298 Threat Detection jobs in Bengaluru
Senior Threat Detection Analyst
Posted today
Job Viewed
Job Description
Reddit is a community of communities. It’s built on shared interests, passion, and trust and is home to the most open and authentic conversations on the internet. Every day, Reddit users submit, vote, and comment on the topics they care most about. With ,+ active communities and approximately M+ daily active unique visitors, Reddit is one of the internet’s largest sources of information. For more information, visit redditinc.com.
Location: Bangalore, India
Reddit is continuing to grow our teams with the best talent. This role islocated in Bangalore, India. If you happen to live close to one of our physical office locations, our doors are open for you to come into the office as often as you'd like.
Team Description
The SPACE (Security, Privacy, And Compliance Engineering) team defends Reddit’s employees and compute assets to make Reddit the most trustworthy place for online human interaction. We look for humble experts with a relentlessly resourceful and entrepreneurial “can do” perspective. If you work tirelessly to break into computer networks and just as tirelessly to ensure others cannot, we need you.
Role Description
This is a Threat Detections role within the SPACE Security Intelligence Center. We are incident commanders with product administration experience who analyze security threats, build detections, and respond to security events. We value builders and software engineers with broad and deep technical knowledge, specifically in the fields of insider threat, data analytics, system forensics, malware analysis, threat hunting, threat intelligence, and application, endpoint, & cloud/infrastructure security. Security is tough, diversity is key, so unique experience is highly valued!
If you are passionate about data, security, threat models, and building creative mitigations, we need you. The ideal candidate has a strong coding background and has worked as part of a Computer Security Incident Response Team (CSIRT). We are looking for those with experience building creative detections and response automations, mapping detections to various security models, and using automation to validate detections are working. You will help build a scalable detection and incident response system to analyze security events and find anomalies across Reddit’s technical ecosystem (endpoints, cloud, and SaaS).
Some of our present and future work include:
What You’ll Do:
Who we want you to be:
Benefits:
Your salary will be commensurate with your experience
Senior Engineer- AI & Threat Detection
Posted today
Job Viewed
Job Description
JOB DESCRIPTION
Calling all originals: At Levi Strauss & Co., you can be yourself — and be part of something bigger. We’re a company of people who like to forge our own path and leave the world better than we found it. Who believe that what makes us different makes us stronger. So add your voice. Make an impact. Find your fit — and your future.
Summary of the role:
The Threat Detection Engineer plays an integral role in the protection of the brand and works directly with the Director of Threat Engineering and the broader Global Information Security (GIS) team. This role focuses on both fraud detection and cloud security detection engineering. The priorities and directives are consistent with the vision of the CISO across Levi Strauss & Company globally.
The Threat Detection Engineer will take a lead role in safeguarding LS&Co.’s information and technology assets, critical suppliers, and consumers against the evolving threat landscape, allowing LS&Co. to make threat informed cybersecurity decisions to strengthen LS&Co.’s cybersecurity posture. This individual will work to detect, monitor, and respond to security incidents in real-time.
This position will support LS&Co’s Threat Detection Engineering environment and is responsible for collaborating with various groups including the Security Operation Center to consume, validate, and create detection content across the enterprise. This role is responsible for developing, testing, and refining detection capabilities to identify fraudulent activity and cloud-based threats across our environment with automation of process and playbooks.
The ideal candidate has a strong software development background. This role will design, develop, and implement detection logic, automation, and tooling to identify and respond to security threats. This role will collaborate closely with security operations, incident response, and cyber threat intelligence teams to improve detection efficacy and reduce risk to the organization.
About the role:
About you:
Benefits
We put a lot of thought into our programs to provide you with a benefits package that matters. Whether it is for medical care, taking time off, improving your health or planning for retirement, we've got you covered.
Here's a small snapshot:
Complimentary preventive health check-up for you & your spouse
OPD coverage
Best in class leave plan including paternity & family care leaves
Counselling sessions to prioritizing mental well-being
Exclusive discount vouchers on Levi’s products
LOCATION
Bengaluru, IndiaFULL TIME/PART TIME
Full timeSenior Security Analyst, Cloud Threat Detection
Posted 9 days ago
Job Viewed
Job Description
+ Bachelor's degree or equivalent practical experience.
+ 5 years of experience with working in security analysis, network security, intrusion detection system, threat intelligence or threat detection.
+ 2 years of experience as a technical security professional, with digital forensics or systems administration.
+ Experience with executive or customer stakeholder management and communication.
