2,166 Threat Detection jobs in India
Senior Threat Detection Analyst
Posted today
Job Viewed
Job Description
Reddit is a community of communities. It’s built on shared interests, passion, and trust and is home to the most open and authentic conversations on the internet. Every day, Reddit users submit, vote, and comment on the topics they care most about. With ,+ active communities and approximately M+ daily active unique visitors, Reddit is one of the internet’s largest sources of information. For more information, visit redditinc.com.
Location: Bangalore, India
Reddit is continuing to grow our teams with the best talent. This role islocated in Bangalore, India. If you happen to live close to one of our physical office locations, our doors are open for you to come into the office as often as you'd like.
Team Description
The SPACE (Security, Privacy, And Compliance Engineering) team defends Reddit’s employees and compute assets to make Reddit the most trustworthy place for online human interaction. We look for humble experts with a relentlessly resourceful and entrepreneurial “can do” perspective. If you work tirelessly to break into computer networks and just as tirelessly to ensure others cannot, we need you.
Role Description
This is a Threat Detections role within the SPACE Security Intelligence Center. We are incident commanders with product administration experience who analyze security threats, build detections, and respond to security events. We value builders and software engineers with broad and deep technical knowledge, specifically in the fields of insider threat, data analytics, system forensics, malware analysis, threat hunting, threat intelligence, and application, endpoint, & cloud/infrastructure security. Security is tough, diversity is key, so unique experience is highly valued!
If you are passionate about data, security, threat models, and building creative mitigations, we need you. The ideal candidate has a strong coding background and has worked as part of a Computer Security Incident Response Team (CSIRT). We are looking for those with experience building creative detections and response automations, mapping detections to various security models, and using automation to validate detections are working. You will help build a scalable detection and incident response system to analyze security events and find anomalies across Reddit’s technical ecosystem (endpoints, cloud, and SaaS).
Some of our present and future work include:
What You’ll Do:
Who we want you to be:
Benefits:
Your salary will be commensurate with your experience
Cyber Threat Detection Engineer
Posted today
Job Viewed
Job Description
At Rearc, we"re committed to empowering engineers to build awesome products and experiences. Success as a business hinges on our people"s ability to think freely, challenge the status quo, and speak up about alternative problem-solving approaches. If you"re an engineer driven by the desire to solve problems and make a difference, you"re in the right place!
Our approach is simple — empower engineers with the best tools possible to make
an impact within their industry.
Role Overview
Rearc is looking for a Cybersecurity Threat Detection Engineer with proactive communication skills, a foundation in DevSecOps, Detection-As-Code, deep purple team technical expertise, and an entrepreneurial approach to join our growing Cybersecurity practice. This role involves partnering with Rearc customers to design cutting-edge detection strategies and support the development of top-tier, modern cybersecurity monitoring programs. You will craft tailored security detections to strengthen our clients" cybersecurity efforts by leveraging Security Information and Event Management (SIEM), Security Orchestration Automation and Response (SOAR), Endpoint Detection and Response (EDR), and Network Detection and Response (NDR) services.
What You Bring- Enthusiasm about developing and evangelising Utilise services in the cyber space.
- Strong cloud, security, SIEM and data engineering fundamentals. evangelising
- Utilise optimise NDR, EDR, real-time streaming, and SIEM technologies to develop robust threat detection capabilities.
- Build and optimise detection rules leveraging real-time data streaming to enhance detection accuracy.
- Design enrichment pipelines and automation workflows to enhance the precision of threat detections.
- Develop correlation logic and automated processes to create high-fidelity threat alerts.
- Maintain availability, compliance, and recoverability of customer Data Analytics solutions, including SOPs, data onboarding, normalization, enrichment, and system maintenance.
- Create and maintain playbooks for incident triage and response.
- Align detection content with customer-specific Use Case Frameworks and provide metrics on cybersecurity threats impacting their environment.
- Collaborate with the customer's Enterprise Cybersecurity DART team to enhance Security Orchestration, Automation, and Response (SOAR) functionality.
- Support and create dashboards for Enterprise Cybersecurity, Information Technology (IT), and Operational Technology (OT) teams.
- Stay continually aware of emerging cybersecurity threats and trends, adapting detection strategies as needed.
- Work closely with customer teams, including Cybersecurity Operations Center (CSOC), Operational Technology (OT), and Incident Response (IR) teams, to ensure detections are actionable and relevant.
- Provide feedback to improve the customer"s Use Case Framework and overall security monitoring strategy.
In this role, you will combine technical expertise with continual situational awareness of emerging threats, driving client success while staying at the cutting edge of cyber security innovations.
