Responsibilities

We are looking for an exceptional Senior GRC Analyst to join our growing team. In this role, you will lead compliance assessments for frameworks such as NIST 800-171, ISO 27001, NIST 800-53 (FedRAMP), PCI, MLPS and IRAP, while also driving broader security compliance efforts. The ideal candidate will use strong analytical, communication, and problem-solving skills to evaluate controls, identify gaps, and recommend improvements across security domains. You will also be responsible for:

• Lead and participate in both internal and external audits for frameworks including ISO 27001/27701, PCI-DSS, NIST 800-171, NIST 800-53 (FedRamp), and IRAP

• Experience using or exploring AI/automation tools to enhance, streamline, or scale Governance, Risk, and Compliance (GRC) processes and workflows

• Manage and oversee risk, compliance, and governance initiatives across teams

• Coordinate with process owners, control owners, auditors, and consultants to ensure findings are tracked and addressed

• Conduct risk assessments, security audits, and third-party/vendor risk reviews

• Review contracts to ensure security and compliance requirements are met

• Identify process gaps and recommend improvements to enhance the organization’s security posture

• Communicate risks and compliance requirements clearly to both technical and non-technical stakeholders

• Perform regular user access reviews

• Develop and track remediation plans for identified risks and issues

• Maintain and update the risk register

• Oversee vendor security assurance processes

• Collaborate with stakeholders to design and implement effective internal controls aligned with regulatory standards

• Support risk and security discussions across cross-functional teams

• Build strong working relationships across departments

• Take on additional responsibilities as needed

Requirements

Qualifications / Experience / Technical Skills

Please note that the working hours for this position are from 2:00 PM to 11:00 PM IST (overlap with U.S. Pacific Time required)

• 8+ years of experience in cybersecurity programs, audits, risk management, compliance, or remediation

• Experience working with cloud platforms such as AWS, Azure, or Google Cloud

• Proven ability to negotiate and prioritize risk remediation with internal stakeholders

• Bachelor’s degree in Information Systems, Computer Science, Information Security, or a related field

• Strong understanding of security controls, including cloud environments, firewalls, IDS/IPS, and vulnerability management

• Familiarity with NIST 800-171 and NIST Risk Management Framework (NIST 800-53)

• Experience auditing frameworks such as PCI-DSS, SOC 2, and ISO 27001/27701

• Relevant certifications (CISSP, CISA, PCI ISA, ISO, or similar) are preferred

• Ability to manage multiple priorities independently with minimal supervision

Soft Skills / Personal Characteristics

• Strong communication skills with the ability to translate compliance requirements into technical actions

• High energy and adaptability in a fast-paced environment

• Strong collaboration and a knowledge-sharing mindset

• Excellent time management and organizational skills

• High attention to detail, integrity, and ethical standards

• Willingness to learn and take on new challenges

Additional requirements

• May involve some international travel

• This position requires overlap with U.S. Pacific Time (PST) working hours. Candidates should be available and flexible to work from 2:00 PM to 11:00 PM IST.

• Strong hands-on experience with PCI audits, ISO 27001, NIST 800-171, FedRamp, SOC 2, and potentially IRAP is required.

To help your application stand out, please take time to answer the Job Application Questions below clearly and concisely. All submissions are reviewed by our Hiring Team, not evaluated by AI.

(REQ ID: 2760)

Responsibilities

We are looking for an exceptional Senior GRC Analyst to join our growing team. In this role, you will lead compliance assessments for frameworks such as NIST 800-171, ISO 27001, NIST 800-53 (FedRAMP), PCI, MLPS and IRAP, while also driving broader security compliance efforts. The ideal candidate will use strong analytical, communication, and problem-solving skills to evaluate controls, identify gaps, and recommend improvements across security domains. You will also be responsible for:

• Lead and participate in both internal and external audits for frameworks including ISO 27001/27701, PCI-DSS, NIST 800-171, NIST 800-53 (FedRamp), and IRAP

• Experience using or exploring AI/automation tools to enhance, streamline, or scale Governance, Risk, and Compliance (GRC) processes and workflows

• Manage and oversee risk, compliance, and governance initiatives across teams

• Coordinate with process owners, control owners, auditors, and consultants to ensure findings are tracked and addressed

• Conduct risk assessments, security audits, and third-party/vendor risk reviews

• Review contracts to ensure security and compliance requirements are met

• Identify process gaps and recommend improvements to enhance the organization’s security posture

• Communicate risks and compliance requirements clearly to both technical and non-technical stakeholders

• Perform regular user access reviews

• Develop and track remediation plans for identified risks and issues

• Maintain and update the risk register

• Oversee vendor security assurance processes

• Collaborate with stakeholders to design and implement effective internal controls aligned with regulatory standards

• Support risk and security discussions across cross-functional teams

• Build strong working relationships across departments

• Take on additional responsibilities as needed

Requirements

Qualifications / Experience / Technical Skills

Please note that the working hours for this position are from 2:00 PM to 11:00 PM IST (overlap with U.S. Pacific Time required)

• 8+ years of experience in cybersecurity programs, audits, risk management, compliance, or remediation

• Experience working with cloud platforms such as AWS, Azure, or Google Cloud

• Proven ability to negotiate and prioritize risk remediation with internal stakeholders

• Bachelor’s degree in Information Systems, Computer Science, Information Security, or a related field

• Strong understanding of security controls, including cloud environments, firewalls, IDS/IPS, and vulnerability management

• Familiarity with NIST 800-171 and NIST Risk Management Framework (NIST 800-53)

• Experience auditing frameworks such as PCI-DSS, SOC 2, and ISO 27001/27701

• Relevant certifications (CISSP, CISA, PCI ISA, ISO, or similar) are preferred

• Ability to manage multiple priorities independently with minimal supervision

Soft Skills / Personal Characteristics

• Strong communication skills with the ability to translate compliance requirements into technical actions

• High energy and adaptability in a fast-paced environment

• Strong collaboration and a knowledge-sharing mindset

• Excellent time management and organizational skills

• High attention to detail, integrity, and ethical standards

• Willingness to learn and take on new challenges

Additional requirements

• May involve some international travel

• This position requires overlap with U.S. Pacific Time (PST) working hours. Candidates should be available and flexible to work from 2:00 PM to 11:00 PM IST.

• Strong hands-on experience with PCI audits, ISO 27001, NIST 800-171, FedRamp, SOC 2, and potentially IRAP is required.

To help your application stand out, please take time to answer the Job Application Questions below clearly and concisely. All submissions are reviewed by our Hiring Team, not evaluated by AI.

(REQ ID: 2760)

Responsibilities

We are looking for an exceptional Senior GRC Analyst to join our growing team. In this role, you will lead compliance assessments for frameworks such as NIST 800-171, ISO 27001, NIST 800-53 (FedRAMP), PCI, MLPS and IRAP, while also driving broader security compliance efforts. The ideal candidate will use strong analytical, communication, and problem-solving skills to evaluate controls, identify gaps, and recommend improvements across security domains. You will also be responsible for:

• Lead and participate in both internal and external audits for frameworks including ISO 27001/27701, PCI-DSS, NIST 800-171, NIST 800-53 (FedRamp), and IRAP

• Experience using or exploring AI/automation tools to enhance, streamline, or scale Governance, Risk, and Compliance (GRC) processes and workflows

• Manage and oversee risk, compliance, and governance initiatives across teams

• Coordinate with process owners, control owners, auditors, and consultants to ensure findings are tracked and addressed

• Conduct risk assessments, security audits, and third-party/vendor risk reviews

• Review contracts to ensure security and compliance requirements are met

• Identify process gaps and recommend improvements to enhance the organization’s security posture

• Communicate risks and compliance requirements clearly to both technical and non-technical stakeholders

• Perform regular user access reviews

• Develop and track remediation plans for identified risks and issues

• Maintain and update the risk register

• Oversee vendor security assurance processes

• Collaborate with stakeholders to design and implement effective internal controls aligned with regulatory standards

