641 Threat Hunting Jobs - Page 9

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Information and Event Management (SIEM) Good to have skills : NA Minimum 12 year(s) of experience is required Educational Qualification : 15 years full time education Summary :We are seeking a highly skilled and experienced SOC Manager to lead our Security Operations Center. The ideal candidate will oversee day-to-day operations of the SOC, manage a team of ana...

About The Role Project Role : Security Engineer Project Role Description : Apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Must have skills : Accenture MxDR Ops Security Threat Analysis Good to have skills : NA Minimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :Security threat analysis and investigation skills, detection engineering, Training and Documentation. Networking Fundamentals, device integration and troubleshooting, security threat analysis and ...

* Responsible for implementation partner to see project on track along with providing required reports to management and client * Handle the project as well as BAU operations while ensuring high level of systems security compliance * Coordinate with and act as an authority to resolve incidents by working with other information security specialists to correlate threat assessment data. * Analyse data, such as logs or packets captures, from various sources within the enterprise and draw conclusions regarding past and future security incidents. * Ready to support for 24/7 environment Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional expe...

Proactively lead and support incident response team during an incident. * Experience in advance investigation, triaging, analysis and escalation of security incidents with recommendations * Hands-on basic experience with configurations and management of SIEM tools(Qradar) including log source integrations, custom parser built, fine tuning and optimizing the correlation rules and use cases recommendations Is MUST. * Proven Experience on any of the Security information and event management (SIEM) tools using Qradar * Data-driven threat hunting using SIEM, EDR and XDR tools * Basic Experience is SOAR tools such as Qradar Resilient, PaloAlto XSOAR * Identify quick defence techniques till permane...

About The Role Project Role : Security Engineer Project Role Description : Apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Must have skills : Accenture MxDR Ops Security Threat Analysis Good to have skills : NA Minimum 2 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Engineer, you will apply security skills to design, build, and protect enterprise systems, applications, data, assets, and people. Your typical day will involve collaborating with va...

About The Role Project Role : Security Engineer Project Role Description : Apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Must have skills : Accenture MxDR Ops Security Threat Analysis Good to have skills : NA Minimum 2 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Engineer, you will apply your security skills to design, build, and protect enterprise systems, applications, data, assets, and people. A typical day involves collaborating with vari...

Level - L3 Reports to: SOC Lead Position Summary: The Senior SOC Specialist will be the subject matter expert (SME) and support the Security Operations Centre (SOC) operations. The candidate should have deep expertise in security monitoring, incident response, threat intelligence and security technologies. This role is critical for ensuring rapid detection, response and mitigation of security incidents. Key Responsibilities: Manage advanced threat detection, incident triage, investigation and response activities. Serve as a subject matter expert (SME) for SOC tools and processes. Perform in-depth analysis of complex security events and indicators of compromise (IOCs). Develop and maintain pl...

Level: L1+L2 A level one (L1) Security Operation Center (SOC) analyst performs several activities in addition to the monitoring activity: Monitor security alerts Participate in use case and rule workshops Participate in rule tuning sessions Participate in response procedure workshops Participate in lessons learned workshops Participate in education sessions as needed Shift meetings (typically start and end of shift) Record key metrics (auto or manual) to document: Response time - Handle time - Cycle time - Quality - Error rates - Feedback Review threat intelligence briefs Maintain and manage skills development plans Shift turnover / handover during SI A level two (L2) Security Operation Cent...

Level: L1+L2 A level one (L1) Security Operation Center (SOC) analyst performs several activities in addition to the monitoring activity: Monitor security alerts Participate in use case and rule workshops Participate in rule tuning sessions Participate in response procedure workshops Participate in lessons learned workshops Participate in education sessions as needed Shift meetings (typically start and end of shift) Record key metrics (auto or manual) to document: Response time - Handle time - Cycle time - Quality - Error rates - Feedback Review threat intelligence briefs Maintain and manage skills development plans Shift turnover / handover during SI A level two (L2) Security Operation Cent...

Level: L1+L2 A level one (L1) Security Operation Center (SOC) analyst performs several activities in addition to the monitoring activity: Monitor security alerts Participate in use case and rule workshops Participate in rule tuning sessions Participate in response procedure workshops Participate in lessons learned workshops Participate in education sessions as needed Shift meetings (typically start and end of shift) Record key metrics (auto or manual) to document: Response time - Handle time - Cycle time - Quality - Error rates - Feedback Review threat intelligence briefs Maintain and manage skills development plans Shift turnover / handover during SI A level two (L2) Security Operation Cent...

