Pick a job to read the details

Tap any role on the left — its description and apply link will open here.

Senior GRC Analyst

Workato · Chennai, India

Product & Engineering Bangalore, India Posted May 8, 2026

About Workato

Workato delivers enterprise infrastructure for the agentic era, redefining iPaaS and helping enterprises unify data, applications, processes, and AI into a single, governed platform. A leader in Enterprise MCP and trusted by 50% of the Fortune 500, Workato’s cloud-native architecture connects every application, data source, and process to power real-time orchestration at scale. With enterprise-grade security and continuous innovation at its core, Workato provides the trusted foundation for organizations to automate with confidence and operationalize AI across the business. To learn more, visit www.workato.com

Why join us?

Ultimately, Workato believes in fostering a flexible, trust-oriented culture that empowers everyone to take full ownership of their roles. We are driven by innovation and looking for team players who want to actively build our company.

But, we also believe in balancing productivity with self-care. That’s why we offer all of our employees a vibrant and dynamic work environment along with a multitude of benefits they can enjoy inside and outside of their work lives.

If this sounds right up your alley, please submit an application. We look forward to getting to know you!

Also, feel free to check out why:

Business Insider named us an “enterprise startup to bet your career on”
Forbes’ Cloud 100 recognized us as one of the top 100 private cloud companies in the world
Deloitte Tech Fast 500 ranked us as the 17th fastest growing tech company in the Bay Area, and 96th in North America
Quartz ranked us the #1 best company for remote workers

Responsibilities

We are looking for an exceptional Senior GRC Analyst to join our growing team. In this role, you will lead compliance assessments for frameworks such as NIST 800-171, ISO 27001, NIST 800-53 (FedRAMP), PCI, MLPS and IRAP, while also driving broader security compliance efforts. The ideal candidate will use strong analytical, communication, and problem-solving skills to evaluate controls, identify gaps, and recommend improvements across security domains. You will also be responsible for:

Lead and participate in both internal and external audits for frameworks including ISO 27001/27701, PCI-DSS, NIST 800-171, NIST 800-53 (FedRamp), and IRAP
Experience using or exploring AI/automation tools to enhance, streamline, or scale Governance, Risk, and Compliance (GRC) processes and workflows
Manage and oversee risk, compliance, and governance initiatives across teams
Coordinate with process owners, control owners, auditors, and consultants to ensure findings are tracked and addressed
Conduct risk assessments, security audits, and third-party/vendor risk reviews
Review contracts to ensure security and compliance requirements are met
Identify process gaps and recommend improvements to enhance the organization’s security posture
Communicate risks and compliance requirements clearly to both technical and non-technical stakeholders
Perform regular user access reviews
Develop and track remediation plans for identified risks and issues
Maintain and update the risk register
Oversee vendor security assurance processes
Collaborate with stakeholders to design and implement effective internal controls aligned with regulatory standards
Support risk and security discussions across cross-functional teams
Build strong working relationships across departments
Take on additional responsibilities as needed

Requirements

Qualifications / Experience / Technical Skills

Please note that the working hours for this position are from 2:00 PM to 11:00 PM IST (overlap with U.S. Pacific Time required)

8+ years of experience in cybersecurity programs, audits, risk management, compliance, or remediation
Experience working with cloud platforms such as AWS, Azure, or Google Cloud
Proven ability to negotiate and prioritize risk remediation with internal stakeholders
Bachelor’s degree in Information Systems, Computer Science, Information Security, or a related field
Strong understanding of security controls, including cloud environments, firewalls, IDS/IPS, and vulnerability management
Familiarity with NIST 800-171 and NIST Risk Management Framework (NIST 800-53)
Experience auditing frameworks such as PCI-DSS, SOC 2, and ISO 27001/27701
Relevant certifications (CISSP, CISA, PCI ISA, ISO, or similar) are preferred
Ability to manage multiple priorities independently with minimal supervision

Soft Skills / Personal Characteristics

Strong communication skills with the ability to translate compliance requirements into technical actions
High energy and adaptability in a fast-paced environment
Strong collaboration and a knowledge-sharing mindset
Excellent time management and organizational skills
High attention to detail, integrity, and ethical standards
Willingness to learn and take on new challenges

Additional requirements

May involve some international travel
This position requires overlap with U.S. Pacific Time (PST) working hours. Candidates should be available and flexible to work from 2:00 PM to 11:00 PM IST.
Strong hands-on experience with PCI audits, ISO 27001, NIST 800-171, FedRamp, SOC 2, and potentially IRAP is required.

To help your application stand out, please take time to answer the Job Application Questions below clearly and concisely. All submissions are reviewed by our Hiring Team, not evaluated by AI.

(REQ ID: 2760)

Ready to apply?

Apply to Workato

Workato

View all jobs →

Senior GRC Analyst

Workato · Hyderabad, India

Apply now

Product & Engineering Bangalore, India Posted May 8, 2026

About Workato

Workato delivers enterprise infrastructure for the agentic era, redefining iPaaS and helping enterprises unify data, applications, processes, and AI into a single, governed platform. A leader in Enterprise MCP and trusted by 50% of the Fortune 500, Workato’s cloud-native architecture connects every application, data source, and process to power real-time orchestration at scale. With enterprise-grade security and continuous innovation at its core, Workato provides the trusted foundation for organizations to automate with confidence and operationalize AI across the business. To learn more, visit www.workato.com

Why join us?

Ultimately, Workato believes in fostering a flexible, trust-oriented culture that empowers everyone to take full ownership of their roles. We are driven by innovation and looking for team players who want to actively build our company.

But, we also believe in balancing productivity with self-care. That’s why we offer all of our employees a vibrant and dynamic work environment along with a multitude of benefits they can enjoy inside and outside of their work lives.

If this sounds right up your alley, please submit an application. We look forward to getting to know you!

Also, feel free to check out why:

Business Insider named us an “enterprise startup to bet your career on”
Forbes’ Cloud 100 recognized us as one of the top 100 private cloud companies in the world
Deloitte Tech Fast 500 ranked us as the 17th fastest growing tech company in the Bay Area, and 96th in North America
Quartz ranked us the #1 best company for remote workers

Responsibilities

We are looking for an exceptional Senior GRC Analyst to join our growing team. In this role, you will lead compliance assessments for frameworks such as NIST 800-171, ISO 27001, NIST 800-53 (FedRAMP), PCI, MLPS and IRAP, while also driving broader security compliance efforts. The ideal candidate will use strong analytical, communication, and problem-solving skills to evaluate controls, identify gaps, and recommend improvements across security domains. You will also be responsible for:

Lead and participate in both internal and external audits for frameworks including ISO 27001/27701, PCI-DSS, NIST 800-171, NIST 800-53 (FedRamp), and IRAP
Experience using or exploring AI/automation tools to enhance, streamline, or scale Governance, Risk, and Compliance (GRC) processes and workflows
Manage and oversee risk, compliance, and governance initiatives across teams
Coordinate with process owners, control owners, auditors, and consultants to ensure findings are tracked and addressed
Conduct risk assessments, security audits, and third-party/vendor risk reviews
Review contracts to ensure security and compliance requirements are met
Identify process gaps and recommend improvements to enhance the organization’s security posture
Communicate risks and compliance requirements clearly to both technical and non-technical stakeholders
Perform regular user access reviews
Develop and track remediation plans for identified risks and issues
Maintain and update the risk register
Oversee vendor security assurance processes
Collaborate with stakeholders to design and implement effective internal controls aligned with regulatory standards
Support risk and security discussions across cross-functional teams
Build strong working relationships across departments
Take on additional responsibilities as needed

