5,115 Threat Detection jobs in India

• Monitor and analyze security alerts from various sources (SIEM, IDS/IPS, EDR).
• Investigate security incidents, determine scope, and recommend containment strategies.
• Perform forensic analysis of security breaches and cyberattacks.
• Configure, tune, and maintain security monitoring tools.
• Develop and implement threat detection rules and signatures.
• Stay current with emerging threats, vulnerabilities, and security technologies.
• Collaborate with IT teams to implement security best practices.
• Prepare incident reports and provide recommendations for improvement.
• Participate in security awareness training and incident response exercises.

• Bachelor's degree in Cybersecurity, Computer Science, or a related field.
• 3-5 years of experience in information security, with a focus on threat detection and incident response.
• Proficiency with SIEM tools (e.g., Splunk, QRadar), IDS/IPS, and EDR solutions.
• Strong understanding of network security, operating systems, and common attack vectors.
• Experience with vulnerability assessment and penetration testing methodologies.
• Excellent analytical, problem-solving, and critical-thinking skills.
• Strong written and verbal communication skills.
• Relevant certifications such as CISSP, CEH, or GIAC are a plus.

• Monitor security alerts and events from various sources, including SIEM, IDS/IPS, and endpoint security solutions.
• Analyze security incidents to determine scope, impact, and root cause.
• Investigate potential security breaches and conduct forensic analysis as needed.
• Develop, tune, and maintain detection rules and signatures to identify malicious activity.
• Stay informed about the latest cybersecurity threats, vulnerabilities, and attack vectors.
• Collaborate with IT and network teams to implement security controls and remediation actions.
• Participate in incident response activities, including containment, eradication, and recovery.
• Generate regular reports on security incidents, trends, and operational metrics.
• Contribute to the development and improvement of security policies and procedures.
• Maintain up-to-date knowledge of security technologies and best practices.

• Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field.
• 3-5 years of experience in information security, with a focus on threat detection, incident response, or SOC operations.
• Hands-on experience with SIEM platforms (e.g., Splunk, QRadar, LogRhythm) and EDR solutions.
• Strong understanding of networking protocols, operating systems (Windows, Linux), and common attack methodologies.
• Knowledge of cybersecurity frameworks and standards (e.g., NIST, ISO 27001).
• Excellent analytical, problem-solving, and critical thinking skills.
• Strong communication and collaboration skills, effective in a remote work environment.
• Relevant certifications such as CompTIA Security+, CySA+, CEH, or GIAC are highly desirable.
• Ability to work independently and manage time effectively in a remote setting.

• Monitor security alerts from various sources, including SIEM, IDS/IPS, and endpoint detection and response (EDR) tools.
• Investigate potential security incidents, performing detailed analysis to determine the scope, impact, and root cause.
• Develop and refine threat detection rules, signatures, and use cases to improve the effectiveness of security monitoring.
• Conduct threat hunting exercises to proactively identify advanced persistent threats (APTs) and other malicious activities.
• Document incident details, investigation findings, and recommended remediation actions in a clear and concise manner.
• Collaborate with IT and security teams to implement security controls and improve overall security posture.
• Participate in incident response activities, including containment, eradication, and recovery efforts.
• Stay updated on the latest threat intelligence, vulnerabilities, and cybersecurity trends.
• Contribute to the development and maintenance of security policies and procedures.
• Perform vulnerability assessments and provide recommendations for remediation.
• Assist in security awareness training for employees.
• Respond to security escalations and provide timely updates to stakeholders.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Minimum of 3-5 years of experience in information security, with a focus on threat detection and incident response.
• Hands-on experience with Security Information and Event Management (SIEM) tools (e.g., Splunk, QRadar, LogRhythm).
• Proficiency in analyzing network traffic, logs, and system artifacts.
• Understanding of various attack vectors, malware types, and advanced persistent threats (APTs).
• Knowledge of operating systems (Windows, Linux), network protocols, and cybersecurity frameworks (e.g., NIST, ISO 27001).
• Familiarity with scripting languages (e.g., Python, PowerShell) is a plus.
• Strong analytical, problem-solving, and critical thinking skills.
• Excellent communication and teamwork skills.
• Relevant certifications such as CompTIA Security+, CEH, or GIAC are highly desirable.
• Ability to work effectively under pressure and in a dynamic security environment.

