98 Edr jobs in India
EDR Engineer
Greater Noida, Uttar Pradesh
Kyndryl
Posted 2 days ago
Job Viewed
Job Description
**Who We Are**
At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward - always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities.
**The Role**
Kyndryl's Security & Resiliency is one of our most critical practices, ensuring enterprises, regardless of their size and complexity, remain secure, available, reliable, and resilient. We take Cybersecurity seriously. We're not just invested; we're committed. We're not just protecting data; we're empowering. Kyndryl is committed to making the world safer, not only by investing in state-of-the-art services and technologies but also by empowering underserved communities with essential cyber skills.
When you walk through our doors, you're not only joining a team but you're also becoming part of a legacy. Welcome to Kyndryl, where Cybersecurity isn't just a job - it's a passion; a commitment to designing, running, and managing the most modern and reliable technology infrastructure that the world depends on every day.
Join us as a Cybersecurity Infrastructure Professional, where you'll be entrusted with the crucial task of maintaining and enhancing the infrastructure that is the backbone of our cybersecurity operations for our Fortune 500 clients. You'll be responsible for the orchestration of infrastructure, keeping our systems protected from the relentless advances of physical and cyber adversaries.
Your vigilance and technical expertise will be the shield that safeguards our computer systems, networks, and invaluable data from the threat of unauthorized access, theft, damage, and other malicious activities. Your domain will revolve around preserving the integrity of an IT infrastructure, the security of networks, and the sanctity of data.
If you have a passion for cybersecurity and are looking for a role that combines cutting-edge technology with the thrill of safeguarding critical assets, then this role is your gateway to the world of cybersecurity heroism. Join us at Kyndryl, and let's build the future of digital security together.
Your Future at Kyndryl
When you join Kyndryl, you're not just joining a company - you're entering a space of opportunities. Our partnerships with industry alliances and vendors mean you'll have access to skilling and certification programs needed to excel in Security & Resiliency, while simultaneously supporting your personal growth. Whether you envision your career path as a technical leader within cybersecurity or transition into other technical, consulting, or go-to-market roles - we're invested in your journey. .
**Who You Are**
You're good at what you do and possess the required experience to prove it. However, equally as important - you have a growth mindset; keen to drive your own personal and professional development. You are customer-focused - someone who prioritizes customer success in their work. And finally, you're open and borderless - naturally inclusive in how you work with others.
Required Skills and Experience:
+ Having 3= Years of Experience in EER Engineering.
+ Monitor and triage alerts from CrowdStrike Falcon and Microsoft Defender for Endpoint.
+ Investigate suspicious endpoint behavior and perform root cause analysis (RCA).
+ Isolate and quarantine compromised endpoints, blacklist malicious indicators, and escalate complex threats to L3
+ Fine-tune EDR policies to reduce false positives and improve detection accuracy.
+ Perform regular policy reviews and implement configuration changes based on threat trends
+ Coordinate with OEMs for technical support and version upgrades
+ Generate daily, weekly, and monthly reports on endpoint security posture
Preferred Skills and Experience:
+ Maintain SOPs, runbooks, and incident logs for audit and compliance
+ Contribute to CXO dashboards and real-time reporting systems
+ Work closely with SOC analysts, SMEs, and CDC governance teams.
+ Participate in service reviews, transformation planning, and change management discussions
+ Support cross-functional initiatives like SOAR automation and GenAI integration
+ Tools:Crowdstrike
**Being You**
Diversity is a whole lot more than what we look like or where we come from, it's how we think and who we are. We welcome people of all cultures, backgrounds, and experiences. But we're not doing it single-handily: Our Kyndryl Inclusion Networks are only one of many ways we create a workplace where all Kyndryls can find and provide support and advice. This dedication to welcoming everyone into our company means that Kyndryl gives you - and everyone next to you - the ability to bring your whole self to work, individually and collectively, and support the activation of our equitable culture. That's the Kyndryl Way.
**What You Can Expect**
With state-of-the-art resources and Fortune 100 clients, every day is an opportunity to innovate, build new capabilities, new relationships, new processes, and new value. Kyndryl cares about your well-being and prides itself on offering benefits that give you choice, reflect the diversity of our employees and support you and your family through the moments that matter - wherever you are in your life journey. Our employee learning programs give you access to the best learning in the industry to receive certifications, including Microsoft, Google, Amazon, Skillsoft, and many more. Through our company-wide volunteering and giving platform, you can donate, start fundraisers, volunteer, and search over 2 million non-profit organizations. At Kyndryl, we invest heavily in you, we want you to succeed so that together, we will all succeed.
**Get Referred!**
If you know someone that works at Kyndryl, when asked 'How Did You Hear About Us' during the application process, select 'Employee Referral' and enter your contact's Kyndryl email address.
Kyndryl is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, pregnancy, disability, age, veteran status, or other characteristics. Kyndryl is also committed to compliance with all fair employment practices regarding citizenship and immigration status.
At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward - always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities.
**The Role**
Kyndryl's Security & Resiliency is one of our most critical practices, ensuring enterprises, regardless of their size and complexity, remain secure, available, reliable, and resilient. We take Cybersecurity seriously. We're not just invested; we're committed. We're not just protecting data; we're empowering. Kyndryl is committed to making the world safer, not only by investing in state-of-the-art services and technologies but also by empowering underserved communities with essential cyber skills.
When you walk through our doors, you're not only joining a team but you're also becoming part of a legacy. Welcome to Kyndryl, where Cybersecurity isn't just a job - it's a passion; a commitment to designing, running, and managing the most modern and reliable technology infrastructure that the world depends on every day.
Join us as a Cybersecurity Infrastructure Professional, where you'll be entrusted with the crucial task of maintaining and enhancing the infrastructure that is the backbone of our cybersecurity operations for our Fortune 500 clients. You'll be responsible for the orchestration of infrastructure, keeping our systems protected from the relentless advances of physical and cyber adversaries.
Your vigilance and technical expertise will be the shield that safeguards our computer systems, networks, and invaluable data from the threat of unauthorized access, theft, damage, and other malicious activities. Your domain will revolve around preserving the integrity of an IT infrastructure, the security of networks, and the sanctity of data.
If you have a passion for cybersecurity and are looking for a role that combines cutting-edge technology with the thrill of safeguarding critical assets, then this role is your gateway to the world of cybersecurity heroism. Join us at Kyndryl, and let's build the future of digital security together.
Your Future at Kyndryl
When you join Kyndryl, you're not just joining a company - you're entering a space of opportunities. Our partnerships with industry alliances and vendors mean you'll have access to skilling and certification programs needed to excel in Security & Resiliency, while simultaneously supporting your personal growth. Whether you envision your career path as a technical leader within cybersecurity or transition into other technical, consulting, or go-to-market roles - we're invested in your journey. .
**Who You Are**
You're good at what you do and possess the required experience to prove it. However, equally as important - you have a growth mindset; keen to drive your own personal and professional development. You are customer-focused - someone who prioritizes customer success in their work. And finally, you're open and borderless - naturally inclusive in how you work with others.
Required Skills and Experience:
+ Having 3= Years of Experience in EER Engineering.
+ Monitor and triage alerts from CrowdStrike Falcon and Microsoft Defender for Endpoint.
+ Investigate suspicious endpoint behavior and perform root cause analysis (RCA).
+ Isolate and quarantine compromised endpoints, blacklist malicious indicators, and escalate complex threats to L3
+ Fine-tune EDR policies to reduce false positives and improve detection accuracy.
