408 Threat Detection Jobs - Page 11

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Information and Event Management (SIEM) Good to have skills : NAMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve coll...

About the role This position is a member of the STRM - Security Threat and Response Management team which is responsible for security monitoring and response functions for Mastercard, accounting for both physical and cyber security events. Engineer would build new software capabilities, support existing solutions, provide technical oversight and lend its expertise to the program. * Develop and fine-tune detection content in SIEM platform to improve threat detection and response capabilities. * Design and build automated playbooks in SOAR platform for common incident response use cases. * Lead and mentor analysts on detection logic, search optimization, and investigation best practices. * Int...

We are seeking dynamic candidate for the role of Security Engineer, proficient in Triage and respond to security incidents and alert,knowledge in cybersecurity principles,threat detection and incident response.Comfortable with 2:30 PM-11:30 PM(SHIFT) Required Candidate profile Security certifications such as CISSP, CISM, CEH. Previous experience in security automation, scripting and working in a SOC or security operations environment and cloud security best practices.

Job Title: Security Analyst (SOC) Level 2 Timings: Rotational Location: Kolshet, Thane West (Work from office) Total Experience: 3 + years About the Company AMSYS Group , We pride ourselves on 23 Years of excellence based on the principles of integrity, honor, and mutual gain. As future decisions are made, we are always keeping in mind the prosperity of the AMSYS Family. Amsys IT Services Pvt Ltd is part of this group based in Mumbai. Website:http://www.amsysis.com Role Description This is a full-time on-site role for a Security Operations Center Analyst at AMSYS in Thane. As a Security Operations Center Analyst, you will be responsible for cyber threat hunting, cyber threat intelligence, ut...

This role is responsible for analyzing activities relating to monitoring and responding to security events. This role receives, researches, triages and documents all security events and alerts as they are received. This individual supports multiple security-related platforms and technologies, interfacing with others within the IT organization, as well as other internal business units and external customers/partners. Events will be generated from endpoints, networks, security information and event management (SIEM) systems, threat intelligence platforms, employees, third-parties and other sources. This role also receives information sharing and analysis center (ISAC) information and is expect...

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Network Security Operations Good to have skills : NAMinimum 12 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to doc...

Your Role Configure and customize FortiSOAR to automate and orchestrate security workflows across enterprise environments. Develop and maintain automation playbooks using Python and scripting languages aligned with security use cases. Integrate various security tools and platforms using APIs, Ansible, and custom scripts to enhance SOC capabilities. Monitor, analyze, and troubleshoot automated security processes to proactively address threats and improve response times. Collaborate with IT and security teams to align FortiSOAR configurations with organizational goals and compliance needs. Your Profile 9 to 12 years of experience in security automation and orchestration using FortiSOAR. Experi...

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Information and Event Management (SIEM) Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve co...

Hiring: Threat Detection & Response Engineer (8-10 Years)** for a Japanese investment bank in Bangalore! Seeking an experienced cybersecurity professional skilled in threat detection, incident response, and security frameworks like MITRE ATT&CK and Cyber Kill Chain. Responsibilities include developing advanced use cases, proactive threat hunting, forensic investigations, and collaborating with Threat Intelligence and Security Ops teams. Must have hands-on experience with SIEM tools (Splunk), forensic tools (EnCase, FTK), network security controls, and cloud security in the banking/financial sector. Strong analytical, problem-solving, and leadership skills required, with certifications like C...

As the Head of Information Security and Data Privacy, you will be responsible for leading and overseeing various aspects of information security and data privacy within the enterprise. Your key responsibilities will include: - Managing information security at the enterprise level, covering both Application security and Cloud security. - Ensuring Certification Compliance for standards such as ISO, SOC, and PCI DSS. - Overseeing Data Privacy initiatives, including GDPR and CCPA readiness and compliance. In this role, you will design, implement, and manage security measures for cloud-based infrastructure to ensure the confidentiality, integrity, and availability of data. Conducting regular secu...

