45 Threat Management Jobs

As a Vulnerability Management Specialist at Amdocs, you will play a crucial role in leading, implementing, identifying, assessing, and mitigating security vulnerabilities across our infrastructure, including cloud environments. Your responsibilities will include conducting regular vulnerability scans, analyzing scan results, prioritizing vulnerabilities, collaborating with stakeholders to implement remediation plans, and overseeing patch deployment processes to ensure timely remediation. You will also perform risk and vulnerability assessments, document findings, engage with stakeholders to address risks, and oversee risk acceptance and exclusion processes. Additionally, you will monitor container security and cloud security posture, provide threat management support, respond to identified threats effectively, maintain comprehensive reports on vulnerability findings and trends, and support security audits and compliance requirements related to vulnerability management. To excel in this role, you should have 6-9 years of experience in vulnerability management and threat management, hands-on experience with vulnerability scanning tools such as Wiz, Rapid7, Nessus, CrowdStrike, MDE, and Axonius, proficiency in container security, On-prem and Cloud Vulnerability Management, and experience with cloud platforms like AWS, Azure, or GCP. You should also be familiar with risk acceptance and exclusion processes, have a basic understanding of Generative AI (GenAI) concepts, possess strong analytical skills, attention to detail, excellent communication, and stakeholder management skills. Moreover, you should have a good understanding of Security Frameworks and Standards such as NIST, CIS, PCI-DSS, and experience leading a team of Vulnerability Analysts. Preferred qualifications for this role include experience with other security tools and frameworks, data visualization tools like Power BI, AWS Quicksight, scripting and automation experience in Python, Go, and security certifications like CISSP, CISM, or CEH. By joining Amdocs as a Vulnerability Management Specialist, you will have the opportunity to work with industry-leading technologies and experts in a global company, evolve yourself in cutting-edge technologies and business trends, and collaborate with a great team. Amdocs is an equal opportunity employer that welcomes applicants from all backgrounds and is committed to fostering a diverse and inclusive workforce.,

You are looking for an IT Security Developer to join Varahe Analytics, a leading political consulting firm in India known for its data-driven election campaigns. As an IT Security Consultant, you will play a crucial role in enhancing the organization's information security measures, with a focus on safeguarding IT assets, creative assets, research documents, and cloud-based workspace security. This position offers a unique opportunity for individuals with a strong programming background, especially in Python, to apply and enhance their skills within a security-oriented setting. Your responsibilities will include strategic planning and risk management, system and network security, cloud and workspace security, incident response, and threat management. You will be expected to assess the current security infrastructure, develop security policies, design comprehensive security solutions for a mixed environment, automate security tasks using programming skills, maintain security protocols for Google Workspace, and respond to security incidents while staying updated on emerging threats and technologies. To qualify for this role, you should have a Bachelor's degree in Computer Science, at least 5 years of IT security experience, proficiency in Python programming for automation and tool development, and relevant certifications such as CISSP, CISM, CompTIA Security+, and Google Workspace Security Certification. If you are a professional seeking a challenging opportunity to work with a strategic and motivated team, you are encouraged to reach out by emailing openings@varaheanalytics.com. Join us in shaping electoral strategies that drive conversations, bring about change, and influence the political landscape in our country.,

The Director of Information Security will be responsible for developing, implementing, and monitoring a strategic, comprehensive enterprise and IT risk management program. You will provide the vision and leadership necessary to manage the risk to the organization and ensure business alignment, effective governance, system and product availability, integrity, and confidentiality. Your job responsibilities will include providing direction for the organization's data and cybersecurity protection, overseeing technology governance and policies, developing and maintaining security roadmaps and strategies, collaborating with security domain architects, leading the team to develop new security design patterns, providing expertise on infrastructure platform security, driving threat management and other cybersecurity areas, managing risk and compliance governance processes, identifying security deficiencies, collaborating with other security and IT architects, providing risk guidance for IT projects, and acting as a technical leader for managing audit requirements. You should hold a Bachelor's degree from an accredited institution, preferably in Computer Science or Information Technology Systems Security, with a Master's degree being preferred. You are expected to have over 15 years of experience in Technology, with at least 10 plus years of specialized experience in Information Security. Your experience should include hands-on expertise in Cyber Security, Risk Compliance, and Governance, as well as knowledge of ITIL with respect to security administration and information technology governance in a multiplatform environment. Strong emotional intelligence and sustained leadership in a large organization involving multiple stakeholders are desired. The ideal candidate should have proven ability to lead within an enterprise environment, managing cross-divisional projects, and demonstrated ability to communicate effectively with a wide audience of senior business leaders within a matrixed environment.,

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Information and Event Management (SIEM) Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to document the implementation of cloud security controls and facilitate the transition to cloud security-managed operations, ensuring that all security measures align with organizational objectives and compliance standards. You will engage in discussions to refine security strategies and provide guidance on best practices, contributing to a secure cloud environment that supports the organization's growth and innovation. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Develop and maintain comprehensive documentation of security architecture and frameworks.- Conduct regular assessments of cloud security controls to ensure effectiveness and compliance. Professional & Technical Skills: - Must To Have Skills: Proficiency in Security Information and Event Management (SIEM).- Strong understanding of cloud security principles and best practices.- Experience with security incident response and threat management.- Familiarity with regulatory compliance standards related to cloud security.- Knowledge of security tools and technologies used in cloud environments. Additional Information:- The candidate should have minimum 5 years of experience in Security Information and Event Management (SIEM).- This position is based at our Bengaluru office.- A 15 years full time education is required. Qualification 15 years full time education

