10 Security Research Jobs

We are seeking a Cyber Threat Intelligence Analyst to join our team. As a Cyber Threat Intelligence Analyst, you will be responsible for analyzing, detecting, and communicating cyber threats. Your role will involve collaborating with various teams such as incident responders, SIEM engineering teams, vulnerability management, and more. You should have at least 1 year of experience in security research and a functional understanding of common threat analysis models. Your main responsibilities will include maintaining awareness of the cyber threat landscape, providing updates to leadership and InfoSec teams, completing alert tickets, and various types of monitoring. You will be involved in activities such as brand protection, VIP protection, found credentials, sanctions monitoring, subscription reselling, and fraudulent applications. Your feedback on processes will be crucial for enhancing and improving maturity levels. Additionally, you will be responsible for producing threat intelligence products, reports, and intelligence briefings for NewsCorp's tactical and strategic stakeholders. You will need to establish and apply a threat modeling methodology to identify, classify, prioritize, and report cyber threats using a structured approach. Collaboration with peer teams and maintaining intelligence gathering practices across various sources will also be part of your role. To qualify for this position, you should have at least 1 year of experience in security research, excellent writing and critical thinking skills, and a functional understanding of common threat analysis models. Experience in Information Security, Threat Intelligence tools, and Management platforms is required. Strong knowledge of attack vectors, tactics, techniques, and procedures employed by cyber threat actors is essential. The ability to effectively communicate complex technical information to both technical and non-technical audiences is a must. Preferred qualifications for this role include security certifications such as CTIA, GCTI, GCIH, GDAT, OSCP, CHFI, and CEH. Desired qualifications include excellent communication skills, experience working in a large enterprise environment, strong analytical skills, ability to work independently and collaboratively, and the capacity to handle confidential material professionally. If you are looking for a challenging role in Cyber Threat Intelligence and possess the required qualifications and skills, we encourage you to apply for this position. Join us at NTS Technology Services Pvt. Ltd. to be a part of our dynamic team at NewsCorp.,

Join our dedicated team in a role where your expertise in risk assessments and cybersecurity exercises propels forward our mission of safeguarding our operations and enhancing resiliency. This position offers the unique opportunity to shape our security posture and contribute to our continuous improvement in an environment that values innovation and teamwork. As an Assessments & Exercises Senior Associate within our cybersecurity team, you will utilize industry-standard assessment methodologies and techniques to proactively identify risks and vulnerabilities in people, processes, and technology. You will collaborate with the team to design and execute risk-promoting tests and simulations, evaluate preventative controls, incident response processes, and detection capabilities. Your ability to make informed decisions and foster continuous improvement will contribute to the achievement of our team's operational goals and the mitigation of cyber and resiliency risks. Collaborate with other Assessments & Exercises team members to conduct testing and simulations such as penetration tests, technical controls assessments, cyber exercises, or resiliency simulations, and contribute to the development and refinement of assessment methodologies to ensure alignment with industry standards and regulatory requirements. Partner with subject matter experts to evaluate controls for effectiveness and impact on operational risk, as well as opportunities to automate control evaluation. Develop comprehensive assessment reports, including detailed findings, risk assessments, and remediation recommendations, and effectively communicate these insights to relevant stakeholders as you contribute to decisions that yield continuous improvement. Utilize threat intelligence and security research to stay informed about emerging threats, vulnerabilities, industry best practices, and regulations. Apply this knowledge to enhance the firm's assessment strategy. Required qualifications, capabilities, and skills: - Formal Training or Certification required on Cybersecurity or resiliency, assessments or simulation exercises and 3+ years applied experience. - Prior experience in offensive or defensive technical cybersecurity roles, focusing on solutions to reduce cybersecurity risks. - Basic coding (scripting) experience in languages such as Python, C, JavaScript, and VBScript. - Demonstrated proactivity and resourcefulness in identifying and analyzing data sources for data-driven investigations. - Knowledge or experience in cybersecurity roles and processes, including Incident Response, Threat Intelligence, Penetration Testing, and more. - Familiarity with network architecture concepts, cloud architectures, and deploying large-scale applications in enterprise environments. Preferred Qualifications, Capabilities, and Skills: - Familiar in developing both tactical and strategic tools and capabilities. - Familiar in building analytical processes, templates, and documentation. - Bachelor's Degree in Computer Science or a related field, or equivalent experience.,

