59 Soar Automation Jobs - Page 2

Level: L2 Monitor and triage alerts from CrowdStrike Falcon and Microsoft Defender for Endpoint Investigate suspicious endpoint behavior and perform root cause analysis (RCA) Isolate and quarantine compromised endpoints, blacklist malicious indicators, and escalate complex threats to L3 Fine-tune EDR policies to reduce false positives and improve detection accuracy Perform regular policy reviews and implement configuration changes based on threat trends Coordinate with OEMs for technical support and version upgradesGenerate daily, weekly, and monthly reports on endpoint security posture Maintain SOPs, runbooks, and incident logs for audit and compliance Contribute to CXO dashboards and real-...

Level: L2 Monitor and triage alerts from CrowdStrike Falcon and Microsoft Defender for Endpoint Investigate suspicious endpoint behavior and perform root cause analysis (RCA) Isolate and quarantine compromised endpoints, blacklist malicious indicators, and escalate complex threats to L3 Fine-tune EDR policies to reduce false positives and improve detection accuracy Perform regular policy reviews and implement configuration changes based on threat trends Coordinate with OEMs for technical support and version upgradesGenerate daily, weekly, and monthly reports on endpoint security posture Maintain SOPs, runbooks, and incident logs for audit and compliance Contribute to CXO dashboards and real-...

Level: L2 Monitor and triage alerts from CrowdStrike Falcon and Microsoft Defender for Endpoint Investigate suspicious endpoint behavior and perform root cause analysis (RCA) Isolate and quarantine compromised endpoints, blacklist malicious indicators, and escalate complex threats to L3 Fine-tune EDR policies to reduce false positives and improve detection accuracy Perform regular policy reviews and implement configuration changes based on threat trends Coordinate with OEMs for technical support and version upgradesGenerate daily, weekly, and monthly reports on endpoint security posture Maintain SOPs, runbooks, and incident logs for audit and compliance Contribute to CXO dashboards and real-...

Level: L2 Monitor and triage alerts from CrowdStrike Falcon and Microsoft Defender for Endpoint Investigate suspicious endpoint behavior and perform root cause analysis (RCA) Isolate and quarantine compromised endpoints, blacklist malicious indicators, and escalate complex threats to L3 Fine-tune EDR policies to reduce false positives and improve detection accuracy Perform regular policy reviews and implement configuration changes based on threat trends Coordinate with OEMs for technical support and version upgradesGenerate daily, weekly, and monthly reports on endpoint security posture Maintain SOPs, runbooks, and incident logs for audit and compliance Contribute to CXO dashboards and real-...

Level: L2 Monitor and triage alerts from CrowdStrike Falcon and Microsoft Defender for Endpoint Investigate suspicious endpoint behavior and perform root cause analysis (RCA) Isolate and quarantine compromised endpoints, blacklist malicious indicators, and escalate complex threats to L3 Fine-tune EDR policies to reduce false positives and improve detection accuracy Perform regular policy reviews and implement configuration changes based on threat trends Coordinate with OEMs for technical support and version upgradesGenerate daily, weekly, and monthly reports on endpoint security posture Maintain SOPs, runbooks, and incident logs for audit and compliance Contribute to CXO dashboards and real-...

Job description: Job Title: SOAR Automation Engineer Location: Delhi, India Experience: 2-5 years Employment Type: Full-Time Joining: Immediate Job Summary: We are seeking a skilled SOAR Automation Engineer to enhance our cybersecurity operations through automation and orchestration. The ideal candidate will have hands-on experience in SOAR platforms, strong programming expertise, and the ability to develop and optimize playbooks for threat detection and incident response. If you're ready to contribute immediately to cutting-edge security automation, we want you on our team! Key Responsibilities: Develop, customize, and implement SOAR automation workflows using platforms like XSOAR, Google S...