As a Senior Cyber Security Engineer, you will be responsible for designing and implementing security measures to protect information systems and data in a dynamic and energetic working environment. You will have the opportunity for career growth and learning while ensuring the security infrastructure is robust and effective. Your primary roles and responsibilities will include designing security architectures for complex systems, deploying security technologies such as firewalls and antivirus software, managing network security measures, conducting vulnerability assessments, and implementing access controls. Additionally, you will develop security policies, standards, and procedures to ensure compliance with relevant laws and regulations. You will play a crucial role in incident response activities, including investigation, resolution, and digital forensics, as well as providing security awareness training to promote a security-conscious culture. Your expertise in managing cybersecurity within IT applications, cloud, network, and IT infrastructure will be essential in identifying and resolving security issues. To excel in this role, you should have more than 5 years of experience in cybersecurity, a strong understanding of network and systems security principles, and proficiency in configuring security technologies. Knowledge of encryption protocols, vulnerability assessment tools, and incident response skills are also required. Excellent problem-solving, analytical, communication, and collaboration skills are essential for this position. Certifications such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), Certified Information Security Manager (CISM), and CompTIA Security+ are preferred qualifications. The shift timings for this position are from 8:30 AM to 5:30 PM, Monday to Friday, with health insurance and provident fund benefits available. If you thrive in high-pressure situations, have a passion for cybersecurity, and enjoy finding cost-effective solutions to cyber threats, this role offers you the opportunity to make a significant impact in the field. Your contributions will be instrumental in maintaining a secure IT environment and protecting sensitive data from potential risks and vulnerabilities.,

Project Role : Security Delivery Lead Project Role Description : Leads the implementation and delivery of Security Services projects, leveraging our global delivery capability (method, tools, training, assets). Must have skills : Security Information and Event Management (SIEM) Good to have skills : Security Delivery GovernanceMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Delivery Lead, you will be at the forefront of implementing and delivering Security Services projects. Your typical day will involve coordinating with various teams to ensure that projects are executed efficiently, utilizing our global delivery capabilities. You will engage in strategic planning, oversee project timelines, and ensure that all security measures are effectively integrated into the delivery process. Your role will also require you to adapt to evolving security challenges and provide guidance to your team, ensuring that they are equipped with the necessary tools and knowledge to succeed in their tasks. Collaboration and communication will be key as you work to align project goals with organizational objectives, fostering a culture of security awareness and proactive risk management throughout the project lifecycle. Roles & Responsibilities:- Expected to be an SME, collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Facilitate training and development sessions to enhance team capabilities and knowledge in security practices.- Monitor project progress and performance metrics to ensure alignment with security standards and objectives. Professional & Technical Skills: - Must To Have Skills: Proficiency in Security Information and Event Management (SIEM).- Good To Have Skills: Experience with Security Delivery Governance.- Strong understanding of security frameworks and compliance standards.- Experience in incident response and threat management.- Proficient in risk assessment and vulnerability management techniques. Additional Information:- The candidate should have minimum 7.5 years of experience in Security Information and Event Management (SIEM).- This position is based at our Bengaluru office.- A 15 years full time education is required. Qualification 15 years full time education

Looking for someone who has strong hands-on experience on Security Incident Response, Vulnerability Management, Security tool operation, Threat and Vulnerability Identification. Must have relevant experience with design, implementation,management

Looking for someone who has strong hands-on experience on Security Incident Response,Vulnerability Management, Security tool operation, Threat and Vulnerability Identification. Must have relevant experiencewith design, implementation,management

Project Role : Security Engineer Project Role Description : Apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Must have skills : CyberArk Privileged Access Management Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Engineer, you will apply security skills, applications, data, assets, and people. Your typical day will involve collaborating with various teams conducting assessments to identify vulnerabilities, and ensuring that the organization's information and infrastructure are safeguarded against potential cyber threats. You will also engage in continuous learning to stay updated on the latest security trends and technologies, contributing to a secure environment for all stakeholders. Roles & Responsibilities:- Loading policies (YAML format) to CONJUR via CLI or Rest API- Install, Configure, Setup Credential Provider (CP - agent based) for applications to fetch credentials.- Setup new applications via PVWA to fetch credentials using Central Credential Provider - CCP REST API or Credential Provider - CP- Vaulting accounts to safes via REST API- Knowledge of PowerShell or Python scripting- Assist application team to integrate CONJUR, CP & CCP to remove hard coded password vulnerabilities.- Have great experience in troubleshooting the above from BAU operations perspective.- Demonstrate strong independent work skills, initiative & accountability to work with client team. Professional & Technical Skills: - Must To Have Skills: Proficiency in CyberArk Privileged Access Management.- Experience with identity and access management solutions.- Strong understanding of security frameworks and compliance regulations.- Knowledge of network security protocols and best practices.- Familiarity with incident response and threat management processes. Additional Information:- The candidate should have minimum 5 years of experience in CyberArk Privileged Access Management.- This position is based at our Bengaluru office.- A 15 years full time education is required.- Willing to work in shift timings which are scheduled to commence between 2:00 PM and 4:00 PM IST. Qualification 15 years full time education

