391 Security Intelligence jobs in India

Position Overview

The Incident Response Analyst is responsible for monitoring, identifying, assessing, containing, and responding to various information security events in a large and complex environment, as well as analyse, triage, and report on these incidents and investigations. The candidate must have knowledge of system security design, network/cloud security best practices and in-depth knowledge of systems security operations, threat actors frequently used attack vectors, and general user behaviour analytics. The candidate will be part of an established security team and work closely with teams across the company in remediating security issues and driving Incident Response. The candidate should have a strong passion for security and growth and be willing to accept challenging projects and incidents.

Responsibilities
 

Minimum Qualifications
 

Preferred Qualifications
 

#LI-PJ1

Learn More

About Autodesk

Welcome to Autodesk! Amazing things are created every day with our software – from the greenest buildings and cleanest cars to the smartest factories and biggest hit movies. We help innovators turn their ideas into reality, transforming not only how things are made, but what can be made.

We take great pride in our culture here at Autodesk – it’s at the core of everything we do. Our culture guides the way we work and treat each other, informs how we connect with customers and partners, and defines how we show up in the world.

When you’re an Autodesker, you can do meaningful work that helps build a better world designed and made for all. Ready to shape the world and your future? Join us!

Salary transparency

Diversity & Belonging
We take pride in cultivating a culture of belonging where everyone can thrive. Learn more here:

Are you an existing contractor or consultant with Autodesk?

Please search for open jobs and apply internally (not on this external site).

The Incident Response Analyst in the computer security incident response team will be responsible for developing and executing standards, procedures, and processes to uncover, resist and recover from security incidents. This position is for an early career analyst that will learn and grow throughout their security career. This is a very technically challenging career track in cyber security and technical acumen, passion, and determination will be highlighted in the interview process.

Key Responsibilities

• The Incident Response Analyst fulfills the following tasks:

  • Responds to computer security incidents according to the computer security incident response policy and procedures.
  • Provides technical guidance to first responders for handling cybersecurity incidents.
  • Provides timely and relevant updates to appropriate stakeholders and decision makers.
  • Communicates investigation findings to relevant business units to help improve the cybersecurity posture.
  • Validates and maintains incident response plans and processes to address potential threats.
  • Compiles and analyzes data for management reporting and metrics.
  • Analyzes potential impact of new threats and communicates risks back to detection engineering functions.
  • Performs root-cause analysis to document findings and participate in root-cause elimination activities as required.
  • Triages and assesses the risk of incidents, performing real-time analysis and managing workload during investigations/incidents.
  • Creates runbooks for frequently occurring incidents to automate or at least assist with the resolution of those cases.

Management Responsibilities

Individual Contributor

Preferred Qualifications

A successful Incident Response Analyst candidate will have the expertise and skills described below.

Education, Training and Past Experience

Candidates will be evaluated primarily on their ability to demonstrate the competencies required to be successful in the role, as described above.

• BE/BTech, BS or MA in computer science, information security or a related field.

  Bachelor's Degree (in Business, Technology, Computer Science or related field), preferred or equivalent experience.

• Candidate must have 5 years of experience in incident response.
• Familiarity with incident response frameworks and methodologies, including frameworks like NIST 800-61 and MITRE ATT&CK.
• Experience with incident response tools and technologies, including tools for security information and event management (SIEM), forensics, and/or threat intelligence even in a lab environment is beneficial.
• Experience with reporting and communicating incident details, improving incident response processes and recovering from security incidents is beneficial.

Minimum Qualifications

Candidates will be evaluated based on their ability to perform the duties listed above while demonstrating the skills and competencies necessary to be highly effective in the role. These skills and competencies include:

• Ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily understood, authoritative and actionable manner.
• Understands organizational mission, values, goals, and consistent application of this knowledge.
• Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one
• Ability to effectively influence others to modify their opinions, plans, or behaviors.
• A team-focused mentality, with the proven ability to work effectively with diverse stakeholders.
• Strong problem-solving and troubleshooting skills.

All applicants must be able to complete pre-employment onboarding requirements (if selected) which may include any/all of the following: criminal/civil background check, drug screen, and motor vehicle records search, in compliance with any applicable laws and regulations.

