The Job logo

What

Where

Senior Manager - Security Incident Response (CSIRT)

ApplyJoin for More Updates

You must Sign In before continuing to the company website to apply.

JOB DESCRIPTION

If you need assistance during the recruiting process due to a disability, please reach out to our Recruiting Accommodations Team through the Accommodation Request form. This form is used only by individuals with disabilities who require assistance or adjustments in applying and interviewing for a job. This form is not for inquiring about a position or the status of an application.

 

About Team:

Expedia Group’s Computer Security and Incident Response (CSIRT) Operations team inside the Cyber Defense Center.

Our mission is to detect, investigate, disrupt, contain, and remediate threats in support of the company's information security strategy.

The CSIRT teams in Gurgaon and Seattle work closely to support Security Operations through escalations, mentorship, project work, advanced investigations, and Cybersecurity Incident Management.

 

What you’ll do:

Manages the activities and personnel of the support operations.

Ensures the operation is in accordance with the established procedures and practices.

Monitors performance of support personnel, reviewing response times, problem logs, and trends in problems reported.

Leads strategies and/or hardware/software enhancements to increase employee security.

Anticipates and recognizes bottlenecks in work processes between teams and makes suggestions for ongoing improvement.

Leads implementation teams and ensures the successful execution of new ideas or approaches.

Coordinates with team to define the measures of success for process improvements.

Reviews the skill and expertise requirements to accomplish team goals and identifies staffing and talent resources to fill project roles.

Develops action plans for optimal resource utilization and manages resource usage among team.

Encourages others to assess the potential impact of resource decisions related to efficiency and cost reduction

 

Who you are:

Justifies technology choices to technical and non-technical observers.

Advanced knowledge of multiple domains.

Makes well defined technology choices.

Mentors team members.

Works with multiple teams.

Defines team goals and how they fit a business need across multiple teams working together.

Delivers solutions to business problems spanning teams.

Delivers and influences product roadmap, working in collaboration with product team.

3+ years experience in a technical security leadership role

8+ years of experience in Information Security related domains

Experience working in a SOC or a CSIRT is preferred

A degree in an information security related field is preferred

Certifications which demonstrate baseline proficiency in the areas of IT Security, Incident Response, or cloud concepts (CISSP, CISM, GIAC) are a plus

 

About Expedia Group

Expedia Group (NASDAQ: EXPE) powers travel for everyone, everywhere through our global platform. Driven by the core belief that travel is a force for good, we help people experience the world in new ways and build lasting connections. We provide industry-leading technology solutions to fuel partner growth and success, while facilitating memorable experiences for travelers. Expedia Group's family of brands includes: Brand Expedia®, Hotels.com®, Expedia® Partner Solutions, Vrbo®, trivago®, Orbitz®, Travelocity®, Hotwire®, Wotif®, ebookers®, CheapTickets®, Expedia Group™ Media Solutions, Expedia Local Expert®, CarRentals.com™, and Expedia Cruises™.

 

© 2021 Expedia, Inc. All rights reserved. Trademarks and logos are the property of their respective owners. CST: 2029030-50

 

Employment opportunities and job offers at Expedia Group will always come from Expedia Group’s Talent Acquisition and hiring teams. Never provide sensitive, personal information to someone unless you’re confident who the recipient is. Expedia Group does not extend job offers via email or any other messaging tools to individuals to whom we have not made prior contact. Our email domain is @expediagroup.com. The official website to find and apply for job openings at Expedia Group is careers.expediagroup.com/jobs.

 

Expedia iscommittedto creating an inclusive workenvironmentwith a diverse workforce. All qualified applicants will receive consideration for employment without regard to race, religion, gender, sexual orientation, national origin, disability or age.

Set alert for similar jobsSenior Manager - Security Incident Response (CSIRT) role in Gurgaon, India
Expedia Group Logo

Company

Expedia Group

Job Posted

a year ago

Job Type

Full-time

WorkMode

On-site

Experience Level

8-12 years

Category

Technology

Locations

Gurgaon, Haryana, India

Qualification

Bachelor or Master

Applicants

Be an early applicant

Related Jobs

Walmart Logo

Senior Incident Response Engineer

Walmart

Bengaluru, Karnataka, India

Posted: 6 months ago

As a Senior Incident Response Engineer at Walmart in Bengaluru, Karnataka, India, you will support incident response solutions, analyze incident issues, and build understanding of threats while ensuring compliance with company policies. This full-time on-site role requires a Bachelor's degree and 10 years of relevant experience.