EC-Council is the worlds largest cyber security technical certification body. We operate in 145 countries globally and we are the owner and developer of various world-famous cyber security programs. We are proud to have trained and certified over 220,000 information security professionals globally that have influenced the cyber security mindset of countless organizations worldwide. www.eccouncil.org We are seeking a seasoned and strategic Information Security Lead to spearhead our cybersecurity initiatives and lead a team of talented security engineers. In this critical role, you will be responsible for defining security strategy, optimising security architecture, and driving execution across multiple security domains including cloud, network, application, and endpoint security. You will serve as both a technical expert and a team leader, ensuring the organization's digital assets are well protected while fostering a high-performing security team. If you bring a passion for security, strong leadership skills, and a track record of building secure enterprise environment then we want to hear from you. Infosec Lead Responsibilities: As an Infosec Lead, your responsibilities will include: Lead a team of security engineers, overseeing their work, mentoring them, and ensuring alignment with organizational objectives. Manage end-to-end execution of IT security projects, including design, planning, implementation, and ongoing optimization ofsecurity architecture, infrastructure and solutions. Define and implement next-generation security strategies, architectures, and governance processes. Partner with key stakeholders across business units to understand requirements and deliver for-purpose security solutions. Validate and manage Business Continuity (BCP) and Disaster Recovery (DR) plans, coordinating with relevant teams. Prepare, review, and maintain documentation including incident reports, policies, procedures, and technical recommendations. Continuously assess and enhance the organizations security posture across antivirus, application control, rewall, SIEM, VPN, SSL, IDS/IPS, and more. INFORMATION SECURITY LEAD JD Develop and enforce infrastructure and application hardening strategies aligned with best practices. Lead threat modeling, risk assessments, and vulnerability remediation efforts. Identify new tools, opportunities, and innovations to improve Security Operations and efficiency. Drive implementation of audit recommendations, and continuously in-tune security appliances and controls. Maintain expertise in threat landscape analysis and risk profiling, and apply it to organizational defense mechanisms. Manage relationships with external vendors, security product providers, and managed services partners. Oversee vulnerability management and penetration testing programs; ensure timely mitigation and closure of findings. Collaborate with application, DevOps, and infrastructure teams to integrate security into DevSecOps pipelines. Present detailed security posture reports, KPIs, and dashboards to senior leadership and the board. Infosec Lead Requirements: To be successful in this role, you should have: 10+ years of experience in Information Security, with 3+ years in a team leadership role managing security teams. Proven experience in leading cross-functional team, mentoring security engineers, and building strong team dynamics. Expertise in developing and managing security architectures, policies, and controls across cloud and on-prem environments. Hands-on experience with cloud security in Azure and AWS environments. Proficient with security tools including rewalls (SonicWALL, Fortinet), SIEM, endpoint protection, network monitoring, and IAM solutions. Deep knowledge of routing, switching, and network segmentation practices for secure infrastructure design. Familiarity with ISO 27001, NIST, CIS, PCI-DSS, and other global security standards. Proficient in DevSecOps methodologies, tools, and CI/CD integration. Experience presenting security metrics, dashboards, and strategic updates to executive stakeholders. Bachelor'ss degree in Computer Science, Information Systems, or related field; certiifications such as CISSP, CISM, CCSP, or CEH are preferred. Strong understanding of threat intelligence, incident response, and forensics. Excellent communication skills with the ability to simplify complex technical topics for business audiences. Personal Attributes and Soft Skills Team Leadership: Builds, mentors, and inspires a high-performing security team; leads with integrity, empathy, and technical credibility. Strategic Thinking: Aligns security initiatives with business goals, ensuring a proactive and forward-thinking security posture. Customer Focus: Balances security needs with user experience and business priorities. Problem-Solving Skills: Approaches challenges analytically and methodically to design effective, ong-term security solutions. Project & Task Ownership: Takes full accountability for delivering results across people, process, and technology. Mentorship: Guides junior engineers with structured feedback, hands-on coaching, and growth opportunities. Requirement Understanding: Converts business and technical requirements into well-dened security policies and actions. Proactive Approach: Anticipates security risks, stays updated with industry trends, and responds with agility. Effective Time Management: Prioritizes competing demands effectively while managing incidents and projects simultaneously. Additional Information We are an equal opportunity workplace and are an affirmative action employer. We are always committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, or Veteran status and we do not discriminate on the basis of such characteristics or any other status protected by the laws or regulations in the locations where we work. This job description has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job. EC-Council is committed to working with and providing reasonable accommodation to individuals with disabilities. If you have a medical condition or disability which inhibits your ability to complete any part of the application process and are in need of a reasonable accommodation to complete the process, please contact us ecchr@eccouncil.org and let us know how we may assist you. This notice together with our Privacy Policy and Terms of Use of this website and any other documents we mention here are meant to inform you on what personal data about you we collect, use, disclose, share or otherwise process when you are applying for a job at EC-Council or when EC-Council contacts you for recruitment purposes. Please read carefully to understand our views and practices on how we protect your personal data - Privacy Policy | EC-Council (eccouncil.org).

As the Cybersecurity Program Delivery Director, you will play a pivotal role in coordinating the planning, execution, and delivery of key cybersecurity projects and programs on a global scale. You will work closely with technical teams, security experts, and various stakeholders to ensure that critical security initiatives are implemented effectively and in alignment with corporate strategies. Your responsibilities will span across program portfolio management, global delivery and execution, governance, risk, and compliance (GRC), team coordination, budget control, and technical strategy support. You will be tasked with managing a diverse portfolio of cybersecurity projects, encompassing new technology deployments, risk mitigation, policy updates, and compliance enhancements. It will be your responsibility to establish project goals, timelines, and budgets, while also overseeing cross-regional resource integration and priority management. Additionally, you will ensure the quality and timely delivery of key security projects, manage external suppliers and service providers, and establish standardized delivery processes to drive global project replication capabilities. Collaboration with compliance, legal, and audit teams will be essential to ensure that all projects adhere to relevant regulations and standards such as GDPR, ISO 27001, and NIST. You will lead a global team of project managers, security architects, and business analysts, fostering open communication with senior management, IT, Security Operations Center (SOC), and regional heads. Regular reporting on project progress and key risks to the CISO and senior management will be a key aspect of your role. Your background should include a Bachelor's degree or above in information security, computer science, engineering, or related fields, with a preference for a Master's/MBA. You should possess more than 10 years of experience in information security or project delivery, including over 5 years in cross-border security project management. Proficiency in project management frameworks such as PMP, PRINCE2, and agile delivery methods like Scrum/SAFe is required. Familiarity with information security frameworks and technologies such as NIST, CIS Controls, SOC, IAM, SIEM, XDR, and SASE is crucial, along with certifications like CISSP, CISM, and PMP being preferred. Your leadership skills, cross-cultural communication abilities, and global vision will be essential for this role. You should be comfortable with remote management across different time zones and occasional international travel. Keeping abreast of security technology trends and providing strategic investment recommendations will also be part of your responsibilities. Your contribution to cybersecurity budget formulation, resource allocation, and technology roadmap adjustments will ensure the maximum safety benefits of project investments.,

