Cyber Incident Handler
3ColumnsPune, Maharashtra, India1 day ago
Job descriptionBachelor’s degree in Cybersecurity / Information Technology / Computer Science (or equivalent experience). Industry certifications such as GIAC (GCIA / GCIH / GCFA), CEH, Security+, CySA+, or Azure / AWS security credentials. Strong understanding of cybersecurity frameworks (MITRE ATT&CK, NIST CSF, ISO 27035). Proficiency with SIEM, EDR / XDR, and SOAR platforms (e.g., SentinelOne, CrowdStrike, Microsoft Defender, Splunk, Rapid7). Knowledge of TCP / IP networking, common protocols, and security tools (firewalls, IDS / IPS, proxies). Solid grasp of Windows, Linux, Active Directory, identity security, and cloud security fundamentals. Ability to interpret malware behaviour, logs, network traffic, and forensic artifacts. Strong written communication skills for executive and technical reporting. 2–5 years working in a SOC or Cyber Incident Response function. Hands-on experience with threat detection, containment, and remediation activities. Involvement in major or moderate security incidents, including ransomware, BEC, insider threats, or phishing. Experience conducting forensic analysis on hosts (memory, disk) and cloud environments (M365, Azure, AWS). Development or optimisation of incident response playbooks and automation. Collaboration with IT teams to implement security controls and corrective actions. Exposure to red team scenarios, threat hunting operations, or purple team exercises. Real-world experience leveraging threat intelligence to improve detection capability.
3Columns is a specialist cybersecurity firm that delivers a wide range of services, including security assurance, security governance, professional services, and managed services. Solutions include managed security services, offensive security services, cybersecurity consulting, and professional services to help customers deploy all the necessary controls. The core services delivered by the SOC are Managed Detection and Response and Incident Response.
About the Role :
3Columns is seeking a Cyber Incident Handler to join their team remotely. They will be responsible for working with the MDR team and leading escalated incidents, updating customers and stakeholders, and assisting the MDR team with investigations. Incident responders will work with SOC team, develop playbooks and update existing as required. The successful applicant will become integral to each client's cybersecurity strategy, developing strong relationships and becoming a trusted partner within each organisation.
Please Note : -
To save you time with rejections and save our time, if you do not have experience in Incident response, Stakeholder communication, investigation or Log analysis, you will be rejected. Candidates who will apply without any SOC experience just for the sake of applying will be blacklisted for the next 10 years.
Cyber Incident Handler -
- Work with MDR analysts on escalated Incidents.
- Understand the incident, generate possible scenarios and work with Digital Forensics and Level 1 and Level 2 analysts and assist them with the investigation
- Perform triage and validation of suspicious activity, determining urgency and potential impact.
- Execute containment, eradication, and recovery actions during active cybersecurity incidents.
- Assist with Digital forensic analysis on endpoints, cloud services, and network artifacts to determine root cause and scope.
- Lead incident investigations and collaborate with internal stakeholders to minimise business disruption.
- Provide technical guidance to junior analysts during escalations and complex cases.
- Develop incident timelines, collect evidence, and ensure proper chain of custody for investigations.
- Document incidents, lessons learned, and produce high-quality incident reports for leadership.
- Maintain and tune detection content, response playbooks, and automation workflows (SOAR / XDR / SIEM).
- Participate in proactive threat hunting activities based on emerging threat intelligence.
- Support ongoing improvement of SOC maturity, readiness exercises, and incident response processes.