Baker Hughes Logo

OT Security Engineer & Incident Response Lead

Baker Hughes

Mumbai, Maharashtra, India

Posted: a year ago

As an OT Security Engineer/Incident Response Lead at Baker Hughes, your role is central to safeguarding our operational technology (OT) environments from cyber threats. You will be responsible for implementing OT security measures, leading incident response efforts, validating security controls, and ensuring the resilience of our OT systems.   As a OT Security Engineer/Incident Response Lead you will be responsible for: Implementing and managing Security Implementation: OT security controls, measures, and technologies to protect critical assets and systems, drawing from your hands-on experience Leading incident response activities within the OT environment, including detection, investigation, and mitigation of security incidents Overseeing vulnerability assessment and management processes for OT systems, ensuring timely remediation. Monitoring continuously OT networks and systems for signs of compromise, applying practical knowledge to detect and respond to threats. Promoting a culture of security awareness among OT personnel and stakeholders, leveraging your experience to educate and train teams. Ensuring compliance with relevant industry standards and regulations specific to OT security, based on your practical understanding. Maintaining detailed documentation of security configurations, incident reports, and response plans, reflecting your real-world expertise. Working closely with cross-functional teams, including network engineers, system administrators, and external cybersecurity teams, to align security efforts with broader organizational objectives. Managing security tools and technologies used within the OT security program, applying your hands-on experience to optimize their effectiveness. Driving continuous improvement initiatives to enhance OT security and incident response capabilities based on evolving threats and industry developments. Fuel your passion   To be successful in this role you will: Have a Bachelor’s degree in a relevant field with minimum 5 years of relevant on-the-job work experience. Have Hands-on experience in OT security engineering, incident response, or a related field. Have Strong understanding of industrial control systems (ICS) and SCADA systems, gained through practical application Have Proven experience with OT and IT security technologies, including firewalls, intrusion detection systems (IDS), vulnerability detection, network discovery, log collection systems, and security information and event management (SIEM) solutions. Have Knowledge of OT security principles and best practices. Strong problem-solving abilities developed through on-the-job experience. Have Familiarity with the MITRE ATT&CK framework and adversary tactics, techniques, and processes with in the OT/ICS space. Have Effective communication skills and the ability to collaborate across teams. Have Relevant certifications (e.g., CISSP, GICSP, GCIH, GRID, Certified Incident Handler) that complement your practical expertise.

Atos Logo

SOC-Incident response-L3

Atos

Navi Mumbai, Maharashtra, India

Posted: a year ago

JOB DESCRIPTION Eviden is an Atos Group business with an annual revenue of circa € 5 billion and a global leader in data-driven, trusted and sustainable digital transformation. As a next generation digital business with worldwide leading positions in digital, cloud, data, advanced computing and security, it brings deep expertise for all industries in more than 47 countries. By uniting unique high-end technologies across the full digital continuum with 55,000 world-class talents, Eviden expands the possibilities of data and technology, now and for generations to come.   SOC Analyst L3 (Incident Response) Total Experience- 7-9 years Shift - Mandatory: Should be comfortable to work in alternate shift (Morning Shift - 6-3 PM & Afternoon shift- 2-11 PM). Job Location - Mumbai(Powai) - Hybrid(3 Days WFO & 2 Days WFH) Note: Candidates from Pune, who are interested in the role have some flexible on relocation/travel   Primary Skill : Incident Response, Incident Management, Security Incidents & Events Management, EDR 2, L3 Analyst, Threat Intelligence / Threat Detection, Security Incidents/Security vulnerabilities   Responsibilities- Any Graduate with 7-9 years’ experience of working in IT Security. Good Knowledge of Incident Response & Management. Experience in working High Severity Complex Cyber Security Incidents that involved multiple Business Functions and Technology Teams. Good Data Analysis and Presentation skills. Good Communication skills. Good understanding of MITRE ATT&CK Framework Beneficial: Good Documentation skills Good at Incident Management. Personal Characteristics: Strong communication skills, ability to work comfortably with different regions Actively participate within internal project community Good team player, ability to work on a local, regional and global basis and as part of joint cross location initiative. Self-motivated, able to work independently and with a team Able to perform under pressure.