564 Threat Detection Jobs - Page 6

Role Overview: As a Security Analyst at Xylem, you will play a key role in safeguarding the digital infrastructure by monitoring, analyzing, and responding to security threats using industry-leading tools such as XDR, NGFW, and email security. This mid-level position requires hands-on experience in threat detection, incident response, and security operations, emphasizing collaboration and continuous improvement. Key Responsibilities: - Monitor and respond to alerts from Defender XDR, Proofpoint, and Palo Alto Firewalls. - Conduct threat analysis, triage, and incident response activities. - Maintain and optimize SIEM integrations and use cases. - Perform forensic investigations and root cause...

Role Overview: You will be the Azure SIEM Platform Lead, responsible for managing a cloud-based SIEM platform, leading a small technical team, and engaging directly with customers. Your strong expertise in Azure Data Explorer (ADX), Microsoft Sentinel, Kusto Query Language (KQL), and Azure DevOps will be crucial for optimizing the platform. Key Responsibilities: - Manage and lead the Azure SIEM platform using ADX, Sentinel, and DevOps tools. - Develop and optimize KQL queries for threat detection, reporting, and health monitoring. - Onboard and fine-tune log sources and connectors for visibility and cost efficiency. - Lead and mentor a small team of engineers. - Act as the primary technical ...

The Defender Experts (DEX) Research team is at the forefront of Microsoft's threat protection strategy, combining world-class hunting expertise with AI-driven analytics to protect customers from advanced cyberattacks. Our mission is to move protection leftdisrupting threats early, before damage occursby transforming raw signals into intelligence that powers detection, disruption, and customer trust. We're looking for a passionate and curious Senior Threat Graph Researcher to join this high-impact team. In this role, you will be responsible for designing, building, and analyzing large-scale threat graphs that model adversary behavior, infrastructure, and relationships across the cyber threat ...

Job description As a Security Engineer - VAPT, you will be responsible for conducting comprehensive security assessments, identifying vulnerabilities, and implementing effective remediation strategies. Leveraging your expertise in penetration testing and ethical hacking, you will play a key role in enhancing the security posture of our clients' systems and networks. This position offers an exciting opportunity to work on challenging projects, collaborate with talented professionals, and contribute to the advancement of cybersecurity practices. Key Responsibilities: Perform end-to-end Vulnerability Assessment and Penetration Testing (VAPT) for clients' IT infrastructure, applications, and net...

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Information and Event Management (SIEM) Good to have skills : NA Minimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. You will also document the implementation of clo...

Cloudflare WAF & Web SecurityConfigure and manage Cloudflare WAF to protect applications from OWASP Top 10 threats. Implement custom firewall rules, bot mitigation, rate limiting, and API security policies. Secure applications with Cloudflare Zero Trust, Access policies, and mTLS authentication. Cloudflare DNS & DDoS MitigationManage Cloudflare DNS, ensuring DNSSEC implementation for secure name resolution. Configure Anycast routing, load balancing, and traffic steering for global redundancy. Implement DDoS protection, malware filtering, and phishing prevention strategies. F5 Load Balancer (BIG IP LTM, GTM, ASM)Deploy, configure, and optimize F5 BIG IP Load Balancers (LTM & GTM) for traffic ...

Job Title : Azure Cyber Security Architect Job Location: -- Multiple Locations ============ Riyadh - Saudi Arabia Doha - Qatar Dubai - UAE Salary Per Month: As per market ( Full Tax Free - Depending on Experience & Expertise ) Project duration: 2 Years, Extendable Experience Level Needed: 5 - 10 Years No. of positions : 05 An Azure Cybersecurity Architect is a senior-level professional responsible for designing, building, testing, and maintaining a robust security infrastructure for an organization's Microsoft Azure environment . They develop a comprehensive security strategy that aligns with business goals and ensures the protection of all cloud-based systems, data, and applications against...

At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we're counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Supervising Security Analyst - Cyber Triage and Forensics Today's world is fueled by vast amounts of information. Data is more valuable than ever before. Protecting data and information systems is central to doing business, and everyone in EY Information Security has a critical role to play. Join a global team of almost 950 people who collabo...