#LI-IB2

Certifications

Contact Compensation

Work Environment/Physical Demands

Typical office environment

Competencies

Salary Plan

ITS: Information Technology Service

Job Grade

004

BVH, Inc., its subsidiaries and its affiliated companies, complies with all Equal Employment Opportunity (EEO) affirmative action laws and regulations. Black & Veatch does not discriminate on the basis of age, race, religion, color, sex, national origin, marital status, genetic information, sexual orientation, gender Identity and expression, disability, veteran status, pregnancy status or other status protected by law.

Black & Veatch is committed to being an employer of choice by creating a valuable work experience that keeps our people engaged, productive, safe and healthy. We offer professionals an array of health and welfare benefits that vary based on their geographic region and employment status. This may include health, life accident and disability insurances, paid time off, financial programs and more. Professionals may also be eligible for a performance-based bonus program.

By valuing diverse voices and perspectives, we cultivate an authentically inclusive environment for professionals and are able to provide innovative and effective solutions for clients.

Roles & Responsibilities:

• Have over 10+ years of rich experience in information security domain and at least 6-8 years of dedicated experience in Security Incident Response.
• Hands on experience in implementing and operationalizing SIEM/SOAR tools such as Sentinel, ArcSight etc.
• Experience in defining and reporting KPIs for Security Incident response.
• Familiarity with advanced SOC monitoring technologies, risk, threat and security measures.
• Knowledge across the SOC domains including governance, control frameworks, policies, compliance management, risk management and incident response etc.
• Comprehensive knowledge of regulatory and compliance requirements and how they influence the bank's Information Security strategy.
• Preferably worked in BFSI domain with proven experience in SOC function.
• Strong understanding of key security standards and regulations such as NIST 800-61, CERT/CC, PCI, ISO 27035 etc.

Skills and Application

• Leads the development and implementation of comprehensive Security Governance strategies that address identified risks and compliance requirements, incorporating advanced technologies and methodologies to enhance security posture.
• Deep understanding of Security Incident response frameworks and their application in creating robust policies.
• Automate potential resilient security processes to ensure continuous compliance with security best practices.
• Maintaining up-to-date knowledge of security trends, threats, and countermeasures
• Assess and design security posture determination processes, tools and methodologies
• Reviewing and approving use cases/playbooks for SIEM/SOAR tools
• Continuously monitor security hygiene and performance using tools and processes
• Collaborate with other IS teams, Ops and tech teams on enhancing security incident response resilience

Other

• Knowledge of evolving advanced tech stacks and related control and risk universe from a SOC perspective.
• Knowledge and expertise in conducting risk assessment and management.
• The ideal candidate will have a technical or computer science degree.
• Professional certifications: GCIH, CISSP, CEH, FOR608, CISM etc.

Centific is a frontier AI data foundry that curates diverse, high-quality data, using our purpose-built technology platforms to empower the Magnificent Seven and our enterprise clients with safe, scalable AI deployment. Our team includes more than 150 PhDs and data scientists, along with more than 4,000 AI practitioners and engineers. We harness the power of an integrated solution ecosystem—comprising industry-leading partnerships and 1.8 million vertical domain experts in more than 230 markets—to create contextual, multilingual, pre-trained datasets; fine-tuned, industry-specific LLMs; and RAG pipelines supported by vector databases. Our zero-distance innovation™ solutions for GenAI can reduce GenAI costs by up to 80% and bring solutions to market 50% faster.

Our mission is to bridge the gap between AI creators and industry leaders by bringing best practices in GenAI to unicorn innovators and enterprise customers. We aim to help these organizations unlock significant business value by deploying GenAI at scale, helping to ensure they stay at the forefront of technological advancement and maintain a competitive edge in their respective markets.

About Job

• Role Title: Incident Response Engineer
• Role Overview: As an Incident Response Engineer at Centific, you will be responsible for handling and mitigating critical system incidents, ensuring minimal downtime and rapid recovery of services. This role involves working with cross-functional teams to detect, analyze, and resolve incidents efficiently. You will be required to improve incident handling processes, develop automated response strategies, and maintain documentation of all incidents and resolutions. Your expertise in managing real-time operational incidents and post-incident analysis will play a critical role in maintaining system stability and business continuity.
• This is a hands-on role that requires deep knowledge of incident response frameworks, system troubleshooting, security monitoring, and automated remediation.
• Key Responsibilities:
• Incident Detection & Monitoring:
• Implement real-time incident detection using tools like PagerDuty/Opsgenie/VictorOps for on-call alerting and escalations.
• Monitor system health, logs, and telemetry using Splunk/Elastic Stack (ELK)/Sentry/Grafana Loki to identify early warning signs of system failures.
• Configure and fine-tune SIEM solutions (Splunk/Graylog/Wazuh) for log-based security and operational threat detection.

