5462 Siem Jobs - Page 50

About Us Sophos is a global leader and innovator of advanced security solutions for defeating cyberattacks. The company acquired Secureworks in February 2025, bringing together two pioneers that have redefined the cybersecurity industry with their innovative, native AI-optimized services, technologies and products. Sophos is now the largest pure-play Managed Detection and Response (MDR) provider, supporting more than 28,000 organizations. In addition to MDR and other services, Sophos’ complete portfolio includes industry-leading endpoint, network, email, and cloud security that interoperate and adapt to defend through the Sophos Central platform. Secureworks provides the innovative, market-leading Taegis XDR/MDR, identity threat detection and response (ITDR), next-gen SIEM capabilities, managed risk, and a comprehensive set of advisory services. Sophos sells all these solutions through reseller partners, Managed Service Providers (MSPs) and Managed Security Service Providers (MSSPs) worldwide, defending more than 600,000 organizations worldwide from phishing, ransomware, data theft, other every day and state-sponsored cybercrimes. The solutions are powered by historical and real-time threat intelligence from Sophos X-Ops and the newly added Counter Threat Unit (CTU). Sophos is headquartered in Oxford, U.K. More information is available at www.sophos.com. Role Summary We’re seeking a dynamic and highly skilled Sales Engineer Specialist to join our pre-sales team. This role will focus on enabling and accelerating customer outcomes through cybersecurity platform storytelling, managed detection and response (MDR), and incident response alignment, all while staying deeply in tune with the threat landscape and C-level buyer challenges. You will serve as the technical expert across the sales life-cycle-educating, influencing, and solving complex security challenges alongside our customers, partners, and internal sales teams. What you will do Customer Engagement Act as a trusted cybersecurity advisor to prospects and customers from technical leads to CISOs Understand and articulate security pain points, threats, and risk mitigation strategies Drive discovery, solution design, and technical validation across Sophos' full product and services portfolio Provide high-level architecture guidance and cyber strategy aligned to business goals Lead technical win strategy and ensure successful proof of concepts, demos, and evaluations Identify opportunities for solution expansion and long-term value creation in key accounts Partner & Channel Enablement Deliver technical enablement to MSSPs, MSPs, Strategic Channel Partners, and distributors Guide partners to effectively position Sophos solutions across the upper mid-market and enterprise segments Collaborate with partners to shape go-to-market solutions and align with joint opportunity plans Champion the Sophos technical vision to channel communities and integrators Strategic Sales Support Partner with Sales & SEs to drive territory planning, technical account strategy, and pipeline growth Influence revenue goals by supporting opportunity qualification, proposals, and technical closure Represent Sophos at customer events, executive briefings, and strategic meetings What you will bring 5+ years in a presales or technical consulting experience for products within the Cybersecurity domain Strong experience catering to the enterprise customer segment Strong knowledge of cyber threats, attacker behaviors, and modern detection strategies Deep technical experience with network security, EDR/XDR, SIEM / SOAR, email/cloud security, and SOC operations and firewalls Experience with MDR, incident response planning, and demonstrating ROI from managed detection and response services Proven ability to influence technical and executive audiences through storytelling and solution framing Strong knowledge of competitive cybersecurity vendors and platform differentiation strategies Industry certifications (e.g., CISSP, CEH, GIAC, CCSP, etc.) are a plus #B2 Ready to Join Us? At Sophos, we believe in the power of diverse perspectives to fuel innovation. Research shows that candidates sometimes hesitate to apply if they don't check every box in a job description. We challenge that notion. Your unique experiences and skills might be exactly what we need to enhance our team. Don't let a checklist hold you back – we encourage you to apply. What's Great About Sophos? · Sophos operates a remote-first working model, making remote work the primary option for most employees. However, some roles may necessitate a hybrid approach. Please refer to the location details in our job postings for further information. · Our people – we innovate and create, all of which are accompanied by a great sense of fun and team spirit · Employee-led diversity and inclusion networks that build community and provide education and advocacy · Annual charity and fundraising initiatives and volunteer days for employees to support local communities · Global employee sustainability initiatives to reduce our environmental footprint · Global fitness and trivia competitions to keep our bodies and minds sharp · Global wellbeing days for employees to relax and recharge · Monthly wellbeing webinars and training to support employee health and wellbeing Our Commitment To You We’re proud of the diverse and inclusive environment we have at Sophos, and we’re committed to ensuring equality of opportunity. We believe that diversity, combined with excellence, builds a better Sophos, so we encourage applicants who can contribute to the diversity of our team. All applicants will be treated in a fair and equal manner and in accordance with the law regardless of gender, sex, gender reassignment, marital status, race, religion or belief, color, age, military veteran status, disability, pregnancy, maternity or sexual orientation. We want to give you every opportunity to show us your best self, so if there are any adjustments we could make to the recruitment and selection process to support you, please let us know. Data Protection If you choose to explore an opportunity, and subsequently share your CV or other personal details with Sophos, these details will be held by Sophos for 12 months in accordance with our Privacy Policy and used by our recruitment team to contact you regarding this or other relevant opportunities at Sophos. If you would like Sophos to delete or update your details at any time, please follow the steps set out in the Privacy Policy describing your individual rights. For more information on Sophos’ data protection practices, please consult our Privacy Policy Cybersecurity as a Service Delivered | Sophos

Responsibilities Lead security operations activities, managing and maintaining the organization's security monitoring and detection capabilities. Coordinate and execute incident response strategies, swiftly identifying, containing, and mitigating cybersecurity incidents. Conduct detailed incident investigations to determine root cause, document findings, and implement proactive measures to enhance detection and response effectiveness. Collaborate cross-functionally with IT and business units to facilitate the prompt remediation of identified vulnerabilities, minimizing operational disruptions. Monitor and analyze emerging threat intelligence feeds, integrating insights into proactive security measures to defend against advanced threats. Regularly review, assess, and optimize security controls and incident response protocols. Develop and maintain clear documentation, including incident response playbooks, security reports, and post-incident analyses. Provide actionable recommendations based on lessons learned from security events to continuously enhance security posture. Contribute actively to the development and refinement of cybersecurity policies, procedures, and standards in alignment with regulatory and compliance requirements. Collaborate closely with IT and other internal teams to implement integrated and effective cybersecurity practices. Create and maintain real-time security monitoring dashboards to provide visibility into organizational cybersecurity health. Stay current with cybersecurity trends, threat intelligence, and evolving risks to ensure proactive defense measures. Participate in cybersecurity awareness training initiatives, promoting a security-focused culture throughout the organization. Serve on an on-call rotation to ensure timely response to cybersecurity incidents outside regular business hours, including nights and weekends. Basic Qualifications Minimum 3 years of professional experience in Security Operations (SecOps) or related cybersecurity roles. Comprehensive understanding of cybersecurity principles, threat intelligence methodologies, and frameworks (NIST, ISO 27001, MITRE ATT&CK). Proven experience in cybersecurity incident response, threat detection, and threat intelligence analysis. Proficiency in configuring and managing advanced security monitoring tools such as SIEM, EDR, and threat intelligence platforms. Exceptional analytical and problem-solving capabilities with a focus on rapid incident containment and remediation. Strong communication and collaboration skills, with fluency in English. Relevant certifications (e.g., CISSP, CISM, CEH, CompTIA Security+) strongly preferred. Ability and willingness to travel domestically and internationally up to 10%. Preferred Characteristics Bachelor’s or Master's degree in Computer Science, Information Security, or a closely related discipline. Operational Technology (OT) security experience, particularly within a global manufacturing context. Experience responding to sophisticated cyber threats, including nation-state actors. Prior United States Security Clearance or equivalent. Familiarity with regulatory frameworks and compliance requirements, including SOC 1/2/3, ISO 27001, FedRAMP, SOX, HIPAA, NIST, and others. Scripting and automation skills in Python, shell scripting, Ruby, or similar languages. Previous experience in corporate IT support or help desk roles is beneficial.

