Cyber Incident Handler
3Columnsmalappuram, India1 day ago
Job descriptionBachelor’s degree in Cybersecurity / Information Technology / Computer Science (or equivalent experience). Industry certifications such as GIAC (GCIA / GCIH / GCFA) , CEH , Security+ , CySA+ , or Azure / AWS security credentials. Strong understanding of cybersecurity frameworks (MITRE ATT&CK, NIST CSF, ISO 27035). Proficiency with SIEM, EDR / XDR, and SOAR platforms (e.g., SentinelOne, CrowdStrike, Microsoft Defender, Splunk, Rapid7). Knowledge of TCP / IP networking, common protocols, and security tools (firewalls, IDS / IPS, proxies). Solid grasp of Windows, Linux, Active Directory, identity security, and cloud security fundamentals. Ability to interpret malware behaviour, logs, network traffic, and forensic artifacts. Strong written communication skills for executive and technical reporting. 2–5 years working in a SOC or Cyber Incident Response function. Hands-on experience with threat detection, containment, and remediation activities. Involvement in major or moderate security incidents, including ransomware, BEC, insider threats, or phishing. Experience conducting forensic analysis on hosts (memory, disk) and cloud environments (M365, Azure, AWS). Development or optimisation of incident response playbooks and automation. Collaboration with IT teams to implement security controls and corrective actions. Exposure to red team scenarios, threat hunting operations, or purple team exercises. Real-world experience leveraging threat intelligence to improve detection capability.
3Columns is a specialist cybersecurity firm that delivers a wide range of services, including security assurance, security governance, professional services, and managed services. Solutions include managed security services, offensive security services, cybersecurity consulting, and professional services to help customers deploy all the necessary controls. The core services delivered by the SOC are Managed Detection and Response and Incident Response.
About the Role :
3Columns is seeking a Cyber Incident Handler to join their team remotely. They will be responsible for working with the MDR team and leading escalated incidents, updating customers and stakeholders, and assisting the MDR team with investigations. Incident responders will work with SOC team, develop playbooks and update existing as required. The successful applicant will become integral to each client's cybersecurity strategy, developing strong relationships and becoming a trusted partner within each organisation.
Please Note : -
To save you time with rejections and save our time, if you do not have experience in Incident response, Stakeholder communication, investigation or Log analysis, you will be rejected. Candidates who will apply without any SOC experience just for the sake of applying will be blacklisted for the next 10 years.
Cyber Incident Handler -
- Work with MDR analysts on escalated Incidents.
- Understand the incident, generate possible scenarios and work with Digital Forensics and Level 1 and Level 2 analysts and assist them with the investigation
- Perform triage and validation of suspicious activity, determining urgency and potential impact.
- Execute containment, eradication, and recovery actions during active cybersecurity incidents.
- Assist with Digital forensic analysis on endpoints, cloud services, and network artifacts to determine root cause and scope.
- Lead incident investigations and collaborate with internal stakeholders to minimise business disruption.
- Provide technical guidance to junior analysts during escalations and complex cases.
- Develop incident timelines, collect evidence, and ensure proper chain of custody for investigations.
- Document incidents, lessons learned, and produce high-quality incident reports for leadership.
- Maintain and tune detection content, response playbooks, and automation workflows (SOAR / XDR / SIEM).
- Participate in proactive threat hunting activities based on emerging threat intelligence.
- Support ongoing improvement of SOC maturity, readiness exercises, and incident response processes.
Qualifications
Relevant Experience
Create a job alert for this search
Cyber Incident Handler • malappuram, India
Related jobs
IT learning platform dedicated to helping individuals begin their journey to becoming IT professionals.We focus on upskilling our students by providing specialized courses that enhance their employ...Show moreLast updated: 6 days ago
- Promoted
Cyber Incident Handler
3Columnskozhikode, India Columns is a specialist cybersecurity firm that delivers a wide range of services, including security assurance, security governance, professional services, and managed services.Solutions include m...Show moreLast updated: 1 day ago
- Promoted
- New!
Cyber Security Manager
Wissen InfotechKozhikode, IN Greetings from Wissen Infotech!!.Position : Cyber Security Manager.Notice Period : Immediate or 15 Days.Cybersecurity leadership or managerial roles.
SIEM, SOAR, EDR, and cloud security.Excellent lead...Show moreLast updated: 4 hours ago
- Promoted
Senior Manager IS Cyber Culture & Awareness
MashreqMalappuram, IN The Cyber Security Awareness Specialist plays a critical role in maturing Mashreq Bank’s cyber security awareness program.
The specialist is responsible for fostering a culture where Cybersecurity i...Show moreLast updated: 6 days ago
- Promoted
- New!