Requirements

Qualifications / Experience / Technical Skills

Please note that the working hours for this position are from 2:00 PM to 11:00 PM IST (overlap with U.S. Pacific Time required)

8+ years of experience in cybersecurity programs, audits, risk management, compliance, or remediation
Experience working with cloud platforms such as AWS, Azure, or Google Cloud
Proven ability to negotiate and prioritize risk remediation with internal stakeholders
Bachelor’s degree in Information Systems, Computer Science, Information Security, or a related field
Strong understanding of security controls, including cloud environments, firewalls, IDS/IPS, and vulnerability management
Familiarity with NIST 800-171 and NIST Risk Management Framework (NIST 800-53)
Experience auditing frameworks such as PCI-DSS, SOC 2, and ISO 27001/27701
Relevant certifications (CISSP, CISA, PCI ISA, ISO, or similar) are preferred
Ability to manage multiple priorities independently with minimal supervision

Soft Skills / Personal Characteristics

Strong communication skills with the ability to translate compliance requirements into technical actions
High energy and adaptability in a fast-paced environment
Strong collaboration and a knowledge-sharing mindset
Excellent time management and organizational skills
High attention to detail, integrity, and ethical standards
Willingness to learn and take on new challenges

Additional requirements

May involve some international travel
This position requires overlap with U.S. Pacific Time (PST) working hours. Candidates should be available and flexible to work from 2:00 PM to 11:00 PM IST.
Strong hands-on experience with PCI audits, ISO 27001, NIST 800-171, FedRamp, SOC 2, and potentially IRAP is required.

To help your application stand out, please take time to answer the Job Application Questions below clearly and concisely. All submissions are reviewed by our Hiring Team, not evaluated by AI.

(REQ ID: 2760)

Ready to apply?

Apply to Workato

Workato

View all jobs →

Senior GRC Analyst

Workato · Bangalore, India

Apply now

Product & Engineering Bangalore, India Posted May 8, 2026

About Workato

Workato delivers enterprise infrastructure for the agentic era, redefining iPaaS and helping enterprises unify data, applications, processes, and AI into a single, governed platform. A leader in Enterprise MCP and trusted by 50% of the Fortune 500, Workato’s cloud-native architecture connects every application, data source, and process to power real-time orchestration at scale. With enterprise-grade security and continuous innovation at its core, Workato provides the trusted foundation for organizations to automate with confidence and operationalize AI across the business. To learn more, visit www.workato.com

Why join us?

Ultimately, Workato believes in fostering a flexible, trust-oriented culture that empowers everyone to take full ownership of their roles. We are driven by innovation and looking for team players who want to actively build our company.

But, we also believe in balancing productivity with self-care. That’s why we offer all of our employees a vibrant and dynamic work environment along with a multitude of benefits they can enjoy inside and outside of their work lives.

If this sounds right up your alley, please submit an application. We look forward to getting to know you!

Also, feel free to check out why:

Business Insider named us an “enterprise startup to bet your career on”
Forbes’ Cloud 100 recognized us as one of the top 100 private cloud companies in the world
Deloitte Tech Fast 500 ranked us as the 17th fastest growing tech company in the Bay Area, and 96th in North America
Quartz ranked us the #1 best company for remote workers

Responsibilities

We are looking for an exceptional Senior GRC Analyst to join our growing team. In this role, you will lead compliance assessments for frameworks such as NIST 800-171, ISO 27001, NIST 800-53 (FedRAMP), PCI, MLPS and IRAP, while also driving broader security compliance efforts. The ideal candidate will use strong analytical, communication, and problem-solving skills to evaluate controls, identify gaps, and recommend improvements across security domains. You will also be responsible for:

Lead and participate in both internal and external audits for frameworks including ISO 27001/27701, PCI-DSS, NIST 800-171, NIST 800-53 (FedRamp), and IRAP
Experience using or exploring AI/automation tools to enhance, streamline, or scale Governance, Risk, and Compliance (GRC) processes and workflows
Manage and oversee risk, compliance, and governance initiatives across teams
Coordinate with process owners, control owners, auditors, and consultants to ensure findings are tracked and addressed
Conduct risk assessments, security audits, and third-party/vendor risk reviews
Review contracts to ensure security and compliance requirements are met
Identify process gaps and recommend improvements to enhance the organization’s security posture
Communicate risks and compliance requirements clearly to both technical and non-technical stakeholders
Perform regular user access reviews
Develop and track remediation plans for identified risks and issues
Maintain and update the risk register
Oversee vendor security assurance processes
Collaborate with stakeholders to design and implement effective internal controls aligned with regulatory standards
Support risk and security discussions across cross-functional teams
Build strong working relationships across departments
Take on additional responsibilities as needed

Requirements

Qualifications / Experience / Technical Skills

Please note that the working hours for this position are from 2:00 PM to 11:00 PM IST (overlap with U.S. Pacific Time required)

8+ years of experience in cybersecurity programs, audits, risk management, compliance, or remediation
Experience working with cloud platforms such as AWS, Azure, or Google Cloud
Proven ability to negotiate and prioritize risk remediation with internal stakeholders
Bachelor’s degree in Information Systems, Computer Science, Information Security, or a related field
Strong understanding of security controls, including cloud environments, firewalls, IDS/IPS, and vulnerability management
Familiarity with NIST 800-171 and NIST Risk Management Framework (NIST 800-53)
Experience auditing frameworks such as PCI-DSS, SOC 2, and ISO 27001/27701
Relevant certifications (CISSP, CISA, PCI ISA, ISO, or similar) are preferred
Ability to manage multiple priorities independently with minimal supervision

Soft Skills / Personal Characteristics

Strong communication skills with the ability to translate compliance requirements into technical actions
High energy and adaptability in a fast-paced environment
Strong collaboration and a knowledge-sharing mindset
Excellent time management and organizational skills
High attention to detail, integrity, and ethical standards
Willingness to learn and take on new challenges

Additional requirements

May involve some international travel
This position requires overlap with U.S. Pacific Time (PST) working hours. Candidates should be available and flexible to work from 2:00 PM to 11:00 PM IST.
Strong hands-on experience with PCI audits, ISO 27001, NIST 800-171, FedRamp, SOC 2, and potentially IRAP is required.

To help your application stand out, please take time to answer the Job Application Questions below clearly and concisely. All submissions are reviewed by our Hiring Team, not evaluated by AI.

(REQ ID: 2760)

Ready to apply?

Apply to Workato

Workato

View all jobs →

Senior Information Security Engineer – Data

Rubrik Job Board · Bangalore, India

Apply now

Information Security Bangalore, India Office Posted May 6, 2026

About the team & role:

The Information Security organisation advances the overall state of security at Rubrik through critical initiatives and the coordination of large security projects. Information Security builds technologies, tools, and processes to better enable teams at Rubrik to develop secure software and protect data and systems with appropriate security controls. Information Security also develops systems to monitor and respond to attacks against our systems, provides awareness education to teams on security best practices for data protection, and ensures data sharing relationships with third parties in order to securely protect Rubrik information.
We are seeking a Senior Security Engineer to bridge the gap between traditional Security Operations and modern Data Engineering. You will be responsible for the day-to-day health of our SIEM ecosystem while simultaneously contributing in transition toward a Security Data Lake architecture. This is a hands-on, high-impact role that leverages Programming, Cloud Warehouses and AI to defend a global multi-cloud footprint.