Role Overview: As a Security Operations Specialist at Novamesh Ltd (TATA Communications Ltd) in Jaipur, you will be responsible for strengthening security monitoring, automation, and threat detection capabilities using SIEM, SOAR, UEBA, and NBAD technologies. Your proactive attitude towards threat hunting and incident response, along with a strong technical background in cybersecurity, will be crucial for this role. Key Responsibilities: - Real-time monitoring of security appliances like Secure Web/Email Gateways, Proxy, IPS/IDS, NGFW, DLP, APT, WAF, Network Forensics, SIEM, NAC, SOAR, etc. in RSDC for security events. - Conduct endpoint threat detection and take SOAR action on identified ma...

3Columns is a specialist cybersecurity firm that delivers a wide range of services, including security assurance, security governance, professional services, and managed services. Solutions include managed security services, offensive security services, cybersecurity consulting, and professional services to help customers deploy all the necessary controls. The core services delivered by the SOC are Managed Detection and Response and Incident Response. About the Role: 3Columns is seeking a Cyber Incident Handler to join their team remotely. They will be responsible for working with the MDR team and leading escalated incidents, updating customers and stakeholders, and assisting the MDR team wi...

Roles and Responsibilities Develop expertise in Splunk Enterprise Security (SES) platform for threat detection. Collaborate with incident response team to respond to detected threats and minimize damage. Identify and investigate suspicious activity alerts from Splunk Enterprise Security (SES) platform. Conduct threat hunting activities using various techniques such as data analysis, network monitoring, and system administration. Monitor SIEM, EDR, and other security tools to detect potential threats.

As a Network Engineer at Netsach - A Cyber Security Company, your role will involve managing all network and infrastructure components. You should have a minimum of 2 years of experience in working with Netgate firewall and possess the following skills: - Network Security Engineer - Troubleshooting - Netgate Firewall - Security Network Infrastructure - CompTIA Network+ - CCNA - VPN - Threat Detection If you meet the above criteria and are interested in this full-time position based in Bangalore, please send your resume to emily@netsach.co.in. Face to face interview is mandatory for this role. Additionally, we encourage you to register at www.netsachglobal.com and share your resume with us. T...

Greenlight is the leading family fintech company on a mission to help parents raise financially smart kids. We proudly serve more than 6 million parents and kids with our award-winning banking app for families. With Greenlight, parents can automate allowance, manage chores, set flexible spend controls, and invest for their family's future. Kids and teens learn to earn, save, spend wisely, and invest. At Greenlight , we believe every child should have the opportunity to become financially healthy and happy. It's no small task, and that's why we leap out of bed every morning to come to work. Because creating a better, brighter future for the next generation depends on it. We are looking for a ...

We seek a Cloud Engineer Senior-Level (Senior) who shares our passion for innovation and change. This role is critical to helping our business partners evolve and adapt to consumers personalized expectations in this new technological era. What will help you succeed: Fluent English (B2 - Upper Intermediate) GCP Cloud SecOps Terraform CICD Threat Detection, SIEM, SOAR Automation

Your role and responsibilities We are seeking an experienced QRadar Incident Forensic Specialist to manage the deployment, configuration, and day-to-day operations of the QRadar SIEM platform while supporting incident response and forensic investigations. The ideal candidate will play a critical role in enhancing security monitoring, investigating incidents, and ensuring seamless SIEM operations. This role requires a blend of expertise in QRadar deployment, incident handling, and forensic analysis to improve the organizations security posture, Plan, design, and deploy QRadar SIEM environments including Incident forensic, ensuring proper integration with network devices, servers, and applicat...

Lead full lifecycle of P1/P2 incidents across customer environments Develop complex detection logic/use cases for evolving threats Build detection artifacts from telemetry Perform timeline analysis, file carving, binary inspection and log correlation Required Candidate profile 4-12exp.This role is also responsible for refining SOC processes and ensuring continuous improvement of detection and response capabilities. Cybersecurity certification - mandatory Loc - Greater Nodia

Role & responsibilities Experience Level: 10+ years. Responsibilities Include: Functionally lead and manage a team of experienced SOC professionals in AT&T India Manage follow-the-sun SOC-related operations, planning and coverage Functionally lead and mentor SOC team members, and facilitate cross-team collaboration with security, technology and infrastructure groups. Maintain accurate documentation of SOC operational procedures. Enhance and Automate SOC processes. Collaborate closely with security, infrastructure teams, and other stakeholders to reduce risks and secure systems. Ensure compliance with SOC best practices, industry standards, and regulatory requirements. Participate in periodic...

