3,379 Threat Detection jobs in India

• Monitor security alerts and events from SIEM, IDS/IPS, EDR, and other security tools.
• Investigate security incidents, determine scope and impact, and develop containment strategies.
• Perform threat hunting to proactively identify advanced persistent threats (APTs) and malicious activities.
• Analyze malware and phishing attempts to understand attack methodologies.
• Develop and tune detection rules and signatures to improve security posture.
• Contribute to the development and improvement of incident response playbooks.
• Stay current with the latest cybersecurity threats, vulnerabilities, and mitigation techniques.
• Generate reports on security incidents and trends for management.
• Collaborate with IT teams to implement security best practices and remediation actions.

• Bachelor's degree in Computer Science, Cybersecurity, or a related field, or equivalent practical experience.
• 2-4 years of experience in cybersecurity operations, incident response, or threat analysis.
• Strong understanding of networking protocols (TCP/IP, HTTP/S), operating systems (Windows, Linux), and security concepts.
• Experience with SIEM platforms (e.g., Splunk, QRadar), IDS/IPS, and EDR solutions.
• Familiarity with scripting languages (Python, PowerShell) for automation and analysis.
• Knowledge of common attack vectors, malware types, and threat actor tactics, techniques, and procedures (TTPs).
• Excellent analytical and problem-solving skills.
• Strong communication and documentation abilities.
• Relevant certifications such as CompTIA Security+, CEH, or GIAC are a plus.

• Monitor and analyze security alerts from various security tools (SIEM, IDS/IPS, etc.).
• Investigate security incidents and breaches, identify root causes, and recommend remediation steps.
• Perform vulnerability assessments and penetration testing.
• Develop and maintain security policies, procedures, and guidelines.
• Respond to security incidents in a timely and effective manner.
• Assist in the development and implementation of security awareness training programs.
• Stay up-to-date with the latest cybersecurity threats, trends, and technologies.
• Collaborate with IT teams to implement security solutions and controls.
• Conduct regular security audits and reviews.
• Contribute to the continuous improvement of the organization's security posture.

• Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field.
• Minimum of 3 years of experience in cybersecurity analysis or a similar role.
• Proficiency with SIEM, IDS/IPS, firewalls, and endpoint security solutions.
• Strong understanding of network protocols and security principles.
• Experience with vulnerability assessment tools and methodologies.
• Excellent analytical and problem-solving skills.
• Ability to communicate technical information clearly to both technical and non-technical audiences.
• Relevant certifications such as CompTIA Security+, CEH, or CISSP are a plus.
• Experience with scripting languages (e.g., Python, PowerShell) is advantageous.

Job Title: Senior Threat Detection Engineer

Experience: 6–9 Years

Location: Hyderabad

Shift: General Shift (Cab facility available)

Notice Period: Immediate Joiners Only

Role Overview

We are seeking a Senior Threat Detection Engineer to design, develop, and fine-tune advanced threat detection mechanisms across a wide range of platforms, including on-premises, cloud (AWS, Azure, GCP), and SaaS environments. This role is ideal for cybersecurity professionals with strong SIEM expertise and a passion for staying ahead of evolving threats.

Key Responsibilities

• Design & Develop detection rules and security policies to identify threats across multiple platforms and technologies.
  
• Lead the creation and deployment of high-fidelity threat detection mechanisms for on-prem, cloud, and SaaS ecosystems.
  
• Collaborate with security analysts, threat hunters, and intelligence teams to track emerging threats and design countermeasures.
  
• Validate, tune, and optimize detection content to reduce false positives while maintaining high accuracy.
  
• Onboard client environments to our detection platform, integrating diverse data sources and guiding them through implementation.
  
• Stay updated on cybersecurity trends, tools, and threat actor TTPs (MITRE ATT&CK, Cyber Kill Chain).
  
• Document detection workflows, generate security metrics reports , and present findings to stakeholders.
  
• Work with the Security Operations team to automate alert responses and develop playbooks.
  
• Maintain a strong working knowledge of network infrastructure and security tools, including Firewalls, EDR, Email Security, Proxy, DLP, IDS/IPS.
  

Required Qualifications

• Bachelor’s degree in computer science, Information Security , or related field.
  
• 5+ years in cybersecurity with expertise in threat detection, analysis, and incident response .
  
• Strong experience with SIEM platforms (Splunk, ELK/Security Onion, IBM QRadar, Securonix, Wazuh, Azure Sentinel) — ability to create queries, dashboards, and integrate new data sources.
  
• Familiarity with cloud security and detection strategies in AWS, Azure, and GCP.
  
• Knowledge of security frameworks, including MITRE ATT&CK and Cyber Kill Chain .
  
