Cybersecurity Incident Response Engineer
2 weeks ago
Manage day-to-day operations of reviewing SIEM alert and other vulnerability management tools. Ensure that all the various environments within the Client have adequate scans and assessments performed.Research and recommend mitigation strategy for current and future threats relevant to the Clients environment.Participate in security incident response process when required.Support the Security Management Lifecycle including: Real-time Monitoring Incident investigation. Research. Correlation. Trending. Remediation. Setup and configure SIEM, including data analysis, rule creation. establish thresholds, reference lists, and other duties. Setup, investigate, and advanced troubleshooting of log transport agents.Work with Client technology owners and platform leads to ensure vulnerabilities and issues are patched and remediated on time.Oversee the implementation and management of operational security reporting activities.Regularly, meet with the internal team to review security reports, status, review any risks, issues, incidents, and outstanding activities.Vulnerability Management, Malware analysis, Threat hunting and assist in forensic analysis.Managing stakeholder expectations and assisting in the reduction of the impact of a cybersecurity event or incident.Contribute to maintaining knowledge base/playbooks by updating procedural documentation. Actively participate in process improvement with other team members and Wider team.Maintain detailed knowledge of the clients’ environment(s), where applicable, by maintaining and updating relevant documentation.Provide proactive, constant, and clear communication on the status of incident/problem resolution between the client, NTT, and any other third-party supplier and vendors.Performs post-mortem analyse with logs, network traffic flows, and other recorded information to identify intrusions by unauthorised parties, as well as unauthorized activities of authorised users.Manage the prevention and resolution of security breaches and ensure that the required incident and problem management processes are initiated to ensure compliance to policy.Conduct presentations of the security breaches findings to the business and advise on new measures required to prevent reoccurrence of similar breaches.What would make you a good fit for this role? (Mandatory skills)
Experience in working in Security Operation Centre.Demonstrated genuine interests and passion for cybersecurity, incident problem solving is a must.Working knowledge of security operations environments and security incident management & response handling.Hands-on experience in managing Splunk, other SIEM logging solution like Microsoft Sentinel, ArcSight, LogRythm.Hands-on knowledge on the creation of use cases within SIEM solution including advanced correlation rules.Creating custom dashboards based on the client's security landscape.Ability to filter through false positives quickly and focus on true positives.Analyse and perform fine-tuning of SIEM rules/policies on regular basis.Hands-on experience in analysing SIEM alert payload to detect any malicious activity.Hands-on experience in managing Vulnerability Management solution like Qualys and Tenable experience,Hands-on experience to Analyse logs/events from SIEM solution, other infrastructure,Expertise in interpreting and querying Wireshark captures.Experience in managing Security Incidents detect and response, Threat hunt capability with knowledge of Kill chain methodology.Experience in triaging Threat feeds and work towards mitigation exercise.Experience in reviewing the vulnerability, product bug reports and relating its impact to Clients environment.Good understanding of Digital Forensics concept and the process followed therein.Operational knowledge on Security compliance tools like AlgoSec, Firemom, Skybox or Tufin.Previous experience in working on Firewalls from Palo Alto, Checkpoint, Cisco and Web security solution, End Point Security solutions like Mcafee, Symantec, Trend Micro, FireEye.Required Experience:
Extensive experience in a Technology Information Security IndustryPrior experience working in a SOC/CSIRT for at least - yearsGood Hands-on experience on SIEM mainly Splunk solution.Good Hands-on experience on Vulnerability management tools.Tertiary qualifications or a passionate ethical hacker.Experience using End Point Protection Software.Experience with Enterprise Detection & Response software.Knowledge of malware analysis, hacking techniques, latest vulnerabilities, and security trends.Preferably an interest, or knowledge of, or experience with SIEM and IPS technologies.Knowledge of network technologies including routers, switches, firewalls.