• Support risk and security discussions across cross-functional teams

• Build strong working relationships across departments

• Take on additional responsibilities as needed

Requirements

Qualifications / Experience / Technical Skills

Please note that the working hours for this position are from 2:00 PM to 11:00 PM IST (overlap with U.S. Pacific Time required)

• 8+ years of experience in cybersecurity programs, audits, risk management, compliance, or remediation

• Experience working with cloud platforms such as AWS, Azure, or Google Cloud

• Proven ability to negotiate and prioritize risk remediation with internal stakeholders

• Bachelor’s degree in Information Systems, Computer Science, Information Security, or a related field

• Strong understanding of security controls, including cloud environments, firewalls, IDS/IPS, and vulnerability management

• Familiarity with NIST 800-171 and NIST Risk Management Framework (NIST 800-53)

• Experience auditing frameworks such as PCI-DSS, SOC 2, and ISO 27001/27701

• Relevant certifications (CISSP, CISA, PCI ISA, ISO, or similar) are preferred

• Ability to manage multiple priorities independently with minimal supervision

Soft Skills / Personal Characteristics

• Strong communication skills with the ability to translate compliance requirements into technical actions

• High energy and adaptability in a fast-paced environment

• Strong collaboration and a knowledge-sharing mindset

• Excellent time management and organizational skills

• High attention to detail, integrity, and ethical standards

• Willingness to learn and take on new challenges

Additional requirements

• May involve some international travel

• This position requires overlap with U.S. Pacific Time (PST) working hours. Candidates should be available and flexible to work from 2:00 PM to 11:00 PM IST.

• Strong hands-on experience with PCI audits, ISO 27001, NIST 800-171, FedRamp, SOC 2, and potentially IRAP is required.

To help your application stand out, please take time to answer the Job Application Questions below clearly and concisely. All submissions are reviewed by our Hiring Team, not evaluated by AI.

(REQ ID: 2760)

About the Role

At Fivetran, we're on a mission to make access to data as simple and reliable as electricity. Our fully automated platform moves data from 700+ sources to any destination reliably and securely — powering the analytics, AI, and decision-making that drives modern businesses forward.

This role will be part of the GRC team. The Fivetran GRC team is responsible for ensuring the continuous integrity, confidentiality, and availability of customer data. Our customers trust us with their most sensitive information, and maintaining that trust is a critical, core component of both our product and our business.

We are seeking a motivated and detail-oriented Senior GRC Analyst to join our Security team. This role is ideal for a control-focused audit professional with a solid understanding of IT systems and infrastructure. Strong communication skills are essential, as is the ability to collaborate and influence across functions and levels of the organization. The position reports to the Director of GRC and will provide broad cross-functional exposure, working closely with teams across Security, Engineering, Operations, IT, and HR.

This is a full-time position based in our Bangalore office. We offer a hybrid work model that blends remote flexibility with in-person collaboration, with two days per week in office.

Technologies You’ll Use

• GRC platform for organizing, tracking, and managing controls, testing activities, and audit evidence
• Cloud platforms, including AWS, Azure, and GCP, for understanding and evaluating cloud-hosted environments and associated controls
• Jira for ticket management, workflow tracking, and cross-functional collaboration
• GitHub for version control and collaboration on security documentation and policy management
• Google Workspace for day-to-day productivity, documentation, and internal communication

What You’ll Do

• Conduct control walkthroughs, testing, and evaluation of IT general controls and application controls across a complex systems landscape, with coverage spanning ISO 27001, PCI-DSS, SOC 1, SOC 2, and other applicable frameworks
• Partner with cross-functional teams to design, implement, and continuously improve control processes and related documentation
• Support third-party vendor assessments, evaluating vendors against established security and privacy standards and requirements
• Develop, maintain, and update Information Security Policies and Standards in alignment with industry best practices and regulatory obligations
• Participate in IT SOX scoping, risk assessment, and control design activities, contributing to the organization's overall internal control environment
• Prepare and deliver clear, accurate internal status reports to communicate control findings, remediation progress, and program updates to relevant stakeholders

Skills We’re Looking For

• Demonstrated experience in security audit, IT audit, and risk management, with a strong understanding of control frameworks and audit methodologies. 
• Working knowledge of industry compliance frameworks, including NIST, ISO 27001, SOC 1, SOC 2, and PCI-DSS
• Familiarity with cloud technologies and environments, including one or more of GCP, AWS, and Azure, with an understanding of cloud-specific security and control considerations
• Strong analytical and technical problem-solving skills, with the ability to assess complex control environments and draw well-supported conclusions
• Proven ability to work collaboratively across functions, taking initiative and contributing constructively to shared team objectives
• Effective at managing multiple concurrent workstreams, with strong organizational skills and the ability to prioritize in a fast-paced environment
• Excellent written, verbal, and interpersonal communication skills, with the ability to present complex information clearly to both technical and non-technical audiences

Bonus Skills​

• Familiarity with FedRAMP compliance requirements and the associated authorization process and control framework
• Professional certifications in audit or information security, such as CISA, CISSP, AWS, or SANS GIAC designations, are strongly preferred
• Prior experience working at or directly with a Big 4 public accounting firm, with exposure to large-scale audit and advisory engagements
• Experience leveraging AI tools to build workflow automations and drive operational efficiencies within a GRC or security context

#LI-HYBRID

#LI-VM1

Join the Bloomreach GIST (Global Information Security & Technology) team as an Associate Security Analyst and help protect our e-commerce environment from threats, vulnerabilities, and sophisticated attackers. Your work will have a significant impact on numerous customers across various e-commerce verticals and hundreds of millions of online users. As a core member of our globally distributed 24/7 Security Operations Team, you can work full-time from our India offices or from home.

Your job will be (but not limited to)

● To Monitor, analyze & interpret security/system/application/infrastructure logs for events, configuration irregularities & potential incidents
● To leverage security tools, custom built dashboards and/or proactive identification approaches to detect anomalous activities
● Monitoring Cloud infrastructure for security-related events
● Monitoring threat/vulnerability landscape and security advisories, coordinate and escalate as appropriate
●To work with application security teams, product specialists, GRC, legal teams on active incidents and/or investigations
● To participate in a major incident call, document incident report summaries
● To document, follow and execute standard operating procedures (SOPs)
● Documenting/Managing/maintaining & following use cases, playbooks and/or knowledge base articles
● To work on incidents, requests related to security
● Owning responsibilities within a shift with a positive mindset towards growth & upskilling

Professional experience, skills & requirements

● 2+ years of hands on experience as part of a 24*7 Security Operations team OR a starter with equivalent degree/specialization in the area of Cyber Security with a proven project dealing in the new age landscape (SaaS platform Security, SecOps, API/Container Security, Threat Intel/Hunting, Vulnerability Management).
● Hands on experience or deep knowledge on usage of SIEM, SOAR, EDR ( modules like TI, VM, DLP)
● Exposure or experience in using any of CSPM tools (SentinelOne, Falcon Horizon, Wiz,Sysdig,Prisma cloud,MS Defender)
● Exposure or experience in assessing, interpreting & managing vulnerabilities using relevant tools.
● Knowledge of either AWS or GCP is must
● Should possess positive attitude to participate, own & drive tasks for POCs for various tools
● Understanding of risk framework
● Ability to assess emerging trends & threats in cyber security space
● Should possess good analytical, problem-solving, and interpersonal skills. Should be able to apply & provide logical reasoning
● Knowledge of NIST framework, OSINT standards, MITRE ATT&CK framework & cybersecurity incident lifecycle is an advantage. Beginner level of understanding is mandatory
● Mandatory to work in a 24/7 rotation shift & weekends
● Possess excellent command on communication in English being a good listener, speaker & reader 

Your success story will be:

In the first 30 days you will

● Understand the roles & responsibilities of SOC team, in-scope vs out of scope tasks
● Read & understand SOPs, Policies & working procedures of the team
● Shadow peers in day to day work, overlook tickets, alerts, incidents, understand the current state of ongoing projects/enhancements etc

In the next 30 days you will (60 days from start)

● Start owning incidents, tasks as independent contributor with a peer shadowing you
● Participate in incident related calls, cross team/department meetings
● Handle SIEM/SOAR/EDR events

In the next 30 days you will(90 days from start)

● You will start documenting or tweaking existing SOPs, process document
● You will bear responsibilities of representing team in forums/meetings/discussions
● You will start managing shift alone when needed
● You will adapt yourself to service improvement mindset and contribute to overall success of the team

Position Overview:
Seeking a Security Analyst to join our Security Operations Center (SOC), focusing on incident response and threat detection. This role involves working with enterprise SIEM platforms, EDR solutions, and incident management tools to protect IBKR's global trading infrastructure.