About Gameskraft: Established in 2017, Gameskraft is recognized as one of India's fastest-growing companies, dedicated to building the world's most-loved online gaming ecosystem. Founded by a team of enthusiastic gamers, we have expanded from a small group of 5-6 members to a large family of 600+ Krafters based in our office at Prestige Tech Park, Bangalore. Our primary focus is on creating a safe, secure, and responsible gaming environment for all users. With a vision to deliver unparalleled experiences consistently, we are committed to setting industry-leading standards in design, technology, and user experience. Gameskraft is proud to be the only ISO 27001 and ISO 9001 certified company in the industry. About the Role: Gameskraft is currently seeking a highly skilled Lead Information Security Engineer to spearhead the design, implementation, and management of the organization's security architecture. As a Lead Information Security Engineer, you will collaborate with cross-functional teams, playing a crucial role in safeguarding our critical information assets. Your expertise will be instrumental in enhancing our security posture, ensuring compliance with industry standards, and staying vigilant against emerging threats. Key Responsibilities: 1. **Security Architecture and Strategy:** Design, implement, and uphold the enterprise security architecture. Enforce security policies, standards, and best practices. Evaluate and deploy security tools and technologies to mitigate risks. 2. **Incident Response and Threat Management:** Lead the investigation and resolution of security incidents and breaches. Develop and maintain incident response plans. Conduct threat modeling, vulnerability assessments, and penetration testing. 3. **Risk Management and Compliance:** Perform risk assessments and recommend mitigations to minimize exposure. Ensure compliance with regulatory frameworks and standards (e.g., ISO 27001, NIST, GDPR, PCI DSS). Collaborate with legal, compliance, and audit teams to address security-related requirements. 4. **Leadership and Team Development:** Guide and mentor a team of security engineers and analysts. Cultivate a culture of security awareness throughout the organization. Collaborate with IT and development teams to integrate security into the DevSecOps lifecycle. 5. **Stakeholder Collaboration:** Serve as the primary security liaison for stakeholders, including executives, customers, and external auditors. Communicate security risks and recommendations to non-technical audiences. Partner with product and engineering teams to incorporate security into all development stages. Qualifications and Skills: - **Education and Experience:** Bachelor's degree in Computer Science, Information Security, or a related field. Minimum of 5-7 years of information security experience, with at least 2 years in a senior role. - **Certifications:** Preferred certifications include CISSP, CISM, CISA, CEH, or equivalent. - **Technical Expertise:** Profound knowledge of security frameworks (e.g., NIST, ISO 27001, CIS Controls). Proficiency in security tools like SIEM, IDS/IPS, firewalls, DLP, and endpoint protection. Expertise in cloud security (AWS, Azure, GCP) and container security. Understanding of cryptography, secure coding practices, and network security protocols. - **Soft Skills:** Strong problem-solving and analytical skills. Exceptional communication and stakeholder management abilities. Work Culture: Gameskraft offers a true startup culture characterized by youth, a fast-paced environment, and a focus on personal ownership of challenges that promote rapid growth. Innovation, data orientation, result-driven mindset, pursuit of ambitious goals, and adaptability are central to our work culture. We foster a high-performance, meritocratic setting where idea sharing, debates, and collective growth are encouraged with each new product. Employees can expect to make a significant impact through solving dynamic challenges, leveraging technology, and analytics, and collaborating with cross-functional teams to deliver exceptional products to the market. Compensation & Benefits: Gameskraft provides an attractive compensation package alongside ESOP benefits. Employees receive a medical insurance cover of INR 5 lakh for themselves and their family, fair and transparent performance appraisals, a car lease policy, relocation benefits, and access to a vibrant office space with fully stocked pantries. Additionally, lunch is provided. If you are passionate about creating exceptional user experiences, possess strong leadership skills, and have a proven track record of successful data science, we invite you to apply for this exciting opportunity. Gameskraft is committed to fostering equal employment opportunities and building an inclusive work environment where every individual can thrive. Together, we can achieve more!,

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Information and Event Management (SIEM) Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to assess security needs, documenting the implementation of cloud security controls, and transitioning to cloud security-managed operations. You will engage in discussions to refine security strategies and ensure compliance with industry standards, all while adapting to the evolving landscape of cloud security challenges. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Facilitate training sessions to enhance team knowledge on security protocols.- Evaluate and recommend new security technologies to improve the existing framework. Professional & Technical Skills: - Must To Have Skills: Proficiency in Security Information and Event Management (SIEM).- Strong understanding of cloud security principles and practices.- Experience with security compliance frameworks such as ISO 27001 or NIST.- Familiarity with incident response and threat management processes.- Knowledge of network security protocols and technologies. Additional Information:- The candidate should have minimum 5 years of experience in Security Information and Event Management (SIEM).- This position is based at our Gurugram office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Information and Event Management (SIEM) Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to assess security needs, documenting the implementation of cloud security controls, and transitioning to cloud security-managed operations. You will engage in discussions to align security strategies with organizational objectives, ensuring that all security measures are effectively integrated into the cloud environment. Your role will also require you to stay updated on the latest security trends and technologies to enhance the overall security posture of the organization. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Develop and maintain comprehensive documentation of security architecture and controls.- Conduct regular security assessments and audits to ensure compliance with established policies and standards. Professional & Technical Skills: - Must To Have Skills: Proficiency in Security Information and Event Management (SIEM).- Strong understanding of cloud security principles and best practices.- Experience with security incident response and threat management.- Familiarity with regulatory compliance frameworks such as GDPR, HIPAA, or PCI-DSS.- Knowledge of network security protocols and technologies. Additional Information:- The candidate should have minimum 7.5 years of experience in Security Information and Event Management (SIEM).- This position is based at our Gurugram office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Security Delivery Lead Project Role Description : Leads the implementation and delivery of Security Services projects, leveraging our global delivery capability (method, tools, training, assets). Must have skills : Security Information and Event Management (SIEM) Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Delivery Lead, you will be responsible for overseeing the implementation and delivery of Security Services projects. Your typical day will involve coordinating with various teams to ensure that projects are executed efficiently, utilizing our global delivery capabilities, including methods, tools, training, and assets. You will engage with stakeholders to align project goals and ensure that security measures are effectively integrated into the overall project framework, fostering a collaborative environment that promotes best practices in security delivery. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Facilitate training sessions to enhance team skills and knowledge in security practices.- Monitor project progress and implement necessary adjustments to meet deadlines and objectives. Professional & Technical Skills: - Must To Have Skills: Proficiency in Security Information and Event Management (SIEM).- Strong understanding of security frameworks and compliance standards.- Experience with incident response and threat management.- Familiarity with security monitoring tools and technologies.- Ability to analyze security incidents and provide actionable insights. Additional Information:- The candidate should have minimum 7.5 years of experience in Security Information and Event Management (SIEM).- This position is based at our Mumbai office.- A 15 years full time education is required. Qualification 15 years full time education

