668 Threat Intelligence Jobs - Page 9

Role & responsibilities Proactively hunt for threats using SIEM, EDR, and other telemetry data (e.g., Splunk, Microsoft Sentinel, CrowdStrike, etc.). Perform advanced threat analysis and identify Indicators of Compromise (IOCs) and Tactics, Techniques, and Procedures (TTPs) based on frameworks like MITRE ATT&CK. Develop and fine-tune detection use cases, custom rules, and analytics to identify malicious behaviors. Collaborate with SOC, Threat Intelligence, IR, and Red Team teams to enhance detection capabilities. Analyze threat actor campaigns and exploit techniques to determine potential impact and mitigations. Perform root cause analysis of security incidents and recommend preventive measu...

Role & responsibilities Client Engagement & Solutioning: Engage with clients to understand their cybersecurity requirements, challenges, especially around SOC operations. Design and propose tailored SOC solutions including SIEM, SOAR, threat intelligence, incident response, and managed detection & response (MDR). Lead technical discussions, presentations, and demonstrations to articulate the value of proposed solutions. Proposal & Bid Management: Respond to RFPs/RFIs/RFQs with detailed technical content and solution architecture. Collaborate with internal teams to develop Statements of Work (SOW), pricing models, and delivery plans. Technical Leadership: Stay updated on cybersecurity trends,...

Role Overview We are looking for a SOC Architect / Lead to design, implement, and lead our next-generation Security Operations Center . This role requires expertise in SOC architecture, Elastic Stack, SIEM/SOAR, threat detection, and security leadership . You will oversee the SOC team, define strategy, integrate threat intelligence, and ensure proactive defense and compliance Key Responsibilities Design and implement SOC architecture (Elastic SIEM, SOAR, threat intel integrations, alert pipelines). Lead SOC Engineers in building and tuning custom dashboards & correlation rules . Define detection logic, anomaly detection, and proactive threat hunting methodologies . Establish incident respons...

Role Overview - The Security Operations & Projects Manager will oversee all SOC-related projects and teams , ensuring smooth execution of technical deliverables, on-time delivery, and alignment with customer expectations. The role requires a mix of cybersecurity knowledge, project management skills, and leadership capabilities . You will act as the bridge between technical SOC teams, executive leadership, and customers . Role & responsibilities Project & Program Management Manage end-to-end delivery of SOC, SIEM, and threat intelligence projects. Create and track project plans, milestones, budgets, and resource allocation. Coordinate between SOC Engineers, SOC Architect, CTI teams, Red Team,...

Role Overview: As a DV SOC Lead at MCS Pvt. Ltd. in Hyderabad, your primary responsibility will be to oversee the daily operations of the Security Operations Center (SOC). You will lead a team of security analysts, monitor and respond to security incidents, and implement security measures to protect the organization's assets. Managing the SOC effectively, along with tasks such as compliance reporting, incident management, threat intelligence, and maintaining communication with stakeholders, will be key aspects of your role. Key Responsibilities: - Lead a team of security analysts in the SOC - Monitor and respond to security incidents promptly - Implement security measures to safeguard organi...

Role Overview: As a Network Security Design professional in the MDR category at the Pune location, your primary responsibility will be architecting and designing secure network infrastructures in banking environments. Your focus will be on ensuring scalability, performance, and compliance with industry standards. Key Responsibilities: - Leverage SolarWinds for advanced network monitoring and performance management to maintain operational efficiency and quickly identify any issues. - Design, implement, and manage Intrusion Prevention and Detection Systems (IPS/IDS) to protect network traffic from malicious activities. - Oversee the configuration and optimization of firewalls such as Fortinet ...

As a Cyber Security Specialist, you will play a critical role in safeguarding the organization's digital assets, focusing on Cyber Threat Intelligence Services to identify and mitigate potential threats. Your expertise in Cyber Security and Cloud, along with experience in CrowdStrike, will be essential in ensuring the security of systems. This hybrid role offers flexibility in working remotely and on-site during day shifts. - Lead the development and implementation of advanced cyber threat intelligence strategies to protect organizational assets - Oversee the monitoring and analysis of security threats using CrowdStrike and other advanced tools - Provide expert guidance on cloud security bes...

As a Staff Cyber Security Engineer in the Information & Cyber Security job family, you will be a highly experienced professional contributing to designing, implementing, and managing advanced security solutions. Your role involves working on complex security projects, providing technical leadership and mentorship to team members, and ensuring the organization's security posture is robust. Collaborating with senior stakeholders, you will define security strategies and drive continuous improvement in security practices. **Key Responsibilities:** - Contribute to designing and implementing advanced security architectures to protect the organization's digital assets and infrastructure. - Conduct ...