Key Responsibilities:

• Triage and investigate security alerts using SIEM/EDR tools
• Execute incident response playbooks
• Perform malware analysis and IOC identification
• Create incident tickets and maintain documentation
• Conduct initial forensic data collection
• Support security event correlation and analysis
• Monitor suspicious endpoint activities
• Participate in 24x7 incident response coverage

Required Technical Skills:

• Experience with SIEM (Splunk/QRadar)
• EDR platforms (CrowdStrike/Carbon Black)
• Incident ticketing systems (ServiceNow/JIRA)
• Windows/Linux log analysis
• Network traffic analysis
• Malware detection tools
• IOC collection and analysis
• Basic forensic tools

Required Experience:

• 5+ years SOC/IR experience
• L1/L2 alert analysis background
• Experience with incident playbooks
• Exposure to MITRE ATT&CK framework
• Understanding of kill chain methodology
• Basic threat intelligence usage

Technical Environment:

• SIEM platforms
• EDR solutions
• TIP platforms
• Forensic tools
• Network monitoring tools
• Vulnerability scanners
• Incident management systems

Work Requirements:

• Rotating shifts (24x7 SOC)
• Incident response handling
• Alert triage and escalation
• Documentation and reporting
• Team collaboration

Growth Path:

• Advanced IR certification support
• Threat hunting training
• Digital forensics exposure
• Technical skill development
• Senior analyst progression

Company Benefits & Perks: 

• Competitive salary package.
• Performance-based annual bonus (cash and stocks).
• Hybrid working model (4 days office/week).
• Group Medical & Life Insurance.
• Modern offices with free amenities & fully stocked cafeterias.
• Monthly food card & company-paid snacks.
• Hardship/shift allowance with company-provided pickup & drop facility*
• Attractive employee referral bonus.
• Frequent company-sponsored team-building events and outings.

* Depending upon the shifts.

**The benefits package is subject to change at the management's discretion.

Here's a summary of the role:

If you're a compliance professional who believes that the best controls are the ones that run themselves — this one's for you.

As a Compliance Engineer on our Continuous Controls Assurance team, you'll sit at the intersection of compliance, engineering, and business process — your mission being to make compliance a living, automated reality rather than a periodic exercise. You'll inject compliance directly into how the business operates, building the evidence, signals, and automation that lets us prove we do what we say we do.

This role is particularly suited to candidates who have worked across compliance frameworks and technical environments — whether in SaaS companies, cloud-native organisations, or forward-thinking internal audit and GRC functions — and who are comfortable translating control requirements into code, pipelines, and data.

You'll play a central role in maturing our controls assurance program, moving us from point-in-time testing toward continuous, automated monitoring that scales with the business.

Here's a breakdown of what you'll do:

• Design and build automated controls — translate control objectives across frameworks such as SOC 2, ISO 27001, and PCI DSS into automated tests, scripts, and monitoring logic embedded in business and technical processes
• Own continuous controls monitoring — develop and maintain pipelines that continuously collect, evaluate, and surface control evidence, flagging exceptions and deviations in near real-time
• Embed compliance into the SDLC and business operations — partner with Engineering, DevOps, and business teams to integrate compliance checkpoints, policy-as-code, and configuration validation into CI/CD pipelines and operational workflows
• Bridge GRC and Engineering — translate compliance requirements into technical specifications, and translate system behaviour back into auditable evidence — acting as the connective tissue between the two disciplines
• Maintain the controls evidence repository — ensure control evidence is automatically captured, timestamped, and stored in a format that supports internal review and external audit
• Support audit and assurance activities — provide automated evidence packages for external audits, reducing manual effort and improving audit quality and speed
• Identify and close assurance gaps — conduct control gap assessments, recommend improvements, and own the remediation pipeline through to closure
• Collaborate on policy and standard development — ensure that policies are written in a way that can be operationalised and tested, feeding back where policy language creates ambiguity in controls design

These are the essentials you'll need to get an interview:

• Experience in a compliance, GRC, or information security role within a SaaS or cloud-native organisation
• Hands-on experience with one or more compliance frameworks — SOC 2, ISO 27001, PCI DSS, or similar
• Demonstrated ability to automate compliance processes — using scripting (Python, Bash, or similar), APIs, or tooling such as Drata, Vanta, Tugboat Logic, or equivalent
• Familiarity with cloud environments (AWS, GCP, or Azure) and the controls that govern them
• Strong analytical skills — able to decompose a control objective into testable, measurable components
• Excellent written communication — able to produce clear control narratives, test procedures, and evidence documentation

It would be great if you had these too, but we'll support you if you don't:

• Experience with policy-as-code tools (e.g. Open Policy Agent, Conftest, Checkov, or AWS Config Rules)
• Exposure to CI/CD platforms (e.g. GitHub Actions, GitLab CI, Jenkins) and how compliance gates can be embedded within them
• Familiarity with SIEM, log management, or observability tooling in a controls assurance context
• A background that spans both technical and compliance disciplines — e.g. a developer who moved into GRC, or a compliance analyst who learned to code
• Relevant certifications such as CISA, CISSP, CCSP, AWS Security Specialty, or equivalent

About the Role

We are seeking a highly skilled Security Analyst (Level 2) to join our MSSP SOC team. The ideal candidate will have expertise in SIEM (Splunk, QRadar), XDR/EDR solutions, and security analysis with hands-on experience in investigating and responding to security alerts. This role requires proficiency in reviewing and analyzing Level 1 alerts, providing detailed recommendations, and engaging with customers for incident handling. The candidate should also have basic SIEM administration knowledge and Python scripting skills for troubleshooting and playbook development.

Key Responsibilities

• Threat Detection & Response: Analyze and investigate security alerts, events, and incidents generated by SIEM, XDR, and EDR solutions.
• Incident Investigation & Handling: Conduct in-depth security incident investigations, assess impact, and take appropriate actions. 
• Incident Escalation & Communication: Escalate critical incidents to Level 3 analysts or senior security teams while maintaining detailed documentation.
• Content Management: Develop and fine-tune correlation rules, use cases, and alerts in SIEM/XDR platforms to improve detection accuracy.
• Malware Analysis: Perform basic malware analysis and forensic investigation to assess threats.
• Customer Request Handling: Collaborate with customers to address security concerns, provide recommendations, and respond to inquiries.
• SIEM Administration: Assist in the administration and maintenance of SIEM tools like Splunk or QRadar, ensuring smooth operations.
• Automation & Playbooks: Utilize Python scripting for automation, troubleshooting, and playbook development to enhance SOC efficiency.
• Reporting & Documentation: Prepare detailed reports on security incidents, trends, and mitigation strategies. 

Basic Qualifications

• B.E/B. Tech degree in computer science, Information Technology, Masters in Cybersecurity
• 3+ years of experience in a SOC or cybersecurity operations role.
• Strong knowledge of SIEM tools (Splunk, QRadar) and XDR/EDR solutions.
• Hands-on experience in threat detection, security monitoring, and incident response.
• Knowledge of network security, intrusion detection, malware analysis, and forensics.
• Basic experience in SIEM administration (log ingestion, rule creation, dashboard management).
• Proficiency in Python scripting for automation and playbook development.
• Good understanding of MITRE ATT&CK framework, security frameworks (NIST, ISO 27001), and threat intelligence.
• Strong analytical, problem-solving, and communication skills.
• Ability to work in a 24x7 SOC environment (if applicable)

Preferred Qualifications

• Certified SOC Analyst (CSA)
• Certified Incident Handler (GCIH, ECIH)
• Splunk Certified Admin / QRadar Certified Analyst
• CompTIA Security+ / CEH / CISSP (preferred but not mandatory

About This Position:

We are seeking a Technical Program Manager to bridge the gap between high-stakes incident response and the strategic security roadmap. This is a hybrid role: you will be the primary orchestrator during active security events while simultaneously driving the technical execution of our long-term Security roadmap.