+ Perform regular policy reviews and implement configuration changes based on threat trends
+ Coordinate with OEMs for technical support and version upgrades
+ Generate daily, weekly, and monthly reports on endpoint security posture
Preferred Skills and Experience:
+ Maintain SOPs, runbooks, and incident logs for audit and compliance
+ Contribute to CXO dashboards and real-time reporting systems
+ Work closely with SOC analysts, SMEs, and CDC governance teams.
+ Participate in service reviews, transformation planning, and change management discussions
+ Support cross-functional initiatives like SOAR automation and GenAI integration
+ Tools:Crowdstrike
**Being You**
Diversity is a whole lot more than what we look like or where we come from, it's how we think and who we are. We welcome people of all cultures, backgrounds, and experiences. But we're not doing it single-handily: Our Kyndryl Inclusion Networks are only one of many ways we create a workplace where all Kyndryls can find and provide support and advice. This dedication to welcoming everyone into our company means that Kyndryl gives you - and everyone next to you - the ability to bring your whole self to work, individually and collectively, and support the activation of our equitable culture. That's the Kyndryl Way.
**What You Can Expect**
With state-of-the-art resources and Fortune 100 clients, every day is an opportunity to innovate, build new capabilities, new relationships, new processes, and new value. Kyndryl cares about your well-being and prides itself on offering benefits that give you choice, reflect the diversity of our employees and support you and your family through the moments that matter - wherever you are in your life journey. Our employee learning programs give you access to the best learning in the industry to receive certifications, including Microsoft, Google, Amazon, Skillsoft, and many more. Through our company-wide volunteering and giving platform, you can donate, start fundraisers, volunteer, and search over 2 million non-profit organizations. At Kyndryl, we invest heavily in you, we want you to succeed so that together, we will all succeed.
**Get Referred!**
If you know someone that works at Kyndryl, when asked 'How Did You Hear About Us' during the application process, select 'Employee Referral' and enter your contact's Kyndryl email address.
Kyndryl is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, pregnancy, disability, age, veteran status, or other characteristics. Kyndryl is also committed to compliance with all fair employment practices regarding citizenship and immigration status.
This advertiser has chosen not to accept applicants from your region.
0
EDR Analyst - L1
Mumbai, Maharashtra
NTT America, Inc.
Posted 2 days ago
Job Viewed
Job Description
**Make an impact with NTT DATA**
Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion - it's a place where you can grow, belong and thrive.
**Your day at NTT DATA**
The Security Managed Services Engineer (L1) is an entry level engineering role, responsible for providing a managed service to clients to ensure that their Firewall infrastructure remain operational through proactively identifying, investigating, and routing the incidents to correct resolver group.
The primary objective of this role is to ensure zero missed service level agreement (SLA) conditions and focuses on first-line support for standard and low complexity incidents and service requests.
The Security Managed Services Engineer (L1) may also contribute to / support on project work as and when required.
**What you'll be doing**
**Key Responsibilities:**
+ Min 3 Years exp in EDR and Trend Micro.
+ The vendor should assess the existing endpoint security infrastructure and identify any gaps or vulnerabilities.
+ The vendor should deploy EDR agents on endpoints, servers, and critical systems within the organization's network.
+ The vendor should configure EDR agents to collect and analyze security events and activities on endpoints.
+ The solution should monitor endpoints for suspicious activities, such as malware infections, unauthorized access attempts, and unusual user behavior.
+ The solution should use behavioral analysis and machine learning to detect advanced threats and zero-day attacks.
+ The solution should generate real-time alerts for potential security incidents and provide guidance for incident response and remediation.
+ The vendor should enable endpoint forensics capabilities to investigate security incidents and identify the root cause of attacks.
+ The solution should capture and store detailed endpoint activity logs and artifacts for further analysis.
+ The vendor should integrate the tool with vulnerability management systems to assess the endpoint's security posture.
+ The EDR solution should be able to rollout patches or upgrades from the EDR management console for agents onboarded on the platforms.
+ The solution should alert and remediate endpoints with outdated or vulnerable software configurations.
+ The solution should provide real-time alerts for anomalies that could indicate potential threats.
+ The vendor should ensure the compatibility with other security systems, such as (but not limited to) SIEM, incident response tools, etc.
+ The solution should correlate network anomalies with potential threats, aiding in early threat detection.
+ The vendor is expected to deliver reports at periodic intervals as per Client's requirements.
+ The vendor should re-deploy the agent as and when there is a change in the infrastructure or the operating systems.
**Knowledge and Attributes:**
+ Ability to communicate and work across different cultures and social groups.
+ Ability to plan activities and projects well in advance, and takes into account possible changing circumstances.
+ Ability to maintain a positive outlook at work.
+ Ability to work well in a pressurized environment.
+ Ability to work hard and put in longer hours when it is necessary.
+ Ability to apply active listening techniques such as paraphrasing the message to confirm understanding, probing for further relevant information, and refraining from interrupting.
+ Ability to adapt to changing circumstances.
+ Ability to place clients at the forefront of all interactions, understanding their requirements, and creating a positive client experience throughout the total client journey.
**Academic Qualifications and Certifications:**
+ Bachelor's degree or equivalent qualification in IT/Computing (or demonstrated equivalent work experience).
+ CEH certification is must.
**Required Experience:**
+ Entry-level experience with troubleshooting and providing the support required in security / network/ data center/ systems/ storage administration and monitoring Services within a medium to large ICT organization.
+ Basic knowledge of management agents, redundancy concepts, and products within the supported technical domain (such as Security, Network, Data Centre, Telephony, etc.).
+ Working knowledge of ITIL processes.
**Workplace type** **:**
On-site Working
**About NTT DATA**
NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo.
**Equal Opportunity Employer**
NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.
Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion - it's a place where you can grow, belong and thrive.
**Your day at NTT DATA**
The Security Managed Services Engineer (L1) is an entry level engineering role, responsible for providing a managed service to clients to ensure that their Firewall infrastructure remain operational through proactively identifying, investigating, and routing the incidents to correct resolver group.
The primary objective of this role is to ensure zero missed service level agreement (SLA) conditions and focuses on first-line support for standard and low complexity incidents and service requests.
The Security Managed Services Engineer (L1) may also contribute to / support on project work as and when required.
**What you'll be doing**
**Key Responsibilities:**
+ Min 3 Years exp in EDR and Trend Micro.
+ The vendor should assess the existing endpoint security infrastructure and identify any gaps or vulnerabilities.
+ The vendor should deploy EDR agents on endpoints, servers, and critical systems within the organization's network.
+ The vendor should configure EDR agents to collect and analyze security events and activities on endpoints.
+ The solution should monitor endpoints for suspicious activities, such as malware infections, unauthorized access attempts, and unusual user behavior.
+ The solution should use behavioral analysis and machine learning to detect advanced threats and zero-day attacks.
+ The solution should generate real-time alerts for potential security incidents and provide guidance for incident response and remediation.
+ The vendor should enable endpoint forensics capabilities to investigate security incidents and identify the root cause of attacks.
+ The solution should capture and store detailed endpoint activity logs and artifacts for further analysis.
+ The vendor should integrate the tool with vulnerability management systems to assess the endpoint's security posture.
+ The EDR solution should be able to rollout patches or upgrades from the EDR management console for agents onboarded on the platforms.
+ The solution should alert and remediate endpoints with outdated or vulnerable software configurations.
+ The solution should provide real-time alerts for anomalies that could indicate potential threats.
