363 Incident Response jobs in India
Incident Response
Bengaluru, Karnataka
Black & White Business Solutions
Posted today
Job Viewed
Job Description
**Job Information**:
Industry
**IT Services***
Province
**Karnataka***
City
**Bangalore North***
Postal Code
**560001***
Country
**India***
**Incident Response - (Senior) Security Analyst (E2)**
Security Analyst is the second line for Customer security. Security Analyst shall escalate unresolved and/or complex issues to Global Security Operations IR (L3), or the Security Analyst Team Lead.
- Ensure accurate and complete documentation of activities and statuses.
- Ingest events and alerts and perform advanced security analysis to determine and put into motion / continue best (or Customer agreed upon) actions for incidents.
- Log and conduct security analysis for in depth investigation and analysis.
Conduct event correlation review though incoming data feeds, ticketing systems, security tools, and event and alert systems
Industry
**IT Services***
Province
**Karnataka***
City
**Bangalore North***
Postal Code
**560001***
Country
**India***
**Incident Response - (Senior) Security Analyst (E2)**
Security Analyst is the second line for Customer security. Security Analyst shall escalate unresolved and/or complex issues to Global Security Operations IR (L3), or the Security Analyst Team Lead.
- Ensure accurate and complete documentation of activities and statuses.
- Ingest events and alerts and perform advanced security analysis to determine and put into motion / continue best (or Customer agreed upon) actions for incidents.
- Log and conduct security analysis for in depth investigation and analysis.
Conduct event correlation review though incoming data feeds, ticketing systems, security tools, and event and alert systems
This advertiser has chosen not to accept applicants from your region.
0
Security Incident Response
Hyderabad, Andhra Pradesh
Wipro Limited
Posted today
Job Viewed
Job Description
Hyderabad, India
- Tech Hiring
- 3071453
**Role Purpose**
- The purpose of the role is to support process delivery by ensuring daily performance of the Production Specialists, resolve technical escalations and develop technical capability within the Production Specialists. _
**Do**
- **Oversee and support process by reviewing daily transactions on performance parameters**
- _Review performance dashboard and the scores for the team_
- _Support the team in improving performance parameters by providing technical support and process guidance _
- _Record, track, and document all queries received, problem
- solving steps taken and total successful and unsuccessful resolutions _
- _Ensure standard processes and procedures are followed to resolve all client queries_
- _Resolve client queries as per the SLA’s defined in the contract _
- _Develop understanding of process/ product for the team members to facilitate better client interaction and troubleshooting _
- _Document and analyze call logs to spot most occurring trends to prevent future problems_
- _Identify red flags and escalate serious client issues to Team leader in cases of untimely resolution_
- _Avoids legal challenges by monitoring compliance with service agreements_
- **Handle technical escalations through effective diagnosis and troubleshooting of client queries**
- _Manage and resolve technical roadblocks/ escalations as per SLA and quality requirements _
- _If unable to resolve the issues, timely escalate the issues to TA & SES_
- _Provide product support and resolution to clients by performing a question diagnosis while guiding users through step-by-step solutions _
- _Troubleshoot all client queries in a user-friendly, courteous and professional manner_
- _Offer alternative solutions to clients (where appropriate) with the objective of retaining customers’ and clients’ business _
- _Organize ideas and effectively communicate oral messages appropriate to listeners and situations_
- _Follow up and make scheduled call backs to customers to record feedback and ensure compliance to contract SLA’s_
- **Build people capability to ensure operational excellence and maintain superior customer service levels of the existing account/client**
- _Mentor and guide Production Specialists on improving technical knowledge_
- _Collate trainings to be conducted as triage to bridge the skill gaps identified through interviews with the Production Specialist _
- _Develop and conduct trainings (Triages) within products for production specialist as per target_
- _Inform client about the triages being conducted_
- _Undertake product trainings to stay current with product features, changes and updates_
- _Enroll in product specific and any other trainings per client requirements/recommendations_
- _Identify and document most common problems and recommend appropriate resolutions to the team_
- _Update job knowledge by participating in self learning opportunities and maintaining personal networks_
**Stakeholder Interaction**
***
**Stakeholder Type**
**Stakeholder Identification**
**Purpose of Interaction**
**Internal**
- Team Leaders_
- Performance review_
- HR- Hiring and employee engagement and retention_
- TA, SEs_
- Escalation and issue resolution_
- Production Specialist_
- Training, issue escalation/ resolution_
**External**
- Client_
- Query Resolution_
**Display**
Lists the competencies required to perform this role effectively:
- **Functional Competencies/ Skill**
- Process Knowledge - Knowledge of assigned process, tools and systems - **Competent**
**Competency Levels**
**Foundation**
Knowledgeable about the competency requirements. Demonstrates (in parts) frequently with mínimal support and guidance.
**Competent**
Consistently demonstrates the full range of the competency without guidance. Extends the competency to difficult and unknown situations as well.
**Expert**
Applies the competency in all situations and is serves as a guide to others as well.
**Master**
Coaches others and builds organizational capability in the competency area. Serves as a key resource for that competency and is recognized within the entire organization.
- **Behavioral Competencies**
- Domain Knowledge
- Collaborative working
- Problem solving and decision making
- Attention to Detail
- Execution Excellence
- Stakeholder Management
- Client (Internal) Centricity
- Effective Communication
**Deliver**
**No.**
**Performance Parameter**
**Measure**
1.
Process
No. of cases resolved per day, compliance to process and quality standards, meeting process level SLAs, Pulse score, Customer feedback, NSAT/ ESAT
2.
Team Management
Productivity, efficiency, absenteeism
3.
