1,186 Incident Responder jobs in India

Job Description

Who are we?

Accenture is a global professional services company with leading capabilities in digital, cloud and security. Find out more about us at ***. 

Accenture Security

Our cybersecurity business is rapidly growing, and we are hiring Junior-mid level security professionals within a range of disciplines to support our goal and mission of doing our part to secure the most critical systems and organisations for our way of life to thrive in Australia. 

As a member of the Threat Analysis and Response Team within the global Cyber Incident Response (CIRT) Tower, you will play a key role in investigating security incidents identified through infrastructure monitoring. This includes addressing potential hacking attempts, intrusions, malware infections, information mishandling, and other security threats that could negatively impact Accenture. You will also provide support during major incidents and investigations, as well as engage in threat hunting activities.

Key Responsibilities:

• Conduct investigations of security incidents, providing analysis and recommending corrective actions to address identified threats.
• Participate in threat hunting activities to proactively identify and neutralize potential security threats.
• Coordinate with internal teams to support a comprehensive security response.
• Operate endpoint security and SIEM solutions to detect, analyze, and respond to cyber threats.

Working Arrangements: Flexible (Location should be one of the base locations of Accenture)

Travel requirements: 0-5%. Industry-relevant trainings and certifications provided.

Relationships:

Reports to: Threat Analysis and Response Lead External relationships

Qualification

Security vendors Requirements:

• Solid understanding of computer operating systems, including server operating systems (Windows & Linux)
• Solid understanding of cloud infrastructure (Amazon, Microsoft Azure, Google)
• Familiarity with MITRE ATT&CK® Framework Proficient with EDR and SIEM platforms
• Security analysis skills (logfile analysis and analysis of mixed data sources/types)
• Ability to manipulate and present data
• Solid understanding of network protocols & architecture
• Ability to multi-task and prioritize workload
• Strong problem-solving skills
• Strong sense of ethics & values, ability to handle confidential situations with discretion
• Strong willingness to learn and grow within the role
• Excellent oral and written communication skills in English

Nice to Have:

• Experience incident response or in other operational security roles
• IT Security certifications such as CEH, Security+, BTL1, BTL2, GCIH, GCIA, GCIA, GCFA, CISSP
• Knowledge of one or more common programming languages
• Education: In course or advanced studies in Computer Sciences, Systems Engineering or related careers

Benefits of working at Accenture:

·     18 weeks paid parental leave

·     Long & short-term career break opportunities

·     Structured career development program

·     Local and international career opportunities.

·     Certified as a Family Inclusive Workplace™

·     Flexible Work Arrangements - centered around Accenture’s Truly Human ethos and our commitment to supporting the health and wellbeing of our people.

·     We are proud to be in the top 3 of last year’s Diversity & Inclusion Index!

We are a WORK180 Endorsed Employer, to see our benefits and policies click here

All our consulting professionals receive comprehensive training covering business acumen, technical and professional skills development. You’ll also have opportunities to hone your functional skills and expertise in an area of specialization. We offer a variety of formal and informal training programs at every level to help you acquire and build specialized skills faster. Learning takes place both on the job and through formal training conducted online, in the classroom, or in collaboration with teammates. The sheer variety of work we do, and the experience it offers, provide an unbeatable platform from which to build a career. 

Accenture is a an EEO and Affirmative Action Employee of Females/Minorities/Veterans/Individuals with Disabilities. 

Equal Employment Opportunity Statement for Australia:

At Accenture, we recognise that our people are multi-dimensional, and we create a work environment where all people feel like they can bring their authentic selves to work, every day.   

Our unwavering commitment to inclusion and diversity unleashes innovation and creates a culture where everyone feels they have equal opportunity. Our range of progressive policies support flexibility in ‘where’, ‘when’ and ‘how’ our people work to ensure that Accenture is an organisation where you can strive for more, achieve great things and maintain the balance and wellbeing you need. 

We encourage applications from all people, and we are committed to removing barriers to the recruitment process and employee lifecycle. All employment decisions shall be made without regard to age, disability status, ethnicity, gender, gender identity or expression, religion or sexual orientation and we do not tolerate discrimination. If you require adjustments to the recruitment process or have a preferred communication method, please email *** and cite the relevant Job Number, or contact us on +61 ***.   

