Security Incident Response Analyst
Arista NetworksBengaluru, Republic Of India, IN7 days ago
Job description4-5+ years in a SOC and or active participant on incident response teams. Hands-on experience with CrowdStrike (or other EDR), triaging security incidents. Proven ability to write CQL (or similar) queries and build detections for threat monitoring. Experience triaging alerts in a high-volume environment. Experience with threat intelligence feeds, platform and OSINT tools (VirusTotal, etc.) Familiarity with forensic analysis and evidence handling. Exceptional critical thinking and analytical skills to address complex security challenges. Self-starter with a proven ability to take initiative and deliver results independently. Driven mindset, thriving in fast-paced, high-pressure remote work environments. Strong understanding of cybersecurity principles, threat landscapes, and attack vectors. Proficiency in analyzing logs, network traffic, and endpoint data using CrowdStrike Next-Gen SIEM, particularly for Mac and Linux systems (Windows experience a plus). Solid knowledge of incident response processes and methodologies. Familiarity with operating systems, with primary expertise in Mac and Linux, and secondary knowledge of Windows. High attention to detail and ability to make sound decisions under pressure. Demonstrated commitment to continuous learning and professional development in cybersecurity. Write and optimize detections to detect and investigate security events. Proficiency in scripting (e.G., Python) for automating SOC workflows. Experience creating playbooks in Crowdstrike Fusion SOAR (or similar SOAR) Knowledge of cloud security (GCP, AWS, and or Azure). Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field (or equivalent experience).
Who You’ll Work With
We are seeking a highly motivated and proactive Security Operations Center (SOC) Analyst to join our dynamic, remote cybersecurity team. The ideal candidate is a critical thinker, self-starter, and driven professional with hands-on experience using Crowdstrike or other EDRs. You will play a critical role in monitoring, triaging, and responding to cyber threats across our primarily Mac and Linux environments, with some Windows systems. You will work closely with a collaborative team of fellow SOC analysts, incident responders, threat hunters, and cross-functional partners across IT, engineering, and DevOps to ensure our security posture remains strong. We’re looking for someone who takes ownership, excels in high-pressure settings, and is skilled in writing CrowdStrike Query Language (CQL) (or similar) to create effective detections that protect our organization’s assets.
What You’ll Do
- Monitor and triage security alerts.
- Build, test, and refine detections to enhance threat identification across Mac, Linux, and Windows systems.
- Conduct in-depth analysis of security incidents, including malware, phishing, and advanced persistent threats, leveraging SIEM and EDR capabilities.
- Perform proactive threat hunting using the SIEM and EDR features.
- Investigate and respond to incidents swiftly, following established incident response protocols.
- Document findings clearly and provide actionable remediation recommendations.
- Collaborate with cross-functional teams to strengthen security controls and mitigate vulnerabilities.
- Stay current on emerging threats, vulnerabilities, and industry trends through self-directed learning.
- Participate in on-call rotation for 24x7x365 SOC coverage, demonstrating reliability and accountability.
- Escalate confirmed or suspicious incidents and cases to the Incident Response team.
Qualifications
Skills and Attributes :
Nice-to-Have :
Create a job alert for this search
Security Analyst • Bengaluru, Republic Of India, IN
Related jobs![Senior Analyst - Incident Response [T500-20994]](https://cdn-logos.talent.com/v1/logo/image?feedcode=clickcast-appcast-li-in-cpc&company_name=MUFG)
- Promoted
Senior Analyst - Incident Response [T500-20994]
MUFGBengaluru, Karnataka, India Japan’s premier bank, with a global network spanning in more than 40 markets.Outside of Japan, the bank offers an extensive scope of commercial and investment banking products and services to busin...Show moreLast updated: 27 days ago
- Promoted
Incident Response Manager
ITC InfotechBengaluru, Republic Of India, IN Lead and manage day-to-day SOC operations to ensure proactive detection and response to cyber threats.Drive operational excellence, process maturity, and automation across SOC functions.Coordinate ...Show moreLast updated: 15 days ago
- Promoted
Lead Incident Management and Root Cause Analyst
ANSRBengaluru, Republic Of India, IN ANSR is hiring for one of its clients : .Martens is an iconic British brand founded in 1960 in Northamptonshire.Produced originally for workers looking for tough, durable boots, the brand was quickly...Show moreLast updated: 30+ days ago
- Promoted
Security Operations Center Analyst
LenovoBengaluru, Karnataka, India Security Operations Centre (SOC) Analyst plays a vital role in Security delivery.As a SOC Analyst Level 3, you will be on the front line of Cyber Defense, detecting & responding to Cyber Incidents ...Show moreLast updated: 26 days ago
- Promoted
Incident Response Lead Analyst
MUFGBengaluru, Republic Of India, IN Japan’s premier bank, with a global network spanning in more than 40 markets.Outside of Japan, the bank offers an extensive scope of commercial and investment banking products and services to busin...Show moreLast updated: 27 days ago
- Promoted
Incident Manager
SourceFuseBengaluru, Karnataka, India SourceFuse Technologies hiring Incident Manager 4-5 years of experience.Work closely with other IT and business teams to ensure seamless coordination during incidents.
