85 Ueba Jobs - Page 2

Make an impact with NTT DATA Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion it's a place where you can grow, belong and thrive. Threat Detection and Response: Monitor and analyze security events on SIEM/EDR/DLP platforms to identify potential threats and vulnerabilities. Incident Investigation: Conduct in-depth investigations of security incidents and provide detailed analysis and providing RCA as well. Escalation Handling and Team Management : Should be able to manage the L1 resources and handle the e...

* Responsible for implementation partner to see project on track along with providing required reports to management and client * Handle the project as well as BAU operations while ensuring high level of systems security compliance * Coordinate with and act as an authority to resolve incidents by working with other information security specialists to correlate threat assessment data. * Analyse data, such as logs or packets captures, from various sources within the enterprise and draw conclusions regarding past and future security incidents. * Ready to support for 24/7 environment Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional expe...

Proactively lead and support incident response team during an incident. * Experience in advance investigation, triaging, analysis and escalation of security incidents with recommendations * Hands-on basic experience with configurations and management of SIEM tools(Qradar) including log source integrations, custom parser built, fine tuning and optimizing the correlation rules and use cases recommendations Is MUST. * Proven Experience on any of the Security information and event management (SIEM) tools using Qradar * Data-driven threat hunting using SIEM, EDR and XDR tools * Basic Experience is SOAR tools such as Qradar Resilient, PaloAlto XSOAR * Identify quick defence techniques till permane...

Level -L3 - Build baseline behavioural profiles for users, hosts, IPs, and applications. - Detect anomalies such as lateral movement, beaconing, data exfiltration, and unauthorized access (e.g., VPN/RDP logins, illegal website access) - Prioritize threats based on asset sensitivity and potential blast radius Model Development & Tuning aligned with MITRE ATT&CK to detect: - Insider threats and compromised accounts. - Zero-day and advanced persistent threats (APTs). - Emerging global threat patterns - Enriching incidents with UEBA context for faster triage. - Enabling threat hunting using UEBA signals. - Collaborating with SOAR teams to automate response workflows - Daily threat hunting report...

Level -L3 - Build baseline behavioural profiles for users, hosts, IPs, and applications. - Detect anomalies such as lateral movement, beaconing, data exfiltration, and unauthorized access (e.g., VPN/RDP logins, illegal website access) - Prioritize threats based on asset sensitivity and potential blast radius Model Development & Tuning aligned with MITRE ATT&CK to detect: - Insider threats and compromised accounts. - Zero-day and advanced persistent threats (APTs). - Emerging global threat patterns - Enriching incidents with UEBA context for faster triage. - Enabling threat hunting using UEBA signals. - Collaborating with SOAR teams to automate response workflows - Daily threat hunting report...

Level -L3 - Build baseline behavioural profiles for users, hosts, IPs, and applications. - Detect anomalies such as lateral movement, beaconing, data exfiltration, and unauthorized access (e.g., VPN/RDP logins, illegal website access) - Prioritize threats based on asset sensitivity and potential blast radius Model Development & Tuning aligned with MITRE ATT&CK to detect: - Insider threats and compromised accounts. - Zero-day and advanced persistent threats (APTs). - Emerging global threat patterns - Enriching incidents with UEBA context for faster triage. - Enabling threat hunting using UEBA signals. - Collaborating with SOAR teams to automate response workflows - Daily threat hunting report...

Level -L3 - Build baseline behavioural profiles for users, hosts, IPs, and applications. - Detect anomalies such as lateral movement, beaconing, data exfiltration, and unauthorized access (e.g., VPN/RDP logins, illegal website access) - Prioritize threats based on asset sensitivity and potential blast radius Model Development & Tuning aligned with MITRE ATT&CK to detect: - Insider threats and compromised accounts. - Zero-day and advanced persistent threats (APTs). - Emerging global threat patterns - Enriching incidents with UEBA context for faster triage. - Enabling threat hunting using UEBA signals. - Collaborating with SOAR teams to automate response workflows - Daily threat hunting report...

Level -L3 - Build baseline behavioural profiles for users, hosts, IPs, and applications. - Detect anomalies such as lateral movement, beaconing, data exfiltration, and unauthorized access (e.g., VPN/RDP logins, illegal website access) - Prioritize threats based on asset sensitivity and potential blast radius Model Development & Tuning aligned with MITRE ATT&CK to detect: - Insider threats and compromised accounts. - Zero-day and advanced persistent threats (APTs). - Emerging global threat patterns - Enriching incidents with UEBA context for faster triage. - Enabling threat hunting using UEBA signals. - Collaborating with SOAR teams to automate response workflows - Daily threat hunting report...