What you’ll do?

SIEM Administration: Handle day-to-day operations of market-leading SIEM platforms (e.g., Splunk, Sentinel, or Chronicle). This includes log ingestion from a variety of sources like Network devices, 3rd party vendor APIs, Cloud Services, Webhooks etc.. parsing/normalisation to a common schema, health monitoring checks, User access management and Cost Monitoring.
Security Data Lake Operationalisation: Develop and maintain the infrastructure/Platform that moves security telemetry from raw sources into Snowflake, BigQuery, or Databricks. Tune/Optimise Ingestion at Scale for cost efficiency and Enable SOC team and Threat Detection team to leverage the Security Data lake for their Search and Analytics workloads.
AI & Agentic Automation: Proactively integrate AI tools and LLMs into daily workflows; develop AI agents to automate Tier 1/2 SecOps tasks like Incident Investigation and Response.
Cross-Team Collaboration: Partner with global teams across time zones and manage Stakeholder communication.

Experience you'll need:

Experience: 5+ years in Security Ops and Engineering, focusing on Security Data management and Automation.
SIEM and SOAR Mastery: Hands-on experience with at least one market-leading SIEM (Splunk, Microsoft Sentinel, Elastic) and SOAR platform (Palo Alto XSOAR, Splunk SOAR).
Cloud Data Warehousing: Practical experience administering or developing within Snowflake, BigQuery, and/or Databricks. Prior experience in building/maintaining data platforms that can manage 50-100 TB/day data is a big plus.
Programming: Strong proficiency in Python and Shell scripting.
Data Engineering Knowledge: Understanding of Cloud warehouse and Lakehouse concepts, Open Table formats and Search engines for a composable Security Data stack.
Cloud Infrastructure: Solid experience in one major cloud (AWS/GCP/Azure); Multi-cloud familiarity is a major plus.
AI Fluency: Demonstrated experience or strong inclination towards utilising various AI tools to significantly enhance effectiveness (force multiplier) and solve complex business problems, particularly within SecOps and GRC domains.
Nice to have
- Exposure to Cloud Logging frameworks and best practices for Security Telemetry ingestion.
- Familiarity with container orchestration (Kubernetes/EKS/GKE).
- Interest/experience in building AI-driven security workflows.
- Knowledge of modern CI/CD patterns and DevOps security integrations.
- Experience with Terraform or other IaC tools.

Join Us in Securing and Accelerating the World's AI Transformation

Rubrik (RBRK), the Security and AI Operations Company, leads at the intersection of data protection, cyber resilience, and enterprise AI acceleration. Rubrik Security Cloud delivers complete cyber resilience by securing, monitoring, and recovering data, identities, and workloads across clouds. Rubrik Agent Cloud accelerates trusted AI agent deployments at scale by monitoring and auditing agentic actions, enforcing real-time guardrails, fine-tuning for accuracy and undoing agentic mistakes.

Linkedin | X (formerly Twitter) | Instagram | Rubrik.com

Inclusion @ Rubrik

At Rubrik, we are dedicated to fostering a culture where people from all backgrounds are valued, feel they belong, and believe they can succeed. Our commitment to inclusion is at the heart of our mission to secure the world’s data.

Our goal is to hire and promote the best talent, regardless of background. We continually review our hiring practices to ensure fairness and strive to create an environment where every employee has equal access to opportunities for growth and excellence. We believe in empowering everyone to bring their authentic selves to work and achieve their fullest potential.

Our inclusion strategy focuses on three core areas of our business and culture:

Our Company: We are committed to building a merit-based organization that offers equal access to growth and success for all employees globally. Your potential is limitless here.
Our Culture: We strive to create an inclusive atmosphere where individuals from all backgrounds feel a strong sense of belonging, can thrive, and do their best work. Your contributions help us innovate and break boundaries.
Our Communities: We are dedicated to expanding our engagement with the communities we operate in, creating opportunities for underrepresented talent and driving greater innovation for our clients. Your impact extends beyond Rubrik, contributing to safer and stronger communities.

Equal Opportunity Employer/Veterans/Disabled

Rubrik is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.

Rubrik provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. In addition to federal law requirements, Rubrik complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.

Federal law requires employers to provide reasonable accommodation to qualified individuals with disabilities. Please contact us at hr@rubrik.com if you require a reasonable accommodation to apply for a job or to perform your job. Examples of reasonable accommodation include making a change to the application process or work procedures, providing documents in an alternate format, using a sign language interpreter, or using specialized equipment.

EEO IS THE LAW

NOTIFICATION OF EMPLOYEE RIGHTS UNDER FEDERAL LABOR LAWS

Ready to apply?

Apply to Rubrik Job Board

Rubrik Job Board

View all jobs →

Senior UX Designer

OneTrust · Bengaluru, India

Apply now

Engineering Bangalore, India Posted May 6, 2026

Strength in Trust

OneTrust’s mission is to enable innovation through the responsible use of data and AI. We believe that ensuring data is trusted shouldn’t slow teams down—it should accelerate what’s possible. This led us to develop the first technology platform for responsible data use in 2016. Today, with AI representing the latest and most impactful expansion of data yet, OneTrust is once again redefining what responsible innovation looks like. OneTrust, the AI‑Ready Governance Platform™, unifies regulatory intelligence, automation, and connected governance workflows so businesses can continue to move at the speed of AI while ensuring good governance to prevent data misuse at scale. Trusted by thousands of organizations worldwide, OneTrust is shaping the future where trusted data becomes a transformative force for business and society.

The Challenge

Due to rapid growth and increased demand for our Privacy, Security, Data Governance, GRC, Third-Party Risk, Ethics and Compliance, and ESG platform, OneTrust is seeking a Senior UX Designer to join the User Experience Design team within our dynamic Research and Development team.  

This team continually improves the usability, design, and overall experience of OneTrust offerings, including web applications and other products and services. It is an excellent opportunity to improve the experience of an exceptionally wide range of users around the world.  

Your Mission

Work under the guidance of a Principal UX Designer
Create end‑to‑end UX deliverables: information architecture, interface design, interaction design, and low‑ to high‑fidelity prototypes
Identify, define, and promote UX standards and best practices, including templates
Define and analyze UX metrics using web data, customer support inputs, and other sources
Monitor and apply relevant UX and industry trends
Act as a UX advocate across the organization

You Are

A strong collaborator with effective cross‑functional communication skills
A self‑learner who enjoys researching and applying UX trends
Comfortable working in rapid, iterative design and development environments

Your Experience Includes

Bachelor’s degree in Computer Science, Human‑Computer Interaction, Industrial Design, or related field
5–8 years of experience across the full product design lifecycle (research to rollout)
Strong portfolio demonstrating UX work
Experience with design tools (Figma, Sketch, InVision, Adobe Creative Suite, etc.)
Deep expertise in at least one UX discipline (research, IA, visual design, or interaction design)
Strong collaboration skills with R&D, product managers, and senior leadership
Enterprise product and web‑based application design experience
Experience leading a team
Familiarity with data privacy, third‑party risk management, and/or security domains
Scrum certification

Where we Work

We are embracing an office-first culture, encouraging three days a week in office for most roles, with meaningful opportunities to collaborate and celebrate in person.