About Us Sophos is a global leader and innovator of advanced security solutions for defeating cyberattacks. The company acquired Secureworks in February 2025, bringing together two pioneers that have redefined the cybersecurity industry with their innovative, native AI-optimized services, technologies and products. Sophos is now the largest pure-play Managed Detection and Response (MDR) provider, supporting more than 28,000 organizations. In addition to MDR and other services, Sophos’ complete portfolio includes industry-leading endpoint, network, email, and cloud security that interoperate and adapt to defend through the Sophos Central platform. Secureworks provides the innovative, market-leading Taegis XDR/MDR, identity threat detection and response (ITDR), next-gen SIEM capabilities, managed risk, and a comprehensive set of advisory services. Sophos sells all these solutions through reseller partners, Managed Service Providers (MSPs) and Managed Security Service Providers (MSSPs) worldwide, defending more than 600,000 organizations worldwide from phishing, ransomware, data theft, other every day and state-sponsored cybercrimes. The solutions are powered by historical and real-time threat intelligence from Sophos X-Ops and the newly added Counter Threat Unit (CTU). Sophos is headquartered in Oxford, U.K. More information is available at www.sophos.com. Role Summary We’re seeking a dynamic and highly skilled Sales Engineer Specialist to join our pre-sales team. This role will focus on enabling and accelerating customer outcomes through cybersecurity platform storytelling, managed detection and response (MDR), and incident response alignment, all while staying deeply in tune with the threat landscape and C-level buyer challenges. You will serve as the technical expert across the sales life-cycle-educating, influencing, and solving complex security challenges alongside our customers, partners, and internal sales teams. What you will do Customer Engagement Act as a trusted cybersecurity advisor to prospects and customers from technical leads to CISOs Understand and articulate security pain points, threats, and risk mitigation strategies Drive discovery, solution design, and technical validation across Sophos' full product and services portfolio Provide high-level architecture guidance and cyber strategy aligned to business goals Lead technical win strategy and ensure successful proof of concepts, demos, and evaluations Identify opportunities for solution expansion and long-term value creation in key accounts Partner & Channel Enablement Deliver technical enablement to MSSPs, MSPs, Strategic Channel Partners, and distributors Guide partners to effectively position Sophos solutions across the upper mid-market and enterprise segments Collaborate with partners to shape go-to-market solutions and align with joint opportunity plans Champion the Sophos technical vision to channel communities and integrators Strategic Sales Support Partner with Sales & SEs to drive territory planning, technical account strategy, and pipeline growth Influence revenue goals by supporting opportunity qualification, proposals, and technical closure Represent Sophos at customer events, executive briefings, and strategic meetings What you will bring 5+ years in a presales or technical consulting experience for products within the Cybersecurity domain Strong experience catering to the enterprise customer segment Strong knowledge of cyber threats, attacker behaviors, and modern detection strategies Deep technical experience with network security, EDR/XDR, SIEM / SOAR, email/cloud security, and SOC operations and firewalls Experience with MDR, incident response planning, and demonstrating ROI from managed detection and response services Proven ability to influence technical and executive audiences through storytelling and solution framing Strong knowledge of competitive cybersecurity vendors and platform differentiation strategies Industry certifications (e.g., CISSP, CEH, GIAC, CCSP, etc.) are a plus #B2 Ready to Join Us? At Sophos, we believe in the power of diverse perspectives to fuel innovation. Research shows that candidates sometimes hesitate to apply if they don't check every box in a job description. We challenge that notion. Your unique experiences and skills might be exactly what we need to enhance our team. Don't let a checklist hold you back – we encourage you to apply. What's Great About Sophos? · Sophos operates a remote-first working model, making remote work the primary option for most employees. However, some roles may necessitate a hybrid approach. Please refer to the location details in our job postings for further information. · Our people – we innovate and create, all of which are accompanied by a great sense of fun and team spirit · Employee-led diversity and inclusion networks that build community and provide education and advocacy · Annual charity and fundraising initiatives and volunteer days for employees to support local communities · Global employee sustainability initiatives to reduce our environmental footprint · Global fitness and trivia competitions to keep our bodies and minds sharp · Global wellbeing days for employees to relax and recharge · Monthly wellbeing webinars and training to support employee health and wellbeing Our Commitment To You We’re proud of the diverse and inclusive environment we have at Sophos, and we’re committed to ensuring equality of opportunity. We believe that diversity, combined with excellence, builds a better Sophos, so we encourage applicants who can contribute to the diversity of our team. All applicants will be treated in a fair and equal manner and in accordance with the law regardless of gender, sex, gender reassignment, marital status, race, religion or belief, color, age, military veteran status, disability, pregnancy, maternity or sexual orientation. We want to give you every opportunity to show us your best self, so if there are any adjustments we could make to the recruitment and selection process to support you, please let us know. Data Protection If you choose to explore an opportunity, and subsequently share your CV or other personal details with Sophos, these details will be held by Sophos for 12 months in accordance with our Privacy Policy and used by our recruitment team to contact you regarding this or other relevant opportunities at Sophos. If you would like Sophos to delete or update your details at any time, please follow the steps set out in the Privacy Policy describing your individual rights. For more information on Sophos’ data protection practices, please consult our Privacy Policy Cybersecurity as a Service Delivered | Sophos

About Us Sophos is a global leader and innovator of advanced security solutions for defeating cyberattacks. The company acquired Secureworks in February 2025, bringing together two pioneers that have redefined the cybersecurity industry with their innovative, native AI-optimized services, technologies and products. Sophos is now the largest pure-play Managed Detection and Response (MDR) provider, supporting more than 28,000 organizations. In addition to MDR and other services, Sophos’ complete portfolio includes industry-leading endpoint, network, email, and cloud security that interoperate and adapt to defend through the Sophos Central platform. Secureworks provides the innovative, market-leading Taegis XDR/MDR, identity threat detection and response (ITDR), next-gen SIEM capabilities, managed risk, and a comprehensive set of advisory services. Sophos sells all these solutions through reseller partners, Managed Service Providers (MSPs) and Managed Security Service Providers (MSSPs) worldwide, defending more than 600,000 organizations worldwide from phishing, ransomware, data theft, other every day and state-sponsored cybercrimes. The solutions are powered by historical and real-time threat intelligence from Sophos X-Ops and the newly added Counter Threat Unit (CTU). Sophos is headquartered in Oxford, U.K. More information is available at www.sophos.com. Role Summary We’re seeking a dynamic and highly skilled Sales Engineer Specialist to join our pre-sales team. This role will focus on enabling and accelerating customer outcomes through cybersecurity platform storytelling, managed detection and response (MDR), and incident response alignment, all while staying deeply in tune with the threat landscape and C-level buyer challenges. You will serve as the technical expert across the sales life-cycle-educating, influencing, and solving complex security challenges alongside our customers, partners, and internal sales teams. What you will do Customer Engagement Act as a trusted cybersecurity advisor to prospects and customers from technical leads to CISOs Understand and articulate security pain points, threats, and risk mitigation strategies Drive discovery, solution design, and technical validation across Sophos' full product and services portfolio Provide high-level architecture guidance and cyber strategy aligned to business goals Lead technical win strategy and ensure successful proof of concepts, demos, and evaluations Identify opportunities for solution expansion and long-term value creation in key accounts Partner & Channel Enablement Deliver technical enablement to MSSPs, MSPs, Strategic Channel Partners, and distributors Guide partners to effectively position Sophos solutions across the upper mid-market and enterprise segments Collaborate with partners to shape go-to-market solutions and align with joint opportunity plans Champion the Sophos technical vision to channel communities and integrators Strategic Sales Support Partner with Sales & SEs to drive territory planning, technical account strategy, and pipeline growth Influence revenue goals by supporting opportunity qualification, proposals, and technical closure Represent Sophos at customer events, executive briefings, and strategic meetings What you will bring 5+ years in a presales or technical consulting experience for products within the Cybersecurity domain Strong experience catering to the enterprise customer segment Strong knowledge of cyber threats, attacker behaviors, and modern detection strategies Deep technical experience with network security, EDR/XDR, SIEM / SOAR, email/cloud security, and SOC operations and firewalls Experience with MDR, incident response planning, and demonstrating ROI from managed detection and response services Proven ability to influence technical and executive audiences through storytelling and solution framing Strong knowledge of competitive cybersecurity vendors and platform differentiation strategies Industry certifications (e.g., CISSP, CEH, GIAC, CCSP, etc.) are a plus #B2 Ready to Join Us? At Sophos, we believe in the power of diverse perspectives to fuel innovation. Research shows that candidates sometimes hesitate to apply if they don't check every box in a job description. We challenge that notion. Your unique experiences and skills might be exactly what we need to enhance our team. Don't let a checklist hold you back – we encourage you to apply. What's Great About Sophos? · Sophos operates a remote-first working model, making remote work the primary option for most employees. However, some roles may necessitate a hybrid approach. Please refer to the location details in our job postings for further information. · Our people – we innovate and create, all of which are accompanied by a great sense of fun and team spirit · Employee-led diversity and inclusion networks that build community and provide education and advocacy · Annual charity and fundraising initiatives and volunteer days for employees to support local communities · Global employee sustainability initiatives to reduce our environmental footprint · Global fitness and trivia competitions to keep our bodies and minds sharp · Global wellbeing days for employees to relax and recharge · Monthly wellbeing webinars and training to support employee health and wellbeing Our Commitment To You We’re proud of the diverse and inclusive environment we have at Sophos, and we’re committed to ensuring equality of opportunity. We believe that diversity, combined with excellence, builds a better Sophos, so we encourage applicants who can contribute to the diversity of our team. All applicants will be treated in a fair and equal manner and in accordance with the law regardless of gender, sex, gender reassignment, marital status, race, religion or belief, color, age, military veteran status, disability, pregnancy, maternity or sexual orientation. We want to give you every opportunity to show us your best self, so if there are any adjustments we could make to the recruitment and selection process to support you, please let us know. Data Protection If you choose to explore an opportunity, and subsequently share your CV or other personal details with Sophos, these details will be held by Sophos for 12 months in accordance with our Privacy Policy and used by our recruitment team to contact you regarding this or other relevant opportunities at Sophos. If you would like Sophos to delete or update your details at any time, please follow the steps set out in the Privacy Policy describing your individual rights. For more information on Sophos’ data protection practices, please consult our Privacy Policy Cybersecurity as a Service Delivered | Sophos