+ The vendor should ensure the compatibility with other security systems, such as (but not limited to) SIEM, incident response tools, etc.
+ The solution should correlate network anomalies with potential threats, aiding in early threat detection.
+ The vendor is expected to deliver reports at periodic intervals as per Client's requirements.
+ The vendor should re-deploy the agent as and when there is a change in the infrastructure or the operating systems.
**Knowledge and Attributes:**
+ Ability to communicate and work across different cultures and social groups.
+ Ability to plan activities and projects well in advance, and takes into account possible changing circumstances.
+ Ability to maintain a positive outlook at work.
+ Ability to work well in a pressurized environment.
+ Ability to work hard and put in longer hours when it is necessary.
+ Ability to apply active listening techniques such as paraphrasing the message to confirm understanding, probing for further relevant information, and refraining from interrupting.
+ Ability to adapt to changing circumstances.
+ Ability to place clients at the forefront of all interactions, understanding their requirements, and creating a positive client experience throughout the total client journey.
**Academic Qualifications and Certifications:**
+ Bachelor's degree or equivalent qualification in IT/Computing (or demonstrated equivalent work experience).
+ CEH certification is must.
**Required Experience:**
+ Entry-level experience with troubleshooting and providing the support required in security / network/ data center/ systems/ storage administration and monitoring Services within a medium to large ICT organization.
+ Basic knowledge of management agents, redundancy concepts, and products within the supported technical domain (such as Security, Network, Data Centre, Telephony, etc.).
+ Working knowledge of ITIL processes.
**Workplace type** **:**
On-site Working
**About NTT DATA**
NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo.
**Equal Opportunity Employer**
NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.
This advertiser has chosen not to accept applicants from your region.
1
EDR Analyst - L1
Mumbai, Maharashtra
NTT America, Inc.
Posted 2 days ago
Job Viewed
Job Description
**Make an impact with NTT DATA**
Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion - it's a place where you can grow, belong and thrive.
**Your day at NTT DATA**
The Security Managed Services Engineer (L1) is an entry level engineering role, responsible for providing a managed service to clients to ensure that their Firewall infrastructure remain operational through proactively identifying, investigating, and routing the incidents to correct resolver group.
The primary objective of this role is to ensure zero missed service level agreement (SLA) conditions and focuses on first-line support for standard and low complexity incidents and service requests.
The Security Managed Services Engineer (L1) may also contribute to / support on project work as and when required.
**What you'll be doing**
**Key Responsibilities:**
+ Monitors client infrastructure and solutions.
+ Identifies problems and errors prior to or when they occur.
+ Routinely identifies common incidents and opportunities for avoidance as well as general opportunities for incident reduction.
+ Investigates first line incidents assigned and identifies the root cause of incidents and problems.
+ Provides telephonic or chat support to clients when required.
+ Schedules maintenance activity windows for patching and configuration changes.
+ Follows the required handover procedures for shift changes to ensure service continuity.
+ Reports and escalates incidents where necessary.
+ Ensures the efficient and comprehensive resolutions of incidents and requests.
+ Updates existing knowledge articles or create new ones.
+ Identifies opportunities for work optimization including opportunities for automation of work, request fulfilment, incident resolution, and other general process improvement opportunities.
+ May also contribute to / support on project work as and when required.
+ May work on implementing and delivering Disaster Recovery functions and tests.
+ Performs any other related task as required.
**Knowledge and Attributes:**
+ Ability to communicate and work across different cultures and social groups.
+ Ability to plan activities and projects well in advance, and takes into account possible changing circumstances.
+ Ability to maintain a positive outlook at work.
+ Ability to work well in a pressurized environment.
+ Ability to work hard and put in longer hours when it is necessary.
+ Ability to apply active listening techniques such as paraphrasing the message to confirm understanding, probing for further relevant information, and refraining from interrupting.
+ Ability to adapt to changing circumstances.
+ Ability to place clients at the forefront of all interactions, understanding their requirements, and creating a positive client experience throughout the total client journey.
**Academic Qualifications and Certifications:**
+ Bachelor's degree or equivalent qualification in IT/Computing (or demonstrated equivalent work experience).
+ CCNA or relevant level 1 Network Security certification is good to have. Certifications carry additional weight on a candidate's qualification for the role.
**Required Experience:**
+ Entry-level experience with troubleshooting and providing the support required in security / network/ data center/ systems/ storage administration and monitoring Services within a medium to large ICT organization.
+ Basic knowledge of management agents, redundancy concepts, and products within the supported technical domain (such as Security, Network, Data Centre, Telephony, etc.).
+ Working knowledge of ITIL processes.
**Workplace type** **:**
On-site Working
**About NTT DATA**
NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo.
**Equal Opportunity Employer**
NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.
Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion - it's a place where you can grow, belong and thrive.
**Your day at NTT DATA**
The Security Managed Services Engineer (L1) is an entry level engineering role, responsible for providing a managed service to clients to ensure that their Firewall infrastructure remain operational through proactively identifying, investigating, and routing the incidents to correct resolver group.
The primary objective of this role is to ensure zero missed service level agreement (SLA) conditions and focuses on first-line support for standard and low complexity incidents and service requests.
The Security Managed Services Engineer (L1) may also contribute to / support on project work as and when required.
**What you'll be doing**
**Key Responsibilities:**
+ Monitors client infrastructure and solutions.
+ Identifies problems and errors prior to or when they occur.
+ Routinely identifies common incidents and opportunities for avoidance as well as general opportunities for incident reduction.
+ Investigates first line incidents assigned and identifies the root cause of incidents and problems.
+ Provides telephonic or chat support to clients when required.
+ Schedules maintenance activity windows for patching and configuration changes.
+ Follows the required handover procedures for shift changes to ensure service continuity.
+ Reports and escalates incidents where necessary.
+ Ensures the efficient and comprehensive resolutions of incidents and requests.
+ Updates existing knowledge articles or create new ones.
+ Identifies opportunities for work optimization including opportunities for automation of work, request fulfilment, incident resolution, and other general process improvement opportunities.
+ May also contribute to / support on project work as and when required.
+ May work on implementing and delivering Disaster Recovery functions and tests.
+ Performs any other related task as required.
**Knowledge and Attributes:**
+ Ability to communicate and work across different cultures and social groups.
+ Ability to plan activities and projects well in advance, and takes into account possible changing circumstances.
+ Ability to maintain a positive outlook at work.
+ Ability to work well in a pressurized environment.
+ Ability to work hard and put in longer hours when it is necessary.
+ Ability to apply active listening techniques such as paraphrasing the message to confirm understanding, probing for further relevant information, and refraining from interrupting.
+ Ability to adapt to changing circumstances.
+ Ability to place clients at the forefront of all interactions, understanding their requirements, and creating a positive client experience throughout the total client journey.
**Academic Qualifications and Certifications:**
+ Bachelor's degree or equivalent qualification in IT/Computing (or demonstrated equivalent work experience).
+ CCNA or relevant level 1 Network Security certification is good to have. Certifications carry additional weight on a candidate's qualification for the role.
**Required Experience:**
+ Entry-level experience with troubleshooting and providing the support required in security / network/ data center/ systems/ storage administration and monitoring Services within a medium to large ICT organization.
+ Basic knowledge of management agents, redundancy concepts, and products within the supported technical domain (such as Security, Network, Data Centre, Telephony, etc.).
+ Working knowledge of ITIL processes.
**Workplace type** **:**
On-site Working
**About NTT DATA**
NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo.
**Equal Opportunity Employer**
NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.