You are a technical driver who understands cloud infrastructure and modern attack vectors. You will ensure that lessons learned from today’s incidents become the foundational requirements for tomorrow’s security features. If you thrive in the "calm within the storm" of incident response but enjoy the structured delivery of complex technical programs, this role is for you.

What You Will Do:

Incident Management & Response

• Orchestrate the end-to-end lifecycle of security incidents, from initial detection and triage through to final remediation and recovery.
• Act as the primary communication bridge between technical responders and executive leadership, translating complex technical data into clear, actionable updates.
• Optimize scalable response playbooks to standardize how the organization handles evolving threats and modern attack vectors.
• Lead post-mortem retrospectives to identify systemic gaps and drive the implementation of long-term preventative measures into the engineering backlog.

Technical Roadmap & Program Execution

• Drive the program lifecycle for technical security initiatives, managing everything from initial requirements gathering to deployment and post-launch support.
• Translate business needs into crisp technical requirements that engineering teams can execute against effectively.
• Partner with Security Leadership to ensure initiatives are delivered on time, within scope, and meet our rigorous internal quality standards.
• Identify and mitigate trade-offs, managing technical debt and ensuring that our security solutions are built for long-term scalability.

What We Are Looking For:

Minimum Requirements:

• 3–5 years of experience in technical program management, project management, or a related analyst role.
• Proven ability to manage multiple initiatives simultaneously in a fast-paced, evolving environment. Incident response On-Call availability is necessary. 
• Technical Skills: Understanding of security principles, technologies, and best practices, as well as proficiency in Agile methodologies and tools like Jira or Rally.
• Education: A bachelor's degree in Computer Science, Information Security, or related field, or equivalent work experience.

Preferred Qualifications:

• Certifications (Preferred): Agile certification (e.g., CSM, SAFe) and experience with security frameworks such as NIST, ISO 27001, or SOC 2 are a plus.

#Remote

Truveta provides unprecedented real-world data and real-time intelligence, powered by a dataset built with and owned by US health systems united in a mission of Saving Lives with Data. Together, we power breakthrough medical discoveries, accelerate regulatory-grade evidence, and improve patient care. Today, Truveta enables research on more than 130 million de-identified patients across the US.  

Achieving Truveta’s ambitious mission requires an incredible team of talented and inspired people with a special combination of health, software and big data experience who share our company values.

Responsibilities  

Incident Response 

• Handle investigation and response to security incidents across endpoints, identities, email, cloud workloads, and SaaS applications 

• Act as a senior escalation point for SOC analysts during complex or ambiguous security events 

• Participate in on-call rotations and provide senior-level escalation support when needed 

• Lead or contribute to post-incident reviews (RCA, postmortems) and track remediation actions to completion 

• Ensure incidents are accurately documented for audit, compliance, and operational learning 

• Maintain and improve incident response runbooks, playbooks, and escalation procedures 

• Support incident readiness activities, including tabletop exercises and response drills 

Detection Engineering & Automation 

• Develop, tune, and maintain Microsoft Sentinel analytics rules to improve detection quality and reduce false positives 

• Design and optimize KQL queries for investigations, threat hunting, and detection engineering 

• Integrate and maintain log sources and data connectors in Microsoft Sentinel, ensuring data quality and proper normalization 

• Build and maintain SOAR automation and playbooks (Logic Apps) for alert enrichment, triage, and response 

Proactive Security & Posture 

• Perform proactive threat hunting across Microsoft Sentinel and Defender data to identify emerging or stealthy threats 

• Monitor and continuously improve detection coverage and security posture (e.g., Secure Score, exposure signals) 

SOC Maturity & Collaboration 

• Track and report on SOC and incident metrics such as MTTD, MTTA, MTTR, alert volume, and detection effectiveness 

• Partner with engineering and infrastructure teams to drive long-term remediation and risk reduction 

• Contribute to the continuous improvement of SOC tooling, automation, and operational maturity 

• Help define and improve SOC processes, workflows, and standards 

Continuous Learning 

• Stay current on threat intelligence, attacker techniques (MITRE ATT&CK), and the Microsoft security roadmap 

Key Qualifications 

• The knowledge, skills, and abilities typically acquired through the completion of a Bachelor’s degree in Cyber Security, Computer Science, Information Security, Information Systems, or a related field, or equivalent practical experience. 

• 5+ years of experience in Security Operations (SOC), Incident Response, or Detection & Response role, with demonstrated ownership of complex security incidents. 

• Hands-on experience with Microsoft Sentinel (SIEM) and Microsoft Defender XDR (Defender for Endpoint, Identity, Office 365, Cloud Apps). 

• Proficiency in KQL (Kusto Query Language) for investigations, threat hunting, and detection engineering. 

• Experience designing, tuning, and maintaining SIEM detections and SOAR automation, including alert triage and response workflows. 

• Solid understanding of Azure cloud architecture, core services, and native security controls. 

• Familiarity with Azure Entra ID, identity security concepts, RBAC, and IAM-related threats. 

• Experience with handing high-severity security incidents, including cross-team coordination and stakeholder communication. 

• Familiarity with MITRE ATT&CK, threat actor techniques, and modern attack methodologies across cloud, identity, and endpoint environments. 

• Experience supporting on-call rotations and working in a 24/7 or follow-the-sun SOC environment. 

• Strong written and verbal communication skills, with the ability to explain technical issues to both technical and non-technical audiences. 

• Ability to mentor junior analysts and contribute to the continuous improvement of SOC processes and tooling. 

• Relevant certifications such as Microsoft Security Operations Analyst Associate, Azure Security Engineer Associate, SC-200, SC-100, CySA+, GCIH, GCIA, CISSP, or similar are strongly preferred. 

Why Truveta? 

Be a part of building something special. Now is the perfect time to join Truveta. We have strong, established leadership with decades of success. We are well-funded. We are building a culture that prioritizes people and their passions across personal, professional, and everything in between. Join us as we build an amazing company together. 

Truveta is committed to creating a diverse, inclusive, and empowering workplace. We believe that having employees, interns, and contactors with diverse backgrounds enables Truveta to better meet our mission and serve patients and health communities around the world. We recognize that opportunities in technology historically excluded and continue to disproportionately exclude Black and Indigenous people, people of color, people from working class backgrounds, people with disabilities, and LGBTQIA+ people. We strongly encourage individuals with these identities to apply even if you don’t meet all of the requirements. 

About the role

The Governance, Risk, and Compliance Analyst is responsible for assisting in assessing third-party risk across Samsara’s new and existing systems and building automated workflows to support a scaling program.

You take Security seriously, but understand there is a business to operate and strive to build low friction solutions and decisions made in close partnership with others. On a typical day, you might work with Samsara’s legal or procurement team to discuss an ongoing review of a vendor, build and refine AI enabled workflows to scale the vendor risk program, and collaborate with teams in engineering to collect evidence for an upcoming audit.

This is a hybrid role based in Bengaluru. We are open to candidates currently residing anywhere within India; however, relocation assistance will not be provided.

You should apply if:

• You want to impact the industries that run our world: Your efforts will result in real-world impact – helping to keep the lights on, get food into grocery stores, reduce emissions, and most importantly, ensure workers return home safely.
• You are the architect of your own career: If you put in the work, this role won’t be your last at Samsara. We set up our employees for success and have built a culture that encourages rapid career development, countless opportunities to experiment and master your craft in a hyper growth environment.
• You’re energized by our opportunity: The vision we have to digitize large sectors of the global economy requires your full focus and best efforts to bring forth creative, ambitious ideas for our customers.
• You want to be with the best: At Samsara, we win together, celebrate together and support each other. You will be surrounded by a high-calibre team that will encourage you to do your best. 

