8 Security Orchestration Jobs

As a Senior Security Architect in the Banking & Financial Services sector, your primary responsibility will be to develop and maintain a comprehensive security architecture roadmap that is in alignment with business objectives and regulatory requirements. This includes conducting thorough security risk assessments for business applications (both on-premises and cloud-hosted) and APIs to identify potential threats, weaknesses, and recommending appropriate mitigation measures. You will be required to conduct threat modeling for applications at their inception and during major changes to ensure compliance with existing regulations. Additionally, you will review architecture designs, suggest security controls, and countermeasures to safeguard systems, applications, and data effectively. In this role, you will define and enforce security policies, standards, and guidelines to ensure compliance with industry best practices and regulations. Collaborating with development teams will be crucial to integrate security-by-design principles into the software development lifecycle. Creating dashboards and reports to track the progress of ongoing security reviews and driving automation and process improvement initiatives for streamlining security reviews will also be part of your responsibilities. Keeping abreast of emerging security threats and trends and recommending and implementing appropriate countermeasures is essential. Mentoring and guiding junior security team members to foster a culture of continuous learning and development will also be expected from you. To qualify for this role, you should hold a Bachelor's degree in Computer Science, Information Security, or a related field, along with 6-8 years of hands-on experience in security architecture, design, review, and implementation. Strong knowledge of security frameworks and methodologies, such as RBI guidelines, NIST Cybersecurity Framework, and OWASP ASVS, is required. An excellent understanding of cloud security principles and practices, especially AWS, is essential. Additionally, a minimum of 2 years of experience in the banking and financial services sector, with a deep understanding of industry-specific security regulations, would be preferred. Strong analytical and problem-solving skills, the ability to work independently, and manage multiple projects simultaneously are also necessary. Preferred qualifications for this role include advanced security certifications (e.g., CISSP, CISM), knowledge of DevOps and CI/CD practices, and experience with security automation and orchestration tools.,

Are you passionate about SecOps, automation, and cloud security Do you want to lead cutting-edge security initiatives and drive large-scale security automation As a SecOps Engineering Lead, you will play a pivotal role in defining and executing security automation strategies, driving cloud security initiatives, and leading security operations at scale. You will work at the intersection of Security, DevOps, and Cloud, embedding best-in-class security practices into infrastructure and applications. This role requires a visionary leader who can take ownership, drive innovation, and influence security strategies across teams. You will be responsible for designing and implementing security automation solutions, enhancing cloud security, and optimizing SecOps workflows. We are looking for a self-driven professional who can take end-to-end ownership of security initiatives with minimal guidance. Define and execute the security automation strategy, embedding best-in-class practices across DevSecOps, CI/CD pipelines, and cloud environments. Architect, develop, and implement security solutions using Python to automate threat detection, response, and mitigation at scale. Enhance and automate security workflows by integrating SIEM, SOAR, and EDR solutions to improve real-time threat detection and response efficiency. Implement and optimize security controls in cloud environments (AWS, Azure, GCP), enforcing security-as-code principles and compliance automation. Own the design and maintenance of DevSecOps pipelines, ensuring security is embedded into CI/CD processes and infrastructure automation. Lead cross-functional collaboration, working with Security, DevOps, and Engineering teams to drive security-first principles across customer organizations. Mentor engineers and foster a security-driven culture, driving security awareness and best practices across teams. Continuously evaluate emerging security technologies to enhance security automation, optimize detection capabilities, and future-proof security operations. Required Skills & Qualifications 6+ years of hands-on experience in SecOps, Security Engineering, or Security Automation. Expertise in Python programming for security automation and scripting (JavaScript is optional). Deep knowledge of Cybersecurity & Security Operations (SecOps), including threat detection, incident response, and security orchestration. Proven ability to automate and integrate SIEM, SOAR, and EDR tools to improve detection & response. Hands-on experience with DevSecOps pipelines (CI/CD) and Terraform to enforce security automation at scale. Experience securing cloud environments with security-as-code and compliance automation for at least one major cloud provider (AWS, Azure, or GCP). Preferred Skills (Nice-to-Have) Multi-cloud experience across AWS, Azure, and GCP. Strong understanding of infrastructure security, network security, and security-as-code methodologies. Experience with container security (Kubernetes, Docker, etc.) and cloud-native security controls. Familiarity with threat modeling, cloud security compliance frameworks, and risk assessment methodologies. Why Join Us Be a Security Visionary Lead and define the future of security automation, transforming SecOps strategies in cloud and DevOps environments. Work with Cutting-Edge Security Tech Engage in AI-driven security analytics, threat intelligence automation, and next-gen SecOps solutions. Collaborate with Industry Experts Work closely with top security, cloud, and DevOps engineers to drive innovation in security automation. Accelerate Your Career Step into a high-impact leadership role, shape security roadmaps, and gain visibility across leadership teams. Competitive Compensation & Benefits Get a market-leading salary, comprehensive benefits, and access to professional development opportunities. Apply Now! If you're ready to take on this exciting challenge, apply today!,

