Incident Response Engineer

Who is Tech Mahindra? 

At Tech Mahindra we not only provide Agile and DevOps methodologies to our customers, we have adopted the same within the company as well. Our nimble processes are not mired in red tape, yet robust, flexible and result-oriented. We are Software Engineers, Technical Architects, Cloud and DevOps specialists. But the most important, we are dreamers, creators and challengers. Each day, we strive to make great come alive. Our lemma: “work smart and play hard”

Our technology partners are Hashicorp, Cloudbees, Chef, Pagerduty, Docker, SAP and Google Cloud.

We are always looking for the brightest candidates to come and we offer a work environment with everything you need to be your best. Does Ambition, Success, Fun, Friends & Learning define your idea of a career? Join us and be part of our family!

We’re looking for a Incident Response Engineer 

Location: Mexico- remote

Technical Capabilities:

• Incident Responder and member of the IR and Threat Hunting team.
  
  

  • Incident Responder
    • Lead comprehensive cyber security response, collaborate with IT and security teams, and facilitate knowledge sharing across IR team.
    • Update and maintain Incident Response playbooks.
    • Investigate events leading to potential incidents..
    • Liaise with MSP providing advanced IR and Forensics services.
  • Threat hunting, vulnerability management, and advanced security analysis
    • Work with a team dedicated to operationalizing a variety of tools to perform vulnerability management across multiple environments including newly acquired environments.
    • Analyze attack surface of existing and expanding environments and work with teams to improve the security of the attack surface.

   

  Specific Accountabilities include:
  It is expected that all playbooks are written off a common template using industry standard terminology and frameworks including but not limited to NIST frameworks. Existing documentation should be updated and revised as necessary.

   

  • Lead in the Investigation of potential and known security incidents.

  
  As alerts are generated or escalated from MSPs, they need to be responded to, triaged, and worked until completion.

   

  • Analyze and corelate security events in logs from the existing corporate technical stack including but not limited to:
    
    

  Google Chronicle (SIEM); Google Siemplify (SOAR); Crowdstrike (EDR); Netskope; Microsoft Windows event logs; Microsoft Azure logs; Microsoft Defender logs; Linux logs; Proofpoint mail security logs; Microsoft 365 logs; Palo Alto Firewall logs; Tenable vulnerability scan output

At Tech Mahindra what distinguishes us from other teams is the comfortable environment which engenders trust within teams and with our customers. Trust and openness leads to quality, innovation, commitment to deliverables, efficiency and cost-effectiveness for all our customers.

• Work with some truly remarkable IT engineers, architects, specialists and more.
• We’re growing at a phenomenal pace and we’d like some company.
• Hear your voice, nurture your talent and help you strengthen your foot print!
• Benefits above the law
• Mentorship, and opportunities to grow and learn

If you apply for this opportunity we will get you resume and its contain personal data whose treatment has been authorized by its owner for Digital OnUs, S. de RL de CV (the "Company”). If you are not the owner of this information or have no relation whatsoever with the subjects treated in it, you are requested in the most attentive way not to make copies of it and / or its attached files and delete it immediately, under the risk of being considered as responsible for the unauthorized treatment of personal data in accordance with the Federal Law on Protection of Personal Data Held by Private Parties, its Regulations, and other applicable regulations. If you are the owner of personal data in possession of the Company and wish to obtain further information regarding the processing of your personal data or the exercise of your ARCO rights, please consult our integral privacy notice on the website https://www.digitalonus.com/privacy-policy/