544 Threat Detection Jobs

Job Summary As a Cyber Security Specialist you will play a critical role in safeguarding our organizations digital assets. With a focus on Cyber Threat Intelligence Services you will work to identify and mitigate potential threats. Your expertise in Cyber Security and Cloud along with experience in CrowdStrike will be essential in ensuring the security of our systems. This hybrid role offers the flexibility of working both remotely and on-site during day shifts. Responsibilities Lead the development and implementation of advanced cyber threat intelligence strategies to protect organizational assets. Oversee the monitoring and analysis of security threats using CrowdStrike and other advanced ...

As a SecOps Engineering Lead, you will play a pivotal role in defining and executing security automation strategies, driving cloud security initiatives, and leading security operations at scale. You will work at the intersection of Security, DevOps, and Cloud, embedding best-in-class security practices into infrastructure and applications. - Define and execute the security automation strategy, embedding best-in-class practices across DevSecOps, CI/CD pipelines, and cloud environments. - Architect, develop, and implement security solutions using Python to automate threat detection, response, and mitigation at scale. - Enhance and automate security workflows by integrating SIEM, SOAR, and EDR ...

As a Level 1 SOC Analyst with 3 to 5 years of experience, your role will involve expertise in Triage, Threat Detection and Response, Threat Hunting, and SOC Assessment. You should have proficiency in tools like Sentinel and Crowdstrike. Your responsibilities will include security event collection, monitoring, analysis, issue investigation, and incident response using automated SOAR tools. Real-time monitoring, data enrichment, event correlation, OS/application event analysis, and IOC-based threat hunting will be part of your daily tasks. You will also be involved in email analysis, investigation, and phishing detection. Key Responsibilities: - Perform incident workflow management, issue esca...

1) AI & Automation Lead SOC - Cyber Warfare/ Cyber Defense (7 Years+) The AI & Automation Lead is responsible for making Security Operations Centers (SOCs) smarter, faster, and more efficient using AI, GenAI, and automation technologies. The role focuses on improving incident response, meeting SLAs, and scaling security operations globally using platforms like Microsoft Sentinel, Azure Logic Apps, and Kyndryl Bridge . 2) SOC Lead (L3 Analyst & Shift Incident Manager - 7 Years+) The SOC Lead is a senior security expert who manages critical security incidents and leads SOC operations during their shift . This role ensures 247 security monitoring, effective incident response, smooth shift hando...

At EY, we're all in to shape your future with confidence. We'll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world. EY Telecom Infrastructure Review Manager-Level As part of our Risk Consulting team, you will be part of the focused team to activities related to Telecom Infrastructure reviews for various clients across the MENA region. Telecom Security is one of the few most important risks facing businesses today. We are looking for trusted consultants to enhance the capability. Also, as organizations move forward on their digital journey the telecom risk exposure is increasing...

As a Cyber Security Analyst at our company in Navi Mumbai, Maharashtra, you will play a crucial role in safeguarding our enterprise systems and networks. Your primary responsibilities will revolve around monitoring, investigating, and responding to security incidents and alerts. Administering and maintaining McAfee endpoint security tools, managing web proxy solutions using Zscaler and Netskope, and identifying potential threats using SIEM tools will be key aspects of your daily tasks. Your collaboration with internal IT teams and external vendors will be instrumental in effectively resolving security issues and supporting compliance initiatives. Key Responsibilities: - Monitor, investigate,...

As a Security Lead (SOC) with 5+ years of experience, your role will involve the following responsibilities: - Lead high-priority security investigations and incident response activities, ensuring accurate analysis, containment, remediation, and post-incident reporting. - Oversee day-to-day SOC operations, including shift handovers, escalation management, and ensuring continuity across a 24/7 environment with global customers. - Act as the escalation point for complex threats and security incidents requiring deep analysis of logs, packets, malware, and behavioral patterns using EDR, XDR, SIEM, and forensic tools. - Conduct proactive threat hunting using various data sources and tools. Create...

Role Overview: As a Senior Associate Information Security Incident Response Analyst at NTT DATA, you will be a developing subject matter expert responsible for assisting in the detection and monitoring of threats and suspicious activity affecting the organization's technology domain. You will support the work of technical staff from various business areas as well as third-party technical experts by utilizing your technical competencies to detect unauthorized activity on company information assets. Key Responsibilities: - Assist with the prevention and resolution of security breaches and ensure incident and problem management processes are initiated. - Support access management activities acc...