This advertiser has chosen not to accept applicants from your region.
2
EDR Analyst - L1
Mumbai, Maharashtra
NTT America, Inc.
Posted 2 days ago
Job Viewed
Job Description
**Make an impact with NTT DATA**
Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion - it's a place where you can grow, belong and thrive.
**Your day at NTT DATA**
The Security Managed Services Engineer (L1) is an entry level engineering role, responsible for providing a managed service to clients to ensure that their Firewall infrastructure remain operational through proactively identifying, investigating, and routing the incidents to correct resolver group.
The primary objective of this role is to ensure zero missed service level agreement (SLA) conditions and focuses on first-line support for standard and low complexity incidents and service requests.
The Security Managed Services Engineer (L1) may also contribute to / support on project work as and when required.
**What you'll be doing**
**Key Responsibilities:**
+ Min 3 Years exp in EDR and Trend Micro.
+ The vendor should assess the existing endpoint security infrastructure and identify any gaps or vulnerabilities.
+ The vendor should deploy EDR agents on endpoints, servers, and critical systems within the organization's network.
+ The vendor should configure EDR agents to collect and analyze security events and activities on endpoints.
+ The solution should monitor endpoints for suspicious activities, such as malware infections, unauthorized access attempts, and unusual user behavior.
+ The solution should use behavioral analysis and machine learning to detect advanced threats and zero-day attacks.
+ The solution should generate real-time alerts for potential security incidents and provide guidance for incident response and remediation.
+ The vendor should enable endpoint forensics capabilities to investigate security incidents and identify the root cause of attacks.
+ The solution should capture and store detailed endpoint activity logs and artifacts for further analysis.
+ The vendor should integrate the tool with vulnerability management systems to assess the endpoint's security posture.
+ The EDR solution should be able to rollout patches or upgrades from the EDR management console for agents onboarded on the platforms.
+ The solution should alert and remediate endpoints with outdated or vulnerable software configurations.
+ The solution should provide real-time alerts for anomalies that could indicate potential threats.
+ The vendor should ensure the compatibility with other security systems, such as (but not limited to) SIEM, incident response tools, etc.
+ The solution should correlate network anomalies with potential threats, aiding in early threat detection.
+ The vendor is expected to deliver reports at periodic intervals as per Client's requirements.
+ The vendor should re-deploy the agent as and when there is a change in the infrastructure or the operating systems.
**Knowledge and Attributes:**
+ Ability to communicate and work across different cultures and social groups.
+ Ability to plan activities and projects well in advance, and takes into account possible changing circumstances.
+ Ability to maintain a positive outlook at work.
+ Ability to work well in a pressurized environment.
+ Ability to work hard and put in longer hours when it is necessary.
+ Ability to apply active listening techniques such as paraphrasing the message to confirm understanding, probing for further relevant information, and refraining from interrupting.
+ Ability to adapt to changing circumstances.
+ Ability to place clients at the forefront of all interactions, understanding their requirements, and creating a positive client experience throughout the total client journey.
**Academic Qualifications and Certifications:**
+ Bachelor's degree or equivalent qualification in IT/Computing (or demonstrated equivalent work experience).
+ CEH certification is must.
**Required Experience:**
+ Entry-level experience with troubleshooting and providing the support required in security / network/ data center/ systems/ storage administration and monitoring Services within a medium to large ICT organization.
+ Basic knowledge of management agents, redundancy concepts, and products within the supported technical domain (such as Security, Network, Data Centre, Telephony, etc.).
+ Working knowledge of ITIL processes.
**Workplace type** **:**
On-site Working
**About NTT DATA**
NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo.
**Equal Opportunity Employer**
NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.
Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion - it's a place where you can grow, belong and thrive.
**Your day at NTT DATA**
The Security Managed Services Engineer (L1) is an entry level engineering role, responsible for providing a managed service to clients to ensure that their Firewall infrastructure remain operational through proactively identifying, investigating, and routing the incidents to correct resolver group.
The primary objective of this role is to ensure zero missed service level agreement (SLA) conditions and focuses on first-line support for standard and low complexity incidents and service requests.
The Security Managed Services Engineer (L1) may also contribute to / support on project work as and when required.
**What you'll be doing**
**Key Responsibilities:**
+ Min 3 Years exp in EDR and Trend Micro.
+ The vendor should assess the existing endpoint security infrastructure and identify any gaps or vulnerabilities.
+ The vendor should deploy EDR agents on endpoints, servers, and critical systems within the organization's network.
+ The vendor should configure EDR agents to collect and analyze security events and activities on endpoints.
+ The solution should monitor endpoints for suspicious activities, such as malware infections, unauthorized access attempts, and unusual user behavior.
+ The solution should use behavioral analysis and machine learning to detect advanced threats and zero-day attacks.
+ The solution should generate real-time alerts for potential security incidents and provide guidance for incident response and remediation.
+ The vendor should enable endpoint forensics capabilities to investigate security incidents and identify the root cause of attacks.
+ The solution should capture and store detailed endpoint activity logs and artifacts for further analysis.
+ The vendor should integrate the tool with vulnerability management systems to assess the endpoint's security posture.
+ The EDR solution should be able to rollout patches or upgrades from the EDR management console for agents onboarded on the platforms.
+ The solution should alert and remediate endpoints with outdated or vulnerable software configurations.
+ The solution should provide real-time alerts for anomalies that could indicate potential threats.
+ The vendor should ensure the compatibility with other security systems, such as (but not limited to) SIEM, incident response tools, etc.
+ The solution should correlate network anomalies with potential threats, aiding in early threat detection.
+ The vendor is expected to deliver reports at periodic intervals as per Client's requirements.
+ The vendor should re-deploy the agent as and when there is a change in the infrastructure or the operating systems.
**Knowledge and Attributes:**
+ Ability to communicate and work across different cultures and social groups.
+ Ability to plan activities and projects well in advance, and takes into account possible changing circumstances.
+ Ability to maintain a positive outlook at work.
+ Ability to work well in a pressurized environment.
+ Ability to work hard and put in longer hours when it is necessary.
+ Ability to apply active listening techniques such as paraphrasing the message to confirm understanding, probing for further relevant information, and refraining from interrupting.
+ Ability to adapt to changing circumstances.
+ Ability to place clients at the forefront of all interactions, understanding their requirements, and creating a positive client experience throughout the total client journey.
**Academic Qualifications and Certifications:**
+ Bachelor's degree or equivalent qualification in IT/Computing (or demonstrated equivalent work experience).
+ CEH certification is must.
**Required Experience:**
+ Entry-level experience with troubleshooting and providing the support required in security / network/ data center/ systems/ storage administration and monitoring Services within a medium to large ICT organization.
+ Basic knowledge of management agents, redundancy concepts, and products within the supported technical domain (such as Security, Network, Data Centre, Telephony, etc.).
+ Working knowledge of ITIL processes.
**Workplace type** **:**
On-site Working
**About NTT DATA**
NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo.
**Equal Opportunity Employer**
NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.
This advertiser has chosen not to accept applicants from your region.
3
EDR Analyst - L1
Mumbai, Maharashtra
NTT America, Inc.
Posted 2 days ago
Job Viewed
Job Description
**Make an impact with NTT DATA**
Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion - it's a place where you can grow, belong and thrive.
**Your day at NTT DATA**
The Security Managed Services Engineer (L1) is an entry level engineering role, responsible for providing a managed service to clients to ensure that their Firewall infrastructure remain operational through proactively identifying, investigating, and routing the incidents to correct resolver group.