- 6+ years of experience in Cybersecurity with a focus on:
- Log streaming
- Cybersecurity data lakes and data warehousing
- SOAR engineering
- SIEM engineering, administration, architecture, and operations
- Data science, statistical analysis, and threat detection development
- Integrating disparate IT, OT, and business applications into SIEM systems
- Bachelor"s degree in Management Information Systems, Computer Science, or a related field
- A strong passion for Cybersecurity and a commitment to staying current with industry trends, best practices, and tools
- Proven experience in documenting, socializing, and operationalizing Cybersecurity technologies and processes
- Prior programming experience in Python, Golang, or PowerShell
- Solid understanding of common attack techniques and their practical applications
- Demonstrated ability to work effectively across multiple teams, building cross-functional relationships with individuals of varying technical expertise
- A self-starter with a proven ability to thrive in fast-paced environments
- Strong technical communication skills , both written and verbal
At Rearc, our mission is straightforward - empower engineers with the best tools possible to make an impact within their industry. Founded in 2016 by engineers instrumental in The Wall Street Journal"s transformation to a cloud-native architecture, we recognize that engineers are the driving force behind digital transformation and cloud adoption efforts.
We pride ourselves on fostering an environment where creativity flourishes, bureaucracy is non-existent, and individuals are encouraged to challenge the status quo. We"re not just a company; we"re a community of problem-solvers dedicated to improving the lives of fellow software engineers.
Our commitment is simple - finding the right fit for our team and cultivating a desire to make things better. If you"re a cloud professional intrigued by our problem space and eager to make a difference, you"ve come to the right place. Join us, and let"s solve problems together!
PI275035591
Advisor - Threat Detection Services
Posted today
Job Viewed
Job Description
What We'll Bring:
This role is a member of the larger Threat Detection Services organization, and will work alongside teams responsible for red teaming, intelligence analysis, and technical threat researchers. The individual filling this role will act as a senior leader within the organization helping to drive detection and response maturity, enable proactive monitoring strategies and participate in a wide range of larger cyber defense program activities.What You'll Bring:
Impact You'll Make:
TransUnion Job Title
Advisor, InfoSec EngineeringTechnical Consultant-Threat Detection Content & Administration
Posted today
Job Viewed
Job Description
In this role, you'll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers), where we deliver deep technical and industry expertise to a wide range of public and private sector clients around the world. Our delivery centers offer our clients locally based skills and technical expertise to drive innovation and adoption of new technology
**Your role and responsibilities**
* The SIEM Administrator will be responsible for administering the deployed SIEM service. The candidate is also expected to have hands on experience of deploying a SIEM solution from scratch, where the candidate should have the skills and knowledge to gather all the required information to build the SIEM solution.
* In-depth knowledge of technical approaches in security analytics, monitoring and alerting. Maintains technical knowledge within areas of expertise.
* This role is also responsible for identifying, analyzing, developing new or tuning & Refinement of the content or use cases. Strong problem solving and troubleshooting skills including the ability to perform root cause analysis for preventative investigation
**Required technical and professional expertise**
* Should have experience in any of the query language i.e AQL ,KQL, SPL, LEQL etc for writing the complex queries & saved search creation.
* Should have strong knowledge of different cybersecurity frameworks i.e.MITRE, NIST and Cyber kill chain model.
* Should have understanding of regular expression writing and custom parsing
**Preferred technical and professional experience**
* Collaborate with key stakeholders within technology, application and cyber security to develop use cases to address specific business needs.
* Create technical documentation around the content deployed to the SIEM.
* Creates and develops correlation and detection rules with SIEM solution, reports & dashboards to detect emerging threats
IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.
Senior Security Engineer - Threat Detection and SIEM
Posted 10 days ago
Job Viewed
Job Description
In close partnership with the Cybersecurity team and other departments, this role is responsible for developing and implementing advanced threat detection and SIEM strategies that enhance the organization's security posture. This role requires an experienced and driven security engineer who can work independently and take initiative. The ideal candidate will bring a mix of strategic insight, technical expertise, and discipline in threat detection. Additionally, this engineer will be expected to act as a subject matter expert in SIEM to guide and collaborate with other security functions to optimize SIEM usage.
**REPORTS TO**
Senior Director, Cyber Defense
**TEAM**
Team consists of FTEs, Contractors, and a Third-Party Managed Service Provider
**LOCATION**
Preference for this person to be based in Bangalore; hybrid.
**WHAT YOU WILL DO**
+ **Operational Maturity** : Develop clear documentation for processes, metrics, and outcomes, ensuring adherence to SLAs and compliance requirements. Foster continuous improvement in threat detection and SIEM management.
