Incident response
2 days ago
Role & responsibilities
- Overall experience of at least 5+ years in SIEM monitoring and Cyber security Incident response and Management.
- Core Incident Response Knowledge: Deep understanding of the incident response lifecycle, cyber kill chain, and MITRE ATT&CK framework.
- Operating Systems: Expertise in Windows, Active Directory, DNS, and Linux platforms.
- SIEM Platforms: Strong experience with QRadar, Microsoft Sentinel, and other SIEM tools.
- SOAR Tools: Proficiency in tools like Cortex XSOAR, Splunk Phantom, and Demisto for orchestrating response.
- EDR Technologies: Hands-on experience with tools like CrowdStrike, Microsoft Defender for Endpoint, SentinelOne, etc.
- Log Analysis: Ability to interpret raw logs and perform correlation across diverse systems (network, endpoint, applications).
- Digital Forensics: Experience with EnCase, FTK, or other forensics toolsets; able to perform memory, disk, and network forensics.
- Malware Analysis: Strong understanding of malware behavior, obfuscation techniques, and basic reverse engineering.
- Communication: Strong verbal and written communication skills, capable of briefing technical and non-technical stakeholders.
- Process Orientation: Ability to document, optimize, and maintain response processes and runbooks.
- ITSM Tools: Familiarity with ITSM platforms (e.g., ServiceNow) for managing incidents and workflows.
Preferred candidate profile
The role requires strong skills in incident response and digital forensics to effectively minimize the impact of cyber risks. The individual will be responsible for overseeing security monitoring, managing security tools and operations, and ensuring security incidents are handled efficiently and reported to relevant stakeholders.
This role primarily involves acting as a first responder and conducting in-depth incident response activities on behalf of a diverse range of clients across various sectors. Candidates must be capable of operating in complex security environments and working collaboratively with the SOC team to design, communicate, and execute incident response, containment, and remediation plans. They will support incident response analysts and incident management teams, while also evaluating tools, processes, and procedures for handling cyber intrusionscontinuously identifying new and improved methods for detecting and responding to adversarial threats.
-
Associate - Incident Response
7 days ago
Delhi, Gurugram, NCR, New Delhi, India Unitedlex Full time ₹ 2,00,000 - ₹ 6,00,000 per yearWe are hiring for Associate in Incident Response Team with UnitedLex India Private Limited.Location: Gurgaon (Work from Office).Shift Timings: Gurgaon:Morning Shift 8:30AM - 5:30PMNight Shift 6:30 PM to 3:30 AMWorking Days: 5 Days.Cab facilities : Both side cabs, if location will be in our transport .Work Type: Fixed Time Hire.Work Duration: One Month...
-
Incident response
2 weeks ago
DoubleTree by Hilton Hotel Gurgaon - New Delhi NCR, India Deloitte Consulting Full timeRole & responsibilities Overall experience of at least 5+ years in SIEM monitoring and Cyber security Incident response and Management. Core Incident Response Knowledge: Deep understanding of the incident response lifecycle, cyber kill chain, and MITRE ATT&CK framework. Operating Systems: Expertise in Windows, Active Directory, DNS, and Linux platforms. SIEM...
-
Urgent Opening For Incident Response
3 days ago
Delhi, NCR, India Clarity Consulting Full time ₹ 8,00,000 - ₹ 24,00,000 per yearKey ResponsibilitiesAdvanced Log Monitoring and Analysis:- Conduct deeper analysis of security events and alerts generated by Splunk, ELK SIEM & EDR,correlating data across various sources to identify potential security threats.- Perform advanced triage, classification, and root cause analysis of escalated security incidents.- Utilize the Splunk, ELK SIEM &...
-
Urgent Opening For Incident Response
2 weeks ago
NCR, India Clarity Consulting Full timeKey Responsibilities Advanced Log Monitoring and Analysis:- Conduct deeper analysis of security events and alerts generated by Splunk, ELK SIEM & EDR,correlating data across various sources to identify potential security threats.- Perform advanced triage, classification, and root cause analysis of escalated security incidents.- Utilize the Splunk, ELK SIEM &...
-
Incident Response Analyst
2 days ago
Gurugram, Noida, India Oculus IT Full time ₹ 9,00,000 - ₹ 12,00,000 per yearWe are looking for a dynamic and detail-oriented Command Center Incident Response Engineer to join our 24x7 Security Operations team. The ideal candidate will have hands-on experience in incident response, network security administration, and Wintel (Windows + Intel) security operations at an L2 level. This role is critical in ensuring real-time monitoring,...
-
Associate FTH- Incident Response
2 days ago
Bengaluru, Delhi, Gurugram, NCR, India Unitedlex Full time US$ 60,000 - US$ 80,000 per yearAbout UsUnitedLex India Private Limited (Erstwhile iRunway) is a data and professional services company delivering outcomes that create value for high-performing law firms and corporate legal departments in the areas of litigation and investigations, intellectual property, contracts, compliance, and legal operations.RESPONSIBILITIES:To review documents as...
-
Associate FTH- Incident Response
6 days ago
Delhi, India UnitedLex Full timeAbout UsUnitedLex India Private Limited (formerly known as iRunway India Private Limited)is a data and professional services company delivering outcomes that create value and competitive advantage for legal and the business. Our business is anchored by a passion for innovation brought to life by a global community of diverse individuals determined to deliver...
-
Associate FTH- Incident Response
6 days ago
Delhi, India UnitedLex Full timeAbout UsUnitedLex India Private Limited (formerly known as iRunway India Private Limited)is a data and professional services company delivering outcomes that create value and competitive advantage for legal and the business. Our business is anchored by a passion for innovation brought to life by a global community of diverse individuals determined to deliver...
-
Associate, Cybersecurity Incident Response
8 hours ago
Gurugram, Haryana, India Ankura Full timeAnkura is a team of excellence founded on innovation and growth. - Practice Overview: - Our diverse team is comprised of seasoned security veterans, including professionals from the intelligence community and leading private security firms, alongside talented early-career professionals. This unique blend of experience and fresh perspectives allows us to...
-
Incident Manager
1 week ago
Delhi, India Insight Global Full timeRequired Skills- 5+ years of experience as an incident manager- Strong ITSM experience (incident, change, and problem management)- Proven ability to provide solutions for optimization and process improvement around ITSM and reoccurring incidents- Experience with daily operational incident tickets (not major incidents)- Service Now experience for managing...