About Us Sophos is a global leader and innovator of advanced security solutions for defeating cyberattacks. The company acquired Secureworks in February 2025, bringing together two pioneers that have redefined the cybersecurity industry with their innovative, native AI-optimized services, technologies and products. Sophos is now the largest pure-play Managed Detection and Response (MDR) provider, supporting more than 28,000 organizations. In addition to MDR and other services, Sophos’ complete portfolio includes industry-leading endpoint, network, email, and cloud security that interoperate and adapt to defend through the Sophos Central platform. Secureworks provides the innovative, market-leading Taegis XDR/MDR, identity threat detection and response (ITDR), next-gen SIEM capabilities, managed risk, and a comprehensive set of advisory services. Sophos sells all these solutions through reseller partners, Managed Service Providers (MSPs) and Managed Security Service Providers (MSSPs) worldwide, defending more than 600,000 organizations worldwide from phishing, ransomware, data theft, other every day and state-sponsored cybercrimes. The solutions are powered by historical and real-time threat intelligence from Sophos X-Ops and the newly added Counter Threat Unit (CTU). Sophos is headquartered in Oxford, U.K. More information is available at www.sophos.com. Role Summary We’re looking for a motivated and detail-oriented individual to join our hardware development team. This role is ideal for candidates with a strong academic foundation in computer engineering or related fields, as well as candidates with practical experience in embedded systems, hardware design, or system-level programming. What you will do Help develop, validate and maintain Sophos Hardware/Cybersecurity products throughout the lifecycle Manage and maintain automation systems and enhance testing capabilities using python Debug and troubleshoot any software and hardware issues Collaborate with hardware engineers to ensure smooth integration Document code and automation process clearly and accurately Support Test and Validation Efforts Be present in person at the Sophos office every day What you will bring Bachelor’s degree in computer engineering, computer science or a related field Strong understanding of computer architecture, microprocessors and embedded systems Proficiency in Python syntax, data structures, object-oriented programming and common libraries Familiarity with operating systems, such as Linux and Windows Understanding of CI/CD deployment practices and tools like Jenkins Knowledge of version control systems, primarily Git, for managing code changes and collaborating with others Ability to automate testing of APIs is plus Understanding of networking concepts, e.g., DNS, DHCP, PXE/iPXE, and how they affect automation tasks Excellent problem-solving and analytical skills, with the ability to troubleshoot and resolve technical issues Strong communication and collaboration skills, with the ability to work effectively in a team environment #B1 Ready to Join Us? At Sophos, we believe in the power of diverse perspectives to fuel innovation. Research shows that candidates sometimes hesitate to apply if they don't check every box in a job description. We challenge that notion. Your unique experiences and skills might be exactly what we need to enhance our team. Don't let a checklist hold you back – we encourage you to apply. What's Great About Sophos? · Sophos operates a remote-first working model, making remote work the primary option for most employees. However, some roles may necessitate a hybrid approach. Please refer to the location details in our job postings for further information. · Our people – we innovate and create, all of which are accompanied by a great sense of fun and team spirit · Employee-led diversity and inclusion networks that build community and provide education and advocacy · Annual charity and fundraising initiatives and volunteer days for employees to support local communities · Global employee sustainability initiatives to reduce our environmental footprint · Global fitness and trivia competitions to keep our bodies and minds sharp · Global wellbeing days for employees to relax and recharge · Monthly wellbeing webinars and training to support employee health and wellbeing Our Commitment To You We’re proud of the diverse and inclusive environment we have at Sophos, and we’re committed to ensuring equality of opportunity. We believe that diversity, combined with excellence, builds a better Sophos, so we encourage applicants who can contribute to the diversity of our team. All applicants will be treated in a fair and equal manner and in accordance with the law regardless of gender, sex, gender reassignment, marital status, race, religion or belief, color, age, military veteran status, disability, pregnancy, maternity or sexual orientation. We want to give you every opportunity to show us your best self, so if there are any adjustments we could make to the recruitment and selection process to support you, please let us know. Data Protection If you choose to explore an opportunity, and subsequently share your CV or other personal details with Sophos, these details will be held by Sophos for 12 months in accordance with our Privacy Policy and used by our recruitment team to contact you regarding this or other relevant opportunities at Sophos. If you would like Sophos to delete or update your details at any time, please follow the steps set out in the Privacy Policy describing your individual rights. For more information on Sophos’ data protection practices, please consult our Privacy Policy Cybersecurity as a Service Delivered | Sophos

Overview: We are looking for a skilled SIEM Administrator to manage and maintain Security Information and Event Management (SIEM) solutions such as Innspark , LogRhythm , or similar tools. This role is critical to ensuring effective security monitoring, log management, and event analysis across our systems. Key Responsibilities: Design, deploy, and manage SIEM tools (e.g., Innspark, LogRhythm, Splunk). Develop and maintain correlation rules, s, dashboards, and reports. Integrate logs from servers, network devices, cloud services, and applications. Troubleshoot log collection, parsing, normalization, and event correlation issues. Work with security teams to improve detection and response capabilities. Ensure SIEM configurations align with compliance and audit requirements. Perform routine SIEM maintenance (e.g., patching, upgrades, health checks). Create and maintain documentation for implementation, architecture, and operations. Participate in evaluating and testing new SIEM tools and features. Support incident response by providing relevant event data and insights. Required Qualifications: Bachelor's degree in Computer Science, Information Security, or related field. 3+ years of hands-on experience with SIEM tools. Experience with Innspark, LogRhythm, or other SIEM platforms (e.g., Splunk, QRadar, ArcSight). Strong knowledge of log management and event normalization. Good understanding of cybersecurity concepts and incident response. Familiarity with Windows/Linux OS and network protocols. Scripting knowledge (e.g., Python, PowerShell) is a plus. Strong troubleshooting, analytical, and communication skills. Industry certifications (CEH, Security+, SSCP, or vendor-specific) are a plus. Key Skills: SIEM Tools (Innspark, LogRhythm, Splunk) Troubleshooting Log Management & Analysis Scripting (optional) Security Monitoring Skills Siem,Splunk,Troubleshooting Required Skills Siem,Splunk,Troubleshooting

Overview: We are looking for a skilled SIEM Administrator to manage and maintain Security Information and Event Management (SIEM) solutions such as Innspark , LogRhythm , or similar tools. This role is critical to ensuring effective security monitoring, log management, and event analysis across our systems. Key Responsibilities: Design, deploy, and manage SIEM tools (e.g., Innspark, LogRhythm, Splunk). Develop and maintain correlation rules, s, dashboards, and reports. Integrate logs from servers, network devices, cloud services, and applications. Troubleshoot log collection, parsing, normalization, and event correlation issues. Work with security teams to improve detection and response capabilities. Ensure SIEM configurations align with compliance and audit requirements. Perform routine SIEM maintenance (e.g., patching, upgrades, health checks). Create and maintain documentation for implementation, architecture, and operations. Participate in evaluating and testing new SIEM tools and features. Support incident response by providing relevant event data and insights. Required Qualifications: Bachelor's degree in Computer Science, Information Security, or related field. 3+ years of hands-on experience with SIEM tools. Experience with Innspark, LogRhythm, or other SIEM platforms (e.g., Splunk, QRadar, ArcSight). Strong knowledge of log management and event normalization. Good understanding of cybersecurity concepts and incident response. Familiarity with Windows/Linux OS and network protocols. Scripting knowledge (e.g., Python, PowerShell) is a plus. Strong troubleshooting, analytical, and communication skills. Industry certifications (CEH, Security+, SSCP, or vendor-specific) are a plus. Key Skills: SIEM Tools (Innspark, LogRhythm, Splunk) Troubleshooting Log Management & Analysis Scripting (optional) Security Monitoring Skills Siem,Splunk,Troubleshooting Required Skills Siem,Splunk,Troubleshooting

