Incident Jobs in Bengaluru

Security Operations Engineer FalconX Location: Bangalore Experience: 3+ Years Education: Bachelor s degree in Cybersecurity, Computer Science, Information Technology, or related field About FalconX FalconX is a pioneering team of operators, investors, and builders transforming institutional access to the crypto markets. Operating at the intersection of traditional finance and cutting-edge technology, FalconX simplifies the complex and fragmented digital asset ecosystem. Our platform empowers clients to navigate the crypto landscape seamlessly, providing access, liquidity, and tools to execute institutional strategies from start to scale. Role Overview We are looking for a Security Operations Engineer to strengthen our cybersecurity posture and protect our systems, data, and clients. In this role, you will monitor, detect, and respond to threats across on-premise and cloud environments, conduct investigations, perform threat hunting, and automate security operations. Key Responsibilities Monitor, detect, and respond to security incidents across cloud and on-premise environments. Analyze security alerts from various tools to identify potential threats and anomalies. Conduct forensic investigations and deep-dive analysis to identify trends and attack techniques. Perform proactive threat hunting across endpoints, networks, and cloud environments. Analyze security logs and behavioral patterns to detect Indicators of Compromise (IOCs). Investigate security incidents and provide actionable mitigation and remediation recommendations. Develop and refine threat hunting methodologies using frameworks like MITRE ATT&CK. Automate threat detection and response processes using scripting languages such as Python, PowerShell, or Bash. Continuously monitor emerging threats, vulnerabilities, and attack trends to improve strategies. Required Qualifications Bachelor s degree in Cybersecurity, Computer Science, Information Technology, or related field. 3+ years of experience in Security Operations, Threat Hunting, or a similar cybersecurity role. Hands-on experience working with log data for detection and response (Cloud, EDR, Network, etc.). Experience developing and deploying detection rules (Yara, Sigma, SQL-based rules, etc.). Strong understanding of network security monitoring, packet analysis, and log correlation. Deep knowledge of advanced threat detection methodologies and threat intelligence. Proficiency in analyzing attacker TTPs using frameworks like MITRE ATT&CK. Skilled in scripting and automation for security operations (Python, PowerShell, Bash). Familiarity with endpoint security, identity management, cloud security, and incident response. Protect critical systems, data, and client assets from emerging cyber threats. Play a key role in detecting, investigating, and responding to security incidents. Collaborate with cross-functional teams to strengthen security posture and operational resilience. Drive proactive threat hunting and automation to improve efficiency and effectiveness. Qualification : Bachelors degree in Cybersecurity, Computer Science, Information Technology, or related field

Senior Manager, Security Operations Center (SOC) Location: Bangalore Type: Full-Time Experience Required: 8+ Years (3+ in Leadership) Role Overview: Strategic Cyber Defense We are seeking a Senior Manager to lead and modernize our SOC operations across enterprise and product environments. You will oversee a high-performance team dedicated to threat detection, advanced detection engineering, and incident response. This role is a strategic blend of technical mastery leveraging AI and SOAR and people leadership, focused on building a resilient, automation-first security culture. Core SOC Service Offerings & Expertise Advanced Defense & Detection: Detection Engineering: Implement Detection-as-Code practices and prioritize backlogs based on the evolving threat landscape. Threat Intelligence & Hunting: Deliver actionable intel and execute structured threat hunting hypotheses to proactively identify stealthy adversaries. Deception & Validation: Manage deception strategies (honeypots/tokens) and use attack emulation tools to validate detection logic effectiveness. Forensics: Lead digital forensic investigations, evidence acquisition, and post-incident analysis. Automation & Technology Stack: Azure Ecosystem: Advanced proficiency with Microsoft Sentinel, Defender XDR, and Defender for Cloud using KQL. Cloud Operations: Strong knowledge of security operations across Azure, AWS, and preferably GCP. SOAR & AI: Champion the integration of Security Orchestration, Automation, and Response (SOAR) and AI to drive SOC efficiency. Key Responsibilities Leadership & Strategy: Team Development: Coach and mentor the SOC team, conducting regular 1-on-1s and fostering a growth-oriented culture to prevent burnout. Roadmap Execution: Help define a comprehensive SOC strategy and maturity framework aligned with organizational risk management. Stakeholder Liaison: Act as a trusted advisor to Product, IT, and Development leaders to integrate security into cross-functional workflows. Metrics & Operational Excellence: Data-Driven Reporting: Develop dashboards (e.g., Power BI) to track KPIs, KRIs, and detection coverage. Incident Lifecycle: Lead the lifecycle of escalated incidents, conduct root cause analysis, and execute tabletop exercises. 24/7 MDR Strategy: Define operational procedures for Managed Detection and Response (MDR) and sustainable on-call rotations. Qualifications for Success Proven Leadership: 8+ years in InfoSec with specific experience leading SOC or MDR functions. Azure Mastery: Deep technical expertise in the Microsoft security stack. Framework Knowledge: Familiarity with MITRE ATT&CK, Purple Teaming, and cloud-native detection. Soft Skills: Exceptional ability to simplify complex technical content for executive-level communication.

Gen AI Support Engineer-2 Location: Bengaluru Experience: 4 7+ years Employment Type: Full-time About Us Exotel is the leading full-stack customer engagement platform and virtual telecom operator for emerging markets. Since its inception in 2011, Exotel has been powering 50 million daily engagements across voice, video, and messaging channels. We provide our unified customer engagement solutions to over 6000 companies globally, including industry leaders like Ola, Swiggy, Flipkart, GoJek, Byjus, Urban Company, HDFC Bank, Zomato, and Oyo. With $100 million in Series D funding and an ARR of $60 million, Exotel is a growth-stage company poised for massive impact. Overview We're seeking a Gen AI Support Engineer-2 to join our team. As an L2 Support Engineer, you will be the highest level of technical escalation within the support organization. Your role will encompass system reliability, platform integrity, troubleshooting mission-critical production issues, and collaborating with engineering teams for architecture feedback. Additionally, you'll help mentor junior engineers and improve operational processes and tools for large-scale environments. If you're passionate about writing clean code with Python and Django and want to contribute to a fast-paced, mission-driven company, this role is for you! Responsibilities Mission-Critical Issue Resolution: Own the resolution of high-priority, time-sensitive production issues. Root Cause Analysis (RCA): Lead RCA reviews and push for systemic improvements in system architecture and processes. Performance Optimization: Identify bottlenecks and propose architectural changes to improve system performance and scalability. Patch Management: Assist in configuring, deploying, and testing patches, releases, and application updates to production environments. SME for Production Systems: Serve as the Subject Matter Expert (SME) for Exotel's production systems and integrations. Cross-Team Collaboration: Work with Delivery, Product, and Engineering teams to influence system design, rollout strategies, and improvement plans. Mentorship: Lead and mentor L1/L2 engineers on troubleshooting best practices and continuous learning. Code Writing & Automation: Write clean, maintainable code for internal tools, scripts, and automation using Python and Django. Support Tooling: Automate recovery workflows and design support tools for proactive monitoring. Operational Excellence: Establish and improve SLAs, monitoring dashboards, alerting systems, and operational runbooks to ensure system reliability. Must Have Skills Backend Development Support: 3+ years of experience in backend development support, production support, or DevOps/SRE roles. Core Technologies: Proficiency in Python, Django, SQL, and troubleshooting in Linux. Web Technologies: Strong understanding of HTML, CSS, JavaScript, and other web technologies. Distributed Systems & Cloud: Experience working with distributed systems, cloud architecture (AWS), Docker, and Kubernetes. Automation: Strong scripting skills with Bash/Python for automation and operational support. CI/CD & Observability: Good understanding of CI/CD, observability tools, and release management workflows. Communication Skills: Excellent communication, leadership, and incident command skills for managing production issues and cross-functional collaboration. Nice to Have Experience with AI-powered systems and machine learning technologies. Familiarity with monitoring systems like Prometheus, Grafana, or Elasticsearch. Knowledge of microservices architectures and scaling distributed systems. Innovative Work: Be at the forefront of cloud-based communications technology and AI-driven customer engagement platforms. Impact: Play a key role in maintaining and optimizing systems that power millions of customer interactions daily. Growth Opportunities: Be part of a fast-growing company with ample learning opportunities and career development. Collaborative Environment: Work in a supportive, inclusive environment where your input and ideas matter. Competitive Benefits: Comprehensive benefits package including health insurance, mental wellness support, and more.

