202 Xdr Jobs - Page 4

As part of the Global Security Operations team at Tower Research Capital, you will play a crucial role in continually enhancing the security posture and services by monitoring, identifying, and addressing security gaps and countermeasures. Your responsibilities will include: - Monitoring alerts for potential security incidents and information requests through various channels and tools. - Performing basic triage of potential security incidents, determining nature, priority, and eliminating false positives. - Investigating and validating alerts to identify scope, impact, and root cause using available telemetry and threat intelligence. - Escalating confirmed incidents with comprehensive evide...

As a member of the Security Operations Center (SOC) department in Ahmedabad, your role will involve the following responsibilities: - Strong oral and written communication skills are essential. - Experience in managing global customers, particularly in the US and Canada, is advantageous. - Proficiency in Incident Management and Response is required. - In-depth knowledge of security concepts such as cyber-attacks, threat vectors, risk management, incident management, etc., with a strong understanding of Security solutions like EDR, XDR, NDR, EPP, Web Security, Firewalls, Email Security, O365, SIEM, SSL, Packet Analysis, HIPS/NIPS, Network Monitoring tools, Remedy, Service Now Ticketing Toolse...

As a highly skilled SOC Lead, you will be responsible for managing and optimizing Security Operations Center (SOC) activities, ensuring the delivery of managed security services across various cybersecurity technologies. Your role will involve overseeing SOC operations utilizing tools like SIEM, XDR, and advanced threat hunting, as well as managing services such as IAM, DLP, Email Security, and EDR. **Key Responsibilities:** - **SOC Operations Management:** - Lead SOC Activities: Oversee daily SOC operations, ensuring effective monitoring, detection, and response to security incidents. - Incident Detection & Response: Identify security incidents, triage alerts, and manage escalations in real...

Job Description Title: SOC Team Lead (L1) Location: Bangalore Shift: Rotational The SOC Level 1 Team Lead is responsible for managing and guiding the Level 1 security analysts who provide initial incident triage, analysis, resolution, or escalation to Level 2. This role blends hands-on Incident Response (IR) capabilities with team leadership and management responsibilities in a 24/7 SOC environment. The successful candidate will have strong technical skills, leadership potential, and the ability to motivate and develop junior team members. Key Responsibilities: Lead and supervise the SOC Level 1 team, providing clear direction, guidance, and mentorship. Prior work experience with SIEM (Splun...

Job Description Title: SOC Analyst (L1) Location: Bangalore Shift: Rotational The SOC Level 1 Analyst is an entry-level position responsible for initial security incident triage, investigation, basic resolution, or escalation to Level 2 analysts. This role provides an excellent opportunity for individuals looking to gain foundational cybersecurity experience within a dynamic, 24/7 operational environment. Ideal candidates should have a basic understanding of cybersecurity concepts and a willingness to learn and develop their technical skills further. Key Responsibilities: Conduct initial security incident triage by analyzing alerts generated by SIEM tools (Splunk/QRadar) and other security t...

Job Description Title: SOC Analyst (L1) Location: Bangalore Shift: Rotational The SOC Level 1 Analyst is an entry-level position responsible for initial security incident triage, investigation, basic resolution, or escalation to Level 2 analysts. This role provides an excellent opportunity for individuals looking to gain foundational cybersecurity experience within a dynamic, 24/7 operational environment. Ideal candidates should have a basic understanding of cybersecurity concepts and a willingness to learn and develop their technical skills further. Key Responsibilities: Conduct initial security incident triage by analyzing alerts generated by SIEM tools (Splunk/QRadar) and other security t...

Job Title SOC Analyst (L1) Job Description Title: SOC Analyst (L1) Location: Bangalore Shift: Rotational The SOC Level 1 Analyst is an entry-level position responsible for initial security incident triage, investigation, basic resolution, or escalation to Level 2 analysts. This role provides an excellent opportunity for individuals looking to gain foundational cybersecurity experience within a dynamic, 24/7 operational environment. Ideal candidates should have a basic understanding of cybersecurity concepts and a willingness to learn and develop their technical skills further. Key Responsibilities: Conduct initial security incident triage by analyzing alerts generated by SIEM tools (Splunk/Q...

Dear Candidate, Greetings from Akshay Software Technologies Pvt. Ltd. We are hiring for the role of SOC Manager MSSP (Microsoft Sentinel) with one of our esteemed clients. Please find the details below: Position: SOC Manager MSSP (Microsoft Sentinel) Location: Bangalore (Work from Office) Key Responsibilities: Lead 24x7 SOC operations in a multi-tenant MSSP environment. Manage SOC teams (L1L3) and oversee the complete incident response lifecycle. Optimize Microsoft Sentinel (analytics rules, KQL, playbooks, workbooks). Drive threat hunting, integrate threat intelligence, and ensure SLA/KPI compliance. Prepare client reports and lead review meetings. Requirements: 10+ years in cybersecurity w...