Summary Position Summary Job title: Palo Alto Networks XSIAM - Senior Consultant About At Deloitte, we do not offer you just a job, but a career in the highly sought-after risk Management field. We are one of the business leaders in the risk market. We work with a vision to make the world more prosperous, trustworthy, and safe. Deloitte’s clients, primarily based outside of India, are large, complex organizations that constantly evolve and innovate to build better products and services. In the process, they encounter various risks and the work we do to help them address these risks is increasingly important to their success—and to the strength of the economy and public security. By joining us, you will get to work with diverse teams of professionals who design, manage, and implement risk-centric solutions across a variety of domains. In the process, you will gain exposure to the risk-centric challenges faced in today’s world by organizations across a range of industry sectors and become subject matter experts in those areas. Our Risk and Financial Advisory services professionals help organizations effectively navigate business risks and opportunities—from strategic, reputation, and financial risks to operational, cyber, and regulatory risks—to gain competitive advantage. We apply our experience in ongoing business operations and corporate lifecycle events to help clients become stronger and more resilient. Our market-leading teams help clients embrace complexity to accelerate performance, disrupt through innovation, and lead in their industries. We use cutting-edge technology like AI/ML techniques, analytics, and RPA to solve Deloitte’s clients ‘most complex issues. Working in Risk and Financial Advisory at Deloitte US-India offices has the power to redefine your ambitions. Work you’ll do Roles And Responsibilities As a Senior Consultant, you would be responsible for architecting, implementing, and optimizing Palo Alto Networks XSIAM solutions, leading advanced detection and automation projects, and advising clients on integrated security operations. Lead the design and deployment of Palo Alto Networks XSIAM, including advanced detection rules and SOAR playbooks. Integrate diverse log and telemetry sources, ensuring data quality and normalization. Develop and optimize automated response workflows for incident containment and remediation. Advise clients on advanced use cases, threat detection, and automation strategies. Troubleshoot and optimize detection logic, integrations, and SOAR workflows. Mentor junior consultants and analysts on XSIAM and SOAR best practices. Collaborate with cross-functional teams for solution enhancements and threat intelligence integration. Document technical solutions, runbooks, and provide client training. Present technical findings and recommendations to stakeholders. Required Skills Bachelor’s degree in information security, Computer Science, IT, or related field. 4–6 years of experience in security operations, SIEM/SOAR engineering, or incident response. Advanced hands-on experience with Palo Alto Networks XSIAM, Cortex XDR/SOAR. Strong detection engineering, integration, and automation skills. Excellent troubleshooting, client advisory, and communication abilities. Relevant certifications (e.g., Palo Alto Networks Certified Cybersecurity Associate, Security+, GCIH) are a plus. How You’ll Grow At Deloitte, we’ve invested a great deal to create a rich environment in which our professionals can grow. We want all our people to develop in their own way, playing to their own strengths as they hone their leadership skills. And, as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities—including exposure to leaders, sponsors, coaches, and challenging assignments—to help accelerate their careers along the way. No two people learn in the same way. So, we provide a range of resources including live classrooms, team-based learning, and eLearning. DU: The Leadership Center in India, our state-of-the-art, world-class learning Center in the Hyderabad offices is an extension of the Deloitte University (DU) in Westlake, Texas, and represents a tangible symbol of our commitment to our people’s growth and development. Explore DU: The Leadership Center in India . Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. Deloitte is committed to achieving diversity within its workforce, and encourages all qualified applicants to apply, irrespective of gender, age, sexual orientation, disability, culture, religious and ethnic background. We offer well-being programs and are continuously looking for new ways to maintain a culture that is inclusive, invites authenticity, leverages our diversity, and where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with Deloitte’s clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. Recruiting tips Finding the right job and preparing for the recruitment process can be tricky. Check out tips from our Deloitte recruiting professionals to set yourself up for success. Check out recruiting tips from Deloitte recruiters . Benefits We believe that to be an undisputed leader in professional services, we should equip you with the resources that can make a positive impact on your well-being journey. Our vision is to create a leadership culture focused on the development and well-being of our people. Here are some of our benefits and programs to support you and your family’s well-being needs. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you . Our people and culture Our people and our culture make Deloitte a place where leaders thrive. Get an inside look at the rich diversity of background, education, and experiences of our people. What impact will you make? Check out our professionals’ career journeys and be inspired by their stories. Professional development You want to make an impact. And we want you to make it. We can help you do that by providing you the culture, training, resources, and opportunities to help you grow and succeed as a professional. Learn more about our commitment to developing our people . © 2025. See Terms of Use for more information. Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee ("DTTL"), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as "Deloitte Global") does not provide services to clients. In the United States, Deloitte refers to one or more of the US member firms of DTTL, their related entities that operate using the "Deloitte" name in the United States and their respective affiliates. Certain services may not be available to attest clients under the rules and regulations of public accounting. Please see www.deloitte.com/about to learn more about our global network of member firms. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 307225

Summary Position Summary Job title: Palo Alto Networks XSIAM - Senior Consultant About At Deloitte, we do not offer you just a job, but a career in the highly sought-after risk Management field. We are one of the business leaders in the risk market. We work with a vision to make the world more prosperous, trustworthy, and safe. Deloitte’s clients, primarily based outside of India, are large, complex organizations that constantly evolve and innovate to build better products and services. In the process, they encounter various risks and the work we do to help them address these risks is increasingly important to their success—and to the strength of the economy and public security. By joining us, you will get to work with diverse teams of professionals who design, manage, and implement risk-centric solutions across a variety of domains. In the process, you will gain exposure to the risk-centric challenges faced in today’s world by organizations across a range of industry sectors and become subject matter experts in those areas. Our Risk and Financial Advisory services professionals help organizations effectively navigate business risks and opportunities—from strategic, reputation, and financial risks to operational, cyber, and regulatory risks—to gain competitive advantage. We apply our experience in ongoing business operations and corporate lifecycle events to help clients become stronger and more resilient. Our market-leading teams help clients embrace complexity to accelerate performance, disrupt through innovation, and lead in their industries. We use cutting-edge technology like AI/ML techniques, analytics, and RPA to solve Deloitte’s clients ‘most complex issues. Working in Risk and Financial Advisory at Deloitte US-India offices has the power to redefine your ambitions. Work you’ll do Roles And Responsibilities As a Senior Consultant, you would be responsible for architecting, implementing, and optimizing Palo Alto Networks XSIAM solutions, leading advanced detection and automation projects, and advising clients on integrated security operations. Lead the design and deployment of Palo Alto Networks XSIAM, including advanced detection rules and SOAR playbooks. Integrate diverse log and telemetry sources, ensuring data quality and normalization. Develop and optimize automated response workflows for incident containment and remediation. Advise clients on advanced use cases, threat detection, and automation strategies. Troubleshoot and optimize detection logic, integrations, and SOAR workflows. Mentor junior consultants and analysts on XSIAM and SOAR best practices. Collaborate with cross-functional teams for solution enhancements and threat intelligence integration. Document technical solutions, runbooks, and provide client training. Present technical findings and recommendations to stakeholders. Required Skills Bachelor’s degree in information security, Computer Science, IT, or related field. 4–6 years of experience in security operations, SIEM/SOAR engineering, or incident response. Advanced hands-on experience with Palo Alto Networks XSIAM, Cortex XDR/SOAR. Strong detection engineering, integration, and automation skills. Excellent troubleshooting, client advisory, and communication abilities. Relevant certifications (e.g., Palo Alto Networks Certified Cybersecurity Associate, Security+, GCIH) are a plus. How You’ll Grow At Deloitte, we’ve invested a great deal to create a rich environment in which our professionals can grow. We want all our people to develop in their own way, playing to their own strengths as they hone their leadership skills. And, as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities—including exposure to leaders, sponsors, coaches, and challenging assignments—to help accelerate their careers along the way. No two people learn in the same way. So, we provide a range of resources including live classrooms, team-based learning, and eLearning. DU: The Leadership Center in India, our state-of-the-art, world-class learning Center in the Hyderabad offices is an extension of the Deloitte University (DU) in Westlake, Texas, and represents a tangible symbol of our commitment to our people’s growth and development. Explore DU: The Leadership Center in India . Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. Deloitte is committed to achieving diversity within its workforce, and encourages all qualified applicants to apply, irrespective of gender, age, sexual orientation, disability, culture, religious and ethnic background. We offer well-being programs and are continuously looking for new ways to maintain a culture that is inclusive, invites authenticity, leverages our diversity, and where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with Deloitte’s clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. Recruiting tips Finding the right job and preparing for the recruitment process can be tricky. Check out tips from our Deloitte recruiting professionals to set yourself up for success. Check out recruiting tips from Deloitte recruiters . Benefits We believe that to be an undisputed leader in professional services, we should equip you with the resources that can make a positive impact on your well-being journey. Our vision is to create a leadership culture focused on the development and well-being of our people. Here are some of our benefits and programs to support you and your family’s well-being needs. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you . Our people and culture Our people and our culture make Deloitte a place where leaders thrive. Get an inside look at the rich diversity of background, education, and experiences of our people. What impact will you make? Check out our professionals’ career journeys and be inspired by their stories. Professional development You want to make an impact. And we want you to make it. We can help you do that by providing you the culture, training, resources, and opportunities to help you grow and succeed as a professional. Learn more about our commitment to developing our people . © 2025. See Terms of Use for more information. Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee ("DTTL"), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as "Deloitte Global") does not provide services to clients. In the United States, Deloitte refers to one or more of the US member firms of DTTL, their related entities that operate using the "Deloitte" name in the United States and their respective affiliates. Certain services may not be available to attest clients under the rules and regulations of public accounting. Please see www.deloitte.com/about to learn more about our global network of member firms. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 307226

Key Responsibilities Leadership & Strategy Lead and mentor the incident response (IR) team, fostering a culture of continuous improvement and collaboration. Develop, implement, and maintain the organization’s incident response strategy, processes, and playbooks. Act as the primary escalation point for significant cybersecurity incidents. Incident Management Oversee the detection, analysis, containment, eradication, and recovery phases of cybersecurity incidents. Coordinate cross-functional teams and third-party vendors during incident response efforts. Ensure timely reporting to stakeholders, including executive management and regulatory bodies, as required. Threat Analysis & Forensics Conduct root cause analyses of incidents and oversee digital forensics investigations. Collaborate with threat intelligence teams to stay ahead of emerging threats and ensure proactive response measures. Training & Preparedness Organize regular tabletop exercises and incident simulations to prepare the team and stakeholders for real-world scenarios. Develop and deliver training programs to enhance the technical capabilities of the IR team. Compliance & Reporting Ensure incident response practices align with regulatory requirements (e.g., GDPR, HIPAA, PCI DSS). Prepare detailed incident reports and lessons-learned documentation for internal and external audiences. Required : Bachelor’s degree in Computer Science, Information Security, or a related field. Advanced degree preferred. 10–15 years of experience in cybersecurity, with a minimum of 5 years in incident response or security operations leadership roles. Deep understanding of security frameworks and standards (e.g., NIST CSF, ISO 27001, MITRE ATT&CK). Proficiency with incident response tools (e.g., SIEM, EDR, SOAR platforms) and forensic tools. Strong knowledge of network security, malware analysis, and threat hunting techniques. Exceptional communication and crisis management skills. Preferred: Relevant certifications such as CISSP, CISM, GIAC Certified Incident Handler (GCIH), or Certified Ethical Hacker (CEH). Experience working in regulated industries or government organizations. Familiarity with AI-driven incident detection and response tools Regards Shyam J Senior HR Analyst 106-109, Anna Salai, Guindy, Chennai – 600032 M: +91 8925900151 exelatech.com • About EXELA • Instagram • LinkedIn

