The Job logo

What

Where

SOC-Incident response-L3

ApplyJoin for More Updates

You must Sign In before continuing to the company website to apply.

JOB DESCRIPTION

Eviden is an Atos Group business with an annual revenue of circa € 5 billion and a global leader in data-driven, trusted and sustainable digital transformation. As a next generation digital business with worldwide leading positions in digital, cloud, data, advanced computing and security, it brings deep expertise for all industries in more than 47 countries. By uniting unique high-end technologies across the full digital continuum with 55,000 world-class talents, Eviden expands the possibilities of data and technology, now and for generations to come.

 

SOC Analyst L3 (Incident Response)

Total Experience- 7-9 years

Shift - Mandatory: Should be comfortable to work in alternate shift (Morning Shift - 6-3 PM & Afternoon shift- 2-11 PM).

Job Location - Mumbai(Powai) - Hybrid(3 Days WFO & 2 Days WFH)

Note: Candidates from Pune, who are interested in the role have some flexible on relocation/travel

 

Primary Skill : Incident Response, Incident Management, Security Incidents & Events Management, EDR 2, L3 Analyst, Threat Intelligence / Threat Detection, Security Incidents/Security vulnerabilities

 

Responsibilities-

  • Any Graduate with 7-9 years’ experience of working in IT Security.
  • Good Knowledge of Incident Response & Management.
  • Experience in working High Severity Complex Cyber Security Incidents that involved multiple Business Functions and Technology Teams.
  • Good Data Analysis and Presentation skills.
  • Good Communication skills.
  • Good understanding of MITRE ATT&CK Framework

Beneficial:

  • Good Documentation skills
  • Good at Incident Management.

Personal Characteristics:

  • Strong communication skills, ability to work comfortably with different regions
  • Actively participate within internal project community
  • Good team player, ability to work on a local, regional and global basis and as part of joint cross location initiative.
  • Self-motivated, able to work independently and with a team
  • Able to perform under pressure.

 

Set alert for similar jobsSOC-Incident response-L3 role in Navi Mumbai, India
Atos Logo

Company

Atos

Job Posted

a year ago

Job Type

Full-time

WorkMode

On-site

Experience Level

8-12 years

Category

IT Services and IT Consulting

Locations

Navi Mumbai, Maharashtra, India

Qualification

Bachelor

Applicants

Be an early applicant

Related Jobs

Atos Logo

SOC -Incident response- L2

Atos

Mumbai, Maharashtra, India

Posted: a year ago

Eviden, a global leader in data-driven, trusted and sustainable digital transformation, is looking for a SOC L2-Incident Response professional in Mumbai. You will be responsible for detecting and notifying threats, reviewing incidents, providing training and feedback, and executing continuous improvements in monitoring. We require a minimum of 3 years' experience in a security operations environment, good communication skills, understanding of networking concepts and operating systems, and knowledge of customer infrastructure components. Engineering graduate and certification preferred.

Baker Hughes Logo

OT Security Engineer & Incident Response Lead

Baker Hughes

Mumbai, Maharashtra, India

Posted: a year ago

As an OT Security Engineer/Incident Response Lead at Baker Hughes, your role is central to safeguarding our operational technology (OT) environments from cyber threats. You will be responsible for implementing OT security measures, leading incident response efforts, validating security controls, and ensuring the resilience of our OT systems.   As a OT Security Engineer/Incident Response Lead you will be responsible for: Implementing and managing Security Implementation: OT security controls, measures, and technologies to protect critical assets and systems, drawing from your hands-on experience Leading incident response activities within the OT environment, including detection, investigation, and mitigation of security incidents Overseeing vulnerability assessment and management processes for OT systems, ensuring timely remediation. Monitoring continuously OT networks and systems for signs of compromise, applying practical knowledge to detect and respond to threats. Promoting a culture of security awareness among OT personnel and stakeholders, leveraging your experience to educate and train teams. Ensuring compliance with relevant industry standards and regulations specific to OT security, based on your practical understanding. Maintaining detailed documentation of security configurations, incident reports, and response plans, reflecting your real-world expertise. Working closely with cross-functional teams, including network engineers, system administrators, and external cybersecurity teams, to align security efforts with broader organizational objectives. Managing security tools and technologies used within the OT security program, applying your hands-on experience to optimize their effectiveness. Driving continuous improvement initiatives to enhance OT security and incident response capabilities based on evolving threats and industry developments. Fuel your passion   To be successful in this role you will: Have a Bachelor’s degree in a relevant field with minimum 5 years of relevant on-the-job work experience. Have Hands-on experience in OT security engineering, incident response, or a related field. Have Strong understanding of industrial control systems (ICS) and SCADA systems, gained through practical application Have Proven experience with OT and IT security technologies, including firewalls, intrusion detection systems (IDS), vulnerability detection, network discovery, log collection systems, and security information and event management (SIEM) solutions. Have Knowledge of OT security principles and best practices. Strong problem-solving abilities developed through on-the-job experience. Have Familiarity with the MITRE ATT&CK framework and adversary tactics, techniques, and processes with in the OT/ICS space. Have Effective communication skills and the ability to collaborate across teams. Have Relevant certifications (e.g., CISSP, GICSP, GCIH, GRID, Certified Incident Handler) that complement your practical expertise.

