33 Xsoar Jobs

Job Title- Cybersecurity Operation Analyst Position type- Full Time Work Location- Gurugram Working style- Remote People Manager role: No Required education and certifications critical for the role- Any Graduate or Post-Graduate (full time) Required years of experience - Minimum 3+ years of relevant experience Are you a Cyber Security professional with Security Monitoring and Incident response experience Are you looking for exposure to a wide range of cyber threats across a global footprint Willing to provide support on weekends and early morning shifts If yes, we would love to hear from you! Aon is recruiting for a cybersecurity operations analyst to join our team. This is a remote role tha...

As an ideal candidate for this role, you will be responsible for the following: - Developing playbooks for XSOAR, Tines, Torq, or Sentinel SOAR platforms - Creating custom automation scripts to enhance efficiency - Deploying playbooks to automate various processes - Programming custom integrations using Python Qualifications required for this position include: - Proficiency in Python programming - Experience in playbook development and deployment - Strong skills in custom automation scripting - Ability to program custom integrations effectively (Note: No additional details about the company were provided in the job description.),

Must-Have** ? Knowledge of Log management, SIEM and SOAR solutions such as FortiSOAR is must. Good-to-Have ? Devo, ArcSight, Microsoft Sentinel, FortiSOAR, XSOAR ? Good in problem resolution and troubleshooting and can drive investigations independently, develop POC solutions and take those to design and implementation with little or no supervision. You are accountable and responsible and can make decisions required to address technology challenges and propose solutions and create storyboards with confidence. You know what it means to adhere to technology standards and produce resilient and scalable solution designs. SN Responsibility of / Expectations from the Role 1 ? Deploying and managin...

Preferred candidate profile Automation Development: Design, develop, and maintain security automation playbooks using XSOAR. Integration: Integrate various security tools and systems with XSOAR to enhance incident response capabilities. Incident Response: Collaborate with the SOC team to automate and streamline incident response processes. Custom Scripting: Develop custom scripts and integrations using Python or other relevant programming languages. Monitoring and Optimization: Continuously monitor and optimize XSOAR playbooks and integrations for performance and effectiveness. Documentation: Create and maintain comprehensive documentation for all automation processes and playbooks. Training...

SurveyMonkey is the world's most popular platform for surveys and forms, built for businessloved by users. We combine powerful capabilities with intuitive design, effectively serving every use case, from customer experience to employee engagement, market research to payment and registration forms. With built-in research expertise and AI-powered technology, it's like having a team of expert researchers at your fingertips. Trusted by millionsfrom startups to Fortune 500 companiesSurveyMonkey helps teams gather insights and information that inspire better decisions, create experiences people love, and drive business growth. Discover how at surveymonkey.com. What We're Looking For In this dynami...

Preferred candidate profile Automation Development: Design, develop, and maintain security automation playbooks using XSOAR. Integration: Integrate various security tools and systems with XSOAR to enhance incident response capabilities. Incident Response: Collaborate with the SOC team to automate and streamline incident response processes. Custom Scripting: Develop custom scripts and integrations using Python or other relevant programming languages. Monitoring and Optimization: Continuously monitor and optimize XSOAR playbooks and integrations for performance and effectiveness. Documentation: Create and maintain comprehensive documentation for all automation processes and playbooks. Training...

We are seeking a Senior Security Operations Centre Engineer / Technical Manager (L3) to lead 24x7 SOC operations for a global enterprise client. The role involves advanced incident handling, detection engineering, automation, and client engagement. The ideal candidate will drive SOC maturity, manage high-severity escalations, optimize detections, and mentor the SOC team. Responsibilities: Act as L3 escalation point for major incidents and lead advanced investigations (memory, PCAP, registry, Kubernetes runtime). Perform threat hunting and detection engineering using QRadar, CrowdStrike, Darktrace, Prisma Cloud, and XSOAR. Develop and tune correlation rules, IOAs, and playbooks (automated tri...

Stand up and configure security servers / appliances Integrate and manage log sources for security monitoring. Configure and manage XSOAR automation workflows. Security monitoring. Develop and optimize security use cases in Splunk.

Job Description: As a Security Operations professional, you will be responsible for managing security operations in the CASB Crowdstrike environment. You should have 5 to 8 years of experience in the field. Your technical skills should include expertise in Security Change Lifecycle Management, while your domain skills should cover incident management. It would be beneficial if you also have experience with cloud infrastructure, cloud networking, infrastructure concepts, containers, Kubernetes clusters, VMs, IaC, GitHub, Terraform, log analysis, and troubleshooting of security tools. Key Responsibilities: - Demonstrate detailed knowledge of cloud infrastructure, cloud networking, and various ...

