49 Soar Automation Jobs

About the Role: We are seeking a skilled and innovative Security Automation Engineer to design, develop, and maintain automated solutions that strengthen our security posture, improve operational efficiency, and accelerate threat detection and response. Key Responsibilities: Security Automation & Orchestration Design, implement, and manage security automation workflows using SOAR (Security Orchestration, Automation, and Response) platforms (e.g., Splunk SOAR, Cortex XSOAR, Swimlane, Tines). Develop custom scripts and integrations to automate repetitive security tasks such as incident triage, enrichment, containment, and remediation. Build API-based integrations across diverse security and IT...

___________________________________________________________________________ - PLEASE SAVE WHATSAPP # +91 98114 11414 (Ashima)/ 9315248639 (Nishant) - Ashima/ Nishant/Shreedevi is your POC from RexOreo Pvt Ltd. -Queries : All emails will come from id : team@rexoreo.com , so please keep an eye. _____________________________________________________________________________ Top Selection & Auto Elimination Criteria: Only Immediate joiners (0-30 days) Candidates Exprienced & Expert in ALL skills mentioned in " Must-Have Technical Skills " below in JD Need to apply Mode : 4 days work from Office , 1 day WFH Relevant experiense range 10+ Years Position : L3 /L4 SOC Architect / Sr. SIEM Engineer Expe...

Job Title: SOC Engineering - Product & Automation Job Description We are looking for a SOC Product & Automation Engineer to join our CDOC Engineering team. The role will focus on SIEM engineering and SOAR automation, with hands-on expertise in Palo Alto XSIAM and XSOAR. You'll design and optimize automation playbooks, build SIEM detections, and work closely with MSS SOC and clients to deliver scalable, efficient security operations. Job Title: SOC Product & Automation Engineer Location: On-site - Gurgaon, Cyber City Experience Required: 4-5 years Department: CDOC Engineering Role Overview We are seeking a skilled SOC Product & Automation Engineer with 4-5 years of experience in SIEM engineer...

Role Overview: You will be joining the Expedia Group Security Engineering & Technology team as a Security Engineer, where you will be responsible for designing, implementing, and deploying innovative security solutions. Your role will involve maintaining, monitoring, and improving systems and security posture, automating workflows, leading solutions development, and collaborating with cross-functional teams to solve complex problems. Key Responsibilities: - Design, implementation, and Deployment of innovative security solutions - Proactively maintain, monitor, and improve systems and security posture with a focus on service excellence - Automating workflows to reduce time to resolve or time ...

About the Role: We are looking for a skilled Security Automation Engineer to design, develop, and implement automated security solutions that enhance our organizations security posture. You will collaborate with security operations, development, and infrastructure teams to automate threat detection, incident response, vulnerability management, and compliance processes. Your work will help reduce manual efforts, improve response times, and ensure consistent security enforcement. Key Responsibilities: Design, develop, and maintain security automation workflows and playbooks using scripting and automation tools. Integrate security tools (SIEM, SOAR, IDS/IPS, endpoint security) into automated de...

Job Description The Opportunity Based in Hyderabad, join a global healthcare biopharma company and be part of a 130- year legacy of success backed by ethical integrity, forward momentum, and an inspiring mission to achieve new milestones in global healthcare. Be part of an organisation driven by digital technology and data-backed approaches that support a diversified portfolio of prescription medicines, vaccines, and animal health products. Drive innovation and execution excellence. Be a part of a team with passion for using data, analytics, and insights to drive decision-making, and which creates custom software, allowing us to tackle some of the world's greatest health threats. Our Technol...

Bloom Energy, a solid oxide fuel cell company, is currently expanding its cybersecurity incident monitoring and response team and is looking for Security Operations Center (SoC) Analysts. The person working in the SOC team operates the security monitoring solutions, reacting timely to security events as identified. This individual should be a dynamic professional who is looking for a rewarding future in one of todays most exciting security technologies Roles: As our Security Engineer and SOC Operations Analyst, you will be part of a SOC team and cover broad aspects of Bloom Energy Security Engineering, Cyber Security monitoring and incident response operations. Working closely with SOC Manag...

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Information and Event Management (SIEM) Good to have skills : NA Minimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve col...

Key Responsibilities 1. Security Operations & Monitoring Manage and monitor Endpoint security, EDR (Crowdstrike), SIEM, and SOAR platforms for threat detection, correlation, and automated response. Create and design Rule , Policies and Paybooks, manage SoC operation Conduct threat hunting exercises using MITRE ATT&CK framework and CVE intelligence. Manage and monitor Data Loss Prevention (DLP) solutions, endpoint protection, and log monitoring tools. Analyze suspicious activity, perform incident response, root cause analysis, and prepare post-incident reports. 2. Vulnerability & Risk Management Perform Vulnerability Assessment and Penetration Testing (VAPT) on applications, networks, and inf...