Dear Candidate, Greetings from Northern Trust! Northern Trust is currently having an exciting vacancy of Associate, Cyber Security position for our Pune location. Your profile seems to be matching the requirement. Please find below the company and job details for your reference Company Details: Northern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889. Northern Trust is proud to provide innovative financial services and guidance to the worlds most successful individuals, families, and institutions by remaining true to our enduring principles of service, expertise, and integrity. With more than 130 years of financial experience and over 22,000 partners, we serve the worlds most sophisticated clients using leading technology and exceptional service. Job Role: Associate, Cyber Security Job Location: Pune Experience: 4 to 8 years Skills: Security operations, Offensive Security, ServiceNow, OSCP Job Description: Role/ Department: The Purple Team Analyst will work as part of the wider Global Threat Management team in the continuous development of the cyber operations program. The purple team will work very closely with The Global Threat Management Team. The Global Threat Management Team is responsible for vulnerability management, threat technology management and security monitoring. The key responsibilities of the role include: Working with the wider technology teams to improve technology hygiene and reduce the attack surface. Design and run exercise campaigns based on industry specific threat intelligence and vulnerabilities. Provide continuous learning and training opportunities for the Global Threat Management team as a result of continuous exercise campaigns. Act as an integral driver of the cyber operations development programme, benchmarking results against industry standard frameworks including MITRE and NIST. Configure and safely utilize attack tools, tactics, and procedures against a simulation lap. Develop scripts, tools, or methodologies to enhance purple teaming capabilities. Help to execute the Purple Team strategy to further enhance the security posture of the firm. Effectively communicate findings and strategy to stakeholders including technical staff, executive leadership. Skills/ Qualifications: Relevant experience in information security and adversary simulation. Detailed knowledge of global cyber threats, threat actors, and the tactics, techniques and procedures used by cyber adversaries, specifically those targeting the financial services sector. Experience in large scale information technology implementations and operations preferred. Industry certifications such as OSCP, OSCE, OSWE, GPEN, GCIH, GWAPT, or GXPN. Proficient in exploitation and post exploitation frameworks such as Cobalt Strike, Metasploit Framework, Empire. Proficient in one or more of the following scripting languages (Python, PowerShell, Bash, Ruby) Advanced knowledge of Windows Operating System architecture and internals. Strong knowledge of core Information Technology concepts such as TCP/IP networking, Windows & Active Directory, Unix/Linux, Mainframe, Cloud Service Providers, Relational Databases, Data Warehouses, and filesystems. If you are interested to pursue this opportunity further, kindly respond back with your resume and details at the earliest. Regards, Northern Trust Talent Acquisition Team

As a Vice President Presales at Madre Janus, an MSSP Partner of Fortinet, you will play a crucial role in leading and managing all presales activities related to Fortinet products and services. Your responsibilities will include overseeing technical solutioning, proposal development, client presentations, and collaborating closely with the sales team to design customized security solutions for clients. Your expertise as a strategic thinker with deep technical knowledge will be essential in driving business growth by ensuring the right solutions are proposed to meet customer requirements. You will be expected to deliver product demonstrations, Proof of Concepts (PoCs), and technical workshops to clients and partners, acting as a subject matter expert on Fortinet products. Your role will involve responding to RFPs, RFIs, and RFQs with technically sound solutions, building strong relationships with Fortinet representatives and internal stakeholders, and guiding the presales team towards technical excellence and customer satisfaction. Additionally, you will work with cross-functional teams to develop presales strategies and enhance service offerings, providing valuable feedback to product and delivery teams based on customer and market insights. To be successful in this role, you should have a minimum of 5 years of hands-on experience in presales roles involving Fortinet products and services. Strong knowledge of cybersecurity architectures, network security, firewalls, endpoint protection, and threat management is required, along with preferred Fortinet NSE certifications (minimum NSE4, NSE5+ desirable). A proven track record of successful presales engagements in an MSSP or system integrator environment, excellent presentation, communication, and interpersonal skills, as well as the ability to lead and motivate cross-functional teams are also key requirements. Strong analytical and problem-solving skills will further contribute to your success in this role. At Madre Janus, we offer you the opportunity to lead presales efforts for a growing MSSP organization in a dynamic work environment focused on innovation and excellence. You will receive a competitive compensation and benefits package, along with continuous learning and professional development opportunities to further enhance your skills and expertise. Join us in delivering comprehensive cybersecurity solutions to clients across industries and make a significant impact as the Vice President Presales.,