As a SOC L3 Analyst, you will be responsible for leading the investigation and response to complex security incidents, engineering advanced detection content, and optimizing security tools and processes. With a strong focus on Splunk, content engineering, Endpoint Detection and Response (EDR), and Security Orchestration, Automation, and Response (SOAR), you will enhance the SOC's capabilities to detect and mitigate advanced cyber threats. Collaborate with other SOC analysts, threat intelligence teams, and IT departments to improve overall security posture. Provide mentorship and guidance to L1 and L2 analysts, sharing knowledge and best practices. In this role based in Pune/Hyderabad, you will have 8 to 11 years of experience in cybersecurity, focusing on SOC operations, incident response, and security engineering. You will lead the investigation and response to high-severity security incidents, develop advanced detection rules in Splunk, and utilize EDR tools such as CrowdStrike. Additionally, you will play a key role in developing and maintaining automated workflows and playbooks on the SOAR platform to streamline incident response processes. Your responsibilities will also include conducting proactive threat hunting activities, collaborating with other teams to enhance security posture, optimizing security tools, and documenting incident response activities in detail. Persistent Ltd. fosters diversity and inclusion in the workplace, inviting applications from all qualified individuals, including those with disabilities, and regardless of gender or gender preference. The company offers a competitive salary and benefits package, talent development opportunities, employee engagement initiatives, annual health check-ups, and insurance coverage. With a focus on creating an inclusive environment, Persistent Ltd. provides hybrid work options, flexible working hours, and accessible facilities for employees with physical disabilities. Join us to accelerate growth, impact the world with the latest technologies, enjoy collaborative innovation, and unlock global opportunities to work and learn with the industry's best. Let's unleash your full potential at Persistent.,

We have a opening for the Job Position Automation DevSeCops. ROLE- AUTOMATION DEVSECOPS LOCATION- PUNE & TRIVENDRUM JOB DESCRIPTION: Automation and DevSecOps Engineer We take pride in delivering the comprehensive Information Security Services to our Internal customers. The Security services are based on Security platforms hosted on SaaS and IaaS platforms on private and public cloud service providers. The DevOps engineer will work in developing and implementing infrastructure in support of Web and backend applications deployment in Information Security Services division. This position will closely work with TechOps team, Cloud providers and OEMs to ensure integration and automation towards efficient, clean and reusable code base to empower DevOps in our Security Services area. Job Summary, Technical Skills && Major Responsibilities Key Skills: Collaborate with development and operations teams to design, build, and deploy applications/scripts that automate routine manual processes, with a strong focus on security orchestration and automated response (SOAR) capabilities. Proficient in developing Python scripts to automate routine tasks using cron jobs, scheduler services, or any workflow management tools, particularly in the context of security automation. Ability to work closely with the operations team to understand, support, and resolve all technical challenges in routine operations, with a focus on enhancing security measures through automation. Identify areas for improvement in existing programs and develop modifications that enhance security and automate response actions. Possess strong analytical and debugging skills, especially in the context of security incident response and automation. Demonstrated experience in integrating REST API frameworks with third-party applications, particularly for security orchestration purposes. Knowledge of DevOps tools like Jenkins, Terraform, AWS CloudFormation, and Kubernetes, with an emphasis on their use in security automation. Hands-on experience working with DBMS like MySQL, PostgreSQL, and NoSQL, with a focus on secure data management. Comfortable working with Linux OS, especially in environments requiring secure configurations and automated security responses. Keen interest and proven track record in automation both on-premise and in the cloud, with a focus on security orchestration and automated response. Expertise in Git, Jenkins, and JIRA is a plus, particularly in the context of managing security-related projects. Mandatory Skills Primarily Skill required: Deep understanding of security concepts and the ability to work with security analysts to implement automation requirements for security orchestration and automated response. Scripting Python (Mandatory), JavaScript/Shell scripting, with a focus on security automation. Jenkins, GitHub Actions - CI/CD, with a focus on automating security processes. Containerized infrastructure management Docker, Podman, K8s, with an emphasis on secure deployments. AWS, Azure ability to provision and manage infrastructure securely. Version control systems - Git, with a focus on managing security-related code and configurations. Good to have Entry level security certification (CompTIA Security+ or similar) Ansible knowledge Understanding of reporting tools e.g. Grafana Initial exposure for Google Security Operations (SIEM+SOAR) suite Educational & Professional Qualifications Bachelors / Masters full-time degree in a Technical stream Experience 3 to 5 years of high-tech industry and/or IT work experience in product engineering, development and/or support functions. Other skills (Preferable technical skills /Soft skills) Experience with managing projects in multiple technological and business environments using Agile Strong oral/written communication, time management, problem solving, and analytical skill Excellent communication skills Good inter-personal skills Demonstrated ability to work under intense pressure when resolving complex issues with strict deadlines Ability to lead and execute large,

