Cyber Incident Handler
3Columnsgurgaon, haryana, in3 hours ago
Job descriptionBachelor’s degree in Cybersecurity / Information Technology / Computer Science (or equivalent experience). Industry certifications such as GIAC (GCIA / GCIH / GCFA) , CEH , Security+ , CySA+ , or Azure / AWS security credentials. Strong understanding of cybersecurity frameworks (MITRE ATT&CK, NIST CSF, ISO 27035). Proficiency with SIEM, EDR / XDR, and SOAR platforms (e.g., SentinelOne, CrowdStrike, Microsoft Defender, Splunk, Rapid7). Knowledge of TCP / IP networking, common protocols, and security tools (firewalls, IDS / IPS, proxies). Solid grasp of Windows, Linux, Active Directory, identity security, and cloud security fundamentals. Ability to interpret malware behaviour, logs, network traffic, and forensic artifacts. Strong written communication skills for executive and technical reporting. 2–5 years working in a SOC or Cyber Incident Response function. Hands-on experience with threat detection, containment, and remediation activities. Involvement in major or moderate security incidents, including ransomware, BEC, insider threats, or phishing. Experience conducting forensic analysis on hosts (memory, disk) and cloud environments (M365, Azure, AWS). Development or optimisation of incident response playbooks and automation. Collaboration with IT teams to implement security controls and corrective actions. Exposure to red team scenarios, threat hunting operations, or purple team exercises. Real-world experience leveraging threat intelligence to improve detection capability.
3Columns is a specialist cybersecurity firm that delivers a wide range of services, including security assurance, security governance, professional services, and managed services. Solutions include managed security services, offensive security services, cybersecurity consulting, and professional services to help customers deploy all the necessary controls. The core services delivered by the SOC are Managed Detection and Response and Incident Response.
About the Role :
3Columns is seeking a Cyber Incident Handler to join their team remotely. They will be responsible for working with the MDR team and leading escalated incidents, updating customers and stakeholders, and assisting the MDR team with investigations. Incident responders will work with SOC team, develop playbooks and update existing as required. The successful applicant will become integral to each client's cybersecurity strategy, developing strong relationships and becoming a trusted partner within each organisation.
Please Note : -
To save you time with rejections and save our time, if you do not have experience in Incident response, Stakeholder communication, investigation or Log analysis, you will be rejected. Candidates who will apply without any SOC experience just for the sake of applying will be blacklisted for the next 10 years.
Cyber Incident Handler -
- Work with MDR analysts on escalated Incidents.
- Understand the incident, generate possible scenarios and work with Digital Forensics and Level 1 and Level 2 analysts and assist them with the investigation
- Perform triage and validation of suspicious activity, determining urgency and potential impact.
- Execute containment, eradication, and recovery actions during active cybersecurity incidents.
- Assist with Digital forensic analysis on endpoints, cloud services, and network artifacts to determine root cause and scope.
- Lead incident investigations and collaborate with internal stakeholders to minimise business disruption.
- Provide technical guidance to junior analysts during escalations and complex cases.
- Develop incident timelines, collect evidence, and ensure proper chain of custody for investigations.
- Document incidents, lessons learned, and produce high-quality incident reports for leadership.
- Maintain and tune detection content, response playbooks, and automation workflows (SOAR / XDR / SIEM).
- Participate in proactive threat hunting activities based on emerging threat intelligence.
- Support ongoing improvement of SOC maturity, readiness exercises, and incident response processes.
Qualifications
Relevant Experience
Create a job alert for this search
Cyber Incident Handler • gurgaon, haryana, in
Related jobs
- Promoted
- New!