• Monitoring security alerts and logs from various security tools (SIEM, IDS/IPS, EDR) to detect potential threats and anomalies.
• Investigating security incidents, determining their scope, impact, and root cause.
• Developing and implementing threat detection rules and signatures to proactively identify emerging threats.
• Conducting vulnerability assessments and penetration testing to identify weaknesses in the IT infrastructure.
• Analyzing malware and developing remediation strategies.
• Assisting in the development and maintenance of incident response plans and procedures.
• Providing timely and accurate incident reports to management and relevant stakeholders.
• Staying informed about the latest cybersecurity threats, vulnerabilities, and mitigation techniques.
• Collaborating with IT operations teams to implement security patches and configuration changes.
• Participating in security awareness training programs for employees.
• Ensuring compliance with relevant security policies, standards, and regulations.
• Contributing to the continuous improvement of the organization's security posture.

• Monitor security alerts and events from various sources, including SIEM, IDS/IPS, firewalls, and endpoint detection solutions.
• Analyze security incidents to determine their scope, impact, and root cause.
• Conduct investigations into suspicious activities and potential security breaches.
• Develop and refine threat detection rules and signatures to improve the accuracy of security monitoring.
• Respond to security incidents in a timely and effective manner, following established incident response procedures.
• Perform vulnerability assessments and penetration testing to identify weaknesses in the network and systems.
• Implement and maintain security controls to protect against cyber threats.
• Stay current with the latest cybersecurity threats, vulnerabilities, and attack vectors.
• Develop and update security policies, procedures, and documentation.
• Collaborate with IT teams to implement security best practices across the organization.
• Provide security awareness training to employees.
• Generate regular reports on security incidents, threat landscape, and security posture.
• Participate in on-call rotations for incident response.
• Evaluate and recommend new security technologies and solutions.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Minimum of 3-5 years of experience in information security, with a focus on threat detection and incident response.
• Strong understanding of cybersecurity principles, network security, and common attack vectors.
• Experience with SIEM tools (e.g., Splunk, QRadar, ArcSight) and other security monitoring solutions.
• Knowledge of incident response methodologies and procedures.
• Familiarity with vulnerability assessment and penetration testing tools.
• Excellent analytical and problem-solving skills.
• Strong written and verbal communication skills.
• Relevant certifications such as CompTIA Security+, CEH, CISSP are highly desirable.
• Ability to work under pressure and manage multiple tasks simultaneously.
• Experience with scripting languages (e.g., Python, PowerShell) for security automation is a plus.

• Monitor security infrastructure, including SIEM, IDS/IPS, firewalls, and endpoint protection solutions, for suspicious activities.
• Analyze security alerts and events to identify and prioritize potential threats and incidents.
• Conduct in-depth investigations into security breaches and policy violations.
• Develop and refine detection rules, signatures, and correlation logic within security tools.
• Perform threat hunting activities to proactively identify undetected threats.
• Contribute to the development and execution of incident response plans.
• Document security incidents, findings, and remediation actions thoroughly.
• Stay abreast of the latest threat intelligence, attack vectors, and cybersecurity trends.
• Provide recommendations for security improvements and vulnerability mitigation.
• Collaborate with IT teams to implement security controls and best practices.
• Participate in security awareness training initiatives for employees.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Minimum of 3-5 years of experience in information security, with a focus on threat detection and incident response.
• Hands-on experience with Security Information and Event Management (SIEM) tools (e.g., Splunk, QRadar, ArcSight).
• Familiarity with network protocols, operating systems (Windows, Linux), and common attack vectors.
• Understanding of threat intelligence platforms and methodologies.
• Strong analytical and problem-solving skills, with the ability to interpret complex data.
• Excellent written and verbal communication skills.
• Relevant certifications such as Security+, CySA+, GSEC, or CEH are highly desirable.
• Ability to work effectively in a team environment and under pressure during incident response.
• Knowledge of scripting languages (e.g., Python, PowerShell) for automation is a plus.

About Tide
At Tide, we are building a business management platform designed to save small businesses time and money. We provide our members with business accounts and related banking services, but also a comprehensive set of connected administrative solutions from invoicing to accounting.

Launched in 2017, Tide is now used by over
1 million small businesses
across the world and is available to UK, Indian and German SMEs. Headquartered in central London, with offices in Sofia, Hyderabad, Delhi, Berlin and Belgrade, Tide employs over 2,000 employees.

Tide is rapidly growing, expanding into new products and markets and always looking for passionate and driven people. Join us in our mission to empower small businesses and help them save time and money.

