15621 Siem Jobs - Page 20

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Operational Technology (OT) Security Good to have skills : Security Information and Event Management (SIEM) Minimum 2 year(s) of experience is required Educational Qualification : 15 years full time education Summary :The SOC Analyst Level 1 will be the first line of defense in the Security Operations Center (SOC), responsible for real-time monitoring, alert triage, and...

About The Role Project Role : Business and Integration Architect Project Role Description : Designs the integration strategy endpoints and data flow to align technology with business strategy and goals. Understands the entire project life-cycle, including requirements analysis, coding, testing, deployment, and operations to ensure successful integration. Must have skills : Oil and Gas Upstream Good to have skills : NA Minimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Business and Integration Architect, you will be responsible for designing the integration strategy endpoints and data flow to align technology with business stra...

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : ServiceNow Governance, Risk, and Compliance (GRC) Good to have skills : Security Architecture DesignMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. You will also document...

Provide technical inputs for monthly customer service review reports and contribute to the creation of Service Improvement Plans. Monitor ticket queues, ensuring timely updates and comprehensive closure summaries. Apply expertise in Incident, Change, Problem, Service Request, and Configuration Management Processes. Manage, monitor, resolve, and report network security incidents involving equipment deployed across multiple client locations in India. Conduct daily incident analysis and publish reports to enhance transparency and security oversight. Maintain compliance with security policies and processes while striving for continuous improvement. Analyze key security metrics and escalate anoma...

Role Purpose The purpose of this role is to analyse, identify, rectify & recommend specific improvement measures that help in the security posture of the organization by protecting the sensitive information Do Ensuring customer centricity by providing apt cybersecurity Monitoring and safeguarding the log sources and security access Planning for disaster recovery in the event of any security breaches Monitor for attacks, intrusions and unusual, unauthorized or illegal activity Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems Conduct security assessments, risk analysis and root cause analysis of security incidents ...

About Rearc At Rearc, we're committed to empowering engineers to build awesome products and experiences. Success as a business hinges on our people's ability to think freely, challenge the status quo, and speak up about alternative problem-solving approaches. If you're an engineer driven by the desire to solve problems and make a difference, you're in the right place! Our approach is simple — empower engineers with the best tools possible to make an impact within their industry. Role Overview Rearc is looking for a Cybersecurity Threat Detection Engineer with proactive communication skills, a foundation in DevSecOps, Detection-As-Code, deep purple team technical expertise, and an entrepreneu...

Key Responsibilities 1. Cybersecurity Operations Leadership (Aligned to NIST CSF) Provide leadership and oversight across 24x7 cybersecurity operations , including SOC, EDR, firewall, vulnerability management, and email security. Ensure services align to NIST CSF functions : Identify, Protect, Detect, Respond, and Recover. Govern security operations across: On-premises infrastructure Azure cloud environments End-user devices and VOIP assets Act as the senior escalation point for cybersecurity-related issues. 2. Security Monitoring & SOC Governance Govern 24x7 security monitoring across users, devices, applications, and infrastructure. Ensure effective use of Microsoft analytics and threat in...

Who We Are Ontic provides software that helps corporate and government security teams identify threats, assess risk, and respond faster to keep people and organizations safe. Its Connected Intelligence Platform unifies security operations and data into a centralized system of record, enabling organizations to conduct risk assessments, protect against workplace violence, and manage threats and incidents more efficiently. Fortune 500 companies and federal agencies rely on Ontic to support security programs such as executive protection, threat intelligence, and corporate investigations. Learn more at ontic.co or follow us on LinkedIn. Who You Are You are a cyber security professional with exper...

Develop and implement automation workflows for security operations, incident response, and compliance monitoring. Experience on Hyper automation platform. Hands-on scripting (Python, PowerShell, Bash). Integrate SIEM/SOAR platform (Splunk SOAR, Azure Sentinel, Cortex XSOAR, QRadar, etc.) with automation scripts and APIs. Streamline processes across multi-cloud (AWS, Azure, GCP) and hybrid security environments. Build and maintain playbooks, runbooks, and technical documentation. Collaborate with cyber defense, cloud, and compliance teams to identify automation opportunities.

