
Incident Response
23 hours ago
Role & responsibilities
- Detect, Analyze, Investigate, and report qualified security incidents to the Client as per the defined SLA
- Provide recommendations to the security incidents reported as per SLA
- Investigates incidents using various security event sources (FW, IDS, PROXY, AD, EDR, DLP etc.).
- Investigations into non-standard incidents and execution of standard scenarios.
- Provide dashboard and data related to Incidents/Offenses for governance reports.
- Escalates to L3 if investigations uncover unusual or atypical situations.
- Monitoring unhealthy log source/data source and escalate to engineering team to fix them.
- Participate in incident response (IR) efforts; detect, identify, respond, contain and remediate all information security incidents.
- Rapidly and accurately determine the source of a security incident and moving quickly to identify and apply containment, mitigation, and remediation steps.
- Contribute to the execution of Cyber Security operations, incident response, and investigations spanning across all functions of the Corporate Security organization.
- Track, monitor incident actions while applying intelligence, situational awareness to prioritise incident actions based on risk
- Responsible for Incident and Breach communications, assessments, and reports and customer facing, to include leadership and executive management for the purpose of enabling Senior Management to make decisions in a crisis.
- Develop and document processes to ensure consistent and scalable response operations.
- Deliver tabletop IR assessments and real-life IR simulations at a technical and executive level.
- Conduct in-depth root cause analysis on complex malware and user/system behaviour event
- Gather and analyse forensic evidence for cyber security incidents and investigations.
- Develop and document enhanced event analysis and incident response processes and procedures.
Preferred candidate profile
- Deep understanding of computer intrusion activities, incident response techniques, tools, and procedures
- Knowledge of Windows, Active Directory, DNS & Linux operating systems,
- Overall experience of at least 3+ years in SIEM monitoring and Cyber security Incident response and Management
- Good Experience in SIEM monitoring (QRadar, Sentinel, Splunk, Chronicle)
- Knowledge of SOAR technologies, working with playbooks (Cortex, chronicle, Splunk SOAR)
- Experience handling malware incidents and detections from EDR (MS Defender, Crowdstrike, SenitnelOne etc..)
- Working experience and knowledge of ITSM tools for incident management.
- Must be action oriented and have a proactive approach to solving issues.
- Knowledge of security logs, log quality review.
- Knowledge on IT (Operating systems, networking, databases) and IT security knowledge (system and network security) including IT security tools.
Good knowledge of office collaboration tools
-
Incident response
23 hours ago
Delhi, Gurugram, NCR, New Delhi, India Deloitte Consulting Full time ₹ 15,00,000 - ₹ 25,00,000 per yearRole & responsibilitiesOverall experience of at least 5+ years in SIEM monitoring and Cyber security Incident response and Management.Core Incident Response Knowledge: Deep understanding of the incident response lifecycle, cyber kill chain, and MITRE ATT&CK framework.Operating Systems: Expertise in Windows, Active Directory, DNS, and Linux platforms.SIEM...
-
Associate - Incident Response
6 days ago
Delhi, Gurugram, NCR, New Delhi, India Unitedlex Full time ₹ 2,00,000 - ₹ 6,00,000 per yearWe are hiring for Associate in Incident Response Team with UnitedLex India Private Limited.Location: Gurgaon (Work from Office).Shift Timings: Gurgaon:Morning Shift 8:30AM - 5:30PMNight Shift 6:30 PM to 3:30 AMWorking Days: 5 Days.Cab facilities : Both side cabs, if location will be in our transport .Work Type: Fixed Time Hire.Work Duration: One Month...
-
Incident Response Analyst
14 hours ago
Gurugram, Noida, India Oculus IT Full time ₹ 9,00,000 - ₹ 12,00,000 per yearWe are looking for a dynamic and detail-oriented Command Center Incident Response Engineer to join our 24x7 Security Operations team. The ideal candidate will have hands-on experience in incident response, network security administration, and Wintel (Windows + Intel) security operations at an L2 level. This role is critical in ensuring real-time monitoring,...
-
Incident Response
2 weeks ago
Bengaluru, Karnataka, India Black & White Business Solutions Full time**Job Information**: Industry **IT Services*** Province **Karnataka*** City **Bangalore North*** Postal Code **560001*** Country **India*** **Incident Response - (Senior) Security Analyst (E2)** Security Analyst is the second line for Customer security. Security Analyst shall escalate unresolved and/or complex issues to Global Security Operations...
-
Incident Response Manager
18 hours ago
Bengaluru, Karnataka, India Shashwath Solution Full time ₹ 15,00,000 - ₹ 25,00,000 per yearKey Responsibilities:Incident Management:Lead and manage the end-to-end response to critical incidents and major incidents.Coordinate between teams to assess the incidents impact, scope, and urgency.Oversee and guide root cause analysis and the development of incident recovery and prevention measures.Ensure timely and accurate escalation of incidents to key...
-
Incident Response Analyst
7 days ago
New Delhi, India Vontier Full timeHi,As the Information Security Senior Global Incident Response Analyst, you will play a critical role in the organization's cybersecurity efforts. The position is responsible for acting as a senior analyst during security incidents, coordinating efforts with various members of the Incident Response Team, ensuring Preparation, Identification, Containment,...
-
Associate FTH- Incident Response
22 hours ago
Bengaluru, Delhi, Gurugram, NCR, India Unitedlex Full time US$ 60,000 - US$ 80,000 per yearAbout UsUnitedLex India Private Limited (Erstwhile iRunway) is a data and professional services company delivering outcomes that create value for high-performing law firms and corporate legal departments in the areas of litigation and investigations, intellectual property, contracts, compliance, and legal operations.RESPONSIBILITIES:To review documents as...
-
Incident Response Analyst
2 weeks ago
New Delhi, India Vontier Full timeHi,As theInformation Security Senior Global Incident Response Analyst , you will play a critical role in the organization's cybersecurity efforts. The position is responsible for acting as a senior analyst during security incidents, coordinating efforts with various members of the Incident Response Team, ensuring Preparation, Identification, Containment,...
-
Incident Response Analyst
3 weeks ago
Bengaluru, India Vontier Full timeHi,As the Information Security Senior Global Incident Response Analyst, you will play a critical role in the organization's cybersecurity efforts. The position is responsible for acting as a senior analyst during security incidents, coordinating efforts with various members of the Incident Response Team, ensuring Preparation, Identification, Containment,...
-
Incident Response Analyst
3 weeks ago
Bengaluru, India Vontier Full timeHi,As the Information Security Senior Global Incident Response Analyst , you will play a critical role in the organization's cybersecurity efforts. The position is responsible for acting as a senior analyst during security incidents, coordinating efforts with various members of the Incident Response Team, ensuring Preparation, Identification, Containment,...