Apply now »

Incident Response_D2881

Find more jobs
Job Level:  Professional
Location: 

IN

Area of Expertise:  IT & Tech Engineering
Unit:  Allianz Technology
Employing Entity:  Allianz Technology SE India Branch
Job Type:  Full-Time
Remote Job:  Hybrid working
Employment Type:  Permanent
ID:  101015
Position Cluster:  Non-Executive

As a Senior Security Incident Responder, you play a key role in this team: you lead complex incident response activities, bring deep technical expertise, and make a significant contribution to continuously improving our security posture and internal capabilities.

Duties and Responsibilities

 

  • Coordinate and own security incident response activities in a heterogeneous, multi-cultural, and geographically distributed environment — engaging all relevant technical and non-technical stakeholders across all phases of an incident.
  • Acquire and analyse data from various sources during incident response activities and report on findings in a clear, actionable manner.
  • Conduct incident reviews, identify improvement potentials, and support the implementation of improvements — including updating guidelines, runbooks, and internal processes.
  • Actively contribute to enhancing ACDC's internal toolset through new ideas on functionality and features, as well as by developing automation scripts and custom tooling.
  • Analyse complex attack patterns and threat actors, derive technical insights, and provide recommendations to improve Allianz's detection and defence capabilities.
  • Collaborate closely with internal teams — including Threat Intelligence, Vulnerability Management, and Business Applications Teams — as well as external partners to ensure holistic and coordinated incident response.
  • Participate in on-call shifts and contribute to the ACDC team's 24/7 availability, ensuring rapid response to critical security incidents at any time.
  • Document and communicate incidents and remediation efforts.
  • Stay updated on cyber threats and security technologies.
  • Communicate effectively with clients and manage expectations.
  • Support audits and adhere to change management processes.
  • Collaborate with teams across Allianz businesses.

Qualification, Experience, Technical and Functional Skills

  • University degree (Master's preferred) in Computer Science, Cyber Security, or a related field.
  • Extensive work experience in Incident Response, including managing complex environments; expertise in IT Forensics, Malware Analysis, or Vulnerability Management is a plus.
  • Comprehensive technical expertise in system architecture with broad proficiency in key IT security technologies: Linux and Windows, Active Directory / Entra ID, web technologies, email, networking, cryptography, and widely used DevOps tools.
  • Software engineering and scripting skills: Python, Golang, Shell scripting, PowerShell, CI/CD, and database management.
  • Strong understanding of technical and organisational aspects of information security, demonstrated through prior defensive or offensive work experience.
  • In-depth knowledge of fundamental attack concepts: terminology, tools, tactics, techniques, and procedures (TTPs).
  • Exceptional analytical and problem-solving mindset with the ability to collect, structure, analyse, and communicate large amounts of information with precision and attention to detail.
  • Excellent communication and interpersonal skills in English (fluent, written and spoken, including security terminology); willingness to participate in on-call shifts. Relevant certifications (e.g. SANS/GIAC, GCIH, GNFA, GCFA, GREM, GCFE, GIME), CompTIA Security+, CISSP, CISA, or CISM) are a plus but not mandatory.

Key Competencies

 

  • Incident Response: Expertise in handling and responding to security incidents effectively.
  • Deep understanding of cybersecurity, network security, and malware analysis. Proficient with security tools like SIEM and EDR and other SOC tools.
  • Attack Knowledge: Familiar with frameworks like MITRE ATT&CK to understand attacker methods.
  • Threat Hunting: Ability to proactively identify and analyse threats within the network.
  • Scripting: Proficient in Python or PowerShell for automating tasks would be added advantage.
  • Cloud Security: Understanding of security in cloud environments like AWS, Azure, or GCP.
  • Communication: Strong skills in conveying technical information clearly.
  • Problem-Solving: Excellent at diagnosing and resolving security issues.
  • Collaboration: Ability to work well with teams and mentor junior staff.
  • Adaptability: Comfortable working in fast-paced and changing environments.
  • Continuous Learning: Keeps up with the latest cyber threats and technologies

          Familiarity with basic AI tools is considered an advantage.

Allianz Group is one of the most trusted insurance and asset management companies in the world. Caring for our employees, their ambitions, dreams and challenges, is what makes us a unique employer. Together we can build an environment where everyone feels empowered and has the confidence to explore, to grow and to shape a better future for our customers and the world around us. 

At Allianz, we stand for unity: we believe that a united world is a more prosperous world, and we are dedicated to consistently advocating for equal opportunities for all. And the foundation for this is our inclusive workplace, where people and performance both matter, and nurtures a culture grounded in integrity, fairness, inclusion and trust. 

We therefore welcome applications regardless of ethnicity or cultural background, age, gender, nationality, religion, social class, disability or sexual orientation, or any other characteristics protected under applicable local laws and regulations. 

Great to have you on board. Let's care for tomorrow

Apply now »