+ Experience with a data motivated approach towards solving information security tests.
**Preferred qualifications:**
+ Master's degree in Computer Science or a related field.
+ Knowledge of defensive security concepts such as adversity tactic and technique, MITRE ATT and CK framework, logging etc.
+ Knowledge of networking and internet protocols(e.g., TCP/IP, HTTP, SSL) and analyzing malicious network traffic.
+ Excellent organizational and multitasking skills.
Product Security Engineering (PSE) is the team within the Cloud CISO organization responsible for helping to ensure every product Cloud ships is as secure as it can be and increasing the assurance levels of security in the infrastructure underlying all our products. This team also focus on increasing the capabilities of each product team to develop more secure products by design and by default, from patterns, tools and frameworks to increasing the skill level of embedded security leads.
In this role, you will be part of the team that is responsible for protecting Google and its users from attacks and abuses originating from Google Cloud Platform. You will ensure trust and reputation not only for this product, but also for Google as a brand and company. You will work globally and cross-functionally with several internal stakeholders.
Google Cloud accelerates every organization's ability to digitally transform its business and industry. We deliver enterprise-grade solutions that leverage Google's cutting-edge technology, and tools that help developers build more sustainably. Customers in more than 200 countries and territories turn to Google Cloud as their trusted partner to enable growth and solve their most critical business problems.
**Responsibilities:**
+ Research new detection techniques to prevent/mitigate abusive activities such as outbound security attacks, botnet, DDoS and other malicious behaviors which violate Google Cloud Platform's (GCP) Terms of Service.
+ Develop fidelity detection to identify malicious activity based on raw network and host level telemetry.
+ Analyze logs, packets to increase accuracy of detections.
+ Hunt for threats/abusers and respond.
Google is proud to be an equal opportunity workplace and is an affirmative action employer. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. See also and If you have a need that requires accommodation, please let us know by completing our Accommodations for Applicants form:
Technical Consultant-Threat Detection Content & Administration
Posted 11 days ago
Job Viewed
Job Description
In this role, you'll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers), where we deliver deep technical and industry expertise to a wide range of public and private sector clients around the world. Our delivery centers offer our clients locally based skills and technical expertise to drive innovation and adoption of new technology
**Your role and responsibilities**
* The SIEM Administrator will be responsible for administering the deployed SIEM service. The candidate is also expected to have hands on experience of deploying a SIEM solution from scratch, where the candidate should have the skills and knowledge to gather all the required information to build the SIEM solution.
* In-depth knowledge of technical approaches in security analytics, monitoring and alerting. Maintains technical knowledge within areas of expertise.
* This role is also responsible for identifying, analyzing, developing new or tuning & Refinement of the content or use cases. Strong problem solving and troubleshooting skills including the ability to perform root cause analysis for preventative investigation
**Required technical and professional expertise**
* Should have experience in any of the query language i.e AQL ,KQL, SPL, LEQL etc for writing the complex queries & saved search creation.
* Should have strong knowledge of different cybersecurity frameworks i.e.MITRE, NIST and Cyber kill chain model.
* Should have understanding of regular expression writing and custom parsing
**Preferred technical and professional experience**
* Collaborate with key stakeholders within technology, application and cyber security to develop use cases to address specific business needs.
* Create technical documentation around the content deployed to the SIEM.
* Creates and develops correlation and detection rules with SIEM solution, reports & dashboards to detect emerging threats
IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.
Vulnerability Management process
Posted 7 days ago
Job Viewed
Job Description
We are seeking a skilled and experienced Vulnerability Management process to join our dynamic
team.
Location: Bangalore & Pune (Hybrid Model)
Experience: 5 - 8 Years
NP: Immediate joiners
Requirement:
- Perform Vulnerability assessment & Policy Compliance using leading Vulnerability Scanning solutions like Qualys etc.
- Perform Vulnerability assessments & Policy Compliance on On-prem, Cloud hosted systems, container (like Docker & Kubernetes), databases, web services and other widely deployed infrastructure components.
- Perform false positive validation and ensure delivery of quality reports.
- Act as a technical SME to analyse the vulnerability results & detection logic.
- Provide technical advice and support on remediation to infrastructure / application support teams.
- Perform Vulnerability assessment & Policy Compliance using leading Vulnerability Scanning solutions like Qualys etc.
- Perform Vulnerability assessments & Policy Compliance on On-prem, Cloud hosted systems, container (like Docker & Kubernetes), databases, web services and other widely deployed infrastructure components.