Role Overview: As a SOC Architect/Lead at SvelteTech, you will play a crucial role in designing, implementing, and leading the next-generation Security Operations Center. You will have the opportunity to make a significant impact by utilizing your expertise in SOC design, Elastic Stack, SIEM/SOAR, and leading security teams. Key Responsibilities: - Architect and implement SOC using tools such as Elastic SIEM, SOAR, and threat intel pipelines - Lead and mentor SOC Engineers to build dashboards, detection logic, and correlation rules - Drive proactive threat hunting and integrate global intel sources like MISP, OTX, and AbuseIPDB - Establish IR workflows, escalation paths, and ensure complianc...

This job is with Kyndryl, an inclusive employer and a member of myGwork the largest global platform for the LGBTQ+ business community. Please do not contact the recruiter directly. Who We Are At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl We are always moving forward - always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities. The Role Your Role And Responsibility Kyndryl's Security and Resiliency global practice supports enterprise customer needs for Cyber Resilience. The Offering Manager - Securit...

By contacting us you agree with the storage and handling of your data by this website. Location Navi Mumbai Requirement Knowledge of Mitre ATT&CK framework, Incident Response Procedure, TTP based Threat Hunting etc Experience 5+ yrs Send Your CV To [HIDDEN TEXT] Job Description Department: Incident Response Roles and Responsibilities: - Investigate and analyse logs and security-related events via EDR/XDR/Raw Logs Investigating using SIEM consoles. Live Disk forensics. TTP based Threat Hunting. Identify and respond to cyber threats occurring within customer environments. Communicate and document findings to various customer audiences including, technical and executive teams. Collaborate and a...

Role Overview: You will be responsible for administering and maintaining Deep security systems to ensure the security of IT Infrastructure. This includes monitoring and analyzing security alerts to identify potential threats, ensuring proper integration with existing systems, troubleshooting and debugging problems related to TrendMicro Deep Security Manager and Agent, as well as managing TrendMicro Deep Security Agent (installation, reconciliation, troubleshooting, etc.). Additionally, you will be involved in fine-tuning policies in Deep security features such as FIM, Log Inspection, IPS, Firewall, Anti-malware module, and developing/updating security policies and procedures related to Deep ...

Position: - L2 Cyber Security Engineer. We are currently seeking a full-time Cyber Security Analyst to join our team in Mumbai. This is an on site role which requires a strong understanding of cyber security principles and practices. Qualification: Bachelor's degree in Computer Science, Information Security or a related field. Strong knowledge on networking protocols, Operating Systems and Web Application technologies. The Cyber Security Engineer is responsible for understanding security tooling platforms, appropriate configuration and deployment of respective tools to ensure detection, prevention and response capabilities to HDFC Life Insurance. Key Skills. Knowledge on Cloud architecture, ...

As an Associate Technical Security Specialist, you will play a critical role in supporting cybersecurity operations by implementing technical security controls, monitoring security events, and ensuring compliance with company contractual and regulatory obligations. Your focus will be on operational information security tasks, responding to information security incidents, and continuously improving information security processes to protect the managed information and technical assets. Key Responsibilities: - Monitor information security alerts and logs using XDR and other security tools. - Investigate potential information security incidents, escalate critical issues, and support information ...

Role Overview: As a member of the Cyber Incident Response Team (CIRT) at Ingka Group, you will play a crucial role in developing and operating threat detection, investigation, and response capabilities to ensure a secure environment for the organization. Based in Malm, Helsingborg, or Amsterdam, you will lead the response to complex, major, or recurring cyber security incidents across the global organization. Your responsibilities will include reporting on the overall performance of incident response, writing comprehensive documentation such as plans, playbooks, and runbooks, and developing automated incident response playbooks using SOAR. Additionally, you will engineer threat detections us...

Role Overview: As a Junior Security Engineer, you will work closely with senior engineers to ensure the security of an organization's systems and data. Your responsibilities will include monitoring networks, identifying vulnerabilities, and implementing security measures with guidance. You will be involved in various areas such as Vulnerability Management, XDR, EDR, Zero Trust, and DLP technologies. Key Responsibilities: - Assist in identifying and assessing vulnerabilities in systems and applications for Vulnerability Management. - Support the remediation process for vulnerabilities by utilizing vulnerability scanning tools and reporting on findings. - Monitor security alerts from XDR/EDR p...

