439 Threat Intelligence Jobs - Page 9

We are seeking a highly motivated Business Analyst with expertise in analyzing and documenting requirements for ServiceNow security modules. The ideal candidate will possess a strong background in vulnerability management, security incident response, and ServiceNow capabilities. This role entails close collaboration with stakeholders, developers, and solution architects to ensure accurate requirements gathering, gap analysis, and solution design. Collaborating with business and technical teams is a key responsibility of this role to gather, analyze, and document detailed business and functional requirements effectively. The candidate must be adept at writing clear user stories in ServiceNow ...

As a Security Engineer at Expedia Group, you will be part of the Security Solutions Engineering team responsible for designing and implementing critical security systems and services. Your role will involve working on key initiatives from conceptualization to deployment, requiring a deep understanding of complex technical environments and the ability to develop effective security solutions. Your responsibilities will include: - Implementing Endpoint Detection and Response (EDR) solutions such as Anti-malware Agents and Data Loss Prevention - Managing Web Content Filtering for seamless Internet protection using on-premise and cloud-based web proxies - Overseeing Vulnerability Management for D...

At Seclore, we're redefining how enterprises secure their dataanytime, anywhere. As a Senior Sales Engineer, youll be at the forefront of that mission. Youll work hand-in-hand with the sales team, acting as a trusted technical advisor and solution architect for prospects and customers. If youre passionate about uncovering needs, crafting innovative solutions, and building strong customer relationships, wed love to talk. Here's what you will get to explore: Sales Collaboration: Work alongside the sales team to introduce Seclores data-centric security solutions to prospective customers. Discovery Solution Design: Lead discovery sessions to deeply understand customer needs, then design and deli...

Shift : 9x5 Job Description for Threat Hunter/TIP admin Skillset Must : Network forensic (Packet Capture andRe-Construction Capability), Knowledge on Threat Intelligence Platform (TIP)/Anti APT/ EDR Certified with any threat hunting certification,or equivalent . Responsible for conducting all threat-huntingactivities necessary for identifying the threats including zero day. Hunt for security threats, identify threat actorgroups and their techniques, tools and processes. Strong knowledge of APT lifecycle, tactics,techniques, and procedures (TTPs). Familiarity with MITRE ATT&CK framework andmapping threats to techniques. Provide expert analytic investigative support toL1 and L2 analysts for co...

Experience Required: 4+ years in Cybersecurity, with 2+years hands-on any threat intelligence platform Reports To: Security Operations Lead / SOC Manager Location: Jaipur Job Type: Full-time, Customer locations Job Summary: We are seeking a skilled Threat IntelligenceEngineer/Analyst with hands-on experience in managing and operating a UnifiedThreat Intelligence Platform (UIP). The ideal candidate will be responsible forintegrating, enriching, analyzing, and disseminating threat intelligence acrosssecurity systems (SIEM, SOAR, EDR) to enhance threat detection, hunting, andresponse efforts. Key Responsibilities: Administer and maintain the Unified Threat Intelligence Platform (e.g., MISP, Ano...

Roles/Responsibilities: Experiencein SIEM Tool like ArcSight, LogRhythm SIEM, Threat Intelligence, MalwareAnalysis, Incident Response Experiencein handling SOC customer in MSSP/multi-tenant environment Responsiblefor the technical Administration or troubleshooting in SIEM ensuring theefficient functionality of the solution Responsiblefor Incident Validation, Incident Analysis, Solution Recommendation, Good knowledge on implementation,installation, integration troubleshooting and overall functionalities of LogRhythm/ArcSight/QRadar/Splunk Arc Sight/LR/QRadar platformadministration, management experience, platform upgrade Experience in troubleshooting platformrelated issues, Data backup, resto...

Responsible for conducting all threat-hunting activities necessary for identifying threats including zero day. Hunt for security threats, identify threat actor groups and their techniques, tools, and processes. Strong knowledge of APT lifecycle, tactics, techniques, and procedures (TTPs). Familiarity with MITRE ATT&CK framework and mapping threats to techniques. Provide expert analytic investigative support to L1 and L2 analysts for complex security incidents. Proficiency in malware behavior analysis and sandboxing. Perform analysis of security incidents for further enhancement of rules, reports, AI/ML models. Perform analysis of network packet captures, DNS, proxy, NetFlow, malware, host-ba...