- Perform false positive validation and ensure delivery of quality reports.
- Act as a technical SME to analyse the vulnerability results & detection logic.
- Provide technical advice and support on remediation to infrastructure / application support teams.
- Review findings and identify root causes for common issues and provide recommendations for sustainable improvements.
- Responsible to maintain vulnerability quality assurance by building VM team technical knowledge base.
- Research and report on security vulnerabilities and latest advancements in the vulnerability management lifecycle.
- Understand security policies, procedures and guidelines to all levels of management and staff.
- Communicate effectively orally and in writing and establish cooperative working relationships.
- Provide suggestion to improve vulnerability Management service based on current trends in information technology (Network, system security software and hardware).
- Act as line manager in the absence of team lead.
- People and Talent
- Minimum 5 years of experience in Information security and preferably in Banking and Financial services sector
- In-depth working experience on Cloud technologies, routers, switches, firewalls, load balancers and proxy will be added advantage for the role.
- Bachelor Degree in Engineering, Computer Science/Information Technology or its equivalent.
- Industry certifications will be a plus e.g. CISSP, CCNA Security, CCIE, CCNP Security, CISA, CRISC and CISM.
- Strong knowledge and subject matter expertise in multiple areas within Information Security.
- Hands on skill and expertise in performing risk / threat assessments/risk consulting.
- Excellent written, oral communication and reporting skills.
- Provides technical leadership, expertise and direction working with district and college technical staff for design and implementation of information technology security systems.
- Develops strategy for propagating, maintaining, and measuring compliance against security policies, standards, and guidelines district-wide.
- Time management and organizational skills
- Ability and desire to learn new skills quickly
Vulnerability Management process
Posted today
Job Viewed
Job Description
team.
Location: Bangalore & Pune (Hybrid Model)
Experience: 5 - 8 Years
NP: Immediate joiners
Requirement:
- Perform Vulnerability assessment & Policy Compliance using leading Vulnerability Scanning solutions like Qualys etc.
- Perform Vulnerability assessments & Policy Compliance on On-prem, Cloud hosted systems, container (like Docker & Kubernetes), databases, web services and other widely deployed infrastructure components.
- Perform false positive validation and ensure delivery of quality reports.
- Act as a technical SME to analyse the vulnerability results & detection logic.
- Provide technical advice and support on remediation to infrastructure / application support teams.
- Perform Vulnerability assessment & Policy Compliance using leading Vulnerability Scanning solutions like Qualys etc.
- Perform Vulnerability assessments & Policy Compliance on On-prem, Cloud hosted systems, container (like Docker & Kubernetes), databases, web services and other widely deployed infrastructure components.
- Perform false positive validation and ensure delivery of quality reports.
- Act as a technical SME to analyse the vulnerability results & detection logic.
- Provide technical advice and support on remediation to infrastructure / application support teams.
- Review findings and identify root causes for common issues and provide recommendations for sustainable improvements.
- Responsible to maintain vulnerability quality assurance by building VM team technical knowledge base.
- Research and report on security vulnerabilities and latest advancements in the vulnerability management lifecycle.
- Understand security policies, procedures and guidelines to all levels of management and staff.
- Communicate effectively orally and in writing and establish cooperative working relationships.
- Provide suggestion to improve vulnerability Management service based on current trends in information technology (Network, system security software and hardware).
- Act as line manager in the absence of team lead.
- People and Talent
- Minimum 5 years of experience in Information security and preferably in Banking and Financial services sector
- In-depth working experience on Cloud technologies, routers, switches, firewalls, load balancers and proxy will be added advantage for the role.
- Bachelor Degree in Engineering, Computer Science/Information Technology or its equivalent.
- Industry certifications will be a plus e.g. CISSP, CCNA Security, CCIE, CCNP Security, CISA, CRISC and CISM.
- Strong knowledge and subject matter expertise in multiple areas within Information Security.
- Hands on skill and expertise in performing risk / threat assessments/risk consulting.
- Excellent written, oral communication and reporting skills.
- Provides technical leadership, expertise and direction working with district and college technical staff for design and implementation of information technology security systems.
- Develops strategy for propagating, maintaining, and measuring compliance against security policies, standards, and guidelines district-wide.
- Time management and organizational skills
- Ability and desire to learn new skills quickly
Vulnerability Management process
Posted today
Job Viewed
Job Description
We are seeking a skilled and experienced Vulnerability Management process to join our dynamic
team.