Lead Cyber Security Analyst - Presales / Solutioning
Talent ToppersThrissur, IN Growing IT solutions and services company specializing in software development, cloud enablement, and digital transformation.
The company focuses on building scalable, secure, and innovative technol...Show moreLast updated: 4 hours ago
- Promoted
Network Associate
iConsulteraMalappuram, IN Location : Ahmedabad, Gujarat, India.We are seeking a 1st Line Security Engineer to join our Information Security team.This entry-level role is ideal for individuals looking to launch their career i...Show moreLast updated: 30+ days ago
- Promoted
CyberArk Engineer
Next VenturesThrissur, IN Job Opportunity : CyberArk Engineer.Contract / Permanent / Fixed Term.Privileged Access Management (PAM) implementations using CyberArk technologies.
CyberArk Core-PAS, AAM, PTA, HTML5 Gateway.Implem...Show moreLast updated: 27 days ago
- Promoted
- New!
Okta
Tata Consultancy ServicesKozhikode, IN Okta, SiteMinder, SSO, MFA, SAML, IAM.Supporting and managing consumer identity lifecycle processes Okta platforms, including registration, authentication and account recovery.Execute and support t...Show moreLast updated: 4 hours ago
- Promoted
Cyber Security Instructor | Part Time | Remote
ThinkcloudlyKozhikode, INRemote
- Promoted
- New!
Devops + Incident Management
Zyoin GroupMalappuram, IN Job Title : Devops + Incident Management.Experience Range : 6 to 11 Years.Skills : Devops, Incident Management, L2 / L3 Support, Bash, CI / CD, Powershell, Fintech Exp.
This role is part of our Service ...Show moreLast updated: 4 hours ago
- Promoted
- New!
Incident Management Specialist
True Tech ProfessionalsThrissur, IN Job Description : Incident, Problem, Change and Release Management Team.Location : Chennai / Pune / Hyderabad.We are seeking highly motivated professionals to join our Incident, Problem, Change, and Rele...Show moreLast updated: 4 hours ago
- Promoted
- New!
NAC Network
Tata Consultancy ServicesMalappuram, IN Experience : 5-10 years experience.Apply only if you are available on Saturday(15th Nov) for face to face interview in Pune location.
IT Service management, (Incident Management, Vendor Management, P...Show moreLast updated: 4 hours ago
- Promoted
- New!
Cyber Security Consultant
KyndrylThrissur, IN The Kyndryl CTA (Cross Industry) brings together knowledge across 3-4 industries with the credibility to build valued client relationships up to and including CIO,CTO,CxO level.This role requires e...Show moreLast updated: 4 hours ago
- Promoted
Cyber Security Specialist
APN Consulting, Inc.Thrissur, IN IT staffing and services company offering innovative business solutions to improve client business outcomes.We focus on high impact technology solutions in ServiceNow, Fullstack, Cloud & Data, and ...Show moreLast updated: 4 days ago
- Promoted
Cyber Security Specialist
Innefu LabsKozhikode, IN We are seeking experienced and detail-oriented professionals for the role.The selected candidates will be responsible for assisting cybercrime investigations by collecting and analysing digital evi...Show moreLast updated: 5 days ago
- Promoted
- New!
Cyber Security Analyst (IAM / PAM) - Bangalore(Onsite)
ideaHelixKozhikode, IN Cyber Security Analyst – IAM / PAM.The ideal candidate will ensure secure access management, reduce identity-related risks, and support compliance with internal and regulatory standards.Bachelor’s de...Show moreLast updated: 4 hours ago
- Promoted
- New!
Cybersecurity SecOps
Wissen InfotechMalappuram, IN Greetings from Wissen Infotech!!.Position : Cybersecurity L3 SecOps Engineer.Notice Period : Immediate or 15 Days.Strong hands-on expertise with.
Proficiency in scripting (Python, PowerShell, or Bash)...Show moreLast updated: 4 hours ago
- Promoted
- New!
SOC Analyst L2 / L3 - SIEM,IBM Qradar,SOAR,Threat hunting,Forensics - 4+ Years - Mumbai
Innova ESIMalappuram, IN Please refer to the job description below for your kind reference : .SOC Analyst – Level 2 (L2) / Level 3 (L3).Deep-dive investigation of escalated incidents.
Conduct root cause analysis and threat co...Show moreLast updated: 4 hours ago
- Promoted
- New!
Security Operations Center Analyst
Insight GlobalMalappuram, IN SOC or cybersecurity operations role.Proficiency with Secureworks Taegis and Microsoft Defender (Endpoint, Identity, Cloud), including rule tuning, log analysis, and case management.Splunk, QRadar,...Show moreLast updated: 4 hours ago