As a Cyber Security Operations Analyst, your primary responsibility is to protect the day-to-day operations of the organization by understanding and monitoring cybersecurity risks and threats. You will help ensure the correct protective, detective, and monitoring controls are in place while also playing a key role in cyber incident response activities. You will be a critical part of the Cyber Security Operations team, working closely with internal stakeholders and external partners (e.g., SOC MSSP) to safeguard the organisation's critical systems and data. Your key responsibilities will include responding to alerts and escalations from the Managed Security Service Provider (SOC MSSP) and int...

As a SOC Analyst at our organization based in Cochin, you will be responsible for kickstarting your career in Cybersecurity by efficiently triaging alerts and escalating them when needed. We are seeking a dynamic individual in the early stages of their career, who exhibits a strong passion for Technology and Cybersecurity, to be a part of our expanding IT Security team. Your main responsibilities will include triaging the most recent SIEM and monitoring alerts, evaluating their importance and urgency, investigating, documenting, and reporting any information security issues, as well as staying updated on emerging trends. Additionally, you will be conducting threat and vulnerability analysis ...

As a Technical Implementation Engineer, you will play a crucial role in the onboarding process of customers to various Qualys products, with a primary focus on Enterprise TruRisk Management (ETM). Your responsibilities will revolve around acting as a trusted advisor to customers, guiding them through the integration of Qualys solutions into their environments, aligning these implementations with their security objectives, and ensuring their success with the platform. This position emphasizes expertise in DevOps, cloud security, and enabling customers to fully leverage Qualys solutions to achieve their security goals. Your key responsibilities will include managing the onboarding process for ...

As a Cyber Security Engineer at our company, you will play a crucial role in collaborating with various departments including the Engineering Organization, IT, Information Security, Software Engineers, and DevOps teams to ensure the security of our back-end and front-end services, cloud infrastructure, DevOps pipelines, data pipelines, software, and embedded platforms. Your primary responsibility will be to develop and implement efficient security measures to safeguard our systems against potential threats. You will be expected to stay updated on the latest attack trends and technologies while working closely with your team to counteract threat vectors within our cloud and embedded environme...

Role Overview: We are looking for a skilled EDR Security Researcher. Your primary responsibility will be to evaluate and improve our EDR product's detection capabilities by identifying detection coverage gaps and developing signatures to address these gaps effectively. About the role: Reverse engineer malware to identify malicious code, obfuscation techniques, and communication protocols. Author detection rules for behavior-based detection engines. Conduct deep research on attacker campaigns and techniques to support detection investments and improve customer experience. Write generic threat detections based on static and dynamic detection engines. Demonstrate a strong understanding of cyber...

Eventus Security is a prominent cybersecurity solutions provider specializing in threat detection, incident response, and managed security services. The organization aims to assist clients in proactively securing their digital assets through cutting-edge technologies and expert-driven services. By prioritizing innovation and trust, Eventus Security empowers businesses to remain resilient in the constantly evolving cyber threat landscape. The ideal candidate for the position of Security Lead (L3) SOC at Eventus Security should possess 5-10 years of relevant experience. The job locations for this role are Navi Mumbai and Ahmedabad. Key Responsibility Areas: Security Incident Leadership: - Take...

As a Security Operations Center (SOC) Analyst, you will be responsible for monitoring the security environment, tracking compliance audit processes for IT applications, and providing incident management support. This operational role requires you to deliver results that directly impact day-to-day operations. You will need to instruct professional or technical staff and review the quality of their work. Your responsibilities will include conducting quality checks and providing constructive feedback to L1 analysts. You will also be tasked with maintaining SOC metrics such as Mean Time to Detect (MTTD), Mean Time to Respond (MTTR), and Mean Time to Close (MTTC). It is essential to have in-depth...

The role of Data Protection & IAM (Identity and Access Management) Senior Lead involves developing, implementing, and overseeing data security and IAM strategies for the organization's business units. Your responsibilities will include ensuring compliance with regulatory requirements, enforcing security policies, and strengthening access control mechanisms to safeguard sensitive business data. Collaboration with IT, security, risk, compliance, 2LOD, and business stakeholders is crucial to maintaining a strong security posture. Key Responsibilities: - Developing and executing data protection policies, procedures, and standards to protect sensitive business information. - Implementing encrypti...