As an Email Security Engineer located in Noida, you will play a pivotal role in the design, implementation, and management of advanced email security solutions. With a B.Tech./MCA or equivalent educational background and technical certification, you are positioned to provide fourth-tier support for email security issues, resolving complex technical problems efficiently. Your responsibilities include designing and implementing email security architectures encompassing encryption, anti-phishing, and anti-spam solutions. You will lead the investigation and resolution of high-severity email security incidents, conducting forensic analysis and delivering detailed incident reports. Your expertise ...

We are looking for a skilled and dynamic Security & Privacy Architect and SDL Coach to join our team and help enhance the security posture of our software development lifecycle. This role requires a strong foundation in code analysis, security architecture, and coaching teams on security best practices. You will collaborate closely with development teams, conduct security assessments, guide secure coding practices, and ensure adherence to industry standards. As a Security & Privacy Architect, your responsibilities will include identifying vulnerabilities and providing actionable recommendations to mitigate security risks. In your role as an SDL Coach, you will assist application teams in int...

Threat Protection Engineer | ACPL Must have Microsoft Threat Detection & Protection, Defender, and Cloud Security experience. Should be able to provide L3 support.its a 2 yrs bond with ACPL Company/Manesar location-Hybrid

Responsibilities: * Conduct threat analysis using SOC tools like QRadar & LogRhythm. * Collaborate with incident response team on security incidents. * Monitor network activity for suspicious behavior.

As an Incident Response Consultant, you will be responsible for providing expert consultation to clients on incident response strategies. Your main goal will be to ensure swift containment, eradication, and recovery from cybersecurity incidents such as ransomware and data breaches. In addition, you will be developing customized incident response plans and playbooks tailored to client organizations" specific needs. In the realm of Digital Forensics Services, you will conduct forensic investigations to identify the root cause of incidents, assess damage, and gather evidence for legal or compliance purposes. This will involve utilizing advanced forensic tools and techniques to analyze compromis...

The Cybersecurity Intern will be responsible for supporting various aspects of cybersecurity operations including governance, risk, compliance, assessments, and Security Operations Center (SOC) activities. The Intern will have the opportunity to work on different projects across multiple locations such as Thane, Pune, Bengaluru, and Mumbai. This internship will provide hands-on experience in the field of cybersecurity and offers a potential full-time position upon successful completion. In the role of CyberSecurity Intern - GRC, you will assist in developing and implementing information security policies, standards, and procedures. Your responsibilities will include educating employees on be...

As an L2 SOC Analyst specializing in LogRhythm SIEM, your role will involve strengthening the Security Operations Center in Mumbai. With 2 to 5 years of hands-on experience in security monitoring and incident analysis, particularly focusing on LogRhythm SIEM, you will play a crucial part in the in-depth analysis, incident investigation, escalation, and coordination with response teams. Your key responsibilities will include monitoring, analyzing, and triaging security alerts from LogRhythm SIEM and other security platforms. You will be responsible for investigating and validating security incidents with detailed analysis and impact assessment, conducting threat hunting, and advanced log corr...

Key Responsibilities : Threat Detection & Response Security Monitoring Incident Response Threat Intelligence: Vulnerability Management Security Automation Compliance & Risk Management Security Assessments Collaboration:

Position Summary: We are seeking an experienced and strategic SOC L3 Manager to lead our Tier 3 Security Operations Center (SOC) team. This individual will oversee advanced threat detection, incident response, threat hunting, and security investigations. The SOC L3 Manager will serve as a technical expert and mentor, guiding analysts through the resolution of complex security incidents and collaborating with cross-functional teams to enhance the organizations security posture. Key Responsibilities: Lead and manage the SOC L3 (Tier 3) team in handling high-severity incidents, threat intelligence analysis, and proactive threat hunting. Oversee the development and execution of incident response...

Your Role Administer and develop solutions usingSplunkandSplunk Security Essentialsto support enterprise security monitoring and analytics. Design, implement, and maintain Splunk dashboards, alerts, and reports to provide actionable insights into security events. UtilizeUNIX shell scripting or Pythonto automate data ingestion, parsing, and enrichment processes. Lead and manage security-related projects from planning through execution, ensuring timely delivery and alignment with business goals. Collaborate with cross-functional teams to define requirements, manage risks, and ensure stakeholder satisfaction. Your Profile 5 to 10 yearsof experience in IT security with a strong focus onSplunk ad...

