Security Incident responder
7 days ago
About the Role
We are seeking a highly skilled Security Incident Responder with strong Purple Team capabilities, who can operate at the intersection of detection engineering, incident response, threat hunting, and adversary simulation. The ideal candidate brings deep knowledge of security operations (Blue Team), offensive tactics (Red Team), and can act as a technical bridge to strengthen cyber resilience across detection, response, and continuous improvement processes.
Experience within Fintech, regulated industries is a bonus.
What you'll do
Incident Response & Threat Handling
Lead and participate in all phases of the incident response lifecycle: preparation, detection, containment, eradication, recovery, and post-mortem.
- Investigate security alerts and validate, escalate, or dismiss based on risk impact.
- Coordinate containment and eradication efforts across endpoints, networks, cloud environments, and identity systems.
Conduct root cause analysis and develop lessons learned reports.
Threat Hunting & Detection Engineering
Proactively hunt for threats using behavioural, anomaly-based, and signature-based techniques.
- Create, tune, and validate SIEM/SOAR detection rules (e.g., MITRE ATT&CK-aligned).
- Develop adversary detection logic for endpoint (EDR), network, identity, and cloud telemetry.
Collaborate with threat intel teams to operationalize indicators of compromise (IOCs) and TTPs.
Purple Team Collaboration
- Support and lead Purple Team exercises to simulate attack scenarios and validate detection and response capabilities.
- Work with Red Team to understand attack vectors and develop appropriate countermeasures.
Provide feedback on gaps in detections and response playbooks.
Automation & Playbooks
Design and improve SOAR playbooks to accelerate triage and response processes.
Develop automated alert enrichment and incident classification pipelines.
Forensics & Malware Analysis
Perform endpoint/network forensics using tools or custom scripts.
Reverse engineer malware samples (optional but a strong plus)
Reporting & Metrics
Document incident timelines and artifacts with precision for legal, compliance, and audit use.
- Provide executive and technical reports including severity assessments and remediation guidance.
What you'll need
- 4+ years of experience in incident response, SOC Tier 3, threat hunting, or equivalent.
- Strong understanding of adversary tradecraft (MITRE ATT&CK, Cyber Kill Chain, etc.).
- Experience with EDRs, SIEMs, SOARs and log pipelines.
- Solid grasp of Windows, Linux, and cloud security.
- Familiarity with scripting for automation and analysis.
- In-depth understanding of network protocols, endpoint artifacts, memory, and log analysis.
- Comfortable with offensive tools and techniques
- Experience in vulnerability exploitation, privilege escalation, and lateral movement is a plus.
- Familiar with forensic acquisition techniques and tools
- Preferred Certifications: GIAC: GCIH, GCFA, GNFA, GCIA, GDAT or similar
- Excellent problem-solving and analytical thinking.
- Ability to work under pressure during incidents and with minimal supervision.
- Strong documentation and communication skills, especially when dealing with stakeholders.
- Collaborative, yet capable of deep focus and individual contribution.
Bonus points
- Reverse engineer malware samples (optional but a strong plus)
-
Cyber Incident Responder L3
7 days ago
Hyderabad, Telangana, India TP Full time ₹ 9,00,000 - ₹ 12,00,000 per yearPositionCyber Incident Responder L3Experience 5+ YearsLocation Hyderabad (Work from office)Notice period Immediate 30 days Candidate should be available in Hyderabad for face to face interview The cyber incident responder will use a variety of tools to triage and investigate events to identify potential security incidents. The candidate should...
-
Avp, Detection And Incident Responder
6 days ago
Hyderabad, Telangana, India Synchrony Full timeRole Title AVP Detection and Incident Responder L10 Company Overview COMPANY OVERVIEW Synchrony NYSE SYF is a premier consumer financial services company delivering one of the industrys most complete digitally enabled product suites Our experience expertise and scale encompass a broad spectrum of industries including digital health and wellness ...
-
AVP, Detection and Incident Responder(L10)
3 days ago
Hyderabad, Telangana, India Synchrony Full time ₹ 20,00,000 - ₹ 25,00,000 per yearJob ID: Job Description: Role Title: AVP, Detection and Incident Responder (L10) COMPANY OVERVIEW: Synchrony (NYSE: SYF) is a premier consumer financial services company delivering one of the industry's most complete digitally enabled product suites. Our experience, expertise and scale encompass a broad spectrum of industries including digital, health...
-
AVP, Lead Detection and Incident Responder
7 days ago
Hyderabad, Telangana, India Synchrony Full time US$ 90,000 - US$ 1,20,000 per yearJob ID: Job Description: Role Title: AVP, Lead Detection and Incident Responder (L11) Company Overview: Synchrony (NYSE: SYF) is a premier consumer financial services company delivering one of the industry's most complete digitally enabled product suites. Our experience, expertise and scale encompass a broad spectrum of industries including digital,...
-
Security Incident Response Engineer
2 weeks ago
Hyderabad, Telangana, India New Relic Full time US$ 80,000 - US$ 1,50,000 per yearYour opportunityNew Relic's Information Security Team is searching for a Security Incident Response Engineer If you enjoy a work environment where you're part of a successful distributed team that collaborates to achieve successful outcomes, we would love to talk to you In this role, you will use your background and deep understanding of how attackers gain...
-
Security Incident Response Engineer
7 days ago
Hyderabad, Telangana, India New Relic Full time US$ 90,000 - US$ 1,20,000 per yearYour opportunityNew Relic's Information Security Team is searching for a Security Incident Response Engineer If you enjoy a work environment where you're part of a successful distributed team that collaborates to achieve successful outcomes, we would love to talk to you In this role, you will use your background and deep understanding of how attackers gain...
-
Cybersecurity Incident Response Specialist
6 days ago
Hyderabad, Telangana, India beBeeIncident Full time US$ 20,00,000 - US$ 25,00,000As a critical member of our Joint Security Operations Center, the Detection and Incident Responder will lead cyber detection efforts and investigate major information security incidents.Key ResponsibilitiesRespond to security incidents across diverse technologiesMitigate and contain impactsCoordinate remediation initiativesProvide recommendations for...
-
Only 24h Left Manager, Incident Management
4 weeks ago
Hyderabad, Telangana, India salesforce. Full timeTo get the best candidate experience please consider applying for a maximum of 3 roles within 12 months to ensure you are not duplicating efforts Job Category Enterprise Technology InfrastructureJob DetailsAbout SalesforceWere Salesforce the Customer Company inspiring the future of business with AI Data CRM Leading with our core values we help...
-
Incident Specialist
7 days ago
Hyderabad, Telangana, India Trimble Full timeJob DescriptionCustomer Technology Incident SpecialistJob PurposeThe Customer Technology Incident Specialist, positioned within the Customer Technology department of Customer Experience, is responsible for managing the complete lifecycle of technical incidents. This role involves identifying, classifying, responding to, and resolving incidents related to...
-
Security Operations Center
5 days ago
Hyderabad, Telangana, India MosChip Full time ₹ 1,50,000 - ₹ 28,00,000 per yearJob Overview:A SOC Analyst is responsible for monitoring, detecting and responding to cyber threats and incidents. Play a crucial role in protecting an organization's information and data from security breaches and attacks.Key Responsibilities:Monitor and Analyze: Continuously monitor security alerts from various tools and respond to incidents...