Qualifications
Relevant Experience
Create a job alert for this search
Cyber Incident Handler • Pune, Maharashtra, India
Related jobs
- Promoted
Associate IT Service & Incident Analyst
PeoplefyPune, Maharashtra, India We are hiring for one of our MNC clients for the role of Associate IT Service & Incident Analyst.If you’re passionate about IT service operations and ready for a new challenge — this could be your ...Show moreLast updated: 3 days ago
- Promoted
Lead DevOps Engineer
OllionPune / Pimpri-Chinchwad Area, India Let’s be honest : there are lots of people out there doing what we do.We’re just not convinced they’re doing it right.Businesses are hungry for innovation and opportunity, but not at the cost of the...Show moreLast updated: 25 days ago
- Promoted
Cyber Security Analyst
Quess Corp LimitedPune, Maharashtra, India Role : Cyber Security Analyst OR Specialist.Location : Pune & Bangalore | Hybrid (2 days / week).We’re looking for a Network Security professional with strong expertise in Secure by Design principles a...Show moreLast updated: 17 days ago
- Promoted
Cyber Incident Handler
3Columnspune, maharashtra, in Columns is a specialist cybersecurity firm that delivers a wide range of services, including security assurance, security governance, professional services, and managed services.Solutions include m...Show moreLast updated: 1 day ago
- Promoted
Cyber Security Manager
CareerUS SolutionsPune, IN The Cyber Security Manager is responsible for.The Cyber Security Manager also leads a team of security professionals and collaborates across departments to strengthen the company’s overall.Develop,...Show moreLast updated: 3 days ago
- Promoted
HR Business System Analyst
BMC SoftwarePune / Pimpri-Chinchwad Area, India We are looking for a HRIS Analyst with strong Oracle HCM skills to support and optimise our HR systems.This role is perfect for someone who enjoys problem-solving, leading system enhancements, and ...Show moreLast updated: 2 days ago
- Promoted
Security Operations Center Analyst
PeoplefyPune, India We're Hiring : SOC Specialist | Pune.Are you passionate about cybersecurity and eager to make an impact in threat detection and incident response? We’re looking for a skilled SOC Specialist to join ...Show moreLast updated: 30+ days ago
- Promoted
Hansen Technologies - Security Incident Responder - SIEM Platform
Hansen TehcnologiesPune Job Description : Key Responsibilities : <...Show moreLast updated: 30+ days ago
- Promoted
IncubXperts - Tier 2 Support Engineer - Incident Management
IncubXpertsPune Description : Job Title : Tier 2 Support Engineer.Shift : 24x7 rotational (including weekends).Working hours : 2 Shifts...Show moreLast updated: 3 days ago
- Promoted
Consultant / Senior Consultant - Cyber Security & Vulnerability Assessment
XequalstoPune Description : - Red Team Assessment / Support - SAP Security, Authorizations and GRC Access Control - IT / OT Security Assessm...Show moreLast updated: 10 days ago
- Promoted
L2 Support Engineer - Incident Management
Square One Media Solution Pvt LtdPune Position Overview : We are looking for an experienced L2 Support Engineer to join our team.The ideal candidate will be responsible for providing advanced technical su...Show moreLast updated: 30+ days ago
- Promoted
Proziod Analytics - OpenText Server Engineer - Incident Management
Proziod AnalyticsPune Description : Job Description : Role Responsibilities : - Analysing and providing BAU ...Show moreLast updated: 26 days ago
- Promoted
Incident Response L3
ConfidentialPune, India We are seeking a Cyber Security Specialist to join the Security Operations team.Security team and will lead and support.The specialist will leverage an armory of tools to investigate.Utilizing comp...Show moreLast updated: 8 days ago
- Promoted
Network Security Manager | Pune | Immediate Joiner
Exela Technologiespune, maharashtra, in This role involves leading a team of network security engineers, managing the deployment and maintenance of security tools, and responding to security incidents.
The ideal candidate will possess a s...Show moreLast updated: 3 days ago
- Promoted
Analyst Cyber Risk Defense
Peoplefypune, maharashtra, in Ability to apply thorough and methodical assessment skills to analyze and properly triage reported events and incidents.Possess excellent and thorough communication and documentation skills.Ability...Show moreLast updated: 4 days ago
- Promoted
Cyber Incident Handler
ConfidentialIndia, Pune Columns is a specialist cybersecurity firm that delivers a wide range of services, including security assurance, security governance, professional services, and managed services.Solutions include m...Show moreLast updated: 1 day ago
- Promoted
Simeio - PAM Lead - CyberArk
Simeio Development Center Private LimitedPune About The Role : The PAM Lead is responsible for designing, implementing, and managing enterprise-grade Privileged Access Management (PAM) solutions across global en...Show moreLast updated: 30+ days ago
- Promoted
YASH Technologies - DevOps Engineer - Incident Management
YASH TechnologiesPune Job Description : Experience required : 3-4 years.As an Operations Specialist, you will be responsible for managing and supporting distributed solutions with a focu...Show moreLast updated: 26 days ago