As a CyberSecurity Team Lead, you will be responsible for acting as the primary point of contact for Managed Detection and Response (MDR) client engagements, ensuring seamless project execution. You will drive the implementation of emerging threat intelligence to identify affected systems and assess the scope of attacks. Developing, documenting, and maintaining SOC processes, standards, and alert triage procedures will be crucial to ensure effective and timely response. Your role will involve defining and refining playbooks for cyber threat response operations, autonomously conducting investigations, and escalating incidents based on defined protocols. - Mentor, guide, and lead SOC analysts ...

As a member of the Product Security Engineering (PSE) team within the Cloud CISO organization at Google, you will have the opportunity to contribute to ensuring the security of every product shipped by Cloud and enhancing the security assurance levels of the underlying infrastructure. Your role will involve collaborating with product teams to develop more secure products by implementing security measures by design and default, providing tools, patterns, and frameworks, and enhancing the expertise of embedded security leads. - Research innovative detection techniques to prevent and mitigate abusive activities such as outbound security attacks, botnet, DDoS, and other malicious behaviors that ...

Role Overview: As a Secops/Network Security Operations professional at Arthur Grand Technologies Inc in Chennai, your primary responsibility will be to design and maintain secure, high-performance network architectures that comply with policies. You will be proficient in utilizing tools such as Sentinel, MS Defender, Palo Alto Firewalls (HA), IDS/IPS, and other vulnerability management tools to ensure the security of the network. Key Responsibilities: - Lead advanced incident response activities, including triage, investigations, and documentation. - Develop incident plans, conduct threat hunts, and create detection use cases using SIEM and threat intelligence. - Enhance detection capabiliti...

As a Senior in Cyber Managed Service - Threat Detection & Response focusing on Security Orchestration, Automation and Response (Splunk SOAR), your role at EY will involve working with a team to deliver innovative integrations and playbooks, ensuring practical solutions to customer challenges. Your responsibilities will include: - Executing and maintaining Splunk SOAR analytical processes - Managing the Splunk SOAR platform - Developing custom scripts and playbooks for task automation - Leveraging Python, REST API, JSON, and basic SQL In this position, you will utilize Incident Response and Threat Intelligence tools, create efficient Python-based Playbooks, and use the Splunk SOAR platform fo...

As a Splunk Security Solution Architect, you will serve as a subject matter expert for Splunk Security products and provide expertise on the broader security landscape. Your primary responsibility will be to support Splunk account teams, including sales and pre-sales resources, in developing tailored security solutions for customers. You will be the "eyes and ears" for the field, offering expert guidance and recommendations to help customers enhance the security and resiliency of their organizations. - Establish and maintain strong relationships with clients and partners - Collaborate closely with account teams to align with sales strategies - Conduct demonstrations of Splunk's security prod...

JOB ROLE We are looking for an experienced Red Team Assessment expert to join our Cyber Security Team. This role is responsible for simulating real-world attacks to test the effectiveness of our security controls, detection capabilities, and incident response processes. The ideal candidate will have a strong background in offensive security, a deep understanding of adversary tactics, and the ability to provide actionable insights to strengthen our overall security posture. Technical Configuration Audit Based Assessment role to strengthen our IT and Cyber Security Posture. The role is responsible for reviewing assessing and auditing systems, network and security configuration to ensure compli...

You will be joining NTT DATA as an Information Security-Management - Security Analysis Specialist Advisor in Noida, Uttar Pradesh (IN-UP), India (IN). In this role, you will be responsible for ensuring the seamless delivery of all information security services to the customer. Your key duties will include: - Delivering information security services in compliance with contracts and standards - Assisting clients in defining and implementing security policies, strategies, and procedures - Participating in strategic design processes to align security with business requirements - Supporting the implementation of security governance frameworks - Collaborating with clients to review and monitor adh...

Job Overview: We are seeking a motivated and detail-oriented Junior Security Analyst to join our security team. As a Junior Security Analyst, you will assist in monitoring and defending our network and systems, helping to identify and resolve security vulnerabilities, and ensuring the safety of our organization's data and assets. Key Responsibilities: Monitor Security Systems: Assist in monitoring security alerts and events from various security tools and platforms (e.g., SIEM, firewalls, intrusion detection systems). Incident Response: Support the identification, investigation, and response to security incidents, including potential breaches, malware infections, and system vulnerabilities. ...