Role & responsibilities Should have minimum 4+ years of experience in managing and operating Palo Alto XSIAM Log Source Onboarding : Onboard and troubleshoot log sources (on-premises and cloud) to the XSIAM platform using syslog, APIs, and other mechanisms. Ensure data integrity, reliability, and proper formatting. Log Management: Hands-on experience with log collection, parsing, and analysis from various sources (e.g., firewalls, endpoints, cloud environments). Strong defensive mindset with understanding of security events of interest for building detection rules Good in query languages like XQL . Advanced threat intelligence with the help of XQL. Should have advanced knowledge on use case ...

____________________________________________________________________________ - PLEASE SAVE WHATSAPP # +91 98114 11414 (Ashima)/ 9315248639 (Nishant) - Ashima/ Nishant/Shreedevi is your POC from RexOreo Pvt Ltd. -Queries : All emails will come from id : team@rexoreo.com , so please keep an eye. _____________________________________________________________________________ Top Selection & Auto Elimination Criteria: Only Delhi NCR Candidates Need to apply as we need Only Immediate joiners (0-30 days) Rotational Shift Cab facility : Yes only late night pick or drop(1 side only for Gurgaon Employees) Location : Gurgaon Mode : 5 days work from Office only Relevant experience range 9+ Position : L3 ...

How you'll make an impact Experience of implementation and development of SOAR solutions like Swimlane, Cortex XSOAR, Tines, devo, Exabeam SOAR, Splunk SOAR etc The primary purpose of this role is to act as the orchestration strategist in identifying incident response activity where mitigating controls would be automated. This is accomplished in a four pronged approach: Identify mitigating controls through repetitive manual processes within the SOC Analyst community that complies with client security policy and industry best practices In concert with Data Scientists, within the "Proactive Hunting" process, translate complex, and non-complex Incident Response event patterns into an automated ...

Senior SOAR Developer Location : Hyderabad Position Summary We are seeking a highly skilled and experienced Senior SOAR Developer to join our cybersecurity team. This role is crucial for advancing our security posture through the development and maintenance of automated security workflows and playbooks. The ideal candidate will have extensive experience with SOAR platforms, a deep understanding of the security domain, and expert-level proficiency in Python. This is a technical leadership role that requires both hands-on development and the ability to mentor and collaborate with other security professionals. Key Responsibilities SOAR Development & Engineering : Design, develop, and maintain a...

* Responsible for implementation partner to see project on track along with providing required reports to management and client * Handle the project as well as BAU operations while ensuring high level of systems security compliance * Coordinate with and act as an authority to resolve incidents by working with other information security specialists to correlate threat assessment data. * Analyse data, such as logs or packets captures, from various sources within the enterprise and draw conclusions regarding past and future security incidents. * Ready to support for 24/7 environment. Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional exp...

WHO WE ARE: Zinnia is the leading technology platform for accelerating life and annuities growth. With innovative enterprise solutions and data insights, Zinnia simplifies the experience of buying, selling, and administering insurance products. All of which enables more people to protect their financial futures. Our success is driven by a commitment to three core values: be bold, team up, deliver value and that we do. Zinnia has over $180 billion in assets under administration, serves 100+ carrier clients, 2500 distributors and partners, and over 2 million policyholders. WHO YOU ARE: As a Senior Cloud Security Engineer , you will leverage your development, security and architecture experienc...

Level: L2 Monitor and triage alerts from CrowdStrike Falcon and Microsoft Defender for Endpoint Investigate suspicious endpoint behavior and perform root cause analysis (RCA) Isolate and quarantine compromised endpoints, blacklist malicious indicators, and escalate complex threats to L3 Fine-tune EDR policies to reduce false positives and improve detection accuracy Perform regular policy reviews and implement configuration changes based on threat trends Coordinate with OEMs for technical support and version upgradesGenerate daily, weekly, and monthly reports on endpoint security posture Maintain SOPs, runbooks, and incident logs for audit and compliance Contribute to CXO dashboards and real-...

Level: L2 Monitor and triage alerts from CrowdStrike Falcon and Microsoft Defender for Endpoint Investigate suspicious endpoint behavior and perform root cause analysis (RCA) Isolate and quarantine compromised endpoints, blacklist malicious indicators, and escalate complex threats to L3 Fine-tune EDR policies to reduce false positives and improve detection accuracy Perform regular policy reviews and implement configuration changes based on threat trends Coordinate with OEMs for technical support and version upgradesGenerate daily, weekly, and monthly reports on endpoint security posture Maintain SOPs, runbooks, and incident logs for audit and compliance Contribute to CXO dashboards and real-...