Roles & Responsibilities: 1.Handling alerts and incident on XDR platform 2.Alert & incident triage and analysis 3.Proactively investigating suspicious activities 4.Log all findings, actions taken, and escalations clearly in the XDR and ITSM platform 5.Execute predefined actions such as isolating blocking IPs or disabling user accounts, based on set protocols. 6.Adhere to established policies, procedures, and security practices. 7.Follow-up with tech team for incident closure 8.Participating in daily standup and review meeting 9.L2 Analyst has responsibility to closely track the incidents and support for closure. 10.Working with logsource and usecase management in integrating log sources and developing & testing usecase 11.Work & support on multiple cybersecurity tool (DLP, GRC, Cloudsec tool, DAM) 12.Developing SOP / instruction manual for L1 team 13.Guiding L1 team for triage/analysis and assist in clousure of cybersecurity alert and incidents 14.Handle XDR alerts and followup with customer team for agent updates 15.Escalate more complex incidents to L3 SME for deeper analysis. Key Responsibilities: Security Monitoring & Incident Response Governance Define and maintain security monitoring, threat detection, and incident response policies and procedures.Establish and mature a threat intelligence program, incorporating tactical and strategic threat feeds.Align SOC operations with evolving business risk priorities and regulatory frameworks.Platform & Toolset Management Evaluate, implement, and enhance SIEM platforms, ensuring optimal log ingestion, correlation, and rule effectiveness.Assess and manage deployment of EDR, XDR, SOAR, and Threat Intelligence solutions.Maintain and update incident response playbooks and automation workflows.Ensure consistent platform hygiene and technology stack effectiveness across SOC tooling.SOC Operations & Threat Detection Oversee 24x7 monitoring of security events and alerts across enterprise assets.Lead and coordinate proactive threat hunting across networks, endpoints, and cloud.Manage and support forensic investigations to identify root cause and recovery paths.Govern use case development, log source onboarding, and alert/event triage processes.Regulatory Compliance & Incident Management Ensure timely and accurate incident reporting in compliance with RBI, CERT-In, and other authorities.Retain logs in accordance with regulatory data retention mandates.Enforce and monitor security baselines for endpoints, in line with internal and regulatory standards.Advanced Threat Management & Reporting Plan, conduct, and report on Red Teaming and Purple Teaming exercises to test detection and response capabilities.Participate in and contribute to the Risk Operations Committee (ROC) meetings and initiatives.Review and track SOC effectiveness through KPIs, metrics, and regular reporting dashboards. Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional expertise Bachelor’s or Master’s degree in Cybersecurity, Computer Science, or related field.3-7 years of experience in SOC management, incident response, or cyber threat detection roles.Hands-on expertise with SIEM (e.g., Splunk, QRadar, Sentinel), EDR/XDR tools, and SOAR platforms.Proven experience in playbook development, forensics, and threat hunting methodologies.Strong understanding of RBI/CERT-In incident reporting guidelines and log retention requirements.Familiarity with MITRE ATT&CK, threat modeling, and adversary emulation techniques. Preferred technical and professional experience Preferred Certifications: GCIA, GCIH, GCFA, CISSP, OSCP, CEH, CHFI, or similar certifications"

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Information and Event Management (SIEM) Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to document the implementation of cloud security controls and facilitating the transition to cloud security-managed operations, ensuring that all security measures align with organizational objectives and compliance standards. You will engage in discussions to refine security strategies and provide guidance on best practices, contributing to a secure cloud environment that supports business operations effectively. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Develop and maintain comprehensive documentation of security architecture and frameworks.- Conduct regular assessments of cloud security controls to ensure effectiveness and compliance. Professional & Technical Skills: - Must To Have Skills: Proficiency in Security Information and Event Management (SIEM).- Strong understanding of cloud security principles and best practices.- Experience with security incident response and threat management.- Familiarity with regulatory compliance standards related to cloud security.- Knowledge of security tools and technologies used in cloud environments. Additional Information:- The candidate should have minimum 5 years of experience in Security Information and Event Management (SIEM).- This position is based at our Bengaluru office.- A 15 years full time education is required. Qualification 15 years full time education

Roles & Responsibilities: 1.Handling alerts and incident on XDR platform 2.Alert & incident triage and analysis 3.Proactively investigating suspicious activities 4.Log all findings, actions taken, and escalations clearly in the XDR and ITSM platform 5.Execute predefined actions such as isolating blocking IPs or disabling user accounts, based on set protocols. 6.Adhere to established policies, procedures, and security practices. 7.Follow-up with tech team for incident closure 8.Participating in daily standup and review meeting 9.L2 Analyst has responsibility to closely track the incidents and support for closure. 10.Working with logsource and usecase management in integrating log sources and developing & testing usecase 11.Work & support on multiple cybersecurity tool (DLP, GRC, Cloudsec tool, DAM) 12.Developing SOP / instruction manual for L1 team 13.Guiding L1 team for triage/analysis and assist in clousure of cybersecurity alert and incidents 14.Handle XDR alerts and followup with customer team for agent updates 15.Escalate more complex incidents to L3 SME for deeper analysis. Key Responsibilities: Security Monitoring & Incident Response Governance Define and maintain security monitoring, threat detection, and incident response policies and procedures.Establish and mature a threat intelligence program, incorporating tactical and strategic threat feeds.Align SOC operations with evolving business risk priorities and regulatory frameworks.Platform & Toolset Management Evaluate, implement, and enhance SIEM platforms, ensuring optimal log ingestion, correlation, and rule effectiveness.Assess and manage deployment of EDR, XDR, SOAR, and Threat Intelligence solutions.Maintain and update incident response playbooks and automation workflows.Ensure consistent platform hygiene and technology stack effectiveness across SOC tooling.SOC Operations & Threat Detection Oversee 24x7 monitoring of security events and alerts across enterprise assets.Lead and coordinate proactive threat hunting across networks, endpoints, and cloud.Manage and support forensic investigations to identify root cause and recovery paths.Govern use case development, log source onboarding, and alert/event triage processes.Regulatory Compliance & Incident Management Ensure timely and accurate incident reporting in compliance with RBI, CERT-In, and other authorities.Retain logs in accordance with regulatory data retention mandates.Enforce and monitor security baselines for endpoints, in line with internal and regulatory standards.Advanced Threat Management & Reporting Plan, conduct, and report on Red Teaming and Purple Teaming exercises to test detection and response capabilities.Participate in and contribute to the Risk Operations Committee (ROC) meetings and initiatives.Review and track SOC effectiveness through KPIs, metrics, and regular reporting dashboards. Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional expertise Required Qualifications: Bachelor’s or Master’s degree in Cybersecurity, Computer Science, or related field.3-7 years of experience in SOC management, incident response, or cyber threat detection roles.Hands-on expertise with SIEM (e.g., Splunk, QRadar, Sentinel), EDR/XDR tools, and SOAR platforms.Proven experience in playbook development, forensics, and threat hunting methodologies.Strong understanding of RBI/CERT-In incident reporting guidelines and log retention requirements.Familiarity with MITRE ATT&CK, threat modeling, and adversary emulation techniques. Preferred technical and professional experience Preferred Certifications: GCIA, GCIH, GCFA, CISSP, OSCP, CEH, CHFI, or similar certifications