+ **Threat Detection Leadership** : Provide technical leadership across threat detection and SIEM, with a focus on enhancing incident handling processes, detection engineering, threat interdiction capabilities and metrics.
+ **Security Tool Operations** : Own and manage security tool alerts, ensuring comprehensive coverage and effectiveness across the enterprise while continuously improving detection and prevention mechanisms.
+ **Cloud and DevOps Security** : Drive security capabilities by embedding security into DevOps workflows, leveraging cloud-native tools, and advancing automation for detection and response.
+ **Continuous Improvement** : Stay current and share best practices on how to use modern methods to address security gaps. Leverage artificial intelligence to reduce manual work.
+ **Performance Metrics** : Facilitate and monitor key performance metrics and reporting frameworks to ensure the efficiency and effectiveness of the program, facilitating resource allocation and increasing the maturity of the security.
+ **Change Management** : Follow change management process in managing security platforms
+ **Collaboration** : Collaborate with cross-functional teams to ensure security solutions meet operational and cultural goals. Collect and analyze feedback to continuously refine tools, platforms, and support processes.
**WHO YOU ARE**
+ Bachelor's degree in Cyber Security, information technology or related field;
+ 5+ years of experience in cybersecurity, with a focus on threat detection and SIEM.
+ Hands-on experience with CrowdStrike Platform; NG SIEM an advantage
+ Strong knowledge of IT security principles and compliance standards.
+ Proven ability to balance strategic vision with hands-on implementation.
+ Exceptional communication, and problem-solving skills.
+ A driven and self-starting individual who can work independently and take initiative.
+ Experience working across multiple countries and time zones is an advantage.
**Company Overview**
Fortive's essential technology makes the world stronger, safer, and smarter. We accelerate transformation across a broad range of applications including environmental, health and safety compliance, industrial condition monitoring, next-generation product design, and healthcare safety solutions.
We are a global industrial technology innovator with a startup spirit. Our forward-looking companies lead the way in software-powered workflow solutions, data-driven intelligence, AI-powered automation, and other disruptive technologies. We're a force for progress, working alongside our customers and partners to solve challenges on a global scale, from workplace safety in the most demanding conditions to groundbreaking sustainability solutions.
We are a diverse team united by a dynamic, inclusive culture and energized by limitless learning and growth. We use proven business systems to accelerate our positive impact.
At Fortive, we believe in you. We believe in your potential-your ability to learn, grow, and make a difference.
At Fortive, we believe in us. We believe in the power of people working together to solve problems no one could solve alone.
At Fortive, we believe in growth. We're honest about what's working and what isn't, and we never stop improving and innovating.
Ready to move your career forward? Find out more at (Company Website).
**Equal Opportunity Employer**
We are proud to be equal opportunity employers. We value and encourage diversity and solicit applications from all qualified applicants without regard to race, color, national origin, religion, sex, age, marital status, disability, veteran status, sexual orientation, gender identity or expression, or other characteristics protected by law. We are also committed to providing reasonable accommodations for applicants with disabilities. Individuals who need a reasonable accommodation because of a disability for any part of the employment application process, please contact us at (Contact Information).
**Bonus or Equity**
This position is also eligible for bonus as part of the total compensation package.
**Fortive Corporation Overview**
Fortive's essential technology makes the world stronger, safer, and smarter. We accelerate transformation across a broad range of applications including environmental, health and safety compliance, industrial condition monitoring, next-generation product design, and healthcare safety solutions.
We are a global industrial technology innovator with a startup spirit. Our forward-looking companies lead the way in software-powered workflow solutions, data-driven intelligence, AI-powered automation, and other disruptive technologies. We're a force for progress, working alongside our customers and partners to solve challenges on a global scale, from workplace safety in the most demanding conditions to groundbreaking sustainability solutions.
We are a diverse team 17,000 strong, united by a dynamic, inclusive culture and energized by limitless learning and growth. We use the proven Fortive Business System (FBS) to accelerate our positive impact.
At Fortive, we believe in you. We believe in your potential-your ability to learn, grow, and make a difference.
At Fortive, we believe in us. We believe in the power of people working together to solve problems no one could solve alone.
At Fortive, we believe in growth. We're honest about what's working and what isn't, and we never stop improving and innovating.
Fortive: For you, for us, for growth.
Ready to move your career forward? Find out more at careers.fortive.com.