Security Operations Engineer Location: Bangalore About Us FalconX is a pioneering team of operators, investors, and builders committed to transforming institutional access to the digital asset markets. By bridging traditional finance with cutting-edge technology, we address the industry's most complex challenges. We offer a comprehensive solution for all digital asset strategies from startup to scale enabling our clients to navigate the ever-evolving cryptocurrency landscape with confidence. We are seeking an experienced Security Operations Engineer to help secure FalconX s infrastructure and protect our clients digital assets. As a part of our security team, you will monitor, detect, and respond to cyber threats across both on-premise and cloud environments, ensuring the integrity and safety of our systems and data. Key Responsibilities Security Monitoring & Incident Response: Monitor and respond to security incidents across both on-premise and cloud environments, ensuring timely detection and remediation of potential threats. Threat Detection & Analysis: Analyze security alerts from various security tools to identify, investigate, and mitigate security risks. Conduct in-depth forensic investigations to identify trends, attack techniques, and vulnerabilities. Proactive Threat Hunting: Conduct proactive threat hunting across endpoints, networks, and cloud environments, looking for sophisticated and emerging threats that may not yet be detected by traditional security measures. Forensics & Incident Investigation: Investigate and analyze security incidents to identify the root cause. Provide actionable recommendations for improving security posture and preventing future incidents. Detection Engineering: Develop and refine threat detection methodologies and rules (e.g., Yara, Sigma, SQL-based rules, network protocols) to enhance security monitoring capabilities. Utilize frameworks like MITRE ATT&CK and the Cyber Kill Chain to guide threat hunting and analysis. Automation & Scripting: Leverage scripting languages (Python, PowerShell, or Bash) to automate threat detection, analysis, and response processes, improving overall efficiency and effectiveness. Threat Intelligence & Trend Analysis: Stay informed about emerging threats, vulnerabilities, and attack trends to continuously improve detection strategies and enhance the response to new security challenges. Qualifications Education & Experience Education: Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field (or equivalent experience). Experience: Minimum of 3 years in a security operations, threat hunting, or similar cybersecurity role. Security Expertise Strong experience working with security tools and log data (Cloud, EDR, Network, etc.) for detection and response. Deep understanding of network security, packet analysis, and log correlation. Proficiency in advanced threat detection methodologies and threat intelligence, with a strong grasp of attacker tactics, techniques, and procedures (TTPs), especially using frameworks like MITRE ATT&CK. Technical Skills Proficiency in scripting and automation (Python, PowerShell, Bash). Experience with detection engineering and developing custom detection rules (e.g., Yara, Sigma, SQL-based, Network). Familiarity with endpoint security, identity management, vulnerability management, cloud security, and incident response. Soft Skills Excellent analytical and problem-solving skills with a keen attention to detail. Strong communication skills, with the ability to work effectively in a collaborative, fast-paced environment. Be part of a rapidly growing company at the cutting edge of finance and technology. A dynamic, fast-paced work environment where your expertise will directly impact business success. Competitive salary and benefits package. Opportunities for professional growth in a highly innovative industry. Qualification : Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field (or equivalent experience)

Manager, Go-To-Market Technology Support Operations Location: Bengaluru Department: Business Technology Experience: 7+ Years (3+ Years in Team Management) Employment Type: Full-Time About Okta Okta is The World s Identity Company. We empower everyone to securely use any technology, on any device, from anywhere. Our Okta and Auth0 platforms offer secure access, authentication, and automation placing identity at the center of digital transformation and enterprise growth. At Okta, we celebrate diverse backgrounds and experiences. We aren t looking for a perfect fit we re looking for lifelong learners and collaborative builders who bring unique value to our mission. The Team You ll join the Go-To-Market Technology (GTM) group, a core part of Okta s Technology, Data & Intelligence (TDI) organization. Our vision: drive clarity, collaboration, and accountability across the business while enabling Okta s scale and growth. The Opportunity We re seeking a Manager to lead the Support Operations team within GTM Technology. This role is responsible for managing a team of Business Application Administrators who oversee and support Okta s GTM systems primarily Salesforce and integrated applications such as ServiceNow. You ll drive operational excellence, oversee capacity and team development, collaborate cross-functionally, and shape how we support and optimize business applications across global teams. This role requires strong technical know-how of the Salesforce ecosystem, a mindset for process improvement, and a passion for team leadership. Key Responsibilities Leadership & Talent Development Build, motivate, and lead a high-performing team of application administrators. Hire, mentor, and retain top talent through coaching and career planning. Provide direction and remove roadblocks to help your team succeed. Foster a culture of learning, ownership, and continuous improvement. Performance Management Define and track KPIs and team SLAs with a data-driven approach. Manage team resource allocation and adjust capacity as business needs shift. Identify skill gaps and build plans to address them through training and hiring. Cross-Functional Collaboration Partner with Technology, Data & Intelligence, Security, and Compliance teams to align on goals and incident handling. Refine escalation processes for a smooth support experience across teams. Enable seamless knowledge transfer and system supportability. Documentation & Automation Lead the Knowledge Centered Service (KCS) program to scale AI-driven incident resolution. Standardize and document team operational processes to ensure consistency. Security & Compliance Ensure all Salesforce and GTM-related systems adhere to compliance standards such as SOX. Collaborate with security teams on audits and mitigation of any vulnerabilities. Innovation Culture Encourage your team to explore new Salesforce, AI, and automation features. Promote participation in hackathons, Fix-It Days, and other internal innovation initiatives. Required Skills & Experience 7+ years of experience in IT or Business Systems, with 3+ years in people management. Strong expertise in the Salesforce ecosystem and enterprise SaaS tools like ServiceNow, Jira, Confluence, GitHub, etc. Experience in a global or multi-location work environment. Deep understanding of compliance (e.g., SOX) and security standards for enterprise applications. Proven track record of driving team innovation and embedding modern tools or practices. Excellent interpersonal and executive-level communication skills. Strong organizational, time management, and stakeholder alignment capabilities. Ability to remain resilient under pressure and maintain focus on team and business outcomes. High Impact: Drive global support operations for a critical business tech stack. Empowered Leadership: Build and lead a team in a dynamic, growing organization. Growth & Learning: Opportunities for continuous development in technology, leadership, and innovation. Collaborative Culture: Join a purpose-driven company with a human-centered, inclusive team culture. Join Us Become a part of a company that s transforming how identity is secured and scaled in the modern world. At Okta, you belong.

