15621 Siem Jobs - Page 45

Roles and responsibilities Monitor security alerts and events from SIEM and other various sources (SIEM, IDS/IPS, endpoint protection, firewalls, etc.) to identify potential threats Perform in-depth analysis of suspicious activities, malware, phishing, and network anomalies Respond to security incidents, conduct triage, containment, eradication, and recovery Document incident findings, create detailed reports, and contribute to post-incident reviews Collaborate with Tier 1 analysts to escalate and resolve complex incidents Investigate alerts using forensic tools, log analysis, network traffic analysis, and threat intelligence. Maintain and tune SIEM rules, dashboards, and use cases for impro...

Role Purpose The purpose of this role is to analyse, identify, rectify & recommend specific improvement measures that help in the security posture of the organization by protecting the sensitive information Do Ensuring customer centricity by providing apt cybersecurity Monitoring and safeguarding the log sources and security access Planning for disaster recovery in the event of any security breaches Monitor for attacks, intrusions and unusual, unauthorized or illegal activity Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems Conduct security assessments, risk analysis and root cause analysis of security incidents ...

We are a leading global software company dedicated to the world of computer aided design, 3D modeling and simulation - helping innovative global manufacturers design better products, faster! With the resources of a large company, and the energy of a software start-up, we have fun together while creating a world class software portfolio. Our culture encourages creativity, welcomes fresh thinking, and focuses on growth, so our people, our business, and our customers can achieve their full potential. We are looking for an experienced Cloud Cyber Defense & Incident Response Analyst to safeguard our cloud environments against evolving cyber threats. This role blends proactive threat hunting with ...

Role Purpose The purpose of this role is to analyse, identify, rectify & recommend specific improvement measures that help in the security posture of the organization by protecting the sensitive information Do Ensuring customer centricity by providing apt cybersecurity Monitoring and safeguarding the log sources and security access Planning for disaster recovery in the event of any security breaches Monitor for attacks, intrusions and unusual, unauthorized or illegal activity Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems Conduct security assessments, risk analysis and root cause analysis of security incidents ...

Do Ensure the Incident resolution within the Response and Resolution SLAs Support the Incident Management Lead as needed and prepare the SLA Reports for Incidents Track the Backlog, pending, re-opened incidents and work for their closure asap. Coordinate with the Event monitoring teams and ensure creation of the alert-based incident creation Collaborate with the key stakeholders (SD Team, Customers, End users, Technical resolution team, Vendors, and CIS Delivery management team) during the incident resolution and Incident escalations and Ensure communication update is done on-time KEY SKILLS AND COMPETENCIES Shall have Knowledge of the ITSM Tool; Remedy or ServiceNow or HPSM Shall have 3-5 y...

Do Ensure the Incident resolution within the Response and Resolution SLAs Support the Incident Management Lead as needed and prepare the SLA Reports for Incidents Track the Backlog, pending, re-opened incidents and work for their closure asap. Coordinate with the Event monitoring teams and ensure creation of the alert-based incident creation Collaborate with the key stakeholders (SD Team, Customers, End users, Technical resolution team, Vendors, and CIS Delivery management team) during the incident resolution and Incident escalations and Ensure communication update is done on-time KEY SKILLS AND COMPETENCIES Shall have Knowledge of the ITSM Tool; Remedy or ServiceNow or HPSM Shall have 3-5 y...

Location:Pan India Role:Splunk Admin Exp: 4yrs-6.5yrs JD Create and maintain custom correlation rules, queries, alerts, dashboards, and reports within Splunk Develop use cases mapped to frameworks like MITRE ATT&CK. Fine-tune rules to reduce false positives and optimize performance. Integrate threat intelligence into Splunk content. Ensure effective use of Splunk for security monitoring. Regularly review and enhance existing content based on emerging threats. Support log ingestion and data normalization. Work closely with security operations, threat intelligence, and development teams. Mandatory Skills: Security Log Monitoring . Experience: 3-5 Years .

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Global Managed Service – Privileged Identity and access Management – Senior The Senior CyberArk Operations Support Analyst is a key member of the CyberArk Privileged Access Management (PAM) team, responsible for the advanced support and management of the CyberArk infrastructure. This role requires a deep understanding of PAM principles, Cyber...