Overview: WELCOME TO SITA SITA is the leading specialist in air transport communications and information technology. We don’t just connect the global aviation industry, we apply decades of experience and expertise to address almost every core business, operational, baggage, and passenger process in air transport. As an organization, we cover 95% of all international air travel destinations and work with over 2,800 air transport and government customers in every corner of the globe. Immerse yourself in the dynamic world of technology while embracing our collaborative, and inclusive culture. Ready to redefine air travel? The journey starts here, with you at SITA. ABOUT THE ROLE & TEAM: Architect and design the solution to meet the business requirements of SITA customers predominantly in the pre-sales phase (RFPs or unsolicited opportunities) with focus on deployment, infrastructure, network architecture, and cloud architecture. WHAT YOU WILL DO: Manage technical solution in response to an RFP or unsolicited case that can consist of multiple SITA products (and portfolios), which includes new or evolving technologies and SITA solution portfolios. Design the deployment architecture and infrastructure specifications- servers and networking(LAN and WAN) for a solution to the customer’s requirements. Design deployment architecture for SITA products, including runtime environment in various flavours – on premise servers, virtualized server environment, containerized application environment through Kubernetes, public cloud, etc., to meet functional and non-functional system requirements. Design the network solution – both LAN/WLAN (in the airport) and WAN. Develop the conceptual design, and high-level design, and provide suitable inputs for the low-level design. Develop Bill of Materials: Compute & Storage and Networking. -Specifications for - Servers, Virtual Machines, Containers (e.g. Docker, Kubernetes), etc. based on guidance from SITA's product toolkits. -Storage - including backup solution Networking – LAN/WLAN components including switches, firewalls, etc. and WAN components including telco circuits, and also SD-WAN. Software Licensing requirements – Operating System, Database, Virtualization, etc. Other Infrastructure – Power (UPS), Racks, Cabling, etc. Guides and contributes to the design coordination and development solutions working with multiple parties both internally and externally. Contributes to the transfer of projects for implementation. Interact with colleagues to gain knowledge and to share ideas. Qualifications: Experience 7- 10 years of experience in Information Technology, Air Transport, Telecom, or any other relevant industry in a technical Pre-Sales role Proven track record in producing communicating and documenting successful technical customer solutions Proven track record in managing solution proposals, costing, and customer presentation with great level of details. Solid experience in designing compute, storage, and networking solutions in all possible deployment scenarios – on premise, virtualized environment, private cloud, public cloud, or a mix. Solid experience in network design – LAN/WLAN, and WAN. Solid experience in Security: IPSEC, Access-lists, NAT, understanding of Firewall functions Understanding of Cloud Connectivity such as Azure Express Route, AWS Direct Connect, is a great plus Understanding of Cloud Security such as Zscaler, Cisco umbrella is a great plus Understanding of Systems Monitoring – Network Monitoring, Security Monitoring (SIEM), etc. Understanding of Versa (or Cisco) SDWAN architecture is a great plus Adept at drawing technical diagrams - Good knowledge of Visio, competence in Excel and PowerPoint. Network design and standard vendor products Server sizing (virtualized environment and cloud) and software licensing Commercial Acumen Degree or equivalent experience in Computer Science, Information Technology and/or Engineering. WHAT WE OFFER We value diversity, operating in 200 countries and spanning 60 languages and cultures. Our inclusive offices are comfortable and fun, with the flexibility to work from home. Join our team and step closer to your best life. Joining us is more than a career; it’s joining the lively SkyStar community. Connect with peers who share your passion and grow through personalized initiatives. Discover your potential with us! Flex Week: Work from home up to 2 days/week (depending on your team’s needs) Flex Day: Make your workday suit your life and plans. Flex Location: Take up to 30 days a year to work from any location in the world. Employee Wellbeing: We’ve got you covered with our Employee Assistance Program (EAP), for you and your dependents 24/7, 365 days/year. We also offer Champion Health – a personalized platform that supports a range of wellbeing needs. Professional Development: Level up your skills with our training platforms, including LinkedIn Learning! Competitive Benefits: Competitive benefits that make sense with both your local market and employment status. SITA is an Equal Opportunity Employer. We value a diverse workforce. In support of our Employment Equity Program, we encourage women, aboriginal people, members of visible minorities, and/or persons with disabilities to apply and self-identify in the application process.

Job Information Date Opened 07/15/2025 Salary Salary will be based on relevant skills and experience, aligned with industry standards for the right candidates. Job Type Full time Industry IT Services City Noida State/Province Delhi Country India Zip/Postal Code 201309 About Us About the Company – SNS India , Secure Network Solutions India Private Limited (SNS) is a leading cybersecurity company. With over 24+ years of experience, SNS focuses solely on providing information and network security solutions. As an ISO 27001 Certified Company and winner of several awards, our mission is to be one of India's best security solution and support services partners. To know more about us, visit us at www.snsin.com. Job Description Understanding of various cybersecurity threats and solutions Knowledge of security products and services offered by our company Ability to translate complex technical concepts into easy-to-understand explanations for clients Understanding the client's business landscape and security posture Identifying opportunities and recommending appropriate solutions Demonstrating proof-of-concepts (POCs) to showcase the value of their offerings Working with the sales team to identify potential customer needs and challenges Participating in customer meetings and presentations to showcase how our company's solutions can address those needs Creating technical proposals and quotes Requirements Excellent communication and presentation skills Strong analytical and problem-solving abilities Ability to build trust and rapport with clients Up to date industry knowledge Professional appearance Technologies to be known, SIEM/SOAR Mail Security Firewall Endpoint security DLP SASE Benefits Flexible Work Environment (leave benefits, remote options) Health & Accident Insurance Coverage Remuneration above par with industry standards for performers Attractive performance based incentives PF / ESI / Gratuity Benefits Company-paid CUG SIM card Skill Development & Growth Opportunities POSH Certified Organization

About Us At Kuoni Tumlare, we deliver truly inspiring and innovative solutions and experiences that create value both for our Partners and Society at large. Our wide portfolio of products and solutions is built on 100+ years of destination management experience. Our solutions include series tours, technical visits, educational tours, Japan specialist travel consulting, as well as meetings, incentives, conferences, and exhibitions. Our product portfolio includes MyBus excursions at destinations as well as guaranteed departure tours devised and delivered by our Seat-in-Coach specialists, Europamundo (EMV) and MyBus Landcruise. We cater to a wide range of customer needs in close collaboration with our trusted suppliers and powered by our team of destinations experts - enabling us to make a real difference to the world. About the Business / Function Proudly part of Kuoni Tumlare, TUMLARE SOFTWARE SERVICES (P) LTD. is a multinational technology support company that serves as a trusted technology partner for businesses since 1999. We also help established brands reimagine their business through digitalization. Job Overview As an IT Security Engineer, you are responsible for various IT Security matters, such as daily management and control of various cybersecurity products, support in identifying requirements and business cases for new and existing security solutions, extensive cooperation with multiple project and operation teams on different security-related topic, and much more. Key Responsibilities Vulnerability Management & Penetration Testing: Perform regular vulnerability assessments and penetration tests on servers, middleware, and public-facing web applications. Patch Management: Oversee the security and lifecycle management of operating systems and middleware platforms, including patch management, version upgrades (e.g., WebLogic, WebSphere), security updates SSL certificate management and user access controls to ensure secure and stable environments. Secure Coding Collaboration: Work closely with software development teams to enforce secure coding practices aligned with the OWASP security framework. Security Tools & Solutions Management: Administer and support security tools such as Netskope/Zscaler Cloud Security, firewalls, Web Application Firewalls (WAF) End Point Protection: Antivirus solutions (TrendMicro, McAfee/Trellix ePO). SIEM Monitoring & Management: Monitor and manage Security Information and Event Management (SIEM) systems to ensure timely detection and response to security events. Incident Response Handling: Lead incident response activities including investigation, containment, eradication, and root cause analysis of security incidents. Cross-Team Coordination: Collaborate with internal stakeholders and external service providers to resolve security issues and maintain compliance with organizational policies. Access Governance: Review and validate Change Requests, Privileged Access Requests, and other access control-related approvals. Audit & Compliance Support: Assist in internal and external security audits, including firewall reviews, and compliance checks. Manage Core IT Services Security: Administer and secure essential IT services including FTP, SFTP, IIS, Ports and implement Role-Based Access Control (RBAC) to enforce least-privilege access principles and ensure operational integrity. Knowledge, Skills, Experience, Qualifications Experience: 3+ years of hands-on experience. Technical Skills: Server: - Windows server (2016/2019/2022), Linux (RHEL, Ubuntu) Antivirus Solutions (McAfee Trellix ePO, Trend Micro) SIEM Platforms (e.g., Splunk) Vulnerability Scanning (Nessus, Qualys, OpenVAS) Penetration Testing Tools (Burp Suite, OWASP ZAP) Basic scripting (PowerShell, Bash) for automation of tasks CSI (Critical Security Incidents) framework, compliance and audit preparation Certification Certified Ethical Hacker (CEH) CompTIA Security+ CCNA- Cisco Certified network Associate What we offer Probation period - only 3 months. 5 Days Working Annual Bonus – as per company policy. Long Service Award. Paid leaves for Birthday and Wedding/Work Anniversary Learning Opportunity through an online learning platform with rich training courses and resources. Company Sponsored IT Certification - as per company policy Following insurance from Date of Joining: o Group Medical Insurance with Sum Insured of up to 5 Lakh o Term life Insurance - 3 times of your CTC o Accidental Insurance - 3 times of your CTC Employee Engagement Activities: o Fun Friday per week o Annual Off-Site Team Building o End Year Party o CSR programs o Global Employee Engagement Events Job Location - On site. Pitampura, Netaji Subhash Place, New Delhi - 110034. In case your profile is a match and in alignment with your career interests, then submit your updated Application directly on the link. Experience level: Mid

