Talent.com
This job offer is not available in your country.
Incident Response Engineer

Incident Response Engineer

Rockwell Automationbangalore, India
5 hours ago
Job description

Rockwell Automation is a global technology leader focused on helping the world’s manufacturers be more productive, sustainable, and agile. With more than 28,000 employees who make the world better every day, we know we have something special. Behind our customers - amazing companies that help feed the world, provide life-saving medicine on a global scale, and focus on clean water and green mobility - our people are energized problem solvers that take pride in how the work we do changes the world for the better.

We welcome all makers, forward thinkers, and problem solvers who are looking for a place to do their best work. And if that’s you we would love to have you join us!

Job Description

We are seeking an experienced Level 3 Cybersecurity Analyst to join our Cybersecurity Security Incident Response Team (CSIRT). This senior-level role is responsible for advanced threat detection, incident response, and security operations, ensuring the integrity and availability of enterprise systems. The Level 3 analyst will act as an escalation point for complex security incidents, lead investigations, and contribute to the continuous improvement of cybersecurity processes and defenses.

Your Responsibilities

Threat Detection & Incident Response

  • Lead the investigation, containment, eradication, and recovery of advanced cyber threats and security incidents.
  • Serve as the final escalation point for Level 1 and Level 2 analysts, providing guidance and mentorship.
  • Utilize threat intelligence, SIEM platforms, EDR solutions, and other security tools to analyze and mitigate security events.
  • Conduct root cause analysis (RCA) and forensic investigations to determine attack vectors and impact.
  • Develop and implement advanced detection rules, correlation searches, and playbooks for threat hunting.

Security Operations & Monitoring

  • Oversee real-time monitoring of security alerts and ensure rapid response to potential threats.
  • Maintain and optimize security monitoring tools such as SIEM, SOAR, and EDR solutions.
  • Perform proactive threat hunting to identify undetected malicious activities.

    • Threat Intelligence & Research

  • Analyze emerging threats, vulnerabilities, and attack techniques to improve defenses.
  • Leverage threat intelligence platforms (TIPs) and external sources (MITRE ATT&CK, TTPs) to enhance security posture.
  • Work with internal functions and external business partners to support Risk assessments to validate detection capabilities and response procedures.

    • Security Engineering & Automation

  • Develop and fine-tune security rules, alerts, and automation plans to improve efficiency.
  • Help design and improve security controls across cloud and on-premises environments.
  • Collaborate with DevOps and IT teams to implement secure configurations and best practices.

    • Compliance & Reporting

  • Ensure adherence to security policies, regulatory frameworks (NIST, ISO 27001, CIS, etc.), and industry best practices.
  • Prepare detailed reports and post-incident documentation for executive leadership and team members.
  • Participate in security audits, risk assessments, tabletop exercises, and post-incident activities.

    • Required Qualifications

  • Education : Bachelor's degree in Cybersecurity, Computer Science, Information Security, or related field (or equivalent experience).
  • Experience : Minimum 5+ years of hands-on experience in cybersecurity operations, SOC, or threat intelligence.
  • Certifications (Preferred) :
  • Required : Security+ / CySA+ / SSCP
  • Preferred : CISSP, CISM, CEH, GCIH, GCFA, GCIA, and OSCP

    • Technical Skills & Expertise

  • Proficiency with SIEM platform (Sentinel or other SIEMs).
  • Experience with EDR / XDR solutions (CrowdStrike, Defender for Endpoint).
  • Hands-on experience with IDS / IPS, SOAR, and forensic tools (Wireshark, VIRUSTOTAL, Microsoft Sentinel SOAR).
  • Strong knowledge of email security platforms and threat intelligence frameworks (Proofpoint, MITRE ATT&CK, Cyber Kill Chain).
  • Familiarity with cloud security (AWS, Azure, GCP) and container security (Kubernetes, Docker).
  • Proficiency in scripting & automation (Python, PowerShell, Bash) for security automation.
  • Strong understanding of network security, firewalls, and intrusion detection systems .
  • Candidate will report to Manager IT.

    • Soft Skills

  • Excellent problem-solving and analytical skills.
  • Strong communication and leadership abilities.
  • Ability to work under pressure in high-stakes security incidents.
  • Have a passion for cybersecurity and continuous learning.

    • Why Join Us?

  • Work with cutting-edge cybersecurity technologies and methodologies.
  • Engage in challenging and impactful security investigations.
  • Collaborate with top-tier cybersecurity professionals.
  • Competitive salary, benefits, and professional development opportunities.

    • If you are a cybersecurity expert ready to take on advanced threats and lead critical investigations, we encourage you to apply!

    What We Offer :

    Our benefits package includes …

  • Comprehensive mindfulness programs with a premium membership to Calm
  • Volunteer Paid Time off available after 6 months of employment for eligible employees
  • Company volunteer and donation matching program – Your volunteer hours or personal cash donations to an eligible charity can be matched with a charitable donation.
  • Employee Assistance Program
  • Personalized wellbeing programs through our OnTrack program
  • On-demand digital course library for professional development and other local benefits!

    • #LI-Hybrid

    #LI-PS2

    Rockwell Automation’s hybrid policy aligns that employees are expected to work at a Rockwell location at least Mondays, Tuesdays, and Thursdays unless they have a business obligation out of the office.