What You Can Expect Provide primary triage, analysis and operational support for security events and alerts. Perform correlation using security analytics tools, log aggregators, advanced network malware protection, data indicator mining tools, forensics tools and threat intelligence repositories. Perform real-time incident handling (e.g., intrusion correlation and tracking, threat analysis, and direct system remediation) tasks to support deployable Incident Response Participate in analyzing nature of the attack and root cause analysis of an incident. Monitor external data sources proactively to determine which security issues may have an impact on the enterprise. Document and publish techniq...

As the candidate for the position, your role will involve strategic leadership and practice development. You will define and drive the overall strategy, roadmap, and growth of the MDR, CES, and MSSP lines of business. Your responsibilities will include developing service offerings, frameworks, and best practices to enhance security operations and service delivery. Collaborating with senior leadership and stakeholders to align cybersecurity services with business goals will be crucial. Additionally, you will need to identify market trends, emerging threats, and technology advancements to ensure continuous improvement. Key Responsibilities: - Oversee the Security Operations Center (SOC), ensur...

As a Cyber Security Trainer and Consultant at CDI, you will be responsible for conducting both onsite and offsite training programs for clients. Your main tasks will include: - Conducting Vulnerability Assessments - Performing Network Penetration Testing - Executing Internal & External as well as Web Application scanning - Conducting Penetration Testing using both manual methods and automated tools To excel in this role, you must possess a solid understanding and practical experience with tools such as Metasploit, OWASP top ten attacks, Burpsuite, Kali Linux, Acunetix, Nessus, Nmap, and other relevant tools. Additionally, a good grasp of Threat Intelligence and domain tools is essential. Eff...

Role Overview: As an Incident Response Consultant, your main responsibility will involve providing expert consultation to clients on incident response strategies. You will focus on ensuring swift containment, eradication, and recovery from cybersecurity incidents like ransomware and data breaches. Additionally, you will develop customized incident response plans and playbooks tailored to meet the specific needs of client organizations. Key Responsibilities: - Conduct forensic investigations in the realm of Digital Forensics Services to identify the root cause of incidents, assess damage, and gather evidence for legal or compliance purposes. - Analyze compromised systems and networks using ad...

Role Overview: You will be responsible for providing tier two operational support and leading team efforts in resolving incidents and outages for information security technology and its dependencies on Public and Private Cloud computing environments, shared platforms, and operating systems. Your primary focus will be on technologies such as Malware Analysis, SIEM (Splunk), Software-defined (Cloud) Network Security, Endpoint Security Protection, and Data Loss Prevention. You will ensure the team's adherence to SOPs, training, and performance monitoring, while also driving continuous process improvement including automation wherever applicable. Additionally, you will conduct recurring assessme...

As an Information Security-Management - Security Analysis Specialist Advisor at NTT DATA, your primary responsibility is to ensure the seamless delivery of all information security services provided to the customer. You will collaborate with clients to understand, anticipate, and recommend risk mitigation strategies while promoting overall information security protection for the customer's assets. Your role involves aligning information security with the customer's business strategy, security policies, and regulatory requirements to enhance protection and reduce risk. Key Responsibilities: - Deliver information security services to customers in compliance with contractual and regulatory requ...

Job Description: At least 10 years of experience in Information Security operations & management with hand on experience in large security operations center using IBM QRadar/Splunk/ArcSight or similar SIEM tool. Manage network, endpoints and forensics initiatives, malware triage and cyber security incident response Managing Cyber Security Services engagements and engagement teams Recognizing common attacker tools, tactics, and procedures Providing oversight for on-site examinations and collections and technology advisory services to enhance forensic client engagements Researching and developing new digital forensics scripts, tools, and methodologies Assessing and troubleshooting a variety of...

(A) Desired Skills for Senior Auditor i . Proficiency into Enterprise Network/Security architecture. ii. Proficiency into Information Security Events & Logs. iii. Industry Certifications into Cyber Security/Ethical Hacking. iv . Knowledge of Packet Capturing, Malware Payloads/Scripts, Sandboxing, Intrusion Prevention Systems and Threat Intelligence. v . Perform exploit analysis for identified vulnerabilities using tools such as Metasploit. vi. Reviewing of Security Baselining/Hardening Control of Information Security Tools/Systems as per Industry Best Practices. vii. Understanding of Cyber Security Incident Management. viii . Reviewing of Departments/Organizations Cyber Security Policies, Fr...

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Information and Event Management (SIEM) Good to have skills : NA Minimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As an L3 Cyber Security Analyst, you will act as the highest-level escalation point in the SOC for investigating and responding to complex security incidents. You will lead threat hunting ...