Role Overview: You should have 4-5 years of L2 Relevant Cybersecurity/SOC L2 experience, with a preference for experience in Infrastructure protection, Network Security, Endpoint protection, DLP, etc. Your role will involve extensive work with SIEM systems and security event correlation. As a proactive and well-organized individual, you should possess excellent troubleshooting skills and the ability to multi-task effectively. Experience in working on Azure or other cloud platforms would be beneficial. You must be prepared for mandatory 24X7 work and willing to opt for SOC location. Moreover, you should have excellent communication skills, both written and verbal, as you will be responsible f...

Job Description Agilents Information Security organization is looking for a Vulnerability/Patch Management and Automation lead with a solid technical security background in a global enterprise. This role will be responsible for overseeing and improving Agilents existing vulnerability/patch management security program and drive automation initiatives within Agilent&aposs Information Security team.The successful candidate will need good communication skills to ensure patch and vulnerability management requirements are understood and adhered to by stakeholders across a large global enterprise. In addition, the person in this role will need to be able to collect requirements for actions that can...

Equal Opportunity Employer All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, protected veteran status, or disability status. EEO/AA/M/F/Disabled/Vets Job Description : About News Corp News Corp is a global diversified media and information services company focused on creating and distributing authoritative and engaging content to consumers and businesses throughout the world. The company comprises global businesses across a range of media, including: news and information services, book publishing, digital real estate services, cable network programming in Australia and pay-TV distribution in Australia. Job Title:...

Job description: Job Title: SOAR Automation Engineer Location: Delhi, India Experience: 2-5 years Employment Type: Full-Time Joining: Immediate Job Summary: We are seeking a skilled SOAR Automation Engineer to enhance our cybersecurity operations through automation and orchestration. The ideal candidate will have hands-on experience in SOAR platforms, strong programming expertise, and the ability to develop and optimize playbooks for threat detection and incident response. If you're ready to contribute immediately to cutting-edge security automation, we want you on our team! Key Responsibilities: Develop, customize, and implement SOAR automation workflows using platforms like XSOAR, Google S...

Role & responsibilities About the Role: The Senior Cybersecurity SOC Engineer role is a key position within CA One Tech Cloud Clients . This role involves designing scalable applications and ensuring the delivery of high-quality projects. Key Responsibilities: Design and build SOC infrastructure using Microsoft Sentinel and SOAR Lead deep investigations using CrowdStrike Falcon, MDE, Tenable, and Palo Alto/Fortinet firewalls Perform threat hunting using MITRE ATT&CK framework and dark web intelligence Develop KQL queries and automation scripts in PowerShell/Python Integrate and respond to incidents across Azure and Microsoft 365 environments Collaborate with MSOC and global teams for escalat...

Role & responsibilities - Minimum 4 plus years of experience in application development using Python and Rest API. - Experience in managing any SOAR platforms (e.g. Palo Alto Cortex, Phantom, Resilient, Swimlane, etc.) -Experience in SOAR administration, playbook development/automation and life cycle management - Deploying and managing integration packages for various 3rd party tools/applications - Experience in trouble shooting integration issues and code customization. - Experience in developing integration solutions with web services, APIs using REST/JSON. - Ability to install and configure 3rd party applications in a Linux environment, experience in Unix/Linux administration - Understand...

Company Summary DISH Network Technologies India Pvt. Ltd is a technology subsidiary of EchoStar Corporation. Our organization is at the forefront of technology, serving as a disruptive force and driving innovation and value on behalf of our customers. Our product portfolio includes Boost Mobile (consumer wireless), Boost Mobile Network (5G connectivity), DISH TV (Direct Broadcast Satellite), Sling TV (Over The Top service provider), OnTech (smart home services), Hughes (global satellite connectivity solutions) and Hughesnet (satellite internet). Our facilities in India are some of EchoStar's largest development centers outside the U.S. As a hub for technological convergence, our engineering ...

Role: Automations Engineer (Python) Customer: Pfizer Experience: 5-7 Years Duration: 6 months Location: Remote, India Work Hours: 01:00pm to 10:00pm IST Interview Rounds: 3 in total. (1 technical screen and 2 customer rounds) Job Description: Support the team develop automations for processes, templates, workflows and analytics to ensure end to end reliability, continuity and consistency of our services to protect Pfizer. Specifically: Develop automations based on analytics to eliminate manual repetitive tasks and allow time for more meaningful work, Develop automations based on analytics to implement Role-Based Access Controls, Develop code in Python, Use DevOps practices, Familiarity/Exper...