Each role may have specific requirements or flexibility depending on the scope of the position, so we encourage you to verify this with your recruiter during your first interview.

Benefits

As an employee at OneTrust, you will be part of the OneTeam. That means you’ll receive support physically, mentally, and emotionally so that you can do your best work both in and out of the office. This includes comprehensive healthcare coverage, flexible PTO, equity RSUs, annual performance bonus opportunities, retirement account support, 14+ weeks of paid parental leave, career development opportunities, company-paid privacy certification exam fees, and much more. Specific benefits differ by country. For more information, talk to your recruiter or visit onetrust.com/careers.

Resources

Check out the following to learn more about OneTrust and its people:

Your Data

You have the right to have your personal data updated or removed. You also have the right to have a copy of the information OneTrust holds about you. Further details about these rights are available on the website in our Privacy Overview. You can change your mind at any time and have your personal data removed from our database. In order to do this you must contact us and let us know you wish to be removed. The request should be made on the Data Subject Request Form.

Recruitment fraud warning: OneTrust is aware of scams involving false offers of employment with our company. The fraudulent jobs, interviews and job offers use fake websites, email addresses, group chat and text messages. Be aware that we never ask candidates for personal information, IDs or bank information during the interview process. We do not interview prospective candidates via instant message or group chat, and do not require candidates to purchase products or services, or process payments on our behalf as a condition of any employment offer. Please note that any legitimate interview availability requests will come directly from a OneTrust recruiter with an "@onetrust.com" email address. You may also receive legitimate emails from "@us.greenhouse-mail.io". Recruiters will only reach out to candidates who have applied for a role through our ATS (Greenhouse) or prospects via LinkedIn InMail. Job offers will come from a recruiter and may have a "@docusign.net" email address. For more information or if you have been targeted please reach out to askrecruiting@onetrust.com.

Our Commitment to You

When you join OneTrust you are stepping onto a launching pad — the countdown has begun. The destination? A career without boundaries working alongside a diverse and inclusive crew who is passionate about doing meaningful work. As a pioneer, your voice and expertise will help chart the direction of an entirely new category. Our commitment to putting people first starts with you. Your growth is part of the mission. Our goal is to give you the power to embark on the next phase of your uniquely, unique career.

OneTrust provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by local laws.

Ready to apply?

Apply to OneTrust

OneTrust

View all jobs →

Sr. Security Engineer - Vulnerability Operations

6sense · Bengaluru, Karnataka, India

Apply now

Business Technology Bangalore Posted May 5, 2026

Our Mission:

6sense's mission is to multiply what matters: growth, retention, and efficiency. We envision a future where companies, teams and people reach their full potential.

Our People:

People are the heart and soul of 6sense. We serve with passion and purpose. We live by our Being 6sense values of Win as One Team, Stay Curious, Do The Right Thing, Own the Outcome, and Create Belonging. Every 6sensor plays a part in deﬁning the future of our industry-leading technology. 6sense is a place where difference-makers roll up their sleeves, take risks, act with integrity, and measure success by the value we create for our customers. We want 6sense to be the best chapter of your career.

Purpose of the Job :

As members of 6sense’s Security department, the Security Engineering team protects the platform across application, infrastructure, and cloud domains. The Vulnerability Operations function ensures that vulnerabilities are identified, triaged, validated, and remediated in a consistent, timely, and risk‑based manner. Senior Security Engineers work closely with Engineering, CloudOps, Product, and GRC teams to operationalize vulnerability management processes, build automation, standardize workflows, and ensure secure-by-default practices.

Responsibilities & Accountabilities :

Ensure vulnerability management tools (e.g., Wiz, Invicti, Rapid7, GHAS, Ox) are correctly configured for appropriate coverage and accurate detection.
Perform hands-on triage, validation, and root cause analysis of vulnerabilities across AppSec, InfraSec, and CloudSec.
Track and report vulnerability status against SLAs, escalating to engineering owners as needed.
Build and maintain dashboards, filters, reports, and triage scripts to support visibility and automation.
Assist engineering teams in reproducing and remediating vulnerabilities, providing actionable guidance.
Support the bug bounty program operations (not ownership), including validation and coordination with engineering teams.
Conduct security reviews and threat modeling for high-risk systems or changes.
Participate in initiatives that holistically address systemic or multi‑domain vulnerabilities.
Contribute to development of automated security testing pipelines for validation of fixes.
Participate in on-call or off‑hours incident response related to critical vulnerabilities and time‑sensitive patches.
Contribute to quarterly OKRs and security engineering roadmap initiatives.

Performance Measurement :

Understands 6sense’s product, architecture, cloud footprint, and environment in depth.
Takes ownership of vulnerability triage and prioritization while escalating where required.
Proactively identifies and escalates AI/ML‑related vulnerabilities or misconfigurations in systems integrating LLMs or automated decisioning.
Meets tight deadlines and SLAs for vulnerability response and validation.
Maintains accurate and up-to-date triage scripts, documentation, dashboards, and workflows.
Participates in weekly 1:1s and skip levels; provides clear progress updates.
Supports security engineers and development teams with accurate, actionable analysis.
Effectively participates in incident response and post‑incident remediation.

Educational and Experience Requirements :

5+ years of experience in security engineering across vulnerability management, AppSec, CloudSec, or InfraSec.
Experience with vulnerability tools (e.g., Wiz, Rapid7, Invicti, GHAS, SAST/DAST) and triage workflows.
Understanding of cloud security (AWS preferred) and modern microservices architectures.
Experience identifying and mitigating AI/ML‑related security risks, including model abuse, prompt‑injection vulnerabilities, and risks introduced by LLM‑based features.
Experience with scripting/automation (Python, Bash, JavaScript, etc.).
Experience working directly with engineering teams to address vulnerabilities.
Familiarity with frameworks such as OWASP, NIST, CIS Benchmarks, MITRE ATT&CK.
Experience with IaC security (Terraform, CloudFormation, Pulumi) preferred but not required.

Preferred Qualifications :

Bachelor's degree in a related field
Relevant industry certifications, such as AWS, CNCF, and GIAC are highly desirable

Competencies and Behaviors :

Establishes strong credibility with engineering partners.
Maintains a professional, outcome-focused demeanor.
Advocates for vulnerability and security best practices.
Works independently on complex triage and analysis tasks.
Manages competing priorities effectively, escalating when appropriate.
Communicates clearly across technical and non-technical audiences.
Maintains accuracy, attention to detail, and documentation hygiene.

Our Benefits:

Full-time employees can take advantage of health coverage, paid parental leave, generous paid time-off and holidays, quarterly self-care days off, and stock options. We’ll make sure you have the equipment and support you need to work and connect with your teams, at home or in one of our oﬃces.

We have a growth mindset culture that is represented in all that we do, from onboarding through to numerous learning and development initiatives including access to our LinkedIn Learning platform. Employee well-being is also top of mind for us. We host quarterly wellness education sessions to encourage self care and personal growth. From wellness days to ERG-hosted events, we celebrate and energize all 6sense employees and their backgrounds.

Equal Opportunity Employer:

6sense is an Equal Employment Opportunity and Affirmative Action Employers. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, or disability status. If you require reasonable accommodation in completing this application, interviewing, completing any pre-employment testing, or otherwise participating in the employee selection process, please direct your inquiries to jobs@6sense.com .

