SOC & Threat Hunter
4 days ago
**We are looking for SOC Lead & Threat Hunter with a good knowledge in splunk and threat hunting technologies.**
**Roles & Responsibilities**:
- Must have experience in any SIEM Management tool **Splunk**, QRADAR, HP Arc sight, Triage Specialist - Separating the wheat from the chaff.-
**Vulnerability Management tools like Tenable, Rapid 7, Qualys, Nmap, Brupsuite etc.**Experience in conductinig VA/PT of Infrastructure and Web Application assessments**Behavioral anomaly detection to identify emerging threats**Investigations & Forensics - Investigate suspicious activity, contain and mitigate them** Cyber Kill Chain & MITRE ATTACK Matrix mapping & proactive hunting.**Threat Hunting, attack identification, investigation, correlation and suggesting mitigation measures**- Deep investigations/CSIRT, Mitigation/recommends changes, More advanced SME in cybersecurity,-
- Experienced security analyst, understands more advanced features of security tools, thorough understanding of networking and platform architecture (routers, switches, firewalls, security), Ability to dig through and understand various logs (Network, firewall, proxy, app, etc..)-
- Good to have either of certifications like, ITIL, CCNA, CEH, etc.-
- Process and Procedure adherence.-
- Tier 2 Security Analystaddresses real security incidents.-
- Evaluates incidents identified by tier 1 analysts.Uses threat intelligence such as updated rules and Indicators of Compromise (IOCs) to pinpoint affected systems and the extent of the attack.-
- Analyzes running processes and configs on affected systems.-
- Carries out in-depth threat intelligence analysis to find the perpetrator, the type of attack, and the data or systems impacted. Creates and implements a strategy for containment and recovery.-
- Act as a point of escalation for Level-1 SOC security analysts in support of information security investigations to provide guidance and oversight on incident resolution and containment techniques.-
- Should have experience in Developing new correlation rules & Parser writing experience in Log source integration.-
- Act as the lead coordinator to individual information security incidents.-
- Document incidents from initial detection through final resolution.-
- Participate in security incident management and vulnerability management processes.-
- Coordinate with IT teams on escalations, tracking, performance issues, and outages.-
- Communicate effectively with customers, teammates, and management.-
- Prepare Monthly Executive Summary Reports for managed clients and continuously improve their content and presentation.-
- Provide recommendations in tuning and optimization of security systems, SOC security process, procedures and policies.-
- Define, create and maintain SIEM correlation rules, customer build documents, security process and procedures.-
- Follow ITIL practices regarding incident, problem and change management.-
- Staying up to date with emerging security threats including applicable regulatory security requirements.-
- Maintain an inventory of the procedures used by the SOC and regularly evaluate the SOC procedures and add, remove, and update the procedures as appropriate-
- Publish weekly reports to applicable teams-
- .Generate monthly reports on SOC activity.-
- Should be skilled on Deception Technology, EPP, EDR, IPS/IDS desirable.
-
Threat Hunter
2 weeks ago
Pune, Maharashtra, India, Maharashtra Persistent Systems Full timeAbout Position: Threat Hunter to proactively seek out and identify advanced threats that evade traditional security measures.Role: Threat HunterLocation: Pune and HyderabadExperience: 4+ Years Job Type: Full Time EmploymentWhat You'll Do: Analyze security events and incidents to determine the tactics, techniques, and procedures (TTPs) used by threat actors....
-
Threat Hunter
2 days ago
Mumbai, Maharashtra, India Terralogic Vietnam Full time**Threat Hunter**: Location :Mumbai (5 days WFO) **Overview**: **Notice Period**: Immediate to 30 days. **Total Experience**: 5 - 8 years **Job Skills**: - Search for Cyber threats and risks hiding inside the data before attacks occur. - Gather as much information on threat behaviour, goals, and methods as possible. - Organize and analyse the collected...
-
Senior Threat Hunter
2 weeks ago
Mumbai, India Black Box Full timeThe Threat Hunter is responsible for monitoring, detecting, and analysing network, server, and endpoint threats, working closely with senior leadership and engineering teams to deliver detection strategies and solutions. They coordinate with threat intelligence teams to obtain real-time IOCs and perform intelligence-based threat hunting, proactively hunting...
-
Senior Threat Hunter
2 weeks ago
Mumbai, India Black Box Full timeThe Threat Hunter is responsible for monitoring, detecting, and analysing network, server, and endpoint threats, working closely with senior leadership and engineering teams to deliver detection strategies and solutions. They coordinate with threat intelligence teams to obtain real-time IOCs and perform intelligence-based threat hunting, proactively hunting...
-
Senior Threat Hunter
2 weeks ago
Mumbai, India Black Box Full timeJob Description Job Description The Threat Hunter is responsible for monitoring, detecting, and analysing network, server, and endpoint threats, working closely with senior leadership and engineering teams to deliver detection strategies and solutions. They coordinate with threat intelligence teams to obtain real-time IOCs and perform intelligence-based...
-
Threat Hunter I
2 weeks ago
Mumbai, India Inspira Enterprise Full time**Job Name: Threat Hunter I **(Individual Contributor ) - **Location**: Mumbai or Remote Available ( India) & Experience Required: 5+ Years - This role offers you a unique opportunity to continuously stretch your technical skills by hands-on hunting for the latest threat actor techniques, whilst also owning strategic projects that see you working closely...
-
Threat Hunter L2
1 day ago
Mumbai, Maharashtra, India NMS Consultant Full time ₹ 5,00,000 - ₹ 15,00,000 per yearL2 Threat Hunter:Experience: 3 Years in information security domainSIEM Tools: Splunk, Qradar, ArcSight, etc.Skill Set:Should have Good knowledge onNetwork SecurityEnd point securityThreat intelligenceVulnerability assessmentCommon cyber attacksResponsibilities:Hunt for security threats, identify threat actor groups and their techniques, tools and...
-
Threat Hunter
2 days ago
Mumbai, Maharashtra, India CoreIT Services Pvt. Ltd. Full time**1. Position Summary** 2. Core responsibilities a. Detect, investigate, and respond to security incidents in a timely and effective manner. b. Stay up-to-date with the latest threat intelligence feeds, trends, and emerging threats. Incorporate threat intelligence into the threat hunting process to enhance detection capabilities. c. Conduct “Hunt...
-
SOC Manager/Head
4 weeks ago
Mumbai, India Techsec Digital Global Private Limited Full timeDepartment:Security Command Centre Reports To:Director Location:Goregaon West, Mumbai Job Type:Full-Time, 24x7 Job Summary: We are seeking an experienced and strategic SOC Managerto lead our Security Operations Center. The ideal candidate will oversee daily operations of the SOC, manage a team of analysts and engineers, develop threat detection and incident...
-
SOC Manager/Head
2 weeks ago
Mumbai, Maharashtra, India Techsec Digital Global Private Limited Full time ₹ 1,04,000 - ₹ 1,30,878 per yearDepartment:Security Command CentreReports To:DirectorLocation:Goregaon West, MumbaiJob Type:Full-Time, 24x7Job Summary:We are seeking an experienced and strategic SOC Managerto lead our Security Operations Center. The ideal candidate will oversee daily operations of the SOC, manage a team of analysts and engineers, develop threat detection and incident...
