Senior Incident Response Engineer

You must Sign In before continuing to the company website to apply.

Smart SummaryPowered by Roshi

As a Senior Incident Response Engineer at Walmart in Bengaluru, Karnataka, India, you will support incident response solutions, analyze incident issues, and build understanding of threats while ensuring compliance with company policies. This full-time on-site role requires a Bachelor's degree and 10 years of relevant experience.

Job description

What you'll do...

What you'll do:

Supports incident response solutions by assisting team members in gathering requirements to support implementations; evaluating supplier products and services; researching information about new technologies; reviewing and compiling system documentation; participating in solution reviews; and implementing improvements to products, alerts, and monitors.

Supports incident response efforts by adhering, improving and developing newly defined operating procedures associated with the identification, containment, eradication, and recovery of impacted resources, as well as the procedures outlining digital and physical data handling; collaborating with interorganizational and intraorganizational cybersecurity personnel; reporting on incident response actions, including written and oral presentations; participating in, acting as point of contact for, and collecting and providing feedback on, proofs of concept during product and service evaluations; participating in team on-call pager rotation; and serving as escalation point for cybersecurity incidents.

Analyzes and records incident issues by documenting all actions taken during the incident response life cycle; reviewing, preparing for distribution, and submitting findings and collected data to Incident Response team members and leadership, as well as internal Legal, Human Resources and/or Global Investigations teams; and refraining from disclosing sensitive data or incident details with individuals outside of the appropriate teams and communications plan.

Builds understanding of threats by performing analysis on malicious software and providing samples to security product vendors to ensure coverage/detection exists across multiple layers of technology.

Demonstrates up-to-date expertise and applies this to the development, execution, and improvement of action plans by providing expert advice and guidance to others in the application of information and best practices; supporting and aligning efforts to meet customer and business needs; and building commitment for perspectives and rationales.

Provides and supports the implementation of business solutions by building relationships and partnerships with key stakeholders; identifying business needs; determining and carrying out necessary processes and practices; monitoring progress and results; recognizing and capitalizing on improvement opportunities; and adapting to competing demands, organizational changes, and new responsibilities.

Models compliance with company policies and procedures and supports company mission, values, and standards of ethics and integrity by incorporating these into the development and implementation of business plans; using the Open Door Policy; and demonstrating and assisting others with how to apply these in executing business processes and practices.

What you'll bring:

Proven Incident Handlings experience working with datasets, finding insights, and telling stories using data.

Experience reviewing and building standard operating procedures and processes.

Able to communicate clearly across all mediums.

Experience with information technology and/or cybersecurity along with a security mindset.

Have experience working cross-functionally across teams.

Self-motivated, able to raise innovative ideas, and possess a heightened sense of urgency.

Critical thinking skills and ability to troubleshoot problems or issues to understand root causes.

Expertise in carrying out investigations on Unix/Linux OS flavors.

Hands on experienced required on tools like EDR, SIEM, ( On Prem and Cloud) - preferably good to have Azure Sentinel and Google Chronicle, SOAR, Email Security, Incident Management, Firewall, IPS, Correlation skills, Use cases development and deployment. Well versed with People Process and Technologies in area of Cybersecurity.

Analysis and investigations skills like Malware analysis, Phishing Email Analysis, Network, Endpoint, Windows and Linux Operating Systems knowledge and hands on experience on investigations.

Good to have industry level certification like CIH, CompTIA Certifications, CEH and others as appropriate· Experience working with global teams.

Bachelor’s degree in computer science, Information Technology, Engineering, Computer Information Systems, or related field and 10 years' experience in information technology or related field within the last 10 years' experience in information technology.

Set alert for similar jobsSenior Incident Response Engineer role in Bengaluru, India