Capability development
Triages completed, Technical Test performance
Security Incident Response
We are an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, caste, creed, religion, gender, marital status, age, ethnic an
- Tech Hiring
- 3071453
**Role Purpose**
- The purpose of the role is to support process delivery by ensuring daily performance of the Production Specialists, resolve technical escalations and develop technical capability within the Production Specialists. _
**Do**
- **Oversee and support process by reviewing daily transactions on performance parameters**
- _Review performance dashboard and the scores for the team_
- _Support the team in improving performance parameters by providing technical support and process guidance _
- _Record, track, and document all queries received, problem
- solving steps taken and total successful and unsuccessful resolutions _
- _Ensure standard processes and procedures are followed to resolve all client queries_
- _Resolve client queries as per the SLA’s defined in the contract _
- _Develop understanding of process/ product for the team members to facilitate better client interaction and troubleshooting _
- _Document and analyze call logs to spot most occurring trends to prevent future problems_
- _Identify red flags and escalate serious client issues to Team leader in cases of untimely resolution_
- _Avoids legal challenges by monitoring compliance with service agreements_
- **Handle technical escalations through effective diagnosis and troubleshooting of client queries**
- _Manage and resolve technical roadblocks/ escalations as per SLA and quality requirements _
- _If unable to resolve the issues, timely escalate the issues to TA & SES_
- _Provide product support and resolution to clients by performing a question diagnosis while guiding users through step-by-step solutions _
- _Troubleshoot all client queries in a user-friendly, courteous and professional manner_
- _Offer alternative solutions to clients (where appropriate) with the objective of retaining customers’ and clients’ business _
- _Organize ideas and effectively communicate oral messages appropriate to listeners and situations_
- _Follow up and make scheduled call backs to customers to record feedback and ensure compliance to contract SLA’s_
- **Build people capability to ensure operational excellence and maintain superior customer service levels of the existing account/client**
- _Mentor and guide Production Specialists on improving technical knowledge_
- _Collate trainings to be conducted as triage to bridge the skill gaps identified through interviews with the Production Specialist _
- _Develop and conduct trainings (Triages) within products for production specialist as per target_
- _Inform client about the triages being conducted_
- _Undertake product trainings to stay current with product features, changes and updates_
- _Enroll in product specific and any other trainings per client requirements/recommendations_
- _Identify and document most common problems and recommend appropriate resolutions to the team_
- _Update job knowledge by participating in self learning opportunities and maintaining personal networks_
**Stakeholder Interaction**
***
**Stakeholder Type**
**Stakeholder Identification**
**Purpose of Interaction**
**Internal**
- Team Leaders_
- Performance review_
- HR- Hiring and employee engagement and retention_
- TA, SEs_
- Escalation and issue resolution_
- Production Specialist_
- Training, issue escalation/ resolution_
**External**
- Client_
- Query Resolution_
**Display**
Lists the competencies required to perform this role effectively:
- **Functional Competencies/ Skill**
- Process Knowledge - Knowledge of assigned process, tools and systems - **Competent**
**Competency Levels**
**Foundation**
Knowledgeable about the competency requirements. Demonstrates (in parts) frequently with mínimal support and guidance.
**Competent**
Consistently demonstrates the full range of the competency without guidance. Extends the competency to difficult and unknown situations as well.
**Expert**
Applies the competency in all situations and is serves as a guide to others as well.
**Master**
Coaches others and builds organizational capability in the competency area. Serves as a key resource for that competency and is recognized within the entire organization.
- **Behavioral Competencies**
- Domain Knowledge
- Collaborative working
- Problem solving and decision making
- Attention to Detail
- Execution Excellence
- Stakeholder Management
- Client (Internal) Centricity
- Effective Communication
**Deliver**
**No.**
**Performance Parameter**
**Measure**
1.
Process
No. of cases resolved per day, compliance to process and quality standards, meeting process level SLAs, Pulse score, Customer feedback, NSAT/ ESAT
2.
Team Management
Productivity, efficiency, absenteeism
3.
Capability development
Triages completed, Technical Test performance
Security Incident Response
We are an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, caste, creed, religion, gender, marital status, age, ethnic an
This advertiser has chosen not to accept applicants from your region.
1
Security Incident Response
Hyderabad, Andhra Pradesh
Wipro Limited
Posted today
Job Viewed
Job Description
Overview:
**Role Purpose**
- The purpose of the role is to support process delivery by ensuring daily performance of the Production Specialists, resolve technical escalations and develop technical capability within the Production Specialists. _
**Do**
- **Oversee and support process by reviewing daily transactions on performance parameters**
- _Review performance dashboard and the scores for the team_
- _Support the team in improving performance parameters by providing technical support and process guidance _
- _Record, track, and document all queries received, problem
- solving steps taken and total successful and unsuccessful resolutions _
- _Ensure standard processes and procedures are followed to resolve all client queries_
- _Resolve client queries as per the SLA’s defined in the contract _
- _Develop understanding of process/ product for the team members to facilitate better client interaction and troubleshooting _
- _Document and analyze call logs to spot most occurring trends to prevent future problems_
- _Identify red flags and escalate serious client issues to Team leader in cases of untimely resolution_
- _Avoids legal challenges by monitoring compliance with service agreements_
- **Handle technical escalations through effective diagnosis and troubleshooting of client queries**
- _Manage and resolve technical roadblocks/ escalations as per SLA and quality requirements _
- _If unable to resolve the issues, timely escalate the issues to TA & SES_
- _Provide product support and resolution to clients by performing a question diagnosis while guiding users through step-by-step solutions _
- _Troubleshoot all client queries in a user-friendly, courteous and professional manner_
- _Offer alternative solutions to clients (where appropriate) with the objective of retaining customers’ and clients’ business _
- _Organize ideas and effectively communicate oral messages appropriate to listeners and situations_
- _Follow up and make scheduled call backs to customers to record feedback and ensure compliance to contract SLA’s_
- **Build people capability to ensure operational excellence and maintain superior customer service levels of the existing account/client**
- _Mentor and guide Production Specialists on improving technical knowledge_
- _Collate trainings to be conducted as triage to bridge the skill gaps identified through interviews with the Production Specialist _
- _Develop and conduct trainings (Triages) within products for production specialist as per target_
- _Inform client about the triages being conducted_
- _Undertake product trainings to stay current with product features, changes and updates_
- _Enroll in product specific and any other trainings per client requirements/recommendations_
- _Identify and document most common problems and recommend appropriate resolutions to the team_
- _Update job knowledge by participating in self learning opportunities and maintaining personal networks_
**Stakeholder Interaction**
***
**Stakeholder Type**
**Stakeholder Identification**
**Purpose of Interaction**
**Internal**
- Team Leaders_
- Performance review_
- HR- Hiring and employee engagement and retention_
- TA, SEs_
- Escalation and issue resolution_
- Production Specialist_
- Training, issue escalation/ resolution_
**External**
- Client_
- Query Resolution_
**Display**
Lists the competencies required to perform this role effectively:
- **Functional Competencies/ Skill**
- Process Knowledge - Knowledge of assigned process, tools and systems - **Competent**
**Competency Levels**
**Foundation**
Knowledgeable about the competency requirements. Demonstrates (in parts) frequently with mínimal support and guidance.