To ensure our workplace is inclusive and diverse we are setting bold goals and taking comprehensive action. To achieve these goals, we collect information that allows us to track the effectiveness of our Inclusion and Diversity programs. Learn how Accenture protects your personal data and know your rights in relation to your personal data. Read more about our Privacy Statement.

#LI_GM

Locations

Melbourne

Sydney

Additional Information

Equal Employment Opportunity Statement for Australia

At Accenture, we recognise that our people are multi-dimensional, and we create a work environment where all people feel like they can bring their authentic selves to work, every day.

Our unwavering commitment to inclusion and diversity unleashes innovation and creates a culture where everyone feels they have equal opportunity. Our range of progressive policies support flexibility in ‘where’, ‘when’ and ‘how’ our people work to ensure that Accenture is an organisation where you can strive for more, achieve great things and maintain the balance and wellbeing you need.

We encourage applications from all people, and we are committed to removing barriers to the recruitment process and employee lifecycle. All employment decisions shall be made without regard to age, disability status, ethnicity, gender, gender identity or expression, religion or sexual orientation and we do not tolerate discrimination. If you require adjustments to the recruitment process or have a preferred communication method, please email *** and  cite the relevant Job Number, or contact us on +61 ***.

To ensure our workplace is inclusive and diverse we are setting bold goals and taking comprehensive action. To achieve these goals, we collect information that allows us to track the effectiveness of our Inclusion and Diversity programs. Learn how Accenture protects your personal data and know your rights in relation to your personal data. Read more about our Privacy Statement.

About Accenture

We work with one shared purpose: to deliver on the promise of technology and human ingenuity. Every day, more than 775,000 of us help our stakeholders continuously reinvent. Together, we drive positive change and deliver value to our clients, partners, shareholders, communities, and each other.

We believe that delivering value requires innovation, and innovation thrives in an inclusive and diverse environment. We actively foster a workplace free from bias, where everyone feels a sense of belonging and is respected and empowered to do their best work.

At Accenture, we see well-being holistically, supporting our people’s physical, mental, and financial health. We also provide opportunities to keep skills relevant through certifications, learning, and diverse work experiences. We’re proud to be consistently recognized as one of the World’s Best Workplaces™.

Join Accenture to work at the heart of change. Visit us at ***.

Job Description

Snowbit  is looking for an experienced Security Incident Responder  to join our Managed Detection and Response (MDR) team. This role requires expertise in incident response, threat hunting, and forensic investigations, with a strong emphasis on cloud environments and Kubernetes. You will lead efforts to protect our customers from advanced cyber threats while contributing to the continuous improvement of Snowbit's methodologies, processes, and technology stack.

What You'll Do:

• Leverage Snowbit's advanced MDR platform to lead large-scale incident response investigations and proactive threat-hunting initiatives.
• Conduct log analysis, and cloud artifact reviews using EDR and similar tools depending on availability, to support incident resolution and root-cause investigations.
• Investigate and respond to security incidents in containerized environments, with a specific focus on Kubernetes security and architecture.
• Research evolving cyberattack tactics, techniques, and procedures (TTPs) to strengthen customer defenses and codify insights for our services.
• Provide technical and executive briefings to customers, including recommendations to mitigate risk and enhance cybersecurity posture.
• Collaborate with internal teams, including engineering and research, to enhance Snowbit's MDR and incident response capabilities.
• Partner with customer teams (IT, DevOps, and Security) to ensure seamless integration and adoption of Snowbit's MDR services.
• Share expertise through presentations, research publications, and participation in the global cybersecurity community.

Experience:  

• 3-5 years in incident response, threat hunting with strong experience in cloud security (AWS, Azure, GCP) and Kubernetes environments.
• Proven Incident response experience in complex environments.

Technical Skills:

• Demonstrates strong expertise in understanding adversary tactics and techniques, translating them into actionable investigation tasks, conducting in-depth analysis, and accurately assessing the impact.
• Familiarity with attack vectors, malware families, and campaigns.
• Deep understanding of network architecture, protocols, and operating system internals (Windows, Linux, Unix).
• Expertise in Kubernetes security, including container orchestration, workload isolation, and cluster hardening.
• Experience securing Kubernetes infrastructure, runtime security, and security monitoring.

Problem-Solving:  

• Ability to work independently and collaboratively in dynamic, fast-paced environments.

Communication:  

• Excellent written and verbal communication skills to interact with technical and non-technical stakeholders.