Company

Walmart

Job Posted

4 months ago

Job Type

Full-time

WorkMode

On-site

Experience Level

8-12 Years

Related Jobs

SOC-Incident response-L3

Atos

Navi Mumbai, Maharashtra, India

Posted: a year ago

JOB DESCRIPTION Eviden is an Atos Group business with an annual revenue of circa € 5 billion and a global leader in data-driven, trusted and sustainable digital transformation. As a next generation digital business with worldwide leading positions in digital, cloud, data, advanced computing and security, it brings deep expertise for all industries in more than 47 countries. By uniting unique high-end technologies across the full digital continuum with 55,000 world-class talents, Eviden expands the possibilities of data and technology, now and for generations to come.   SOC Analyst L3 (Incident Response) Total Experience- 7-9 years Shift - Mandatory: Should be comfortable to work in alternate shift (Morning Shift - 6-3 PM & Afternoon shift- 2-11 PM). Job Location - Mumbai(Powai) - Hybrid(3 Days WFO & 2 Days WFH) Note: Candidates from Pune, who are interested in the role have some flexible on relocation/travel   Primary Skill : Incident Response, Incident Management, Security Incidents & Events Management, EDR 2, L3 Analyst, Threat Intelligence / Threat Detection, Security Incidents/Security vulnerabilities   Responsibilities- Any Graduate with 7-9 years’ experience of working in IT Security. Good Knowledge of Incident Response & Management. Experience in working High Severity Complex Cyber Security Incidents that involved multiple Business Functions and Technology Teams. Good Data Analysis and Presentation skills. Good Communication skills. Good understanding of MITRE ATT&CK Framework Beneficial: Good Documentation skills Good at Incident Management. Personal Characteristics: Strong communication skills, ability to work comfortably with different regions Actively participate within internal project community Good team player, ability to work on a local, regional and global basis and as part of joint cross location initiative. Self-motivated, able to work independently and with a team Able to perform under pressure.  

SOC -Incident response- L2

Atos

Mumbai, Maharashtra, India

Posted: a year ago

Eviden, a global leader in data-driven, trusted and sustainable digital transformation, is looking for a SOC L2-Incident Response professional in Mumbai. You will be responsible for detecting and notifying threats, reviewing incidents, providing training and feedback, and executing continuous improvements in monitoring. We require a minimum of 3 years' experience in a security operations environment, good communication skills, understanding of networking concepts and operating systems, and knowledge of customer infrastructure components. Engineering graduate and certification preferred.

Senior Manager - Security Incident Response (CSIRT)

Expedia Group

Gurgaon, Haryana, India

Posted: a year ago

JOB DESCRIPTION If you need assistance during the recruiting process due to a disability, please reach out to our Recruiting Accommodations Team through the Accommodation Request form . This form is used only by individuals with disabilities who require assistance or adjustments in applying and interviewing for a job. This form is not for inquiring about a position or the status of an application.   About Team: Expedia Group’s Computer Security and Incident Response (CSIRT) Operations team inside the Cyber Defense Center. Our mission is to detect, investigate, disrupt, contain, and remediate threats in support of the company's information security strategy. The CSIRT teams in Gurgaon and Seattle work closely to support Security Operations through escalations, mentorship, project work, advanced investigations, and Cybersecurity Incident Management.   What you’ll do: Manages the activities and personnel of the support operations. Ensures the operation is in accordance with the established procedures and practices. Monitors performance of support personnel, reviewing response times, problem logs, and trends in problems reported. Leads strategies and/or hardware/software enhancements to increase employee security. Anticipates and recognizes bottlenecks in work processes between teams and makes suggestions for ongoing improvement. Leads implementation teams and ensures the successful execution of new ideas or approaches. Coordinates with team to define the measures of success for process improvements. Reviews the skill and expertise requirements to accomplish team goals and identifies staffing and talent resources to fill project roles. Develops action plans for optimal resource utilization and manages resource usage among team. Encourages others to assess the potential impact of resource decisions related to efficiency and cost reduction   Who you are: Justifies technology choices to technical and non-technical observers. Advanced knowledge of multiple domains. Makes well defined technology choices. Mentors team members. Works with multiple teams. Defines team goals and how they fit a business need across multiple teams working together. Delivers solutions to business problems spanning teams. Delivers and influences product roadmap, working in collaboration with product team. 3+ years experience in a technical security leadership role 8+ years of experience in Information Security related domains Experience working in a SOC or a CSIRT is preferred A degree in an information security related field is preferred Certifications which demonstrate baseline proficiency in the areas of IT Security, Incident Response, or cloud concepts (CISSP, CISM, GIAC) are a plus   About Expedia Group Expedia Group (NASDAQ: EXPE) powers travel for everyone, everywhere through our global platform. Driven by the core belief that travel is a force for good, we help people experience the world in new ways and build lasting connections. We provide industry-leading technology solutions to fuel partner growth and success, while facilitating memorable experiences for travelers. Expedia Group's family of brands includes: Brand Expedia®, Hotels.com®, Expedia® Partner Solutions, Vrbo®, trivago®, Orbitz®, Travelocity®, Hotwire®, Wotif®, ebookers®, CheapTickets®, Expedia Group™ Media Solutions, Expedia Local Expert®, CarRentals.com™, and Expedia Cruises™.   © 2021 Expedia, Inc. All rights reserved. Trademarks and logos are the property of their respective owners. CST: 2029030-50   Employment opportunities and job offers at Expedia Group will always come from Expedia Group’s Talent Acquisition and hiring teams. Never provide sensitive, personal information to someone unless you’re confident who the recipient is. Expedia Group does not extend job offers via email or any other messaging tools to individuals to whom we have not made prior contact. Our email domain is @expediagroup.com. The official website to find and apply for job openings at Expedia Group is careers.expediagroup.com/jobs .   Expedia iscommittedto creating an inclusive workenvironmentwith a diverse workforce. All qualified applicants will receive consideration for employment without regard to race, religion, gender, sexual orientation, national origin, disability or age.