As a member of our team at MetLife, you will play a crucial role in supporting and developing endpoint security tools such as Crowdstrike or other EDR solutions. You will be responsible for providing Tier III engineering and operational support for our endpoint protection infrastructure, ensuring its effectiveness and reliability. Additionally, you will collaborate with internal InfoSec teams and external providers to align security goals and contribute to milestone planning, deployment coordination, change management, and operational documentation. Your expertise in the following technologies is essential for this role: - EDR: Admin-level knowledge of Crowdstrike (preferred), Fortra, or any...

Organizations everywhere struggle under the crushing costs and complexities of solutions that promise to simplify their lives. To create a better experience for their customers and employees. To help them grow. Software is a choice that can make or break a business. Create better or worse experiences. Propel or throttle growth. Business software has become a blocker instead of ways to get work done. Theres another option. Freshworks. With a fresh vision for how the world works. At Freshworks, we build uncomplicated service software that delivers exceptional customer and employee experiences. Our enterprise-grade solutions are powerful, yet easy to use, and quick to deliver results. Our peopl...

Role & responsibilities Design and develop XSOAR playbooks to automate repetitive tasks in Security Operations. Integrate various security tools and data sources with XSOAR using APIs, custom integrations, and out-of-the-box connectors. Collaborate with SOC analysts, incident responders, and other cybersecurity teams to identify automation opportunities. Maintain and enhance existing playbooks based on feedback and evolving security requirements. Develop custom scripts (Python) and integrations as needed. Troubleshoot and resolve issues related to XSOAR integrations and playbooks. Document processes, playbooks, and integration procedures for knowledge sharing. Ensure automation workflows com...

Job Title : Cybersecurity Analyst Fortinet, SIEM, and SOAR Expert Location : Chennai Experience : 5 to 8 Years Employment Type : Contract Job Summary : We are looking for an experienced Cybersecurity Analyst with a strong background in Fortinet firewall configuration , SIEM tools (like Splunk, QRadar, or SentinelOne), and SOAR platforms . The ideal candidate will be highly skilled in threat detection, incident response automation, and log analysis. A basic understanding of OT/IoT security concepts is desirable. Key Responsibilities : Configure and audit firewall rules in Fortinet environments Work with SIEM tools (e.g., Splunk, QRadar, SentinelOne) to: Monitor and analyze logs and security e...

Role & responsibilities About the Role: We are hiring a Senior SOC Engineer to lead incident response, threat detection, and automation initiatives for Rocket EMS's global security operations. This is not an analyst roleyoull be hands-on, driving SIEM/SOAR optimization, advanced threat hunting, and direct response to cyberattacks across endpoints, cloud, and identity systems. Key Responsibilities: Design and build SOC infrastructure using Microsoft Sentinel and SOAR Lead deep investigations using CrowdStrike Falcon, MDE, Tenable, and Palo Alto/Fortinet firewalls Perform threat hunting using MITRE ATT&CK framework and dark web intelligence Develop KQL queries and automation scripts in PowerSh...

Deploy and configure Microsoft Sentinel and dependent resources. Integrate diverse data sources into SIEM for holistic threat visibility. Develop advanced KQL queries and build analytical rules and alerts. Design and implement use cases aligned to NIST and MITRE ATT&CK frameworks. Build SOAR workflows using Azure Logic Apps for automated incident response. Perform threat hunting and simulate non-invasive attacks based on TTPs and threat actor behavior. Conduct forensic analysis, root cause analysis, and incident triage. Leverage threat intelligence for proactive defense and detection strategies. Create and maintain KPI dashboards and reporting metrics. Build Proof of Concepts (PoCs) for doma...

Role & responsibilities About the Role: We are hiring a Senior SOC Engineer to lead incident response, threat detection, and automation initiatives for Rocket EMS's global security operations. This is not an analyst roleyou’ll be hands-on, driving SIEM/SOAR optimization, advanced threat hunting, and direct response to cyberattacks across endpoints, cloud, and identity systems. Key Responsibilities: Design and build SOC infrastructure using Microsoft Sentinel and SOAR Lead deep investigations using CrowdStrike Falcon, MDE, Tenable, and Palo Alto/Fortinet firewalls Perform threat hunting using MITRE ATT&CK framework and dark web intelligence Develop KQL queries and automation scripts in PowerS...

Your potential, unleashed. India's impact on the global economy has increased at an exponential rate and Deloitte presents an opportunity to unleash and realise your potential amongst cutting edge leaders, and organisations shaping the future of the region, and indeed, the world beyond. At Deloitte, your whole self to work, every day. Combine that with our drive to propel with purpose and you have the perfect playground to collaborate, innovate, grow, and make an impact that matter s. The team Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure, vigilant, and resilientnot only by looking at how to prevent and respond to attacks, but at ho...