About The Team
The Platform Security team at Tide plays a crucial role in safeguarding our cloud environments and protecting our Members, partners, employees, and intellectual property. As a Platform Security Engineer within this team, you'll work closely with the Platform Team, Risk Team, and the broader Tide Engineering teams. Your role will involve enhancing the visibility of our cloud resources and ensuring the secure configuration of our infrastructure. At Tide, you'll find your work particularly fulfilling due to our company culture and the exceptional people you'll collaborate with.

About The Role
As a senior platform security engineer you will

• Designing next generation cloud infrastructure to ensure it is kept up do date without reliance manual processes like patching
• Defining and embedding security best practice and standards into our cloud engineering teams
• Building guardrails and defining policy around IAM to ensure least privilege is enacted
• Identifying ways to make sure new security misconfigurations are not created via IaC
• Hardening our existing cloud infrastructure
• Reviewing cloud integrations between Tide and any third parties and be a point of contact for any cloud security incidents

What We Are Looking For

• You have good infrastructure security experience and passionate about tackling risks from misconfigurations
• You have deep expertise in at least one public cloud, preferably AWS or GCP.
• You are familiar with docker and containerised applications.
• You have a good understanding of Kubernetes and how to secure workloads running in a Kubernetes cluster.
• You are familiar with the cloud-native approach to implementing workloads in a Kubernetes cluster.
• You are comfortable with writing CI/CD pipelines using GitHub Actions or any other CI/CD tools such as Jenkins, GitLab Actions, CircleCI etc.
• You are able to review and write Terraform and are able to propose improvements to external providers
• You write reliable software in Python or Go
• You have operations experience in running and maintaining software, operating a large cloud deployment, or creating and triaging alerts around the health and security of your systems
• You work well with other people, see the value of a team, and partner effectively with all stakeholders
• You thrive by identifying high leverage work and doing it without explicit direction
• You aim to always be learning new things and share this passion with those around you

What You'll Get In Return

• Competitive salary
• Self & Family Health Insurance
• Term & Life Insurance
• OPD Benefits
• Mental wellbeing through Plumm
• Learning & Development Budget
• WFH Setup allowance
• 15 days of Privilege leaves
• 12 days of Casual leaves
• 12 days of Sick leaves
• 3 paid days off for volunteering or L&D activities
• Stock Options

Tidean Ways Of Working
At Tide, we champion a flexible workplace model that supports both in-person and remote work to cater to the specific needs of our different teams.

While remote work is supported, we believe in the power of face-to-face interactions to foster team spirit and collaboration. Our offices are designed as hubs for innovation and team-building, where we encourage regular in-person gatherings to foster a strong sense of community.

TIDE IS A PLACE FOR EVERYONE

At Tide, we believe that we can only succeed if we let our differences enrich our culture. Our Tideans come from a variety of backgrounds and experience levels. We consider everyone irrespective of their ethnicity, religion, sexual orientation, gender identity, family or parental status, national origin, veteran, neurodiversity or differently-abled status. We celebrate diversity in our workforce as a cornerstone of our success. Our commitment to a broad spectrum of ideas and backgrounds is what enables us to build products that resonate with our members' diverse needs and lives.

We are One Team and foster a transparent and inclusive environment, where everyone's voice is heard.

At Tide, we thrive on diversity, embracing various backgrounds and experiences. We welcome all individuals regardless of ethnicity, religion, sexual orientation, gender identity, or disability. Our inclusive culture is key to our success, helping us build products that meet our members' diverse needs. We are One Team, committed to transparency and ensuring everyone's voice is heard.
Disclaimer
It Has Come To Our Attention That Individuals Or Agencies Are Falsely Claiming To Represent Tide And Are Reaching Out To Candidates Regarding Job Opportunities. Please Be Aware That

• Tide does not charge any fees at any stage of the recruitment process.
• All official Tide job opportunities are listed exclusively on our Careers Page and applications should be submitted through this channel.
• Communication from Tide will only come from an official email address.
• Tide does not work with agencies or recruiters without prior formal engagement, and we do not authorize third parties to make job offers on our behalf.

*If you are contacted by anyone misrepresenting Tide or requesting payment, please treat it as fraudulent and report it to us immediately at

Your safety and trust are important to us, and we are committed to ensuring a fair and transparent recruitment process.
You personal data will be processed by Tide for recruitment purposes and in accordance with
Tide's Recruitment Privacy Notice
. *