-
Cybersecurity Incident Response Engineer
3 weeks ago
Bengaluru, India Global Pharma Tek Full timePrimary Skill Set - SOC - Splunk, Qualys, SIEM Location – Bangalore Shift – / Notice Period – Immediate to month Experience – + years Relevant Experience – + years Job Profile Summary The Cyber Security Incident Response (CSIR) team is essential in providing an orchestrated and rapid security incident response capability with an...
-
Incident Response Engineer
2 days ago
Bengaluru, India DigiCert Full timeIncident Response Engineer- Perform proactive daily monitoring of our services including reviewing system and applications logs and manage Incident life cycle (Detection, Confirmation, Notification, Repair/Isolation, Escalation, Resolution and Reporting) to ensure quick turnaround in service restoration.- Repair and recover from hardware or software...
-
Sales And Marketing Specialist
1 day ago
Bengaluru, India CliffGuard Cybersecurity Full timeAbout Us:CliffGuard Cybersecurity is a leading force in the cybersecurity landscape, specializing in cutting-edge penetration testing, vulnerability assessment, risk assessment, managed security services, and comprehensive cybersecurity training services. Committed to fortifying our clients' digital fortresses, we aim to stay ahead of evolving threats and...
-
Cybersecurity
2 days ago
Bengaluru, India NR Consulting - India Full time**Profile: Cyber security** Experience: 8+ Years Location: Bangalore **Notice period: 0-30 Days** Cyber security with 1. Crowd Strike OR Microsoft Security Stack (specifically Microsoft Sentinel) 2. SOC experience (incidents, monitoring, alert triaging) Scripting experience - Python, Power Shell, KQL etc. Engineering background preferred CompTIA...
-
Sales And Marketing Specialist
6 days ago
Bengaluru, India CliffGuard Cybersecurity Full timeAbout Us:CliffGuard Cybersecurityis a leading force in the cybersecurity landscape, specializing in cutting-edge penetration testing, vulnerability assessment, risk assessment, managed security services, and comprehensive cybersecurity training services. Committed to fortifying our clients' digital fortresses, we aim to stay ahead of evolving threats and...
-
Incident Response Engineer
4 days ago
Bengaluru, India DigiCert Full timeIncident Response Engineer Perform proactive daily monitoring of our services including reviewing system and applications logs and manage Incident life cycle (Detection, Confirmation, Notification, Repair/Isolation, Escalation, Resolution and Reporting) to ensure quick turnaround in service restoration. Repair and recover from hardware or software failures....
-
Incident Response Engineer
4 days ago
Bengaluru, India DigiCert Full timeIncident Response Engineer Perform proactive daily monitoring of our services including reviewing system and applications logs and manage Incident life cycle (Detection, Confirmation, Notification, Repair/Isolation, Escalation, Resolution and Reporting) to ensure quick turnaround in service restoration. Repair and recover from hardware or software failures....
-
Sales And Marketing Specialist
7 days ago
Bengaluru, India CliffGuard Cybersecurity Full timeAbout Us:CliffGuard Cybersecurity is a leading force in the cybersecurity landscape, specializing in cutting-edge penetration testing, vulnerability assessment, risk assessment, managed security services, and comprehensive cybersecurity training services. Committed to fortifying our clients' digital fortresses, we aim to stay ahead of evolving threats and...
-
Sales And Marketing Specialist
7 days ago
Bengaluru, India CliffGuard Cybersecurity Full timeAbout Us: CliffGuard Cybersecurity is a leading force in the cybersecurity landscape, specializing in cutting-edge penetration testing, vulnerability assessment, risk assessment, managed security services, and comprehensive cybersecurity training services. Committed to fortifying our clients' digital fortresses, we aim to stay ahead of evolving threats and...
-
Sales And Marketing Specialist
7 days ago
Bengaluru, India CliffGuard Cybersecurity Full timeAbout Us:CliffGuard Cybersecurity is a leading force in the cybersecurity landscape, specializing in cutting-edge penetration testing, vulnerability assessment, risk assessment, managed security services, and comprehensive cybersecurity training services. Committed to fortifying our clients' digital fortresses, we aim to stay ahead of evolving threats and...