Preferred Skills:

• Scripting skills (e.g., Python, PowerShell)
• Experience with Red Team operations, penetration testing, or cyber operations.
• Hands-on knowledge of attack frameworks (e.g., MITRE ATT&CK, Metasploit, Cobalt Strike).
• Proficiency in host forensics, memory forensics, and malware analysis.

Job Title

Security Analyst

Location

Delhi & Bangalore

Employment Type

Full-time

Position Summary

Softcell Global Technologies Pvt. Ltd. is looking for a passionate and skilled Security Analyst with at least 2-3 years of experience in vulnerability assessment, penetration testing and code review. The ideal candidate should have a foundational understanding of cybersecurity, good hands-on skills with security tools, and hold certifications such as OSCP, CRTP, eJPT, CPENT, CEH or equivalents. The role involves supporting offensive security operations, assisting in analysis and reporting, and collaborating with senior analysts during engagements.

Key Responsibilities

• Hands-on Technical Assessment & Exploitation
• Conduct in-depth penetration tests on web apps, APIs, networks, cloud, AD and OT environments.
• Conduct comprehensive manual reviews to identify security flaws, insecure patterns, and logical vulnerabilities – SAST and DAST.
• Chain vulnerabilities to simulate end-to-end real-world attack scenarios and provide POCs.
• Act as a collaborator for VAPT projects, ensuring timely delivery and quality assurance.
• Interface directly with clients to present findings and suggest remediation strategies.
• Collaborate to manage testing schedules, reporting timelines, and workflows to ensure on-time delivery.
• Draft detailed vulnerability reports with actionable remediation.

Mandatory Requirements

• Minimum 2-3 years of experience in vulnerability assessment and penetration testing support.
• Strong grasp of OWASP Top 10, MITRE ATT&CK, and real-world threat simulation.
• Scripting proficiency in Python, PowerShell, or Bash.
• Exposure to tools like Nmap, Wireshark, Burp Suite, Metasploit, BloodHound, SonarQube, Checkmarx, etc
• Bachelor’s degree in Computer Science, Cybersecurity, or related field.
• Excellent communication, documentation, and collaboration skills.

Additional Details

• Immediate Joiners Preferred
• Practical Skills are a Must
• Location: Delhi and Bangalore (Onsite Only)
• Bonus points for published CVEs, bug bounty recognition, open-source security tools, research contributions, or participation in industry events, workshops, and communities.

Preferred Certifications

• OSCP – Offensive Security Certified Professional
• OSWE – Offensive Security Web Expert
• CRTP – Certified Red Team Professional
• CRTE – Certified Red Team Expert
• CPENT – Certified Penetration Testing Professional
• CEH – Certified Ethical Hacker
• eJPT, eCPTX, CBBH, PNPT – or equivalent certifications in advanced adversarial simulation.

Why Join Softcell?

• Be part of a CERT-In empaneled cybersecurity team delivering critical security services.
• Get exposure to real-world attack simulations, internal security assessments, and VAPT projects.
• Learn and grow under certified red teamers and penetration testers.
• Access lab environments, tools, and mentoring to grow your skills.

About Softcell

Softcell Global Technologies Pvt. Ltd. is a leading IT services provider with over 30 years of experience in infrastructure solutions, cybersecurity, cloud, and engineering. Trusted by top banks, enterprises, and government institutions, Softcell is a CERT-In empaneled organization at the forefront of cybersecurity service delivery.

Regards

HR Team

Greetings !

We are looking for a skilled Splunk Administrator with hands-on experience in deploying and managing Splunk Enterprise and Splunk Cloud. The ideal candidate should have experience in Splunk Enterprise Security (ES), Splunk UBA, and IT Service Intelligence (ITSI). This role requires strong technical skills, along with the ability to communicate effectively with customers.

Roles & Responsibilities:

Splunk Deployment & Administration:

• Install, configure, and manage Splunk Enterprise and Splunk Cloud.
• Handle indexers, search heads, forwarders, and clustering.
• Optimize Splunk performance, storage, and scalability.

Security & Splunk Monitoring Solutions:

• Implement and manage Splunk Enterprise Security (ES), Splunk UBA, and ITSI.
• Configure correlation searches, threat intelligence feeds, risk-based alerting (RBA), and dashboards.
• Troubleshoot security-related issues within Splunk.

Customer Interaction & Troubleshooting:

• Engage with customers to understand their requirements and provide technical guidance.
• Troubleshoot and resolve Splunk-related issues, logs ingestion, parsing, and data onboarding.