Level: L1+L2 A level one (L1) Security Operation Center (SOC) analyst performs several activities in addition to the monitoring activity: Monitor security alerts Participate in use case and rule workshops Participate in rule tuning sessions Participate in response procedure workshops Participate in lessons learned workshops Participate in education sessions as needed Shift meetings (typically start and end of shift) Record key metrics (auto or manual) to document: Response time - Handle time - Cycle time - Quality - Error rates - Feedback Review threat intelligence briefs Maintain and manage skills development plans Shift turnover / handover during SI A level two (L2) Security Operation Cent...

Level: L1+L2 A level one (L1) Security Operation Center (SOC) analyst performs several activities in addition to the monitoring activity: Monitor security alerts Participate in use case and rule workshops Participate in rule tuning sessions Participate in response procedure workshops Participate in lessons learned workshops Participate in education sessions as needed Shift meetings (typically start and end of shift) Record key metrics (auto or manual) to document: Response time - Handle time - Cycle time - Quality - Error rates - Feedback Review threat intelligence briefs Maintain and manage skills development plans Shift turnover / handover during SI A level two (L2) Security Operation Cent...

Level -L3 - Build baseline behavioural profiles for users, hosts, IPs, and applications. - Detect anomalies such as lateral movement, beaconing, data exfiltration, and unauthorized access (e.g., VPN/RDP logins, illegal website access) - Prioritize threats based on asset sensitivity and potential blast radius Model Development & Tuning aligned with MITRE ATT&CK to detect: - Insider threats and compromised accounts. - Zero-day and advanced persistent threats (APTs). - Emerging global threat patterns - Enriching incidents with UEBA context for faster triage. - Enabling threat hunting using UEBA signals. - Collaborating with SOAR teams to automate response workflows - Daily threat hunting report...

Level -L3 - Build baseline behavioural profiles for users, hosts, IPs, and applications. - Detect anomalies such as lateral movement, beaconing, data exfiltration, and unauthorized access (e.g., VPN/RDP logins, illegal website access) - Prioritize threats based on asset sensitivity and potential blast radius Model Development & Tuning aligned with MITRE ATT&CK to detect: - Insider threats and compromised accounts. - Zero-day and advanced persistent threats (APTs). - Emerging global threat patterns - Enriching incidents with UEBA context for faster triage. - Enabling threat hunting using UEBA signals. - Collaborating with SOAR teams to automate response workflows - Daily threat hunting report...

Level -L3 - Build baseline behavioural profiles for users, hosts, IPs, and applications. - Detect anomalies such as lateral movement, beaconing, data exfiltration, and unauthorized access (e.g., VPN/RDP logins, illegal website access) - Prioritize threats based on asset sensitivity and potential blast radius Model Development & Tuning aligned with MITRE ATT&CK to detect: - Insider threats and compromised accounts. - Zero-day and advanced persistent threats (APTs). - Emerging global threat patterns - Enriching incidents with UEBA context for faster triage. - Enabling threat hunting using UEBA signals. - Collaborating with SOAR teams to automate response workflows - Daily threat hunting report...

Level -L3 - Build baseline behavioural profiles for users, hosts, IPs, and applications. - Detect anomalies such as lateral movement, beaconing, data exfiltration, and unauthorized access (e.g., VPN/RDP logins, illegal website access) - Prioritize threats based on asset sensitivity and potential blast radius Model Development & Tuning aligned with MITRE ATT&CK to detect: - Insider threats and compromised accounts. - Zero-day and advanced persistent threats (APTs). - Emerging global threat patterns - Enriching incidents with UEBA context for faster triage. - Enabling threat hunting using UEBA signals. - Collaborating with SOAR teams to automate response workflows - Daily threat hunting report...

Level -L3 - Build baseline behavioural profiles for users, hosts, IPs, and applications. - Detect anomalies such as lateral movement, beaconing, data exfiltration, and unauthorized access (e.g., VPN/RDP logins, illegal website access) - Prioritize threats based on asset sensitivity and potential blast radius Model Development & Tuning aligned with MITRE ATT&CK to detect: - Insider threats and compromised accounts. - Zero-day and advanced persistent threats (APTs). - Emerging global threat patterns - Enriching incidents with UEBA context for faster triage. - Enabling threat hunting using UEBA signals. - Collaborating with SOAR teams to automate response workflows - Daily threat hunting report...