OT Security Engineer & Incident Response Lead

Baker Hughes

Mumbai, Maharashtra, India

Posted: 10 months ago

As an OT Security Engineer/Incident Response Lead at Baker Hughes, your role is central to safeguarding our operational technology (OT) environments from cyber threats. You will be responsible for implementing OT security measures, leading incident response efforts, validating security controls, and ensuring the resilience of our OT systems.   As a OT Security Engineer/Incident Response Lead you will be responsible for: Implementing and managing Security Implementation: OT security controls, measures, and technologies to protect critical assets and systems, drawing from your hands-on experience Leading incident response activities within the OT environment, including detection, investigation, and mitigation of security incidents Overseeing vulnerability assessment and management processes for OT systems, ensuring timely remediation. Monitoring continuously OT networks and systems for signs of compromise, applying practical knowledge to detect and respond to threats. Promoting a culture of security awareness among OT personnel and stakeholders, leveraging your experience to educate and train teams. Ensuring compliance with relevant industry standards and regulations specific to OT security, based on your practical understanding. Maintaining detailed documentation of security configurations, incident reports, and response plans, reflecting your real-world expertise. Working closely with cross-functional teams, including network engineers, system administrators, and external cybersecurity teams, to align security efforts with broader organizational objectives. Managing security tools and technologies used within the OT security program, applying your hands-on experience to optimize their effectiveness. Driving continuous improvement initiatives to enhance OT security and incident response capabilities based on evolving threats and industry developments. Fuel your passion   To be successful in this role you will: Have a Bachelor’s degree in a relevant field with minimum 5 years of relevant on-the-job work experience. Have Hands-on experience in OT security engineering, incident response, or a related field. Have Strong understanding of industrial control systems (ICS) and SCADA systems, gained through practical application Have Proven experience with OT and IT security technologies, including firewalls, intrusion detection systems (IDS), vulnerability detection, network discovery, log collection systems, and security information and event management (SIEM) solutions. Have Knowledge of OT security principles and best practices. Strong problem-solving abilities developed through on-the-job experience. Have Familiarity with the MITRE ATT&CK framework and adversary tactics, techniques, and processes with in the OT/ICS space. Have Effective communication skills and the ability to collaborate across teams. Have Relevant certifications (e.g., CISSP, GICSP, GCIH, GRID, Certified Incident Handler) that complement your practical expertise.

Security Engineer, Incident Response

Twilio

Bengaluru, Karnataka, India

Posted: a year ago

The Security Incident Response Engineer will be responsible for responding to all security events and incidents across Twilio’s global infrastructure, services and applications. The Security Incident Response Team (SIRT) supports Twilio’s mission of security and reliability by working across the organization to lead the response to security events and incidents across Twilio by effectively conducting triage, containment, remediation and driving post-incident betterments.

Senior Incident Manager

Hewlett Packard Enterprise

Bangalore Urban, Karnataka, India

Posted: 10 months ago

What you’ll do: The Senior Major Incident Manager is a key driver for managing the resolution of technical problems with serious consequences to HPE IT customers, partners, and internal stakeholders. This responsibility includes collaborating and partnering across the entire IT organization as well as our system integrators to drive resolution. Ensure the correct resources are working on the resolution of major incidents appropriate to the severity and identify when escalation is required and trigger such escalation accordingly Drive incidents to resolution and manage user, partner and internal stakeholder communications for an incident via multiple communication channels in a 24/7, over the weekend on-call environment using standard HPE IT incident management processes ensuring updates are timely, accurate, and actionable. Lead cross-functional post-incident / rca reviews enabling the delivery of post incident reports to stakeholders and ensuring actions are taken for continuous improvement. Deeply understand our operational workflows and contribute to continuous review and improvement of systems and incident management tools and processes.   What you need to bring: Bachelor's or Master's degree in business, engineering, computer science or equivalent experience. Minimum of 7 year’s experience in critical incident management for production IT / Cloud environments.