44 Soar Automation Jobs

Job Description The Opportunity Based in Hyderabad, join a global healthcare biopharma company and be part of a 130- year legacy of success backed by ethical integrity, forward momentum, and an inspiring mission to achieve new milestones in global healthcare. Be part of an organisation driven by digital technology and data-backed approaches that support a diversified portfolio of prescription medicines, vaccines, and animal health products. Drive innovation and execution excellence. Be a part of a team with passion for using data, analytics, and insights to drive decision-making, and which creates custom software, allowing us to tackle some of the world's greatest health threats. Our Technol...

Bloom Energy, a solid oxide fuel cell company, is currently expanding its cybersecurity incident monitoring and response team and is looking for Security Operations Center (SoC) Analysts. The person working in the SOC team operates the security monitoring solutions, reacting timely to security events as identified. This individual should be a dynamic professional who is looking for a rewarding future in one of todays most exciting security technologies Roles: As our Security Engineer and SOC Operations Analyst, you will be part of a SOC team and cover broad aspects of Bloom Energy Security Engineering, Cyber Security monitoring and incident response operations. Working closely with SOC Manag...

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Information and Event Management (SIEM) Good to have skills : NA Minimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve col...

Key Responsibilities 1. Security Operations & Monitoring Manage and monitor Endpoint security, EDR (Crowdstrike), SIEM, and SOAR platforms for threat detection, correlation, and automated response. Create and design Rule , Policies and Paybooks, manage SoC operation Conduct threat hunting exercises using MITRE ATT&CK framework and CVE intelligence. Manage and monitor Data Loss Prevention (DLP) solutions, endpoint protection, and log monitoring tools. Analyze suspicious activity, perform incident response, root cause analysis, and prepare post-incident reports. 2. Vulnerability & Risk Management Perform Vulnerability Assessment and Penetration Testing (VAPT) on applications, networks, and inf...

Role & responsibilities Should have minimum 4+ years of experience in managing and operating Palo Alto XSIAM Log Source Onboarding : Onboard and troubleshoot log sources (on-premises and cloud) to the XSIAM platform using syslog, APIs, and other mechanisms. Ensure data integrity, reliability, and proper formatting. Log Management: Hands-on experience with log collection, parsing, and analysis from various sources (e.g., firewalls, endpoints, cloud environments). Strong defensive mindset with understanding of security events of interest for building detection rules Good in query languages like XQL . Advanced threat intelligence with the help of XQL. Should have advanced knowledge on use case ...

____________________________________________________________________________ - PLEASE SAVE WHATSAPP # +91 98114 11414 (Ashima)/ 9315248639 (Nishant) - Ashima/ Nishant/Shreedevi is your POC from RexOreo Pvt Ltd. -Queries : All emails will come from id : team@rexoreo.com , so please keep an eye. _____________________________________________________________________________ Top Selection & Auto Elimination Criteria: Only Delhi NCR Candidates Need to apply as we need Only Immediate joiners (0-30 days) Rotational Shift Cab facility : Yes only late night pick or drop(1 side only for Gurgaon Employees) Location : Gurgaon Mode : 5 days work from Office only Relevant experience range 9+ Position : L3 ...

How you'll make an impact Experience of implementation and development of SOAR solutions like Swimlane, Cortex XSOAR, Tines, devo, Exabeam SOAR, Splunk SOAR etc The primary purpose of this role is to act as the orchestration strategist in identifying incident response activity where mitigating controls would be automated. This is accomplished in a four pronged approach: Identify mitigating controls through repetitive manual processes within the SOC Analyst community that complies with client security policy and industry best practices In concert with Data Scientists, within the "Proactive Hunting" process, translate complex, and non-complex Incident Response event patterns into an automated ...

Senior SOAR Developer Location : Hyderabad Position Summary We are seeking a highly skilled and experienced Senior SOAR Developer to join our cybersecurity team. This role is crucial for advancing our security posture through the development and maintenance of automated security workflows and playbooks. The ideal candidate will have extensive experience with SOAR platforms, a deep understanding of the security domain, and expert-level proficiency in Python. This is a technical leadership role that requires both hands-on development and the ability to mentor and collaborate with other security professionals. Key Responsibilities SOAR Development & Engineering : Design, develop, and maintain a...