Job Description for Technical Sales Support Professional for Cybersecurity Business Job Title: Technical Sales Support Professional for Cybersecurity business (OT & IT) Location: Gurgaon Business Unit: Electrification and Automation Customer Services Experience Level: 510 Years Job Type: Full-Time PL Level: PL 9 Industry: Energy / Power / Industrial Automation Business Unit: Smart Infrastructure Electrification & Automation, Customer Services We are seeking a highly skilled and experienced Cybersecurity professional to join our Customer Services team in the Electrification and Automation (EA) Business Unit. The ideal candidate needs to have a strong background in cyber security, with focus o...

Your potential, unleashed. Indias impact on the global economy has increased at an exponential rate and Deloitte presents an opportunity to unleash and realise your potential amongst cutting edge leaders, and organisations shaping the future of the region, and indeed, the world beyond. At Deloitte, your whole self to work, every day. Combine that with our drive to propel with purpose and you have the perfect playground to collaborate, innovate, grow, and make an impact that matters. The team Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure, vigilant, and resilientnot only by looking at how to prevent and respond to attacks, but at how ...

A UEBA (User and Entity Behavior Analytics) Administrator is a cybersecurity professional responsible for deploying, configuring, maintaining, and optimizing UEBA solutions to detect and respond to anomalous user and entity behavior within an organization's network. This role is crucial in identifying insider threats, compromised accounts, and sophisticated attacks that might bypass traditional security measures. -------------------------Key ResponsibilitiesThe UEBA Administrator's responsibilities:*Deployment and Configuration:*Installing and setting up UEBA platforms and related components. *Integrating UEBA solutions with various data sources (e.g., SIEM, Active Directory, network devices...

Proactively lead and support incident response team during an incident. Experience in advance investigation, triaging, analysis and escalation of security incidents with recommendations Hands-on basic experience with configurations and management of SIEM tools(Qradar)including log source integrations, custom parser built, fine tuning and optimizing the correlation rules and use cases recommendations Is MUST. Proven Experience on any of the Security information and event management (SIEM) tools using Qradar Data-driven threat hunting using SIEM, EDR and XDR tools Basic Experience is SOAR tools such as Qradar Resilient, PaloAlto XSOAR Identify quick defence techniques till permanent resolution...

Position : L1 Location Jaipur Organisation : Novamesh Ltd (TATA Commununications Ltd) Shift : 24X7 Job Description: SIEM, SOAR, UEBA, and NBAD Position Summary: We are looking for a skilled Security Operations Specialist with expertise in SIEM, SOAR, UEBA, and NBAD technologies to strengthen our security monitoring, automation, and threat detection capabilities. The ideal candidate should have a strong technical background, relevant experience in cyber security, and a proactive attitude toward threat hunting and incident response. Primary Responsibilities Real-time monitoring of all security appliance(s) like Secure Web/ Email Gateways, Proxy, IPS/ IDS, NGFW, DLP, APT, WAF, Network Forensics...

Position : L1 Location Jaipur Organisation : Novamesh Ltd (TATA Commununications Ltd) Shift : 24X7 Job Description: SIEM, SOAR, UEBA, and NBAD Position Summary: We are looking for a skilled Security Operations Specialist with expertise in SIEM, SOAR, UEBA, and NBAD technologies to strengthen our security monitoring, automation, and threat detection capabilities. The ideal candidate should have a strong technical background, relevant experience in cyber security, and a proactive attitude toward threat hunting and incident response. Primary Responsibilities Real-time monitoring of all security appliance(s) like Secure Web/ Email Gateways, Proxy, IPS/ IDS, NGFW, DLP, APT, WAF, Network Forensics...

Position : L1 Location Jaipur Organisation : Novamesh Ltd (TATA Commununications Ltd) Shift : 24X7 Job Description: SIEM, SOAR, UEBA, and NBAD Position Summary: We are looking for a skilled Security Operations Specialist with expertise in SIEM, SOAR, UEBA, and NBAD technologies to strengthen our security monitoring, automation, and threat detection capabilities. The ideal candidate should have a strong technical background, relevant experience in cyber security, and a proactive attitude toward threat hunting and incident response. Primary Responsibilities Real-time monitoring of all security appliance(s) like Secure Web/ Email Gateways, Proxy, IPS/ IDS, NGFW, DLP, APT, WAF, Network Forensics...

Position : L1 Location Jaipur Organisation : Novamesh Ltd (TATA Commununications Ltd) Shift : 24X7 Job Description: SIEM, SOAR, UEBA, and NBAD Position Summary: We are looking for a skilled Security Operations Specialist with expertise in SIEM, SOAR, UEBA, and NBAD technologies to strengthen our security monitoring, automation, and threat detection capabilities. The ideal candidate should have a strong technical background, relevant experience in cyber security, and a proactive attitude toward threat hunting and incident response. Primary Responsibilities Real-time monitoring of all security appliance(s) like Secure Web/ Email Gateways, Proxy, IPS/ IDS, NGFW, DLP, APT, WAF, Network Forensics...