In this role, you will: 

• Work with the local Senior Manager of Security Engineering to provide programmatic updates and communicate both program, third-party, and technical risk to the broader Information Security leadership team
• Drive automation and efficiency in the TPRM program through the use of third-parties, such as Zip and Vanta, and creating native solutions; ensuring security reviews and reassessments scale with company growth.
• Partner with Procurement, Legal, and Privacy to ensure vendor risks are identified, documented, and mitigated throughout the vendor lifecycle.
• Champion, role model, and embed Samsara’s cultural principles (Focus on Customer Success, Build for the Long Term, Adopt a Growth Mindset, Be Inclusive, Win as a Team) as we scale globally and across new offices

Minimum requirements for the role:

• 3+ years of experience in the governance, risk, and compliance space
• Experience implementing or maintaining vendor-risk programs
• Experience performing security and maturity assessments
• Supporting the creation or maintenance of risk registers, compliance inventories, and control mappings across internal and external systems
• Ability to work with systems teams to collaboratively implement security controls across a diverse range of systems, such as Okta, Slack, Salesforce, and internal tooling
• Professional experience coordinating and interacting with external auditors, internal engineering teams, business stakeholders, senior leadership, and security operations teams on procurement activities, audit controls and compliance requirements
• Experience conducting vendor risk assessments, including reviewing security certifications, penetration tests, and policies.
• Strong understanding of vendor integration risks and permission scoping across SaaS platforms (eg. Slack, Google Workspace, and Salesforce)
• Ability to translate complex technical findings and requirements into clear business risks and requirements to non technical stakeholders.

An ideal candidate also has:

• Experience working with NIST Cybersecurity Framework profiles, SOC 2, ISO 27001, or similar frameworks
• Experience creating workflows through automation and AI assitance
• Experience working within common GRC and procurement platforms such as Zip and Vanta.
• Experience managing high volumes of vendor requests and competing priorities.
• Prior assessment experience in the Software-as-a-Service industry

#LI-hybrid 

About the Role

We are seeking a Data Governance & AI Trust Manager to define and operationalize the governance framework that enables high‑quality, well‑governed data to safely and effectively power GenAI agents, copilots, and analytics across the company.

As the organization accelerates adoption of Generative AI, the quality, structure, provenance, and clarity of corporate operating data have become critical enablers of AI performance, trustworthiness, and value. This role exists to ensure that the company’s operating data ecosystem is intentionally designed, consistently governed, and fit for AI‑enabled use cases, rather than fragmented, ambiguous, or ad‑hoc.

This role reports to the CISO & CIO and operates as a cross‑functional data governance authority across all company content. It does not own or manage the data itself; content ownership remains with business and platform owners. Instead, this role defines the standards, policies, and operating expectations under which data is created, managed, shared, retained, and made eligible for analytics and GenAI use.

A core responsibility of the role is to set the vision for the company’s internal data ecosystem—including how platforms such as SharePoint, Confluence, Jira, Slack, Teams, and related systems should be used together—and to establish clear operational standards (for example, when content belongs in SharePoint versus Confluence, and how that decision impacts AI use).

Governance is expected to be operationalized through native platform controls and existing enterprise tooling, rather than through standalone or heavyweight governance systems. The role translates governance principles into practical, enforceable standards that improve data quality, reduce ambiguity, and materially improve GenAI outcomes.

This is not a traditional data engineering or compliance analyst role. Success requires strong program ownership, the ability to drive cross‑functional alignment without direct authority, and sound judgment at the intersection of data quality, AI trust, security, and business operations.

Your Day‑to‑Day

Governance Framework Design & Ownership

• Own and evolve the company’s Corporate Operating Data Governance framework
• Define governance standards for unstructured and semi‑structured data across collaboration and productivity platforms
• Establish clear ownership models (Data Owners, Data Stewards, Custodians) for operating data domains
• Ensure governance practices enable business velocity rather than obstruct it
• Operationalize governance through native platform capabilities (e.g., metadata, permissions, retention, labeling, workflows) rather than standalone governance tooling

Metadata, Classification & AI Eligibility

• Define and maintain metadata standards, including:
  • Data classification
  • Purpose of use
  • Lifecycle state
  • AI eligibility and exclusion rules
• Partner with Security and Legal to ensure alignment with privacy, regulatory, and contractual obligations
• Embed metadata and classification standards directly into existing platforms rather than creating parallel systems

Data Quality & Trustworthiness

• Establish fitness‑for‑purpose data quality expectations for corporate operating data
• Define quality signals for:
  • Accuracy
  • Completeness
  • Timeliness
  • Consistency
• Partner with business teams to identify high‑risk or high‑impact data domains
• Ensure AI‑enabled experiences are grounded in authoritative, explainable, and traceable data sources

Lifecycle, Retention & Risk Management

• Define lifecycle expectations for operating data, including creation, maintenance, archival, and deletion
• Coordinate retention and defensibility standards to support legal, compliance, and audit needs
• Reduce long‑term risk from unmanaged or over‑retained unstructured data
• Support eDiscovery and investigation readiness through clarity and traceability

Cross‑Functional Execution & Enablement

• Drive accountability across Product, Engineering, Security, Legal, IT, and Business teams
• Establish practical governance cadences, reporting, and decision forums
• Provide authoritative guidance and operating standards while enabling teams with clear, pragmatic direction
• Foster a data‑aware and AI‑responsible culture through enablement and education rather than enforcement alone

What You Bring to the Team

• 6+ years of experience in data governance, data management, AI governance, security, or related operational leadership roles
• Experience governing unstructured or operational data (e.g., collaboration platforms, knowledge systems, document repositories)
• Strong understanding of data quality concepts and lifecycle management
• Familiarity with AI risk considerations including data provenance, bias, privacy, and misuse
• Demonstrated ability to drive cross‑functional execution without direct authority
• Excellent written and verbal communication skills for executive and technical audiences
• Sound judgment balancing governance rigor with business pragmatism
• High degree of ownership and follow‑through

What We’d Like to See (Not Required)

• Experience supporting AI governance, AI enablement, or responsible AI initiatives
• Exposure to regulated environments (HIPAA, HITRUST, SOC 2, GovRAMP, or similar)
• Familiarity with collaboration platforms such as Jira, Confluence, Slack, and Microsoft 365
• Experience partnering closely with Security, Legal, or Risk teams
• SaaS or data‑platform operating environment experience

What you’ll get in return 

• Competitive Leave & Benefits
• Comprehensive health coverage
• Equity for every employee – share in our success
• Growth-focused environment – your development matters here

Work arrangements 

• Standard hours: 8 hours/day, 5 days/week
• Location: Pune, Hybrid (3 days a week in office)
• Shift: 12pm-9pm IST

Are you a passionate security defender eager to outsmart advanced threats and fortify the future of secure digital work? At Ivanti, as a Senior ThreatOps Analyst, you will be at the very heart of our security operations—actively driving innovation in threat detection, incident response, and intelligence gathering to protect organizations worldwide. Join our collaborative, forward-thinking team and make a tangible impact as you defend, respond, and shape security in an ever-evolving digital landscape. Your expertise will help protect countless users, safeguard mission-critical services, and enable secure innovation without boundaries.

Why this role matters

As a Senior ThreatOps Analyst at Ivanti, you will play a mission-critical role in the security of our cloud and on-premises environments. Your efforts inform and empower Ivanti’s ability to detect, investigate, and respond to emerging threats—ensuring our technology remains trusted, resilient, and ready for the challenges of tomorrow.

What you’ll do:

• Lead and execute security incident response, leveraging your deep expertise to manage and mitigate threats across Ivanti’s global footprint.
• Uncover both known and unknown threats using advanced incident response techniques, threat hunting, threat intelligence, and a strong understanding of attacker TTPs.
• Conduct thorough investigations involving external attacks, insider threats, and digital forensics, ensuring stakeholders stay informed with comprehensive reporting.
• Analyze security logs from diverse sources (SIEM, EDR, DLP, email threat detection, and cloud platforms such as Azure, AWS, and GCP), proactively identifying and disrupting potential threats before impact.
• Develop detection content, craft automation to streamline and elevate security response efficiency, and improve our overall detection and response capabilities.
• Provide actionable risk mitigation strategies, recommendations, and thorough documentation to enhance Ivanti’s security posture.
• Work closely with Senior Threat Analysts, the Incident Response Manager, and the Security Architecture team to coordinate, escalate, and resolve information security events.
• Contribute to knowledge sharing and mentorship within the team to build collective expertise in modern cyber defense.