Why Join Centific

• High-Impact Role: Be at the forefront of mitigating critical system incidents and ensuring business continuity.
• Cutting-Edge Technology: Work with modern automation, monitoring, and security tools.
• Global Exposure: Collaborate with teams supporting enterprise-scale infrastructure worldwide.
• Career Growth: Access to security certifications, SRE training, and industry-leading upskilling programs.
• Work-Life Balance: Hybrid work model, shift flexibility, and wellness programs.
• Skills:
• Ability to remain calm under pressure and manage incidents in high-stress environments.
• Ownership and accountability in resolving incidents from detection to closure, including post-mortem analysis.
• Strong coordination skills to communicate incident status clearly with engineers, leadership, and external teams.
• Process-oriented thinking to follow structured incident response playbooks and continuously improve workflows.
• Ability to make rapid decisions in time-sensitive scenarios to minimize downtime and mitigate risks.
• Good-to-have Qualifications:
• Certifications: GIAC Certified Incident Handler (GCIH), AWS Certified Security Specialist, or Certified Information Systems Security Professional (CISSP).
• Threat Hunting & Detection: Knowledge of MITRE ATT&CK framework and threat intelligence integration.
• Chaos Engineering: Hands-on experience with Gremlin/LitmusChaos for incident testing and resilience validation.
• Network Troubleshooting: Understanding of packet analysis, firewall logs, and intrusion detection systems (IDS/IPS).
• Disaster Recovery Planning: Experience in business continuity planning and disaster recovery (BCP/DR) testing.

Must-Have Qualifications:

• Education: Bachelor's or Master's degree in Computer Science, Engineering, or a related field.
• Experience: 3+ years of hands-on experience in incident response, system monitoring, and operational troubleshooting.
• Monitoring & Alerting Expertise: Proficiency with PagerDuty/Opsgenie/VictorOps/Splunk/Elastic Stack (ELK)/Sentry/Grafana Loki.
• Incident Response & RCA: Experience conducting root cause analysis (RCA) and post-mortem reviews.
• Automation & Scripting: Hands-on experience with Python/Bash/Ansible to develop automation scripts for incident resolution.
• Security Incident Handling: Familiarity with SIEM tools (Splunk/Graylog/Wazuh) and forensic analysis tools (TheHive/Velociraptor).
• CI/CD & Incident Remediation: Understanding of automated rollback strategies, self-healing systems, and deployment remediation.

Collaboration & Training:

• Coordinate incident response drills and tabletop exercises to improve team readiness.
• Train operational teams in incident detection, escalation, and response best practices.
• Work closely with SRE, DevOps, and Observability Engineers to optimize response workflows and improve system observability.
• Ensure compliance such as GDPR, HIPAA, and ISO 27001 standards in incident handling and logging.
• Implement threat intelligence feeds to stay ahead of emerging security threats.
• Security Incident Response & Compliance:
• Work with security teams to investigate and mitigate security-related incidents.
• Conduct forensic analysis on compromised systems and logs using TheHive/Velociraptor/Splunk SOAR.
• Automated Remediation & Incident Prevention:
• Develop self-healing automation using Ansible/Python/Bash to proactively remediate common failures.
• Implement automated rollback and recovery mechanisms within CI/CD pipelines to reduce impact during deployments.
• Integrate AI-driven anomaly detection to proactively detect and prevent potential failures before they escalate.
• Test and deploy chaos engineering tools (Gremlin/LitmusChaos) to validate system resilience under stress conditions.
• Root Cause Analysis & Post-Incident Review:
• Conduct post-mortem analysis and root cause analysis (RCA) for all major incidents.
• Work closely with SRE and security teams to identify persistent failure patterns and recommend long-term fixes.
• Document all incident reports, mitigation steps, and RCA findings to enhance organizational learning and incident prevention.
• Improve incident classification to differentiate between operational failures, security breaches, and performance degradation.
• Incident Response & Mitigation:
• Respond to critical incidents in a 24/7 shift rotation, ensuring minimal downtime and quick service recovery.
• Follow standardized Incident Response Playbooks to handle various system failures, security incidents, and infrastructure outages.
• Develop and maintain incident triage and escalation processes, ensuring clear handoffs between teams.
• Implement runbook automation to execute predefined mitigation steps for common incidents.