We are aware of recruiting impersonation attempts that are not affiliated with 6sense in any way. All email communications from 6sense will originate from the @6sense.com domain. We will not initially contact you via text message and will never request payments. If you are uncertain whether you have been contacted by an official 6sense employee, reach out to jobs@6sense.com

Ready to apply?

Apply to 6sense

6sense

View all jobs →

Senior UX Designer

OneTrust · Bengaluru, India

Apply now

Product Bangalore, India Posted Apr 28, 2026

Strength in Trust

OneTrust’s mission is to enable innovation through the responsible use of data and AI. We believe that ensuring data is trusted shouldn’t slow teams down—it should accelerate what’s possible. This led us to develop the first technology platform for responsible data use in 2016. Today, with AI representing the latest and most impactful expansion of data yet, OneTrust is once again redefining what responsible innovation looks like. OneTrust, the AI‑Ready Governance Platform™, unifies regulatory intelligence, automation, and connected governance workflows so businesses can continue to move at the speed of AI while ensuring good governance to prevent data misuse at scale. Trusted by thousands of organizations worldwide, OneTrust is shaping the future where trusted data becomes a transformative force for business and society.

Job Description

The Challenge

Due to rapid growth and increased demand for our Privacy, Security, Data Governance, GRC, Third-Party Risk, Ethics and Compliance, and ESG platform, OneTrust is seeking a Senior UX Designer to join the User Experience Design team within our dynamic Research and Development team.  

This team continually improves the usability, design, and overall experience of OneTrust offerings, including web applications and other products and services. It is an excellent opportunity to improve the experience of an exceptionally wide range of users around the world.  

Your Mission

The Senior UX Designer will work under the oversight of a Principal UX Designer and assist with all the UX responsibilities below:

Design: Create deliverables for the entire design process, including information architecture, interface design, interaction design, and low and high-fidelity prototypes.  
Standards: Identify, define and promote UX best practices, including templates  
UX Metrics: Identify, collect, and analyze data to inform user experience decisions, including web metrics, customer support data, and other sources  
Industry Awareness: Monitor and apply relevant UX trends  
Promotion: Serve as a UX advocate within the organization  

You Are 

You are a strong collaborator and able to effectively communicate with other team members across the R&D organization. Additionally, you are a self-learner who enjoys researching and applying relevant UX trends and who thrives with rapid, iterative design and development processes. 

Your experience includes:

Bachelor’s degree in Computer Science, Human Computer Interaction, Industrial Design or related technical field 
5 - 8 years of work, personal project, or internship experience with the full product design process, from research to rollout 
Portfolio of UX projects to illustrate applied experience
Experience with design tools including, but not limited to; Sketch, InVision, Adobe Creative Suite, etc. 
High level of demonstrated proficiency in at least one UX area, such as research, information architecture, visual design or interaction design 
Ability to work well in a team environment and effectively communicate with other team members across the R&D organization, product managers and senior management 
Enterprise product design experience and designing web-based applications 
Experience leading a team
Familiarity with data privacy, third-party risk management, and/or security spaces  
Scrum certification

Where we Work

We are embracing an office-first culture, encouraging three days a week in office for most roles, with meaningful opportunities to collaborate and celebrate in person.

Each role may have specific requirements or flexibility depending on the scope of the position, so we encourage you to verify this with your recruiter during your first interview.

Benefits

As an employee at OneTrust, you will be part of the OneTeam. That means you’ll receive support physically, mentally, and emotionally so that you can do your best work both in and out of the office. This includes comprehensive healthcare coverage, flexible PTO, equity RSUs, annual performance bonus opportunities, retirement account support, 14+ weeks of paid parental leave, career development opportunities, company-paid privacy certification exam fees, and much more. Specific benefits differ by country. For more information, talk to your recruiter or visit onetrust.com/careers.

Resources

Check out the following to learn more about OneTrust and its people:

Your Data

You have the right to have your personal data updated or removed. You also have the right to have a copy of the information OneTrust holds about you. Further details about these rights are available on the website in our Privacy Overview. You can change your mind at any time and have your personal data removed from our database. In order to do this you must contact us and let us know you wish to be removed. The request should be made on the Data Subject Request Form.

Recruitment fraud warning: OneTrust is aware of scams involving false offers of employment with our company. The fraudulent jobs, interviews and job offers use fake websites, email addresses, group chat and text messages. Be aware that we never ask candidates for personal information, IDs or bank information during the interview process. We do not interview prospective candidates via instant message or group chat, and do not require candidates to purchase products or services, or process payments on our behalf as a condition of any employment offer. Please note that any legitimate interview availability requests will come directly from a OneTrust recruiter with an "@onetrust.com" email address. You may also receive legitimate emails from "@us.greenhouse-mail.io". Recruiters will only reach out to candidates who have applied for a role through our ATS (Greenhouse) or prospects via LinkedIn InMail. Job offers will come from a recruiter and may have a "@docusign.net" email address. For more information or if you have been targeted please reach out to askrecruiting@onetrust.com.

Our Commitment to You

When you join OneTrust you are stepping onto a launching pad — the countdown has begun. The destination? A career without boundaries working alongside a diverse and inclusive crew who is passionate about doing meaningful work. As a pioneer, your voice and expertise will help chart the direction of an entirely new category. Our commitment to putting people first starts with you. Your growth is part of the mission. Our goal is to give you the power to embark on the next phase of your uniquely, unique career.

OneTrust provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by local laws.

Ready to apply?

Apply to OneTrust

OneTrust

View all jobs →

Senior Corporate Security Analyst

Toast · Bengaluru, Karnataka, India

Apply now

R & D : Security : Cybersecurity Bangalore, India Posted Mar 31, 2026

Toast creates technology to help restaurants and local businesses succeed in a digital world, helping business owners operate, increase sales, engage customers, and keep employees happy.

We are seeking a highly motivated Senior Corporate Security Analyst to join Toast’s Corporate Security team in Bangalore. This role is focused on hands-on corporate security execution and risk reduction across endpoints, identities, SaaS platforms, vendors, and data — not SOC monitoring or shift-based operations.

The ideal candidate has strong experience working in enterprise corporate security environments, understands how to balance security controls with business needs, and is comfortable partnering with IT, GRC, Procurement, Legal, and Engineering teams. You will own multiple CorpSec programs end-to-end and act as a senior individual contributor, while mentoring junior analysts and helping scale security practices across the organization.

A Day in Life (Responsibilities)

1. Corporate Security Execution & Risk Management

Own and operate key corporate security controls across endpoint, SaaS, identity, vendor, and data security.
Perform security risk assessments for business initiatives and translate findings into actionable remediation plans.
Act as a security advisor to internal stakeholders, focusing on practical risk reduction.

2. Endpoint & SaaS Security

Lead day-to-day security oversight for corporate endpoints and SaaS applications, including:
EDR/XDR, device hardening, encryption, MDM/UEM
Shadow IT discovery and SaaS risk reviews
Partner with IT Operations and Governance teams to resolve alerts, misconfigurations, and policy gaps.
Conduct periodic reviews of high-risk applications, browser extensions, and endpoint findings.

3. Vulnerability Management (Corporate Scope)

Drive vulnerability management for corporate endpoints and internal business systems.
Triage and prioritize vulnerabilities based on business impact and exploitability.
Track remediation with IT teams and validate closure.