What you will bring:

• Bachelor’s degree in Information Systems, MIS, Computer Science, Cybersecurity, or a related technical field.
• 7+ years’ experience in cybersecurity incident response, threat hunting, SOC operations, and/or digital forensics in enterprise-scale environments.
• Experience in Mimecast and Falcon NG-SIEM is must.
• Mastery of security tools and platforms including SIEM, EDR, DLP, email security gateways, cloud security (Azure, AWS, GCP), forensic toolsets, and network security solutions.
• Expertise with Windows, Linux, and/or Mac operating systems—at the filesystem and artifact level.
• Strong familiarity with the MITRE ATT&CK framework and hands-on experience in mapping real-world attacks to attacker techniques.
• In-depth understanding of anomalous activity, lateral movement, living-off-the-land techniques, and common attacker tradecraft.
• Excellent organizational skills, time management, and ability to thrive in dynamic, fast-paced environments.
• Exceptional communication skills—able to produce clear reports and guidance for both technical and non-technical stakeholders.
• Proven collaboration skills with internal and external teams to effectively research and implement countermeasures against novel and persistent threats.
• Bonus points for:** Industry-recognized certifications such as SANS (GCIH, GCFA, GNFA), CompTIA (CySA+, Security+), EC-Council (CEH), or Blue Team certifications.

Why Ivanti?

• Remote-friendly, flexible schedules: Empower excellence in every setting and elevate human potential.
• Competitive compensation & total rewards: Including health, wellness, and financial plans tailored for you and your family.
• Global, diverse teams: Collaborate with talented people from 23+ countries.
• Learning & development: Grow your skills with access to best-in-class learning tools and programs.
• Equity & belonging: We value every voice. Your story helps inform our solutions for a changing world.

What drives us

Ivanti’s mission is to elevate human potential within organizations by managing, protecting and automating technology for continuous innovation.

It is through diverse and inclusive hiring, decision-making, and commitment to our employees and partners that we will continue to build and deliver world-class solutions for our customers.

To learn more about Ivanti’s  Mission and Core Values.

Inclusion at Ivanti

Ivanti is proud to be an Equal Opportunity Employer. We’re committed to building a diverse team and fostering an inclusive environment where everyone belongs. We welcome applicants from all backgrounds and walks of life.
Need adjustments during the process? Reach out to talent@ivanti.com—​we’re happy to help.

Ready to make your mark?
Apply today and shape the future of Everywhere Work with Ivanti!

#L1-SHUBHANGI

Job Overview

We are seeking a detail-oriented and proactive Senior Security Analyst - GRC (Governance, Risk, and Compliance) to join our Information Security team. The Security Analyst will play a pivotal role in ensuring the organization’s adherence to regulatory requirements, identifying and mitigating risks, and enhancing governance processes. This position will collaborate with cross-functional teams to maintain a strong security posture and align our operations with industry standards.

Key Responsibilities

• Develop and maintain information security policies, standards, and procedures in line with industry best practices and frameworks.
• Monitor compliance with policies and procedures across departments and provide recommendations for improvement.
• Collaborate with internal stakeholders to support security awareness and training programs.
• Assist in conducting risk assessments and evaluating the effectiveness of existing controls.

• Document, and track risks, including mitigation plans and residual risks.
• Coordinate with stakeholders to ensure timely remediation of identified risks.
• Monitor compliance with applicable laws, regulations, and standards such as HIPAA, PCI DSS.

• Assist with internal and external audits by preparing documentation, evidence, and responses.
• Assist with third party security penetration tests.
• Stay informed about emerging compliance requirements and ensure the organization adapts accordingly.
• Assist in maintaining and enhancing GRC tools and platforms.

• Prepare regular reports and dashboards for leadership on governance, risk, and compliance status.
• Monitor and triage security alerts. 
• Participate in incident response and business continuity planning efforts as needed.
• Work with Enterprise Security, Application Security, and Cloud Security team members
• Maintain the security center of excellence. 

Required Qualifications

• Bachelor’s degree in Information Security, Cybersecurity, Computer Science, Business Administration, or a related field.
• 8+ years of experience in GRC, risk management, compliance, or a related role.
• Familiarity with GRC frameworks such as ISO 27001, NIST CSF, SOC 2, or COBIT.
• Understanding of regulatory requirements like HIPAA and PCI DSS.
• Proficiency in GRC tools and platforms.
• Strong analytical, organizational, and communication skills.

We are seeking a highly motivated, detail-oriented, and proactive Senior IT Compliance Analyst to support Yext’s security assurance activities with customers, vendors, and internal teams. This role is responsible for responding to product security-related questions, completing security assessments and audit inquiries, and reviewing security and contract language to ensure compliance with Yext’s standards.

The ideal candidate will collaborate closely with Legal, Sales, and Security teams to ensure accurate, timely, and customer-focused responses while maintaining a strong compliance posture. They will bring deep knowledge of security frameworks, exceptional communication skills, and the ability to partner across business and technical teams to strengthen the organization’s overall security posture.

What You'll Do

Governance

• Contribute to the development and maintenance of IT & Security policies, standards, and controls.
• Support the annual control attestation process and provide the required evidence.
• Measure, track, and report on security metrics and key performance indicators (KPIs).
• Ensure ongoing alignment with regulatory and industry compliance requirements (e.g., SOC 2, HIPAA, GDPR, NIS2).
• Support responses to cyber insurance questionnaires by leveraging existing security controls, certifications, and policies.

Risk & Compliance Management

• Conduct risk assessments across systems, applications, and vendors, documenting and tracking outcomes.
• Collaborate with IT, Legal, and Security teams to design and implement mitigation strategies.
• Maintain a centralized repository of standardized security questionnaire responses and keep them current with implemented controls.
• Manage responses to client questionnaires and third-party audit inquiries with accuracy and professionalism.
• Serve as a key point of contact for clients, auditors, and external stakeholders on security-related matters.
• Prepare and provide audit-ready evidence for internal and external audits (SOC 2, SOX, ISO 27001, etc.).
• Partner with control owners to create and track corrective action plans, ensuring timely remediation.
• Identify and implement process improvements to increase efficiency in audit preparation, risk assessments, and responses.
• Provide actionable recommendations to management on enhancing security and compliance practices.

What You Have

• Bachelor’s degree in Information Security, Cybersecurity, Computer Science, Engineering, or related field; or equivalent experience.
• 5+ years of experience in information security, with a strong focus on audit and compliance management.
• Demonstrated experience conducting risk and compliance assessments.
• Proven success in managing client security questionnaires and third-party audits.
• Familiarity with industry and regulatory compliance frameworks (SOC 2, SOX, ISO 27001, NIST CSF, HIPAA, GDPR).
• Experience with GRC tools and technologies (e.g., OneTrust, SecurityScorecard, Bitsight, Archer, or similar).
• Advanced written and verbal communication skills, with the ability to engage confidently with executives, clients, and auditors.
• Professional certifications such as CISA, CRISC, CISM, CISSP, or CDPSE preferred.

Bonus Points

• Governance & Compliance Expertise – Deep knowledge of regulatory and industry frameworks (SOC 2, SOX, ISO 27001, NIST CSF, HIPAA, GDPR, NIST AI RMF).
• Risk Management – Ability to evaluate risks and support effective remediation strategies.
• Audit & Assessment Skills – Skilled in managing and supporting audits, assessments, and assurance activities.
• Client & Stakeholder Engagement – Strong ability to build trust and deliver timely, accurate responses.
• Communication – Excellent written and verbal skills; able to present technical issues clearly to non-technical audiences and executives.
• Cross-Functional Collaboration – Works effectively across IT, Security, Legal, and business teams.
• Project & Time Management – Strong organizational skills with the ability to balance multiple priorities.
• Continuous Improvement – Identifies opportunities to streamline assurance and compliance processes.
• Technical Acumen – Familiarity with GRC platforms (e.g., OneTrust, SecurityScorecard, Bitsight, Archer) and security tooling.
• Leadership & Influence – Capable of guiding stakeholders and influencing decisions.