• Proficiency with security tools: SIEM, CSPM, EDR/XDR, SOAR, WAF, IDS/IPS .
  
• Excellent communication and client interaction skills .
  

Job Title: Senior Threat Detection Engineer

Experience: 6–9 Years

Location: Hyderabad

Shift: General Shift (Cab facility available)

Notice Period: Immediate Joiners Only

Role Overview

We are seeking a Senior Threat Detection Engineer to design, develop, and fine-tune advanced threat detection mechanisms across a wide range of platforms, including on-premises, cloud (AWS, Azure, GCP), and SaaS environments. This role is ideal for cybersecurity professionals with strong SIEM expertise and a passion for staying ahead of evolving threats.

Key Responsibilities

• Design & Develop detection rules and security policies to identify threats across multiple platforms and technologies.
  
• Lead the creation and deployment of high-fidelity threat detection mechanisms for on-prem, cloud, and SaaS ecosystems.
  
• Collaborate with security analysts, threat hunters, and intelligence teams to track emerging threats and design countermeasures.
  
• Validate, tune, and optimize detection content to reduce false positives while maintaining high accuracy.
  
• Onboard client environments to our detection platform, integrating diverse data sources and guiding them through implementation.
  
• Stay updated on cybersecurity trends, tools, and threat actor TTPs (MITRE ATT&CK, Cyber Kill Chain).
  
• Document detection workflows, generate security metrics reports , and present findings to stakeholders.
  
• Work with the Security Operations team to automate alert responses and develop playbooks.
  
• Maintain a strong working knowledge of network infrastructure and security tools, including Firewalls, EDR, Email Security, Proxy, DLP, IDS/IPS.
  

Required Qualifications

• Bachelor’s degree in computer science, Information Security , or related field.
  
• 5+ years in cybersecurity with expertise in threat detection, analysis, and incident response .
  
• Strong experience with SIEM platforms (Splunk, ELK/Security Onion, IBM QRadar, Securonix, Wazuh, Azure Sentinel) — ability to create queries, dashboards, and integrate new data sources.
  
• Familiarity with cloud security and detection strategies in AWS, Azure, and GCP.
  
• Knowledge of security frameworks, including MITRE ATT&CK and Cyber Kill Chain .
  
• Proficiency with security tools: SIEM, CSPM, EDR/XDR, SOAR, WAF, IDS/IPS .
  
• Excellent communication and client interaction skills .
  

Job Title: Cybersecurity Threat Detection Engineer

Experience: 6 + Years

Location: Hyderabad,

Notice Period: Immediate Joiner

Cab Facility: Available

Job Summary:

We are seeking a skilled Cybersecurity Threat Detection Engineer with 6+years of experience in cybersecurity, specializing in threat detection and incident response. This is a contract-to-hire opportunity for a candidate with strong expertise in SIEM platforms, detection content development, and cloud security. The role involves working closely with clients and internal teams to enhance detection capabilities across on-premises, cloud, and SaaS environments.

Key Responsibilities:

• Design and develop detection rules, policies, and alerting mechanisms to identify cybersecurity threats across varied technology stacks.
  
• Lead the creation and deployment of high-fidelity detection content across on-prem , cloud (AWS, Azure, GCP), and SaaS platforms.
  
• Collaborate with threat hunters, security analysts, and intelligence teams to incorporate emerging threats into detection strategies.
  
• Fine-tune detection mechanisms to reduce false positives and increase accuracy.
  
• Stay current with the latest cybersecurity trends, tools, and attack techniques.
  
• Assist clients in boarding the security platform and integrating diverse data sources.
  
• Document detection uses cases, processes, and generate security metrics reports.
  
• Provide technical guidance and collaborate with Security Operations on alert response automation and playbook development.
  
• Understand and work with network security tools and infrastructure such as firewalls, EDR, DLP, proxies, IDS/IPS , and email security solutions.
  

Required Qualifications:

• Bachelor’s degree in computer science, Information Security , or related discipline.
  
• 5+ years of hands-on experience in cybersecurity , with emphasis on threat detection , incident response , and SIEM tools.
  
• Expertise in log analysis , SIEM tuning , and detection rule creation.
  
• Strong familiarity with MITRE ATT&CK , Cyber Kill Chain , and adversary TTPs.
  
• Knowledge of cloud-based threat detection techniques and strategies.
  
• Excellent written and verbal communication skills with the ability to collaborate effectively with clients and cross-functional teams.
  

Technical Skills & Tools:

• Hands-on experience with SIEM platforms : Splunk, Elastic Stack (ELK/Security Onion), IBM QRadar, Securonix, Wazuh, Azure Sentinel.
  
• Ability to create and manage SIEM queries, alerts, dashboards, and integrate new log sources.
  