Position : L1 Location Jaipur Organisation : Novamesh Ltd (TATA Commununications Ltd) Shift : 24X7 Job Description: SIEM, SOAR, UEBA, and NBAD Position Summary: We are looking for a skilled Security Operations Specialist with expertise in SIEM, SOAR, UEBA, and NBAD technologies to strengthen our security monitoring, automation, and threat detection capabilities. The ideal candidate should have a strong technical background, relevant experience in cyber security, and a proactive attitude toward threat hunting and incident response. Primary Responsibilities Real-time monitoring of all security appliance(s) like Secure Web/ Email Gateways, Proxy, IPS/ IDS, NGFW, DLP, APT, WAF, Network Forensics...

About The Role Project Role : Solution Architect Project Role Description : Translate client requirements into differentiated, deliverable solutions using in-depth knowledge of a technology, function, or platform. Collaborate with the Sales Pursuit and Delivery Teams to develop a winnable and deliverable solution that underpins the client value proposition and business case. Must have skills : Solution Architecture Good to have skills : Security Architecture DesignMinimum 12 year(s) of experience is required Educational Qualification : Minimum BE BTech from a reputed university Summary :As a Solution Architect, you will translate client requirements into differentiated, deliverable solutions...

* Responsible for implementation partner to see project on track along with providing required reports to management and client * Handle the project as well as BAU operations while ensuring high level of systems security compliance * Coordinate with and act as an authority to resolve incidents by working with other information security specialists to correlate threat assessment data. * Analyse data, such as logs or packets captures, from various sources within the enterprise and draw conclusions regarding past and future security incidents. * Ready to support for 24/7 environment. Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional exp...

Synax seeks an experienced SOC Leader (10+ years) to address global customers' cybersecurity needs and empower our partner network to achieve next-level service cyber-Security excellence. Why Join Synax Technologies Lead and pioneer a strategic cybersecurity initiative from inception. Thrive in a collaborative, innovative environment with ambitious growth objectives. Gain exposure and influence at a global, enterprise scale. Enjoy competitive compensation, career advancement, and executive visibility. What You&aposll Own: Design the Blueprint. Architect and scale a global SOC from the ground upset the strategy, define the roadmap, and own the outcome. Build the Dream Team. Recruit, lead, and...

You will be joining a leading Indian telecom company operating in 18 countries and serving over 300 million customers and 1 million+ businesses. The company values a customer-first mindset and a user-centric approach. Your role will require you to be experienced in SIEM platforms such as QRadar, Splunk, and ArcSight, with knowledge of UEBA, NBAD, and SOAR. You should be skilled in incident management, network troubleshooting, and comfortable working in 24x7 SOC environments. Your responsibilities will include having a technical understanding and working knowledge of SIEM platforms, along with exposure to UEBA, NBA, NBAD, and SOAR. It is essential to have experience with industry-standard SIE...

You will be responsible for performing deep-dive investigations on security incidents using Securonix SIEM. Your role will involve correlating alerts and utilizing UEBA to detect anomalies and insider threats. Additionally, you will be expected to fine-tune detection rules to reduce false positives in Securonix and conduct threat hunting to identify unknown threats using behavioral analytics. Moreover, you will investigate security events such as ransomware, APTs, data exfiltration, and privilege escalations. Collaborating with L3 analysts, you will help develop playbooks and automation through SOAR integration. You will also provide guidance to L1 analysts and support security awareness tra...

As a Manager, Information Security Incident Response at NTT DATA, you will be responsible for leading the Information Security Incident Response Management team. Your role will involve ensuring that your team is well-equipped to detect and monitor threats and suspicious activities affecting the organization's technology domain. You will serve as the escalation point for incident workflows and actively participate in delivering security measures through analytics and threat hunting processes. Your primary responsibilities will include managing a team of security professionals while fostering a collaborative and innovative team culture focused on operational excellence. You will be expected to...

Role: Regional Sales Manager Job Type : Full Time, Permanent Location: East India (Base location - Candidate's existing location) Number of Openings : 1 Experience Required: Minimum 5 years experience in cyber security Field Qualification: Bachelors degree in Business Administration, Marketing, Engineering, or a related field. MBA or equivalent postgraduate qualification is preferred. Brief Role Description We are seeking a highly experienced and driven Sales Professional having 7 to 12 years of experience in B2B sales with minimum 5 years experience in cyber security field. The ideal candidate will take ownership of the complete sales cycle - from lead generation to deal closure - while bui...

As a Security Software Engineer at Versa SASE, you will play a crucial role in the architecture, design, and qualification of network security services including ATP, Secure Web Gateway (SWG), Forward and Reverse Proxy, CASB, DLP, Remote Browser Isolation (RBI), User and Entity Behavior Analysis (UEBA), and Sensitive Data Obfuscation. Your main responsibilities will revolve around automation and manual testing of the Versa SASE platform. To qualify for this role, you must hold a bachelor's degree in Computer Science or a related field. We are looking for a team player with a can-do attitude who can work both independently and collaboratively in a startup environment. Strong communication ski...