Location: Bangalore & Pune (Hybrid Model)
Experience: 5 - 8 Years
NP: Immediate joiners
Requirement:
- Perform Vulnerability assessment & Policy Compliance using leading Vulnerability Scanning solutions like Qualys etc.
- Perform Vulnerability assessments & Policy Compliance on On-prem, Cloud hosted systems, container (like Docker & Kubernetes), databases, web services and other widely deployed infrastructure components.
- Perform false positive validation and ensure delivery of quality reports.
- Act as a technical SME to analyse the vulnerability results & detection logic.
- Provide technical advice and support on remediation to infrastructure / application support teams.
- Perform Vulnerability assessment & Policy Compliance using leading Vulnerability Scanning solutions like Qualys etc.
- Perform Vulnerability assessments & Policy Compliance on On-prem, Cloud hosted systems, container (like Docker & Kubernetes), databases, web services and other widely deployed infrastructure components.
- Perform false positive validation and ensure delivery of quality reports.
- Act as a technical SME to analyse the vulnerability results & detection logic.
- Provide technical advice and support on remediation to infrastructure / application support teams.
- Review findings and identify root causes for common issues and provide recommendations for sustainable improvements.
- Responsible to maintain vulnerability quality assurance by building VM team technical knowledge base.
- Research and report on security vulnerabilities and latest advancements in the vulnerability management lifecycle.
- Understand security policies, procedures and guidelines to all levels of management and staff.
- Communicate effectively orally and in writing and establish cooperative working relationships.
- Provide suggestion to improve vulnerability Management service based on current trends in information technology (Network, system security software and hardware).
- Act as line manager in the absence of team lead.
- People and Talent
- Minimum 5 years of experience in Information security and preferably in Banking and Financial services sector
- In-depth working experience on Cloud technologies, routers, switches, firewalls, load balancers and proxy will be added advantage for the role.
- Bachelor Degree in Engineering, Computer Science/Information Technology or its equivalent.
- Industry certifications will be a plus e.g. CISSP, CCNA Security, CCIE, CCNP Security, CISA, CRISC and CISM.
- Strong knowledge and subject matter expertise in multiple areas within Information Security.
- Hands on skill and expertise in performing risk / threat assessments/risk consulting.
- Excellent written, oral communication and reporting skills.
- Provides technical leadership, expertise and direction working with district and college technical staff for design and implementation of information technology security systems.
- Develops strategy for propagating, maintaining, and measuring compliance against security policies, standards, and guidelines district-wide.
- Time management and organizational skills
- Ability and desire to learn new skills quickly
Be The First To Know
About the latest Threat detection Jobs in Bengaluru !
Vulnerability Management Engineer
Posted today
Job Viewed
Job Description
About The Role
The Vulnerability Management Engineer plays a critical role in ensuring the security of our systems by managing and mitigating vulnerabilities. Key responsibilities include reviewing vulnerability scanning reports, assessing severity, and triaging vulnerabilities, along with efficiently managing Jira tickets to facilitate timely remediation or mitigation. This role requires utilizing tools such as Vigiles, yocto CVE scanner to conduct vulnerability scanning and analysis, and implementing a risk-based prioritization method for effective management. Leading process optimization efforts by identifying gaps in the vulnerability management workflow and enhancing program efficiency is also essential.
Collaboration with an international security organization as well as engineering teams is necessary to provide guidance on mitigating and remediating vulnerabilities, identify and report automation bugs, and contribute to solutions that reduce manual workload in the vulnerability management lifecycle. The role involves investigating vulnerability alerts, assessing their impact, and calculating severity scores based on attack complexity. Additional duties include maintaining scanning tools, reviewing CVEs for potential risk exceptions, and guiding teams on security best practices and patch management standards. Flexibility to work across different time zones is crucial for effective global collaboration and system security.
