure that SIEM and SOAR environments cover known and emerging MITRE ATT&CK techniques - Manage the global SOC team and monitor Key Performance Indicators (KPIs) for continuous improvement - Track SOC Maturity and collaborate with the CISO to develop a roadmap for enhancing SOC capabilities and automation - Oversee forensics, litigation support, and e-discovery capabilities in response to Legal requests - Lead the team in implementing best practices for identity lifecycle functions and IAM architecture design - Collaborate with vendors, partners, and 3rd parties to deliver capabilities that meet target levels of cyber maturity and efficiency Qualifications: - Hold security certifications such as CISSP, CISM, GCIH, GSEC, etc - Have experience with modern cloud detection and response tools and processes - Possess Operational Technology (OT) experience In alignment with Avient's values, we believe in fostering a diverse and inclusive work environment where all employees are encouraged to lead, innovate, and drive growth. We promote equality of opportunity and base decisions on qualifications, abilities, experience, and performance, ensuring a fair and supportive workplace for all individuals. Join Avient to contribute your unique perspective and expertise towards shaping a sustainable future through innovative materials solutions.,

As a System Administrator/IT Engineer, you will be responsible for managing the organization's IT infrastructure in Bangalore, HSR. Your primary duties will include installing, configuring, and maintaining servers, networks, and software applications. You will monitor system performance, troubleshoot issues, ensure data security, and backup procedures. Additionally, you will play a role in planning system upgrades, providing technical support to end-users, and enforcing IT security policies. Your responsibilities will also involve providing support for network-related issues, configuring and maintaining networking equipment, collaborating with support teams to resolve complex IT problems, monitoring infrastructure performance, and conducting routine maintenance tasks such as applying patches and updates. You will assist in implementing and enforcing IT security policies, investigating access-related incidents, and resolving security breaches. Furthermore, you will install, configure, and maintain servers, desktops, laptops, and peripherals. Managing user accounts, permissions, and group policies in Active Directory or any other directory services will be part of your role. You will document support tickets, resolutions, and knowledge base articles, collaborate with other IT teams for process improvements, and manage antivirus software across the organization. In addition, you will provision and enroll mobile devices into the MDM system, coordinate IT hardware/software procurement, maintain accurate records of IT assets, track asset lifecycle, configure new-hire systems, and provide IT on-boarding for new employees. You will also support Audio Video equipment in office conference rooms. To qualify for this role, you should have a Bachelor's degree in computer science or a related field, at least five years of experience in a similar role, extensive knowledge of IT systems and networks, and solid understanding of IT administration best practices and system security. Strong analytical and problem-solving skills, excellent interpersonal and communication skills, and a commitment to continuous learning are essential. Relevant certifications such as Microsoft Technology Associate (MTA), CCNA, ITIL, or CompTIA A+ would be beneficial. If you are a confident, high-energy individual with a startup mentality, a bias to action, and a quick learner with an execution orientation, this position is ideal for you. Your ability to work well in a fast-paced environment, collaborate with teams, and excel in your role will be key to your success in this position.,

