544 Threat Detection Jobs - Page 2

Job Description At Remitly, we believe everyone deserves the freedom to access, move, and manage their money wherever life takes them. Since 2011, we've tirelessly delivered on our promise to customers sending money globally, providing secure, simple, and reliable ways to manage their money, ensuring true peace of mind. Whether it's supporting loved ones back home, growing a business across continents, or pursuing new opportunities abroad, we're not just here to move money we're here to move our global customers forward. We're looking for builders, reimaginers, and global thinkers who want to work at the intersection of technology, trust, and transformation. If that's you and you're ready to...

Job Title: Threat Intelligence & Incident Response Engineer Key Responsibilities: Configure and manage Suricata IDS/IPS sensors for network monitoring. Deploy and integrate TheHive for case management and IR automation. Set up MISP for threat intelligence feeds and correlation with SOC events. Work with Wazuh & ElasticSearch to correlate logs with IDS and TI data. Develop automated SOC workflows ( SOAR-style ) for incident triage and escalation. Conduct threat hunting and provide insights to improve detection rules. Requirements: Hands-on experience with Suricata , TheHive , MISP (any two required, all three ideal). Strong background in log analysis and incident response . Familiarity with M...

Role/ Job Title: Security Engineer - EDR Function/ Department: Information Technology. Job Purpose: IDFC FIRST Bank is seeking a highly skilled and experienced Security Engineer - EDR to join our growing team. As a Security Engineer, you will be responsible for implementing and maintaining our Endpoint Detection and Response (EDR) systems to ensure the security of our organization's IT infrastructure. Key Responsibilities: Solid understanding of threat detection, MITRE ATT&CK framework, and endpoint forensics. Strong knowledge of Windows, macOS, and Linux endpoint security Manage and optimize EDR solutions such as CrowdStrike, SentinelOne, Microsoft Defender for Endpoint, etc. SentinelOne pr...

As a member of the Product Security Engineering (PSE) team within the Cloud CISO organization at Google, you will have the opportunity to contribute to ensuring the security of every product shipped by Cloud and enhancing the security assurance levels of the underlying infrastructure. Your role will involve collaborating with product teams to develop more secure products by implementing security measures by design and default, providing tools, patterns, and frameworks, and enhancing the expertise of embedded security leads. - Research innovative detection techniques to prevent and mitigate abusive activities such as outbound security attacks, botnet, DDoS, and other malicious behaviors that ...

As an Azure SIEM Platform Lead at CyberProof, a UST Company, you will be responsible for managing and leading a cloud-based SIEM platform using Azure Data Explorer (ADX), Microsoft Sentinel, and Azure DevOps. Your role will involve developing and optimizing Kusto Query Language (KQL) queries for threat detection, reporting, and health monitoring, as well as onboarding and fine-tuning log sources and connectors for enhanced visibility and cost efficiency. Leading a small technical team, you will mentor engineers, drive automation and CI/CD practices, and ensure platform performance, scalability, and security. Key Responsibilities - Manage and lead the Azure SIEM platform utilizing ADX, Sentin...

Key Responsibilities 1. Technical Security Operations Manage and troubleshoot Firewalls, WAF, IPS/IDS, Proxy, NAC, Email Security, and Endpoint Security tools . Configure, monitor, and fine-tune firewall & security policies. Ensure high availability and protection across network security systems. Perform log analysis, traffic monitoring, and incident response support. Coordinate with cross-functional teams for security issues and threat handling. 2. Audit, Compliance & Assessments Conduct internal audits and assessments based on NIST, CIS, ISO 27001 standards. Document findings, prepare audit reports, and recommend corrective actions. Support compliance for DPDP Act, GDPR, ISO 27001:2022 , a...

As an expert in cloud-native application security, your role at EY will involve implementing WIZ/Prisma to secure applications across various environments, integrating security scans into CI/CD pipelines, managing vulnerability detection, compliance checks, and runtime protection, collaborating with DevOps and cloud teams to embed security early in the development lifecycle, and designing automated security workflows using WIZ/Prisma across multi-cloud environments such as Azure and AWS. You will also be responsible for enabling real-time threat detection, defining best practices for vulnerability management, collaborating with developers to create secure container images and laaC templates,...

Your role and responsibilities We are seeking an experienced QRadar Incident Forensic Specialist to manage the deployment, configuration, and day-to-day operations of the QRadar SIEM platform while supporting incident response and forensic investigations. The ideal candidate will play a critical role in enhancing security monitoring, investigating incidents, and ensuring seamless SIEM operations. This role requires a blend of expertise in QRadar deployment, incident handling, and forensic analysis to improve the organizations security posture, Plan, design, and deploy QRadar SIEM environments including Incident forensic, ensuring proper integration with network devices, servers, and applicat...

About us BluSapphire is a cloud-native, AI-powered cybersecurity platform that helps enterprises detect and mitigate threats efficiently, reducing business risk and operational burden. Their Beyond XDR platform uses big data analytics to process overwhelming security alerts, enabling swift breach detection and response. This results in faster time-to-value, reduced human intervention, and enhanced security operations. Position Details L2 SOC Analyst Continuing its strategic expansion, BluSapphire is enhancing the capabilities of the Security Operations Center and seeks experienced, dynamic professionals for the L2 SOC Analyst role. This position plays a pivotal role in the incident response ...