Join our Team About this opportunity: We are looking for an experienced Solution Architect to lead the design, implementation, and optimization of Data pipeline, GKE & ArcSight-based security solutions. The ideal candidate will have deep expertise in Data Engg, GKE & SIEM tools with hands-on experience in Security architecture, deployment, and integration with various log sources and security tools. The role also includes close collaboration with cloud engineering, security operations, and compliance teams to ensure end-to-end security visibility across the GCP environment. What will you do: Work with business and technical teams to understand requirements and define architecture solutions. ...

Minimum qualifications: Bachelor's degree or equivalent practical experience. 5 years of experience in law enforcement, intelligence, military role or equivalent private sector experience. Preferred qualifications: Experience in open source intelligence. Understanding of threat types and trends including global geopolitical trends as well as emerging risks. Ability to handle highly confidential and sensitive information with excellent judgment, discretion and diplomacy. Ability to take initiative while building cross-functional relationships. Excellent critical thinking, problem-solving and decision making skills. Excellent written and verbal communication skills. About The Job Our Security ...

SUMMARY Your work profile. We are seeking a skilled SOC Operations to manage, maintain, and enhance our SOC platform, ensuring effective monitoring, detection, and response to security incidents. The ideal candidate will have strong experience in SOC administration, threat detection, and SOC operations to provide continuous security improvements and support to the SOC team. Key Responsibilities: As a part of our Cyber Defense and Resilience team you’ll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations. Embark GCC is seeking a dynamic and experienced professional to lead its Cyber Security Practice, with core expertise in ...

SUMMARY Your work profile. We are seeking a skilled SOC Operations to manage, maintain, and enhance our SOC platform, ensuring effective monitoring, detection, and response to security incidents. The ideal candidate will have strong experience in SOC administration, threat detection, and SOC operations to provide continuous security improvements and support to the SOC team. Key Responsibilities: As a part of our Cyber Defense and Resilience team you’ll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations. Embark GCC is seeking a dynamic and experienced professional to lead its Cyber Security Practice, with core expertise in ...

SUMMARY Your work profile. We are seeking a skilled SOC Operations to manage, maintain, and enhance our SOC platform, ensuring effective monitoring, detection, and response to security incidents. The ideal candidate will have strong experience in SOC administration, threat detection, and SOC operations to provide continuous security improvements and support to the SOC team. Key Responsibilities: As a part of our Cyber Defense and Resilience team you’ll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations. Embark GCC is seeking a dynamic and experienced professional to lead its Cyber Security Practice, with core expertise in ...

Lead IT Security Architect Designation Lead IT Security Architect Experience: 10-15 Years Location: Pune, India Work Mode: Hybrid A. Your Skills: 10 - 15 years of cybersecurity experience, with leadership in SIEM Architecture, SOC operations, threat detection, and incident response. Deep expertise in SIEM platforms, including Microsoft Sentinel, with a focus on log correlation, rule customization, and threat intelligence integration. Advanced proficiency in Microsoft security stack: Defender for Cloud, Defender for Endpoint, Defender for Identity, Defender for Cloud Apps, Office 365, Exchange, and Azure Active Directory. Skilled in onboarding diverse log sources, developing consolidated dash...

SOC Analyst / Security Engineer - Vacancies for FRESHERS (Level-1 / Those who completed the courses or learnt on their own) & EXPERIENCED (Level-2 & Level-3 / Those who have experienced in WEB HOSTING Domain only) SOC Analyst / Security Engineer who is familiar or interested to work with Linux Servers / Windows Servers / Mail Servers / Web Servers technical skills. Any courses/certification like CompTIA Security+, GSEC, EC-Council Certified SOC Analyst (CSA), Microsoft SC-200(Security Operations Analyst Associate), Cisco CyberOps Associate, Splunk Core Certified User / Analyst are preferable. Responsibilities Capable of understanding the training & Nature of works on Job Responsibilities. Mo...

As a Security Operations Engineer at Cisco, you will play a crucial role in upholding the security posture of the company. Your responsibilities will include: - Serving as the incident commander during security incidents. - Investigating alerts in Security Information and Event Management (SIEM) systems. - Identifying, analyzing, and resolving cyber threats. - Managing queues for vulnerability management tickets, security event tickets, and project tasks. - Participating in on-call rotation to ensure 24/7 coverage. - Responding to engineering teams with detailed information on vulnerabilities and processes. - Independently running project scopes with limited guidance. - Building scripts or a...