**Competent**
Consistently demonstrates the full range of the competency without guidance. Extends the competency to difficult and unknown situations as well.
**Expert**
Applies the competency in all situations and is serves as a guide to others as well.
**Master**
Coaches others and builds organizational capability in the competency area. Serves as a key resource for that competency and is recognized within the entire organization.
- **Behavioral Competencies**
- Domain Knowledge
- Collaborative working
- Problem solving and decision making
- Attention to Detail
- Execution Excellence
- Stakeholder Management
- Client (Internal) Centricity
- Effective Communication
**Deliver**
**No.**
**Performance Parameter**
**Measure**
1.
Process
No. of cases resolved per day, compliance to process and quality standards, meeting process level SLAs, Pulse score, Customer feedback, NSAT/ ESAT
2.
Team Management
Productivity, efficiency, absenteeism
3.
Capability development
Triages completed, Technical Test performance
**Role Purpose**
- The purpose of the role is to support process delivery by ensuring daily performance of the Production Specialists, resolve technical escalations and develop technical capability within the Production Specialists. _
**Do**
- **Oversee and support process by reviewing daily transactions on performance parameters**
- _Review performance dashboard and the scores for the team_
- _Support the team in improving performance parameters by providing technical support and process guidance _
- _Record, track, and document all queries received, problem
- solving steps taken and total successful and unsuccessful resolutions _
- _Ensure standard processes and procedures are followed to resolve all client queries_
- _Resolve client queries as per the SLA’s defined in the contract _
- _Develop understanding of process/ product for the team members to facilitate better client interaction and troubleshooting _
- _Document and analyze call logs to spot most occurring trends to prevent future problems_
- _Identify red flags and escalate serious client issues to Team leader in cases of untimely resolution_
- _Avoids legal challenges by monitoring compliance with service agreements_
- **Handle technical escalations through effective diagnosis and troubleshooting of client queries**
- _Manage and resolve technical roadblocks/ escalations as per SLA and quality requirements _
- _If unable to resolve the issues, timely escalate the issues to TA & SES_
- _Provide product support and resolution to clients by performing a question diagnosis while guiding users through step-by-step solutions _
- _Troubleshoot all client queries in a user-friendly, courteous and professional manner_
- _Offer alternative solutions to clients (where appropriate) with the objective of retaining customers’ and clients’ business _
- _Organize ideas and effectively communicate oral messages appropriate to listeners and situations_
- _Follow up and make scheduled call backs to customers to record feedback and ensure compliance to contract SLA’s_
- **Build people capability to ensure operational excellence and maintain superior customer service levels of the existing account/client**
- _Mentor and guide Production Specialists on improving technical knowledge_
- _Collate trainings to be conducted as triage to bridge the skill gaps identified through interviews with the Production Specialist _
- _Develop and conduct trainings (Triages) within products for production specialist as per target_
- _Inform client about the triages being conducted_
- _Undertake product trainings to stay current with product features, changes and updates_
- _Enroll in product specific and any other trainings per client requirements/recommendations_
- _Identify and document most common problems and recommend appropriate resolutions to the team_
- _Update job knowledge by participating in self learning opportunities and maintaining personal networks_
**Stakeholder Interaction**
***
**Stakeholder Type**
**Stakeholder Identification**
**Purpose of Interaction**
**Internal**
- Team Leaders_
- Performance review_
- HR- Hiring and employee engagement and retention_
- TA, SEs_
- Escalation and issue resolution_
- Production Specialist_
- Training, issue escalation/ resolution_
**External**
- Client_
- Query Resolution_
**Display**
Lists the competencies required to perform this role effectively:
- **Functional Competencies/ Skill**
- Process Knowledge - Knowledge of assigned process, tools and systems - **Competent**
**Competency Levels**
**Foundation**
Knowledgeable about the competency requirements. Demonstrates (in parts) frequently with mínimal support and guidance.
**Competent**
Consistently demonstrates the full range of the competency without guidance. Extends the competency to difficult and unknown situations as well.
**Expert**
Applies the competency in all situations and is serves as a guide to others as well.
**Master**
Coaches others and builds organizational capability in the competency area. Serves as a key resource for that competency and is recognized within the entire organization.
- **Behavioral Competencies**
- Domain Knowledge
- Collaborative working
- Problem solving and decision making
- Attention to Detail
- Execution Excellence
- Stakeholder Management
- Client (Internal) Centricity
- Effective Communication
**Deliver**
**No.**
**Performance Parameter**
**Measure**
1.
Process
No. of cases resolved per day, compliance to process and quality standards, meeting process level SLAs, Pulse score, Customer feedback, NSAT/ ESAT
2.
Team Management
Productivity, efficiency, absenteeism
3.
Capability development
Triages completed, Technical Test performance
This advertiser has chosen not to accept applicants from your region.
2
Incident Response Lead
Ralliant
Posted today
Job Viewed
Job Description
**Position Overview:**
Ralliant is seeking a skilled **Security Operations Lead** based in India to lead international response operations and SOC mission. This role combines **incident command, response coaching** , and **technical depth** across detection and response, with a strong focus on MSSP oversight and continuous improvement. The ideal candidate brings deep experience in incident command, advanced triage/investigation skills, and the ability to communicate and report with clarity and impact.
**Key Responsibilities:**
+ Serve as **global incident commander** , driving incident response lifecycle activities including triage, containment, forensics, recovery, and lessons learned.
+ Lead and coordinate efforts across **multiple MSSP structures** :
+ A **managed defend and respond partner** delivering 24x7 coverage
+ A **staff augmentation-based MSSP** providing tiered security analyst resources.
+ Act as the **chief coach** for analysts across both in-house and partner-sourced teams-guiding investigation depth, alert tuning, and incident retrospectives.