Cohesity is a renowned leader in AI-powered data security and management. With the support of a vast ecosystem of partners, Cohesity simplifies the process of securing, protecting, managing, and deriving value from data across the data center, edge, and cloud. The organization aids in defending against cybersecurity threats through its comprehensive data security and management capabilities, such as immutable backup snapshots, AI-driven threat detection, monitoring for malicious activities, and large-scale rapid recovery. If you are passionate about shaping the future of the industry and contributing to securing global data, we invite you to join us on this mission. The Cohesity Information Security team is dedicated to enabling the business to achieve its objectives securely. Our team of security-focused operations analysts and engineers are committed to developing and operating security technologies and processes that safeguard systems and data, detect threats and events, and effectively mitigate their impacts. As a key member of the team, you will play a crucial role in overseeing activities related to monitoring and responding to security events. Additionally, you will be responsible for developing and overseeing the Security Operations Center (SOC) program to ensure efficient management of personnel and operational activities. To excel in this role, you must possess technical expertise and experience in managing diverse teams. Your understanding of recent threats and adversarial techniques, coupled with the ability to quickly grasp complex environments, will be instrumental in combating adversaries and safeguarding the business. Effective communication and interpersonal skills are essential for managing security events and assessing the risks they pose to the organization. As a part of our dynamic team, you will lead and manage a group of SOC analysts operating 24x7 to monitor and respond to security events, including overseeing Managed Security Service Providers (MSSP). You will collaborate across departments to develop incident response plans and enhance the team's capabilities to effectively respond to incidents. Your responsibilities will include designing an incident management framework, educating key stakeholders on its implementation, and coordinating incident responses with relevant teams, executive leadership, and external entities. Furthermore, you will conduct post-incident review meetings focusing on root cause analysis and sharing findings with control owners and Risk Management. If you have a minimum of 10 years of Information Technology experience, including at least 5 years in Detection, Response, Forensics, or Security, we would love to speak with you. Experience in leading incident response to security events, familiarity with incident response and forensics tools, and a proven understanding of incident management and problem management frameworks are highly desirable. Strong communication skills, the ability to lead response teams during critical scenarios, and the capability to articulate technical details and business impacts across all levels of the organization are crucial for success in this role. Please refer to our Privacy Policy for details on personal data processing. Cohesity encourages in-office collaboration, and employees within a reasonable commute are expected to work from our core offices 2-3 days per week based on their preferences.,

The Security Operations Centre (SOC) department is seeking a candidate with strong oral and written communication skills. Experience in managing global customers, particularly in the US and Canada, is an advantage. The ideal candidate should be proficient in Incident Management and Response, with in-depth knowledge of security concepts such as cyber-attacks, threat vectors, risk management, and incident management. Strong familiarity with EDR and XDR is preferred. A strong understanding of various security solutions including EDR, XDR, NDR, EPP, Web Security, Firewalls, Email Security, O365, SIEM, SSL, Packet Analysis, HIPS/NIPS, Network Monitoring tools, Remedy, Service Now Ticketing Toolset Web Security, AV, UBEA, and Advanced SOC is required. The role involves working in a 24x7 Security Operation Centre (SOC) environment and includes creating, performing, reviewing, and delivering Incident Response playbooks and procedures. The responsibilities also include providing analysis and trending of security log data, threat and vulnerability analysis, security advisory services, and experience with Security Information Event Management (SIEM) tools. Hands-on experience in creating advanced correlation rules and conducting Vulnerability Assessments is a must. The candidate should have experience in threat hunting and forensic investigations. Other tasks and responsibilities may be assigned, including creating and fine-tuning rules, playbooks, etc. Strong knowledge of various operating systems such as Windows, Linux, and Unix, as well as TCP/IP Protocols, network analysis, and common Internet protocols and applications, is essential. Effective communication skills are required for contributing to the development and delivery of various written and visual documents for diverse audiences. Location: Ahmedabad Experience: 3-6 yrs Essential Skills/Certifications: GCFA, GCFE, CISP, CISSP, CCNP, CCIE Security, CEH; CSA If you meet the requirements and possess the essential skills/certifications, please send your CV to careers@eventussecurity.com.,

As a Security Engineer at Expedia Group, you will be part of the Security Solutions Engineering team responsible for designing and implementing critical security systems and services. Your role will involve working on key initiatives from conceptualization to deployment, requiring a deep understanding of complex technical environments and the ability to develop effective security solutions. Your responsibilities will include: - Implementing Endpoint Detection and Response (EDR) solutions such as Anti-malware Agents and Data Loss Prevention - Managing Web Content Filtering for seamless Internet protection using on-premise and cloud-based web proxies - Overseeing Vulnerability Management for DC and cloud assets, including patching and compliance - Utilizing Threat Intelligence feeds from sources like Recorded Future - Conducting Threat detection through User Behavior Analysis and investigation - Integrating SIEM & SOAR solutions and managing Container security - Implementing Network security measures including Web Application Firewall, Intrusion Prevention, and Anti-malware detection - Maintaining, monitoring, and enhancing systems and security posture with a focus on service excellence - Collaborating with cross-functional teams to solve complex problems and influence engineering practices To qualify for this role, you should have: - A Bachelor's or Master's degree in a Technical field or equivalent professional experience - At least 3 years of experience in security engineering and operations support in a mission-critical environment - Hands-on experience with AWS Cloud services and security - Proficiency in various security technologies such as Web Content Filtering, Web Application Firewalls, Intrusion Detection Systems, and SIEM - Strong analytical skills and the ability to correlate and analyze security-related data - Programming experience in languages like Java, Python, Perl, or C++ - Excellent organizational and communication skills - A proactive and innovation-driven mindset with the ability to thrive in a fast-paced environment If you require any accommodations during the application process, please contact our Recruiting Accommodations Team. Join us at Expedia Group and be part of a diverse and inclusive community that values your contribution to shaping the future of travel.,

