660 Threat Intelligence Jobs - Page 6

Role Overview: As an incident responder for the Indian client operating in 39 countries, your primary responsibility will be to coordinate Level 3 Incident Response (IR) activities with the internal 24*7 Security Operations Center (SOC) IR team. This role entails performing L3 IR, threat hunting, and digital forensics analysis, identifying and mitigating cyber threats, preparing reports and recommendations, and collaborating with internal and external stakeholders. You are expected to stay updated on the latest trends, tools, and techniques in the field of threats, digital forensics, and incident response. Key Responsibilities: - Perform incident response activities like containment, eradica...

JOB DESCRIPTION: Responsible for responding to security incidents identified by internal controls or external SOC partners Strictly adhere to service level agreements (SLAs), metrics and business scorecard obligations for ticket handling security incidents and events. Hands-on experience with Security Information and Event Management (SIEM) tools such as Splunk, IBM Q-Radar, Microsoft Sentinel, LogRhythm, or ArcSight. Proficient in Incident Response and automation workflows as it relates to Security Operations. Detects, identifies, and responds to cyber events, and incidents in line with cyber security policies and procedures. Should be capable of independently leading and managing security ...

As a Security Operations Analyst at Springer Nature, your role involves monitoring and responding to security threats, managing incidents, SOC daily operations, and collaborating with other security team members. You will be responsible for utilizing analytics tools to monitor security events within the Springer Nature ecosystem, enabling the business to implement proactive countermeasures and reactive remediation against cyber threats. This position is based in our Pune office and follows a hybrid working model. **Role Responsibilities:** - Integrate and manage security monitoring tools within the Springer Nature ecosystem, including content filtering, IDS, IPS, log collection, and security...

Role Overview: As a Security Analyst, you will be responsible for developing, testing, and maintaining detection rules and logic across SIEM, EDR, and other security platforms. You will identify and implement detection use cases based on emerging threats and TTPs, leveraging the MITRE ATT&CK framework. Your role will involve analyzing security data to identify trends, anomalies, and potential threats. Collaboration with incident response teams to validate and refine detection mechanisms will be a crucial aspect of your job. Optimizing detection rules to reduce false positives while ensuring accurate threat identification is key. Additionally, you will perform threat hunting and contribute to...

Your role overview will involve working on threat mitigation, threat intelligence, intrusion prevention, digital forensics, incident response, and threat analysis to effectively mitigate cyber threats. Additionally, you will be responsible for configuring and implementing operational support, troubleshooting Firewall, IPS, and VPN devices to ensure 99% uptime. You will also conduct security assessments and validations of Firewall, IPS, VPN, and networking devices to mitigate risks. Furthermore, you will implement and manage Endpoint Protection software for desktops and servers to ensure Business Continuity. Key Responsibilities: - Work on threat mitigation, threat intelligence, intrusion pre...

Role Overview: As a Security Incident Response Analyst at our organization, you will play a critical role in analyzing security incidents to ensure efficient containment, eradication, and recovery. Your responsibilities will involve incident assessment and response to security alerts and incidents, contributing to enhancing the overall security posture of the organization through documenting and reporting your findings. Key Responsibilities: - Act as the primary contact during security incidents, ensuring clear communication with stakeholders - Prepare detailed incident reports and collaborate with SOC analysts, IT teams, and third-party vendors - Engage in post-incident reviews, develop det...

AHEAD builds platforms for digital business. By weaving together advances in cloud infrastructure, automation and analytics, and software delivery, we help enterprises deliver on the promise of digital transformation. AtAHEAD, we prioritize creating a culture of belonging,where all perspectives and voices are represented, valued, respected, and heard. We create spaces to empower everyone to speak up, make change, and drive the culture at AHEAD. We are an equal opportunity employer,anddo not discriminatebased onan individual's race, national origin, color, gender, gender identity, gender expression, sexual orientation, religion, age, disability, maritalstatus,or any other protected characteri...