Level -L3 Lead the development of threat hunting hypotheses using threat intelligence, MITRE ATT&CK, and kill chain models Guide the team in conducting hunts across SIEM, EDR/XDR, and network telemetry to uncover hidden threats Validate and refine threat intelligence to ensure it is actionable and relevant Translate hunting outcomes into detection logic and use cases for SIEM and SOAR platforms Collaborate with content developers to build and tune correlation rules and analytics Identify gaps in visibility and recommend improvements to logging and telemetry coverage Escalate confirmed findings to L3 incident response teams with detailed evidence and RCA Recommend preventive and detective cou...

Level -L3 Lead the development of threat hunting hypotheses using threat intelligence, MITRE ATT&CK, and kill chain models Guide the team in conducting hunts across SIEM, EDR/XDR, and network telemetry to uncover hidden threats Validate and refine threat intelligence to ensure it is actionable and relevant Translate hunting outcomes into detection logic and use cases for SIEM and SOAR platforms Collaborate with content developers to build and tune correlation rules and analytics Identify gaps in visibility and recommend improvements to logging and telemetry coverage Escalate confirmed findings to L3 incident response teams with detailed evidence and RCA Recommend preventive and detective cou...

Level -L3 Lead the development of threat hunting hypotheses using threat intelligence, MITRE ATT&CK, and kill chain models Guide the team in conducting hunts across SIEM, EDR/XDR, and network telemetry to uncover hidden threats Validate and refine threat intelligence to ensure it is actionable and relevant Translate hunting outcomes into detection logic and use cases for SIEM and SOAR platforms Collaborate with content developers to build and tune correlation rules and analytics Identify gaps in visibility and recommend improvements to logging and telemetry coverage Escalate confirmed findings to L3 incident response teams with detailed evidence and RCA Recommend preventive and detective cou...

Level -L3 Lead the development of threat hunting hypotheses using threat intelligence, MITRE ATT&CK, and kill chain models Guide the team in conducting hunts across SIEM, EDR/XDR, and network telemetry to uncover hidden threats Validate and refine threat intelligence to ensure it is actionable and relevant Translate hunting outcomes into detection logic and use cases for SIEM and SOAR platforms Collaborate with content developers to build and tune correlation rules and analytics Identify gaps in visibility and recommend improvements to logging and telemetry coverage Escalate confirmed findings to L3 incident response teams with detailed evidence and RCA Recommend preventive and detective cou...

Level -L3 Lead the development of threat hunting hypotheses using threat intelligence, MITRE ATT&CK, and kill chain models Guide the team in conducting hunts across SIEM, EDR/XDR, and network telemetry to uncover hidden threats Validate and refine threat intelligence to ensure it is actionable and relevant Translate hunting outcomes into detection logic and use cases for SIEM and SOAR platforms Collaborate with content developers to build and tune correlation rules and analytics Identify gaps in visibility and recommend improvements to logging and telemetry coverage Escalate confirmed findings to L3 incident response teams with detailed evidence and RCA Recommend preventive and detective cou...

Role Overview: At OpenText, AI is a core aspect of our operations, driving innovation and transforming work processes to empower digital knowledge workers. As part of our team, you will play a crucial role in shaping the future of information management by leveraging your expertise. Key Responsibilities: - Perform monitoring, identification, investigation, documentation, resolution, and reporting of security alerts by prioritizing events based on risk/exposure. - Analyze Endpoint Detection and Response (EDR), Network, Cloud, and other traffic and log data to identify potential threats or vulnerabilities. - Generate tickets and incident reports for external clients and Tier 3 analysts. - Reme...

Role Overview: As a SOC Analyst at Capgemini, you will play a crucial role in analyzing and responding to security incidents. Your responsibilities will include incident response, threat detection, stakeholder support, threat hunting, and leveraging cyber intelligence to enhance security measures. You will have the opportunity to work on cutting-edge projects in technology and engineering while contributing to a more sustainable and inclusive world. Key Responsibilities: - Analyze and document security incidents, escalate when necessary, and facilitate handover to L3 teams. - Conduct research and data analysis to identify threats and coordinate remediation efforts. - Assist IT teams and end ...

Cloud Security Engineer II Zscaler + Cloud(Any) Shift: Rotational, 24*7 Location : Delhi NCR(Noida And Gurugram) t Experience with Zscaler is a must. Ability to work independently in implementing and handling Zscaler Insight at a Glance 14,000+ engaged teammates globally with operations in 25 countries across the globe. Received 35+ industry and partner awards in the past year $9.2 billion in revenue #20on Fortunes World'sBest Workplaces™ list #14 on Forbes World's Best Employers in IT – 2023 #23 on Forbes Best Employers for Women in IT- 2023 $1.4M+ total charitable contributions in 2023 by Insight globally About the role As a Cloud Security Engineer II, you will be providing Security L1/L2/...