Your Role Administer and develop solutions usingSplunkandSplunk Security Essentialsto support enterprise security monitoring and analytics. Design, implement, and maintain Splunk dashboards, alerts, and reports to provide actionable insights into security events. UtilizeUNIX shell scripting or Pythonto automate data ingestion, parsing, and enrichment processes. Lead and manage security-related projects from planning through execution, ensuring timely delivery and alignment with business goals. Collaborate with cross-functional teams to define requirements, manage risks, and ensure stakeholder satisfaction. Your Profile 5 to 10 yearsof experience in IT security with a strong focus onSplunk administration and development. Proficiency inSplunk Security Essentials, data onboarding, and custom dashboard creation. Strong scripting skills inUNIX shellorPythonfor automation and integration. Solid understanding ofAgile/Scrum methodologiesand project lifecycle management. Proven experience in leading cross-functional teams and managing complex security projects. What You Will Love Working at Capgemini Work on cutting-edge security analytics platforms likeSplunkin enterprise-scale environments. Lead impactful projects that enhance cybersecurity posture for global clients. Clear career progression paths from engineering to leadership and consulting roles. Collaborate with diverse teams in a supportive, inclusive, and innovation-driven culture. Gain exposure to modern security frameworks, automation tools, and real-time threat intelligence.

AHEAD builds platforms for digital business. By weaving together advances in cloud infrastructure, automation and analytics, and software delivery, we help enterprises deliver on the promise of digital transformation. At AHEAD, we prioritize creating a culture of belonging, where all perspectives and voices are represented, valued, respected, and heard. We create spaces to empower everyone to speak up, make change, and drive the culture at AHEAD. We are an equal opportunity employer, and do not discriminate based on an individual's race, national origin, color, gender, gender identity, gender expression, sexual orientation, religion, age, disability, marital status, or any other protected characteristic under applicable law, whether actual or perceived. We embrace all candidates that will contribute to the diversification and enrichment of ideas and perspectives at AHEAD. The Senior Technical Consultant is a skilled cybersecurity professional with strong expertise in at least one core XSIAM technology domain and a good working knowledge of others. They will be responsible for the technical execution of XSIAM deployments, handling complex configurations, and mentoring junior team members. Key Responsibilities Take a hands-on role in the end-to-end delivery of Palo Alto Networks XSIAM solutions, including deployment, configuration, and customization to meet specific client requirements. Develop and implement custom XSIAM content, such as tailored correlation rules, data models for unique log sources, and automation playbooks that streamline client SOC workflows. Integrate a variety of data sources into XSIAM, ensuring comprehensive visibility across endpoint, network, cloud, and identity layers. Configure and fine-tune XSIAM functionalities, including TIM for threat intelligence enrichment and ASM for external visibility. Collaborate with clients to optimize their XSIAM deployment, provide guidance on alert tuning, and assist in operationalizing the platform. Act as a technical resource for troubleshooting and resolving complex XSIAM-related issues during and post-implementation. Contribute to project documentation, ensuring clarity and completeness of Solution Designs and As-Built configurations. Skills Required 8 years of dedicated experience in cybersecurity, with a strong practical background in SIEM, SOAR, EDR/XDR, or SOC operations. 5 years of demonstrated threat intelligence and Incident response experience A minimum of 2 years of direct experience implementing and configuring Palo Alto Networks XSIAM or similar advanced SecOps platforms. Demonstrated expertise in at least one of the following: SIEM administration, including log collection, parsing, and normalization (XDM). SOAR development, including creating playbooks and leveraging scripting (Python preferred). EDR/XDR deployment and management, particularly with Cortex and Crowdstrike Proficiency with XQL for data analysis and rule creation. Solid understanding of network security concepts, cloud environments (AWS, Azure, GCP), and identity management. Strong analytical and troubleshooting capabilities. Effective communication skills, with the ability to engage with clients and team members. Palo Alto Networks certifications (e.g., PCNSE) or other relevant industry certifications are a plus. Why AHEAD: Through our daily work and internal groups like Moving Women AHEAD and RISE AHEAD, we value and benefit from diversity of people, ideas, experience, and everything in between. We fuel growth by stacking our office with top-notch technologies in a multi-million-dollar lab, by encouraging cross department training and development, sponsoring certifications and credentials for continued learning. USA Employment Benefits include: Medical, Dental, and Vision Insurance 401(k) Paid company holidays Paid time off Paid parental and caregiver leave Plus more! See benefits https://www.aheadbenefits.com/ for additional details. The compensation range indicated in this posting reflects the On-Target Earnings (“OTE”) for this role, which includes a base salary and any applicable target bonus amount. This OTE range may vary based on the candidate’s relevant experience, qualifications, and geographic location.

Introduction At IBM, work is more than a job - it's a calling: To build. To design. To code. To consult. To think along with clients and sell. To make markets. To invent. To collaborate. Not just to do something better, but to attempt things you've never thought possible. Are you ready to lead in this new era of technology and solve some of the world's most challenging problems? If so, lets talk. Your Role And Responsibilities The Security Analyst monitors security events from the various SOC entry channels (SIEM, Tickets, Email and Phone), based on the security event severity, escalate to managed service support teams, tier2 information security specialists, and/or customer as appropriate to perform further investigation and resolution. Good knowledge of SIEM, SIEM Architecture, SIEM health check. Audit the SIEM in the customer environment. Troubleshoot issues regarding SIEM and other SOC tools. Good verbal/written communication skills. Build of use case for the customer. Data archiving and backup and data purging configuration as per need and compliance. Raising change management tickets for SOC Administration activities like Patch upgrade for SIEM, onboarding log sources etc. Helping L3 and L1 with required knowledge base details and basic documentations. Co-ordination SOC Monitoring team for troubleshooting issues and highlighting them to clients for further resolution and escalation. High ethics, ability to protect confidential information. Troubleshooting at device and connector/agent end to fix the anomaly reported by other team and observed on day to day basis. Building of incident reports, advisories and review if SLA has been met for Incident alerting and Incident closure. Update and maintain SOC knowledge base for new security incidents and docs. Creation of daily status report sheet and submit to SOC manager for review. Review advisories and make necessary detection measures. Provide analysis and trending of security log data from a large number of security devices. Troubleshooting non-reporting devices fix and maintain device status. Working with OEM (Tool support) in a way to resolve the issue or incident raised. Administration of Windows and Unix servers. Ready to work on 24/7 shifts to support client requirement. Preferred Education Bachelor's Degree Required Technical And Professional Expertise 2 Years of Experience in SOC monitoring and investigation. Audit the SIEM in the customer environment. Troubleshoot issues regarding SIEM and other SOC tools. Build of use case for the customer. Data archiving and backup and data purging configuration as per need and compliance. Helping L3 and L1’s with required knowledge base details and basic documentations. Co-ordination with SOC Monitoring team for troubleshooting issues and highlighting them to clients for further resolution and escalation. Troubleshooting at device and connector/agent end to fix the anomaly reported by other team and observed on day to day basis. Building of incident reports, advisories and review if SLA has been met for Incident alerting and Incident closure. Update and maintain SOC knowledge base for new security incidents and docs. Creation of daily status report sheet and submit to SOC manager for review. Review advisories and make necessary detection measures.\ Provide analysis and trending of security log data from a large number of security devices. Troubleshooting non-reporting devices fix and maintain device status. Working with OEM (Tool support) in a way to resolve the issue or incident raised. Administration of Windows and Unix servers. Building Parser for the SIEM using regex. Preferred Technical And Professional Experience Escalation point for L1’s and SOC Monitor team. Ability to drive call and summarizing it post discussion. Good Understanding of Firewall, IDP/IPS, SIEM functioning (Generalize HLD as well as LLD). Deep understanding on Windows, DB, Mail cluster, VM and Linux commands. Knowledge of network protocols TCP/IP and ports. Team Spirit and working ideas heading to resolution of issues. Qualifications like CISA, CISM, CISSP, CEH, SANS or any other recognized qualification in Cybersecurity (SIEM/Qradar certification) will be preferred. Thorough knowledge in SIEM tool and experience in networking, Cloud security experience will be preferred. SOC Senior Analyst experience with multiple customers.