Greetings from TSIT Digital !! This is with regard to an excellent opportunity with us and if you have that unique and unlimited passion for building world-class enterprise software products that turn into actionable intelligence, then we have the right opportunity for you and your career. This is an opportunity for Permanent Employment with TSIT Digital. What are we looking for: Cyber Security Assurance Analyst Experience:-8+ Year's Location: Bangalore Notice period: Immediately to 15 days Job Description: - Handling of security questionnaires: Complete security questionnaire requests within established SLA to provide our customers with assurance that the expected security controls have bee...

Requirement: Job Title: Data Engineer Experience: 5+ years Location Bengaluru/Gurugram/Hyderabad (Hybrid) Duration: Fulltime with Techno-Comp Computer Services India Ltd Notice Period: Immediate to 20 days Required skills : Snowflake,AWS, Python SQL. Description: strong development experience in Snowflake, Cloud (AWS, GCP), SCALA, Python, Spark, Big Data and SQL. • Work closely with stakeholders, including product managers and designers, to align technical solutions with business goals. • Maintain code quality through reviews and make architectural decisions that impact scalability and performance. • Performs Root cause Analysis for any critical defects and address technical challenges, opti...

Position Purpose Within the framework of the policy defined by the ARVAL IT Production tribe , Level 2 System Engineer will work closely with L2/L3 Production teams. Responsibilities Direct Responsibilities Logs collection Operations Add new component to existing log collection to send to group SIEM (coordination with Arval Prod and BNPP Group teams and configurations logstash instances). Control and coverage (check on scope of eligible assets) of agents Compliance (status check) of agents Contribute to KPIs/Dashboard/Committees Contribute to maintain documentation (procedures, instructions, ) Logstash collector Maintenance: Maintain service in place and troubleshooting Including daily morni...

Experience: 8+ years in SOC, Sentinel, AZURE & TI SOC Solid understanding of information security concepts, SOC operations. Experience with SIEM tools, incident response, and vulnerability management. Hands-on experience with SIEM platform MS Sentinel Knowledge of network protocols, IDS/IPS, firewalls, and endpoint security solutions. Familiarity with MITRE ATT&CK framework and threat hunting techniques. Ability to analyze logs from multiple sources (Windows, Linux, network devices). Basic scripting skills (Python, PowerShell) for automation and investigation. Excellent communication and documentation skills for reporting and escalation. Ability to work in rotational shifts and under pressur...

JD- Primary Skills: Strong experience with Microsoft Sentinel architecture, including workspaces, playbooks, and automation Expertise in Azure Cloud, including Azure Defender for cloud, XDR(MDE/MDI/MDO), and Azure EntraID Proficiency in KQL and other scripting languages for automation Secondary Skills: Experience with SIEM solutions and security monitoring tools such as Splunk Knowledge of network security, identity management, and cloud security best practices Strong analytical and problem-solving skills Certifications such as Microsoft Certified: Security Operations Analyst Associate or Azure Security Engineer Associate are a plus Experience of Azure Key Vault creation, configuration, and ...

Roles and Responsibilities: Good experience working in the Cyber security domain with a minimum of 5 years in the Industrial automation and controls spaceStrong understanding of various components in the ICS ecosystem, common security issues faced and best practices to be followed from a security stand point Strong understanding of Industrial control operations and protocols Sound knowledge of the ICS cybersecurity framework IEC Good understanding of concepts like Industry 4 0, Cyber Physical Systems, Digital TwinPreferable to have hands-on experience working at a Manufacturing plantDemonstrable credentials in the Industrial control domain Strong communication skillsA degree in Industrial En...

1. 4 to 8 years of exp in Security Analyst. 2. 2 to 3 Years of exp in Fine-tune SIEM rules to reduce false positive and remove false negatives. 3. Good exp in SOC (Security Operation Center)

Primary Job Title: CTI SME (Cyber Threat Intelligence) Location: Noida (On-site) Experience: 7+ Years Employment Type: Full-Time Notice Period: Immediate Joiners Only Role & Responsibilities Work closely with SOC engineers, security architects, and incident responders to operationalize threat intelligence. Perform advanced threat hunting for APTs, zero-day exploits, and emerging attack campaigns . Monitor and analyze threat actor activity , TTPs (Tactics, Techniques, and Procedures) , and Indicators of Compromise (IOCs) . Leverage open-source, commercial, and dark web threat feeds to identify emerging risks. Collect raw intelligence data from internal logs, external feeds, social media, and ...