As a Security Analyst at NTT DATA, you will play a crucial role in safeguarding the organization's digital assets and maintaining a robust security posture. Your responsibilities will include: - Threat Detection and Response: Monitoring and analyzing security events on SIEM/EDR/DLP platforms to identify potential threats and vulnerabilities. - Incident Investigation: Conducting in-depth investigations of security incidents, providing detailed analysis, and root cause analysis (RCA). - Escalation Handling and Team Management: Managing L1 resources and handling escalations effectively. - Security Log Analysis: Analyzing security log data to identify trends, anomalies, and escalating them appro...

Key Responsibilities: Deep understanding of computer intrusion activities, incident response techniques, tools, and procedures. L2, L3 Support. Good Experience in SIEM monitoring (QRadar, Sentinel, Splunk, chronicle) Knowledge of SOAR technologies, working with playbooks (Cortex, chronicle, Splunk SOAR) Experience handling malware incidents (Flare VM, Remnux) and detections from EDR (MS Defender, Crowdstrike, SenitnelOne etc.) Reverse Engineering like- IDA Pro, GHIDRA. Knowledge of Windows, Active Directory, DNS & Linux operating systems, Working experience and knowledge of ITSM tools for incident management. Must be action oriented and have a proactive approach to solving issues. Knowledge ...

Key Responsibilities: We are seeking a Cyber Security Manager with strong expertise in Security Operations Center (SOC), Security Information and Event Management (SIEM), and Security Orchestration, Automation, and Response (SOAR). Lead and manage SOC operations, ensuring timely detection and response to security incidents. Design, implement, and optimize SIEM and SOAR solutions for enterprise environments. Collaborate with sales teams for presales engagements, including solution presentations, RFP responses, and technical demonstrations. Support order processing and ensure smooth delivery of cybersecurity solutions. Develop and maintain security policies, procedures, and compliance standard...

Role: Cyber Security Analyst Location: Bangalore, India Experience - 7+ years Responsibilities: Threat Detection & Response: Monitor and analyze security events from various sources, including SIEM/XDR platforms like Microsoft Sentinel and Rapid7 InsightIDR Conduct thorough investigations of security incidents, including root cause analysis and forensic investigations Collaborate with the Incident Response Team to triage, classify, and escalate alerts as necessary Maintain and update incident response runbooks and playbooks aligned with NIST and MITRE ATT&CK frameworks Tool & Platform Management: Administer and optimize security tools such as Microsoft Defender, Zscaler ZIA/ZPA, CyberArk EPM...

You will be responsible for driving business growth by identifying, engaging, and securing clients for cybersecurity products and services. You will play a crucial role in understanding customer needs, presenting tailored cybersecurity solutions, and managing the sales cycle from prospecting through to closing. The role requires a blend of technical understanding, consultative sales skills, and relationship management. - Prospect, generate leads, and build a pipeline of potential clients using various channels including networking, cold calling, and industry events - Engage with customers to understand their cybersecurity challenges and requirements - Deliver compelling presentations and dem...

Role description a. Providing assurance to the Audit Committee (AC) of Board of Directors (BOD), the CEO & MD and the Senior Management, on control adequacy and effectiveness on Cyber Posture internal & external threats / Cloud Computing / IT Infrastructure / Data Security / Application Security / Social Engineering / Governance & Risk Management for uninterrupted business operations. Executing audits, advisory, and other special projects in accordance with the approved audit plan. Auditor shall undertake reviews of the organization's cyber threats, cloud infrastructure, Vulnerability Assessment & Penetration Testing, processes and controls to protect its intellectual property, using industr...

You will be a part of the Global Cybersecurity team at Tower Research Capital, where you will work on continuously enhancing the security posture and services by monitoring, identifying, and rectifying security gaps and countermeasures. Your role will involve the following responsibilities: - Monitoring alerts for potential security incidents and requests for information through real-time channels, tools, dashboards, periodic reports, chat sessions, and tickets. - Following incident-specific procedures to conduct basic triage of potential security incidents, determine their nature and priority, eliminate false positives, and process requests for information. - Investigating and validating al...

As a Cloud Security Subject Matter Expert (SME) with 4 to 6 years of relevant experience, your role will involve designing, implementing, and maintaining robust cloud security architecture and controls for the cloud environments (public/multi-cloud) in line with best practices. You will configure, manage, and optimize CNAPP for cloud security posture management (CSPM), vulnerability management, misconfiguration detection, secrets management, identity & access management, and runtime risk detection. Your collaboration with DevOps, Cloud Engineering, and Product teams is essential to embed security practices into CI/CD pipelines, infrastructure as code, deployments, and operations. Your respon...