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Information and Event Management (SIEM) Good to have skills : NA Minimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. You will also document the implementation of clo...

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Threat Hunting Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. A typical day involves collaborating with various teams to assess securi...

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Information and Event Management (SIEM) Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As SOC Operations Manager, you will oversee and manage day to day activities of a security operations center on Security incident management delivery. You will be expected to support the documentation, ...

Proactively lead and support incident response team during an incident. * Experience in advance investigation, triaging, analysis and escalation of security incidents with recommendations * Hands-on basic experience with configurations and management of SIEM tools(Qradar) including log source integrations, custom parser built, fine tuning and optimizing the correlation rules and use cases recommendations Is MUST. * Proven Experience on any of the Security information and event management (SIEM) tools using Qradar * Data-driven threat hunting using SIEM, EDR and XDR tools * Basic Experience is SOAR tools such as Qradar Resilient, PaloAlto XSOAR * Identify quick defence techniques till permane...

Information Security Analyst - Threat Exposure and Vulnerability Management Youll benefit from a supportive work culture that encourages you to learn, develop, and grow your career as you take on challenges and drive innovative solutions for our customers. We empower our team to push the boundaries of what is possiblewhile learning every day in a supportive leading global company. Visit our Careers website to learn more. At Applied Materials, we care about the health and wellbeing of our employees. Were committed to providing programs and support that encourage personal and professional growth and care for you at work, at home, or wherever you may go. Learn more about our . The candidate wil...

Work experience - 5+ Years Proactively lead and support incident response team during an incident. Experience in advance investigation, triaging, analysis and escalation of security incidents with recommendations Hands-on basic experience with configurations and management of SIEM tools(Qradar)including log source integrations, custom parser built, fine tuning and optimizing the correlation rules and use cases recommendations Is MUST. Proven Experience on any of the Security information and event management (SIEM) tools using Qradar Data-driven threat hunting using SIEM, EDR and XDR tools Basic Experience is SOAR tools such as Qradar Resilient, PaloAlto XSOAR Identify quick defence technique...

Experience: 5+ in industry- Threat Detection Engineer M - Expertise in MITRE ATT&CK, Cyber Kill Chain, and Diamond Model M - Strong scripting skills in Python or PowerShell or Bash or any other Google chronicle YARA-L,Splunk SPL

As the Global Information Security Operations Manager, you will be responsible for overseeing all aspects of information security operations to ensure the protection of the organization from various risks. You will lead a team of cyber and technology professionals and drive the cyber security architecture, technology, and resiliency processes across On-Premise and Cloud environments. Your role will involve identifying, mitigating, and managing revenue, financial, and brand risks, as well as maintaining continuous awareness of emerging information security threats and control techniques. - Own and manage the Global Information Security Operations, ensuring accountability for the security post...

Role & responsibilities Primary Skills Security, DLP, Threat Intelligence, CrowdStrike Secondary Skills PKI Required Qualification & experience: Experience: 3+ Years Job Type: Fulltime Designation: - Security Specialist Notice Period: Immediate to 15 days Job Location: -Mumbai / Bangalore Bachelors degree in IT or equivalent. Security Industry Certification such as CEH, GCIH or CISSP would be highly beneficial. Key Skills: DLP, Threat Intelligence, CrowdStrike, PKI Primary Function: Outline the risks identified during assessments in a business acceptable terminology. Complete compliance and risk assessments according to the guidance provided by Coles. Be familiar on latest security standards...

As a SIEM SOAR/Platform Engineer at EY, you will play a crucial role in designing, developing, and maintaining security automation playbooks using Palo Alto Cortex XSOAR. Your expertise in security automation and orchestration will be essential in integrating various security tools with XSOAR to enhance incident response capabilities. You will collaborate with the SOC team to automate and streamline incident response processes and develop custom scripts and integrations using Python or other relevant programming languages. Key Responsibilities: - Design, develop, and maintain security automation playbooks using XSOAR. - Integrate various security tools and systems with XSOAR to enhance incid...