Level: L2 Monitor and triage alerts from CrowdStrike Falcon and Microsoft Defender for Endpoint Investigate suspicious endpoint behavior and perform root cause analysis (RCA) Isolate and quarantine compromised endpoints, blacklist malicious indicators, and escalate complex threats to L3 Fine-tune EDR policies to reduce false positives and improve detection accuracy Perform regular policy reviews and implement configuration changes based on threat trends Coordinate with OEMs for technical support and version upgradesGenerate daily, weekly, and monthly reports on endpoint security posture Maintain SOPs, runbooks, and incident logs for audit and compliance Contribute to CXO dashboards and real-...

Level: L2 Monitor and triage alerts from CrowdStrike Falcon and Microsoft Defender for Endpoint Investigate suspicious endpoint behavior and perform root cause analysis (RCA) Isolate and quarantine compromised endpoints, blacklist malicious indicators, and escalate complex threats to L3 Fine-tune EDR policies to reduce false positives and improve detection accuracy Perform regular policy reviews and implement configuration changes based on threat trends Coordinate with OEMs for technical support and version upgradesGenerate daily, weekly, and monthly reports on endpoint security posture Maintain SOPs, runbooks, and incident logs for audit and compliance Contribute to CXO dashboards and real-...

Level: L2 Monitor and triage alerts from CrowdStrike Falcon and Microsoft Defender for Endpoint Investigate suspicious endpoint behavior and perform root cause analysis (RCA) Isolate and quarantine compromised endpoints, blacklist malicious indicators, and escalate complex threats to L3 Fine-tune EDR policies to reduce false positives and improve detection accuracy Perform regular policy reviews and implement configuration changes based on threat trends Coordinate with OEMs for technical support and version upgradesGenerate daily, weekly, and monthly reports on endpoint security posture Maintain SOPs, runbooks, and incident logs for audit and compliance Contribute to CXO dashboards and real-...

Job description: Job Title: SOAR Automation Engineer Location: Delhi, India Experience: 2-5 years Employment Type: Full-Time Joining: Immediate Job Summary: We are seeking a skilled SOAR Automation Engineer to enhance our cybersecurity operations through automation and orchestration. The ideal candidate will have hands-on experience in SOAR platforms, strong programming expertise, and the ability to develop and optimize playbooks for threat detection and incident response. If you're ready to contribute immediately to cutting-edge security automation, we want you on our team! Key Responsibilities: Develop, customize, and implement SOAR automation workflows using platforms like XSOAR, Google S...

Job Title: Security Operations Centre (SOC) Manager/Head Department: Security Command Centre Reports To: Director Location: Goregaon West, Mumbai Job Type: Full-Time, 24x7 Job Summary: We are seeking an experienced and strategic SOC Manager to lead our Security Operations Center. The ideal candidate will oversee daily operations of the SOC, manage a team of analysts and engineers, develop threat detection and incident response strategies, and ensure the organization's cybersecurity posture is proactively monitored and defended 24/7. Key Responsibilities: SOC Leadership & Management Lead, mentor, and manage the SOC team (L1, L2, L3 analysts and threat hunters). Define and enforce SOC operatio...

Job Description: Configure, deploy, and maintain the organization's SIEM platform to ensure optimal performance and functionality. Develop and customize SIEM rules, filters, and alerts to meet specific security monitoring and compliance requirements. Collaborate with IT teams to onboard new data sources and integrate logs into the SIEM platform for comprehensive threat detection. Generate and present regular and ad-hoc reports on SIEM performance, security incidents, and compliance status to stakeholders and management. Stay updated on emerging cybersecurity threats, vulnerabilities, and industry best practices to enhance SIEM capabilities and proactive defense strategies. Participate in inc...

Your potential, unleashed. Indias impact on the global economy has increased at an exponential rate and Deloitte presents an opportunity to unleash and realise your potential amongst cutting edge leaders, and organisations shaping the future of the region, and indeed, the world beyond. At Deloitte, your whole self to work, every day. Combine that with our drive to propel with purpose and you have the perfect playground to collaborate, innovate, grow, and make an impact that matters. The team Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure, vigilant, and resilientnot only by looking at how to prevent and respond to attacks, but at how ...

Who We Are At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl We are always moving forward - always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities. The Role Kyndryl's Security & Resiliency is one of our most critical practices, ensuring enterprises, regardless of their size and complexity, remain secure, available, reliable, and resilient. We take Cybersecurity seriously. We're not just invested we're committed. We're not just protecting data we're empowering. Kyndryl is committed to making the worl...