Job Title: Security Operations Centre (SOC) Manager/Head Department: Security Command Centre Reports To: Director Location: Goregaon West, Mumbai Job Type: Full-Time, 24x7 Job Summary: We are seeking an experienced and strategic SOC Manager to lead our Security Operations Center. The ideal candidate will oversee daily operations of the SOC, manage a team of analysts and engineers, develop threat detection and incident response strategies, and ensure the organization's cybersecurity posture is proactively monitored and defended 24/7. Key Responsibilities: SOC Leadership & Management Lead, mentor, and manage the SOC team (L1, L2, L3 analysts and threat hunters). Define and enforce SOC operatio...

Job Description: Configure, deploy, and maintain the organization's SIEM platform to ensure optimal performance and functionality. Develop and customize SIEM rules, filters, and alerts to meet specific security monitoring and compliance requirements. Collaborate with IT teams to onboard new data sources and integrate logs into the SIEM platform for comprehensive threat detection. Generate and present regular and ad-hoc reports on SIEM performance, security incidents, and compliance status to stakeholders and management. Stay updated on emerging cybersecurity threats, vulnerabilities, and industry best practices to enhance SIEM capabilities and proactive defense strategies. Participate in inc...

Your potential, unleashed. Indias impact on the global economy has increased at an exponential rate and Deloitte presents an opportunity to unleash and realise your potential amongst cutting edge leaders, and organisations shaping the future of the region, and indeed, the world beyond. At Deloitte, your whole self to work, every day. Combine that with our drive to propel with purpose and you have the perfect playground to collaborate, innovate, grow, and make an impact that matters. The team Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure, vigilant, and resilientnot only by looking at how to prevent and respond to attacks, but at how ...

Who We Are At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl We are always moving forward - always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities. The Role Kyndryl's Security & Resiliency is one of our most critical practices, ensuring enterprises, regardless of their size and complexity, remain secure, available, reliable, and resilient. We take Cybersecurity seriously. We're not just invested we're committed. We're not just protecting data we're empowering. Kyndryl is committed to making the worl...

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Information and Event Management (SIEM) Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve coll...

Role & responsibilities - Minimum 4 plus years of experience in application development using Python and Rest API. - Experience in managing any SOAR platforms (e.g. Palo Alto Cortex, Phantom, Resilient, Swimlane, etc.) -Experience in SOAR administration, playbook development/automation and life cycle management - Deploying and managing integration packages for various 3rd party tools/applications - Experience in trouble shooting integration issues and code customization. - Experience in developing integration solutions with web services, APIs using REST/JSON. - Ability to install and configure 3rd party applications in a Linux environment, experience in Unix/Linux administration - Understand...

About the Organisation DataFlow Group is a pioneering global provider of specialized Primary Source Verification (PSV) solutions, and background screening and immigration compliance services that assist public and private organizations in mitigating risks to make informed, cost-effective decisions regarding their Applicants and Registrants. About the Role: Dataflow is looking to hire a cyber security expert with rich experience leveraging TrendMicro Vision/XDR platform and AWS environment in security alerts triage, investigation and incident response to support on-prem devices and cloud assets remain protected from any security threats. The ideal candidate will have a strong understanding of...

* Responsible for implementation partner to see project on track along with providing required reports to management and client * Handle the project as well as BAU operations while ensuring high level of systems security compliance * Coordinate with and act as an authority to resolve incidents by working with other information security specialists to correlate threat assessment data. * Analyse data, such as logs or packets captures, from various sources within the enterprise and draw conclusions regarding past and future security incidents. * Ready to support for 24/7 environment. Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional exp...

Role & responsibilities Design and develop XSOAR playbooks to automate repetitive tasks in Security Operations. Integrate various security tools and data sources with XSOAR using APIs, custom integrations, and out-of-the-box connectors. Collaborate with SOC analysts, incident responders, and other cybersecurity teams to identify automation opportunities. Maintain and enhance existing playbooks based on feedback and evolving security requirements. Develop custom scripts (Python) and integrations as needed. Troubleshoot and resolve issues related to XSOAR integrations and playbooks. Document processes, playbooks, and integration procedures for knowledge sharing. Ensure automation workflows com...