The primary objective of this role is to ensure zero missed service level agreement (SLA) conditions and focuses on first-line support for standard and low complexity incidents and service requests.
The Security Managed Services Engineer (L1) may also contribute to / support on project work as and when required.
**What you'll be doing**
**Key Responsibilities:**
+ Min 3 Years exo in EDR and Trend Micro.
+ The vendor should assess the existing endpoint security infrastructure and identify any gaps or vulnerabilities.
+ The vendor should deploy EDR agents on endpoints, servers, and critical systems within the organization's network.
+ The vendor should configure EDR agents to collect and analyze security events and activities on endpoints.
+ The solution should monitor endpoints for suspicious activities, such as malware infections, unauthorized access attempts, and unusual user behavior.
+ The solution should use behavioral analysis and machine learning to detect advanced threats and zero-day attacks.
+ The solution should generate real-time alerts for potential security incidents and provide guidance for incident response and remediation.
+ The vendor should enable endpoint forensics capabilities to investigate security incidents and identify the root cause of attacks.
+ The solution should capture and store detailed endpoint activity logs and artifacts for further analysis.
+ The vendor should integrate the tool with vulnerability management systems to assess the endpoint's security posture.
+ The EDR solution should be able to rollout patches or upgrades from the EDR management console for agents onboarded on the platforms.
+ The solution should alert and remediate endpoints with outdated or vulnerable software configurations.
+ The solution should provide real-time alerts for anomalies that could indicate potential threats.
+ The vendor should ensure the compatibility with other security systems, such as (but not limited to) SIEM, incident response tools, etc.
+ The solution should correlate network anomalies with potential threats, aiding in early threat detection.
+ The vendor is expected to deliver reports at periodic intervals as per Client's requirements.
+ The vendor should re-deploy the agent as and when there is a change in the infrastructure or the operating systems.
**Academic Qualifications and Certifications:**
+ Bachelor's degree or equivalent qualification in IT/Computing (or demonstrated equivalent work experience).
+ CEH certification is Must
**Workplace type** **:**
On-site Working
**About NTT DATA**
NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo.
**Equal Opportunity Employer**
NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.
Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion - it's a place where you can grow, belong and thrive.
**Your day at NTT DATA**
The Security Managed Services Engineer (L1) is an entry level engineering role, responsible for providing a managed service to clients to ensure that their Firewall infrastructure remain operational through proactively identifying, investigating, and routing the incidents to correct resolver group.
The primary objective of this role is to ensure zero missed service level agreement (SLA) conditions and focuses on first-line support for standard and low complexity incidents and service requests.
The Security Managed Services Engineer (L1) may also contribute to / support on project work as and when required.
**What you'll be doing**
**Key Responsibilities:**
+ Min 3 Years exo in EDR and Trend Micro.
+ The vendor should assess the existing endpoint security infrastructure and identify any gaps or vulnerabilities.
+ The vendor should deploy EDR agents on endpoints, servers, and critical systems within the organization's network.
+ The vendor should configure EDR agents to collect and analyze security events and activities on endpoints.
+ The solution should monitor endpoints for suspicious activities, such as malware infections, unauthorized access attempts, and unusual user behavior.
+ The solution should use behavioral analysis and machine learning to detect advanced threats and zero-day attacks.
+ The solution should generate real-time alerts for potential security incidents and provide guidance for incident response and remediation.
+ The vendor should enable endpoint forensics capabilities to investigate security incidents and identify the root cause of attacks.
+ The solution should capture and store detailed endpoint activity logs and artifacts for further analysis.
+ The vendor should integrate the tool with vulnerability management systems to assess the endpoint's security posture.
+ The EDR solution should be able to rollout patches or upgrades from the EDR management console for agents onboarded on the platforms.
+ The solution should alert and remediate endpoints with outdated or vulnerable software configurations.
+ The solution should provide real-time alerts for anomalies that could indicate potential threats.
+ The vendor should ensure the compatibility with other security systems, such as (but not limited to) SIEM, incident response tools, etc.
+ The solution should correlate network anomalies with potential threats, aiding in early threat detection.
+ The vendor is expected to deliver reports at periodic intervals as per Client's requirements.
+ The vendor should re-deploy the agent as and when there is a change in the infrastructure or the operating systems.
**Academic Qualifications and Certifications:**
+ Bachelor's degree or equivalent qualification in IT/Computing (or demonstrated equivalent work experience).
+ CEH certification is Must
**Workplace type** **:**
On-site Working
**About NTT DATA**
NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo.
**Equal Opportunity Employer**
NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.
This advertiser has chosen not to accept applicants from your region.
4
Principal Engineer - EDR | On-Site, Bangalore
Bangalore, Karnataka
Optiv
Posted 2 days ago
Job Viewed
Job Description
The Principal Engineer will be responsible for creation of procedures, implementation of processes and development of staff for managing and maintaining security systems across internal and client environments. The Principal Engineer will work closely with Management, Senior Engineers, Solution Architects, Senior Security Engineers, other Principal Security Engineers and clients to complete high profile, critical services to existing Managed Security Service clients. Serve as a subject matter expert and team lead for Managed Security Services, staying in tune with all client configuration issues and all internal projects.
**How You'll Make An Impact**
Experience in Endpoint Security Platforms e.g. AV, EDR, XDR, DLP, Encryption, etc.
Perform end to end platform engineering management for Security tools
Good knowledge on Malware / Threats
Working knowledge on endpoint security technologies like Antivirus, EDR, XDR, DLP, Encryption
Performing regular checks on synchronization, monitoring and health checks
Provide recommendation to Customer security team on changes to global policies. Analyze application & Configuration settings, Policies & custom rule sets, historical performance data & provide recommendations.
Working knowledge of triaging malware alerts
Working knowledge of security technologies such as SIEM, DLP, UEBA, CASB and hybrid/Cloud Security environments.
**What We're Looking For**
8+ years of experience, hands on experience in tools like CrowdStrike / Sentinel One / Palo Alto Cortex XDR (must have good experience in any of these two tools)
Understanding security by design principles and architecture level security concepts
Knowledge of and experience with related Workstation and Server technologies.
Knowledge on deployment tools and MDM tools
Sound security engineering knowledge (technical) to work collaboratively with the Tech Leads and software/products architects to ensure secure Products
Good Knowledge on ITIL, Incident management, Change Management and Problem Management including analysis and response
Understand and manage the requirements of being part of a 24x7 on-call operation, including but not limited to, shift hand-over, operational advice, guidance, support and escalation
Good knowledge on reporting, documentation etc.
The role demands the availability for **US working hours (5PM (IST) to 2AM (IST))**
This role is **Work From Office role** .
**What you can expect from Optiv**
+ A company committed to championing Diversity, Equality, and Inclusion through our Employee Resource Groups ( .
+ Work/life balance
+ Professional training resources
+ Creative problem-solving and the ability to tackle unique, complex projects
+ Volunteer Opportunities. "Optiv Chips In" encourages employees to volunteer and engage with their teams and communities.
+ The ability and technology necessary to productively work remotely/from home (where applicable)
**EEO Statement**
Optiv is an equal opportunity employer. All qualified applicants for employment will be considered without regard to race, color, religion, sex, gender identity or expression, sexual orientation, pregnancy, age 40 and over, marital status, genetic information, national origin, status as an individual with a disability, military or veteran status, or any other basis protected by federal, state, or local law.