Position : Microsoft Defender for Cloud Apps (MDCA) Security Engineer Shift Timings: 11:00 AM to 8:00 PM Location: Bangalore / (Hybrid/Remote) Duration: 3-6 months (No extension) Job Overview: The MDCA Security Engineer will be responsible for implementing and managing Microsoft Defender for Cloud Apps (MDCA) to secure cloud environments. The ideal candidate will have hands-on experience in configuring, fine-tuning, and integrating MDCA policies to ensure cloud security compliance. Key Responsibilities: Deploy and configure Microsoft Defender for Cloud Apps (MDCA) to monitor and control access to sanctioned and unsanctioned cloud applications. Define and implement Cloud Discovery policies to...

Position: Technical SOC Lead Work experience: 10+ years Job location: Mumbai (WFO) Normal Shift Job Description We are seeking a Technical SOC Lead to manage and guide the Security Operations Center (SOC) team in detecting, analyzing, and responding to cybersecurity incidents. The ideal candidate will be a hands-on leader with deep technical expertise in security tools, incident response, and threat analysis. Mandatory and Must skills: Technical soc lead who can manage a team size of 20 people and having experience in banking sector and can face bank audit. Strong hands-on experience with SIEM tools in IBM QRadar Key Responsibilities: Lead day-to-day operations of the SOC, ensuring 24/7 secu...

Role Summary The SOC Level 2 Analyst is responsible for advanced security event analysis, incident response, and threat hunting This role involves working with cutting-edge security tools, including Microsoft Defender suite, to protect organizational assets Key Responsibilities Advanced Alert Analysis: Validate and investigate escalated alerts from L1 using SIEM and EDR tools Incident Response: Execute containment, eradication, and recovery steps for confirmed incidents Threat Hunting: Proactively search for indicators of compromise across endpoints and networks Microsoft Defender Expertise: Use Microsoft Defender for Endpoint for malware detection and remediation Monitor and respond to aler...

Advanced Security Monitoring Monitor and analyse alerts from SIEM, EDR, NDR, Email Security, DLP, IAM, and Cloud Security tools. Validate alerts escalated by L1 and identify true security incidents. Correlate events across multiple data sources to identify attack patterns. Alert Investigation & Triage Perform deep-dive analysis of suspicious activities (login anomalies, malware alerts, lateral movement). Distinguish between false positives, misconfigurations, and real threats. Enrich alerts with context (asset criticality, user behaviour, threat intel). Incident Escalation & Coordination Escalate confirmed incidents to IR/L3 with complete investigation details. Coordinate with IT, IAM, Netwo...

We are looking for a motivated and detail-oriented cybersecurity professional to join our team as a Threat Intelligence and Vulnerability Management Engineer. This role focuses on supporting the identification and mitigation of threats and vulnerabilities using Microsoft Defender Vulnerability Management and Nexpose Rapid7. you'll work closely with senior engineers and SOC analysts to help protect our environment and grow your expertise in threat analysis and risk reduction. Responsibilities: Threat Intelligence Support: Monitor and organize threat intelligence feeds and alerts from external sources. Assist in collecting and maintaining indicators of compromise (IOCs) and threat actor profil...

Conduct deep-dive analysis on SIEM alerts escalated by Senior Engineers and ensure final closure of incidents within SLA. Correlate data from multiple log sources for holistic threat understanding and accurate incident resolution. Act as shift lead, ensuring proper handovers, task delegation, and gap-free operations. Engage in use case fine-tuning (production and testing) and provide recommendations for enhancements based on BAU activities. Participate in playbook design workshops with SOAR teams; provide scenario-based testing and automation recommendations. Collaborate with developers during requirement gathering sessions for automation needs. Prepare and review documentation, including RC...

SIEM & IDAMOpenText ArcSight CyberRequired Skills Experience in handling DDoS patterns, mitigation Custom dashboards queries in Elastic/Kibana SIEM correlation rules and event parsing Vulnerability triage Handson with CLI and console based debugging

Your work profile Monitoring of SIEM alerts, email notifications, and security logs. Timely acknowledgment and triaging of alerts; classify incidents based on severity and type. Ensure strict adherence to SLAs (MTTA, MTTI) and maintain quality standards in analysis. Escalate verified incidents with initial triage details to Senior Analysts for further investigation. Analyse raw logs of triggered alerts for PII data or anomalies and report discrepancies to the Sr. Detection Engineer. Maintain accurate documentation of alerts, escalations, and analysis performed. Ensure timely escalation of tickets and email notifications as per defined processes. Desired qualifications: Education: Bachelor s ...