Lead Platform Engineer Observability Solutions Location: Bengaluru Experience: 6 10 Years Function: Observability Engineering | Platform Architecture | SRE Enablement Join VuNet Redefining Digital Observability at Scale VuNet is transforming the future of digital experiences through Business Journey Observability, combining Big Data and AI/ML to empower real-time visibility across payments, banking, and financial services. Monitoring 28+ billion transactions/month, our platform is trusted by top financial institutions and powers over 300 million users. Backed by Series B funding and recognized by Gartner, NASSCOM, and Forbes, we are leading the charge in building a new category of observability, proudly Made in India for global impact. Your Role: Lead Platform Engineer As the Lead Platform Engineer, you will architect and drive the development of packaged observability solutions across 100+ infrastructure and application technologies. You will define **golden signals**, build **data collection strategies**, and lead the standardization of alerts, dashboards, and RCA workflows for platforms like **Kubernetes, Oracle DB, and Tomcat**. This is a cross-functional leadership role that sits at the intersection of product, platform, DevOps, and SRE. You will **lead a team** and influence how observability is delivered, scaled, and adopted across complex environments. Key Responsibilities Observability Solution Development Design and lead the delivery of observability packages for databases, middleware, cloud-native, and legacy platforms. Define and implement data collection pipelines, including agents, APIs, logs, metrics, traces, and service discovery. Establish **golden signals, SLIs/SLOs**, and health KPIs for performance, availability, and anomaly detection. Dashboards, Alerts & RCA Develop standardized, reusable dashboards, alerts, reports, and troubleshooting playbooks. Automate **RCA workflows** to improve MTTR and reduce alert fatigue. Platform Enablement & Integration Work with engineering to enhance agent capabilities and support new data sources/formats. Guide implementation of platform features for better observability at scale. Team Leadership & Governance Lead and mentor a team of observability engineers and specialists. Define design patterns, reusable modules, and version-controlled libraries. Stakeholder Collaboration Partner with product managers, DevOps, SREs, and customer teams to gather requirements, align priorities, and validate use cases. Ensure deliverables are scalable, well-documented, and production-ready. What You Bring Must-Have Skills 6 10 years of experience in observability, platform engineering, or SRE roles. Hands-on with tools like Prometheus, Grafana, OpenTelemetry, ELK/EFK, Datadog, Splunk. Strong understanding of logs, metrics, traces, profiling, and collection strategies. Experience developing solutions for platforms like Kubernetes, Oracle, PostgreSQL, Tomcat, etc. Proficient in Python, Shell scripting, APIs, and automation tools (**Terraform**, etc.). Familiar with alert fatigue mitigation, anomaly detection, and RCA frameworks. Excellent communication, technical leadership, and documentation skills. Nice to Have Experience managing an observability marketplace or solution catalog. Contributions to open-source observability projects. Certifications in Kubernetes, Observability platforms, or cloud providers (AWS/GCP/Azure). Background in ITSM tools, CMDBs, or incident workflow automation. At VuNet, you ll help build a category-defining observability platform that s already transforming critical infrastructure for leading financial institutions. You ll work with passionate engineers, push technical boundaries, and grow in a high-trust, high-impact environment. What You ll Experience: Ownership of key observability initiatives impacting 300M+ users. Collaboration with SRE, DevOps, and product teams across real-time financial systems. Opportunity to experiment with and shape Gen AI, ML, and emerging telemetry trends. Perks & Benefits Health insurance for you, your parents, and dependents. 1:1 mental wellness support. Training programs, certifications, and career growth opportunities. Transparent, inclusive, and high-trust work culture. Access to cutting-edge technology and Gen AI-powered workspaces.

Job Title: General Manager Network Infrastructure & Security Location: Bangalore Department: IT and Systems Employee Type: Permanent Experience Required: 10 20 years Job Summary We are seeking a seasoned and strategic IT Infrastructure and Cybersecurity Leader to oversee and drive the company s enterprise-wide infrastructure and security initiatives. This role is responsible for developing and executing the vision, strategy, and programs to ensure the availability, performance, and security of our IT systems and data. The ideal candidate will work closely with executive leadership to align technology and security efforts with organizational objectives and risk tolerance. Key Responsibilities IT Infrastructure Management Lead the planning, implementation, and management of core IT infrastructure including networks, servers, cloud platforms, storage, and enterprise systems. Ensure high availability, performance, and scalability of IT infrastructure to support business operations. Oversee disaster recovery and business continuity strategies to mitigate operational risk. Manage vendor relationships, contracts, and Service Level Agreements (SLAs). Monitor system performance and continuously implement efficiency improvements and optimizations. Cybersecurity Leadership Establish, implement, and maintain cybersecurity policies, procedures, and standards across the organization. Conduct regular risk assessments, vulnerability scans, and implement corrective actions. Oversee security tools and solutions, including firewalls, antivirus, endpoint protection, SIEM, and intrusion detection systems. Lead incident response efforts, forensic investigations, and post-event reviews. Ensure compliance with relevant cybersecurity and data privacy regulations (e.g., ISO 27001, GDPR). Leadership & Cross-functional Collaboration Lead, mentor, and manage a team of IT infrastructure and security professionals. Collaborate with stakeholders across departments to align IT and cybersecurity strategies with business goals. Provide executive-level reporting on infrastructure performance, risk posture, incident management, and compliance metrics. Drive a culture of cybersecurity awareness and operational excellence throughout the organization. Qualifications & Experience Education: Bachelor s degree in Computer Science, Information Technology, or a related field. Master s degree preferred. Certifications (Preferred): CISSP, CISM, CISA, or equivalent professional certifications. Experience: 18+ years of progressive experience in IT infrastructure, cybersecurity, and risk management. Deep knowledge of security frameworks such as ISO/IEC 27001 and regulatory standards like GDPR. Proven experience in formulating and implementing enterprise-wide security policies and managing dynamic IT environments. Key Skills: Strategic planning & execution Project & vendor management Security architecture and governance Cross-functional collaboration & stakeholder communication Managing Security Operations Centers (SOC) Preferred Skills & Competencies Strong analytical and problem-solving skills to align business needs with technology solutions. Experience in documenting and executing security architecture and strategic plans. In-depth knowledge of IT networks, infrastructure systems, and cloud environments. Ability to communicate technical concepts to both technical and non-technical audiences, including C-level stakeholders. Qualification : Bachelors degree in Computer Science, Information Technology, or a related field