As the Head of Information Security and Data Privacy, your role will involve leading the information security initiatives at an enterprise level, focusing on application security, cloud security, certification compliance, and data privacy. Your key responsibilities will include: - Designing, implementing, and managing security measures for cloud-based infrastructure to ensure the confidentiality, integrity, and availability of data. - Conducting regular security assessments and audits of cloud environments to identify and remediate vulnerabilities. - Collaborating with cross-functional teams to integrate security best practices into cloud-based solutions. - Developing and implementing strate...

As a Cybersecurity Implementation Engineer at Netenrich, you will play a crucial role in designing and implementing cutting-edge cybersecurity solutions. You will collaborate with a talented team of professionals to contribute to the effectiveness of organizations" security and digital operations. **Key Responsibilities:** - Develop custom parsers to extract and normalize data from diverse sources, including logs, network traffic, and endpoint data. - Design, develop, and maintain Yara rules for threat detection and malware analysis, ensuring high accuracy and effectiveness. - Create and implement playbook automation to streamline incident response processes and improve operational efficienc...

As an L1 SOC Analyst at UST, your responsibilities will include: - Expertise in Triage, Threat Detection and Response, Threat Hunting and SOC Assessment - Proficiency in Sentinel and Crowdstrike - Mastery in security event collection, monitoring, analysis, issue investigation, and incident response utilizing automated SOAR tools - Real-time monitoring, data enrichment, event correlation, OS/application event analysis, and IOC based threat hunting - Conducting email analysis, investigation, and phishing detection - Managing incident workflows, escalating issues, and assisting stakeholders with issue containment, remediation, and risk mitigation - Providing input to enhance threat detection ru...

As an Endpoint Security Analyst at our organization in Noida, you will play a crucial role in safeguarding our endpoint devices from advanced threats by deploying, configuring, maintaining, and monitoring McAfee/Trellix endpoint security solutions. Your proactive approach, technical expertise, and analytical skills will be key in ensuring the comprehensive protection of our organization's data and systems. **Key Responsibilities:** - Design and implement endpoint security policies and configurations aligned with organizational security standards. - Deploy and configure McAfee/Trellix Endpoint Security (MEE/ENS) agents on all endpoints, including desktops, laptops, servers, and mobile devices...

Summary Position Summary Cyber Deloitte Cyber understands the unique challenges and opportunities businesses face in cybersecurity. Join our team to deliver powerful insights to help our clients navigate the ever-changing threat design, and technology as we partner with clients to transform finance. Position Summary Level: Senior Solution Advisor Work you'll do: As a Senior Consultant, you will: Conduct technology resilience risk assessments to identify potential vulnerabilities and threats. Identify unique technical risks or single points of failure that could cause an extended business disruption or crisis Assist in designing operating models and techniques that maximize the adoption of ri...

Why Socure At Socure , we're on a missionto verify 100% of good identities in real time and eliminate identity fraud from the internet. Using predictive analytics and advanced machine learning trained on billions of signals to power RiskOS, Socure has created the most accurate identity verification and fraud prevention platform in the world. Trusted by thousands of leading organizationsfrom top banks and fintechs to government agencieswe solve real, high-impact problems at scale. Come join us! As a Senior Security Engineer at Socure, you will play a critical role in designing, implementing, and optimizing security solutions that protect our next-generation identity verification and fraud pre...

As the SOC Manager, you will play a crucial role as the operational and strategic leader of the Security Operations Center. Your responsibilities will include managing people, processes, and technologies to ensure effective threat detection, incident response, and continuous improvement. You will report to the Head of CDC and act as the bridge between technical teams and business stakeholders. Key Responsibilities: - Lead and mentor SOC staff across L1, L2, and L3 tiers - Oversee hiring, onboarding, training, certification, and performance evaluations - Coordinate 24x7 shift coverage and ensure readiness for high-severity incidents - Manage day-to-day SOC operations, including alert triage, ...

Summary Position Summary Cyber Deloitte Cyber understands the unique challenges and opportunities businesses face in cybersecurity. Join our team to deliver powerful insights to help our clients navigate the ever-changing threat design, and technology as we partner with clients to transform finance. Position Summary Level: Senior Solution Advisor Work you'll do: As a Senior Consultant, you will: Conduct technology resilience risk assessments to identify potential vulnerabilities and threats. Identify unique technical risks or single points of failure that could cause an extended business disruption or crisis Assist in designing operating models and techniques that maximize the adoption of ri...

Develop, test, & deploy detection rules Experience in MITRE ATT&CK (Must) Update content for emerging threats 3+ years SOC/threat detection experience SIEM skills (Splunk/ELK/QRadar) Proficient in query languages Solid log and event analysis skills