Expedia Group Logo

Senior Manager - Security Incident Response (CSIRT)

Expedia Group

Gurgaon, Haryana, India

Posted: a year ago

JOB DESCRIPTION If you need assistance during the recruiting process due to a disability, please reach out to our Recruiting Accommodations Team through the Accommodation Request form . This form is used only by individuals with disabilities who require assistance or adjustments in applying and interviewing for a job. This form is not for inquiring about a position or the status of an application.   About Team: Expedia Group’s Computer Security and Incident Response (CSIRT) Operations team inside the Cyber Defense Center. Our mission is to detect, investigate, disrupt, contain, and remediate threats in support of the company's information security strategy. The CSIRT teams in Gurgaon and Seattle work closely to support Security Operations through escalations, mentorship, project work, advanced investigations, and Cybersecurity Incident Management.   What you’ll do: Manages the activities and personnel of the support operations. Ensures the operation is in accordance with the established procedures and practices. Monitors performance of support personnel, reviewing response times, problem logs, and trends in problems reported. Leads strategies and/or hardware/software enhancements to increase employee security. Anticipates and recognizes bottlenecks in work processes between teams and makes suggestions for ongoing improvement. Leads implementation teams and ensures the successful execution of new ideas or approaches. Coordinates with team to define the measures of success for process improvements. Reviews the skill and expertise requirements to accomplish team goals and identifies staffing and talent resources to fill project roles. Develops action plans for optimal resource utilization and manages resource usage among team. Encourages others to assess the potential impact of resource decisions related to efficiency and cost reduction   Who you are: Justifies technology choices to technical and non-technical observers. Advanced knowledge of multiple domains. Makes well defined technology choices. Mentors team members. Works with multiple teams. Defines team goals and how they fit a business need across multiple teams working together. Delivers solutions to business problems spanning teams. Delivers and influences product roadmap, working in collaboration with product team. 3+ years experience in a technical security leadership role 8+ years of experience in Information Security related domains Experience working in a SOC or a CSIRT is preferred A degree in an information security related field is preferred Certifications which demonstrate baseline proficiency in the areas of IT Security, Incident Response, or cloud concepts (CISSP, CISM, GIAC) are a plus   About Expedia Group Expedia Group (NASDAQ: EXPE) powers travel for everyone, everywhere through our global platform. Driven by the core belief that travel is a force for good, we help people experience the world in new ways and build lasting connections. We provide industry-leading technology solutions to fuel partner growth and success, while facilitating memorable experiences for travelers. Expedia Group's family of brands includes: Brand Expedia®, Hotels.com®, Expedia® Partner Solutions, Vrbo®, trivago®, Orbitz®, Travelocity®, Hotwire®, Wotif®, ebookers®, CheapTickets®, Expedia Group™ Media Solutions, Expedia Local Expert®, CarRentals.com™, and Expedia Cruises™.   © 2021 Expedia, Inc. All rights reserved. Trademarks and logos are the property of their respective owners. CST: 2029030-50   Employment opportunities and job offers at Expedia Group will always come from Expedia Group’s Talent Acquisition and hiring teams. Never provide sensitive, personal information to someone unless you’re confident who the recipient is. Expedia Group does not extend job offers via email or any other messaging tools to individuals to whom we have not made prior contact. Our email domain is @expediagroup.com. The official website to find and apply for job openings at Expedia Group is careers.expediagroup.com/jobs .   Expedia iscommittedto creating an inclusive workenvironmentwith a diverse workforce. All qualified applicants will receive consideration for employment without regard to race, religion, gender, sexual orientation, national origin, disability or age.

Coforge Logo

SOC LEAD

Coforge

Ahmedabad, Gujarat, India

Posted: a year ago

Overall 9+ years of experience in the area of IT security, infrastructure security including perimeter, host security solutions. The candidate should have experience in working/setting up SOC (Security Operations Center) for large customer/organizations. Good hands on expertise in any one of the following SIEM Tools: Rapid7 RSA Envision ARCSight Splunk MS Sentinel IBM QRadar   Good hands on expertise in any of the following Vulnerability Manager: Rapid7 Nessus Qualys Guard Knowledge on SOC Process and underlying technologies including firewalls, Anti-Virus, operating systems, TCP/IP etc. Possesses strong understanding of Malware Behavior (how Trojans/ Backdoors/ Worms work - only Dynamic Analysis background expected Not Static Analysis) Good Knowledge of various type of Attack vectors. Sound Knowledge of windows and UNIX OS. Able to analyze logs from various platforms like OS, network devices, database, web servers etc. Key Responsibilities include: Security incidents and occurrences are tracked, analyzed, and reported. Manage, tune, and optimize SIEM tool. Provide security controls such as IDS/IPS, endpoint security, vulnerability management, and data loss prevention recommendations to the client’s security team. With the support of the SOC manager, create new operational rules, processes, and procedures. Managing shifts / team in the 24X7. As an initial point of contact for the SOC team, assist them. Assist with handing out work assignments to the team members. Handling escalated security incidents." Guide and mentor L1 and L2. Creating Reviewing SOPs, Run books, and Lesson Learnt documents. Find strategies to improve security procedures on a regular basis. Documentation: Prepare detailed documentation for an SOC solution to be implemented. IT Infrastructure Studies: Carry out scoped SOC infrastructure studies including Risk analysis, Gap analysis for clients to size technical solutions and document the findings and solution Over 10 years of SOC experience. Experience working with delivery teams and directly with clients Proven track record as in implementing technical projects Some IT procurement experience. Experience working with sales teams and directly with International clients Proven track record in implementing technical projects Gather intelligence by analyzing Certifications - EC Council-CEH/Comptia Security+/CISSP/CHFI, ArcSight Certified