Job title: Senior Cyber Incident Responder
Location: Hyderabad
Opella is the self-care challenger with the purest and third-largest portfolio in the Over-The-Counter (OTC) & Vitamins, Minerals & Supplements (VMS) market globally.
Our mission is to bring health in people’s hands by making self-care as simple as it should be. For half a billion consumers worldwide – and counting.
At the core of this mission is our 100 loved brands, our 11,000-strong global team, our 13 best-in-class manufacturing sites and 4 specialized science and innovation development centers. Headquartered in France, Opella is the proud maker of many of the world’s most loved brands, including Allegra, Buscopan, Doliprane, Dulcolax, Enterogermina, Essentiale and Mucosolvan.
As a globally certified B Corp company, we are active players in the journey towards healthier people and planet. Find out more about our mission at www.opella.com.
About the Job:
Role Overview and Responsibilities:
The Cyber Incident Responder serves as the front-line tactical defender for Opella’s internal security operations, directly driving the initiative to reduce critical response times from hours to minutes. This role is responsible for executing zero-touch containment playbooks, natively investigating high-fidelity alerts to bypass external vendor queues, and serving as the immediate tactical commander during critical, business-impacting cyber events. Furthermore, this role actively monitors Dark Web intelligence to protect Opella's brand reputation and manages complex forensic escalations, holding external SOC vendors accountable to strict SLAs while continuously refining incident readiness through tabletop simulations.
Key Responsibilities:
Act as the primary DFIR lead for internal escalations, intercepting alerts natively to drastically reduce MTTR for threats targeting Opella’s consumer-facing digital health platforms and supply chain infrastructure.
Intercept and investigate Tier-1 and Tier-2 alerts natively, bypassing the external SOC vendor to drastically reduce Mean Time to Respond (MTTR).
Execute bit-for-bit forensic image acquisition of volatile memory (RAM) and physical disks (using FTK Imager, KAPE, SIFT Workstation) from compromised endpoints, specifically prioritizing critical FMHC assets like R&D servers or e-commerce databases.
Perform initial static and dynamic malware analysis on suspicious payloads and phishing artifacts to identify ransomware or data exfiltration attempts, determining the immediate blast radius before lateral movement into manufacturing or consumer data zones can occur.
Conduct deep-dive timeline analysis and artifact recovery (e.g., Windows Registry, Prefetch, Event Logs) to establish the root cause and attack vector of compromised systems.
Monitor and respond to all Dark Web intelligence, including data leaks, credential theft, and illegal marketplace sales, within a strict 24-hour SLA.
Serve as the immediate tactical commander during critical (P1) business-impacting cyber events.
Act as the technical bridge to the external SOC vendor, managing complex forensic escalations and holding the vendor accountable to agreed-upon SLAs.
Participate actively in bi-annual cyber-attack simulations and tabletop exercises to validate the Severity 1 Recovery Playbook.
Draft comprehensive Post-Incident Reports that detail root cause analysis and recommend technical control improvements to continuously harden the FMHC digital attack surface.
Provide clear, non-technical incident updates to IT infrastructure teams, business stakeholders, and the Sr. Manager of Operations, translating technical risks into business continuity and brand reputation impacts.
Maintain seamless operational continuity through detailed shift-handoff documentation and continuous threat monitoring, maintaining on-call readiness to lead containment efforts during non-business hour Severity 1 emergencies.
About You:
Qualifications & Requirements:
Bachelor’s degree in Cybersecurity, Computer Science, or a related technical field with 5+ years of hands-on SOC or Incident Response experience.
Industry-recognized certifications such as GCIH, CEH, CySA+, or related SANS certifications.
Deep operational experience with enterprise EDR platforms, SIEM querying, SOAR , NDR , Microsoft Dender and SOAR workflows.
Strong capability in reading network traffic (PCAP), analyzing OS internals, and executing basic Python/PowerShell scripts during active incidents.
Experience working in Google SecOps, Splunk, ArcSight or relevant SIEM technologies.
Handon Experience In Velociraptor, EnCase or other Opensource forensic acquisition Tools
Why us?
At Opella, you will enjoy doing challenging, purposeful work, empowered to develop consumer brands with passion and creativity. This is your chance to grow new skills and be part of a bold, collaborative, and inclusive culture where people can thrive and be at their best every day.
We Are Challengers.
We are dedicated to making self-care as simple as it should be. That starts with our culture. We are challengers by nature, and this is how we do things:
All In Together: We keep each other honest and have each other's backs.
Courageous: We break boundaries and take thoughtful risks with creativity.
Outcome-Obsessed: We are personally accountable, driving sustainable impact and results with integrity.
Radically Simple: We strive to make things simple for us and simple for consumers, as it should be.
Join us on our mission. Health. In your hands.