Optiv respects your privacy. By providing your information through this page or applying for a job at Optiv, you acknowledge that Optiv will collect, use, and process your information, which may include personal information and sensitive personal information, in connection with Optiv's selection and recruitment activities. For additional details on how Optiv uses and protects your personal information in the application process, click here to view our Applicant Privacy Notice ( . If you sign up to receive notifications of job postings, you may unsubscribe at any time.
**How You'll Make An Impact**
Experience in Endpoint Security Platforms e.g. AV, EDR, XDR, DLP, Encryption, etc.
Perform end to end platform engineering management for Security tools
Good knowledge on Malware / Threats
Working knowledge on endpoint security technologies like Antivirus, EDR, XDR, DLP, Encryption
Performing regular checks on synchronization, monitoring and health checks
Provide recommendation to Customer security team on changes to global policies. Analyze application & Configuration settings, Policies & custom rule sets, historical performance data & provide recommendations.
Working knowledge of triaging malware alerts
Working knowledge of security technologies such as SIEM, DLP, UEBA, CASB and hybrid/Cloud Security environments.
**What We're Looking For**
8+ years of experience, hands on experience in tools like CrowdStrike / Sentinel One / Palo Alto Cortex XDR (must have good experience in any of these two tools)
Understanding security by design principles and architecture level security concepts
Knowledge of and experience with related Workstation and Server technologies.
Knowledge on deployment tools and MDM tools
Sound security engineering knowledge (technical) to work collaboratively with the Tech Leads and software/products architects to ensure secure Products
Good Knowledge on ITIL, Incident management, Change Management and Problem Management including analysis and response
Understand and manage the requirements of being part of a 24x7 on-call operation, including but not limited to, shift hand-over, operational advice, guidance, support and escalation
Good knowledge on reporting, documentation etc.
The role demands the availability for **US working hours (5PM (IST) to 2AM (IST))**
This role is **Work From Office role** .
**What you can expect from Optiv**
+ A company committed to championing Diversity, Equality, and Inclusion through our Employee Resource Groups ( .
+ Work/life balance
+ Professional training resources
+ Creative problem-solving and the ability to tackle unique, complex projects
+ Volunteer Opportunities. "Optiv Chips In" encourages employees to volunteer and engage with their teams and communities.
+ The ability and technology necessary to productively work remotely/from home (where applicable)
**EEO Statement**
Optiv is an equal opportunity employer. All qualified applicants for employment will be considered without regard to race, color, religion, sex, gender identity or expression, sexual orientation, pregnancy, age 40 and over, marital status, genetic information, national origin, status as an individual with a disability, military or veteran status, or any other basis protected by federal, state, or local law.
Optiv respects your privacy. By providing your information through this page or applying for a job at Optiv, you acknowledge that Optiv will collect, use, and process your information, which may include personal information and sensitive personal information, in connection with Optiv's selection and recruitment activities. For additional details on how Optiv uses and protects your personal information in the application process, click here to view our Applicant Privacy Notice ( . If you sign up to receive notifications of job postings, you may unsubscribe at any time.
This advertiser has chosen not to accept applicants from your region.
5
Senior Engineer - EDR | On-site, Bangalore
Bangalore, Karnataka
Optiv
Posted 2 days ago
Job Viewed
Job Description
Endpoint Senior Engineer, Cyber Operations is responsible for post-sales product and service implementation. Sr. Endpoint Engineers are responsible for completing assigned projects in a manner consistent with the team's Operational Standard, which emphasizes the importance of providing exceptional customer service. They are also responsible for meeting consulting billing objectives.
**How you'll make an impact** :
+ Experience in Endpoint Security Platforms e.g. AV, EDR, XDR, DLP, Encryption, etc.
+ Good knowledge on Malware / Threats
+ **Working knowledge on endpoint security technologies like Antivirus, EDR, XDR (CrowdStrike, MS Defender, Sentinel One, Endgame), DLP, Encryption**
+ Performing regular checks on synchronization, monitoring and health checks
+ Provide recommendations to the Customer security team on changes to global policies. Analyze application & Configuration settings, Policies & custom rule sets, historical performance data & provide recommendations.
+ Working knowledge of triaging malware alerts
+ Working knowledge of security technologies such as SIEM, DLP, UEBA and hybrid/Cloud Security environments
+ Understanding of security by design principles and architecture level security concepts
+ Knowledge of and experience with related Workstation and Server technologies.
+ Knowledge on deployment tools and MDM tools
+ Sound security engineering knowledge (technical) so as to work collaboratively with the Tech Leads and software/products architects to ensure secure Products.
+ Good Knowledge on ITIL, Incident Management, Change Management and Problem Management including analysis and response.
+ Understand and manage the requirements of being part of a 24x7 on-call operation, including but not limited to, shift hand-over, operational advice, guidance, support and escalation.
+ Good knowledge on reporting, documentation etc
**What we're looking for** :
+ A Bachelor of Science degree in Computer Science or related field is required.
+ Expertise with one or more of our core Technology Areas: Security Event Management, Content Protection (DLP, Encryption, Access Control), Endpoint Security typically obtained in 5-8 years.
+ Thorough understanding of large-scale environments
+ Strong presentation and verbal communication skills
+ Process-oriented individual with strong attention to detail, and strong organizational skills.
+ Excellent, detailed writing skills
+ Expert knowledge of using Microsoft Office.
+ Ability to build relationships with and influence other functional areas.
+ Well-developed negotiation skills.
+ Ability to build consensus.
+ Strong interpersonal skills
+ Ability to manage multiple tasks in parallel.
+ This role demands the availability during US working hours(5PM(IST) to 2AM(IST))
+ This role is Work from Office role.
**What you can expect from Optiv**
+ A company committed to championing Diversity, Equality, and Inclusion through our Employee Resource Groups ( .
+ Work/life balance
+ Professional training resources
+ Creative problem-solving and the ability to tackle unique, complex projects
+ Volunteer Opportunities. "Optiv Chips In" encourages employees to volunteer and engage with their teams and communities.
+ The ability and technology necessary to productively work remotely/from home (where applicable)
**EEO Statement**
Optiv is an equal opportunity employer. All qualified applicants for employment will be considered without regard to race, color, religion, sex, gender identity or expression, sexual orientation, pregnancy, age 40 and over, marital status, genetic information, national origin, status as an individual with a disability, military or veteran status, or any other basis protected by federal, state, or local law.
Optiv respects your privacy. By providing your information through this page or applying for a job at Optiv, you acknowledge that Optiv will collect, use, and process your information, which may include personal information and sensitive personal information, in connection with Optiv's selection and recruitment activities. For additional details on how Optiv uses and protects your personal information in the application process, click here to view our Applicant Privacy Notice ( . If you sign up to receive notifications of job postings, you may unsubscribe at any time.
**How you'll make an impact** :
+ Experience in Endpoint Security Platforms e.g. AV, EDR, XDR, DLP, Encryption, etc.
+ Good knowledge on Malware / Threats
+ **Working knowledge on endpoint security technologies like Antivirus, EDR, XDR (CrowdStrike, MS Defender, Sentinel One, Endgame), DLP, Encryption**
+ Performing regular checks on synchronization, monitoring and health checks
+ Provide recommendations to the Customer security team on changes to global policies. Analyze application & Configuration settings, Policies & custom rule sets, historical performance data & provide recommendations.
+ Working knowledge of triaging malware alerts
+ Working knowledge of security technologies such as SIEM, DLP, UEBA and hybrid/Cloud Security environments
+ Understanding of security by design principles and architecture level security concepts
+ Knowledge of and experience with related Workstation and Server technologies.