Dear Cybersecurity Professionals, We are thrilled to invite you to our upcoming AI in Cybersecurity User Group activity , happening on 26th July in Chennai . This is an excellent opportunity to connect, learn, and exchange insights on how AI is revolutionizing the cybersecurity landscape. Highlights of the event: Expert talks on AI-driven cybersecurity solutions Real-world case studies and practical insights Networking with industry peers and thought leaders Interactive sessions to discuss challenges & best practices Please note: Seats are strictly limited , and registrations will be accepted on a first-come, first-served basis. Date: 26th July 2025 Time: 10:30 AM 12:30 PM Location: Chennai ...

This is an Individual Contributor role that will evolve based on how this function matures. You will play a critical role in the company's tech infrastructure, ensuring processes are fully aligned with regulatory, security, and business continuity standards. Your responsibilities will include drafting, coordinating, and monitoring IT processes and policies to ensure compliance with the IT Act, regulatory bodies (e.g., RBI, SEBI, GDPR, UIDAI, etc.), and info security guidelines. You will work with internal and external stakeholders to prepare and update business-wise IT infra details required for regulatory filings and 3rd party audits. Additionally, you will conduct vendor risk assessment au...

As an Academic Advisor for Cybersecurity Training & Certification at Technovalley Software India Pvt. Ltd., located in Kochi, India, you will play a crucial role in guiding aspiring students, IT professionals, and corporate partners towards achieving internationally recognized certifications and unlocking global career opportunities. Your main responsibilities will include providing professional career guidance and counselling to individuals interested in pursuing Cybersecurity career paths such as Ethical Hacking, Cybersecurity Analyst, Computer Hacking Forensic Investigator, Offensive Security Certified Cybersecurity, Penetration Testing, SOC Analyst, Threat Intelligence, and Incident Resp...

The role of a Splunk Security Solution Architect is to serve as a subject matter expert for Splunk Security products and provide expertise on the broader security landscape. Your primary responsibility will be to support Splunk account teams, including sales and pre-sales resources, in developing tailored security solutions for customers. As the "eyes and ears" for the field, you will offer expert guidance and recommendations to help customers enhance the security and resiliency of their organizations. Your key responsibilities will include establishing and maintaining strong relationships with clients and partners, collaborating closely with account teams to align with sales strategies, and...

As a Security Incident Response Analyst at our organization, you will be responsible for incident assessment and response to security alerts and incidents. Your role will involve analyzing these incidents to ensure efficient containment, eradication, and recovery. It will be essential for you to document and report your findings to improve the overall security posture of the organization. In this position, effective communication and coordination are key aspects of your responsibilities. You will act as the primary contact during security incidents, providing clear communication to stakeholders and preparing incident reports. Additionally, you will be required to coordinate with SOC analysts...

As a Security Incident Analyst L3 at our client site in Gurugram, you will play a crucial role in incident response, threat analysis, and security operations. Your responsibilities include leading the response to high-severity incidents, conducting advanced threat analysis, administering security tools, and mentoring junior SOC analysts. This position requires a minimum of 5 years of experience in a Security Operations Center (SOC) or Incident Response role, along with expertise in SIEM administration, network security, and incident detection. A strong knowledge of security tools such as SIEM platforms (QRadar, Splunk), EDR tools (CrowdStrike, Carbon Black), and IDS/IPS is essential. Additio...

Job Summary: We are seeking a proactive and technically skilled information security (SOC) Engineer/Analyst to monitor, detect, and respond to cybersecurity threats in real-time. The ideal candidate will have strong analytical skills, be detail-oriented, and possess a sound understanding of threat landscapes, SIEM tools, and incident response. The ideal candidate will possess a strong foundational understanding of cybersecurity governance, robust technical skills in security operations, and a commitment to staying abreast of the evolving threat landscape and internal security requirements. Key Responsibilities Monitor security events and alerts from SIEM and other security tools. Perform ini...

Role Summary: We are looking for a skilled professional with 3–5 years of experience in monitoring, analysis, and incident handling using Palo Alto Cortex XDR/XSIAM. The ideal candidate will be responsible for managing alerts, conducting investigations, and optimizing detection capabilities within the Cortex platform. Key Responsibilities: Monitoring & Analysis: Review and analyze alerts generated by Cortex XDR/XSIAM. Perform triage and determine the relevance and severity of events. Identify patterns, anomalies, and potential risks in data. Incident Handling: Investigate and respond to events and alerts. Conduct root cause analysis and document findings. Coordinate with internal teams for r...