Job Application for Cybersecurity Incident Response Analyst at Brandtech+

New

Brandtech+ (formerly known as OLIVER+) is a global team of creative thinkers, tech-savvy trendsetters, and production pros specialising in film, CGI, automation, AI, motion design, and digital/print content. We partner with over 300 clients in 40+ countries and counting. Our focus is to connect clients with high-quality solutions, talent and ambitious opportunities worldwide. 

As a part of The Brandtech Group, we're at the forefront of leveraging cutting-edge AI technology to revolutionise how we create and deliver work. Our AI solutions enhance efficiency, spark creativity, and drive insightful decision-making, empowering our teams to produce innovative and impactful results.

Role: Cybersecurity Incident Response Analyst

Location: Mumbai, India

About the role:

The Incident Response L1 Analyst is the first line of defence in the cybersecurity incident response function. This role focuses on monitoring, initial detection, triage, and escalation of security incidents across the organization’s IT environment. The L1 analyst works closely with SOC, L2/L3 IR teams, and IT teams to ensure timely identification and containment of threats.

What you will be doing:

1. Security Monitoring & Detection

• Continuously monitor security alerts from SIEM, SOAR, EDR, XDR, email security, and cloud security tools

• Identify potential security incidents such as: o Phishing and malicious emails o Malware and ransomware detections o Suspicious logins and account compromise attempts o Endpoint and network anomalies

2. Incident Triage & Initial Analysis

• Perform initial investigation and validation of alerts to determine if they are true positives or false positives

• Classify incidents based on severity, impact, and urgency

• Collect and document basic evidence (logs, alerts, affected users/devices, timestamps)

3. Incident Response (L1 Scope)

• Execute pre-approved response actions, such as: o Isolating endpoints (via EDR) o Resetting compromised user passwords o Blocking malicious IPs, URLs, or senders o Quarantining emails or files

• Follow Incident Response Playbooks and SOPs

4. Escalation & Coordination

• Escalate confirmed or high-severity incidents to L2/L3 Incident Responders with complete and accurate context

• Coordinate with IT, Endpoint, Identity, and Email teams when required

• Maintain clear communication during active incidents

5. Documentation & Reporting

• Accurately document incidents in the ticketing or IR management system

• Maintain clear timelines, actions taken, and outcomes

• Support daily/weekly incident reports and metrics

6. Continuous Improvement

• Identify recurring issues or alert patterns and raise recommendations

• Assist in improving detection rules, playbooks, and response workflows

• Stay updated on emerging threats, attack techniques, and security best practices

What you need to be great in this role:

Technical Skills

• Basic understanding of:

o Cybersecurity fundamentals (CIA triad, attack lifecycle)

o Common attack types (phishing, malware, brute force, ransomware)

o Windows, macOS, and basic Linux concepts

• Familiarity with security tools such as:

o SIEM (e.g., Microsoft Sentinel, Splunk)

o EDR/XDR (e.g., Microsoft Defender, CrowdStrike)

o Email security and web security gateways

• Basic log analysis and alert interpretation skills

Soft Skills

• Strong attention to detail

• Ability to follow processes and playbooks accurately

• Calm and methodical approach during security incidents

• Good written and verbal communication

• Willingness to work in shifts / 24×7 environment

• Bachelor’s degree in IT, Computer Science, Cybersecurity, or related field (preferred)

• 2+ years of experience in SOC, IR, or IT Security roles

• Entry-level cybersecurity certifications are a plus:

o CompTIA Security+

o Microsoft SC-900 / SC-200

o CEH (Foundation level)

Req ID: 17247

#LI-AK1 #BTG+

Our values shape everything we do:

Be Ambitious to succeed 

Be Imaginative to push the boundaries of what’s possible 

Be Inspirational to do groundbreaking work 

Be always learning and listening to understand 

Be Results-focused  to exceed expectations 

Be actively pro-inclusive and anti-racist across our community, clients and creations 

Brandtech+, a part of the Brandtech Group, is an equal opportunity employer committed to creating an inclusive working environment where all employees are encouraged to reach their full potential, and individual differences are valued and respected. All applicants shall be considered for employment without regard to race, ethnicity, religion, gender, sexual orientation, gender identity, age, neurodivergence, disability status, or any other characteristic protected by local laws. 