Role Overview: As a seasoned Technology Leader specializing in cybersecurity solutions, you will be responsible for developing and executing a comprehensive technology roadmap that aligns with business objectives and industry standards. Your role will involve designing and managing enterprise-grade cybersecurity platforms such as Splunk and QRadar to ensure seamless integration across diverse OT and IT environments. Innovation will be a key aspect of your responsibilities as you lead the design and development of advanced cybersecurity tools including SIEM, XDR, next-gen firewalls, and secure networking solutions. Your focus will be on driving innovation to address the unique challenges of O...

Job Overview: The EDR Specialist will be responsible for supporting the deployment and operational effectiveness of endpoint security solutions, including EDR/MDR, antivirus, threat hunting, and forensics tools. This role requires close collaboration with the user department and other technical teams to ensure that security measures are in place to detect, respond to, and mitigate cyber threats. The individual will actively participate in security investigations, rule creation, and system fine-tuning, all while adhering to the established processes and compliance frameworks. The resource is expected to have an in-depth understanding of cyberattack methods, vulnerability management, and endpo...

We are seeking a Cloud Engineer to design, implement, and maintain cloud infrastructure (AWS, Azure, GCP). Key responsibilities include cloud architecture, system administration, automation, security, cost management, and documentation. Experience with migrating Exchange and SharePoint to cloud solutions is required. Collaborate with, cross-functional teams to design, implement, and maintain cloud infrastructure solutions. Provide technical guidance and support to resolve complex issues related to cloud services, Cyber Security, Networks. Perform regular assessments and audits to ensure the security, reliability, and efficiency of cloud environments. Participate in planning and executing clo...

Role Overview: As a Security Architect at Saint Fox in Bengaluru, you will be responsible for designing, deploying, and managing security architectures with a focus on SSE, SASE, and Identity Management solutions. Your role will involve operating and maintaining critical security tools such as XDR systems and SOC environments, monitoring and responding to cybersecurity incidents, and collaborating with IT teams to integrate security controls into infrastructure. Additionally, you will lead security projects, provide architectural guidance, and train internal teams on cybersecurity best practices. Key Responsibilities: - Design, deploy, and manage security architectures emphasizing SSE, SASE,...

**Job Description:** As a Sales Manager, you will be responsible for crafting and executing sales strategies aligned with our vendors, recruiting and empowering channel partners, and driving sales for assigned product solutions. Your role will involve leading a high-performing sales team, engaging with clients as a trusted advisor, staying updated on industry trends, and maintaining accurate sales forecasts. Here are the key responsibilities: - Define sales, channel, and go-to-market strategies for the assigned products in alignment with vendors. - Identify, recruit, and enable channel and solutions partners, providing regular updates and support. - Champion sales for assigned product soluti...

A SOC Analyst background with 2 to 3 years of hands-on experience, ideally transitioning or already transitioned into an Engineer role . Strong expertise in XDR/EDR tools (Microsoft Defender or equivalent), including alert management, playbook creation, and automation of responses. Proven experience in preparing and executing SIEM deployments (Azure Sentinel) . Broader SOC operations exposure, with the ability to manage toolsets independently from day one.

Role & responsibilities Design, implement, and manage enterprise-grade firewalls (Fortinet, Palo Alto, Checkpoint, Barracuda) including rule base optimization, upgrades, and high availability setups. Administer and troubleshoot complex network infrastructures , including VLANs, routing, switching, and VPNs, ensuring secure and reliable connectivity across the organization. Lead security architecture reviews, risk assessments, and provide recommendations to enhance enterprise security posture. Deploy, configure, and maintain EDR/XDR solutions , ensuring endpoint protection and advanced threat detection. Knowledge of SIEM and SOAR platforms for log correlation, incident monitoring, and automat...

As an Infrastructure Security Engineer, you will be responsible for ensuring the security of our infrastructure and protecting against cyber threats. Your expertise in cloud security, vulnerability management, and endpoint protection will be crucial in maintaining a secure environment. Key Responsibilities: - Designing and managing IAM, security groups, NACLs, and VPCs in AWS - Configuring AWS security services such as CloudTrail, GuardDuty, and Security Hub - Applying Infrastructure as Code (IaC) security best practices using tools like Terraform, CloudFormation, and CDK - Regularly assessing the cloud security posture and recommending improvements - Ensuring compliance with frameworks like...

Mandatory Skills: SOC, XDR, SIEM, VULNERABLE MANAGEMENT, SCRIPTING(Bash and Python), MALWARE Analysis Job Description: Roles & Responsibilities: Responding to alerts from the SOC MSSP and working within the Cyber Security Operations team to safeguard Evri critical information during extended business hours Ensuring information security threats are identified and assessed, making appropriate recommendations on monitoring and remedial action. Creation of knowledgebase articles and playbooks to create efficiencies in conducting investigations. Supporting the Cyber Security Operations Manager by providing meaningful reports and data insight. Owning specific measuring and monitoring of Informatio...