Cyber Incident Handler
3Columnsdelhi, delhi, in Columns is a specialist cybersecurity firm that delivers a wide range of services, including security assurance, security governance, professional services, and managed services.Solutions include m...Show moreLast updated: 3 hours ago
- Promoted
Incident Responder - L3
SQ1 SecurityDelhi, India As an SQ1 Security Cyber Defense Incident Responder within the Global Cybersecurity Operations Center (CSOC), you will serve as a key technical expert responsible for managing and responding to adv...Show moreLast updated: 2 days ago
- Promoted
Incident Manager
Adani Enterprises LimitedDelhi, India The Security Operations & Incident Response professional will be responsible for orchestrating enterprise-wide incident response strategies across both OT and IT environments.The role demands deep ...Show moreLast updated: 24 days ago
- Promoted
In-Person Hiring Drive-Cyber-D&R-Incident Response Architect-SANS GIAC Certified Incident Handler (G
DeloitteGurgaon, Haryana, India Dear Connections, We have scheduled hiring drive at Gurgaon DLF office on 1st Nov'25 (Saturday).Interested applicants kindly apply using the link - https : / / southasiacareers.Please refer the below ...Show moreLast updated: 3 days ago
- Promoted
Incident Coordinator
TECEZENoida, Uttar Pradesh, India Job Title : Incident Coordinator Location : Noida Experience : 1-2 years Employment Type : Full-time | Immediate Joiner Job Summary : We are seeking a proactive and detail-oriented Incident Coordin...Show moreLast updated: 30+ days ago
- Promoted
Incident Manager - ServiceNow ITSM / ITIL / Incident Management
Radiant SystemsDelhi, IN Job description : We are looking for ServiceNow Developers and Application with a ITSM & ITAM Major Incident Manage , Change Management Developers.Job Title : Major Incide...Show moreLast updated: 4 days ago
- Promoted
Atotech Development Center - NOC & Major Incident Management Manager
Atotech An MKS BrandGurgaon Description : A Day in Your Life at MKS : The Major Incident Management Manager is responsible for overseeing and driving th...Show moreLast updated: 2 days ago
- Promoted
In-Person Hiring Drive-Cyber-D&R-Incident Response Architect-SANS GIAC Certified Incident Handler (GCIH) -Gurgaon-1st Nov'25
DeloitteGurugram, Haryana, India We have scheduled hiring drive at Gurgaon DLF office on 1st Nov'25 (Saturday).Interested applicants kindly apply using the link - https : / / southasiacareers.
Please refer the below JD for ready refere...Show moreLast updated: 3 days ago
- Promoted
Atotech Development Center - Major Incident Manager - ITIL
Atotech An MKS BrandGurgaon A Day in Your Life at MKS : The Major Incident Manager is responsible for managing the lifecycle of major incidents, ensuring timely resolution, effective communicat...Show moreLast updated: 2 days ago
- Promoted
IT Incident Manager
ConfidentialNoida Manage the incident management lifecycle, from identification to resolution, ensuring adherence to SLAs and minimizing business impact.
Manage major incidents (P1 / P2) with urgency, coordinating cros...Show moreLast updated: 30+ days ago
- Promoted
Associate IT Service & Incident Analyst
PeoplefyDelhi, India Greetings from Peoplefy!! We are hiring for one of our MNC clients for the role of Associate IT Service & Incident Analyst.
If you’re passionate about IT service operations and ready for a new chall...Show moreLast updated: 2 days ago
- Promoted
Incident Coordinator
ConfidentialNoida, India We are seeking a proactive and detail-oriented.The ideal candidate will be responsible for monitoring alerts, managing incident tickets, coordinating with technical teams and service providers, and...Show moreLast updated: 30+ days ago
- Promoted
Lead Incident Responder
ConfidentialGurgaon / Gurugram, India Sprinklr is the definitive, AI-native platform for Unified Customer Experience Management (Unified-CXM), empowering brands to deliver extraordinary experiences at scale — across every customer touc...Show moreLast updated: 7 days ago
- Promoted
Major Incident Manager
Lenovo IndiaDelhi, India Navi Mumbai (On-Site) Work Schedule : .Role Overview : The Incident Manager is responsible for managing incidents and emergencies within the organization, ensuring business continuity, and minimizing ...Show moreLast updated: 30+ days ago
- Promoted
Digital Forensics and Incident Response (DFIR) Manager
nTech WorkforceDelhi, India Digital Forensics and Incident Response (DFIR) Manager.Duration : 6-months' contract Location : Hyderabad or Bengaluru Mode of Employment : Hybrid.
The DFIR Manager leads client-facing incident respons...Show moreLast updated: 2 days ago
- Promoted
- New!
Incident Commander IRC277065
ConfidentialIndia, Gurgaon / Gurugram GlobalLogic is seeking an experienced and proactive Incident Commander to join our Platform Engineering team and ensure operational excellence across our SaaS environments.You will be the central a...Show moreLast updated: 10 hours ago
- Promoted
Incident Management
ConfidentialDelhi Teamware Solutions is seeking a proficient.Incident Management Specialist.You'll be crucial in minimizing the impact of IT service disruptions, overseeing the entire incident lifecycle from detecti...Show moreLast updated: 30+ days ago
- Promoted
Fortinet with Azure Migration
Sonata SoftwareDelhi, IN Azure Network Security Engineer.The ideal candidate will have strong experience in designing, implementing, and migrating on-premise networks into.
Design and implement secure and scalable.DNS serve...Show moreLast updated: 25 days ago