Job Role : Cyber Security Engineer--Work From Office Experience : 4 to 8 Yrs Key Skills: Security tools integration and management, Onboarding, Log ingestion, writing rules and polices in Cloud Security/SIEM/EDR/Antivirus/XDR/MDR/SOAR tool/IPS & IDS Notice Period : 0 to 30 days Should be willing to work in Second shift Company: Cyber Towers, Quadrant 3, 3rd floor, Madhapur, Hyderabad -- 500081. Job Overview: They plan, implement, and maintain security measures, respond to security incidents, and identify vulnerabilities. Their roles vary depending on the specific area of security, such as network, application, or cloud security. Here's a more detailed breakdown of their responsibilities: Sec...

Your Role and Responsibilities* * Responsible for implementation partner to see project on track along with providing required reports to management and client * Handle the project as well as BAU operations while ensuring high level of systems security compliance * Coordinate with and act as an authority to resolve incidents by working with other information security specialists to correlate threat assessment data. * Analyse data, such as logs or packets captures, from various sources within the enterprise and draw conclusions regarding past and future security incidents. * Ready to support for 24/7 environment. Required education Bachelor's Degree Preferred education Master's Degree Require...

About BCE Global Tech BCE Global Tech is the technology engine for Bell Canada , North Americas leading communications company. As Bell’s Global Capability Center (GCC) in India, we are at the forefront of building next-gen software solutions that power digital transformation across telecom, media, and technology sectors. Our culture is built on innovation, inclusivity, and continuous learning, offering a dynamic environment where your ideas and skills truly matter. Why Join Us? Work on cutting-edge technologies like Generative AI, LangChain, and Agentic AI. Be part of a SAFe Agile environment with cross-functional squads. Access to learning sprints , mentorship, and career pathing framework...

Overall 3-6 years’ experience in network security with at least 3 years in managing SFTP •Proficiency with management SFTP Experience in working with Windows, Linux, Unix environments Hands-on experience in commissioning and Implementation of SFTP

About the Organisation DataFlow Group is a pioneering global provider of specialized Primary Source Verification (PSV) solutions, and background screening and immigration compliance services that assist public and private organizations in mitigating risks to make informed, cost-effective decisions regarding their Applicants and Registrants. About the Role: Dataflow is looking to hire a cyber security expert with rich experience leveraging TrendMicro Vision/XDR platform and AWS environment in security alerts triage, investigation and incident response to support on-prem devices and cloud assets remain protected from any security threats. The ideal candidate will have a strong understanding of...

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Information and Event Management (SIEM) Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with ...

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Endpoint Extended Detection and Response Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :We are seeking a Lead EDR Engineer with expertise in Microsoft Defender for Endpoint (MDE) to lead its implementation, administration, and incident response. As the MDE expert, you will manage enterprise-wide dep...

* Responsible for implementation partner to see project on track along with providing required reports to management and client * Handle the project as well as BAU operations while ensuring high level of systems security compliance * Coordinate with and act as an authority to resolve incidents by working with other information security specialists to correlate threat assessment data. * Analyse data, such as logs or packets captures, from various sources within the enterprise and draw conclusions regarding past and future security incidents. * Ready to support for 24/7 environment. Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional exp...

Industry - Leading NBFC. Designation - Senior Manager / AVP. Role - SOAR Admin. Location - Mumbai. Required Candidate profile Role: Minimum 6 years experience in designing, implementing and managing Security Orchestration, Automation, and Response (SOAR) solutions. Interested can share their CV - bhumika@rightmatch.co.in

Skill:- Cybersecurity,Azure Sentinel SIEM,MS Defender for Endpoints (EDR/ATP),AWS IAM,SOAR Concept,Fortinet FortiSOAR,Palo Alto Networks - Firewalls,Cortex XSOAR,Python. We are seeking a Cybersecurity Analyst with 1-6years of experience in fundamental cybersecurity concepts, including SIEM, EDR, IAM, and SOAR platforms. The ideal candidate should have a basic understanding of security automation and orchestration using platforms like FortiSOAR, Palo Alto XSOAR, and ThreatConnect (preferred). Experience with SOAR play book creation , integration etc. Additionally, knowledge of Python scripting for automation and security tasks will be an added advantage. Those who have relevant experience and...