Position: Assistant Manager - Risk Location: Bengaluru About Groww At Groww, we are a passionate team dedicated to making financial services accessible to every Indian. Through our multi-product platform, we help millions of customers take control of their financial journeys. Customer obsession is at the heart of everything we do. From every product design to each algorithm, we focus on delivering the best experience, making financial services simple, transparent, and convenient. Our values include ownership, customer-centricity, and integrity. We believe in constantly challenging the status quo to drive meaningful change. Our Vision We aim to empower every individual with the knowledge, tools, and confidence to make informed financial decisions. Groww s long-term vision is to be India s most trusted financial partner, offering innovative financial solutions across various services. Our Core Values Radical Customer Centricity Ownership-Driven Culture Simplicity Long-Term Thinking Complete Transparency About the Role We re looking for a highly motivated Risk Manager to join our team and play a crucial role in overseeing the development and implementation of the operational risk management framework across the organization. In this role, you will collaborate with cross-functional teams, senior leadership, and external stakeholders to identify, assess, and mitigate risks effectively. The ideal candidate will have a strong problem-solving mindset, excellent analytical skills, and a proven track record of managing risk in a result-oriented environment. As a Risk Manager, you will contribute to shaping a robust risk culture and ensuring smooth operations within the organization. Key Responsibilities: Risk Identification & Assessment: Perform risk identification and assessments across various functions, and recommend process changes to mitigate operational risks. Cross-Functional Collaboration: Work closely with teams like Credit, Risk, Compliance, and Technology to implement effective risk mitigation strategies. Monitoring & Reporting: Track and analyze key risk indicators, and provide regular updates to management and stakeholders. Risk Committee Coordination: Lead and orchestrate Monthly Risk Committee meetings, providing insightful reports to senior leadership and key stakeholders. Incident Management: Examine reported incidents and validate the implementation of corrective and preventive actions. Audit Coordination: Collaborate with internal audit teams to align risk management efforts with audit activities. Root Cause Analysis: Conduct root cause analysis (using methods like 5 Whys, Fishbone, etc.) to identify corrective and preventive actions. Risk Awareness & Training: Conduct training sessions to promote risk awareness and adherence to risk management practices across the organization. Required Skills & Expertise: Experience: 2-5 years of experience in operational risk management, preferably within the financial industry. Risk Assessment & Mitigation: Deep knowledge of risk assessment methodologies and risk mitigation strategies. Regulatory Knowledge: Clear understanding of regulatory requirements related to risk management. Audit Knowledge: Familiarity with auditing principles and standards (e.g., ISO, CMMI). Problem-Solving: Strong analytical skills and the ability to solve complex problems with a detail-oriented approach. Communication Skills: Excellent interpersonal and communication skills to collaborate with senior leaders, cross-functional teams, and external stakeholders. Ownership & Responsibility: A high level of accountability and ownership in driving initiatives to completion. Qualifications: Educational Background: Graduate degree (CA, MBA from a Tier 1 Institute preferred). Technical Skills: Strong proficiency in Excel (knowledge of SQL will be an added advantage). Certifications (Preferred): Knowledge of internal and external audit standards like ISO, CMMI, etc. Impact: Shape the future of risk management in one of India s fastest-growing financial services platforms. Growth Opportunities: Take ownership of key risk management projects and contribute to the company s overall strategy. Culture: Work in a collaborative, transparent, and innovative environment where your contributions are valued. If you're passionate about risk management and want to make a significant impact in a fast-growing fintech company, we d love to hear from you. Qualification : Graduate degree (CA, MBA from a Tier 1 Institute preferred)

Platform Admin NextGen SIEM Location: Bangalore (Onsite) About ColorTokens At ColorTokens, we re all about helping businesses stay secure and keep running, no matter what cyber chaos hits. Our game-changing Xshield platform stops ransomware and malware from spreading sideways, so companies can keep their critical stuff safe and business uninterrupted. We bring insane visibility into traffic flows between workloads, IoT devices, users basically everything to create super tight security zones that isolate threats fast. We re a Forrester Wave Leader (Q3 2024) for microsegmentation and protect global giants from costly cyber disruptions. Our Culture We love self-starters who bring energy, curiosity, and big ideas. You ll get to own projects, collaborate with passionate teammates, and work on security that actually protects real people from hospitals to cities to entire nations. What You ll Do The Role You ll run and manage our NextGen SIEM platform think Splunk, Sentinel, Exabeam, Stellar Cyber, or similar making sure it s up-to-date, humming smoothly, and packed with the right alerts. Admin & Ops: Install, configure, patch, and keep the SIEM platform running 24/7. Log Boss: Bring in new log sources, troubleshoot ingestion issues, and ensure data is clean and compliant. Rule Maker: Build and tweak detection rules and alerts to catch real threats while cutting down false alarms. Integrate & Automate: Connect SIEM with other security tools and automate incident workflows. Lock It Down: Manage user access, keep the platform secure, and nail compliance requirements. Team Player: Work closely with SOC analysts, threat hunters, and engineers to level up detection and response. Support & Train: Help users get the most from the platform and be the go-to expert when incidents hit. Optimize & Report: Track performance, fix bottlenecks, and share insights to keep the platform sharp. What You Bring Your Skills & Experience 8+ years managing SIEM platforms, especially NextGen ones like Splunk, Sentinel, or Exabeam. Expert in log management, rule creation, and onboarding data from all sorts of sources. Solid scripting skills (Python, PowerShell) to automate and customize workflows. Deep knowledge of log formats (Syslog, JSON, XML), querying languages (KQL, SPL, AQL), and data pipelines. Experience integrating SIEM with EDR, SOAR, NDR, and threat intel platforms. Familiar with security frameworks like MITRE ATT&CK, NIST, or CIS. Bonus points if you know cloud security (AWS, Azure, GCP), machine learning in SIEM, or SOAR tools like Cortex XSOAR or Phantom. Your Credentials Bachelor s degree in Computer Science, InfoSec, or related field (or equivalent experience). Relevant certifications like Splunk Certified Admin, Microsoft Security Operations Analyst, QRadar cert, or CISSP are a major plus. What Success Looks Like Keep SIEM uptime near 100%. Smoothly onboard new log sources and build killer detection use cases. Reduce noise fewer false positives, sharper alerts. Fast, effective fixes when platform issues pop up. Align SIEM capabilities tightly with security and business goals. Qualification : Bachelors degree in Computer Science, InfoSec, or related field (or equivalent experience).