About Us Sophos is a global leader and innovator of advanced security solutions for defeating cyberattacks. The company acquired Secureworks in February 2025, bringing together two pioneers that have redefined the cybersecurity industry with their innovative, native AI-optimized services, technologies and products. Sophos is now the largest pure-play Managed Detection and Response (MDR) provider, supporting more than 28,000 organizations. In addition to MDR and other services, Sophos’ complete portfolio includes industry-leading endpoint, network, email, and cloud security that interoperate and adapt to defend through the Sophos Central platform. Secureworks provides the innovative, market-l...

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Global Managed Service – Privileged Identity and access Management – Senior The Senior CyberArk Operations Support Analyst is a key member of the CyberArk Privileged Access Management (PAM) team, responsible for the advanced support and management of the CyberArk infrastructure. This role requires a deep understanding of PAM principles, Cyber...

Our Mission At Palo Alto Networks® everything starts and ends with our mission: Being the cybersecurity partner of choice, protecting our digital way of life. Our vision is a world where each day is safer and more secure than the one before. We are a company built on the foundation of challenging and disrupting the way things are done, and we’re looking for innovators who are as committed to shaping the future of cybersecurity as we are. Who We Are We take our mission of protecting the digital way of life seriously. We are relentless in protecting our customers and we believe that the unique ideas of every member of our team contributes to our collective success. Our values were crowdsourced...

Line of Service Advisory Industry/Sector FS X-Sector Specialism Risk Management Level Associate Job Description & Summary At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data. As a cybersecurity generalist at PwC, you will focus on providing comprehensive security solutions and experience across various domains, maintaining the protection of client systems and data. You will apply a broad understanding of cybersecurity principles and practices to address diverse security challenges effectiv...

Role- SOC Analyst Education- Any Bachelor's Degree Experience- 1-3 years in Cybersecurity operations (SOC) preferably in financial service industry. Basic Knowledge • Networking protocols. • Malware, phishing, firewalls, etc • Windows & Linux OS • MITRE ATT&CK framework • Cyber attacks Tools • Worked on any security Monitoring tools e.g., (DNIF, Splunk, Qradar) • Ticketing tools (JIRA, ITSM, ServiceNow, etc. ) Soft Skills • Analytical thinking • Documentation & communication • Willingness to work in shifts including graveyard shifts. Shift & Work Environment • 24/7 rotational shifts (including nights and weekends). • Ability to work under pressure and handle multiple alerts simultaneously. K...

Role and Responsibilities: Develop and enforce security policies, standards, and guidelines. Ensure compliance with industry regulations and organizational requirements. Conduct security risk assessments and audits. Identify vulnerabilities and recommend mitigation strategies. Respond to security incidents and breaches promptly. Investigate and report on security breaches, including root cause analysis. Manage intrusion detection/prevention systems, and antivirus software, Security Incident and Event Management (SIEM). Maintain documentation and prepare regular reports on security incidents and compliance. Conduct security awareness training sessions for employees. Promote a culture of cyber...

Greetings from Corrohealth ! Position: Manager – Cybersecurity Operations Role Overview: The Manager will lead and manage 24x7 cybersecurity and SOC operations, ensuring round-the-clock protection of the organization's critical infrastructure. This role demands deep expertise in network security, threat detection, and incident response , while also managing a team working in rotational shifts. Key Responsibilities: Oversee end-to-end SOC operations , including real-time monitoring, incident triage, and escalation. Lead network security strategy and governance including firewalls, intrusion detection/prevention systems (IDS/IPS) , and VPN infrastructure. Manage and mentor a 24x7 cyber defense...

Roles & Responsibilities: Monitoring & Alert Handling Continuously monitor security alerts and events from SIEM tools and security platforms. Identify and categorize suspicious activities, malware alerts, phishing attempts, and intrusion attempts. Assist in triaging and prioritizing security alerts based on severity levels. Investigation & Analysis Perform initial investigation on security events to determine potential threats or false positives. Gather and analyze logs from various sources (firewalls, endpoint security, network devices, applications). Document incident findings and escalate critical alerts to senior analysts or Incident Response team. Incident Response Support Assist in con...

The Senior Network Engineer – Cyber security Specialist is responsible for designing, implementing, and securing enterprise-level network infrastructure. This role ensures high availability, performance, and protection of data and systems against cyber threats. The engineer collaborates with IT, security, and operations teams to maintain robust, scalable, and secure network environments. Key Responsibilities Network Design & Implementation Architect and deploy LAN/WAN, VPN, and cloud-based network solutions. Maintain network topology diagrams and documentation. Cybersecurity Operations Develop and enforce network security policies and procedures. Monitor network traffic for anomalies and pot...