Job Summary: We are looking for a highly skilled Palo Alto Firewall Engineer to design, implement, maintain, and optimize network security infrastructure. The candidate should have hands-on experience with Palo Alto Next-Generation Firewalls (NGFW), Panorama, URL filtering, Global Protect VPN, and Threat Prevention features to protect and enhance enterprise network security. Key Responsibilities: Design, deploy, and manage Palo Alto Firewalls (physical and virtual appliances). Configure and manage security policies, NAT, application control, and threat prevention profiles. Implement and support Global Protect VPN and IPSec/SSL tunnels. Maintain and manage Panorama for centralized firewall administration. Monitor logs and alerts, investigate incidents, and troubleshoot firewall-related issues. Perform firewall rule reviews, clean-ups, and optimizations for performance and compliance. Integrate with SIEM tools, Identity, and multi-factor authentication systems. Manage URL filtering, WildFire, DNS security, and SSL decryption policies. Ensure proper zone-based security architecture and least privilege access across the network. Plan and execute firmware upgrades, high-availability (HA) setups, and DR testing. Create and maintain network security documentation, including policies, procedures, and diagrams. Collaborate with SOC, NOC, and compliance teams to align with regulatory and security standards (e.g., ISO, PCI-DSS). Required Skills & Qualifications: Bachelors degree in Computer Science, Information Security, or related field. 5+ years of hands-on experience with Palo Alto NGFWs. Strong experience with: Palo Alto Firewalls (PA-3K/5K/7K or VM-Series) Panorama for centralized policy management App-ID, User-ID, Content-ID SSL Decryption and WildFire Global Protect VPN and IPsec tunnels In-depth understanding of network protocols (TCP/IP, BGP, OSPF, VLANs, NAT, HRSP, DNS). Experience in high availability, failover, and load balancing designs. Proficiency in log analysis and packet captures (using tools like Wireshark). Preferred Certifications: PCNSA (Palo Alto Networks Certified Network Security Administrator) PCNSE (Palo Alto Networks Certified Network Security Engineer) CCNA & CCNP

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Network Security Operations Good to have skills : NAMinimum 12 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to assess security needs, documenting the implementation of cloud security controls, and overseeing the transition to cloud security-managed operations. You will engage in strategic discussions to align security measures with organizational objectives, ensuring a robust security posture in the cloud environment. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Expected to provide solutions to problems that apply across multiple teams.- Facilitate training sessions to enhance team knowledge and skills in security practices.- Monitor and evaluate the effectiveness of implemented security measures and recommend improvements. Professional & Technical Skills: - Must To Have Skills: Proficiency in Network Security Operations.- Strong understanding of cloud security principles and frameworks.- Experience with security compliance standards and regulations.- Ability to design and implement security architectures for cloud environments.- Familiarity with incident response and threat management processes. Additional Information:- The candidate should have minimum 12 years of experience in Network Security Operations.- This position is based at our Bengaluru office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Managed Cloud Security Services Good to have skills : NAMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Senior Security Engineer your typical day will involve security platform related activities on Microsoft Sentinel, providing end to end investigation on health monitoring and platform monitoring. You will also engage in proactive monitoring of security systems to analyze and respond to incidents effectively and normalize the log source and use case finetuning activities. Roles & Responsibilities:- Develop and deploy use case -New log source onboarding to SIEM-Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work related problems.- Conduct regular security assessments and audits to identify gaps in the configuration and detections of false positives.- Develop and implement security policies and procedures to safeguard information, inclusive of optimization of analytic rules. Professional & Technical Skills- Microsoft Sentinel:Hands-on experience with SIEM/SOAR, including KQL query development, alert tuning, and automation with Logic Apps.- Expertise in Devops and Terraform to mange pipeline and infrastructure deployment.-Platform and Healthmonitorng incident investigation and deployment. -Required knowledge Entra ID management.-Managing Cribl and Logstash pipeline for log source onboarding.-Strong understanding of incident response and threat management.-Experience with security monitoring tools and technologies.-Able to manage requests, incidents, and changes on ServiceNow as per service management process.-Familiarity with scripting (PowerShell, KQL), infrastructure-as-code, and automation tools is a plus.-Required active participation/contribution in team discussions-To be a part of audits and service improvement activities within the team- threat hunting, MDE and use case engineering experience- Knowledge of security frameworks like MITRE.- Deliver security solutions using Microsofts security stack, with a focus on Microsoft Defender for Cloud, Endpoint, Identity, Azure Firewall, and Microsoft Sentinel.-Implement and operationalize MDC for cloud security posture management and workload protection.-Support deployment and ongoing management of MDE for endpoint threat detection and response.-Integrate MDI into customer environments to monitor identity-related threats and provide remediation recommendations.- Ability to analyze security incidents from L2/L3 perspective as well as developing effective response strategies.-Knowledge of network security protocols and best practices. Additional Information:- The candidate should have minimum 6 years of experience in Microsoft Azure Security suite.- This position will be operated from Bengaluru location.-A 15 years full time education is required. Qualification 15 years full time education