We Are an Equal Opportunity Employer. Fortive Corporation and all Fortive Companies are proud to be equal opportunity employers. We value and encourage diversity and solicit applications from all qualified applicants without regard to race, color, national origin, religion, sex, age, marital status, disability, veteran status, sexual orientation, gender identity or expression, or other characteristics protected by law. Fortive and all Fortive Companies are also committed to providing reasonable accommodations for applicants with disabilities. Individuals who need a reasonable accommodation because of a disability for any part of the employment application process, please contact us at
We are an Equal Opportunity Employer
Fortive Corporation and all Fortive Companies are proud to be equal opportunity employers. We value and encourage diversity and solicit applications from all qualified applicants without regard to race, color, national origin, religion, sex, age, marital status, disability, veteran status, sexual orientation, gender identity or expression, or other characteristics protected by law. Fortive and all Fortive Companies are also committed to providing reasonable accommodations for applicants with disabilities. Individuals who need a reasonable accommodation because of a disability for any part of the employment application process, please contact us at
Senior Product Manager - Cloud and Container Threat Detection
Posted today
Job Viewed
Job Description
Description
:We are seeking a dynamic and experienced Senior Product Manager to join our growing Cloud Detection and Response (CDR) team at Qualys.
In this role, you will drive the strategy and execution for key areas of our CDR product line — focused on cloud threat detection, investigation, and automated response capabilities.
You will bring a strong background in cloud security, detection and response technologies, and a “can-do” attitude to help global enterprise customers secure their cloud infrastructure and containerized workloads.
You will collaborate closely with engineering, product design, product marketing, sales, and solution engineering teams, and interface with product leadership in a globally distributed environment.
This is an exciting opportunity to have a high-impact role at a company known for innovation and trusted by the world’s leading enterprises.
Qualifications:
• Bachelor’s degree in Computer Science, Engineering, Cybersecurity, or a related technical field (MBA or equivalent experience preferred).
• 5+ years of experience in product management, or 8+ years in a technical leadership, security engineering, or solution architecture role in cybersecurity or cloud security.
• Deep understanding of cloud security, cloud-native environments (AWS, Azure, GCP), Kubernetes, and containerized workloads.
• Familiarity with Cloud Detection and Response (CDR), CNAPP, or adjacent technologies such as SIEM, XDR, EDR, or threat hunting platforms.
• Hands-on experience or strong working knowledge of cloud telemetry (e.g., AWS CloudTrail, Azure Activity Logs), cloud audit logging, and event-based threat detection.
• Knowledge of modern runtime security technologies, including eBPF-based monitoring , Sysdig Falco , Tetragon , and cloud-native network security techniques.
• Understanding of Zero Trust architectures and least-privilege enforcement in cloud environments.
• Experience working with cybersecurity concepts such as malware detection, file integrity monitoring, secure configuration management, and policy compliance.
• Strong analytical, organizational, and technical writing skills, with a data-driven approach to decision-making.
• Exceptional communication skills, both technical and non-technical, across geographically distributed teams and customer environments.
• Experience collaborating across multiple time zones and managing complex projects in a fast-paced environment.
Role and Responsibilities:
• Define and execute product strategy and roadmap for cloud detection and response capabilities within the Qualys platform.
• Gather and prioritize requirements based on customer feedback, industry trends, and competitive analysis.
• Develop clear product themes, epics, and user stories as input to engineering and design teams.
• Work closely with engineering teams to deliver high-quality product features on time and within scope.
• Drive key initiatives in cloud log ingestion and analysis , runtime threat detection using eBPF/Falco/Tetragon , network security analytics , and Zero Trust policy enforcement .
• Actively engage with enterprise customers to understand needs, gather feedback, and validate product direction.
• Track product success through metrics and KPIs, iterating based on customer impact and business outcomes.
• Support product marketing with positioning, messaging, launch readiness, and field enablement.
• Collaborate with sales teams to support key customer opportunities and strategic accounts.
Join Us:
This is a highly visible and impactful role where you will be part of a passionate and collaborative product team shaping the future of cloud security.
If you're excited about building next-generation security solutions, helping customers stay ahead of modern threats, and growing your career at a company known for excellence and innovation — we would love to hear from you.
Vulnerability Management
Posted today
Job Viewed
Job Description
Immediate joiners only
Exp - 5+ Years
Location: Bangalore / Chennai / Gurgaon / Hyderabad
Job Description
- Perform Vulnerability assessment & Policy Compliance using leading Vulnerability Scanning solutions like Qualys etc.
- Perform Vulnerability assessments & Policy Compliance on On-prem, Cloud hosted systems, container (like Docker & Kubernetes), databases, web services and other widely deployed infrastructure components.
- Perform false positive validation and ensure delivery of quality reports.