• Familiarity with CSPM, SOAR, EDR/XDR, WAF , and other security toolsets.
  
• Scripting and automation knowledge for alert responses and playbooks.
  

Preferred Certifications:

• OSCP , CISSP , or GIAC certifications such as GCIH, GCIA , or similar.
  

Reddit is a community of communities. It’s built on shared interests, passion, and trust and is home to the most open and authentic conversations on the internet. Every day, Reddit users submit, vote, and comment on the topics they care most about. With ,+ active communities and approximately M+ daily active unique visitors, Reddit is one of the internet’s largest sources of information. For more information, visit redditinc.com.

Location: Bangalore, India 

Reddit is continuing to grow our teams with the best talent. This role islocated in Bangalore, India. If you happen to live close to one of our physical office locations, our doors are open for you to come into the office as often as you'd like. 

Team Description

The SPACE (Security, Privacy, And Compliance Engineering) team defends Reddit’s employees and compute assets to make Reddit the most trustworthy place for online human interaction. We look for humble experts with a relentlessly resourceful and entrepreneurial “can do” perspective. If you work tirelessly to break into computer networks and just as tirelessly to ensure others cannot, we need you.

Role Description

This is a Threat Detections role within the SPACE Security Intelligence Center. We are incident commanders with product administration experience who analyze security threats, build detections, and respond to security events. We value builders and software engineers with broad and deep technical knowledge, specifically in the fields of insider threat, data analytics, system forensics, malware analysis, threat hunting, threat intelligence, and application, endpoint, & cloud/infrastructure security. Security is tough, diversity is key, so unique experience is highly valued!

If you are passionate about data, security, threat models, and building creative mitigations, we need you. The ideal candidate has a strong coding background and has worked as part of a Computer Security Incident Response Team (CSIRT). We are looking for those with experience building creative detections and response automations, mapping detections to various security models, and using automation to validate detections are working. You will help build a scalable detection and incident response system to analyze security events and find anomalies across Reddit’s technical ecosystem (endpoints, cloud, and SaaS).

Some of our present and future work include:

What You’ll Do:

Who we want you to be:

Benefits:

Your salary will be commensurate with your experience

Job Title: Cybersecurity Threat Detection Engineer

Experience: 6 + Years

Location: Hyderabad,

Notice Period: Immediate Joiner

Cab Facility: Available

Job Summary:

We are seeking a skilled Cybersecurity Threat Detection Engineer with 6+years of experience in cybersecurity, specializing in threat detection and incident response. This is a contract-to-hire opportunity for a candidate with strong expertise in SIEM platforms, detection content development, and cloud security. The role involves working closely with clients and internal teams to enhance detection capabilities across on-premises, cloud, and SaaS environments.

Key Responsibilities:

• Design and develop detection rules, policies, and alerting mechanisms to identify cybersecurity threats across varied technology stacks.
  
• Lead the creation and deployment of high-fidelity detection content across on-prem , cloud (AWS, Azure, GCP), and SaaS platforms.
  
• Collaborate with threat hunters, security analysts, and intelligence teams to incorporate emerging threats into detection strategies.
  
• Fine-tune detection mechanisms to reduce false positives and increase accuracy.
  
• Stay current with the latest cybersecurity trends, tools, and attack techniques.
  
• Assist clients in boarding the security platform and integrating diverse data sources.
  
• Document detection uses cases, processes, and generate security metrics reports.
  
• Provide technical guidance and collaborate with Security Operations on alert response automation and playbook development.
  
• Understand and work with network security tools and infrastructure such as firewalls, EDR, DLP, proxies, IDS/IPS , and email security solutions.
  

Required Qualifications:

• Bachelor’s degree in computer science, Information Security , or related discipline.
  
• 5+ years of hands-on experience in cybersecurity , with emphasis on threat detection , incident response , and SIEM tools.
  
• Expertise in log analysis , SIEM tuning , and detection rule creation.
  
• Strong familiarity with MITRE ATT&CK , Cyber Kill Chain , and adversary TTPs.
  
• Knowledge of cloud-based threat detection techniques and strategies.
  
• Excellent written and verbal communication skills with the ability to collaborate effectively with clients and cross-functional teams.
  

Technical Skills & Tools:

• Hands-on experience with SIEM platforms : Splunk, Elastic Stack (ELK/Security Onion), IBM QRadar, Securonix, Wazuh, Azure Sentinel.
  
• Ability to create and manage SIEM queries, alerts, dashboards, and integrate new log sources.
  
• Familiarity with CSPM, SOAR, EDR/XDR, WAF , and other security toolsets.
  
• Scripting and automation knowledge for alert responses and playbooks.
  

Preferred Certifications:

• OSCP , CISSP , or GIAC certifications such as GCIH, GCIA , or similar.