+ Manage and report on **SOC performance metrics, SLAs, and KPIs** -focusing on mean time to detect (MTTD), mean time to respond (MTTR), false positive rates, and threat detection coverage.
+ Drive accountability and continuous improvement through **regular reporting** , operational dashboards, and escalation reviews to security leadership.
+ Leverage deep knowledge of **CrowdStrike Falcon** (EDR, Identity, Forensics) to validate detection effectiveness and lead incident investigations.
+ Support integration, optimization, and effective use of **CrowdStrike SIEM/LogScale** for advanced log correlation, threat hunting, and alert fidelity.
+ Ensure high-quality documentation and communication during incidents-including executive summaries, impact analysis, and regulatory reporting alignment (e.g., SOX, NIST 800-171).
+ Maintain and evolve incident playbooks and threat detection use cases in alignment with MITRE ATT&CK and emerging threat intelligence.
+ Actively participate in global cybersecurity strategy sessions and coordinate with peers across IT, GRC, and engineering to ensure defense-in-depth posture.
**Qualifications:**
+ 8+ years in security operations, incident response, or threat detection roles.
+ 3+ years managing or coordinating workstreams from MSSPs or staff augmentation models.
+ Strong experience in global incident command with a focus on collaboration, triage efficiency, and structured decision-making.
+ Hands-on expertise with **CrowdStrike Falcon** suite and familiarity with **CrowdStrike LogScale/SIEM** highly desirable.
+ Demonstrated ability to develop and track SOC **performance metrics** and drive data-informed decisions.
+ Deep investigative skillset including root cause analysis, endpoint/network forensics, and adversary behavior tracking.
+ Excellent written and verbal communication skills, especially for incident documentation and stakeholder briefings.
+ Familiarity with security frameworks (NIST, MITRE ATT&CK) and compliance domains (SOX, ITAR, NIST 800-171).
**Preferred Certifications:**
+ **CISSP, GCIH, GCFA, GCIA** , or similar relevant credentials.
+ Practical experience with log correlation platforms and case management tools (e.g., ServiceNow, Jira).
**Ralliant Overview**
Every day, engineers transform scientific potential into real-world impact, reshaping how we live and work. At this pivotal moment in technology, Fortive is creating a focused, standalone company poised to capitalize on powerful long-term trends with mission critical technologies advancing an electrified and digital future. Our team of scientists, engineers, and technologists is joining forces to pioneer solutions that will shape the future of industry.
Introducing Ralliant Corporation, a global technology company uniting trusted brands solving tough challenges to speed breakthroughs at leading companies, research institutions, and governments, across the semiconductor/communications/diversified electronics, industrial manufacturing, utilities, and aero, defense, and space industries.
Ralliant is fueled by a global team of changemakers, committed to continuous improvement and a strong culture rooted in disciplined execution. For more information please visit: Corporation Overview**
Ralliant, originally part of Fortive, now stands as a bold, independent public company driving innovation at the forefront of precision technology. With a global footprint and a legacy of excellence, we empower engineers to bring next-generation breakthroughs to life - faster, smarter, and more reliably. Our high-performance instruments, sensors, and subsystems fuel mission-critical advancements across industries, enabling real-world impact where it matters most. At Ralliant we're building the future, together with those driven to push boundaries, solve complex problems, and leave a lasting mark on the world.
**Bonus or Equity**
This position is also eligible for bonus and equity as part of the total compensation package.
Ralliant is seeking a skilled **Security Operations Lead** based in India to lead international response operations and SOC mission. This role combines **incident command, response coaching** , and **technical depth** across detection and response, with a strong focus on MSSP oversight and continuous improvement. The ideal candidate brings deep experience in incident command, advanced triage/investigation skills, and the ability to communicate and report with clarity and impact.
**Key Responsibilities:**
+ Serve as **global incident commander** , driving incident response lifecycle activities including triage, containment, forensics, recovery, and lessons learned.
+ Lead and coordinate efforts across **multiple MSSP structures** :
+ A **managed defend and respond partner** delivering 24x7 coverage
+ A **staff augmentation-based MSSP** providing tiered security analyst resources.
+ Act as the **chief coach** for analysts across both in-house and partner-sourced teams-guiding investigation depth, alert tuning, and incident retrospectives.
+ Manage and report on **SOC performance metrics, SLAs, and KPIs** -focusing on mean time to detect (MTTD), mean time to respond (MTTR), false positive rates, and threat detection coverage.
+ Drive accountability and continuous improvement through **regular reporting** , operational dashboards, and escalation reviews to security leadership.
+ Leverage deep knowledge of **CrowdStrike Falcon** (EDR, Identity, Forensics) to validate detection effectiveness and lead incident investigations.
+ Support integration, optimization, and effective use of **CrowdStrike SIEM/LogScale** for advanced log correlation, threat hunting, and alert fidelity.
+ Ensure high-quality documentation and communication during incidents-including executive summaries, impact analysis, and regulatory reporting alignment (e.g., SOX, NIST 800-171).
+ Maintain and evolve incident playbooks and threat detection use cases in alignment with MITRE ATT&CK and emerging threat intelligence.
+ Actively participate in global cybersecurity strategy sessions and coordinate with peers across IT, GRC, and engineering to ensure defense-in-depth posture.
**Qualifications:**
+ 8+ years in security operations, incident response, or threat detection roles.
+ 3+ years managing or coordinating workstreams from MSSPs or staff augmentation models.
+ Strong experience in global incident command with a focus on collaboration, triage efficiency, and structured decision-making.
+ Hands-on expertise with **CrowdStrike Falcon** suite and familiarity with **CrowdStrike LogScale/SIEM** highly desirable.
+ Demonstrated ability to develop and track SOC **performance metrics** and drive data-informed decisions.
+ Deep investigative skillset including root cause analysis, endpoint/network forensics, and adversary behavior tracking.
+ Excellent written and verbal communication skills, especially for incident documentation and stakeholder briefings.
+ Familiarity with security frameworks (NIST, MITRE ATT&CK) and compliance domains (SOX, ITAR, NIST 800-171).
**Preferred Certifications:**
+ **CISSP, GCIH, GCFA, GCIA** , or similar relevant credentials.
+ Practical experience with log correlation platforms and case management tools (e.g., ServiceNow, Jira).