- Act as a technical SME to analyse the vulnerability results & detection logic.
- Provide technical advice and support on remediation to infrastructure / application support teams.
- Perform Vulnerability assessment & Policy Compliance using leading Vulnerability Scanning solutions like Qualys etc.
- Perform Vulnerability assessments & Policy Compliance on On-prem, Cloud hosted systems, container (like Docker & Kubernetes), databases, web services and other widely deployed infrastructure components.
- Perform false positive validation and ensure delivery of quality reports.
- Act as a technical SME to analyse the vulnerability results & detection logic.
- Provide technical advice and support on remediation to infrastructure / application support teams.
- Review findings and identify root causes for common issues and provide recommendations for sustainable improvements.
- Responsible to maintain vulnerability quality assurance by building VM team technical knowledge base.
- Research and report on security vulnerabilities and latest advancements in the vulnerability management lifecycle.
- Understand security policies, procedures and guidelines to all levels of management and staff.
- Communicate effectively orally and in writing and establish cooperative working relationships.
- Provide suggestion to improve vulnerability Management service based on current trends in information technology (Network, system security software and hardware).
- Act as line manager in the absence of team lead.
Be The First To Know
About the latest Threat detection Jobs in India !
Vulnerability Management
Posted today
Job Viewed
Job Description
Exp - 5+ Years
Location: Bangalore / Chennai / Gurgaon / Hyderabad
Job Description
Perform Vulnerability assessment & Policy Compliance using leading Vulnerability Scanning solutions like Qualys etc.
Perform Vulnerability assessments & Policy Compliance on On-prem, Cloud hosted systems, container (like Docker & Kubernetes), databases, web services and other widely deployed infrastructure components.
Perform false positive validation and ensure delivery of quality reports.
Act as a technical SME to analyse the vulnerability results & detection logic.
Provide technical advice and support on remediation to infrastructure / application support teams.
Perform Vulnerability assessment & Policy Compliance using leading Vulnerability Scanning solutions like Qualys etc.
Perform Vulnerability assessments & Policy Compliance on On-prem, Cloud hosted systems, container (like Docker & Kubernetes), databases, web services and other widely deployed infrastructure components.
Perform false positive validation and ensure delivery of quality reports.
Act as a technical SME to analyse the vulnerability results & detection logic.
Provide technical advice and support on remediation to infrastructure / application support teams.
Review findings and identify root causes for common issues and provide recommendations for sustainable improvements.
Responsible to maintain vulnerability quality assurance by building VM team technical knowledge base.
Research and report on security vulnerabilities and latest advancements in the vulnerability management lifecycle.
Understand security policies, procedures and guidelines to all levels of management and staff.
Communicate effectively orally and in writing and establish cooperative working relationships.
Provide suggestion to improve vulnerability Management service based on current trends in information technology (Network, system security software and hardware).
Act as line manager in the absence of team lead.
Vulnerability Management
Posted 1 day ago
Job Viewed
Job Description
Immediate joiners only
Exp - 5+ Years
Location: Bangalore / Chennai / Gurgaon / Hyderabad
Job Description
- Perform Vulnerability assessment & Policy Compliance using leading Vulnerability Scanning solutions like Qualys etc.
- Perform Vulnerability assessments & Policy Compliance on On-prem, Cloud hosted systems, container (like Docker & Kubernetes), databases, web services and other widely deployed infrastructure components.
- Perform false positive validation and ensure delivery of quality reports.
- Act as a technical SME to analyse the vulnerability results & detection logic.
- Provide technical advice and support on remediation to infrastructure / application support teams.
- Perform Vulnerability assessment & Policy Compliance using leading Vulnerability Scanning solutions like Qualys etc.
- Perform Vulnerability assessments & Policy Compliance on On-prem, Cloud hosted systems, container (like Docker & Kubernetes), databases, web services and other widely deployed infrastructure components.
- Perform false positive validation and ensure delivery of quality reports.
- Act as a technical SME to analyse the vulnerability results & detection logic.
- Provide technical advice and support on remediation to infrastructure / application support teams.
- Review findings and identify root causes for common issues and provide recommendations for sustainable improvements.
- Responsible to maintain vulnerability quality assurance by building VM team technical knowledge base.
- Research and report on security vulnerabilities and latest advancements in the vulnerability management lifecycle.
- Understand security policies, procedures and guidelines to all levels of management and staff.
- Communicate effectively orally and in writing and establish cooperative working relationships.
- Provide suggestion to improve vulnerability Management service based on current trends in information technology (Network, system security software and hardware).
- Act as line manager in the absence of team lead.