* Responsible for implementation partner to see project on track along with providing required reports to management and client * Handle the project as well as BAU operations while ensuring high level of systems security compliance * Coordinate with and act as an authority to resolve incidents by working with other information security specialists to correlate threat assessment data. * Analyse data, such as logs or packets captures, from various sources within the enterprise and draw conclusions regarding past and future security incidents. * Ready to support for 24/7 environment. Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional exp...

WHO WE ARE: Zinnia is the leading technology platform for accelerating life and annuities growth. With innovative enterprise solutions and data insights, Zinnia simplifies the experience of buying, selling, and administering insurance products. All of which enables more people to protect their financial futures. Our success is driven by a commitment to three core values: be bold, team up, deliver value and that we do. Zinnia has over $180 billion in assets under administration, serves 100+ carrier clients, 2500 distributors and partners, and over 2 million policyholders. WHO YOU ARE: As a Senior Cloud Security Engineer , you will leverage your development, security and architecture experienc...

Level: L2 Monitor and triage alerts from CrowdStrike Falcon and Microsoft Defender for Endpoint Investigate suspicious endpoint behavior and perform root cause analysis (RCA) Isolate and quarantine compromised endpoints, blacklist malicious indicators, and escalate complex threats to L3 Fine-tune EDR policies to reduce false positives and improve detection accuracy Perform regular policy reviews and implement configuration changes based on threat trends Coordinate with OEMs for technical support and version upgradesGenerate daily, weekly, and monthly reports on endpoint security posture Maintain SOPs, runbooks, and incident logs for audit and compliance Contribute to CXO dashboards and real-...

Level: L2 Monitor and triage alerts from CrowdStrike Falcon and Microsoft Defender for Endpoint Investigate suspicious endpoint behavior and perform root cause analysis (RCA) Isolate and quarantine compromised endpoints, blacklist malicious indicators, and escalate complex threats to L3 Fine-tune EDR policies to reduce false positives and improve detection accuracy Perform regular policy reviews and implement configuration changes based on threat trends Coordinate with OEMs for technical support and version upgradesGenerate daily, weekly, and monthly reports on endpoint security posture Maintain SOPs, runbooks, and incident logs for audit and compliance Contribute to CXO dashboards and real-...

Level: L2 Monitor and triage alerts from CrowdStrike Falcon and Microsoft Defender for Endpoint Investigate suspicious endpoint behavior and perform root cause analysis (RCA) Isolate and quarantine compromised endpoints, blacklist malicious indicators, and escalate complex threats to L3 Fine-tune EDR policies to reduce false positives and improve detection accuracy Perform regular policy reviews and implement configuration changes based on threat trends Coordinate with OEMs for technical support and version upgradesGenerate daily, weekly, and monthly reports on endpoint security posture Maintain SOPs, runbooks, and incident logs for audit and compliance Contribute to CXO dashboards and real-...

Level: L2 Monitor and triage alerts from CrowdStrike Falcon and Microsoft Defender for Endpoint Investigate suspicious endpoint behavior and perform root cause analysis (RCA) Isolate and quarantine compromised endpoints, blacklist malicious indicators, and escalate complex threats to L3 Fine-tune EDR policies to reduce false positives and improve detection accuracy Perform regular policy reviews and implement configuration changes based on threat trends Coordinate with OEMs for technical support and version upgradesGenerate daily, weekly, and monthly reports on endpoint security posture Maintain SOPs, runbooks, and incident logs for audit and compliance Contribute to CXO dashboards and real-...

Level: L2 Monitor and triage alerts from CrowdStrike Falcon and Microsoft Defender for Endpoint Investigate suspicious endpoint behavior and perform root cause analysis (RCA) Isolate and quarantine compromised endpoints, blacklist malicious indicators, and escalate complex threats to L3 Fine-tune EDR policies to reduce false positives and improve detection accuracy Perform regular policy reviews and implement configuration changes based on threat trends Coordinate with OEMs for technical support and version upgradesGenerate daily, weekly, and monthly reports on endpoint security posture Maintain SOPs, runbooks, and incident logs for audit and compliance Contribute to CXO dashboards and real-...

Job description: Job Title: SOAR Automation Engineer Location: Delhi, India Experience: 2-5 years Employment Type: Full-Time Joining: Immediate Job Summary: We are seeking a skilled SOAR Automation Engineer to enhance our cybersecurity operations through automation and orchestration. The ideal candidate will have hands-on experience in SOAR platforms, strong programming expertise, and the ability to develop and optimize playbooks for threat detection and incident response. If you're ready to contribute immediately to cutting-edge security automation, we want you on our team! Key Responsibilities: Develop, customize, and implement SOAR automation workflows using platforms like XSOAR, Google S...

