Incident response

2 days ago


Delhi Gurugram NCR New Delhi, India Deloitte Consulting Full time ₹ 15,00,000 - ₹ 25,00,000 per year

Role & responsibilities

  • Overall experience of at least 5+ years in SIEM monitoring and Cyber security Incident response and Management.
  • Core Incident Response Knowledge: Deep understanding of the incident response lifecycle, cyber kill chain, and MITRE ATT&CK framework.
  • Operating Systems: Expertise in Windows, Active Directory, DNS, and Linux platforms.
  • SIEM Platforms: Strong experience with QRadar, Microsoft Sentinel, and other SIEM tools.
  • SOAR Tools: Proficiency in tools like Cortex XSOAR, Splunk Phantom, and Demisto for orchestrating response.
  • EDR Technologies: Hands-on experience with tools like CrowdStrike, Microsoft Defender for Endpoint, SentinelOne, etc.
  • Log Analysis: Ability to interpret raw logs and perform correlation across diverse systems (network, endpoint, applications).
  • Digital Forensics: Experience with EnCase, FTK, or other forensics toolsets; able to perform memory, disk, and network forensics.
  • Malware Analysis: Strong understanding of malware behavior, obfuscation techniques, and basic reverse engineering.
  • Communication: Strong verbal and written communication skills, capable of briefing technical and non-technical stakeholders.
  • Process Orientation: Ability to document, optimize, and maintain response processes and runbooks.
  • ITSM Tools: Familiarity with ITSM platforms (e.g., ServiceNow) for managing incidents and workflows.

Preferred candidate profile

The role requires strong skills in incident response and digital forensics to effectively minimize the impact of cyber risks. The individual will be responsible for overseeing security monitoring, managing security tools and operations, and ensuring security incidents are handled efficiently and reported to relevant stakeholders.

This role primarily involves acting as a first responder and conducting in-depth incident response activities on behalf of a diverse range of clients across various sectors. Candidates must be capable of operating in complex security environments and working collaboratively with the SOC team to design, communicate, and execute incident response, containment, and remediation plans. They will support incident response analysts and incident management teams, while also evaluating tools, processes, and procedures for handling cyber intrusionscontinuously identifying new and improved methods for detecting and responding to adversarial threats.



  • Delhi, Gurugram, NCR, New Delhi, India Unitedlex Full time ₹ 2,00,000 - ₹ 6,00,000 per year

    We are hiring for Associate in Incident Response Team with UnitedLex India Private Limited.Location: Gurgaon (Work from Office).Shift Timings: Gurgaon:Morning Shift 8:30AM - 5:30PMNight Shift 6:30 PM to 3:30 AMWorking Days: 5 Days.Cab facilities : Both side cabs, if location will be in our transport .Work Type: Fixed Time Hire.Work Duration: One Month...

  • Incident response

    2 weeks ago


    DoubleTree by Hilton Hotel Gurgaon - New Delhi NCR, India Deloitte Consulting Full time

    Role & responsibilities Overall experience of at least 5+ years in SIEM monitoring and Cyber security Incident response and Management. Core Incident Response Knowledge: Deep understanding of the incident response lifecycle, cyber kill chain, and MITRE ATT&CK framework. Operating Systems: Expertise in Windows, Active Directory, DNS, and Linux platforms. SIEM...


  • Delhi, NCR, India Clarity Consulting Full time ₹ 8,00,000 - ₹ 24,00,000 per year

    Key ResponsibilitiesAdvanced Log Monitoring and Analysis:- Conduct deeper analysis of security events and alerts generated by Splunk, ELK SIEM & EDR,correlating data across various sources to identify potential security threats.- Perform advanced triage, classification, and root cause analysis of escalated security incidents.- Utilize the Splunk, ELK SIEM &...


  • NCR, India Clarity Consulting Full time

    Key Responsibilities Advanced Log Monitoring and Analysis:- Conduct deeper analysis of security events and alerts generated by Splunk, ELK SIEM & EDR,correlating data across various sources to identify potential security threats.- Perform advanced triage, classification, and root cause analysis of escalated security incidents.- Utilize the Splunk, ELK SIEM &...


  • Gurugram, Noida, India Oculus IT Full time ₹ 9,00,000 - ₹ 12,00,000 per year

    We are looking for a dynamic and detail-oriented Command Center Incident Response Engineer to join our 24x7 Security Operations team. The ideal candidate will have hands-on experience in incident response, network security administration, and Wintel (Windows + Intel) security operations at an L2 level. This role is critical in ensuring real-time monitoring,...


  • Bengaluru, Delhi, Gurugram, NCR, India Unitedlex Full time US$ 60,000 - US$ 80,000 per year

    About UsUnitedLex India Private Limited (Erstwhile iRunway) is a data and professional services company delivering outcomes that create value for high-performing law firms and corporate legal departments in the areas of litigation and investigations, intellectual property, contracts, compliance, and legal operations.RESPONSIBILITIES:To review documents as...


  • Delhi, India UnitedLex Full time

    About UsUnitedLex India Private Limited (formerly known as iRunway India Private Limited)is a data and professional services company delivering outcomes that create value and competitive advantage for legal and the business. Our business is anchored by a passion for innovation brought to life by a global community of diverse individuals determined to deliver...


  • Delhi, India UnitedLex Full time

    About UsUnitedLex India Private Limited (formerly known as iRunway India Private Limited)is a data and professional services company delivering outcomes that create value and competitive advantage for legal and the business. Our business is anchored by a passion for innovation brought to life by a global community of diverse individuals determined to deliver...


  • Gurugram, Haryana, India Ankura Full time

    Ankura is a team of excellence founded on innovation and growth. - Practice Overview: - Our diverse team is comprised of seasoned security veterans, including professionals from the intelligence community and leading private security firms, alongside talented early-career professionals. This unique blend of experience and fresh perspectives allows us to...

  • Incident Manager

    1 week ago


    Delhi, India Insight Global Full time

    Required Skills- 5+ years of experience as an incident manager- Strong ITSM experience (incident, change, and problem management)- Proven ability to provide solutions for optimization and process improvement around ITSM and reoccurring incidents- Experience with daily operational incident tickets (not major incidents)- Service Now experience for managing...