Participate in on-call rotatio...Show moreLast updated: 15 days ago
- Promoted
Cyber Security Incident Response Analyst
LenovoBengaluru, Republic Of India, IN Security Operations Centre (SOC) Analyst plays a vital role in Security delivery.As a SOC Analyst Level 3, you will be on the front line of Cyber Defense, detecting & responding to Cyber Incidents ...Show moreLast updated: 25 days ago
- Promoted
Threat Detection and Response Analyst
LenovoBengaluru, Republic Of India, IN Security Operations Centre (SOC) Analyst plays a vital role in Security delivery.As a SOC Analyst Level 3, you will be on the front line of Cyber Defense, detecting & responding to Cyber Incidents ...Show moreLast updated: 25 days ago
- Promoted
Senior Threat Response Analyst
HR PathBengaluru, Republic Of India, IN HR Path Group, a global leader in HR consulting, helps clients with their HR transformation projects, covering both human and HRIS (Human Resources Information System) aspects.Our 2,500 employees a...Show moreLast updated: 1 day ago
- Promoted
Azure Security Centre Analyst
PwChosur, tamil nadu, in Seeking an Azure Security Centre Analyst with proven experience in cloud security operations within the Microsoft Azure ecosystem.
Key responsibilities include managing Azure security tools, vulnera...Show moreLast updated: 12 days ago
- Promoted
Incident Response and Threat Management Leader
Mitigata - Smart cyber insuranceBengaluru, Republic Of India, IN Cyber Security / Security Operations.We are looking for a highly experienced SOC Manager to lead our Security Operations Center and manage day-to-day security monitoring, incident response, and thr...Show moreLast updated: 7 days ago
- Promoted
Cybersecurity Incident Response Analyst
Palo Alto NetworksBengaluru, Republic Of India, IN At Palo Alto Networks® everything starts and ends with our mission : .Being the cybersecurity partner of choice, protecting our digital way of life.
Our vision is a world where each day is safer and m...Show moreLast updated: 30+ days ago
- Promoted
Senior Analyst - Incident Response T500-20994
MUFGBengaluru, Republic Of India, IN Japan’s premier bank, with a global network spanning in more than 40 markets.Outside of Japan, the bank offers an extensive scope of commercial and investment banking products and services to busin...Show moreLast updated: 27 days ago
- Promoted
Incident Management Analyst
MSE TechnologyBengaluru, Republic Of India, IN At MSET, we are a leading Loyalty Services Company specializing in Next Generation Digital Solutions to propel client growth.
Since our inception in 2019, we have developed and operate a proprietary...Show moreLast updated: 30+ days ago
- Promoted
Manager - Incident Response
UnitedLexBengaluru, Karnataka, India Responsible for overall performance and management of the team assigned.Responsible for 2-3 projects, concurrently.People management that includes responsibility of performance evaluation, training...Show moreLast updated: 23 days ago
- Promoted
Devops + Incident Management
Zyoin GroupBengaluru, Karnataka, India Job Title : Devops + Incident Management.Experience Range : 6 to 11 Years.Skills : Devops, Incident Management, L2 / L3 Support, Bash, CI / CD, Powershell, Fintech Exp.
This role is part of our Service ...Show moreLast updated: 8 days ago
- Promoted
- New!
Integrated Incident Manager
eAspire Technolabs Inc.hosur, tamil nadu, in We are looking for an experienced.The role ensures service restoration, operational stability, and continuous service improvement through effective leadership and process governance.Monitor and rep...Show moreLast updated: 19 hours ago
- Promoted
Cyber Threat Response Analyst
Embitel TechnologiesBengaluru, Republic Of India, IN We are seeking a highly skilled and detail-oriented Cyber Security Specialist to protect our organization's digital assets and infrastructure from cyber threats.
The ideal candidate will have a stro...Show moreLast updated: 4 days ago