Perks and Benefits

At Yext, we take pride in our diverse workforce and prioritize creating an engaged and connected working environment. Our ambitious mission is to transform the enterprise with AI search, and we know that to achieve that, we need a global team of innovators, visionary thought leaders, and enthusiastic collaborators passionate about making a meaningful impact in the world and contributing to an extraordinary culture.

We believe that people do their best when they feel their best — and to feel their best, they must be well-informed, fuelled, and rested. To ensure our employees are at their best, we offer a wide range of benefits and perks, including:

• Performance-Based Compensation: We offer an attractive bonus structure and stock options for eligible positions.
• Comprehensive Leave Package: Our leave package includes Paid Time Off (PTO), Parental Leave, Sick Leave, Casual Leave, Bereavement Leave, National Holidays, and Floating Holidays to ensure a healthy work-life balance.
• Health & Wellness Offerings: We provide medical insurance with 7L coverage, including enhanced parental and outpatient department (OPD) coverage for you, your spouse, two dependent children, and two parents (as applicable and subject to eligibility requirements).
• Relocation Benefits: We offer relocation assistance and an allowance to eligible candidates to help ease your transition.
• World-Class Office & Building Amenities: Our office has a top-notch infrastructure, including gaming rooms, a plush pantry, and breakout areas.

#LI-RK1

Why we're hiring:

The Threat Hunter is responsible for proactively identifying advanced threats that evade traditional security controls. This role involves hypothesis-driven investigations, leveraging threat intelligence, and analyzing telemetry across endpoints, networks, and cloud environments to uncover stealthy adversary activity. The Threat Hunter plays a critical role in reducing dwell time and strengthening organizational resilience under the Autonomic Security Operations model.

What you'll be doing:

Proactive Threat Hunting

· Execute hypothesis-driven hunts based on adversary TTPs and threat intelligence.

· Analyze telemetry from SIEM, EDR/XDR, NDR, and cloud-native platforms to identify anomalies.

· Develop and maintain hunting queries and scripts for automation and repeatability.

· Validate detection coverage through purple team exercises and adversary emulation.

Threat Intelligence Integration

· Incorporate emerging threat intelligence into hunting hypotheses and detection pipelines.

· Maintain awareness of global threat actor tactics, techniques, and procedures (MITRE ATT&CK).

Continuous Improvement

· Document hunt findings and feed insights into detection engineering and SOC workflows.

· Maintain a backlog of hunting hypotheses and visibility gaps for remediation.

· Contribute to automation of hunting workflows using scripting and SOAR platforms.

Strategic Alignment to GCAT SOC10x

· 10X People: Continuous learning and knowledge sharing within the team.

· 10X Process: Embed agile, hypothesis-driven hunting workflows.

· 10X Technology: Leverage AI/ML analytics for anomaly detection and hunt acceleration.

· 10X Visibility: Ensure comprehensive telemetry ingestion across hybrid environments.

· 10X Speed: Reduce dwell time and accelerate detection-to-response cycles.

What you'll need:

Technical Expertise

· Strong knowledge of threat hunting methodologies and frameworks (MITRE ATT&CK, TaHiTI).

· Proficiency in SIEM, EDR/XDR, and log aggregation tools across hybrid infrastructure.

· Scripting skills (Python, PowerShell) for automation and data analysis.

· Familiarity with threat intelligence integration and behavioral analytics.

Collaboration & Communication

· Ability to work closely with SOC, IR, and engineering teams.

· Skilled in documenting hunt outcomes and communicating findings effectively.

Certifications (Preferred)

· GIAC GCTI, GCIH, or equivalent advanced security certifications.

Key Attributes

· Automation-first mindset with focus on scalability and resilience.

· Strong analytical and problem-solving skills.

· Excellent communication and teamwork capabilities.

Who you are:

You're open: We are inclusive and collaborative; we encourage the free exchange of ideas; we respect and celebrate diverse views. We are open-minded: to new ideas, new partnerships, new ways of working.

You're optimistic: We believe in the power of creativity, technology and talent to create brighter futures or our people, our clients and our communities. We approach all that we do with conviction: to try the new and to seek the unexpected.

You're extraordinary: we are stronger together: through collaboration we achieve the amazing. We are creative leaders and pioneers of our industry; we provide extraordinary every day.

What we'll give you:

Passionate, inspired people – We aim to create a culture in which people can do extraordinary work.

Scale and opportunity – We offer the opportunity to create, influence and complete projects at a scale that is unparalleled in the industry.

Challenging and stimulating work – Unique work and the opportunity to join a group of creative problem solvers. Are you up for the challenge?

POSITION OVERVIEW

Oportun is looking for a Senior Information Security Analyst, with a passion for conducting the technical analysis for events. This includes immediate containment, investigation and management of remediation actions, as well as enhancing defenses with the new knowledge acquired throughout the response process. This is a 24/7 position on rotational shift.

RESPONSIBILITIES

• Monitor and analyze traffic and events/alerts escalated by L2 and advise on remediation actions.
• Review and assess impact and remediation actions for incidents.
• Creation and continuous improvement of monitoring alerts
• Deep analysis of security incidents to identify the root cause
• Create new rules in SIEM to identify threats.
• Monitor and analyze traffic and events/alerts and advise on remediation actions.
• Review and assess impact and remediation actions for incidents.
• Investigate intrusion attempts and perform analysis of exploits by correlating various sources and determining which system or data set is affected.
• Follow standard operating procedures for detecting, classifying, and reporting incidents.
• Analyze a variety of network and host-based security appliance logs (EDR, Firewalls, NIDS, HIDS, Sys Logs, etc.) to determine the correct remediation actions and escalation paths for each incident.
• Independently follow procedures to identify, contain, analyze, document and eradicate malicious activity.
• Escalate information regarding intrusion events, security incidents, and other threat indicators and warning information to the client.

REQUIREMENTS

• Bachelor’s degree in computer science, information systems or related field from an accredited institution OR 5 years of relevant experience in SOC, Incident response or Cyber Forensics.

• Experience in decoding logs from different security devices like Firewall, proxy, EDR etc.,
• Experience in handling cyber incidents on a day to day basis.
• Experience in performing L1 analysis of tickets and determining if its a false positive or not.
• Experience in correlating incidents.
• Experience in understanding network architecture and connecting events logically.
• Experience working in or with different teams like network, engineering, application etc.,

• Knowledge, Skills, and Abilities

• Ability to communicate efficiently with internal team members at all levels and across functional and organizational boundaries.
• Working knowledge of the TCP/IP suite/OSI layers of protocols.
• Conceptual knowledge of network and systems architecture.
• Familiarity with Intrusion Detection Systems configuration and operation.
• Web application architecture.
• Active Directory Solid understanding of how major application layer protocols function (e.g., HTTP, SMTP, DNS).
• Knowledge of categories of malware and how they function (e.g., rootkits, trojans, adware, exploits, fileless).
• Organizational skills and time management/prioritization.
• Comfortable working against deadlines in a fast-paced environment.
• At least 3 years of prior SOC experience (can include internships).
• Ability to build a strong, positive relationship with partnering engineering and security teams to develop effective solutions.
• Ability to sufficiently document engineering efforts and results.
• Passion for Security, Technology and Automation.
• Preferred Certifications (Security+, etc.).

#LI-REMOTE

#LI-ST1

Why we're hiring:

The Security Threat Intelligence Analyst provides operational, tactical, and strategic intelligence to support WPP’s detection engineering, incident response, threat hunting, and vulnerability management functions. Aligned to the ASO pillars (Assess, Safeguard, Operate), this role analyses threat data, adversary behaviour, emerging TTPs, and industry developments.