Job requisition ID :: 86283 Date: Jul 21, 2025 Location: Bhubaneswar CEC Designation: Consultant Entity: Deloitte Touche Tohmatsu India LLP Your potential, unleashed. India’s impact on the global economy has increased at an exponential rate and Deloitte presents an opportunity to unleash and realize your potential amongst cutting edge leaders, and organizations shaping the future of the region, and indeed, the world beyond. At Deloitte, your whole self to work, every day. Combine that with our drive to propel with purpose and you have the perfect playground to collaborate, innovate, grow, and make an impact that matters. The team Technology & Transformation is about much more than just the numbers. It’s about attesting to accomplishments and challenges and helping to assure strong foundations for future aspirations. Deloitte exemplifies what, how, and why of change so you’re always ready to act ahead. Learn more about Technology & Transformation Practice What impact will you make? Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure, vigilant, and resilient—not only by looking at how to prevent and respond to attacks, but at how to manage cyber risk in a way that allows you to unleash new opportunities. Embed cyber risk at the start of strategy development for more effective management of information and technology risks. Work you’ll do Lead client engagements and provide strategic guidance on OT/ICS security initiatives. Participate in OT incident response activities, including investigation, analysis, and mitigation of security incidents in the OT environment. Oversee the monitoring and detection of security threats and incidents in the OT environment, ensuring timely response and resolution. Establish trusted advisor relationships with key client stakeholders, including C-level executives, OT managers, and IT security teams. Lead and mentor a team of OT security professionals, providing guidance, support, and professional development opportunities. Conduct regular assessments and audits of OT security controls, identifying gaps and recommending remediation measures. Conduct Passive Vulnerability testing for OT environment Conduct Risk Assessment and gap assessment in OT environment Foster a culture of collaboration, innovation, and continuous learning within the team. Contribute to the development of the OT/ICS cybersecurity practice within the firm, including thought leadership, methodologies, and service offerings. Identify market trends, emerging technologies, and regulatory developments in the OT/ICS cybersecurity space. Collaborate with firm leadership to develop go-to-market strategies and business development initiatives. Manage complex OT/ICS cybersecurity projects from initiation to closure, ensuring quality, timeliness, and client satisfaction. Develop project plans, budgets, and resource allocations to meet project objectives and deliverables. Monitor project progress, identify risks and issues, and implement mitigation strategies as needed. Provide subject matter expertise on OT/ICS cybersecurity technologies, standards, and best practices. Develop and implement cybersecurity controls and solutions to mitigate risks and protect critical infrastructure. Assist clients in developing and implementing governance frameworks, policies, and procedures to manage OT/ICS cybersecurity risks. Deliver client presentations, workshops, and training sessions on OT/ICS cybersecurity topics. Contribute to thought leadership activities, including whitepapers, articles, and conference presentations. Participate in industry forums, working groups, and conferences to share insights and best practices. Ensure compliance with relevant OT/ICS cybersecurity regulations, standards, and frameworks (e.g., NERC CIP, IEC 62443). Lead pursuit qualification, proposals, response and closing of opportunities. The key skills required are as follows: Lead and manage the OT SOC team, providing guidance, direction, and mentorship to analysts and engineers. Knowledge of advanced persistent threats, malware, emerging threats as well as experience in a large corporate environment. Risk Advisory Cyber Risk Strong understanding of malware analysis, threat taxonomy and threat indicators Ability to work with multiple security technologies, platforms including SIEMs, IDS /IPS, Firewalls, Web application firewalls etc. Hands on experience for configuration and working on tools as Claroty, Tenable, Nazomi Extensive experience in Pre-Sales, Security outsourcing, Marketing and Alliances Experience of assessment / implementation of OT Security controls basis various standard such as NIST, ISO 27001, NERC CIP and IEC 62443 etc. Understanding of various OT security architectures and ability to review the same. In-depth knowledge of OT protocols, technologies, and systems, including SCADA, PLCs, DCS, and HMI. Hand-on experience of working on OT Technologies such as SIEMENS, Yokogawa, Honeywell, Rockwell etc. Experience with OT security tools and technologies, such as SIEM, IDS/IPS, firewall, and endpoint protection. Excellent communication and interpersonal skills, with the ability to effectively communicate technical concepts to non-technical audiences. Qualifications 1.B.Tech / BE / M.Tech / MCA /MBA/MS 2.Preferred: GISCP and IEC 62443 3.Desirable: CISSP and CISM Your role as a leader At Deloitte India, we believe in the importance of leadership at all levels. We expect our people to embrace and live our purpose by challenging themselves to identify issues that are most important for our clients, our people, and for society and make an impact that matters. Risk Advisory Cyber Risk In addition to living our purpose, Associate Director across our organization: Identifies and embraces our purpose and values and puts these into practice in their professional life Develops self by actively seeking opportunities for growth, shares knowledge and experiences with others, and acts as a strong brand ambassador Seeks opportunities to challenge self; teams with others across businesses and borders to deliver and takes accountability for own and team results Builds relationships and communicates effectively in order to positively influence peers and other stakeholders Understands objectives for clients and Deloitte, aligns own work to objectives and sets personal priorities How you’ll grow At Deloitte, our professional development plan focuses on helping people at every level of their career to identify and use their strengths to do their best work every day. From entry-level employees to senior leaders, we believe there’s always room to learn. We offer opportunities to help build world-class skills in addition to hands-on experience in the global, fast-changing business world. From on-the-job learning experiences to formal development programs at Deloitte University, our professionals have a variety of opportunities to continue to grow throughout their career. Explore Deloitte University, The Leadership Center. Benefits At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you. Our purpose Deloitte is led by a purpose: To make an impact that matters. Every day, Deloitte people are making a real impact in the places they live and work. We pride ourselves on doing not only what is good for clients, but also what is good for our people and the communities in which we live and work—always striving to be an organization that is held up as a role model of quality, integrity, and positive change. Learn more about Deloitte's impact on the world

Open for multiple locations : NCR , Bangalore , Hyderabad & Mumbai Job Summary: We are seeking a highly motivated and experienced Mergers & Acquisitions (M&A) Security Manager to lead the security assessment and integration of acquired entities. This role will be responsible for end-to-end security due diligence, risk identification, and execution of cybersecurity integration strategies to ensure secure onboarding of acquired businesses into our technology and security ecosystem. Roles & responsibilities: Work with Merger and Acquisition function and support cybersecurity due diligence assessments on target acquisitions to determine the target's cybersecurity posture. Develop and deliver comprehensive security due diligence reports highlighting risks, remediation plans, and recommendations for executive stakeholders. Monitor integration progress from a security perspective after successful acquisition and provide necessary support through regular collaboration with the Integration Management Office (IMO), corporate IT, business, and IT of the acquired entity. Collaborate cross-functionally with corporate, legal, IT, and business teams to address cybersecurity risks during due diligence and post-acquisition phases. Implement sustained governance to ensure risks from the acquired ecosystem remain within Genpact’s IT risk appetite. Identify and prioritize security gaps, oversee remediation planning, and track closure of identified risks for acquired ecosystems. Manage third-party security assessments, penetration testing, and vulnerability assessments for acquired applications and Infrastructure. Technical Skill: Elementary knowledge of security tools such as cloud security posture management (CSPM), security information and event management (SIEM), endpoint detection and response (EDR), and vulnerability assessment (VA) etc. Possess foundational knowledge of cloud infrastructure and cloud security principles, ensuring effective management and protection of cloud-based environments. Have experience in conducting comprehensive security assessments and risk analysis to identify vulnerabilities and develop mitigation strategies. Relevant certifications (e.g., CISSP, CISM, CISA, CCSP) preferred.

Dear Cybersecurity Professionals, We are thrilled to invite you to our upcoming AI in Cybersecurity User Group activity , happening on 26th July in Chennai . This is an excellent opportunity to connect, learn, and exchange insights on how AI is revolutionizing the cybersecurity landscape. Highlights of the event: Expert talks on AI-driven cybersecurity solutions Real-world case studies and practical insights Networking with industry peers and thought leaders Interactive sessions to discuss challenges & best practices Please note: Seats are strictly limited , and registrations will be accepted on a first-come, first-served basis. Date: 26th July 2025 Time: 10:30 AM 12:30 PM Location: Chennai (venue details will be shared upon confirmation) If youre interested in joining, please reply to this email or register through below link at the earliest to secure your spot. https://forms.cloud.microsoft/r/Qc57BKrBmQ Looking forward to your participation in building a vibrant AI in cybersecurity community!