+ Knowledge on deployment tools and MDM tools
+ Sound security engineering knowledge (technical) so as to work collaboratively with the Tech Leads and software/products architects to ensure secure Products.
+ Good Knowledge on ITIL, Incident Management, Change Management and Problem Management including analysis and response.
+ Understand and manage the requirements of being part of a 24x7 on-call operation, including but not limited to, shift hand-over, operational advice, guidance, support and escalation.
+ Good knowledge on reporting, documentation etc
**What we're looking for** :
+ A Bachelor of Science degree in Computer Science or related field is required.
+ Expertise with one or more of our core Technology Areas: Security Event Management, Content Protection (DLP, Encryption, Access Control), Endpoint Security typically obtained in 5-8 years.
+ Thorough understanding of large-scale environments
+ Strong presentation and verbal communication skills
+ Process-oriented individual with strong attention to detail, and strong organizational skills.
+ Excellent, detailed writing skills
+ Expert knowledge of using Microsoft Office.
+ Ability to build relationships with and influence other functional areas.
+ Well-developed negotiation skills.
+ Ability to build consensus.
+ Strong interpersonal skills
+ Ability to manage multiple tasks in parallel.
+ This role demands the availability during US working hours(5PM(IST) to 2AM(IST))
+ This role is Work from Office role.
**What you can expect from Optiv**
+ A company committed to championing Diversity, Equality, and Inclusion through our Employee Resource Groups ( .
+ Work/life balance
+ Professional training resources
+ Creative problem-solving and the ability to tackle unique, complex projects
+ Volunteer Opportunities. "Optiv Chips In" encourages employees to volunteer and engage with their teams and communities.
+ The ability and technology necessary to productively work remotely/from home (where applicable)
**EEO Statement**
Optiv is an equal opportunity employer. All qualified applicants for employment will be considered without regard to race, color, religion, sex, gender identity or expression, sexual orientation, pregnancy, age 40 and over, marital status, genetic information, national origin, status as an individual with a disability, military or veteran status, or any other basis protected by federal, state, or local law.
Optiv respects your privacy. By providing your information through this page or applying for a job at Optiv, you acknowledge that Optiv will collect, use, and process your information, which may include personal information and sensitive personal information, in connection with Optiv's selection and recruitment activities. For additional details on how Optiv uses and protects your personal information in the application process, click here to view our Applicant Privacy Notice ( . If you sign up to receive notifications of job postings, you may unsubscribe at any time.
This advertiser has chosen not to accept applicants from your region.
Be The First To Know
About the latest Edr Jobs in India !
6
Sr. Engineer - EDR | On-site, Bangalore
Bangalore, Karnataka
Optiv
Posted 2 days ago
Job Viewed
Job Description
Endpoint Senior Engineer, Cyber Operations is responsible for post-sales product and service implementation. Sr. Endpoint Engineers are responsible for completing assigned projects in a manner consistent with the team's Operational Standard, which emphasizes the importance of providing exceptional customer service. They are also responsible for meeting consulting billing objectives.
**How you'll make an impact** :
+ Experience in Endpoint Security Platforms e.g. AV, EDR, XDR, DLP, Encryption, etc.
+ Good knowledge on Malware / Threats
+ **Working knowledge on endpoint security technologies like Antivirus, EDR, XDR (CrowdStrike, MS Defender, Sentinel One, Endgame), DLP, Encryption**
+ Performing regular checks on synchronization, monitoring and health checks
+ Provide recommendations to the Customer security team on changes to global policies. Analyze application & Configuration settings, Policies & custom rule sets, historical performance data & provide recommendations.
+ Working knowledge of triaging malware alerts
+ Working knowledge of security technologies such as SIEM, DLP, UEBA and hybrid/Cloud Security environments
+ Understanding of security by design principles and architecture level security concepts
+ Knowledge of and experience with related Workstation and Server technologies
+ Knowledge on deployment tools and MDM tools
+ Sound security engineering knowledge (technical) so as to work collaboratively with the Tech Leads and software/products architects to ensure secure Products.
+ Good Knowledge on ITIL, Incident Management, Change Management and Problem Management including analysis and response.
+ Understand and manage the requirements of being part of a 24x7 on-call operation, including but not limited to, shift hand-over, operational advice, guidance, support and escalation.
+ Good knowledge on reporting, documentation etc
**What we're looking for** :
+ A Bachelor of Science degree in Computer Science or related field is required.
+ Expertise with one or more of our core Technology Areas: Security Event Management, Content Protection (DLP, Encryption, Access Control), Endpoint Security typically obtained in 5-8 years.
+ Thorough understanding of large-scale environments
+ Strong presentation and verbal communication skills
+ Process-oriented individual with strong attention to detail, and strong organizational skills.
+ Excellent, detailed writing skills
+ Expert knowledge of using Microsoft Office.
+ Ability to build relationships with and influence other functional areas.
+ Well-developed negotiation skills.
+ Ability to build consensus.
+ Strong interpersonal skills
+ Ability to manage multiple tasks in parallel.
+ This role demands the availability during US working hours(5PM(IST) to 2AM(IST))
+ This role is Work from Office role.
**What you can expect from Optiv**
+ A company committed to championing Diversity, Equality, and Inclusion through our Employee Resource Groups ( .
+ Work/life balance
+ Professional training resources
+ Creative problem-solving and the ability to tackle unique, complex projects
+ Volunteer Opportunities. "Optiv Chips In" encourages employees to volunteer and engage with their teams and communities.
+ The ability and technology necessary to productively work remotely/from home (where applicable)
**EEO Statement**
Optiv is an equal opportunity employer. All qualified applicants for employment will be considered without regard to race, color, religion, sex, gender identity or expression, sexual orientation, pregnancy, age 40 and over, marital status, genetic information, national origin, status as an individual with a disability, military or veteran status, or any other basis protected by federal, state, or local law.
Optiv respects your privacy. By providing your information through this page or applying for a job at Optiv, you acknowledge that Optiv will collect, use, and process your information, which may include personal information and sensitive personal information, in connection with Optiv's selection and recruitment activities. For additional details on how Optiv uses and protects your personal information in the application process, click here to view our Applicant Privacy Notice ( . If you sign up to receive notifications of job postings, you may unsubscribe at any time.
**How you'll make an impact** :
+ Experience in Endpoint Security Platforms e.g. AV, EDR, XDR, DLP, Encryption, etc.
+ Good knowledge on Malware / Threats
+ **Working knowledge on endpoint security technologies like Antivirus, EDR, XDR (CrowdStrike, MS Defender, Sentinel One, Endgame), DLP, Encryption**
+ Performing regular checks on synchronization, monitoring and health checks
+ Provide recommendations to the Customer security team on changes to global policies. Analyze application & Configuration settings, Policies & custom rule sets, historical performance data & provide recommendations.
+ Working knowledge of triaging malware alerts
+ Working knowledge of security technologies such as SIEM, DLP, UEBA and hybrid/Cloud Security environments
+ Understanding of security by design principles and architecture level security concepts
+ Knowledge of and experience with related Workstation and Server technologies
+ Knowledge on deployment tools and MDM tools
+ Sound security engineering knowledge (technical) so as to work collaboratively with the Tech Leads and software/products architects to ensure secure Products.
+ Good Knowledge on ITIL, Incident Management, Change Management and Problem Management including analysis and response.
+ Understand and manage the requirements of being part of a 24x7 on-call operation, including but not limited to, shift hand-over, operational advice, guidance, support and escalation.