As a Senior Cyber Security Engineer, you will be responsible for designing and implementing security measures to protect information systems and data in a dynamic and energetic working environment. You will have the opportunity for career growth and learning while ensuring the security infrastructure is robust and effective. Your primary roles and responsibilities will include designing security architectures for complex systems, deploying security technologies such as firewalls and antivirus software, managing network security measures, conducting vulnerability assessments, and implementing access controls. Additionally, you will develop security policies, standards, and procedures to ensure compliance with relevant laws and regulations. You will play a crucial role in incident response activities, including investigation, resolution, and digital forensics, as well as providing security awareness training to promote a security-conscious culture. Your expertise in managing cybersecurity within IT applications, cloud, network, and IT infrastructure will be essential in identifying and resolving security issues. To excel in this role, you should have more than 5 years of experience in cybersecurity, a strong understanding of network and systems security principles, and proficiency in configuring security technologies. Knowledge of encryption protocols, vulnerability assessment tools, and incident response skills are also required. Excellent problem-solving, analytical, communication, and collaboration skills are essential for this position. Certifications such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), Certified Information Security Manager (CISM), and CompTIA Security+ are preferred qualifications. The shift timings for this position are from 8:30 AM to 5:30 PM, Monday to Friday, with health insurance and provident fund benefits available. If you thrive in high-pressure situations, have a passion for cybersecurity, and enjoy finding cost-effective solutions to cyber threats, this role offers you the opportunity to make a significant impact in the field. Your contributions will be instrumental in maintaining a secure IT environment and protecting sensitive data from potential risks and vulnerabilities.,

As a Lead Security Research Engineer at SecPod, you will play a crucial role in the security research and development team. Your primary responsibility will be to conduct in-depth research on the latest vulnerabilities, exploits, and frameworks, with a focus on developing security content and signatures. You will provide technical leadership to security research engineers and collaborate with cross-functional teams to enhance the security posture of enterprise IT infrastructure. Your key duties will include researching and developing vulnerability detection scripts, understanding the correlation between vulnerabilities and malware, devising proof of concepts for detecting new vulnerabilities, and identifying strategies to mitigate these security risks. Additionally, you will be involved in peer testing and quality assurance for the developed content, automating tasks using scripting languages like Python, and contributing to the development of security tools. To excel in this role, you should possess 5-8 years of experience in security research within Security/Cloud/SaaS-based organizations, along with a strong grasp of security, vulnerabilities, and exploits. Proficiency in at least one programming language (e.g., Python, C, C++, LUA) is essential, as well as a solid understanding of IT infrastructure management, information security, and various security technologies. Knowledge of system and network security, experience across Unix/Linux, Windows, Mac systems, and virtualization will be advantageous. Furthermore, you are expected to have expertise in creating, reproducing, and demonstrating proof of concepts for the latest vulnerabilities, with additional skills in exploit development and IDS/IPS signature development considered a plus. Strong analytical capabilities, effective interpersonal skills, and the ability to multitask and prioritize efficiently are essential qualities for success in this role. Excellent verbal and written communication skills in English, coupled with a Bachelor's or Master's degree in Computer Science Engineering, are prerequisites for this position. If you are passionate about cybersecurity research and possess a solid foundation in computer science, we invite you to join our dynamic team at SecPod and contribute to our mission of preventing cyberattacks through innovative security solutions.,

Role Responsibilities: Manage a team of security engineers focused on malware analysis in Bengaluru. Perform reverse engineering to analyze and detect malware at scale. Advocate for secure practices throughout the Google Play and Android ecosystem. Conduct research to identify potential attack vectors against Android and improve Android Security knowledge. Job Requirements: Bachelor's degree or equivalent practical experience. 8 years of experience in security research, malware analysis, or reverse engineering. Experience coding in general-purpose languages like Python or Java. Proven leadership experience in managing security engineering teams.

As a Security Incident Response Analyst at CommBank, you will be a part of the Cyber Security team based in Bangalore-Manyata Tech Park. Your primary responsibility will be to protect the bank and customers from theft, loss, and risk events by effectively managing cyber security incidents, threats, privacy, and operational risks. Your role will involve performing cyber security incident management activities to identify, investigate, and resolve incidents as part of the Cyber Defence Operations function. You will monitor and analyze key intelligence points to ensure timely management of bank-related incidents. Additionally, you will analyze and prepare reports on incident activities for team members, stakeholders, and leadership. You will act as a subject matter expert and key point of contact, providing advice on controls, processes, and initiatives within your areas of responsibility. Collaborating with business, risk management, and compliance stakeholders will be essential to ensure compliance with Group Policies, risk standards, and obligations. As part of the Security Incident Response team, you will work on improving current processes and tools to enhance the efficiency and productivity of the team's technical capabilities. You will also be involved in defining policies, guidelines, and standards and assisting in the scoping and implementation of new processes and technology for identifying, detecting, and responding to security events. Continual research into banking cyber security threats, including malware, phishing, botnets, and other threat actor techniques and tactics, will be a key aspect of your role. You will also be expected to adhere to the Code of Conduct and promote a risk and control culture across business stakeholders. To excel in this role, you should have at least 3 years of experience in Cyber Security incident response within the financial services industry or a security consulting firm. A risk mindset, demonstrated willingness to engage in self-learning or security research outside of standard business hours, and the ability to articulate intelligence clearly are essential skills. You should possess strong communication, engagement, and stakeholder management skills, along with the ability to consult with business and technical representatives to balance security and business requirements. A growth mindset, curiosity to explore complex problems, critical thinking skills, and experience in driving productivity improvements are also desirable qualities. Ideally, you should hold a Bachelor's or Master's degree in Engineering in Computer Science/Information Technology. If you are part of the Commonwealth Bank Group, including Bankwest and x15ventures, you can apply through Sidekick to take the next step in your career. If you encounter any accessibility issues or require additional support during the application process, please contact HR Direct on 1800 989 696.,