A career in our Advisory Acceleration Centre is the natural extension of PwC's leading class global delivery capabilities. We provide premium, cost-effective, high-quality services that support process,

As the Regional Security Manager within the Intelligence, Security and Crisis Management (ISC) function at the organization, your primary responsibility is to lead a team that provides expert security risk management and specialist security advice to all relevant businesses in the Asia Pacific region. Reporting to the VP Security, you will ensure the implementation of security measures in line with the company's requirements to safeguard personnel, assets, and operations effectively. Your key accountabilities will include overseeing security risk management across the region in collaboration with other ISC elements, managing a diverse team of security professionals, maintaining the Unified Risk Picture software, and providing detailed technical security advice to uphold the required security standards. You will also be responsible for coordinating security reviews, preparing risk registers and management plans, updating stakeholders on security risks, and ensuring compliance with security protocols and standards. Additionally, you will play a crucial role in emergency or crisis response teams, oversee compliance with security and human rights principles, manage security services contracts, and provide security awareness training to relevant stakeholders. Collaboration with internal teams and external agencies, such as public security forces, will be essential in managing security risks effectively across the region. To excel in this role, you should possess a university degree in an analytical subject or relevant professional experience, along with at least ten years of experience in security management across multiple businesses in the Asia Pacific region. Your expertise should include security risk management, team leadership, security strategy implementation, and engagement with enforcement agencies. Strong communication skills, strategic thinking, and the ability to navigate security challenges in diverse environments will be critical for success in this position. This role will involve up to 25% travel, and while relocation assistance may be negotiable, candidates must have Citizenship or Permanent Residency in the country they are applying for. The position offers a hybrid working arrangement of office and remote work, requiring skills in crisis and emergency response management, information security, leadership, physical security systems, security policies, workplace violence awareness, and security risk management. Please note that employment may be contingent upon local policy adherence, including drug screening, physical fitness assessment, and background checks, depending on the role.,

You have the opportunity to join as a Splunk Enterprise Security specialist with 5-8 years of experience in Hyderabad. You will be responsible for integrating Splunk with various security tools and technologies across different domains such as Process Control Domain/OT and Operations Domain/IT. Your role involves administering and managing the Splunk deployment to ensure optimal performance, implementing Role-Based Access Control (RBAC), and developing custom Splunk add-ons for log management. Collaboration with the SOC team is crucial as you will work together to understand security requirements and objectives, and implement Splunk solutions to enhance threat detection and incident response capabilities. Your tasks will include integrating different security controls and devices like firewalls, EDR systems, Proxy, Active Directory, and threat intelligence platforms. You will be responsible for developing custom correlation searches, dashboards, and reports to identify security incidents, investigate alerts, and provide actionable insights to SOC analysts. Additionally, creating efficient custom dashboards for various teams to support security risk investigations and conducting threat hunting exercises using Splunk will be part of your role. Furthermore, you will contribute to the development and refinement of SOC processes and procedures by leveraging Splunk to streamline workflows and enhance operational efficiency. Implementing Splunk for automations of SOC SOP workflows will also be within your responsibilities. To excel in this role, you should have experience in designing and implementing Splunk Enterprise Security architecture, integrating with security tools and technologies, security monitoring, incident response, security analytics, and reporting. Collaboration, communication, and the ability to manage Splunk Enterprise Security effectively are essential requirements. You will also be involved in migrating/scaling the Splunk Environment from Windows to Linux to improve performance, reliability, and availability. Moreover, you will implement and integrate the SOAR platform (Splunk Phantom) and User Behavior Analytics (Splunk UBA/UEBA) with the existing Splunk Infrastructure to enhance operations with automations.,