**Ralliant Overview**
Every day, engineers transform scientific potential into real-world impact, reshaping how we live and work. At this pivotal moment in technology, Fortive is creating a focused, standalone company poised to capitalize on powerful long-term trends with mission critical technologies advancing an electrified and digital future. Our team of scientists, engineers, and technologists is joining forces to pioneer solutions that will shape the future of industry.
Introducing Ralliant Corporation, a global technology company uniting trusted brands solving tough challenges to speed breakthroughs at leading companies, research institutions, and governments, across the semiconductor/communications/diversified electronics, industrial manufacturing, utilities, and aero, defense, and space industries.
Ralliant is fueled by a global team of changemakers, committed to continuous improvement and a strong culture rooted in disciplined execution. For more information please visit: Corporation Overview**
Ralliant, originally part of Fortive, now stands as a bold, independent public company driving innovation at the forefront of precision technology. With a global footprint and a legacy of excellence, we empower engineers to bring next-generation breakthroughs to life - faster, smarter, and more reliably. Our high-performance instruments, sensors, and subsystems fuel mission-critical advancements across industries, enabling real-world impact where it matters most. At Ralliant we're building the future, together with those driven to push boundaries, solve complex problems, and leave a lasting mark on the world.
**Bonus or Equity**
This position is also eligible for bonus and equity as part of the total compensation package.
This advertiser has chosen not to accept applicants from your region.
3
Incident Response, Cybersecurity
Bengaluru, Karnataka
Carrier
Posted today
Job Viewed
Job Description
**Job Description**
**Role:** Incident Response Analyst
**Location:** Bangalore
**Full/ Part time:** Full time
**Build a career with confidence**
Carrier Global Corporation, global leader in intelligent climate and energy solutions is committed to creating solutions that matter for people and our planet for generations to come. From the beginning, we've led in inventing new technologies and entirely new industries. Today, we continue to lead because we have a world-class, diverse workforce that puts the customer at the center of everything we do
**About the Role:**
The Incident Response Analyst will play a critical role in safeguarding Carrier by swiftly identifying, investigating, and responding to cybersecurity incidents. Utilizing a strong understanding of threat detection and incident handling, the analyst will collaborate closely with other stakeholders to contain threats, minimize damage, implement preventive measures, and use lessons learned to enhance Carrier's security posture.
**Key Responsibilities**
+ Respond to security incidents promptly and effectively, following established incident response procedures.
+ Monitor and analyze security events and alerts to identify potential security incidents.
+ Conduct thorough investigations of security incidents to determine the root cause and impact.
+ Collaborate with other teams to contain and remediate security incidents.
+ Document and report on security incidents, including the actions taken and lessons learned.
+ Perform regular threat hunting activities to identify potential security threats and vulnerabilities.
+ Stay current with the latest cybersecurity trends, threats, and technologies.
+ Create and maintain documentation, training, playbooks, and work products.
+ Drive continuous improvement using Carrier Excellence.
**Requirements**
+ Bachelor's degree in Computer Science, Information Security, or a related field.
+ 10+ years of experience in a cybersecurity or incident response role.
**Preferred Qualifications**
+ Strong knowledge of tools and technologies (e.g., SIEM, IDS/IPS, EDR, firewall).
+ Experience with log analysis.
+ Experience with incident response methodologies and frameworks (e.g., NIST, SANS).
+ Familiarity with common attack vectors and techniques (e.g., phishing, malware, ransomware).
+ Excellent analytical and problem-solving skills.
+ Strong communication and interpersonal skills.
+ Ability to work independently and as part of a team.
+ Understanding of the Lockheed Martin Cyber Kill Chain and Mitre Att&CK framework
+ Experience with digital forensics and malware analysis.
+ Knowledge of network protocols and security architecture.
+ Familiarity with cloud security and incident response in cloud environments.
+ Experience with scripting and automation (e.g., Python, PowerShell, BASH).
+ One of the following certifications: CompTIA CSCP|CNSP; GCIH, GCIA, GCFA, GMON
**Benefits**
We are committed to offering competitive benefits programs for all of our employees, and enhancing our programs when necessary.
+ Make yourself a priority with flexible schedules, parental leave
+ Drive forward your career through professional development opportunities
+ Achieve your personal goals with our Employee Assistance Programme
**Our commitment to you**
Our greatest assets are the expertise, creativity and passion of our employees. We strive to provide a great place to work that attracts, develops and retains the best talent, promotes employee engagement, fosters teamwork and ultimately drives innovation for the benefit of our customers. We strive to create
an environment where you feel that you belong, with diversity and inclusion as the engine to growth and innovation. We develop and deploy best-in-class programs and practices, providing enriching career opportunities, listening to employee feedback and always challenging ourselves to do better. This is The Carrier Way.
Join us and make a difference.
Apply Now!
.
**Carrier is An Equal** **Opportunity/Affirmative** **Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age or any other federally protected class.**
**Job Applicant's Privacy Notice:**
Click on this link ( to read the Job Applicant's Privacy Notice
**Role:** Incident Response Analyst
**Location:** Bangalore
**Full/ Part time:** Full time
**Build a career with confidence**
Carrier Global Corporation, global leader in intelligent climate and energy solutions is committed to creating solutions that matter for people and our planet for generations to come. From the beginning, we've led in inventing new technologies and entirely new industries. Today, we continue to lead because we have a world-class, diverse workforce that puts the customer at the center of everything we do
**About the Role:**
The Incident Response Analyst will play a critical role in safeguarding Carrier by swiftly identifying, investigating, and responding to cybersecurity incidents. Utilizing a strong understanding of threat detection and incident handling, the analyst will collaborate closely with other stakeholders to contain threats, minimize damage, implement preventive measures, and use lessons learned to enhance Carrier's security posture.
**Key Responsibilities**
+ Respond to security incidents promptly and effectively, following established incident response procedures.
+ Monitor and analyze security events and alerts to identify potential security incidents.
+ Conduct thorough investigations of security incidents to determine the root cause and impact.
+ Collaborate with other teams to contain and remediate security incidents.
+ Document and report on security incidents, including the actions taken and lessons learned.
+ Perform regular threat hunting activities to identify potential security threats and vulnerabilities.
+ Stay current with the latest cybersecurity trends, threats, and technologies.
