Cyber Incident Handler
3Columnsbangalore district, karnataka, in1 day ago
Job descriptionBachelor’s degree in Cybersecurity / Information Technology / Computer Science (or equivalent experience). Industry certifications such as GIAC (GCIA / GCIH / GCFA) , CEH , Security+ , CySA+ , or Azure / AWS security credentials. Strong understanding of cybersecurity frameworks (MITRE ATT&CK, NIST CSF, ISO 27035). Proficiency with SIEM, EDR / XDR, and SOAR platforms (e.g., SentinelOne, CrowdStrike, Microsoft Defender, Splunk, Rapid7). Knowledge of TCP / IP networking, common protocols, and security tools (firewalls, IDS / IPS, proxies). Solid grasp of Windows, Linux, Active Directory, identity security, and cloud security fundamentals. Ability to interpret malware behaviour, logs, network traffic, and forensic artifacts. Strong written communication skills for executive and technical reporting. 2–5 years working in a SOC or Cyber Incident Response function. Hands-on experience with threat detection, containment, and remediation activities. Involvement in major or moderate security incidents, including ransomware, BEC, insider threats, or phishing. Experience conducting forensic analysis on hosts (memory, disk) and cloud environments (M365, Azure, AWS). Development or optimisation of incident response playbooks and automation. Collaboration with IT teams to implement security controls and corrective actions. Exposure to red team scenarios, threat hunting operations, or purple team exercises. Real-world experience leveraging threat intelligence to improve detection capability.
3Columns is a specialist cybersecurity firm that delivers a wide range of services, including security assurance, security governance, professional services, and managed services. Solutions include managed security services, offensive security services, cybersecurity consulting, and professional services to help customers deploy all the necessary controls. The core services delivered by the SOC are Managed Detection and Response and Incident Response.
About the Role :
3Columns is seeking a Cyber Incident Handler to join their team remotely. They will be responsible for working with the MDR team and leading escalated incidents, updating customers and stakeholders, and assisting the MDR team with investigations. Incident responders will work with SOC team, develop playbooks and update existing as required. The successful applicant will become integral to each client's cybersecurity strategy, developing strong relationships and becoming a trusted partner within each organisation.
Please Note : -
To save you time with rejections and save our time, if you do not have experience in Incident response, Stakeholder communication, investigation or Log analysis, you will be rejected. Candidates who will apply without any SOC experience just for the sake of applying will be blacklisted for the next 10 years.
Cyber Incident Handler -
- Work with MDR analysts on escalated Incidents.
- Understand the incident, generate possible scenarios and work with Digital Forensics and Level 1 and Level 2 analysts and assist them with the investigation
- Perform triage and validation of suspicious activity, determining urgency and potential impact.
- Execute containment, eradication, and recovery actions during active cybersecurity incidents.
- Assist with Digital forensic analysis on endpoints, cloud services, and network artifacts to determine root cause and scope.
- Lead incident investigations and collaborate with internal stakeholders to minimise business disruption.
- Provide technical guidance to junior analysts during escalations and complex cases.
- Develop incident timelines, collect evidence, and ensure proper chain of custody for investigations.
- Document incidents, lessons learned, and produce high-quality incident reports for leadership.
- Maintain and tune detection content, response playbooks, and automation workflows (SOAR / XDR / SIEM).
- Participate in proactive threat hunting activities based on emerging threat intelligence.
- Support ongoing improvement of SOC maturity, readiness exercises, and incident response processes.
Qualifications
Relevant Experience
Create a job alert for this search
Cyber Incident Handler • bangalore district, karnataka, in
Related jobs
- Promoted
- New!
Sr Mgr, IT - Cyber Incident Response
ConfidentialBengaluru / Bangalore, India At Baxter, we believe every person-regardless of who they are or where they are from-deserves a chance to live a healthy life.
It was our founding belief in 1931 and continues to be our guiding prin...Show moreLast updated: 11 hours ago
- Promoted
Incident Manager
Flipkartbangalore, karnataka, in We are Hiring an Incident Manager at Flipkart for Bangalore location.Designation - Incident Manager / Senior Incident Manager.
A person has to manage a 15+ team members.Mode of work - Work from the ...Show moreLast updated: 20 days ago
- Promoted
Cyber Incident Handler
3Columnshosur, tamil nadu, in Columns is a specialist cybersecurity firm that delivers a wide range of services, including security assurance, security governance, professional services, and managed services.Solutions include m...Show moreLast updated: 1 day ago
- Promoted
Cyber Security Offshore Delivery Head
A top Tier IT ServicesBengaluru, Karnataka, India Our client, a large global IT services organization, is looking for a senior leader to manage.The role requires managing large-scale teams and complex cybersecurity programs across the.Lead Cyberse...Show moreLast updated: 25 days ago
- Promoted
Guidewire Policycenter dveloper
PwC Acceleration Center IndiaBangalore Rural, Karnataka, India Minimum of 4 to 10 years of experience.Role : Policy Center Configuration developer.Willingness to work Second Shift (2 pm IST to 11 pm IST) to support US based clients.