What you'll be doing: 

• Threat Intelligence Collection & Analysis (Assess)
  • Monitor external threat data sources and industry feeds.
  • Evaluate intelligence for accuracy, reliability, and relevance.
  • Produce tactical and operational intelligence outputs.
• Threat Contextualisation & Safeguarding Support (Safeguard)
  • Identify and analyse threats targeting WPP infrastructure.
  • Support detection engineering with TTP insights.
  • Assist in threat-led vulnerability prioritisation.
• Operational Enablement & Cross‑Function Collaboration (Operate)
  • Partner with SOC, IR, Threat Hunting, and VM teams.
  • Produce intelligence reports for internal stakeholders.
  • Maintain indicator repositories (IOCs, hashes, domains).
• Research & Strategic Intelligence Development
  • Conduct research into emerging threats, malware, and campaigns.
  • Develop strategic threat assessments.
• Knowledge Management & Documentation
  • Maintain structured documentation of intelligence processes.
  • Ensure intelligence artefacts are stored and retrievable.

What you'll need:

• Essential:
  • 3+ years operational experience in CTI or SOC.
  • Strong analytical skills.
  • Proficiency with CTI frameworks (MITRE ATT&CK, kill chain).
  • Ability to translate technical threat data into business insight.
• Desirable:
  • GCTI, GREM, GCFA, GCIH certifications.
  • Experience supporting detection engineering or threat hunting.
  • Knowledge of ISO 27001 and WPP standards.

Who you are:

You're open: We are inclusive and collaborative; we encourage the free exchange of ideas; we respect and celebrate diverse views. We are open-minded: to new ideas, new partnerships, new ways of working.

You're optimistic: We believe in the power of creativity, technology and talent to create brighter futures or our people, our clients and our communities. We approach all that we do with conviction: to try the new and to seek the unexpected.

You're extraordinary: we are stronger together: through collaboration we achieve the amazing. We are creative leaders and pioneers of our industry; we provide extraordinary every day.

What we'll give you:

Passionate, inspired people – We aim to create a culture in which people can do extraordinary work.

Scale and opportunity – We offer the opportunity to create, influence and complete projects at a scale that is unparalleled in the industry.

Challenging and stimulating work – Unique work and the opportunity to join a group of creative problem solvers. Are you up for the challenge?

#LI-Hybrid 

Toast creates technology to help restaurants and local businesses succeed in a digital world, helping business owners operate, increase sales, engage customers, and keep employees happy.

We are seeking a highly motivated Senior Corporate Security Analyst to join Toast’s Corporate Security team in Bangalore. This role is focused on hands-on corporate security execution and risk reduction across endpoints, identities, SaaS platforms, vendors, and data — not SOC monitoring or shift-based operations.

The ideal candidate has strong experience working in enterprise corporate security environments, understands how to balance security controls with business needs, and is comfortable partnering with IT, GRC, Procurement, Legal, and Engineering teams. You will own multiple CorpSec programs end-to-end and act as a senior individual contributor, while mentoring junior analysts and helping scale security practices across the organization.

A Day in Life (Responsibilities)

1. Corporate Security Execution & Risk Management

• Own and operate key corporate security controls across endpoint, SaaS, identity, vendor, and data security.
• Perform security risk assessments for business initiatives and translate findings into actionable remediation plans.
• Act as a security advisor to internal stakeholders, focusing on practical risk reduction.

2. Endpoint & SaaS Security

• Lead day-to-day security oversight for corporate endpoints and SaaS applications, including:
• EDR/XDR, device hardening, encryption, MDM/UEM
• Shadow IT discovery and SaaS risk reviews
• Partner with IT Operations and Governance teams to resolve alerts, misconfigurations, and policy gaps.
• Conduct periodic reviews of high-risk applications, browser extensions, and endpoint findings.

3. Vulnerability Management (Corporate Scope)

• Drive vulnerability management for corporate endpoints and internal business systems.
• Triage and prioritize vulnerabilities based on business impact and exploitability.
• Track remediation with IT teams and validate closure.

4. Identity & Access Management (IAM)

• Support enterprise IAM governance, including:
• Joiner / mover / leaver processes
• Access reviews and least-privilege enforcement
• MFA, SSO, device trust, and privileged access (PAM)
• Assist in access investigations and high-risk access exception reviews.

5. Vendor & Third-Party Security

• Conduct vendor security assessments for onboarding and periodic reviews.
• Review SOC 2 reports, security questionnaires, and supporting evidence.
• Track vendor risks, remediation actions, and re-assessments.
• Partner with Procurement, Legal, and GRC teams to ensure security requirements are met.

6. Data Protection & DLP

• Support data protection initiatives across Google Workspace, Slack, and other collaboration platforms.
• Assist with the design, tuning, and enforcement of DLP controls.
• Participate in investigations related to data exposure or misuse.

7. Security Awareness & Process Improvement

• Support security awareness training and phishing simulation programs.
• Maintain CorpSec policies, SOPs, and runbooks.
• Identify opportunities to improve efficiency through automation and tooling.

8. Mentorship & Ownership

• Mentor P2-level security analysts and provide technical guidance.
• Take ownership of CorpSec initiatives and deliver them end-to-end with minimal supervision.

9. Contractor Security Oversight

• Establish and enforce contractor access standards, ensuring strict security controls during onboarding and offboarding.
• Conduct periodic contractor access and activity audits, identifying and mitigating associated risks.

Work Mode: This role follows a hybrid work model, requiring a minimum of 2 days per week in the office.

What We’re Looking For

Required

• 6–10 years of experience in information security with strong corporate security exposure.
• Hands-on experience with:
• Endpoint security and EDR tools (e.g., CrowdStrike)
• Vendor security assessments and SOC 2 reviews
• IAM concepts (Okta, PAM, access reviews)
• SaaS and Shadow IT security
• Strong understanding of security frameworks (NIST CSF, ISO 27001, CIS Controls).
• Experience working closely with IT and governance teams.
• Strong written and verbal communication skills.

Preferred

• Experience with Google Workspace security and DLP.
• Exposure to GRC processes or platforms (ServiceNow GRC, OneTrust).
• Bachelor's degree in Computer Science, Information Security, or a related field; Master's degree preferred.
• Proven experience in developing and implementing security policies, procedures, and frameworks.Demonstrated experience in developing and delivering security awareness training and phishing exercises.
• Possess excellent skills and experience in leveraging AI tools for threat detection, incident response, vulnerability management, and other security functions.
• Familiarity with Google Workspace security features.
• Proficiency with security tools such as Reco.AI, Torq, Splunk, DataDog, bug bounty platforms, Okta Device Trust, BeyondTrust, BeyondCorp, and other SIEM, SOAR and Security tools commonly used in the market.
• Ability to work autonomously and prioritize multiple tasks in a fast-paced environment.
• Excellent verbal and written communication skills, with the ability to effectively communicate technical information to both technical and non-technical audiences. Proven ability to collaborate effectively with cross-functional teams.
• Quick learner and adaptable to new security tools and technologies as they are procured and implemented.
• Ability to adapt to environments, understand requirements, and actively collaborate within the team, with other teams, and with vendors.
• Provide technical guidance and mentorship to P2 security analysts, fostering their professional growth and ensuring alignment with corporate security objectives.
• Take initiative in leading projects and driving security initiatives.
• Relevant security certifications are a plus.

AI at Toast

At Toast, one of our company values is that we're hungry to build and learn. We believe learning new AI tools empowers us to build for our customers faster, more independently, and with higher quality. We provide these tools across all disciplines, from Engineering and Product to Sales and Support, and are inspired by how our Toasters are already driving real value with them. The people who thrive here are those who embrace changes that let us build more for our customers; it’s a core part of our culture.

Our Total Rewards Philosophy 
We strive to provide competitive compensation and benefits programs that help to attract, retain, and motivate the best and brightest people in our industry. Our total rewards package goes beyond great earnings potential and provides the means to a healthy lifestyle with the flexibility to meet Toasters’ changing needs. Learn more about our benefits at https://careers.toasttab.com/toast-benefits.