Platform Engineer Location: Bengaluru, Karnataka, India Full-time partially remote About ColorTokens At ColorTokens, we empower businesses to stay operational and resilient in an increasingly complex cybersecurity landscape. Breaches happen but with our cutting-edge ColorTokens Xshield platform, companies can minimize the impact of breaches by preventing the lateral spread of ransomware and advanced malware. We enable organizations to continue operating while breaches are contained, ensuring critical assets remain protected. Our innovative platform provides unparalleled visibility into traffic patterns between workloads, OT/IoT/IoMT devices, and users, allowing businesses to enforce granular micro-perimeters, swiftly isolate key assets, and respond to breaches with agility. Recognized as a Leader in the Forrester Wave : Microsegmentation Solutions (Q3 2024), ColorTokens safeguards global enterprises and delivers significant savings by preventing costly disruptions. Our culture We foster an environment that values customer focus, innovation, collaboration, mutual respect, and informed decision-making. We believe in alignment and empowerment so you can own and drive initiatives autonomously. Self-starters and high-motivated individuals will enjoy the rewarding experience of solving complex challenges that protect some of world s impactful organizations be it a children s hospital, or a city, or the defense department of an entire country. Position Overview: Colortokens is looking for a Junior Platform Administrator to assist in managing, maintaining, and optimizing our NextGen Security Information and Event Management (SIEM) platform. The ideal candidate will support the day-to-day operations, help onboard customer log sources, troubleshoot integration issues, and provide technical assistance to the security operations team. This role is ideal for a motivated professional with 3+ years of experience in SIEM administration, security operations, or log management. Key Responsibilities: SIEM Platform Administration Assist in deploying, configuring, and maintaining the NextGen SIEM platform (e.g., Stellar Cyber, Splunk, Sentinel, QRadar, Chronicle, Exabeam). Perform basic updates and patches to ensure platform security and functionality. Monitor SIEM health, performance, and uptime under the guidance of senior administrators. Log Source Management Onboard new log sources and validate data ingestion. Help troubleshoot log ingestion, parsing, and formatting issues. Maintain log retention policies for compliance. Rule and Use Case Management Support the development and deployment of detection rules, correlation use cases, and alerts. Tune existing use cases to minimize false positives. Work closely with security analysts to refine alerting strategies. Integration and Automation Assist in integrating SIEM with other security tools (e.g., EDR, microsegmentation, vulnerability scanners). Work on basic automation tasks using scripting (Python, PowerShell) to enhance SIEM efficiency. Platform Security and Compliance Support role-based access control (RBAC) and platform security policies. Help ensure SIEM adheres to compliance standards like SOC2, ISO 27001. Participate in periodic security audits. Network Debugging & Troubleshooting Have a basic understanding of TCP/IP, networking concepts, and protocols. Assist in debugging network connectivity issues related to SIEM log ingestion. Use basic network troubleshooting tools. Collaboration and Support Work alongside SOC analysts, threat hunters, and security engineers. Provide basic technical support for SIEM users. Assist in training and documentation for security teams. Performance Monitoring and Optimization Monitor storage and indexing performance to ensure optimal operations. Report any performance issues to senior administrators. Contribute to platform health reports and alerting metrics. Incident Support Assist SOC teams in log analysis, incident response, and forensic investigations. Ensure log data is readily available for security incidents. Education and Certifications: Bachelor s degree in Computer Science, Information Security, or a related field. Certifications (Preferred but not mandatory): Splunk Certified User/Admin Microsoft Certified: Security Operations Analyst Associate QRadar Certification Any SIEM-related certification Experience: 3+ years of experience in SIEM administration, security operations, or log management. Hands-on experience with at least one SIEM platform (e.g., Stellar Cyber, Splunk, Sentinel, Chronicle, Exabeam). Basic knowledge of log ingestion, rule creation, and data parsing. Exposure to scripting (Python, PowerShell) for automation. Basic understanding of TCP/IP networking concepts and network debugging. Technical Skills: Understanding of log formats, Syslog, JSON, XML, and data pipelines. Basic knowledge of querying languages (KQL, SPL, AQL). Familiarity with SIEM integration with security tools like EDR, SOAR, NDR. Awareness of MITRE ATT&CK, NIST, or CIS security frameworks. Basic experience with network troubleshooting tools (ping, traceroute, netcat (nc)). Soft Skills: Strong problem-solving and troubleshooting abilities. Good verbal and written communication skills. Ability to work collaboratively in a security operations environment. Preferred Skills: Basic understanding of cloud-based security solutions (AWS, Azure, Google Cloud). Exposure to SOAR tools (e.g., Cortex XSOAR, Splunk Phantom). Interest in machine learning-based anomaly detection for SIEM. Key Metrics for Success: Successful onboarding of log sources. Improvement in log ingestion and parsing accuracy. Contribution to fine-tuning detection rules. Timely resolution of SIEM-related support requests. Ability to identify and troubleshoot basic network connectivity issues.

Senior SOC Analyst Location: Bangalore (Hybrid, work from office) Experience: 4 to 7 years Shifts: Rotational 24/7 shifts gotta keep the cyber world safe around the clock! About ColorTokens We re on a mission to help businesses stay secure and running smoothly, even when cyber threats hit hard. Our ColorTokens Xshield platform stops ransomware and malware from spreading sideways, so companies can keep their critical assets locked down and business uninterrupted. We bring unmatched visibility into traffic flows whether it s servers, IoT devices, or users helping teams isolate threats fast and respond smartly. Forrester named us a Leader in Microsegmentation (Q3 2024), and we protect global enterprises from costly cyber disasters. Our Culture If you re a self-starter who loves solving complex problems and making an impact, you ll fit right in. Work alongside passionate teammates who protect hospitals, cities, and even national defense. We value innovation, respect, and letting you own your work. What You ll Be Doing Lead as a senior SOC analyst, mentoring juniors and shaping SOC playbooks and processes. Dive deep into escalated incidents analyze, manage end-to-end, and nail root cause analysis. Monitor alerts and events across SIEM tools (Splunk, QRadar, Stellar Cyber, LogRhythm), firewalls, IDS/IPS, VPNs, and more. Hunt proactively for threats and vulnerabilities using threat intel feeds and frameworks like MITRE ATT&CK and Cyber Kill Chain. Perform forensic and malware analysis from logs to memory and disk images to track down attackers and gather evidence. Collaborate closely with SecOps, IT, Platform, and Engineering teams to creatively solve security challenges. Automate SOC workflows with PowerShell, regex, and APIs to level up efficiency. Lead detection tuning and gap analysis to sharpen SOC s ability to spot threats early and accurately. What You Bring 4+ years experience in cyber incident response, SOC operations, and investigations. Solid knowledge of SIEM platforms, network and endpoint security, malware analysis, and threat intel. Certifications like CISSP, GCIH, GSOC, OSCP, or GCIA (or working toward them). Strong communication skills you can explain complex security issues clearly to any audience. Integrity, professionalism, and eagle-eye attention to detail. Ability to work well under pressure and collaborate with diverse teams. Qualifications Bachelor s degree in IT, Computer Science, Engineering, or related field (or equivalent experience). Protect critical digital assets, learn cutting-edge cyber defense tech, and grow your career at a company recognized as a market leader. Plus, work with passionate people who genuinely care about making the world safer. Qualification : Bachelors degree in IT, Computer Science, Engineering, or related field (or equivalent experience).

Job Title: Associate IT Engineer Location: Bangalore North, Karnataka, India Job Type: Full-Time Experience Required: 2 3 Years Industry: Entertainment / Mobile Gaming About Us: We are one of India s most dynamic and fast-growing mobile gaming companies. Since our founding in 2014, we ve been building chart-topping games for a global audience in partnership with Modern Times Group (MTG). Our mission is to create simple, impactful casual gaming experiences at massive scale. Our portfolio includes globally popular titles such as Daily Themed Crossword, WordTrip, WordJam, WordWars, WordTrek, TileMatch, and Jigsaw. Position Summary: We re looking for a motivated Associate IT Engineer to support our growing technology infrastructure. In this role, you ll take ownership of IT operations, endpoint and access management, IT security, cloud platform administration, and day-to-day support tasks ensuring our teams have seamless and secure access to the tools they need. Key Responsibilities: System & Endpoint Management Manage MDM solutions (e.g., Intune, Jamf, JumpCloud, ManageEngine). Automate device provisioning and security configuration processes. Oversee IT asset lifecycle (endpoints, peripherals, and licenses). Identity & Access Management Manage IAM for SaaS tools (e.g., GitHub, Slack, AWS/GCP, Zoom, Apple Store Connect, Google Play). Implement and maintain SSO/SAML integrations for internal tools and dashboards. Security & Compliance Monitor and enhance endpoint and network security (e.g., antivirus, encryption, OS patching). Implement cybersecurity best practices and incident response playbooks. Liaise with internal/external auditors and lead audit compliance processes. IT Support & Operations Provide L1/L2 support for internal IT issues. Monitor infrastructure health and performance via appropriate tools. Maintain technical documentation on Confluence. Support software license deployment and version upgrades with cost optimization. Skills & Requirements: 2 3 years of hands-on IT experience in a similar role. Strong working knowledge of MDM platforms and endpoint security tools. Familiarity with access control and SSO tools. Proficient in managing SaaS environments and troubleshooting desktop hardware/software. Strong grasp of networking fundamentals and cybersecurity principles. Excellent problem-solving skills and stakeholder communication. Experience with infrastructure monitoring tools is a plus. Exposure to cloud platforms (AWS/GCP) preferred. What We Offer: A high-energy, collaborative work culture. Opportunity to work in a fast-scaling, tech-first gaming company. Access to the latest technologies and tools in IT & infrastructure. A chance to shape secure systems used by a globally recognized mobile gaming company.