4. Identity & Access Management (IAM)

Support enterprise IAM governance, including:
Joiner / mover / leaver processes
Access reviews and least-privilege enforcement
MFA, SSO, device trust, and privileged access (PAM)
Assist in access investigations and high-risk access exception reviews.

5. Vendor & Third-Party Security

Conduct vendor security assessments for onboarding and periodic reviews.
Review SOC 2 reports, security questionnaires, and supporting evidence.
Track vendor risks, remediation actions, and re-assessments.
Partner with Procurement, Legal, and GRC teams to ensure security requirements are met.

6. Data Protection & DLP

Support data protection initiatives across Google Workspace, Slack, and other collaboration platforms.
Assist with the design, tuning, and enforcement of DLP controls.
Participate in investigations related to data exposure or misuse.

7. Security Awareness & Process Improvement

Support security awareness training and phishing simulation programs.
Maintain CorpSec policies, SOPs, and runbooks.
Identify opportunities to improve efficiency through automation and tooling.

8. Mentorship & Ownership

Mentor P2-level security analysts and provide technical guidance.
Take ownership of CorpSec initiatives and deliver them end-to-end with minimal supervision.

9. Contractor Security Oversight

Establish and enforce contractor access standards, ensuring strict security controls during onboarding and offboarding.
Conduct periodic contractor access and activity audits, identifying and mitigating associated risks.

Work Mode: This role follows a hybrid work model, requiring a minimum of 2 days per week in the office.

What We’re Looking For

Required

6–10 years of experience in information security with strong corporate security exposure.
Hands-on experience with:
Endpoint security and EDR tools (e.g., CrowdStrike)
Vendor security assessments and SOC 2 reviews
IAM concepts (Okta, PAM, access reviews)
SaaS and Shadow IT security
Strong understanding of security frameworks (NIST CSF, ISO 27001, CIS Controls).
Experience working closely with IT and governance teams.
Strong written and verbal communication skills.

Preferred

Experience with Google Workspace security and DLP.
Exposure to GRC processes or platforms (ServiceNow GRC, OneTrust).
Bachelor's degree in Computer Science, Information Security, or a related field; Master's degree preferred.
Proven experience in developing and implementing security policies, procedures, and frameworks.Demonstrated experience in developing and delivering security awareness training and phishing exercises.
Possess excellent skills and experience in leveraging AI tools for threat detection, incident response, vulnerability management, and other security functions.
Familiarity with Google Workspace security features.
Proficiency with security tools such as Reco.AI, Torq, Splunk, DataDog, bug bounty platforms, Okta Device Trust, BeyondTrust, BeyondCorp, and other SIEM, SOAR and Security tools commonly used in the market.
Ability to work autonomously and prioritize multiple tasks in a fast-paced environment.
Excellent verbal and written communication skills, with the ability to effectively communicate technical information to both technical and non-technical audiences. Proven ability to collaborate effectively with cross-functional teams.
Quick learner and adaptable to new security tools and technologies as they are procured and implemented.
Ability to adapt to environments, understand requirements, and actively collaborate within the team, with other teams, and with vendors.
Provide technical guidance and mentorship to P2 security analysts, fostering their professional growth and ensuring alignment with corporate security objectives.
Take initiative in leading projects and driving security initiatives.
Relevant security certifications are a plus.

AI at Toast

At Toast, one of our company values is that we're hungry to build and learn. We believe learning new AI tools empowers us to build for our customers faster, more independently, and with higher quality. We provide these tools across all disciplines, from Engineering and Product to Sales and Support, and are inspired by how our Toasters are already driving real value with them. The people who thrive here are those who embrace changes that let us build more for our customers; it’s a core part of our culture.

Our Total Rewards Philosophy
We strive to provide competitive compensation and benefits programs that help to attract, retain, and motivate the best and brightest people in our industry. Our total rewards package goes beyond great earnings potential and provides the means to a healthy lifestyle with the flexibility to meet Toasters’ changing needs. Learn more about our benefits at https://careers.toasttab.com/toast-benefits.

How Toast Uses AI in its Hiring Process

Throughout the hiring process, our goal is to get to know you. We use AI tools to support our recruiters and interviewers with tasks like note-taking, summarization, and documentation of interviews to ensure they can be fully focused on your conversation. All hiring decisions are made by people. To learn more: https://careers.toasttab.com/ai-in-hiring

Diversity, Equity, and Inclusion is Baked into our Recipe for Success

At Toast, our employees are our secret ingredient—when they thrive, we thrive. The restaurant industry is one of the most diverse, and we embrace that diversity with authenticity, inclusivity, respect, and humility. By embedding these principles into our culture and design, we create equitable opportunities for all and raise the bar in delivering exceptional experiences.

We Thrive Together

We embrace a hybrid work model that fosters in-person collaboration while valuing individual needs. Our goal is to build a strong culture of connection as we work together to empower the restaurant community. To learn more about how we work globally and regionally, check out: https://careers.toasttab.com/locations-toast.

Apply today!

Toast is committed to creating an accessible and inclusive hiring process. As part of this commitment, we strive to provide reasonable accommodations for persons with disabilities to enable them to access the hiring process. If you need an accommodation to access the job application or interview process, please contact candidateaccommodations@toasttab.com.

------

For roles in the United States, it is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.

Ready to apply?

Apply to Toast

Toast

View all jobs →

Lead Security Engineer

Couchbase, Inc. · Bangalore, India

Apply now

921 InfoSec Bangalore Posted Mar 26, 2026

Couchbase, the operational data platform for AI, empowers businesses to succeed by bringing data to life in new ways. Major market-leading companies rely on Couchbase for mission critical operational, analytical, mobile and AI workloads. Built to replace legacy infrastructure and fragmented data services, Couchbase empowers enterprises with a unified platform architected for performance, flexibility and global scale.

With Couchbase, organizations bring their data to life, launching game‑changing customer experiences, exploring the limitless potential of AI, and seamlessly extending applications from the cloud to the edge and beyond. Couchbase’s AI‑ready technology and enterprise partnership model eliminate complexity and reduce total cost of ownership, enabling teams to stay agile, innovative and secure.

Couchbase believes data should never slow you down, but act as the foundation for your next breakthrough. Discover why Couchbase is trusted to help the world’s biggest players scale, move fast and stay resilient, no matter what’s next on their roadmap. Visit couchbase.com and follow us on LinkedIn and X.

Want to be part of our story? Apply today!

Lead Security Engineer

Couchbase — Bangalore, India | Information Security | Full-Time

About Couchbase

As industries race to embrace AI, traditional database solutions fall short of rising demands for versatility, performance, and affordability. Couchbase is leading the way with Capella, the developer data platform for critical applications in our AI world. By uniting transactional, analytical, mobile, and AI workloads into a seamless, fully managed solution, Couchbase empowers developers and enterprises to build and scale applications with unmatched flexibility, performance, and cost-efficiency—from cloud to edge. Trusted by over 30% of the Fortune 100, Couchbase is unlocking innovation, accelerating AI transformation, and redefining customer experiences. Come join our mission.

The Role

We are seeking a driven and versatile Lead Security Engineer to join Couchbase's global Information Security team as our first security hire in Bangalore. This is a unique opportunity to be foundational to Couchbase's 24x7 security coverage and grow alongside a world-class security organization.

You will be a broad contributor—supporting and partnering our Security Operations, GRC, Product and Application Security teams. Working closely with Engineering, Cloud, and GTM functions, you'll gain hands-on exposure across the full security lifecycle. This role is ideal for someone who thrives across disciplines, moves between strategic and tactical work with ease, and wants to help build something meaningful from the ground up.