Who We Are At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward – always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities. The Role Kyndryl’s Security & Resiliency is one of our most critical practices, ensuring enterprises, regardless of their size and complexity, remain secure, available, reliable, and resilient. We take Cybersecurity seriously. We're not just invested; we're committed. We're not just protecting data; we're empowering. Kyndryl is committed to making the w...

Who We Are At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward – always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities. The Role Kyndryl’s Security & Resiliency is one of our most critical practices, ensuring enterprises, regardless of their size and complexity, remain secure, available, reliable, and resilient. We take Cybersecurity seriously. We're not just invested; we're committed. We're not just protecting data; we're empowering. Kyndryl is committed to making the w...

About Us At SentinelOne, we’re redefining cybersecurity by pushing the limits of what’s possible—leveraging AI-powered, data-driven innovation to stay ahead of tomorrow’s threats. From building industry-leading products to cultivating an exceptional company culture, our core values guide everything we do. We’re looking for passionate individuals who thrive in collaborative environments and are eager to drive impact. If you’re excited about solving complex challenges in bold, innovative ways, we’d love to connect with you. What are we looking for? As an Enterprise Solution Engineer (Sales Engineer), you will work with prospects and customers, aligning their goals and requirements with the Sen...

Line of Service Advisory Industry/Sector FS X-Sector Specialism Risk Management Level Manager Job Description & Summary At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data. As a cybersecurity generalist at PwC, you will focus on providing comprehensive security solutions and experience across various domains, maintaining the protection of client systems and data. You will apply a broad understanding of cybersecurity principles and practices to address diverse security challenges effectivel...

Greetings from Corrohealth!! We are hiring Cyber security Manager for Chennai Location Position: Manager – Cybersecurity Operations Location: Global India Department: Information Security Reporting To : Director – IT Security / CISO Role Overview: The Manager will lead and manage 24x7 cybersecurity and SOC operations, ensuring round-the-clock protection of the organization's critical infrastructure. This role demands deep expertise in network security, threat detection, and incident response, while also managing a team working in rotational shifts. Key Responsibilities: · Oversee end-to-end SOC operations, including real-time monitoring, incident triage, and escalation. · Lead network securi...

L1 SOAR Automation Engineer Experience: 36 years Number of Positions-1 Role Summary: Supports the development, configuration, and maintenance of SOAR playbooks and integrations to automate routine SOC workflows. Key Responsibilities: Configure basic SOAR playbooks for standard use cases (phishing triage, IP/domain enrichment, ticket updates). Maintain and test integrations between SOAR and SIEM, EDR , ticketing, and communication tools. Implement small changes or enhancements to existing playbooks based on SOC feedback. Monitor execution of playbooks, troubleshoot failures, and ensure runbooks are updated. Document workflows, parameters, and approvals for each automation. Work with L2/L3 and...

L1 IT/OT Security Analyst Location: Pune Experience: 36 years Reporting To: SOC Manager / L2 Security Lead Role Summary: Responsible for 24x7 monitoring of IT and OT security alerts, performing initial triage, and escalating incidents as per SOPs and playbooks. Key Responsibilities: Monitor SIEM, IDS/IPS, EDR and OT security monitoring tools for alerts and events. Perform initial triage: validate alerts, gather context (user, asset, source IP, timeframe), and classify severity. Execute predefined incident response playbooks for low-complexity incidents (e.g., account lockouts, basic phishing). Escalate incidents to L2/L3 with complete evidence, timelines, and documentation. Document all acti...

Key Responsibilities: Deep understanding of computer intrusion activities, incident response techniques, tools, and procedures. L2, L3 Support. Good Experience in SIEM monitoring (QRadar, Sentinel, Splunk, chronicle) Knowledge of SOAR technologies, working with playbooks (Cortex, chronicle, Splunk SOAR) Experience handling malware incidents (Flare VM, Remnux) and detections from EDR (MS Defender, Crowdstrike, SenitnelOne etc.) Reverse Engineering like- IDA Pro, GHIDRA. Knowledge of Windows, Active Directory, DNS & Linux operating systems, Working experience and knowledge of ITSM tools for incident management. Must be action oriented and have a proactive approach to solving issues. Knowledge ...