    Create a job alert for this search

    Incident Response Engineer • bangalore, India

    Related jobs
    • Promoted
    SOC Engineer

    SOC Engineer

    Webologix Ltd / INCBengaluru, Karnataka, India
    Review daily operational activities and timely mentor junior analysts.Conduct detailed analysis on escalated events and handover the call to the Incident Response team along with appropriate eviden...Show moreLast updated: 30+ days ago
    • Promoted
    • New!
    Senior Lead - Incident Management

    Senior Lead - Incident Management

    Microlandbangalore, India
    Behavioral | Aptitude | Communication.Technology | Hardware and Networking | Installation, configuration, maintainance and repair. Technology | Audio, Video support | Installation and configuration....Show moreLast updated: 5 hours ago
    • Promoted
    • New!
    Senior Security Engineer, Detection & Response

    Senior Security Engineer, Detection & Response

    Postmanbangalore, India
    Postman is the world’s leading API platform, used by more than.Postman is helping developers and professionals across the globe build the API-first world by simplifying each step of the API lifecyc...Show moreLast updated: 5 hours ago
    • Promoted
    • New!
    Consultant – Major Incident Manager

    Consultant – Major Incident Manager

    Genpactbangalore, India
    Genpact (NYSE : G) is a global professional services and solutions firm delivering outcomes that shape the future.Our 125,000+ people across 30+ countries are driven by our innate curiosity, entrepr...Show moreLast updated: 5 hours ago
    • Promoted
    Amadeus Labs - Service Reliability Engineer - Incident Management

    Amadeus Labs - Service Reliability Engineer - Incident Management

    Amadeus LabsBangalore
    Job Title : Service Reliability Engineer 3 Summary Of The Role : Were looking for an experienced ...Show moreLast updated: 6 days ago
    • Promoted
    • New!
    Incident and Request Analyst

    Incident and Request Analyst

    Rockwell Automationbangalore, India
    Rockwell Automation is a global technology leader focused on helping the world’s manufacturers be more productive, sustainable, and agile. With more than 28,000 employees who make the world better e...Show moreLast updated: 5 hours ago
    • Promoted
    Trinity - DevSecOps Manager - Incident Management

    Trinity - DevSecOps Manager - Incident Management

    TRINITYPARTNERS INDIA LLPBangalore
    Designation : Manager Experience : 8 to 14 years The DevSecOps Manager plays a pivotal role in guiding Trin...Show moreLast updated: 15 days ago
    • Promoted
    L3 Server Engineer – Major Incident Management

    L3 Server Engineer – Major Incident Management

    Nextbridge IT SolutionsBengaluru, IN
    We are seeking an experienced L3 Infrastructure Engineer to join our IT Operations team with a focus on Major Incident Management (MIM), incident request management, and rapid response for Priority...Show moreLast updated: 8 days ago
    • Promoted
    Incident Manager IV

    Incident Manager IV

    TalentojBengaluru, Karnataka, India
    Support, Engineering, and Infrastructure teams.You will enhance the customer experience by organizing and driving the investigation of production issues in our SaaS application, which consists of S...Show moreLast updated: 16 days ago
    • Promoted
    • New!
    Senior Information Security Incident Response Analyst

    Senior Information Security Incident Response Analyst

    NTT DATAbangalore, India
    Join a company that is pushing the boundaries of what is possible.We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society.Our wo...Show moreLast updated: 5 hours ago
    • Promoted
    Production Support Engineer - Incident Management

    Production Support Engineer - Incident Management

    Renovision Automation Services Pvt.Ltd.Bangalore
    Internal Virtual 2.F2F 3.Client F2F office, Whitefield Bangalore We are seeking an ex...Show moreLast updated: 30+ days ago
    • Promoted
    • New!
    Lead - Incident Management

    Lead - Incident Management

    Microlandbangalore, India
    Technology | Basic Networking Activities | Configuring and Managing TCP / IP.Technology | Data Center Administration | Networking. Technology | Telecom OSS / BSS | Network Monitoring.Domain | Telecom ...Show moreLast updated: 5 hours ago
    • Promoted
    Senior Incident Engineer

    Senior Incident Engineer

    CAW Studios Pvt LtdBangalore
    The core responsibilities for the job include the following : Monitoring : < / ...Show moreLast updated: 30+ days ago
    • Promoted
    Observe.AI - Infrastructure Security Leader - Incident Management

    Observe.AI - Infrastructure Security Leader - Incident Management

    Observe.AIBangalore
    AI Observe.AI is the leading conversation intelligence platform for boosting contact center performance.Built on the industry's most accurate AI engine that anal...Show moreLast updated: 3 days ago
    • Promoted
    Incident Manager

    Incident Manager

    Systal Technology SolutionsBangalore
    Incident Manager Competitive Salary and Benefits : Systal is an Information Technology services integrator.We help our custome...Show moreLast updated: 22 days ago
    • Promoted
    Incident Response Analyst

    Incident Response Analyst

    VontierBengaluru, Karnataka, India
    Information Security Senior Global Incident Response Analyst.The position is responsible for acting as a senior analyst during security incidents, coordinating efforts with various members of the I...Show moreLast updated: 1 day ago
    • Promoted
    Techops Engineer - Incident Management

    Techops Engineer - Incident Management

    FxConsultingBangalore
    Job Title : TechOps Engineer Location : Bangalore, India Experience : 1 to 4 years <...Show moreLast updated: 30+ days ago
    • Promoted
    • New!
    Service Reliability Engineer 3

    Service Reliability Engineer 3

    Amadeusbangalore, India
    Service Reliability Engineer 3.We’re looking for an experienced Incident Manager to join our Global Customer Care team.In this role, you’ll coordinate the recovery of major incidents across Amadeus...Show moreLast updated: 5 hours ago