As Couchbase's security presence in Bangalore grows, you will be instrumental in expanding timezone coverage for security monitoring, incident response, and compliance operations—serving as a key link in our global, follow-the-sun security model.

Key Responsibilities

Security Operations

Lead and own the timezone-extended coverage for security monitoring, alert triage, and initial incident response as the primary regional point of contact for the global security model.
Drive day-to-day security operations including threat detection, monitoring, and escalation using SIEM and other security tooling.
Assist with vulnerability management workflows—identification, prioritization, and tracking remediation in collaboration with engineering and cloud teams.
Contribute to the review and improvement of existing security processes and tooling, including SIEM, DLP, endpoint security, email security, and vulnerability management platforms.
Support security incident response planning and execution, interfacing with Engineering, Cloud, and SOC teams during active incidents.
Help maintain and improve business continuity and disaster recovery documentation and runbooks.

Governance, Risk & Compliance (GRC)

Contribute to GRC activities by focusing on audit evidence collection, documentation, and the continuous improvement of policies/standards under GRC team guidance.
Assist with compliance initiatives including SOC 2, ISO 27001, HIPAA, PCI DSS, GDPR, CCPA, and other relevant frameworks.
Help track and document security risks, control exceptions, and remediation plans across the enterprise.
Contribute to audit evidence collection and documentation to support external assessments and certifications.
Support privacy-by-design efforts, including data privacy assessments and alignment with evolving global data regulations.
Assist in building governance frameworks for AI/ML workloads and data pipelines, ensuring responsible and compliant adoption of AI technologies.

Product & Application Security

Provide support for Product/AppSec enablement efforts by assisting with the integration of application security tooling (SAST, DAST, SCA) into CI/CD pipelines.
Partner with Product Security engineers in conducting security architecture reviews and threat modeling for Couchbase's Capella cloud platform and database products.
Support the execution of static and dynamic code scan reviews and assist with triaging and tracking findings.
Contribute to the management of Couchbase's bug bounty program, including triage, validation, and researcher communication.
Assist with the planning and coordination of application penetration tests and tracking remediation of findings within defined SLAs.
Help engineering teams understand and apply secure coding principles, including OWASP Top 10 and OWASP SAMM.
Assist in completing security sections of RFP questionnaires and customer security reviews.

Cross-Functional Collaboration

Build strong working relationships with Engineering, Product, Cloud, Legal, and Compliance teams to support security initiatives across the organization.
Work with customers as needed to explain security policies or address product-related security questions.
Champion a "security is everyone's job" mindset and help embed security into Couchbase's engineering-driven culture.
Contribute to security metrics and reporting to help track maturity and drive continuous improvement.

Qualifications

Required

6–9 years of hands-on experience in information security spanning two or more domains: GRC, product/application security, or security operations.
Working knowledge of major compliance frameworks (SOC 2, ISO 27001, HIPAA, PCI DSS, GDPR, CCPA).
Familiarity with application security principles including OWASP Top 10, threat modeling, SAST/DAST tooling, and secure SDLC practices.
Practical experience with public cloud security on at least one of AWS, Azure, or GCP.
Experience with security tooling such as SIEM (Splunk, Rapid7, AlienVault), endpoint security (SentinelOne, CrowdStrike), or DLP platforms (Netskope, Proofpoint).
Strong written and verbal communication skills with the ability to collaborate effectively across engineering, product, and business teams.
Growth mindset, intellectual curiosity, and a genuine desire to broaden expertise across multiple security disciplines.

Nice to Have

Experience with bug bounty program management, penetration test coordination, or vulnerability management.
Familiarity with CNAPP tools (Wiz, Sysdig, Prisma Cloud) or cloud-native security tooling.
Understanding of IAM, key management, encryption, and network security fundamentals.
Experience with MDM tools (Kandji, Jamf, WorkspaceOne) and automating workflows/processes.
Hands-on experience working within a GRC function on audits, risk assessments, or policy management.
Exposure to AI/ML security considerations or data governance in a cloud environment.
Industry certifications such as Security+, CISSP, CISM, CEH, or equivalent.
Bachelor's degree in Computer Science, Information Security, or a related field.

Why This Role

This is a rare chance to join a lean, high-caliber security team at a pivotal moment—both for Couchbase and for the Bangalore office. You won't be siloed. You'll work across GRC, product security, AppSec, and SecOps, learning from specialists in each domain while contributing meaningfully from day one. As the team grows, so will your scope and influence.

Couchbase is trusted by over 30% of the Fortune 100 to power mission-critical applications. Security isn't an afterthought here—it's foundational to everything we build.

At Couchbase, we believe innovation thrives when diverse perspectives are at the table. We actively encourage applications from individuals of all backgrounds—including women, people of color, LGTBQIA+ professionals, veterans, and individuals with disabilities. If you see a role that excites you, but don’t meet every qualification, we still encourage you to apply.

Studies show underrepresented talent is less likely to apply unless they meet all the criteria. We encourage you to apply if you’re excited about the role and can bring strong contributions to our team.

If you require reasonable accommodations during the recruitment process, please let your recruiter know—we’re happy to support you.

We value diverse educational and career backgrounds. If your experience aligns with the role’s goals—even if it doesn’t follow a traditional path—we’d love to hear from you.

Why Couchbase?

Modern customer experiences need a flexible cloud database platform that can power applications spanning from cloud to edge and everything in between. Couchbase’s mission is to simplify how developers and architects develop, deploy and consume modern applications wherever they are. We have reimagined the database with our fast, flexible and affordable cloud database platform Capella, allowing organizations to quickly build applications that deliver premium experiences to their customers– all with best-in-class price performance. More than 30% of the Fortune 100 trust Couchbase to power their modern applications and build innovative new ones. See our recent awards to learn why Couchbase is a great place to work.We are honored to be a part of the Best Places to Work Award for the Bay Area and the UK. Couchbase offers a total rewards approach to benefits that recognizes the value you create here, so that you in turn may best serve yourself and your family. Some benefits include:

Generous Time Off Program - Flexibility to care for you and your family
Wellness Benefits - A variety of world class medical plans to choose from, along with dental, vision, life insurance, and employee assistance programs*
Financial Planning - Retirement program* and Business Travel Insurance
Career Growth - Be valued, Create value approach
Fun Perks - An ergonomic and comfortable in-office / WFH setup. Food & Snacks for in-office employees.
And much more!

*Note: some programs are not applicable to all countries. Please discuss with a Couchbase recruiter to learn more.

Learn more about Couchbase:
News and Press Releases
Couchbase Capella
Couchbase Blog
Investors

Disclaimer:

Couchbase is committed to being an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans’ status, or any other characteristic protected by law. Join an impact initiative group and experience the amazing feeling of Couchbase can-do culture.

By using this website and submitting your information, you acknowledge our Candidate Privacy Notice and understand your personal information may be processed in accordance with our Candidate Privacy Notice following guidelines in your country of application.

Ready to apply?

Apply to Couchbase, Inc.

Couchbase, Inc.

View all jobs →

InfoSec Risk & Compliance

Netradyne · Bangalore

Apply now

Information Technology (IT) Bangalore Posted Mar 11, 2026

Netradyne harnesses the power of Computer Vision and Edge Computing to revolutionize the modern-day transportation ecosystem. We are a leader in fleet safety solutions. With growth exceeding 4x year over year, our solution is quickly being recognized as a significant disruptive technology. Our team is growing, and we need forward-thinking, uncompromising, competitive team members to continue to facilitate our growth.

