Who We Are
Ready to make a real impact in cybersecurity? At Critical Start, we're not just protecting organizations; we're redefining how it's done. We're a team united by an inspiring purpose: to stop breaches, simplify security, and shape the future of cyber defense. If you're passionate about cutting-edge technology, thrive in a collaborative environment, and want your work to truly matter, you've found your home.We deliver 24x7 AI-accelerated, human-validated detection, investigation, and response across IT and OT. This means we cut through the noise, investigate real threats, and take trusted, SLA-backed action—all powered by the brightest minds and the latest AI. Since 2012, we've been helping organizations outpace evolving attacks with faster response, fewer escalations, and measurable risk reduction.Innovation isn't just a buzzword here; it's our DNA. We pioneered the first MOBILESOC app for on-the-go detection and response, infused AI into automated alert resolution to eliminate noise, and slashed investigation time by an astounding 99.3%. We're transforming how security teams work, and you could be a part of it. From AI-assisted triage to analyst copilots that elevate human expertise, we combine machine intelligence with human judgment to deliver outcomes our customers trust.If you're looking for a high-trust, high-impact team where your ideas are amplified by AI and valued by colleagues and customers alike, Critical Start is the place for you. Come build the future of cybersecurity with us.Want to hear from our team? Watch these videos to gain insights into life at Critical Start or check out our Glassdoor reviews for an inside look.
Who You Are
We are seeking a Detection Tuning & Optimization Analyst to join the Critical Start Technologies Private Ltd. team, operating under the Critical Start umbrella, for our India operations. As an Analyst at Critical Start, your role is of utmost importance in the realm of identifying and responding to security alerts. You actively partake in configuring playbooks and event orchestration technologies. With your extensive knowledge of incident detection and response, you significantly contribute to reducing, resolving, and orchestrating events across numerous endpoints and SIEM (Security Information and Event Management) security products.On a day-to-day basis, you'll be responsible for reviewing and delving into alerts generated by security tools, distinguishing between true and false positives, and taking actions to address these detections. Collaboration is key as you'll work closely with teams ranging from the Security Operations Center, engineeering, Security Engineering, and Implementations/Onboarding to guarantee the customer is in an ideal state before they progress.
What You Will Be Doing?
Incident Detection and Analysis:
- Continuously monitor events generated by our array of security products to proactively identify potential incidents.
- Perform a thorough analysis and investigation of security alerts and escalate to RSOC as needed for official investigation and response.
Tuning and Alert Optimization:
- Conduct regular reviews of alerts to identify false positives and opportunities for reduction
- Analyze alert patterns and trends to optimize detection accuracy and efficiency
- Collaborate cross-functionally with automation and detection teams to implement necessary improvements
- Develop and maintain standardized orchestration processes for alert management
- Escalate potential false positives to relevant stakeholders, providing detailed analysis for informed decision-making
- Continuously refine alert criteria and thresholds to minimize noise while ensuring critical issues are captured
- Document and track alert optimization efforts, including rationale for changes and impact on system performance
Reporting and Documentation:
- Adhere to existing internal documentation and processes, ensuring consistency in work output.
- Identify gaps or outdated information in documentation and proactively update as needed.
- Create new documentation for undocumented processes, maintaining quality standards.
- Continuously improve documentation to enhance team efficiency and knowledge sharing.
What You Will Bring?
Required Qualifications:
- 3+ years of experience in a relevant security analyst role and the ability to successfully complete a new analyst training program.
- Proficiency in written communication and a strong grasp of technical concepts.
- Exceptional verbal communication skills and the ability to effectively communicate across different teams.
- A solid understanding of SIEM tools, along with hands-on experience with EDR (Endpoint Detection & Response) and EPP (Endpoint Protection Platforms) solutions.
- Competency in network and system security, threat detection, and incident response.
- Outstanding problem-solving, critical thinking, and analytical abilities.
- Capacity to work effectively under pressure in a fast-paced and ever-changing environment.
Desired Qualifications:
- Possession of relevant certifications like CompTIA Security+ or Certified Ethical Hacker (CEH) is advantageous.
What It's Like Working Here
Imagine a dynamic, enjoyable, and rewarding work environment. We are professionals, and the work we do holds immense significance, like saving our customers from potential disasters. However, we believe in not taking ourselves too seriously.Prefer a casual dress code every day? No problem, as we find comfort enhances our thinking.
What does our Compensation and Benefits package entail?
- Competitive salary
- Statuary PTO (Paid Time Off) policy
- Depending on the role, you may work in the office, remotely, or adopt a hybrid work model.
We prioritize your privacy and security. Please note that Critical Start will never request financial information or sensitive personal data during the interview process. If you encounter any suspicious requests, do not respond and contact us directly at recruiting@criticalstart.com. Thank you for helping us maintain a safe and trustworthy hiring experience.Critical Start welcomes people from all backgrounds and walks of life. One of our core values is to “Do what’s best for our employees,” and that starts with the hiring process by finding the best candidates and providing an environment that upholds equal employment opportunities for all employees and applicants, strictly prohibiting any form of discrimination or harassment based on race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws.This policy encompasses all aspects of employment, including recruitment, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.
Mental And Physical Requirements
It's important to note that specific physical and mental requirements may vary depending on the nature of the office job, organization, and individual responsibilities.
Physical:
- Stationary position for extended periods of time.
- Constantly operate a computer.
- Occasionally you may be required to move equipment or other items up to 20 lbs.
- The ability to communicate information and ideas so others will understand. Must be able to exchange accurate information in these situations.
Mental:
- Must be able to apply established protocols in a timely manner.
- Make timely decisions in the context of workflow.
- Ability to complete tasks and perform in situations requiring speed deadlines, or productivity quota.
- Ability to work effectively and efficiently in high stress situations.
- Ability to simultaneously address multiple complex problems.
How to Apply:
Interested candidates are invited to visit our career site and apply for the position: https://www.criticalstart.com/careers/