Project Role : Security Engineer Project Role Description : Apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Must have skills : Managed Cloud Security Services Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :We are looking for an experienced and detail-oriented Security Delivery Associate Manager to support the planning, implementation, and delivery of cybersecurity services across Microsoft security technologies. will play a key role in delivering secure, scalable, and compliant security solutions for internal stakeholders or clients. Roles & responsibilities:The ideal candidate will have practical expertise in Microsoft Sentinel, Cribl, Logstash, Devops, Terraform, Logsource onboarding, ASIM Parsing Deliver security solutions using Microsofts security stack, with a focus on Microsoft Sentinel Platform Management.Translate business and technical requirements into well-architected security solutions and support delivery from design to deployment.Managing Cluster with multiple clients Lead and manage cross-functional teams, ensuring effective collaboration, communication, and alignment with business objectives. Responsible for team decisions.Engage with multiple teams and contribute on key decisions.Develop and implement security strategies.Conduct security assessments and audits.Stay updated on the latest security trends and technologies.Configure and fine-tune Microsoft Sentinel, develop analytics rules, workbooks, playbooks, and maintain alerting mechanisms.Coordinate with engineering, operations, and risk teams to ensure consistent and secure delivery of services.Create technical documentation, deployment guides, and knowledge transfer materials for clients or internal teams.Collaborate with project managers and stakeholders to ensure timely and successful delivery of security services.Contribute to continuous improvement initiatives and automation of delivery processes. Professional & Technical Skills: Strong client-facing and stakeholder engagement capabilities.Excellent organizational and project coordination skills.Ability to clearly communicate technical information to both technical and non-technical audiences.Proactive mindset with a focus on security service quality and consistency.Experience working in delivery frameworks such as Agile, ITIL. Microsoft Sentinel:Hands-on experience with SIEM/SOAR, including KQL query development, alert tuning, and automation with Logic Apps.Configure and fine-tune Microsoft Sentinel, develop analytics rules, workbooks, playbooks, and maintain alerting mechanisms.Able to manage key vault and secret rotation Required knowledge Entra ID management.Required knowledge in Log source optimizationASIM parsing and normalizationManaging Cribl and Logstash pipeline for log source onboarding.Strong understanding of incident response and threat management.Familiarity with scripting (PowerShell, KQL), infrastructure-as-code, and automation tools is a plus.Able to manage requests, incidents, and changes on ServiceNow as per service management process.Required active participation/contribution in team discussionsTo be a part of audits and service improvement activities within the teamSentinel data modelling experienceExperience in designing and implementing security solutions. Deliver security solutions using Microsofts security stack, with a focus on Microsoft Defender for Cloud, Endpoint, Identity, Azure Firewall, and Microsoft Sentinel.Implement and operationalize MDC for cloud security posture management and workload protection.Support deployment and ongoing management of MDE for endpoint threat detection and response.Integrate MDI into customer environments to monitor identity-related threats and provide remediation recommendations.Knowledge of network security protocols and best practices.Hands-on experience with security tools and technologies. Additional Information:The candidate should have a minimum of 10+ years of experience in Managed Cloud Security Services.This position will be operated from Bengaluru location.A 15 years full time education is required. Qualification 15 years full time education

Project Role : Application Developer Project Role Description : Design, build and configure applications to meet business process and application requirements. Must have skills : Managed Cloud Security Services Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :We are looking for an experienced and detail-oriented Security Delivery Specialist to support the planning, implementation, and delivery of cybersecurity services across Microsoft security technologies. The ideal candidate will have practical expertise in Microsoft Sentinel, Cribl, Logstash, Devops, Terraform will play a key role in delivering secure, scalable, and compliant security solutions for internal stakeholders or clients. Roles & responsibilities:Deliver security solutions using Microsofts security stack, with a focus on Microsoft Sentinel Platform Management.Translate business and technical requirements into well-architected security solutions and support delivery from design to deployment.Configure and fine-tune Microsoft Sentinel, develop analytics rules, workbooks, playbooks, and maintain alerting mechanisms.Coordinate with engineering, operations, and risk teams to ensure consistent and secure delivery of services.Create technical documentation, deployment guides, and knowledge transfer materials for clients or internal teams.Collaborate with project managers and stakeholders to ensure timely and successful delivery of security services.Contribute to continuous improvement initiatives and automation of delivery processes. Professional & Technical Skills: Strong client-facing and stakeholder engagement capabilities.Excellent organizational and project coordination skills.Ability to clearly communicate technical information to both technical and non-technical audiences.Proactive mindset with a focus on security service quality and consistency.Experience working in delivery frameworks such as Agile, ITIL.Microsoft Sentinel:Hands-on experience with SIEM/SOAR, including KQL query development, alert tuning, and automation with Logic Apps.Able to manage key vault and secret rotation Azure Devops, Github, CICD, Terraform.Required knowledge Entra ID management.Managing Cribl and Logstash pipeline for log source onboarding.Strong understanding of incident response and threat management.Experience with security monitoring tools and technologies.Able to manage requests, incidents and changes on ServiceNow as per service management process.Familiarity with scripting (PowerShell, KQL), infrastructure-as-code, and automation tools is a plus.Required active participation/contribution in team discussionsTo be a part of audits and service improvement activities within the teamthreat hunting, MDE and use case engineering experienceKnowledge of network security protocols and best practices.Experience in designing and implementing security solutions. Deliver security solutions using Microsofts security stack, with a focus on Microsoft Defender for Cloud, Endpoint, Identity, Azure Firewall, and Microsoft Sentinel.Implement and operationalize MDC for cloud security posture management and workload protection.Support deployment and ongoing management of MDE for endpoint threat detection and response.Integrate MDI into customer environments to monitor identity-related threats and provide remediation recommendations.Knowledge of network security protocols and best practices. Additional Information:The candidate should have a minimum of 7+ years of experience in Managed Cloud Security Services.This position will be operated from Bengaluru location.A 15 years full time education is required. Qualification 15 years full time education