About the Role We are seeking a highly skilled Security Analyst (Level 2) to join our MSSP SOC team. The ideal candidate will have expertise in SIEM (Splunk, QRadar), XDR/EDR solutions, and security analysis with hands-on experience in investigating and responding to security alerts. This role requires proficiency in reviewing and analyzing Level 1 alerts, providing detailed recommendations, and engaging with customers for incident handling. The candidate should also have basic SIEM administration knowledge and Python scripting skills for troubleshooting and playbook development. Key Responsibilities Threat Detection & Response: Analyze and investigate security alerts, events, and incidents ...

We are seeking an experienced and visionary Head of Cyber Security to lead our global and regional cybersecurity efforts. This senior leadership role will be responsible for defining and executing a comprehensive security strategy that safeguards our digital assets and operations across multiple geographies. Key Responsibilities Develop and implement a robust cybersecurity strategy aligned with global and regional business goals. Lead the design, development, and operation of a world-class Security Operations Center (SOC) . Oversee threat monitoring , incident response , digital forensics , and penetration testing activities. Manage cybersecurity architecture and ensure compliance with inter...

10+ yrs Exp in cybersecurity Multi-tenant MSSP SOC Analytics rules KQL Playbooks Logic Apps Workbooks Connectors Incident response Detection use cases-MITRE ATT&CK Defender XDR stack PowerShell ISO 27001 SOC 2 /PCI DSS CISSP CISM GIAC (GCIA, GCIH)

Note: By applying to this position you will have an opportunity to share your preferred working location from the following: Hyderabad, Telangana, India; Bengaluru, Karnataka, India Minimum qualifications: Bachelor's degree or equivalent practical experience, 5 years of experience with working in security analysis, network security, intrusion detection system, threat intelligence or threat detection, 2 years of experience as a technical security professional, with digital forensics or systems administration, Experience with executive or customer stakeholder management and communication, Experience with a data motivated approach towards solving information security tests, Preferred qualificat...

Note: By applying to this position you will have an opportunity to share your preferred working location from the following: Hyderabad, Telangana, India; Bengaluru, Karnataka, India Minimum qualifications: Bachelor's degree or equivalent practical experience, 5 years of experience with working in security analysis, network security, intrusion detection system, threat intelligence or threat detection, 2 years of experience as a technical security professional, with digital forensics or systems administration, Experience with executive or customer stakeholder management and communication, Experience with a data motivated approach towards solving information security tests, Preferred qualificat...

SUMMARY Job Title: NET IQ - IAM & PAM Location: Mumbai Experience: 3-8Years Notice Period: Immediate to 60 Days Job Description: We are seeking a skilled Linux Security Engineer with hands-on experience in troubleshooting, vulnerability management, IAM/PAM systems, and automation scripting using PowerShell. The ideal candidate should have a strong understanding of SSL/TLS, risk mitigation, and penetration threat detection on Linux-based environments. Key Responsibilities: Perform Linux server troubleshooting including performance issues, system logs, and hardware/software faults. Conduct vulnerability assessments, manage security patches, and mitigate potential risks across enterprise infras...

Good experience in SIEM tools, event logging and event analysis and experience in forensic analysis, Packet Analysis tools like Wireshark, TCP Dump etc. SIRT/SIEM/Threat Hunting Background/intel, netwitness, splunk, qRadar, RSA Netwitness, Linux/python understanding/Ethical hiking/programming background added advantage. Good knowledge in enterprise security products like SIEM tools, SOC, Security Incident Management, Threat Intel, Malware analysis, Firewalls, IPS, Web/content Filtering tools, AV, APT Tools, Wireshark, TCP Dump, Encase/Any other Forensic tool kit Very good understanding of security fundamentals and principles, attack techniques, Mitre, TTP, hacking tools etc Having experience...