+ Create and maintain documentation, training, playbooks, and work products.
+ Drive continuous improvement using Carrier Excellence.
**Requirements**
+ Bachelor's degree in Computer Science, Information Security, or a related field.
+ 10+ years of experience in a cybersecurity or incident response role.
**Preferred Qualifications**
+ Strong knowledge of tools and technologies (e.g., SIEM, IDS/IPS, EDR, firewall).
+ Experience with log analysis.
+ Experience with incident response methodologies and frameworks (e.g., NIST, SANS).
+ Familiarity with common attack vectors and techniques (e.g., phishing, malware, ransomware).
+ Excellent analytical and problem-solving skills.
+ Strong communication and interpersonal skills.
+ Ability to work independently and as part of a team.
+ Understanding of the Lockheed Martin Cyber Kill Chain and Mitre Att&CK framework
+ Experience with digital forensics and malware analysis.
+ Knowledge of network protocols and security architecture.
+ Familiarity with cloud security and incident response in cloud environments.
+ Experience with scripting and automation (e.g., Python, PowerShell, BASH).
+ One of the following certifications: CompTIA CSCP|CNSP; GCIH, GCIA, GCFA, GMON
**Benefits**
We are committed to offering competitive benefits programs for all of our employees, and enhancing our programs when necessary.
+ Make yourself a priority with flexible schedules, parental leave
+ Drive forward your career through professional development opportunities
+ Achieve your personal goals with our Employee Assistance Programme
**Our commitment to you**
Our greatest assets are the expertise, creativity and passion of our employees. We strive to provide a great place to work that attracts, develops and retains the best talent, promotes employee engagement, fosters teamwork and ultimately drives innovation for the benefit of our customers. We strive to create
an environment where you feel that you belong, with diversity and inclusion as the engine to growth and innovation. We develop and deploy best-in-class programs and practices, providing enriching career opportunities, listening to employee feedback and always challenging ourselves to do better. This is The Carrier Way.
Join us and make a difference.
Apply Now!
.
**Carrier is An Equal** **Opportunity/Affirmative** **Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age or any other federally protected class.**
**Job Applicant's Privacy Notice:**
Click on this link ( to read the Job Applicant's Privacy Notice
This advertiser has chosen not to accept applicants from your region.
4
Incident Response Analyst
Bengaluru, Karnataka
Autodesk
Posted today
Job Viewed
Job Description
**Job Requisition ID #**
25WD88811
**Position Overview**
The Incident Response Analyst is responsible for monitoring, identifying, assessing, containing, and responding to various information security events in a large and complex environment, as well as analyze, triage, and report on these incidents and investigations. The candidate must have knowledge of system security design, network/cloud security best practices and in-depth knowledge of systems security operations, threat actors frequently used attack vectors, and general user behavior analytics. The candidate will be part of an established security team and work closely with teams across the company in remediating security issues and driving Incident Response. The candidate should have a strong passion for security and growth and be willing to accept challenging projects and incidents.
**Responsibilities**
+ Responsible for handling day-to day operations to monitor, identity, triage and investigate security events from various Endpoint (EDR), Network and Cloud security tools and detect anomalies, and report remediation actions
+ Analyze firewall logs, server, and application logs to investigate events and incidents for anomalous activity and produce reports of findings
+ Conduct reviews and analysis of proxy logs, Microsoft Windows and Active Directory logs, and malicious code to identify, contain, eradicate, and ensure recovery from incidents
+ Help create and maintain process tools and documentation
+ Perform all stage of incident response from detection to postmortem
+ Collaborate with stakeholders in building and improving our Security Orchestration Platform
+ Clearly document notes for incidents in our case management solution
+ Perform basic forensics and malware analysis based on our playbooks and procedures
+ Responsible for working in a 24/7 environment, with shifts determined by business needs
+ Maintain a high level of confidentiality and Integrity
**Minimum Qualifications**
+ BS in Computer Science, Information Security, or equivalent professional experience
+ 2+ years of cyber security experience in incident response
+ Technical depth in one or more specialties including: Malware analysis, Host analysis and Digital forensics
+ Strong understanding of Security Operations and Incident Response process and practices
+ Experience performing security monitoring, response capabilities, log analysis and forensic tools
+ Strong understanding of operating systems including Windows, Linux and OSX
+ Experience with SIEM, SOAR, EDR, Network, AWS, and Azure security tools
+ Excellent critical thinking and analytical skills, organizational skills, and the ability to work as part of a team
+ Excellent verbal and written communication skills
+ Ability to design playbooks for responding to security incidents
+ Ability to support off-hours, weekends, and holidays if needed in support of incident response
**Preferred Qualifications**
+ Advanced interpersonal skills to effectively promote ideas and collaboration at various levels of the organization
+ One or more security-related certifications from any of the following organizations: GCIH, GCFE, GCFA, AWS, Azure Cloud security Certifications or equivalent is desired
#LI-PJ1
**Learn More**
**About Autodesk**
Welcome to Autodesk! Amazing things are created every day with our software - from the greenest buildings and cleanest cars to the smartest factories and biggest hit movies. We help innovators turn their ideas into reality, transforming not only how things are made, but what can be made.
We take great pride in our culture here at Autodesk - our Culture Code is at the core of everything we do. Our values and ways of working help our people thrive and realize their potential, which leads to even better outcomes for our customers.
When you're an Autodesker, you can be your whole, authentic self and do meaningful work that helps build a better future for all. Ready to shape the world and your future? Join us!
**Salary transparency**
Salary is one part of Autodesk's competitive compensation package. Offers are based on the candidate's experience and geographic location. In addition to base salaries, we also have a significant emphasis on discretionary annual cash bonuses, commissions for sales roles, stock or long-term incentive cash grants, and a comprehensive benefits package.
**Diversity & Belonging**
We take pride in cultivating a culture of belonging and an equitable workplace where everyone can thrive. Learn more here: you an existing contractor or consultant with Autodesk?**
Please search for open jobs and apply internally (not on this external site).