As a Security Incident Response Analyst at our organization, you will be responsible for incident assessment and response to security alerts and incidents. Your role will involve analyzing these incidents to ensure efficient containment, eradication, and recovery. It will be essential for you to document and report your findings to improve the overall security posture of the organization. In this position, effective communication and coordination are key aspects of your responsibilities. You will act as the primary contact during security incidents, providing clear communication to stakeholders and preparing incident reports. Additionally, you will be required to coordinate with SOC analysts, IT teams, and third-party vendors. Participating in post-incident reviews, developing detections, playbooks, and SOPs will be a part of your continuous improvement efforts. You will also need to identify security control gaps and recommend improvements, as well as conduct training sessions for SOC team members and stakeholders. Monitoring threat intelligence feeds to identify emerging threats and vulnerabilities will be part of your daily tasks. Proactively hunting for indicators of compromise (IOCs) will also be essential to enhance the organization's security posture. To qualify for this role, you should have a Bachelor's degree in Computer Science, Information Security, or a related field. A minimum of 1 year of experience in cybersecurity and threat intelligence is required. You must have proven experience in a security operations role with strong incident response and threat intelligence skills. Excellent communication and coordination skills are essential, along with the ability to work effectively under pressure and manage multiple incidents simultaneously. Please note that the benefits and perks associated with this position may vary depending on the nature of your employment with our organization and the country where you work.,

As a Junior Security Engineer, you will work closely with senior engineers to ensure the security of an organization's systems and data. Your responsibilities will include monitoring networks, identifying vulnerabilities, and implementing security measures with guidance. You will be involved in various areas such as Vulnerability Management, XDR, EDR, Zero Trust, and DLP technologies. In the realm of Vulnerability Management, you will assist in identifying and assessing vulnerabilities in systems and applications. You will also support the remediation process for these vulnerabilities by utilizing vulnerability scanning tools and reporting on findings. For XDR/EDR, you will be tasked with monitoring security alerts from these platforms and aiding in the investigation of security incidents that are identified. Additionally, you will contribute to the tuning and optimization of XDR/EDR solutions. In the domain of Zero Trust, your role will involve supporting the implementation of Zero Trust principles, including least privilege access, and helping in the configuration of network segmentation and access controls. Regarding DLP, you will monitor data loss prevention alerts and incidents, participate in the development and implementation of DLP policies, and assist in identifying and protecting sensitive data. Your day-to-day responsibilities will encompass monitoring security systems and alerts, analyzing security data to detect potential threats, responding to security incidents, maintaining accurate records of security events, generating reports on security posture, vulnerabilities, and incidents, implementing security solutions and controls, collaborating with other teams to ensure security best practices, and continuously learning about new threats and security technologies. Overall, as a Junior Security Engineer, you will play a crucial role in supporting the overall security posture of the organization and contributing to the ongoing protection of systems and data.,

A Rig Superintendent oversees all drilling operations on a rig site, ensuring safety, efficiency, and compliance with regulations. They are responsible for personnel management, equipment maintenance, and adherence to drilling programs and company policies. They lead daily operations meetings, conduct risk assessments, and promote a strong safety culture. Here's a more detailed breakdown of their responsibilities: Key Responsibilities: Supervision and Leadership: Directs all rig site activities including drilling, well completion, and workover operations. Leads daily operations meetings and safety briefings. Supervises and manages rig crews and service company personnel. Ensures personnel are aware of and follow all company policies and procedures. Promotes a positive and productive work environment.