-
Incident Response SRE
3 days ago
Bengaluru, India DigiCert Full timeABOUT DIGICERT We're a leading, global security authority that's disrupting our own category. Our encryption is trusted by the major ecommerce brands, the world's largest companies, the major cloud providers, entire country financial systems, entire internets of things and even down to the little things like surgically embedded pacemakers. We help...
-
Incident Response Sre
3 days ago
Bengaluru, Karnataka, India DigiCert, Inc. Full timeat DigiCert Bangalore ABOUT DIGICERT We're a leading, global security authority that's disrupting our own category. Our encryption is trusted by the major ecommerce brands, the world's largest companies, the major cloud providers, entire country financial systems, entire internets of things and even down to the little things like surgically embedded...
-
Incident Response Sre
2 days ago
Bengaluru, Karnataka, India DigiCert Full time**ABOUT DIGICERT** We're a leading, global security authority that's disrupting our own category. Our encryption is trusted by the major ecommerce brands, the world's largest companies, the major cloud providers, entire country financial systems, entire internets of things and even down to the little things like surgically embedded pacemakers. We help...
-
Project Cybersecurity Engineer
1 week ago
Bengaluru, India Alstom Full timeReq ID:446808We create smart innovations to meet the mobility challenges of today and tomorrow. We design and manufacture a complete range of transportation systems, from high-speed trains to electric buses and driverless trains, as well as infrastructure, signalling and digital mobility solutions. Joining us means joining a truly global community...
-
(Senior) Cybersecurity Engineer
16 hours ago
Bengaluru, India Advanced Sterilization Products Full timeOffice Address: #16 Salarpuria Premia (Opp. Cessna Business Park), Sarjapur Outer Ring Road (ORR), Bangalore 560103SummaryThe ASP (Senior) Cybersecurity Engineer will have a measurable impact in ensuring ASP’s success in the application and development of security measures including ensuring their efficiency in combination with security audit and...
-
Cybersecurity Architect
2 weeks ago
Bengaluru, India Alstom Full timeReq ID:446153We create smart innovations to meet the mobility challenges of today and tomorrow. We design and manufacture a complete range of transportation systems, from high-speed trains to electric buses and driverless trains, as well as infrastructure, signalling and digital mobility solutions. Joining us means joining a truly global community...
-
Project Cybersecurity Engineer
7 days ago
Bengaluru, Karnataka, India Alstom Full timeReq ID:446808 We create smart innovations to meet the mobility challenges of today and tomorrow. We design and manufacture a complete range of transportation systems, from high-speed trains to electric buses and driverless trains, as well as infrastructure, signalling and digital mobility solutions. Joining us means joining a truly global community of more...
-
Project Cybersecurity Engineer
1 week ago
Bengaluru, India Alstom Full timeReq ID:446808 We create smart innovations to meet the mobility challenges of today and tomorrow. We design and manufacture a complete range of transportation systems, from high-speed trains to electric buses and driverless trains, as well as infrastructure, signalling and digital mobility solutions. Joining us means joining a truly global community...
-
(Senior) Cybersecurity Engineer
3 weeks ago
Bengaluru, India Advanced Sterilization Products Full timeOffice Address: #16 Salarpuria Premia (Opp. Cessna Business Park), Sarjapur Outer Ring Road (ORR), Bangalore 560103SummaryThe ASP (Senior) Cybersecurity Engineer will have a measurable impact in ensuring ASP’s success in the application and development of security measures including ensuring their efficiency in combination with security audit and...
-
Cybersecurity Architect
3 weeks ago
Bengaluru, Karnataka, India Alstom Full timeReq ID:446153 We create smart innovations to meet the mobility challenges of today and tomorrow. We design and manufacture a complete range of transportation systems, from high-speed trains to electric buses and driverless trains, as well as infrastructure, signalling and digital mobility solutions. Joining us means joining a truly global community of more...