Role Overview: As an Incident Response Senior Analyst (IRSA), you will play a crucial role in effectively responding to and mitigating security incidents within the organization. Your primary responsibility will be to lead investigations into cyber threats, identify root causes of incidents, and develop appropriate response strategies. You will work closely with cross-functional teams to contain incidents, minimize impact, and prevent future occurrences. Key Responsibilities: - Lead investigations into cyber threats and security incidents - Identify root causes of incidents and develop response strategies - Work with cross-functional teams to contain incidents and prevent future occurrences ...

Organisation : Novamesh Ltd (TATA Commununications Ltd) Position : L2, Location Jaipur Shift : 18x5 Job Description: SIEM, SOAR, UEBA, and NBAD Specialist Position Summary: We are looking for a skilled Security Operations Specialist with expertise in SIEM, SOAR, UEBA, and NBAD technologies to strengthen our security monitoring, automation, and threat detection capabilities. The ideal candidate should have a strong technical background, relevant experience in cyber security, and a proactive attitude toward threat hunting and incident response. Roles and Responsibilities Incident Analysis, Incident co-ordination & Response, Remote Incident Response, Forensics Artifact handling & Analysis, Malw...

Role Overview: You will be responsible for performing risk and control activities for the Cyber Operations domain, providing risk management, governance, and assurance services. Your role will involve advocating and implementing cyber security controls while being based in Chennai/Kuala Lumpur. Key Responsibilities: - Perform all risk and control activities related to people, processes, and assets within the Cyber Operations function. - Act as a confidant to the Process Owner(s) in developing, prioritizing, and implementing controls. - Drive compliance with the Bank's risk frameworks and policies. - Conduct timely and re-performable deep dive reviews with a focus on risk. - Support the desig...

You are seeking a skilled and experienced Cybersecurity Implementation Engineer with expertise in customer parser development, Yara rules creation, playbook implementation, and data ingestion techniques. This role presents an exciting opportunity to contribute to the design and implementation of cutting-edge cybersecurity solutions while collaborating with a talented team. Your responsibilities will include: - Develop custom parsers to extract and normalize data from diverse sources, including logs, network traffic, and endpoint data. - Design, develop, and maintain Yara rules for threat detection and malware analysis, ensuring high accuracy and effectiveness. - Create and implement playbook...

Devo, the cloud-native logging and security analytics company, empowers security and operations teams to maximize the value of all their data. Only the Devo platform delivers the powerful combination of real-time visibility, high-performance analytics, scalability, multitenancy, and low TCO crucial for monitoring and securing business operations as enterprises accelerate their shift to the cloud. Headquartered in Boston, Mass., Devo is backed by Insight Partners, Georgian, and Bessemer Venture Partners. Learn more at www.devo.com . JOB SUMMARY: Devo unleashes the power of the SOC. The Devo Security Data Platform, powered by our HyperStream technology, is purpose-built to provide the speed an...

Job Profile We are seeking a detail-oriented and experienced IT Security Monitoring L1 to join our organization. You will be responsible for safeguarding our IT infrastructure, monitoring networks for security breaches, and implementing security measures and best practices. This role is critical in protecting sensitive company and customer data from threats and vulnerabilities. Role & responsibilities Monitor, analyze, and respond to security events, incidents, and alerts. Conduct regular vulnerability assessments and penetration testing. Implement and manage security tools (SIEM, IDS/IPS, DLP, firewalls, endpoint security, IAM, etc.). Develop, update, and enforce IT security policies, proce...

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Information and Event Management (SIEM) Good to have skills : NA Minimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve col...

Responsibilities: - Analyze logs to produce actionable insights, investigative workflows, corelative analysis, and SOC reporting. - Collaborate with data engineers to ensure logs are scalable, realistic, and correlated across systems. - Build reports and dashboards that deliver investigative insights for SOC teams. Mandatory: - 7+ years as a SOC analyst with hands-on log analysis and generating advanced investigative insights. - Strong skills in SIEM tools (Sentinel/Splunk). - Proven experience producing detailed investigative insights to support incident detection, threat hunting, response, and management. - Experience with Microsoft Purview or related security tools, with emphasis on DLP p...

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Threat Hunting Good to have skills : NA Minimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various...

Project Role Security Architect Project Role Description Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills Security Information and Event Management (SIEM) Good to have skills NA Minimum 7.5 year(s) of experience is required Educational Qualification 15 years full time education Summary As SOC Operations Manager, you will oversee and manage day to day activities of a security operations center on Security incident management delivery. You will be expected to support the documentation, enhancemen...

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Architecture Design Good to have skills : NA Minimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with va...

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Managed Cloud Security Services Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Platform engineering lead you will design, implement, and manage Microsoft Sentinel security solutions including analytics rules and automation workflows. Collaborate across teams to align threat detection a...

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Information and Event Management (SIEM) Good to have skills : NA Minimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve col...

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Information and Event Management (SIEM) Good to have skills : NA Minimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve c...

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Architecture Design Good to have skills : NA Minimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with va...

Your role and responsibilities We are seeking an experienced QRadar Incident Forensic Specialist to manage the deployment, configuration, and day-to-day operations of the QRadar SIEM platform while supporting incident response and forensic investigations. The ideal candidate will play a critical role in enhancing security monitoring, investigating incidents, and ensuring seamless SIEM operations. This role requires a blend of expertise in QRadar deployment, incident handling, and forensic analysis to improve the organizations security posture, Plan, design, and deploy QRadar SIEM environments including Incident forensic, ensuring proper integration with network devices, servers, and applicat...