Splunk Architecture & Implementation:

• Design, deploy, and optimize Splunk Enterprise and Splunk Cloud environments.
• Lead end-to-end Splunk implementations, migrations, and upgrades.
• Manage search head clustering, indexer clustering, and data retention policies.

Security & Observability Solutions:

• Architect and configure Splunk Enterprise Security (ES), Splunk UBA, and ITSI.
• Implement risk-based alerting (RBA), custom correlation searches, and advanced analytics.
• Integrate Splunk with SOAR, cloud platforms (AWS, Azure, GCP), and third-party security tools.

Team Leadership & Customer Engagement:

• Lead and mentor a team of Splunk Administrators & Engineers.
• Interact with customers to gather requirements, design solutions, and conduct workshops etc.
• Review and improve Splunk use cases, dashboards, and data models.

Optimization & Automation:

• Develop custom scripts (Python, Bash, PowerShell) for automation and orchestration.
• Tune Splunk performance, search queries, and indexing strategies.
• Implement best practices for data onboarding, parsing, and CIM compliance.

Interested can share their updated resume to along with the below mentioned details.

Current CTC:

Expected CTC:

Notice Period:

Role: Security Analyst

Experience: 8-12 yrs

Skills:

• Vulnerability management,
• Incident Response, Monitoring
• SIEM, EDR, Firewall Analysis
• L2 support
• Logs and Remediation

Security Analyst/ Engineer

As a Security Analyst/Engineer, you will be responsible for supporting the security

operations of our organization by assisting in the monitoring, detection, and response to

security incidents. This role offers a blend of security analysis and engineering tasks. This

position offers a progression from foundational knowledge to more advanced

responsibilities, allowing you to contribute significantly to the organization's cybersecurity

efforts.

Key Responsibilities:

Security monitoring and analysis

• You assist in monitoring security events and alerts from various sources such as

SIEM, IDS/IPS, antivirus systems, and endpoint detection platforms

• You conduct initial analysis of security events to determine their nature and

potential impact on the organization

• You collaborate with senior analysts to investigate and respond to security

incidents, including malware infections, phishing attempts, and unauthorized

access attempts.

Incident response

• You contribute to incident response activities by providing technical assistance

during security incidents, including containment, eradication, and recovery efforts

• You document incident response procedures, develop post-incident reports, and

conduct lessons learned sessions to improve incident handling capabilities

• You implement proactive measures to enhance incident detection and response

capabilities, such as developing playbooks for common attack scenarios.

Vulnerability management

• You support the vulnerability management process by assisting in vulnerability

scanning, assessment, and remediation efforts

• You help prioritize and track the resolution of identified vulnerabilities in systems

and applications

• You collaborate with system owners and IT teams to ensure timely patching and

mitigation of identified vulnerabilities, leveraging automation and orchestration

where possible

• You conduct security assessments and penetration tests to identify weaknesses in

systems, applications, and network infrastructure.

Security tool

• You assist in the administration and configuration of security tools and

technologies, such as firewalls, intrusion detection/prevention systems, and

endpoint security solutions

• You participate in the evaluation and testing of new security technologies to

enhance the organization's security posture

• You optimize the configuration and tuning of security tools and technologies to

improve detection accuracy, reduce false positives, and enhance overall

effectiveness

• You evaluate emerging security technologies and solutions, recommending and

implementing enhancements to the security toolset based on industry best

practices and organizational requirements.

Security awareness and training

• You support security awareness and training initiatives by assisting in the

development of educational materials and delivering security awareness briefings

to staff.

Qualifications and Skills:

• Bachelor's degree in computer science, Information Security, or related field

• Minimum 8 years of experience in a cybersecurity role with progressively increasing

responsibilities

• Strong understanding of cybersecurity principles, threat landscape, and attack

methodologies

• Proficiency in security tools and technologies such as SIEM, EDR, IDS/IPS, firewalls,

and vulnerability scanners

• Excellent analytical, problem-solving, and decision-making skills

• Effective communication and stakeholder management abilities

• Certifications such as CompTIA Security+, CEH (Certified Ethical Hacker), or

equivalent are a plus.

Experience

• Demonstrated experience in conducting security analysis, incident response, and

vulnerability management in a complex environment

• Hands-on experience with security tool optimization, security assessments, and

penetration testing

• Proven track record of incident response efforts and effectively managing security

incidents from detection to resolution.