2,613 Security Analyst jobs in India

Responsibilities

• Application Security Testing/Penetration Testing (Web-based, Thick client, web services, Mobile Android & IOS, Network PT)
• Static Code Analysis/ Secure Code Review
• Security defect Tracking and working closely with Developers to fix the issue
• Strong experience with the following tools – Burp Suite, Wireshark, Nmap, Metasploit, Checkmarx/Fortify, and Nessus.
• Excellent English communication skills (verbal and written)

Requirements

• 2+ years of work experience in VAPT
• CEH/ OSCP/ OSCE and ISCP certification

Why You'll Enjoy Working at Kratikal:

1. Get the fast learning and exciting environment of a startup, combined with the stable work and strong performance of a bigger company. There's lots of room to learn, grow, and share your ideas.
2. We also provide good benefits like health insurance, a gratuity payment, and Employees' Provident Fund (a savings plan for your future).
3. We are an equal opportunity employer, where everyone has a fair chance.

About Us:

Kratikal Tech Private Limited is a leading B2B cybersecurity firm offering cutting-edge cybersecurity solutions and services such as Network Security Audits, Compliance Implementation, IoT Security, and VAPT. Serving over 150+ enterprise customers and 1825+ SMEs across industries, including E-commerce, Fintech, BFSI, NBFC, Telecom, Consumer Internet, Cloud Service Platforms, Manufacturing, and Healthcare, Kratikal is dedicated to helping organizations combat cybercriminals using advanced, technology-driven cybersecurity solutions.

The company also develops in-house cybersecurity products, including AutoSecT , competing with industry giants, alongside TSAT (Threatcop Security Awareness Training), TDMARC (Threatcop DMARC), TLMS (Threatcop Learning Management System), and TPIR (Threatcop Phishing Incident Response). These products have received numerous awards and recognitions for their innovation and effectiveness. Kratikal has been honored as the Top Cyber Security Startup at the 12th Top 100 CISO Awards. With a global reach, Kratikal collaborates with renowned organizations to secure their digital landscapes.

For more information, visit our websites at and

Greetings from TCS!

Role: Cyberark PAM

Experience range : 6 to 8 years

Location: Bengaluru, Hyderabad, Chennai, Pune, Kolkata

Job Description:

• Provide BAU support for secrets management applications like CyberArk, HashiCorp Vault.
• Collaborate with various internal and external stakeholders/support teams as required to support the application and business needs
• Work with client applications to provide integration/onboarding guidance.
• Perform BAU validations and work with support teams on automation of manual tasks.
• Document the product, process, and work with L1/2 teams to provide day to day BAU support for customer reporter issues
• Facilitate security assessments and collaborate on remediation with involved support teams to ensure safety and soundness.
• Gather requirements and provide walkthroughs to businesses on usage of various SDKs and API services available for integration with Secrets/Identity and Access Management application
• Be responsible to assess the risk and associated impact of all operational issues and change events and react quickly to escalate to technology management in a timely manner when required
• Provide on-call support in rotation as required.
• Basic experience working with one or more of these scripting languages – Python, Unix Shell, Perl & PowerShell scripting.

Company : TCS

Experience Range : 6 to 8 Years

Location : Bengaluru, Hyderabad

Job Description:

• Design, configure, and maintain CyberArk Privileged Access Security (PAS) components including CPM, PSM, Vault, AIM etc.
• Integrate CyberArk with enterprise systems (e.g., AD, LDAP, ServiceNow, SIEM, cloud platforms).
• Automate onboarding and lifecycle management of privileged accounts using CyberArk APIs and scripts.
• Conduct PAM assessments, generate compliance reports, and assist with audits.
• Collaborate with internal teams to support secure access practices and incident response efforts.

Years of Exp: 3-5 yrs

Budget: 20 Lacs max

Notice Period: Immediate

Location: Pune only

Work Mode: Hybrid(3 days)

Interview Round:-

1 round internal -virtual

2nd round internal-virtual

3rd Client Round

Required Skill Set:

Should have experience in VAPT,pentesting, vulnerability risk management, PCI,compliance.

Web, API, Mobile and Network, is,

Certified in CEH

Security concepts

Web VAPT

SAST

DAST

Mobile VAPT

Cloud AWS

Tools

Network Security

Join our Team
About This Opportunity
We are now looking for a Security Analyst professional. This job role is responsible for monitoring, coordination, support, management, and execution of reactive maintenance activities to ensure that services provided to customers are continuously available and performing to Service Level Agreement (SLA) performance levels. The professional will work alongside a highly skilled, diverse team, making sure that the information assets, that we are responsible to protect, are secured.