Job Title: Security Operations Centre (SOC) Manager/Head Department: Security Command Centre Reports To: Director Location: Goregaon West, Mumbai Job Type: Full-Time, 24x7 Job Summary: We are seeking an experienced and strategic SOC Manager to lead our Security Operations Center. The ideal candidate will oversee daily operations of the SOC, manage a team of analysts and engineers, develop threat detection and incident response strategies, and ensure the organization's cybersecurity posture is proactively monitored and defended 24/7. Key Responsibilities: SOC Leadership & Management Lead, mentor, and manage the SOC team (L1, L2, L3 analysts and threat hunters). Define and enforce SOC operatio...

Job Description: Configure, deploy, and maintain the organization's SIEM platform to ensure optimal performance and functionality. Develop and customize SIEM rules, filters, and alerts to meet specific security monitoring and compliance requirements. Collaborate with IT teams to onboard new data sources and integrate logs into the SIEM platform for comprehensive threat detection. Generate and present regular and ad-hoc reports on SIEM performance, security incidents, and compliance status to stakeholders and management. Stay updated on emerging cybersecurity threats, vulnerabilities, and industry best practices to enhance SIEM capabilities and proactive defense strategies. Participate in inc...

Your potential, unleashed. Indias impact on the global economy has increased at an exponential rate and Deloitte presents an opportunity to unleash and realise your potential amongst cutting edge leaders, and organisations shaping the future of the region, and indeed, the world beyond. At Deloitte, your whole self to work, every day. Combine that with our drive to propel with purpose and you have the perfect playground to collaborate, innovate, grow, and make an impact that matters. The team Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure, vigilant, and resilientnot only by looking at how to prevent and respond to attacks, but at how ...

Who We Are At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl We are always moving forward - always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities. The Role Kyndryl's Security & Resiliency is one of our most critical practices, ensuring enterprises, regardless of their size and complexity, remain secure, available, reliable, and resilient. We take Cybersecurity seriously. We're not just invested we're committed. We're not just protecting data we're empowering. Kyndryl is committed to making the worl...

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Information and Event Management (SIEM) Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve coll...

Role & responsibilities - Minimum 4 plus years of experience in application development using Python and Rest API. - Experience in managing any SOAR platforms (e.g. Palo Alto Cortex, Phantom, Resilient, Swimlane, etc.) -Experience in SOAR administration, playbook development/automation and life cycle management - Deploying and managing integration packages for various 3rd party tools/applications - Experience in trouble shooting integration issues and code customization. - Experience in developing integration solutions with web services, APIs using REST/JSON. - Ability to install and configure 3rd party applications in a Linux environment, experience in Unix/Linux administration - Understand...

About the Organisation DataFlow Group is a pioneering global provider of specialized Primary Source Verification (PSV) solutions, and background screening and immigration compliance services that assist public and private organizations in mitigating risks to make informed, cost-effective decisions regarding their Applicants and Registrants. About the Role: Dataflow is looking to hire a cyber security expert with rich experience leveraging TrendMicro Vision/XDR platform and AWS environment in security alerts triage, investigation and incident response to support on-prem devices and cloud assets remain protected from any security threats. The ideal candidate will have a strong understanding of...

* Responsible for implementation partner to see project on track along with providing required reports to management and client * Handle the project as well as BAU operations while ensuring high level of systems security compliance * Coordinate with and act as an authority to resolve incidents by working with other information security specialists to correlate threat assessment data. * Analyse data, such as logs or packets captures, from various sources within the enterprise and draw conclusions regarding past and future security incidents. * Ready to support for 24/7 environment. Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional exp...

Role & responsibilities Design and develop XSOAR playbooks to automate repetitive tasks in Security Operations. Integrate various security tools and data sources with XSOAR using APIs, custom integrations, and out-of-the-box connectors. Collaborate with SOC analysts, incident responders, and other cybersecurity teams to identify automation opportunities. Maintain and enhance existing playbooks based on feedback and evolving security requirements. Develop custom scripts (Python) and integrations as needed. Troubleshoot and resolve issues related to XSOAR integrations and playbooks. Document processes, playbooks, and integration procedures for knowledge sharing. Ensure automation workflows com...