25WD88811
**Position Overview**
The Incident Response Analyst is responsible for monitoring, identifying, assessing, containing, and responding to various information security events in a large and complex environment, as well as analyze, triage, and report on these incidents and investigations. The candidate must have knowledge of system security design, network/cloud security best practices and in-depth knowledge of systems security operations, threat actors frequently used attack vectors, and general user behavior analytics. The candidate will be part of an established security team and work closely with teams across the company in remediating security issues and driving Incident Response. The candidate should have a strong passion for security and growth and be willing to accept challenging projects and incidents.
**Responsibilities**
+ Responsible for handling day-to day operations to monitor, identity, triage and investigate security events from various Endpoint (EDR), Network and Cloud security tools and detect anomalies, and report remediation actions
+ Analyze firewall logs, server, and application logs to investigate events and incidents for anomalous activity and produce reports of findings
+ Conduct reviews and analysis of proxy logs, Microsoft Windows and Active Directory logs, and malicious code to identify, contain, eradicate, and ensure recovery from incidents
+ Help create and maintain process tools and documentation
+ Perform all stage of incident response from detection to postmortem
+ Collaborate with stakeholders in building and improving our Security Orchestration Platform
+ Clearly document notes for incidents in our case management solution
+ Perform basic forensics and malware analysis based on our playbooks and procedures
+ Responsible for working in a 24/7 environment, with shifts determined by business needs
+ Maintain a high level of confidentiality and Integrity
**Minimum Qualifications**
+ BS in Computer Science, Information Security, or equivalent professional experience
+ 2+ years of cyber security experience in incident response
+ Technical depth in one or more specialties including: Malware analysis, Host analysis and Digital forensics
+ Strong understanding of Security Operations and Incident Response process and practices
+ Experience performing security monitoring, response capabilities, log analysis and forensic tools
+ Strong understanding of operating systems including Windows, Linux and OSX
+ Experience with SIEM, SOAR, EDR, Network, AWS, and Azure security tools
+ Excellent critical thinking and analytical skills, organizational skills, and the ability to work as part of a team
+ Excellent verbal and written communication skills
+ Ability to design playbooks for responding to security incidents
+ Ability to support off-hours, weekends, and holidays if needed in support of incident response
**Preferred Qualifications**
+ Advanced interpersonal skills to effectively promote ideas and collaboration at various levels of the organization
+ One or more security-related certifications from any of the following organizations: GCIH, GCFE, GCFA, AWS, Azure Cloud security Certifications or equivalent is desired
#LI-PJ1
**Learn More**
**About Autodesk**
Welcome to Autodesk! Amazing things are created every day with our software - from the greenest buildings and cleanest cars to the smartest factories and biggest hit movies. We help innovators turn their ideas into reality, transforming not only how things are made, but what can be made.
We take great pride in our culture here at Autodesk - our Culture Code is at the core of everything we do. Our values and ways of working help our people thrive and realize their potential, which leads to even better outcomes for our customers.
When you're an Autodesker, you can be your whole, authentic self and do meaningful work that helps build a better future for all. Ready to shape the world and your future? Join us!
**Salary transparency**
Salary is one part of Autodesk's competitive compensation package. Offers are based on the candidate's experience and geographic location. In addition to base salaries, we also have a significant emphasis on discretionary annual cash bonuses, commissions for sales roles, stock or long-term incentive cash grants, and a comprehensive benefits package.
**Diversity & Belonging**
We take pride in cultivating a culture of belonging and an equitable workplace where everyone can thrive. Learn more here: you an existing contractor or consultant with Autodesk?**
Please search for open jobs and apply internally (not on this external site).
This advertiser has chosen not to accept applicants from your region.
5
Incident Response-L2
Pune, Maharashtra
SHI | Locuz - An SHI Company
Posted 8 days ago
Job Viewed
Job Description
Job Title: Incident Response L2
5Yrs+ hands on Exp. Ready to work for Rotational shifts.(24*7),
Location: Pune
Key Responsibilities
- To handle the daily monitoring of information security events.
- To function as an intrusion analyst by examining security events for context, appropriateness and criticality
- To act as an information security researcher to provide insight and understanding of new and existing information security threats
Key Operational Activities
- Daily checklists and tasks
- Log analysis and review
- Vulnerability management activities
- Alert analysis
- Investigation of suspicious security event activity
- Maintain and enforce adherence to corporate standards, policies and procedure
Please share your profile to
This advertiser has chosen not to accept applicants from your region.
Be The First To Know
About the latest Incident response Jobs in India !
6
Incident Response Manager
Karnataka, Karnataka
Deloitte
Posted 8 days ago
Job Viewed
Job Description
Your potential, unleashed.
India’s impact on the global economy has increased at an exponential rate and Deloitte presents an opportunity to unleash and realise your potential amongst cutting edge leaders, and organisations shaping the future of the region, and indeed, the world beyond.
At Deloitte, your whole self to work, every day. Combine that with our drive to propel with purpose and you have the perfect playground to collaborate, innovate, grow, and make an impact that matters.
The team
Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure, vigilant, and resilient—not only by looking at how to prevent and respond to attacks, but at how to manage cyber risk in a way that allows you to unleash new opportunities. Embed cyber risk at the start of strategy development for more effective management of information and technology risks
Your work profile
As Manager in our Cyber Team you’ll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations: -
Key Responsibilities :
The role requires providing expertise and leadership for Incident Response capabilities including good understanding of cyber incident forensics. It requires providing both subject matter expertise and project management experience to serve as the “point person” of client engagement in domain.
The candidate shall pertain efficient incident response and remediation skills to minimise the impact of cyber risks. The individual will oversee and support security monitoring operations team and assist them during security incidents and ensure incidents are managed and responded effectively including and reporting to stakeholders. This role primarily consists of leading team of the Incident responders, Incident managers and stakeholders (including client, vendors, etc.) and to conduct thorough response activities on behalf of a wide variety of clients across sectors.
Candidate is required to work in complex security environments and alongside SOC team to design, communicate and execute incident response, containment and remediation plans. Candidate is required to have hands-on experience of incident management and investigation tools and shall be comfortable leading teams on challenging engagements, communicating with clients, providing hands-on assistance with incident response activities, and creating and presenting high-quality deliverables.
Role:
- Incident Response Leader
- Strong experience in Digital Forensics, NIST, Malware Analyst, Manual Sandboxing, Malware reverse engineering, Redline REMNUX, Magnet AXIOM, ENCASE, Image file system analysis, Network forensic.