The Senior Manager of Bot Protection will lead a high-performing development team responsible for engineering and advancing core bot mitigation and Security Orchestration and Response (SOAR) platforms. You will drive the technical strategy for a cutting-edge orchestration engine, unifying threat signals from both internal and external tools to trigger automated, real-time responses. As a security expert, you will independently resolve complex security challenges and provide strategic direction on problem resolution across the security domain. You will define methods and procedures for new assignments, collaborating with cross-functional teams to drive security initiatives aligning with business needs. Leading complex, high-impact security projects, you will apply an in-depth understanding of business trends and security challenges to develop innovative solutions. With a keen awareness of the broader impact of decisions, your initiatives often lead to enterprise-wide improvements that enhance security practices and operational efficiency. You will lead a security engineering team, set clear priorities, define actionable plans, and ensure alignment with organizational goals. Guiding team members through complex challenges, you will foster their growth and development while maintaining a focus on high-impact results. Minimum qualifications include a minimum of 12 years of relevant work experience and a Bachelor's degree or equivalent experience, along with previous management experience. Join us and be part of a culture that values Inclusion, Innovation, Collaboration, and Wellness. Discover more about our culture and community at https://about.pypl.com/who-we-are/default.aspx. We are committed to diversity and inclusion. If you believe in your skills and potential, don't hesitate to apply.,

You will be joining Kodo, a company dedicated to simplifying the CFO stack for fast-growing businesses through a single platform that streamlines all purchase operations. Trusted by renowned companies like Cars24, Mensa Brands, and Zetwerk, Kodo empowers teams with flexible corporate processes and real-time insights integrated with ERPs. With $14M raised from investors like Y Combinator and Brex, Kodo is on a mission to provide exceptional products, a nurturing environment for its team, and profitable growth. As a Dev Ops Engineer at Kodo, your primary responsibility will be to contribute to building and maintaining a secure and scalable fintech platform. You will collaborate with the engineering team to implement security best practices throughout the software development lifecycle. This role requires hands-on experience with various tools and technologies such as Git, Linux, CI/CD tools (Jenkins, Github Actions), infra as code tools (Terraform, Cloudformation), scripting/programming languages (bash, Python, Node.js, Golang), Docker, Kubernetes, microservices paradigms, L4 and L7 load balancers, SQL/NoSQL databases, Azure cloud, and architecting 3-tier applications. Your key responsibilities will include implementing and enhancing logging, monitoring, and alerting systems, building and maintaining highly available production systems, optimizing applications for speed and scalability, collaborating with team members and stakeholders, and demonstrating a passion for innovation and product excellence. Experience with fintech security, CI/CD pipelines, cloud security tools like CloudTrail and CloudGuard, and security automation tools such as SOAR will be considered a bonus. To apply for this full-time position, please send your resume and cover letter to jobs@kodo.in. Besides a competitive salary and benefits package, we are looking for a proactive, security-conscious, problem-solving Dev Ops Engineer who can communicate complex technical concepts effectively, work efficiently under pressure, and demonstrate expertise in threat modeling, risk management, and vulnerability assessment and remediation.,

At EY, you have the opportunity to shape a career tailored to your unique abilities, supported by a global network, inclusive environment, and cutting-edge technology to empower your growth. Your individuality and insights will contribute to EY's continuous improvement. Embrace this chance to craft an exceptional journey for yourself while contributing to a more productive working world for all. As a Senior in Cyber Managed Service - Threat Detection & Response focusing on Security Orchestration, Automation and Response (Splunk SOAR), your key capabilities include exceptional teamwork, a drive to combat cyber threats, and collaborating with customers to devise security automation strategies. You will work with the team to deliver innovative integrations and playbooks, ensuring practical solutions to customer challenges. Your responsibilities encompass the execution and upkeep of Splunk SOAR analytical processes, platform management, development of custom scripts and playbooks for task automation, and leveraging Python, REST API, JSON, and basic SQL. Your role involves utilizing Incident Response and Threat Intelligence tools, creating efficient Python-based Playbooks, and employing the Splunk SOAR platform for automation across various technologies. Collaboration with security operations teams, incident responders, and intelligence groups is crucial. Experience in security operations centers and familiarity with SIEM solutions like Splunk and Microsoft Sentinel is advantageous, as is knowledge of Splunk content development. You should be eager to learn new technologies, contribute to technical content development, and conceptualize automation for business workflows. Proficiency in network monitoring technologies and endpoint protection platforms is desired. Your ability to support production issues, engage with stakeholders, coordinate with vendors for incident closure, and develop remediation action plans is essential. Ideal qualifications include a minimum of 3+ years in cybersecurity with network architecture expertise, experience in deploying and integrating Splunk SOAR in enterprise environments, and familiarity with ServiceNow SOAR. Strong communication skills, network administration background, scripting proficiency, and a technical degree are required. Additionally, certifications in Splunk and core security disciplines are beneficial. Join EY in building a better working world, where diverse teams worldwide use data and technology to provide assurance and support client growth and transformation. Be a part of EY's mission to address complex global challenges through innovative solutions across assurance, consulting, law, strategy, tax, and transactions.,

6+ yrs of hands-on experience in SecOps, Security Engineering, or Security Automation Expertise in Python programming for security automation &scripting SIEM, SOAR, and EDR tools to improve detection & response. Priyanka 9816787033