A Safety Manager develops and implements safety programs to ensure a safe work environment, minimizing risks and promoting a strong safety culture . They are responsible for creating, maintaining, and enforcing safety policies, conducting audits, investigating incidents, and providing training. Key Responsibilities: Developing and Implementing Safety Programs: Creating and updating safety policies, procedures, and training programs. Conducting Risk Assessments: Identifying potential hazards and recommending preventative measures. Performing Safety Audits: Regularly inspecting workplaces to ensure compliance with safety standards. Investigating Accidents: Determining the root cause of incidents and implementing corrective actions. Providing Training: Educating employees on safety procedures, emergency protocols, and the proper use of safety equipment. Ensuring Compliance: Ensuring adherence to all relevant safety regulations and standards. Promoting Safety Culture: Fostering a workplace where safety is a priority. Maintaining Records: Keeping accurate documentation of safety inspections, incidents, and training. Staying Updated: Monitoring emerging safety trends and regulations

A career in our Advisory Acceleration Centre is the natural extension of PwC's leading-class global delivery capabilities. We provide premium, cost-effective, high-quality services that support process,

As a Security Incident Response Analyst at our organization, you will play a crucial role in safeguarding our systems and data from potential security threats. Your responsibilities will include: - Incident Assessment and Response: You will be responsible for analyzing and responding to security alerts and incidents promptly. Your focus will be on ensuring efficient containment, eradication, and recovery measures. It will be vital for you to document and report your findings accurately to enhance our overall security posture. - Communication and Coordination: You will act as the primary point of contact during security incidents, providing clear and concise communication to stakeholders. Your role will involve preparing detailed incident reports and coordinating effectively with SOC analysts, IT teams, and third-party vendors. Additionally, you will be involved in continuous improvement efforts by participating in post-incident reviews, developing detections, playbooks, and SOPs. Identifying security control gaps and recommending improvements will also be a part of your responsibilities. Furthermore, you will conduct training sessions for SOC team members and stakeholders to enhance their awareness and skills. - Threat Intelligence and Monitoring: Monitoring threat intelligence feeds to identify emerging threats and vulnerabilities will be a critical aspect of your role. You will be expected to proactively hunt for indicators of compromise (IOCs) to stay ahead of potential security risks. To qualify for this role, you should have: - A Bachelor's degree in Computer Science, Information Security, or a related field. - At least 1 year of experience in cybersecurity and threat intelligence. - Proven experience in a security operations role with strong incident response and threat intelligence skills. - Excellent communication and coordination skills. - Ability to work effectively under pressure and manage multiple incidents simultaneously. Please note that the benefits and perks associated with this position may vary depending on the nature of your employment with our organization and the country where you work.,

You have an exciting opportunity to join our team as a Splunk Enterprise Security Specialist in Hyderabad. You should have 5-8 years of experience and expertise in Splunk ES architecture. Your responsibilities will include integrating Splunk with various security tools and technologies across different domains like Process control Domain/OT and Operations Domain/IT. You will be administering and managing the Splunk deployment for optimal performance, implementing RBAC, and developing custom Splunk add-ons for ingesting, parsing, and filtering incoming logs. Collaborating with SOC team members, you will understand security requirements and objectives, implementing Splunk solutions to enhance threat detection and incident response capabilities. You will integrate different security controls and devices such as firewalls, Endpoint Detection and Response (EDR) systems, Proxy, Active Directory (AD), and threat intelligence platforms. Your role will involve developing custom Splunk correlation searches, dashboards, and reports to identify security incidents, investigate alerts, and provide actionable insights to SOC analysts. You will also create highly efficient custom dashboards for different teams to facilitate security risks, threat, and vulnerability investigations. Additionally, you will conduct threat hunting exercises using Splunk to proactively identify and mitigate potential security threats and vulnerabilities. You will assist in the development and refinement of SOC processes and procedures, leveraging Splunk to streamline workflows and enhance operational efficiency. Your responsibilities will also include implementing Splunk for various automations of SOC SOP workflows. To be successful in this role, you should have experience in designing and implementing Splunk ES architecture, integration with security tools and technologies, security monitoring, incident response, security analytics, and reporting. You should also have strong collaboration and communication skills. Additionally, you will be responsible for the implementation and management of Splunk Enterprise Security, migration/scaling of the Splunk Environment from Windows to Linux, and enhancing the performance, reliability, and availability. You will also implement and integrate the SOAR platform (Splunk Phantom) and User Behavior Analytics (Splunk UBA/UEBA) with the existing Splunk Infrastructure, supporting and enhancing operations with automations wherever possible.,