- Manage client engagements, with a focus on incident response and investigation. Provide both subject matter expertise and project management experience to serve as the “point person” for client engagements.
- Assist with client incident scoping call and participate in the incident from kick-off through full containment and remediation.
- Security Analytics - Efficiently distill actionable information from large data sets for reporting, hunting, and anomaly detection.
- Recommend and document specific countermeasures and mitigating controls with post incident analysis findings.
- Develop comprehensive and accurate reports and presentations for both technical and executive audiences.
- Conduct Digital Forensic and Incident Response (DFIR) analysis, network log and network PCAP analysis, malware triage, and other investigation related activities in support of Incident Response investigations.
- Supervise Digital Forensics and Incident Response staff and assisting with performance reviews and mentorship of cybersecurity professionals.
- Mature the Security Incident Response process to ensure it meets the needs of the Clients.
- Interact with Client’s CSIRT teams to cater continuous and/or ad-hoc client requests for Incident Response services.
- Possess the experience, credibility and integrity to perform as an expert witness.
- Involve in business development activities and supporting pre-sales teams in Identify, market, and develop new business opportunities.
- Assist with research and distribute cyber threat intelligence developed from Incident Response activities
- Research, develop and recommend infrastructure (hardware & software) needs for DFIR and evolve existing methodologies to enhance and improve our DFIR practice.
Skills required
- 8-14 years Information Security experience with at least 5 year of Incident Response experience.
- Solid understanding of MITRE ATT&CK, NIST cyber incident response framework and Cyber kill chain.
- Understanding of Threat Hunting and threat Intelligence concepts and technologies
- Experience of leveraging technical security solutions such as SIEM, IDS/IPS, EDR, vulnerability management or assessment, malware analysis, or forensics tools for incident triage and analysis.
- Deep experience with most common OS (Windows, MacOS, Linux, Android, iOS) and their file systems (ext3.4, NTFS, HFS+, APFS, exFAT etc)
- Proficiency with industry-standard forensic toolsets (i.e. EnCase, Axiom/IEF, Cellebrite/UFED, Nuix and FTK)
- Experience of enterprise level cloud infrastructure such as AWS, MS Azure, G Suite, O365 etc.
- Experience of malware analysis and understanding attack techniques.
- CISSP, ECIH v2, GCFA, GCIH, EnCE or equivalent DFIR certification.
- Ability to work in time-sensitive and complex situations with ease and professionalism, possess an efficient and versatile communication style.
- Good verbal and written communication skill, excellent interpersonal skills.
Abilities:
- Strong English verbal, written communication, report writing and presentations skills.
- Ability to multitask and prioritize work effectively.
- Responsive to challenging tasking.
- Highly motivated self-starter giving attention to detail.
- Strong analytical skills and efficient problem solving.
- Capable to operate in a challenging and fast-paced environment.
Location and way of working
- Base location: Bangalore, Hyderabad, Mumbai
Your role as Manager
We expect our people to embrace and live our purpose by challenging themselves to identify issues that are most important for our clients, our people, and for society.
In addition to living our purpose, Senior Executive across our organization must strive to be:
- Inspiring - Leading with integrity to build inclusion and motivation
- Committed to creating purpose - Creating a sense of vision and purpose
- Agile - Achieving high-quality results through collaboration and Team unity
- Skilled at building diverse capability - Developing diverse capabilities for the future
- Persuasive / Influencing - Persuading and influencing stakeholders
- Collaborating - Partnering to build new solutions
- Delivering value - Showing commercial acumen
- Committed to expanding business - Leveraging new business opportunities
- Analytical Acumen - Leveraging data to recommend impactful approach and solutions through the power of analysis and visualization
- Effective communication – Must be well abled to have well-structured and well-articulated conversations to achieve win-win possibilities
- Engagement Management / Delivery Excellence - Effectively managing engagement(s) to ensure timely and proactive execution as well as course correction for the success of engagement(s)
- Managing change - Responding to changing environment with resilience
- Managing Quality & Risk - Delivering high quality results and mitigating risks with utmost integrity and precision
- Strategic Thinking & Problem Solving - Applying strategic mindset to solve business issues and complex problems
- Tech Savvy - Leveraging ethical technology practices to deliver high impact for clients and for Deloitte
- Empathetic leadership and inclusivity - creating a safe and thriving environment where everyone's valued for who they are, use empathy to understand others to adapt our behaviours and attitudes to become more inclusive.
How you’ll grow
Connect for impact
Our exceptional team of professionals across the globe are solving some of the world’s most complex business problems, as well as directly supporting our communities, the planet, and each other. Know more in our Global Impact Report and our India Impact Report .
Empower to lead
You can be a leader irrespective of your career level. Our colleagues are characterised by their ability to inspire, support, and provide opportunities for people to deliver their best and grow both as professionals and human beings. Know more about Deloitte and our One Young World partnership.
Inclusion for all
At Deloitte, people are valued and respected for who they are and are trusted to add value to their clients, teams and communities in a way that reflects their own unique capabilities. Know more about everyday steps that you can take to be more inclusive. At Deloitte, we believe in the unique skills, attitude and potential each and every one of us brings to the table to make an impact that matters.
Drive your career
At Deloitte, you are encouraged to take ownership of your career. We recognise there is no one size fits all career path, and global, cross-business mobility and up / re-skilling are all within the range of possibilities to shape a unique and fulfilling career. Know more about Life at Deloitte.
Everyone’s welcome… entrust your happiness to us
Our workspaces and initiatives are geared towards your 360-degree happiness. This includes specific needs you may have in terms of accessibility, flexibility, safety and security, and caregiving. Here’s a glimpse of things that are in store for you.
This advertiser has chosen not to accept applicants from your region.
7
Incident Response Manager
beBeeKeyword
Posted today
Job Viewed
Job Description
Major Incident Resolution Specialist
We are seeking an experienced Major Incident Resolution Specialist to join our team. This role plays a critical part in ensuring the swift resolution of major incidents impacting business operations.
This position requires strong leadership and coordination skills, with the ability to drive major incident calls and manage communications with stakeholders.
The ideal candidate will have a solid understanding of ITIL processes and best practices for incident management.
This advertiser has chosen not to accept applicants from your region.
8