Job Title: Technical Support Engineer I / II Location: Bengaluru, India Job Type: Full-time About Zeta Zeta is a Next-Gen Banking Tech company that empowers banks and fintechs to launch cutting-edge financial products. Founded by Bhavin Turakhia and Ramki Gaddipati in 2015, Zeta s flagship platform, Tachyon, is the world s first cloud-native, fully API-enabled processing stack. It brings together issuing, processing, lending, fraud and risk, core banking, and more into a unified offering. With over 20 million cards issued globally and trusted by some of the largest banks and fintechs, Zeta is redefining the banking infrastructure landscape. Backed by SoftBank, Mastercard, and other marquee investors, Zeta is valued at $1.5 billion and employs over 1700 professionals, with more than 70% in R&D. About the Role As a Technical Support Engineer I/II at Zeta, you ll be part of the Banking Technology Support team, responsible for troubleshooting, resolving, and escalating issues related to Zeta Tachyon a platform with 100+ APIs, multiple customer-facing interfaces, and extensive enterprise-grade infrastructure. This role offers the opportunity to work with high-performing engineering and product teams, support enterprise clients, and grow your career in the B2B SaaS + Fintech space. Responsibilities Customer Support: Provide first-level technical support to clients, resolving issues efficiently and maintaining high customer satisfaction. Incident Management: Monitor incoming support tickets, emails, and calls. Prioritize and manage based on urgency and business impact. Troubleshooting: Diagnose basic technical issues with banking systems, apps, or APIs using internal tools and knowledge bases. Documentation: Contribute to knowledge base articles, FAQs, and process documents to enhance self-service and internal efficiency. Escalation Handling: Escalate complex issues to L2/L3 teams with thorough documentation and coordinate for resolution. Collaboration: Work cross-functionally with engineers, business analysts, and system admins to resolve customer concerns. Compliance & Security: Ensure adherence to security, privacy, and regulatory standards when handling sensitive customer data. Required Skills & Competencies Strong problem-solving and debugging abilities. Excellent written and verbal communication skills; able to explain technical concepts to non-technical users. Customer-centric mindset with a focus on delivering prompt, quality service. Comfortable working in fast-paced, multi-tasking environments. Familiarity with: JIRA Postman Kibana, Grafana, Splunk (must-have) Exposure to ticketing systems and knowledge base platforms is a plus. Willingness to learn new tools and technologies in banking and payments. Experience & Qualifications Bachelor's degree in Computer Science, IT, or related engineering fields. 2.6+ years of overall experience in technical support roles within enterprise or banking technologies. At least 1 year of hands-on experience supporting enterprise-grade software products or platforms. Prior experience in the banking/payments/fintech domain is an advantage. Be part of one of the most innovative fintech platforms globally. Opportunity to work closely with industry leaders and high-growth enterprise clients. A culture of growth, learning, and empowerment. Equal Opportunity Employer Zeta is an equal opportunity employer committed to diversity and inclusion. We celebrate differences and are proud of our inclusive culture. Candidates from all backgrounds are encouraged to apply. Qualification : Bachelor's degree in Computer Science, IT, or related engineering fields.

Cyber Security Analyst Bangalore, India Location: Bangalore (Bengaluru) Experience: 4 to 12 Years Industry: IT Security / Cybersecurity Job Summary: We are seeking a highly skilled Cyber Security Analyst with advanced knowledge in cybersecurity principles, risk assessment, and threat prevention. The ideal candidate will have hands-on experience with security tools, network defense, vulnerability assessments, and malware analysis to safeguard our organization s digital assets. Key Responsibilities: Analyze and mitigate cyber and IT security risks using advanced techniques and best practices Conduct vulnerability assessments and penetration testing across networks, platforms, and applications Utilize scripting and programming languages such as Python, PowerShell, Perl, HTML, and JavaScript for automation and security analysis Monitor network security devices including firewalls, proxies, NIDS/NIPS, and respond to security incidents Perform dynamic and static malware analysis and memory forensics to identify and counter threats Conduct reverse engineering of malware and apply countermeasures based on adversary tactics and protocols Apply in-depth knowledge of network protocols, network security monitoring, and incident response Ensure compliance with security standards and frameworks Collaborate with cross-functional teams to implement security improvements and ensure robust defense mechanisms Required Skills & Qualifications: Minimum 4+ years of professional experience in cybersecurity or related IT security roles Advanced understanding of cyber threats, risk management, and prevention techniques Proficiency in security system analysis, network security, and vulnerability assessment tools Experience with malware analysis, penetration testing, and reverse engineering Strong programming/scripting skills in Python, PowerShell, Perl, or similar languages In-depth knowledge of security standards, protocols, and industry best practices Hands-on experience with network security monitoring and defense technologies Preferred Certifications: Technical cybersecurity certifications from recognized bodies such as SANS, ISACA (CISA, CISM), (ISC) (CISSP), CompTIA Security+, Cisco (CCNA Security), CERT, or equivalent Work in a challenging role protecting critical digital infrastructure Collaborate with a talented cybersecurity team to combat evolving threats Access to continuous learning, professional development, and certification opportunities

Senior Security Specialist Location: Bengaluru, Karnataka, India Employment Type: Full-time About Serko: Serko is a leading tech platform revolutionizing global business travel and expense technology. Joining Serko means becoming part of a passionate team of travelers and technologists dedicated to transforming the business travel marketplace. With offices worldwide and a new hub in Bengaluru, we embrace diversity and authenticity to create meaningful impact. Our fast-growing India team seeks motivated professionals to help build world-class products and experiences. Role Overview: We are looking for a highly skilled Senior Security Specialist with a strong software engineering and DevSecOps background. This role will lead security initiatives, manage risks, oversee security operations, ensure compliance, and report to senior management. You will work closely with agile development teams to embed security throughout the software development lifecycle, driving robust, scalable security solutions. Key Responsibilities: Lead integration of security practices into the DevOps lifecycle, embedding security into software development and deployment pipelines. Collaborate with development and operations teams to identify and mitigate security risks across applications, infrastructure, and pipelines. Implement and maintain security automation and orchestration tools to improve security posture and operational efficiency. Identify, assess, and manage security risks; develop and implement mitigation strategies. Oversee daily security operations, including monitoring, incident response, and threat intelligence. Ensure compliance with security policies and external standards such as PCI-DSS and SOC2. Prepare and present detailed security reports to senior management, highlighting risks and mitigation plans. Lead security awareness campaigns to educate employees on emerging threats and best practices. Stay current on emerging security technologies and trends, particularly in Azure security and DevSecOps. Evaluate and recommend security tools and solutions to enhance the organization's security posture. Qualifications & Experience: 5+ years in a senior security role focused on Security Operations, Risk Management, and Compliance within software engineering environments. Deep understanding of security attack and defense methods; hands-on experience with ethical hacking tools preferred. Proven experience with DevSecOps tools such as SAST and DAST. Expertise in Microsoft security products including Azure Security Center, Defender, Azure AD, and Sentinel. Relevant certifications such as CISSP or equivalent highly preferred. Excellent communication, presentation, and documentation skills. Strong team collaboration and leadership skills. Bachelor s degree in Computer Science, Cybersecurity, or related field; certifications may substitute for degree. What We Offer: Competitive base salary and discretionary incentive plan based on individual and company performance. Access to learning and development platforms to own your career growth. Comprehensive family medical coverage, meal coupons, transport allowances, and mobile & internet reimbursement. Flexible work policies supporting work-life balance. An engaging environment with great tools, support, and opportunities to innovate and deliver high-quality results. Qualification : Bachelors degree in Computer Science, Cybersecurity, or related field; certifications may substitute for degree.