At Dark Matter Technologies, you are at the forefront of a tech-driven revolution in loan origination. The commitment to cutting-edge AI and origination technology solutions is reshaping the industry landscape, illuminating a path towards seamless, efficient, and automated experiences. Driven by Empower, the cutting-edge all-in-one LOS, and a suite of innovative Origination Technologies, you provide end-to-end solutions that fully serve the mortgage origination process. Dark Matter Technologies is owned by Constellation Software Inc. (TSX:CSU). As a SOC Lead with 8+ years of experience, your job location will be in Hyderabad & Bhubaneswar with shift timings from 5:30 PM to 3:00 PM IST. Your responsibilities will include monitoring and investigating security alerts, maintaining and tuning security tools under InfoSec purview, researching and providing gap analysis of current security event processes, acting as a subject matter expert and mentor to junior team members, and driving root-cause analysis to common security events. To qualify for this position, you should have an associate or bachelor's degree in computer science, Information Technology, System Administration, or a closely related field; or equivalent work experience. A minimum of 10+ years of experience working in a Security Operations Center (SOC) is required, along with sound working knowledge of security operations and security investigation best practices. Experience in monitoring and handling Endpoint Detection and Response (EDR) and Incident Detection and Response (IDR) alerts and events, as well as experience monitoring and handling Microsoft Defender portal and Purview alerts and events, is crucial. Exceptional customer service, strong project management, and team management skills are necessary, with a history of managing direct reports. You should be highly self-motivated and directed, with keen attention to detail, able to work within a diverse geographically distributed team, willing to adjust work schedules to accommodate business needs, perform in cross-functional teams, adapt to different cultures, be on-call, work extended hours as needed, align with the US Eastern time zone (8 am to 5 pm), and possess strong English written and verbal skills. If you believe you are the ideal candidate for this position, we look forward to receiving your complete application documents (Resume, Salary details, and references) at sreedevi.choudhury@dmatter.com. Get empowered by Dark Matter Technologies!,

Qualifications BE/ B.Tech/ M.Tech/ MCA with 60%+ throughout the academics. Security certifications like CEH or equivalent preferred. Experience and Skillset Minimum 2 +years hands-on experience with one or more SIEM tools (Log Logic, LogRhythm, Splunk, QRadar, ArcSight etc.). In-depth understanding of security threats (preferably OWASP Top 10 vulnerabilities), threat attack methods and the current threat environment. Proficient in Incident Management and Response. Basic knowledge of Windows and Unix environments. Knowledge of OSI Model, TCP/IP Protocols, network security. Knowledge about other security tools like Packet Analyzers, HIPS/NIPS, Network Monitoring tools, Cloud Security, AV, EDR, WAF etc. Responsibilities Responsible for working in a 24x7 Security Operation center (SOC) environment. Carry out investigation and correlation and work with the stakeholders towards mitigation and closure of security incidents. Monitor various dash boards from different security solutions on shift basis. Work with the engineering team for Sensor and SIEM rules fine-tuning. Prepare various management reports from SIEM and other security solutions. Provide analysis and trending of security log data from a large number of heterogeneous security devices. Provide threat and vulnerability analysis as well as security advisory services. Analyze and respond to previously undisclosed software and hardware vulnerabilities. Investigate, document, and report on information security issues and emerging trends. Seamlessly integrate with the team work culture, ensure proper information flow across shifts, prepare/take part in shift handovers. Communicate effectively by contributing significantly to the development and delivery of a variety of written and visual documents for diverse audiences. Location: Guwahati If youre interested please share below mention details for the same. Location Are you willing to relocate to Guwahati : Current Co Experience Current CTC Expected CTC Notice Period Offer in Hand Highest Education SSC % HSC % Graduation % University Name Email ID:[HIDDEN TEXT] Regards,