+ Good knowledge on reporting, documentation etc
**What we're looking for** :
+ A Bachelor of Science degree in Computer Science or related field is required.
+ Expertise with one or more of our core Technology Areas: Security Event Management, Content Protection (DLP, Encryption, Access Control), Endpoint Security typically obtained in 5-8 years.
+ Thorough understanding of large-scale environments
+ Strong presentation and verbal communication skills
+ Process-oriented individual with strong attention to detail, and strong organizational skills.
+ Excellent, detailed writing skills
+ Expert knowledge of using Microsoft Office.
+ Ability to build relationships with and influence other functional areas.
+ Well-developed negotiation skills.
+ Ability to build consensus.
+ Strong interpersonal skills
+ Ability to manage multiple tasks in parallel.
+ This role demands the availability during US working hours(5PM(IST) to 2AM(IST))
+ This role is Work from Office role.
**What you can expect from Optiv**
+ A company committed to championing Diversity, Equality, and Inclusion through our Employee Resource Groups ( .
+ Work/life balance
+ Professional training resources
+ Creative problem-solving and the ability to tackle unique, complex projects
+ Volunteer Opportunities. "Optiv Chips In" encourages employees to volunteer and engage with their teams and communities.
+ The ability and technology necessary to productively work remotely/from home (where applicable)
**EEO Statement**
Optiv is an equal opportunity employer. All qualified applicants for employment will be considered without regard to race, color, religion, sex, gender identity or expression, sexual orientation, pregnancy, age 40 and over, marital status, genetic information, national origin, status as an individual with a disability, military or veteran status, or any other basis protected by federal, state, or local law.
Optiv respects your privacy. By providing your information through this page or applying for a job at Optiv, you acknowledge that Optiv will collect, use, and process your information, which may include personal information and sensitive personal information, in connection with Optiv's selection and recruitment activities. For additional details on how Optiv uses and protects your personal information in the application process, click here to view our Applicant Privacy Notice ( . If you sign up to receive notifications of job postings, you may unsubscribe at any time.
This advertiser has chosen not to accept applicants from your region.
7
MS Technical Manager (SOC - Q Radar/EDR/NAC)
Chennai, Tamil Nadu
NTT America, Inc.
Posted 2 days ago
Job Viewed
Job Description
**Make an impact with NTT DATA**
Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion - it's a place where you can grow, belong and thrive.
**Additional Career Level Description:**
**Knowledge and application:**
+ Works on issues of diverse scope where analysis of situation or data requires evaluation of a variety of factors.
+ Receives objective based assignments and determines resources to meet schedules and goals.
**Problem solving:**
+ Follows processes and operational policies in selecting methods and techniques for obtaining solutions often with insufficient information.
+ Implementation of solutions often requires a longer-term view taking multiple perspectives into consideration.
**Interaction:**
+ Effectively communicates and presents results and recommendations across discipline, advising diverse stakeholders on complex matters.
+ Partners with key contacts outside own area of expertise and other external stakeholders.
+ Provides guidance to subordinates within the latitude of established company policies.
**Impact:**
+ Develops and manages operational plans to deliver tactical results and focus team on medium term goals.
+ Mistakes or failure to achieve results will add to costs and may have up to a one-year impact; Decisions impact others in the immediate team and influences methods and techniques.
**Accountability:**
+ Accountable for meeting short-term to medium targets across discipline, providing guidance to subordinates within the latitude of established company policies.
+ Develops and manages operational initiatives to deliver tactical results.
+ Provides input into the budgeting process.
**Workplace type** **:**
On-site Working
**About NTT DATA**
NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo.
**Equal Opportunity Employer**
NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.
Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion - it's a place where you can grow, belong and thrive.
**Additional Career Level Description:**
**Knowledge and application:**
+ Works on issues of diverse scope where analysis of situation or data requires evaluation of a variety of factors.
+ Receives objective based assignments and determines resources to meet schedules and goals.
**Problem solving:**
+ Follows processes and operational policies in selecting methods and techniques for obtaining solutions often with insufficient information.
+ Implementation of solutions often requires a longer-term view taking multiple perspectives into consideration.
**Interaction:**
+ Effectively communicates and presents results and recommendations across discipline, advising diverse stakeholders on complex matters.
+ Partners with key contacts outside own area of expertise and other external stakeholders.
+ Provides guidance to subordinates within the latitude of established company policies.
**Impact:**
+ Develops and manages operational plans to deliver tactical results and focus team on medium term goals.
+ Mistakes or failure to achieve results will add to costs and may have up to a one-year impact; Decisions impact others in the immediate team and influences methods and techniques.
**Accountability:**
+ Accountable for meeting short-term to medium targets across discipline, providing guidance to subordinates within the latitude of established company policies.
+ Develops and manages operational initiatives to deliver tactical results.
+ Provides input into the budgeting process.
**Workplace type** **:**
On-site Working
**About NTT DATA**
NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo.
**Equal Opportunity Employer**
NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.
This advertiser has chosen not to accept applicants from your region.
8
Sr Threat Detection Engineer
Insight Global
Posted 2 days ago
Job Viewed
Job Description
** 6 month contract**
**25/LPA to 35/LPA**
Exact compensation may vary based on several factors, including skills, experience, and education.
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.
We are seeking a highly experienced Senior Detection Engineer to lead the development and optimization of advanced threat detection and response capabilities. This role requires deep expertise in CrowdStrike Falcon Endpoint, Next-Gen SIEM, CS Identity Protection (IDP), FUSION, SOAR platforms, and cloud security. The ideal candidate will serve as the subject matter expert (SME) for the entire CrowdStrike ecosystem, including sensor deployment, troubleshooting, automation, and query development.
Required Skills & Experience
- 5+ years in detection engineering, threat hunting, or security operations.
- Deep expertise with CrowdStrike Falcon Endpoint, Next-Gen SIEM, CS IDP, FUSION, and SOAR platforms.
- Strong experience with cloud security (AWS, Azure).
- Proficiency in CrowdStrike Query Language (FQL/CQL) and scripting (Python, PowerShell).
- Proven ability to troubleshoot CrowdStrike sensor issues, agent health, and platform integration.
- Familiarity with MITRE ATT&CK, NIST 800-53, and modern detection frameworks.
- Expertise in CRBL and/or CRBL-like data optimization tools
Nice to Have Skills & Experience
- CrowdStrike certifications (e.g., CCFA, CCFH)
- Experience with threat intelligence platforms and adversary emulation.
- Familiarity with CI/CD pipelines, detection-as-code, and infrastructure-as-code practices.
Key Responsibilities
- Develop and maintain high-fidelity detection rules using CrowdStrike Falcon, Next-Gen SIEM, and FUSION.
- Leverage CS IDP to detect identity-based threats and lateral movement.
- Write and optimize queries using CrowdStrike Query Language (FQL/CQL) for threat hunting and detection validation.
- Build and tune detections for cloud environments (AWS, Azure, GCP) and integrate with cloud-native logging tools.
- Function as the primary SME for CrowdStrike, including Falcon, IDP, FUSION, and related modules.
- Troubleshoot and resolve sensor deployment issues, agent health problems, and telemetry gaps.
- Serve as the escalation point for CrowdStrike-related errors, automation failures, and detection tuning.
- Design and implement automated response playbooks using SOAR platforms to reduce dwell time and automate/streamline triage.
- Conduct threat modeling for enterprise systems, cloud platforms, and business-critical applications.
This advertiser has chosen not to accept applicants from your region.
9