What You Will Do
Support the following systems and functions:

• Security event management on 24*7 shift
• Monitor incoming event queues for potential security incidents
• Security incident management, 1st level triaging, issues and RCA
• Perform initial investigation and triage of potential incidents; and raise or close events as applicable
• Monitor SOC ticket (or email) queue for potential event reporting from outside entities and individual users
• Support parsers and rules development for the SIEM
• Raise incidents to respective team for resolution (within SLA)
• Identity Access Management
• Create and track the access to customer environments
• Process improvements
• Identify improvements in processes and KPIs
• Adapt to improvement initiatives
• Shift handover
• Maintain SOC shift logs with relevant activity from the shift
• Document investigation results, ensuring relevant details are passed to Security Engineer for final event analysis
• Update SOC collaboration tool as necessary
• Vulnerability scanning and reporting
• Schedule the vulnerability assessment scan for desired frequency based on agreed plan for nodes in scope
• Track and provide details of the scan planned/ ongoing/ completed status as and when required
• Governance Reports
• Preparation of daily, weekly and monthly reports

You will bring
Basic knowledge of a Security Information and Event Management System (SIEM), such as McAfee, Splunk, Qradar, etc.

• Basic knowledge of a vulnerability scanning system such as Nessus, Tripwire, etc.
• Knowledge of both Linux-based and MS Windows-based systems with technical understanding and skills for analytical problem-solving
• Knowledge of IP networking
• Ability to work in shifts
• The ability to work constructively under pressure
• Ability to work both in a team as well as individually
• Knowledge sharing & collaboration skills
• Customer oriented, service minded
• Deliver results & meet customer expectations
• Excellent communication skills, English is a must

Key Qualifications:
Education:

• Graduate in Computer Science or similar

Minimum years of relevant experience:

• 1 to 2 years with at least 1 year of experience in IT security
• ITIL certification, CEH, Security +, CCNA Security or similar will be an advantage
• Basic knowledge of telecommunications networks will be an added advantage

We have an exciting opportunity for you

We are seeking a Jr. Security Analyst and this is an immediate open position. Sharing below Job Details, please apply if you are interested.

• Role: Jr. Security Analyst
• Yrs of Experience: 3-5 years
• Full JD: attached
• Location: Bangalore.

We are looking for early joiners for this role.

Qualifications, Skills, Experience and Personal Requirements:

• Bachelors in: Computer Science, Information Security, Cybersecurity, or a related degree.
• 2-4 year experience in one or more areas: Security Operations, Incident Response
• Strong security concepts of threat categories (such as malware, phishing attacks, Defense-in-Depth, MITRE ATT&CK framework, etc.)
• Strong knowledge of M365 Security tools, Azure, AWS, GCP
• Working experiences to security tools such as SIEM (Sentinel, Splunk, Elastic etc.), EDR, firewalls, IDS/IPS, anti-spam, content management, server and network device hardening, etc.
• Strong knowledge of Windows, Linux and/or Mac OS and comfortable with looking at, understanding, and investigating Security Event logs.
• Good knowledge of networking protocols (SMTP, HTTP, HTTPS, FTP, DNS, DHCP, etc).
• Experiences of any query language and scripting language
• SharePoint, Excel, JIRA and/or Microsoft Office skills
• Experience in using security orchestration, automation, and response tools
• Experience with query languages and scripting languages
• Experience in using security orchestration, automation, and response tools

Additional Manager Comments:

• Acknowledges the presence of choice in every moment and takes personal responsibility for their life.
• Possesses an entrepreneurial spirit and continuously innovates to achieve great results.
• Communicates with honesty and kindness and creates the space for others to do the same.
• Leads with courage, knowing the possibility of greatness is bigger than the fear of failure.
• Fosters connection by putting people first and building trusting relationships.
• Integrates fun and joy as a way of being and working, aka doesnt take themselves too seriously.

Responsibilities:

• Technical documentation about the security breaches and the processes.
• Configuration reviews for implemented solutions like firewalls, WAF, PAM/PIM, DLP, SIEM Etc
• Data encryption programs to safeguard organizations vital data.
• Red teaming, VA-PT, source code reviews, Mobile app reviews
• Work directly with the ISG team and coordination with stakeholders
• Risk assessment and risk management processes
• Understand the processes and interact with related disciplines through committees to ensure the consistent application of policies and standards across all technology projects, systems and services
• Review and Propose changes to existing policies and procedures to ensure operating efficiency and regulatory compliance.
• Coordinate, measure and report on the technical aspects of security posture.
• Manage outsourced vendors that provide information security functions for compliance with contracted service-level agreements.
• Manage and coordinate operational components of incident management, including detection, response, documentation and reporting.
• Maintain a knowledgebase comprising a technical reference library, security advisories and alerts, information on security trends and practices, and laws and regulations.
• Manage the day-to-day activities of threat and vulnerability management, identify risk tolerances, recommend treatment plans and communicate information about residual risk.
• Mitigate the compliance requirements as per regulatory guidelines
• Ensure audit trails, system logs and other monitoring data sources are reviewed periodically and follow policies and audit requirements.
• Design, coordinate and oversee security testing procedures to verify the security of systems, networks and applications, and manage the remediation of identified risks.

Requirements:

• Diploma /Degree in a technology-related field required.
• Professional security analyst certification
• Minimum of five to 7 years of hands on experience in VA-PT, configuration reviews and data protection
• Knowledge of common information security management frameworks, such as ISO/IEC 27001, and NIST.
• Excellent written and verbal communication skills and high level of personal integrity.
• Experience with Cloud computing/Elastic computing across virtualized environments.