Brandtech+ has set ambitious environmental goals around sustainability, with science-based emissions reduction targets. Collectively, we work towards our mission, embedding sustainability into every department and through every stage of the project lifecycle.'

Create a Job Alert

Interested in building your career at Brandtech+ ? Get future opportunities sent straight to your email.

First Name

Last Name

Preferred First Name

Country

Phone

Location (City)

Resume/CV*

Accepted file types: pdf, doc, docx, txt, rtf

Cover Letter

Accepted file types: pdf, doc, docx, txt, rtf

LinkedIn profile

What is your current location?

How many total years of experience do you have?

What is your current gross per annum?

What are your salary expectations gross per annum?

What is your notice period?

Do you have experience working in the UK/EMEA or any other international markets?

Select...

Do you have minimum 1 to 3+ years of experience in basic Incident Response/documentation and reporting of security incidents?

Select...

Are you comfortable with working in 24*7 rotational shifts?

Select...

Do you have an experience in Triage and Escalation of security incidents?

Select...

Do you have an experience in working on Security Tools like Cloud Security, SIEM, SOAR, EDR, XDR and Email Security?

Select...

Were you a part of Oliver, IIG or BTG+(Formely known as Oliver+) in the past?

Select...

Have you been referred by an Employee of BTG+, OLIVER or IIG? If YES, please share their name so we can send them a Thank You note !!

Select...

Do you have the right to work in the country where you are applying for the role?

Will you require employer sponsorship now or in the future?

Select...

Should you be shortlisted for this role, please indicate if you require any reasonable accommodations or assistance during the interview process?

Select...

Point of data transfer

Select...

When you apply to a job on this site, the personal data contained in your application will be collected by OLIVER (“Controller”) which is located at 151 Rosebery Avenue, EC1R 4 AB and can be contacted by emailing HR@oliver.agency or Adjust Your Set (“Controller”) which is located at 151 Rosebery Avenue, EC1R 4 AB and can be contacted by emailing HR@oliver.agency or DARE(“Controller”) which is located at 151 Rosebery Avenue, EC1R 4 AB and can be contacted by emailing HR@oliver.agency or Aylesworth Fleming (“Controller”) which is located at 151 Rosebery Avenue, EC1R 4 AB and can be contacted by emailing HR@oliver.agency (“Controller”). Your personal data will be processed for the purposes of managing Controller’s recruitment related activities, which include setting up and conducting interviews and tests for applicants, evaluating and assessing the results thereto, and as is otherwise needed in the recruitment and hiring processes. Such processing is legally permissible under Art. 6(1)(f) of Regulation (EU) 2016/679 (General Data Protection Regulation) as necessary for the purposes of the legitimate interests pursued by the Controller, which are the solicitation, evaluation, and selection of applicants for employment.

Your personal data will be shared with Greenhouse Software, Inc., a cloud services provider located in the United States of America and engaged by Controller to help manage its recruitment and hiring process on Controller’s behalf. Accordingly, if you are located outside of the United States, your personal data will be transferred to the United States once you submit it through this site.

Your personal data will be retained by Controller as long as Controller determines it is necessary to evaluate your application for employment. Under the GDPR, you have the right to request access to your personal data, to request that your personal data be rectified or erased, and to request that processing of your personal data be restricted. You also have to right to data portability. In addition, you may lodge a complaint with an EU supervisory authority.

India Demographic Question Set

As part of our commitment to equity, diversity and inclusion, we are asking individuals seeking employment with OLIVER and Brandtech+, The Inside Ideas Group to complete this voluntary self-identification survey. We know that by creating a culture of inclusion we will attract and retain a diverse workforce that creates a more rewarding work environment, stimulates creativity and delivers better overall performance.

Completion is entirely voluntary, and you may identify in more than one designation group. Completion will not affect your opportunity for employment, or the terms or conditions of your employment. This information will not be taken into consideration when assessing your application and can only be viewed on an anonymised aggregated basis. For the protection of our legitimate interests, we may need to retain this information for a defined period to keep the records of our hiring process.

How would you describe your gender identity?

Select...

Do you have a disability or chronic condition (physical, visual, auditory, cognitive, mental, emotional, or other) that substantially limits one or more of your major life activities, including mobility, communication (sight, hearing, speech), & learning?

Select...

Cybersecurity Incident Response Analyst

Apply for this job

India Demographic Question Set