JOB DESCRIPTION

Senior/Staff Engineer – InfoSec Risk & Compliance

Location: Bengaluru, India | Department: Information Security
Experience Level: 6-9+ years | Employment Type: Full-Time, Permanent

Lead compliance transformation and security governance scaling at Netradyne. Own enterprise GRC platform implementation, manage multi-framework audits (ISO 27001/42001, SOC 2, HIPAA), and drive customer compliance acceleration enabling enterprise revenue growth.

KEY RESPONSIBILITIES

Facilitate Audit & Certification

Drive ISO 42001 (AI governance), SOC 2 Type II, RED Directive EN 18031, ISO 27001, HIPAA programs
Design vendor risk assessment program with SLA enforcement
Manage external audits and certification timelines

GRC Platform Implementation

Lead enterprise GRC tool deployment and configuration across all frameworks
Build automated evidence collection, remediation tracking, and compliance reporting
Create executive risk dashboards and governance reporting

Customer Compliance & Revenue

Build RFP/RFI response framework reducing turnaround to <10 business days
Develop customer-facing Trust Centre portal reducing RFP volume
Manage customer security questionnaires and account support

Risk Optimization & International Support

Design quarterly self-assessment (QSA) process via GRC automation
Maintain AI risk register (model degradation, bias, privacy risks)
Support 15-country compliance expansion (GDPR, local regulations)

REQUIRED QUALIFICATIONS

Education & Certifications

Bachelor’s/master’s degree in information security, Computer Science, or related field
Active professional certification: CISSP, CCSP, CISM, CCSK, ISO 27001/42001 Lead Auditor, or equivalent
Demonstrated audit Senior/Staff: ISO 27001 and/or SOC 2 field audit participation (2+ cycles)

Core Technical Competencies (Must Have)

Competency	Required Experience
ISO 27001 / 27701 / 42001	Led 2+ audit cycles; AI governance frameworks
SOC 2 Type II / HIPAA / GDPR	Field audit experience; PII/ePHI handling; breach notification
GRC Platforms	Implementation/administration (Archer, ServiceNow, Audit Board, Sprinto, Scrut, OneTrust)
Risk Management	Risk scoring, control testing, BIA, vendor assessment design
Cloud Security	AWS/Azure IAM, encryption, compliance configurations, CIS/CSA frameworks
Compliance Automation	Python/Bash/PowerShell scripting; RPA; process automation workflows
Network & Infrastructure	OSI/TCP-IP, VPN, DLP, CASB, SDWAN, zero-trust architecture
Vulnerability Management	Risk scoring (CVSS), remediation SLAs, patch compliance

KNOWLEDGE & PROFESSIONAL SKILLS

Technical Skills: (Should Have)

Enterprise Resilience:Design BCP/DR, failover testing, 24/7 uptime SLAs for multi-region expansion
AI Security:Threat modelling, adversarial attack scenarios, responsible AI assurance (ISO 42001)
Cloud Compliance:Data classification, multi-region governance, DLP enforcement, CloudTrail/Azure Logs monitoring
Infrastructure-as-Code:Terraform/CloudFormation for audit-trail automation
API Integration:REST APIs for GRC, ticketing systems, SIEM/DLP tool integration

Preferred: IoT/embedded systems (RED Directive), RPA, network-layer authentication (RADIUS/LDAP), certificate management

Professional:

Collaborate with cross-functional teams (IT, Engineering, Sales, Device, Finance, Legal, Privacy, HR) for compliance alignment
Lead GRC platform implementation and governance workflow design
Communicate risk and compliance status to executive leadership and board
Support 24/7 on-call rotation for security incidents and emergencies
Continuous learning mindset; ability to adopt emerging compliance frameworks (AI governance, new regulations)

We are committed to an inclusive and diverse team. Netradyne is an equal-opportunity employer. We do not discriminate based on race, color, ethnicity, ancestry, national origin, religion, sex, gender, gender identity, gender expression, sexual orientation, age, disability, veteran status, genetic information, marital status, or any legally protected status.

If there is a match between your experiences/skills and the Company's needs, we will contact you directly.

Netradyne is an equal-opportunity employer.

Applicants only - Recruiting agencies do not contact.

Recruitment Fraud Alert!

There has been an increase in fraud that targets job seekers. Scammers may present themselves to job seekers as Netradyne employees or recruiters. Please be aware that Netradyne does not request sensitive personal data from applicants via text/instant message or any unsecured method; does not promise any advance payment for work equipment set-up and does not use recruitment or job-sourcing agencies that charge candidates an advance fee of any kind. Official communication about your application will only come from emails ending in ‘@netradyne.com’ or ‘@us-greenhouse-mail.io’.

Please review and apply to our available job openings at Netradyne.com/company/careers. For more information on avoiding and reporting scams, please visit the Federal Trade Commission's job scams website.

Ready to apply?

Apply to Netradyne

Netradyne

View all jobs →

GRC Jobs in Bangalore.

Senior GRC Analyst

About Workato

Why join us?

Responsibilities

Requirements

Qualifications / Experience / Technical Skills

Soft Skills / Personal Characteristics

Additional requirements

To help your application stand out, please take time to answer the Job Application Questions below clearly and concisely. All submissions are reviewed by our Hiring Team, not evaluated by AI.

Senior GRC Analyst

About Workato

Why join us?

Responsibilities

Requirements

Qualifications / Experience / Technical Skills

Soft Skills / Personal Characteristics

Additional requirements

To help your application stand out, please take time to answer the Job Application Questions below clearly and concisely. All submissions are reviewed by our Hiring Team, not evaluated by AI.

Senior GRC Analyst

About Workato

Why join us?

Responsibilities

Requirements

Qualifications / Experience / Technical Skills

Soft Skills / Personal Characteristics

Additional requirements

To help your application stand out, please take time to answer the Job Application Questions below clearly and concisely. All submissions are reviewed by our Hiring Team, not evaluated by AI.

Senior Information Security Engineer – Data

About the team & role:

What you’ll do?

Experience you'll need:

Join Us in Securing and Accelerating the World's AI Transformation

Inclusion @ Rubrik

Our inclusion strategy focuses on three core areas of our business and culture:

Equal Opportunity Employer/Veterans/Disabled

Senior UX Designer

Strength in Trust

The Challenge

Your Mission

You Are

Where we Work

Benefits

Resources

Your Data

Our Commitment to You

Sr. Security Engineer - Vulnerability Operations

Senior UX Designer

Strength in Trust

Where we Work

Benefits

Resources

Your Data

Our Commitment to You

Senior Corporate Security Analyst

1. Corporate Security Execution & Risk Management

2. Endpoint & SaaS Security

3. Vulnerability Management (Corporate Scope)

4. Identity & Access Management (IAM)

5. Vendor & Third-Party Security

6. Data Protection & DLP

7. Security Awareness & Process Improvement

8. Mentorship & Ownership

9. Contractor Security Oversight

Lead Security Engineer

Lead Security Engineer

About Couchbase

The Role

Key Responsibilities

Security Operations

Governance, Risk & Compliance (GRC)

Product & Application Security

Cross-Functional Collaboration

Qualifications

Required

Nice to Have

Why This Role

InfoSec Risk & Compliance