Senior Information Security Analyst Data Governance Location: Bangalore, India About the Team The Information Security (InfoSec) team at Rubrik strengthens company-wide security through initiatives, tools, and processes that protect data and systems. They also oversee security monitoring, incident response, and educate employees on best practices to secure Rubrik s information assets. Role Overview This role focuses on data governance and security review throughout the Software Development Lifecycle (SDLC) to ensure sensitive data is properly protected. You will collaborate cross-functionally with Legal, Engineering, Product, and IT teams, while also supporting the Security Operations Center (SOC) with expert guidance on data governance during incident response. Key Responsibilities Perform data governance and security reviews during SDLC for new products and features. Manage and document metadata, including data lineage, ownership, and definitions. Conduct audits and assessments to ensure compliance with data governance standards. Maintain strong relationships and communication with internal stakeholders to facilitate governance adherence. Act as a subject matter expert for SOC, supporting incident response from a data security perspective. Support training and awareness programs on data governance policies and best practices. Develop and maintain governance documentation, policies, and procedures. Identify and escalate data governance risks with actionable recommendations. Experience & Qualifications Required: Bachelor s or Master s degree in Information Security, Data Analytics, or related field. 3 5 years in information security, data security, or data governance roles. Strong understanding of data security principles and frameworks (e.g., NIST). Excellent communication, presentation, and documentation skills. Project management skills to lead governance projects. Ability to adapt quickly and maintain professionalism in dynamic environments. Preferred: Certifications: CISSP, CISM, CDPSE, Security+ (or similar). Experience with data governance tools and metadata management. Knowledge of data privacy regulations: GDPR, CCPA, HIPAA. Experience supporting or collaborating with SOC/incident response teams. Strong analytical and problem-solving skills, especially with complex data. Familiarity with cloud-based data security solutions. Rubrik leads in Zero Trust Data Security , providing cutting-edge data protection across enterprise, cloud, and SaaS environments. This role offers an impactful chance to enhance data governance and security in a mission-critical, rapidly evolving tech company. Qualification : Bachelors or Masters degree in Information Security, Data Analytics, or related field.

Job Title: Senior Incident Response Manager Location: Bengaluru, Karnataka, India About This Team: The Critical Situation Management team plays a pivotal role in maintaining customer trust and satisfaction in CSG Citrix BU products. We ensure swift resolution of production-impacting issues, collaborating closely with Technical Support and Product teams to maintain high uptime Service Level Targets (SLTs). Our team is dedicated to delivering rapid, effective solutions, making us essential to the continued success and reputation of the Citrix platform. Job Description / Responsibilities: Primary Duties / Responsibilities: Incident Management: Lead and manage timely, professional communication with internal and external stakeholders during critical incidents. Utilize your deep technical knowledge and strong communication skills to drive effective resolutions. Customer Sentiment Management: Assess and manage customer sentiments, and ensure appropriate resources are mobilized to mitigate production-impacting situations. Lead discussions with Citrix Customers and internal stakeholders with confidence and clarity. Collaboration: Facilitate cross-departmental collaboration to resolve customer issues, and coordinate the end-to-end customer experience, owning internal and, when necessary, external communications. Escalation Management: Act as the primary contact for Citrix Customers and Account teams during critical situations, collaborating with technical specialists (SMEs) to manage escalations and resolve incidents quickly. 24x7 Coverage: Provide 24x7 support, including weekends and holidays, on a rostered shift basis. Continuous Improvement: Actively participate in feedback processes, leading continuous improvement initiatives and ensuring the team adapts quickly to feedback. Lead and participate in projects aimed at improving incident response and service efficiency. Technical Knowledge: Utilize your technical know-how to manage the escalation process, lead calls, and effectively assess the situation to provide timely solutions. Qualifications (Knowledge, Skills, Abilities): Experience: 6 - 10 years of relevant experience in Incident Response, preferably in a Technical Support environment. Demonstrated ability to manage customer escalations in high-pressure scenarios. Communication Skills: Exceptional verbal and written communication skills. Ability to engage with customers and internal leadership clearly and professionally. Proficiency in creating concise incident reports and Root Cause Analysis (RCA) documents. Customer Advocacy: Strong customer advocacy skills, with the ability to understand, articulate, and manage customer expectations effectively. Technical Expertise: Broad knowledge in technologies such as Cloud, Virtualization, Networking, Operating Systems, and Remoting, with a focus on Virtualization, Networking, and Storage. Experience with Microsoft OS and End-User Computing is a plus. Collaboration Skills: Ability to manage and facilitate cross-team collaboration to solve complex customer issues. Comfortable leading critical calls and guiding teams through escalations. Process Knowledge: Knowledge of ITIL, Project Management, and Six Sigma methodologies is a plus. Familiarity with the Software Development Lifecycle (SDLC) and defect tracking processes is beneficial. Education: B.E. / B.Tech. or a Bachelor s degree in a related field with at least 5+ years of relevant experience. Additional Skills: Scripting, automation, and programming skills are an advantage. Experience in leading formal customer meetings, including those with C-level or Senior Management. About Us: Cloud Software Group is one of the largest cloud solution providers globally, serving over 100 million users. Joining us means making a tangible difference for people around the world who rely on our cloud-based products to perform their work efficiently, from anywhere. We foster a culture of innovation, learning, and growth. As we prepare for an exciting new phase of growth, we need your skills and expertise to continue evolving and building the future of work. Qualification : B.E. / B.Tech. or a Bachelors degree in a related field with at least 5+ years of relevant experience.