Job Title: Cyber Security Analyst Location: Noida Sec 63 Job Type: Full Time Shift: Day Min Experience Required: 1-2 Year Salary: As per industry standards Job Summary: We are seeking a skilled and proactive Cyber Security Analyst to join our team and help protect our organization’s digital infrastructure. The ideal candidate will monitor systems, assess potential threats, and respond to incidents to maintain a secure IT environment. Key Responsibilities: Monitor security tools and dashboards to detect and respond to threats in real time Analyze security incidents and perform root cause analysis Conduct vulnerability assessments and risk analysis on networks, systems, and applications Implement and maintain security measures including firewalls, antivirus, and intrusion detection systems (IDS/IPS) Manage security audits and compliance reviews Develop and enforce security policies and procedures Stay up to date with the latest cybersecurity trends, threats, and technology Assist in disaster recovery and business continuity planning Collaborate with IT and development teams to ensure best practices in system security Required Skills & Qualifications: Bachelor's degree in Cyber Security, Computer Science, IT, or a related field Proven experience as a Cyber Security Analyst or similar role Strong understanding of network protocols, firewalls, and threat landscapes Experience with SIEM tools, endpoint protection, and vulnerability scanners Knowledge of data privacy regulations (e.g., GDPR, ISO 27001, etc.) Excellent analytical, problem-solving, and communication skills Relevant certifications preferred (e.g., CEH, CompTIA Security+, CISSP, etc.) Preferred Attributes: Critical thinker with attention to detail Proactive attitude towards continuous learning Strong team player with the ability to work under pressure Comfortable working in [mention if night shifts or rotational shifts are required Please share resume at savita.singh@rcvtechnologies.com Job Type: Full-time Pay: ₹20,000.00 - ₹40,000.00 per month Benefits: Commuter assistance Health insurance Leave encashment Life insurance Provident Fund Application Question(s): On-site Emmidiate Joiner Only Face to face interview only Minimum 1-2 years experience is required Experience: Cyber Security : 1 year (Required) Location: Noida, Uttar Pradesh (Required) Work Location: In person

About The Opportunity We are a high-growth technology leader in the Cloud Security and Cybersecurity sector, specializing in designing and implementing cutting-edge security frameworks for cloud infrastructures. Operating in India on an on-site basis, our team is dedicated to delivering robust security solutions that protect critical data and ensure compliance with global industry standards. Role & Responsibilities Design and implement secure cloud architectures across multi-cloud and hybrid environments. Collaborate with cross-functional teams to integrate security best practices into cloud deployments and applications. Monitor and respond to security incidents, performing risk assessments and threat modeling. Develop and enforce security policies and procedures to meet regulatory requirements and industry standards. Continuously evaluate and enhance security automation tools and SIEM solutions. Mentor junior engineers and contribute to developing a culture of security awareness and excellence. Skills & Qualifications Must-Have Bachelor’s degree in Computer Science, Information Technology, or a related field, with 3+ years of hands-on cloud security engineering experience. Proven experience with major cloud platforms (AWS, Azure, Google Cloud) and implementing enterprise-grade security solutions. Deep understanding of cybersecurity protocols, regulatory frameworks (e.g., NIST, ISO 27001), and risk assessment methodologies. Proficiency in network security, identity and access management, and encryption technologies. Preferred Professional certifications such as CISSP, CCSP, or AWS/Azure Security certifications. Experience with security automation, SIEM tools, and vulnerability scanning techniques. Benefits & Culture Highlights Work on-site in a dynamic and innovative environment in India, collaborating with industry experts. Access to continuous professional development programs and a supportive, forward-thinking culture. Competitive compensation along with comprehensive rewards and benefits packages. If you are passionate about safeguarding cloud environments and eager to drive impactful security solutions, we encourage you to apply and join our transformative journey in the realm of cloud security. Skills: risk assessment,siem,aws,risk,regulatory frameworks,google cloud,identity and access management,access,encryption technologies,cloud security,network security,risk assessment methodologies,vulnerability scanning techniques,azure,siem tools,incident response,security automation,security,automation,cybersecurity protocols,cloud security engineering,cloud

Role Description Identity Architecture & Engineering Design and deploy scalable IAM solutions (SSO, MFA, RBAC). Manage identity lifecycle: onboarding, offboarding, access reviews, and certification. Integrate IAM with enterprise apps, cloud platforms (Azure AD, AWS IAM), and third-party services. Security Operations & Automation Develop automation for identity provisioning, de-provisioning, and access governance. Implement and manage Privileged Access Management (PAM) tools. Enforce least-privilege access as part of Zero Trust Architecture. Monitoring, Detection & Incident Response Monitor identity events via SIEM and analytics tools. Investigate incidents and access violations; lead remediation efforts. Perform root cause analysis and apply corrective measures. Compliance & Governance Ensure compliance with GDPR, PCI-DSS, ISO 27001, and other standards. Maintain audit trails, access logs, and documentation for audits. Support risk assessments, policy development, and security training. Collaboration & Continuous Improvement Collaborate with DevOps, IT, and Security to embed IAM in CI/CD pipelines. Mentor junior staff and promote security best practices. Stay updated on emerging identity security trends and threats. Required Qualifications Handson experience in IAM, cybersecurity, or related engineering roles. Expertise in IAM protocols: SAML, OAuth2, OpenID Connect, LDAP, SCIM. Hands-on with Azure AD, Active Directory, AWS IAM, or GCP IAM. Experience with PAM tools like CyberArk, BeyondTrust, or HashiCorp Vault. Proficient in scripting/automation (PowerShell, Python, etc.). Strong knowledge of Zero Trust principles and identity governance. Skills IAM

Desired Skill sets & requirement B.E./B.Tech/ MCA ( profile expects min 12-15 yrs of experience in which 10+ yrs experience requested for PM ) In managingand implementing large multilocation IT Network Projects Experience of implementing end to end Projects in PSU/ Government Bodies/ Autonomous Organizations (Under any Indian Governmentlaw) in India. Certifications: PMP / Prince2 Certification (Ifcertified better). Technical Certification: Vmware, Openstack, OperatingSystem Proficientin Windows/Linux systems and virtualization technologies with strong technicalunderstanding of Linux OS, storage, Networkand backup solutions. . Experienced inpublic and private cloud environments, with exposure to firewalls, proxies,IDS/IPS, SIEM, DDoS protection, and Zscaler. . Familiarwith MPLS, and ILL, ensuring robust enterprise connectivity and communication. . Familiar withInfoSec trends, enabling effective positioning of security solutions forcustomers. Strong analytical mindsetwith proven ability to troubleshoot and resolve complex technical issuesefficiently. Excellentlogical reasoning to assess technical issues. CapacityManagement for customer infrastructure and services. RiskIdentification and tracking for Customer infra Leadingcustomer calls and getting into conclusion on the purpose of the call. Abilityto audit customer infrastructure and suggest improvements. Abilityto forecast churn and upgrades for account base. Abilityto tailor message formats and contents to the audience and get heard. Abilityto manage multiple initiatives simultaneously. Comfortabledealing with complex customer relationships, decision processes and competingagendas Abilityto travel for customer meeting/service reviews or Resident On site at CustomerPlace . The standard working hours are from09:30 am to 06:30 pm, Flexibility may be required to accommodate projectdeadlines.

The ideal candidate will be responsible for driving the company's key performance indicators by delivering an exceptional in-store experience. In order to do this, the candidate will build and train an effective team, and effectively incorporate business trends and customer feedback into the training of employees. Job Responsibilities : - Manage alarm events and patrol queues for the team - Build sustainable relationships and trust with internal teams through open and interactive communication - Provide accurate, valid and complete information by using the right methods/tools - Handle escalations and incidents reported in a timely manner - Accumulate and provide data reports on a daily/monthly/annually basis - Follow communication procedures, guidelines and policies Requirements and skills : - Working experience of 2-4 years minimum - Proven experience in Security domain for product support - Excellent verbal and written communication skills and presentation skills - Hands-on experience with SIEM tool - Strong expertise in Incident Response and Incident Management - Ability to lead and guide the SOC team in addressing and resolving security incidents - High school diploma or bachelor’s degree is a must

Job Title: SOC Manager / Senior Manager Location: Gurgaon / Bangalore Experience: 6+ Years Position Type: Full-time Immediate Joiners Preferred Job Description: We are looking for an experienced SOC Manager / Senior Manager to lead and mature our Security Operations Center. The candidate will be responsible for managing SOC teams, overseeing security operations, driving incident response, and working with senior leadership and clients to enhance security postures. Key Responsibilities: Lead the SOC team including analysts and incident responders Design and implement SOC strategy, processes, and automation workflows Oversee SIEM tuning, threat intelligence, and use-case development Manage end-to-end incident response lifecycle and post-incident reviews Coordinate with stakeholders across IT, compliance, and management functions Prepare executive reports and dashboards on SOC performance Ensure adherence to cybersecurity regulations and standards (ISO 27001, NIST, etc.) Mentor team members and promote continuous improvement and upskilling Required Skills: 6+ years of experience in cybersecurity with at least 3+ years in a leadership SOC role Proven experience with SIEM/SOAR platforms, EDR, UEBA, and threat intelligence tools Deep understanding of threat detection, incident response, and security analytics Experience managing 24x7 operations or large-scale SOC environments Strong client-facing and stakeholder management experience Ability to lead cross-functional teams and communicate with executive leadership Certifications (Preferred): CISSP / CISM / OSCP / GCIA / GCIH / SC-100 or equivalent