Qualifications
- 7+ years in vulnerability management or network security with strong focus on Cisco technologies
- Experiences in Cisco IOS-XE architecture, including kernel components and security mechanisms
- In-depth knowledge of common Security vulnerabilities (OWASP Top 10, CWE Top 25)
- Proficiency with vulnerability scanning tools (Semgrep, blackduck, vigiles, yocto cve scanner) and firmware analysis
- Ability to trace through Linux kernel configuration systems (KCONFIG) and interpret Makefiles
- Strong C programming skills and understanding of conditional code compilation
- Experience with scripting languages (Python, Bash) and network analysis tools (Wireshark)
- Proven ability to collaborate effectively across global teams and multiple time zones
- Consistent track record to ship in a dynamic environment
- Experience using Jira and other Atlassian software
- Strong documentation skills and ability to present complex technical findings clearly
Vulnerability Management Engineer
Posted today
Job Viewed
Job Description
About The Role
The Vulnerability Management Engineer plays a critical role in ensuring the security of our systems by managing and mitigating vulnerabilities. Key responsibilities include reviewing vulnerability scanning reports, assessing severity, and triaging vulnerabilities, along with efficiently managing Jira tickets to facilitate timely remediation or mitigation. This role requires utilizing tools such as Vigiles, yocto CVE scanner to conduct vulnerability scanning and analysis, and implementing a risk-based prioritization method for effective management. Leading process optimization efforts by identifying gaps in the vulnerability management workflow and enhancing program efficiency is also essential.
Collaboration with an international security organization as well as engineering teams is necessary to provide guidance on mitigating and remediating vulnerabilities, identify and report automation bugs, and contribute to solutions that reduce manual workload in the vulnerability management lifecycle. The role involves investigating vulnerability alerts, assessing their impact, and calculating severity scores based on attack complexity. Additional duties include maintaining scanning tools, reviewing CVEs for potential risk exceptions, and guiding teams on security best practices and patch management standards. Flexibility to work across different time zones is crucial for effective global collaboration and system security.
Qualifications
- 7+ years in vulnerability management or network security with strong focus on Cisco technologies
- Experiences in Cisco IOS-XE architecture, including kernel components and security mechanisms
- In-depth knowledge of common Security vulnerabilities (OWASP Top 10, CWE Top 25)
- Proficiency with vulnerability scanning tools (Semgrep, blackduck, vigiles, yocto cve scanner) and firmware analysis
- Ability to trace through Linux kernel configuration systems (KCONFIG) and interpret Makefiles
- Strong C programming skills and understanding of conditional code compilation
- Experience with scripting languages (Python, Bash) and network analysis tools (Wireshark)
- Proven ability to collaborate effectively across global teams and multiple time zones
- Consistent track record to ship in a dynamic environment
- Experience using Jira and other Atlassian software
- Strong documentation skills and ability to present complex technical findings clearly
Qualys Vulnerability Management
Posted today
Job Viewed
Job Description
The Offer
- Attractive salary & benefits
The Job
Job Role: Security Engineer – Vulnerability Management
Job Location: Hyderabad / PAN India
Work Mode: Hybrid Model
Job Summary:
- Deployment of QCS Agents in all serves (On-premise and Cloud -AWS/Azure)
- Exposure to all modules of Qualys Tool CSAM and EASM VMDR PM
- Vulnerability risk analysis and define criticality (1-5) – Eg: Zero-Days
- Establish patching standards, baselines and frequency
- Identifying and enabling patches on 3rd party software thru prioritized products section
- Guide the patch management team on Qualys features, patch deployment strategies, and troubleshooting.
- Act as the technical escalation point for patch failures or complex deployment scenarios
- Train team members on Qualys Patch Management usage and advanced troubleshooting
- Scripting knowledge (PowerShell, Bash) for Automation
- Develop SOPs and knowledge base articles for common operational tasks
The Profile
Primary Skill:
- Complete understanding of Asset Management, Patch Management, Vulnerability Management and Qualys Tool
- Qualys Platform Administration (Asset Tagging, Purge Rules, Job Monitoring, Agent Troubleshoot)
- Strong and Hands on experience in Linux patching and Linux administration
- Knowledge of VMWARE , LINUX , AWS , AZURE
- Integration of Qualys Tool with various platforms (On Premise, Cloud)
Secondary Skill : Linux Admin and understanding of QCS
GOOD KNOWLEDGE AND HANDS ON BELOW
- V Center Administration AWS and Azure Administration
- OS Administration (Windows/Linux)
- LINUX PATCHING EXPERIENCE
The Employer
Founded in 2003 to solve mission-critical development and maintenance problems, Our client has steadily grown into a multi-service, multi-product entity.
Our client is a global solutions-driven technology consulting and development company partnering with clients in their digital transformation journey across North America, Europe, APAC and the Middle East.
Headquartered in the US, our global staff of 1000+ experts leverage their unmatched experience to efficiently deliver innovative projects in core IT solution development, cloud optimization & management, digital transformation, business application development, collaborative enterprise solutions and IT infrastructure management.