CSQ124R98 At Databricks, an Incident Manager utilizes their technical experience and resourcefulness to lead urgent customer situations to resolution. Responsible for managing frequent, high-quality updates to all internal and external stakeholders, Incident Managers advocate with engineering and leadership, on behalf of their customers, to ensure that escalations are handled with the appropriate level of urgency from stakeholders. The impact you will have: Drive critical customer escalations or widespread outages to conclusion and resolution. Escalate to on-call resources in support and engineering and establish checkpoint calls and action items to ensure that progress is made and status updates are delivered on time. Demonstrate cross-functional leadership while establishing ownership of escalations and outages. Compile and deliver frequent high-quality communications to internal and external stakeholders, including executive staff. Candidate should be comfortable creating concise and effective messaging that is tailored to a technical or executive audience with minimal assistance from others. Commence and lead war rooms while establishing other temporary communication channels as warranted for the duration of an outage. Ability to multi-task on several incidents and/or projects at once. Be a leader who identifies product and process improvements from every incident and submits necessary feedback for improvements. Participate in on-call rotations. What we look for: Minimum 8+ years of experience in customer support, support escalation and incident management is required. Excellent contextual interpretation and writing skill with an effective ability to summarize and communicate to technical and business audiences is required. Demonstrates strong ability to make timely decisions for both business and technical perspectives. Excellent analytical and troubleshooting skills are required. Candidate should be able to demonstrate technical excellence by applying engineering principles to solve complex problems. Hands-on experience developing any two or more of the following: Big Data, Hadoop, Spark, Machine Learning, Artificial Intelligence, Streaming, Kafka, Data Science, ElasticSearch related industry use cases at the production scale. Hands-on experience in the performance tuning/troubleshooting of Spark-based applications at production scale. Proven and real-time experience in JVM and Memory Management techniques such as Garbage collection and Heap/Thread Dump Analysis is required. Working knowledge in Data Lakes and preferably on the SCD types use cases at production scale. Working and hands-on experience with any SQL-based databases, Data Warehousing/ETL technologies like Informatica, DataStage, Oracle, Teradata, SQL Server and MySQL Linux/Unix administration skills and hands-on experience with AWS or Azure or GCP is required. About Databricks Databricks is the data and AI company. More than 10,000 organizations worldwide including Comcast, Cond Nast, Grammarly, and over 50% of the Fortune 500 rely on the Databricks Data Intelligence Platform to unify and democratize data, analytics and AI. Databricks is headquartered in San Francisco, with offices around the globe and was founded by the original creators of Lakehouse, Apache Spark , Delta Lake and MLflow. To learn more, follow Databricks on Twitter,LinkedIn and Facebook . Benefits At Databricks, we strive to provide comprehensive benefits and perks that meet the needs of all of our employees. For specific details on the benefits offered in your region, please visithttps://www.mybenefitsnow.com/databricks. Our Commitment to Diversity and Inclusion At Databricks, we are committed to fostering a diverse and inclusive culture where everyone can excel. We take great care to ensure that our hiring practices are inclusive and meet equal employment opportunity standards. Individuals looking for employment at Databricks are considered without regard to age, color, disability, ethnicity, family or marital status, gender identity or expression, language, national origin, physical and mental ability, political affiliation, race, religion, sexual orientation, socio-economic status, veteran status, and other protected characteristics. Compliance If access to export-controlled technology or source code is required for performance of job duties, it is within Employer's discretion whether to apply for a U.S. government license for such positions, and Employer may decline to proceed with an applicant on this basis alone.

What You ll Achieve: As a Consultant, Cyber Incident Response, you will be responsible for handling complex cybersecurity incidents, providing advanced analysis, and offering support to L1 and L2 analysts. Your role will require extensive experience in the full lifecycle of Cybersecurity Incident Response, including preparation, analysis, notification, response, recovery, and post-mortem activities. Key Responsibilities: Global Escalation Point: Serve as the primary escalation point for complex cybersecurity incidents that are not resolved by L1/L2 analysts, offering regional subject matter expertise on incident response. Incident Analysis and Investigation: Conduct in-depth analysis of security incidents, determining the root cause and potential impact to the organization. Investigate and analyze large, unstructured datasets, malicious artifacts, and EDR (Endpoint Detection and Response) tools to identify trends, anomalies, and potential threats. Incident Response Lifecycle: Oversee all phases of incident response, including preparation, analysis, response, recovery, and post-mortem reviews to identify lessons learned and enhance future response efforts. Liaison with Stakeholders: Act as a liaison between various stakeholders and internal CSIRT (Computer Security Incident Response Team) teams, helping implement best security practices and driving process improvements for incident response. Mentorship and Training: Provide guidance and training to L1 and L2 analysts, sharing your knowledge to enhance their skills in cybersecurity incident response. Essential Requirements: Cybersecurity Expertise: 10+ years of experience in cybersecurity incident response and hands-on experience within a Security Operations Center (SOC). Incident Investigation Skills: Exceptional ability to conduct investigations, analyze findings, and determine the root cause of incidents. Strong Technical Knowledge: In-depth understanding of security technologies such as SIEM (Security Information and Event Management), full packet capture, firewalls/NGFW, IDS/IPS, EDR, DLP (Data Loss Prevention), UEBA (User Entity Behavior Analytics), and familiarity with networking protocols. Experience with Cloud Computing, Microsoft Windows, and Linux/Unix platforms. Experience with Cyber-attacks: Strong knowledge of various cyber-attack types and techniques, including incident response, threat hunting, and understanding attack lifecycles. Analytical and Communication Skills: Excellent analytical thinking, time management, and coordination skills. Strong command of English, both written and verbal, for clear communication with stakeholders and teams. Desirable Requirements: Certifications: Industry-recognized certifications such as CISSP, SANS GCIH, GCIA, GNFA, GREM, etc. Additional Skills: Experience in Digital Forensics and reverse malware tools. Proficiency in scripting languages for incident analysis and automation.

Application Support Engineer I Location: Bangalore Experience: Up to 2+ Years About Tekion Tekion is revolutionizing the automotive industry with the first cloud-native automotive platform, transforming an ecosystem that hasn t seen major innovation in over 50 years. Our Automotive Retail Cloud (ARC), Automotive Enterprise Cloud (AEC), and Automotive Partner Cloud (APC) connect OEMs, dealerships, consumers, and partners through one seamless platform. Leveraging big data, AI, and machine learning, Tekion delivers the best automotive retail experiences across North America, Asia, and Europe. Role Overview We are looking for an enthusiastic Application Support Engineer I who loves challenges, enjoys problem-solving, and is passionate about delivering exceptional customer experiences. You will act as a subject matter expert in your domain, supporting our dealership clients, coordinating technical issues, and ensuring the support team follows processes and delivers solutions effectively. Key Responsibilities Take ownership of customer-reported issues and ensure problems are resolved end-to-end. Research, diagnose, troubleshoot, and identify solutions to resolve system and application issues. Follow standard escalation procedures for unresolved issues and coordinate with internal teams. Understand applications both functionally and technically. Use internal databases and external resources to provide accurate technical solutions. Ensure all issues are properly logged and tracked. Prioritize and manage multiple open issues simultaneously. Prepare accurate and timely reports on support activities. Document technical knowledge in notes, manuals, and knowledge bases. Support rotational shifts as required. Required Skills & Experience 0 2+ years of experience in application, production, or product support. Advanced knowledge of SQL, MongoDB, and basic network configurations. Strong understanding of databases, APIs, and coding fundamentals. Ability to learn and master company-specific software. Strong problem-solving skills and attention to detail. Excellent written and verbal communication skills. Ability to diagnose and address application-related issues effectively. Understanding of IoT and software systems is a plus. Be the first point of contact for dealership clients, ensuring their technical issues are resolved quickly. Play a key role in improving customer satisfaction by providing accurate and timely solutions. Contribute to a knowledge-sharing culture through documentation and process improvements. Work in a collaborative, agile environment alongside cross-functional teams on challenging projects.