Cyber -SOC - Incident Response - Lead / Deputy Manager

1 week ago

Bengaluru Mumbai, India Deloitte Consulting Full time

Key Responsibilities:

  • Deep understanding of computer intrusion activities, incident response techniques, tools, and procedures. L2, L3 Support.
  • Good Experience in SIEM monitoring (QRadar, Sentinel, Splunk, chronicle)
  • Knowledge of SOAR technologies, working with playbooks (Cortex, chronicle, Splunk SOAR)
  • Experience handling malware incidents (Flare VM, Remnux) and detections from EDR (MS Defender, Crowdstrike, SenitnelOne etc.)
  • Reverse Engineering like- IDA Pro, GHIDRA.
  • Knowledge of Windows, Active Directory, DNS & Linux operating systems,
  • Working experience and knowledge of ITSM tools for incident management.
  • Must be action oriented and have a proactive approach to solving issues.
  • Knowledge of security logs, log quality review.
  • Knowledge on IT (Operating systems, networking, databases) and IT security knowledge (system and network security) including IT security tools.
  • Good knowledge of office collaboration tools.

Work youll do

  • Detect, Analyze, Investigate, and report qualified security incidents to the Client as per the defined SLA
  • Provide recommendations to the security incidents reported as per SLA
  • Investigates incidents using various security event sources (FW, IDS, PROXY, AD, EDR, DLP etc.).
  • Investigations into non-standard incidents and execution of standard scenarios.
  • Provide dashboard and data related to Incidents/Offenses for governance reports.
  • Escalates to L3 if investigations uncover unusual or atypical situations.
  • Monitoring unhealthy log source/data source and escalate to engineering team to fix them.
  • Participate in incident response (IR) efforts; detect, identify, respond, contain and remediate all information security incidents.
  • Rapidly and accurately determine the source of a security incident and moving quickly to identify and apply containment, mitigation, and remediation steps.
  • Contribute to the execution of Cyber Security operations, incident response, and investigations spanning across all functions of the Corporate Security organization.
  • Track, monitor incident actions while applying intelligence, situational awareness to prioritise incident actions based on risk
  • Responsible for Incident and Breach communications, assessments, and reports and customer facing, to include leadership and executive management for the purpose of enabling Senior Management to make decisions in a crisis
  • Develop and document processes to ensure consistent and scalable response operations.
  • Deliver tabletop IR assessments and real-life IR simulations at a technical and executive level.
  • Conduct in-depth root cause analysis on complex malware and user/system behaviour event
  • Gather and analyse forensic evidence for cyber security incidents and investigations.
  • Develop and document enhanced event analysis and incident response processes and procedures.

  • SOC L3-incident Response

    2 days ago

    Navi Mumbai, Maharashtra, India Atos Full time

    **Job Applicant Privacy Notice**: **SOC L3-Incident Response**: - Publication Date: Jul 2, 2025 - Ref. No: 533512 - Location: Mahape, Navi Mumbai, Maharasht, IN - TBC - Act as the final escalation point for complex security incidents and alerts. Perform deep-dive analysis of security events using SIEM, EDR, and other security tools. Lead incident response...

  • Soc manager

    4 weeks ago

    Bengaluru, India Mitigata™ - Smart Cyber Insurance Full time

    Job Title: SOC ManagerExperience Required: 10+ YearsLocation: BengaluruDepartment: Cyber Security / Security OperationsEmployment Type: Full-timeAbout the RoleWe are looking for a highly experienced SOC Manager to lead our Security Operations Center and manage day-to-day security monitoring, incident response, and threat management activities. The ideal...

  • Incident Response Lead

    1 week ago

    Mumbai, Maharashtra, India Anzen Technologies Full time

    ANZEN Technologies Pvt. Ltd. is a leading cybersecurity service provider that empowers organizations across various industries with advanced security services, innovative solutions, and unmatched expertise in cybersecurity, IT Governance, Risk Management, and Compliance.Incident Response Lead Profile:The Incident Response Lead is responsible for driving and...

  • SOC Lead

    4 weeks ago

    Mumbai, India Mintskill HR Solutions LLP Full time

    The SOC Lead will oversee the Security Operations Centre, ensuring 24x7 monitoring, detection, analysis, and Response to cybersecurity incidents Key Responsibilities: Lead the SOC team to ensure effective 24x7 monitoring and incident response. Develop, maintain, and optimize SOC processes, playbooks, and escalation procedures. Coordinate and oversee threat...

  • Incident Response Analyst

    1 week ago

    Mumbai, Mumbai Suburban, Navi Mumbai, India Godrej Infotech Full time

    JD for Junior Incident Responder / Junior SOC AnalystRole: Assists in incident response activities, analyses potential threats, and supports senior incident responders in containment and recovery efforts.About the RoleAs a Junior Incident Responder, you will play a vital role in the Cyber Security Operations Center (SOC) by assisting in the detection,...

  • Incident Response Lead Analyst

    2 weeks ago

    Bengaluru, India MUFG Full time

    About Us:MUFG Bank, Ltd. is Japan’s premier bank, with a global network spanning in more than 40 markets. Outside of Japan, the bank offers an extensive scope of commercial and investment banking products and services to businesses, governments, and individuals worldwide. MUFG Bank’s parent, Mitsubishi UFJ Financial Group, Inc. (MUFG) is one of the...

  • Cyber Security Incident Response handler

    6 days ago

    Mumbai, Maharashtra, India FlexibleIR Full time

    A very interesting and responsible role to defend India's largest Critical Infrastructure companies against major Cyber attacks and overall Crisis Management in general for the organisation Company DescriptionFlexibleIR helps organizations be prepared for cyber attacks by providing a process-centered approach to building strong cyber Incident Response...

  • SOC Lead

    3 weeks ago

    Bengaluru, India ITC Infotech Full time

    SOC Lead Location: Bangalore Mode: Hybrid Role Summary: Lead and manage day-to-day SOC operations to ensure proactive detection and response to cyber threats. Drive operational excellence, process maturity, and automation across SOC functions. Coordinate incident response, threat intelligence, and security monitoring for enterprise or customer environments....

  • Soc lead

    4 weeks ago

    Bengaluru, India ITC Infotech Full time

    SOC LeadLocation: BangaloreMode: HybridRole Summary:- Lead and manage day-to-day SOC operations to ensure proactive detection and response to cyber threats.- Drive operational excellence, process maturity, and automation across SOC functions.- Coordinate incident response, threat intelligence, and security monitoring for enterprise or customer...

  • Senior Analyst

    2 weeks ago

    Bengaluru, India MUFG Global Service (MGS) Full time

    About the Role Position Title: Incident Response Engineer Corporate Title : Analyst Reporting to : Director Location: Bengaluru Shift Timing : 1:00PM - 10:00 PM IST (Need to be flexible) Job Profile: Roles and Responsibilities: Operate under the Incident Response (IR) function, reporting to the IR Lead, with responsibility for leading investigations into...