Demonstrates abilities soluti...Show moreLast updated: 26 days ago
- Promoted
- New!
Major Incident Manager_4 TO 6 YEARS_BANGALORE
Tata Consultancy Servicesbangalore, karnataka, in TCS IS HIRING FOR MAJOR INCIDENT MANAGEMENT_4 TO 6 YEARS_BANGALORE.As a Major Incident Manager, your responsibilities will include : .
Managing Major Incidents, ensuring that they are logged, progress...Show moreLast updated: 5 hours ago
- Promoted
Incident Manager
SourceFuseBengaluru, Karnataka, India SourceFuse Technologies hiring Incident Manager 4-5 years of experience.Work closely with other IT and business teams to ensure seamless coordination during incidents.
Participate in on-call rotatio...Show moreLast updated: 4 days ago
- Promoted
Incident Problem Manager
ConfidentialBengaluru / Bangalore, India We have a new opportunity for 'Problem Manager' with our client.Interested candidates send me your CV to [HIDDEN TEXT].Proven experience in problem and incident management within banking technology...Show moreLast updated: 8 days ago
- Promoted
Sap Incident Manager
ConfidentialBengaluru / Bangalore Responsible for SLA / KPI tracking, management and understanding the importance of SLA compliance to Mckesson business.Responsible for daily / weekly / monthly status updates to the business team.Respons...Show moreLast updated: 30+ days ago
- Promoted
Critical Incident Manager
ConfidentialBengaluru / Bangalore, India Innovatia Technical Services Inc.ITSI) is an industry-leading technology outsourcing support provider with expertise in the telecommunications industry.
Operating for over 20 years, we specialize in...Show moreLast updated: 8 days ago
- Promoted
Cybersecurity Incident Coordinator
HPBengaluru, Karnataka, India This job is with HP, an inclusive employer and a member of myGwork – the largest global platform for the LGBTQ+ business community.
Please do not contact the recruiter directly.Cybersecurity Inciden...Show moreLast updated: 13 days ago
- Promoted
Incident Management
ConfidentialBengaluru / Bangalore Teamware Solutions is seeking a proficient.Incident Management Specialist.You'll be crucial in minimizing the impact of IT service disruptions, overseeing the entire incident lifecycle from detecti...Show moreLast updated: 30+ days ago
- Promoted
Part-Time Cyber Deception & Honeypot-as-a-Service Consultant
CodeGuardian.aihosur, tamil nadu, in Part-Time Cyber Deception & Honeypot-as-a-Service Consultant.Department : Cyber Defense & Threat Intelligence.Part-Time Cyber Deception & Honeypot-as-a-Service Consultant to design, deploy, and mana...Show moreLast updated: 4 days ago
- Promoted
Senior Security Incident Handler
ConfidentialBengaluru / Bangalore, India We are looking for experienced Incident Handlers with cross functional skills, domain expertise and communication skills.
Our mission is to respond to security threats, incidents and investigations ...Show moreLast updated: 8 days ago
- Promoted
Incident Manager
ABBBengaluru, Republic Of India, IN SourceFuse Technologies hiring L2 Engineer - OSS Support with 5+ years of experience.Overview : We are seeking a highly motivated and experienced Open-Source Software (OSS) Support Engineer with a s...Show moreLast updated: 1 day ago
- Promoted
Incident Manager (Global SaaS Operations)
ConfidentialBengaluru / Bangalore, India At ABB, we help industries outrun - leaner and cleaner.Here, progress is an expectation - for you, your team, and the world.
As a global market leader, we'll give you what you need to make it happen...Show moreLast updated: 6 days ago
- Promoted
Incident Response Analyst
ConfidentialBengaluru / Bangalore, India Information Security Senior Global Incident Response Analyst.The position is responsible for acting as a senior analyst during security incidents, coordinating efforts with various members of the I...Show moreLast updated: 8 days ago
- Promoted
Manager - Incident Response
UnitedLexBengaluru, Karnataka, India Responsible for overall performance and management of the team assigned.Responsible for 2-3 projects, concurrently.People management that includes responsibility of performance evaluation, training...Show moreLast updated: 13 days ago