As a Cyber Threat Intelligence Analyst at Deutsche Bank, you will play a crucial role in safeguarding the organization from cyber threats. Your responsibilities will include identifying, assessing, and mitigating threats, providing mitigation recommendations, analyzing complex technical issues, and collaborating with diverse teams and stakeholders to develop bank-specific solutions. You will also contribute towards enhancing the bank's capabilities in responding to threats through projects and strategic initiatives. Key Responsibilities: - Proactively identify threats, track threat actors, tactics, techniques, and procedures (TTPs) to produce actionable intelligence. - Produce threat assessm...

Project Role : Security Engineer Project Role Description : Apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Must have skills : Splunk Security Information and Event Management (SIEM) Good to have skills : Microsoft Azure SentinelMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Engineer, you will apply security skills to design, build, and protect enterprise systems, applications, data, assets, and people. You will provide services to safe...

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Architecture Design Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will be responsible for defining the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. You will document the implementation of the cl...

Role Overview: You will be joining Alliant Cybersecurity as an experienced Level 2 analyst in Hyderabad to support the expansion of the Cybersecurity and Risk Advisory practice. Your primary responsibility will involve assisting US-based customers and necessitates flexibility to work during US business hours. Key Responsibilities: - Lead in-depth investigations of escalated L1 incidents - Analyze data from various security tools and sources - Provide support during crisis management to the incident handler and SOC Level 3 analysts - Generate reports and visualizations of security attacks - Fine-tune Use Cases and create new ones - Monitor trends for metrics and reporting - Decrease false pos...

Role Overview: We are seeking a SIEM Automation & Threat Response Engineer to design, implement, and scale security automation within FortiSIEM and align automation with SOC playbooks. This role will progressively reduce manual workloads and improve incident response efficiency. Key Responsibilities: Review and optimize SIEM detection rules in collaboration with Thrive. Identify automation use cases (IOC enrichment, ticket auto-generation, deduplication, isolation workflows). Develop and maintain FortiSIEM automation playbooks. Scale automation maturity to cover phishing, malware, and identity-based incidents. Track SOC performance metrics (MTTD, MTTR) and report improvements. Collaborate wi...

As a Cyber Security Deputy General Manager for the AMIEO region in India at grade EVP-5 (DGM), your role is crucial within the Information & Cyber Security team. You will serve as a liaison between regional Security teams and technology-focused analysts, engineers, and administrators in the AMIO IT organization. Your responsibilities include translating IT-risk requirements into technical control specifications, developing metrics for performance measurement, coordinating technical activities for security infrastructure management, and providing regular status reports to management. Key Responsibilities: - Risk Management: Identify, assess, and mitigate risks to ensure information system sec...

As a Senior Analyst, Information Security at Pall Corporation, a Danaher operating company, you will play a crucial role in strengthening and advancing the protection of digital assets and sensitive data against evolving cyber threats. You will lead security monitoring, incident response, and risk management efforts while also mentoring junior analysts. Your responsibilities will include partnering with business and IT leaders to design and implement effective security measures, ensure compliance with industry standards, and proactively anticipate and mitigate threats. This position requires deep technical expertise, strong problem-solving skills, and the ability to thrive in a fast-paced, a...

Team Lead - SOC Location: Hyderabad Exp: 8+ Yrs SHI Solutions India Pvt Ltd looking for SOC Lead with experience in a combination of risk management, Information security and IT roles Bachelors degree in Computer Science, Information Technology, or equivalent experience with professional security management certification Security Operations Centre and Incident Response skills Analytical Skills Cybersecurity and Network Security expertise Strong problem-solving abilities Excellent communication and teamwork skills Relevant certifications such as CISSP, CEH, or CompTIA Security+ Bachelor's degree in Computer Science, Information Technology, or related field Knowledge of common information secu...