Manage, monitor and analyze cybersecurity systems to protect Data Center Infrastructure from intrusions. Preparing reports for DIT, detailing incident severity, root causes to prevent reoccur. Manage CSOC event and information intake.

Join our dedicated team in a role where your expertise in risk assessments and cybersecurity exercises propels forward our mission of safeguarding our operations and enhancing resiliency. This position offers the unique opportunity to shape our security posture and contribute to our continuous improvement in an environment that values innovation and teamwork. As an Assessments & Exercises Senior Associate within our cybersecurity team, you will utilize industry-standard assessment methodologies and techniques to proactively identify risks and vulnerabilities in people, processes, and technology. You will collaborate with the team to design and execute risk-promoting tests and simulations, evaluate preventative controls, incident response processes, and detection capabilities. Your ability to make informed decisions and foster continuous improvement will contribute to the achievement of our team's operational goals and the mitigation of cyber and resiliency risks. Collaborate with other Assessments & Exercises team members to conduct testing and simulations such as penetration tests, technical controls assessments, cyber exercises, or resiliency simulations, and contribute to the development and refinement of assessment methodologies to ensure alignment with industry standards and regulatory requirements. Partner with subject matter experts to evaluate controls for effectiveness and impact on operational risk, as well as opportunities to automate control evaluation. Develop comprehensive assessment reports, including detailed findings, risk assessments, and remediation recommendations, and effectively communicate these insights to relevant stakeholders as you contribute to decisions that yield continuous improvement. Utilize threat intelligence and security research to stay informed about emerging threats, vulnerabilities, industry best practices, and regulations. Apply this knowledge to enhance the firm's assessment strategy. Required qualifications, capabilities, and skills: - Formal Training or Certification required on Cybersecurity or resiliency, assessments or simulation exercises and 3+ years applied experience. - Prior experience in offensive or defensive technical cybersecurity roles, focusing on solutions to reduce cybersecurity risks. - Basic coding (scripting) experience in languages such as Python, C, JavaScript, and VBScript. - Demonstrated proactivity and resourcefulness in identifying and analyzing data sources for data-driven investigations. - Knowledge or experience in cybersecurity roles and processes, including Incident Response, Threat Intelligence, Penetration Testing, and more. - Familiarity with network architecture concepts, cloud architectures, and deploying large-scale applications in enterprise environments. Preferred Qualifications, Capabilities, and Skills: - Familiar in developing both tactical and strategic tools and capabilities. - Familiar in building analytical processes, templates, and documentation. - Bachelor's Degree in Computer Science or a related field, or equivalent experience.,

Security Response Coordinator Role Overview As a Security Response Coordinator you will play a critical role in ensuring the effective management and response to security incidents within our organization You will collaborate with cross functional teams and stakeholders to develop and implement incident response plans coordinate incident investigations and drive the resolution of security incidents in a timely manner The ideal candidate will possess excellent communication skills strong problemsolving abilities and a deep understanding of security incident management Responsibilities Collaborate with key stakeholders to identify potential security threats and vulnerabilities Regularly review and refine incident response procedures based on industry best practices and lessons learned Perform initial triage and analysis of security incidents Escalate incidents to Level 2 or Level 3 as necessary Document and track incidents in the incident management system Coordinate incident response efforts Serve as the primary point of contact for all security incidents ensuring timely response and resolution Establish and maintain communication channels with internal teams and external partners to facilitate incident response activities Coordinate and lead cross functional incident response teams providing clear guidance and direction Investigate security incidents Conduct thorough investigations into security incidents including data breaches system intrusions and policy violations Collect and analyze evidence identify the root cause of incidents and provide recommendations to prevent future occurrences Document incident details actions taken and lessons learned for post incident analysis and reporting Incident escalation and reporting Assess the severity and impact of security incidents and escalate as necessary to senior management or executive leadership Prepare comprehensive incident reports and communicate findings to relevant stakeholders Provide regular updates on incident response activities metrics and key performance indicators KPIs to management Continuous improvement Stay abreast of the latest security trends emerging threats and industry best practices Contribute to the enhancement of security policies procedures and guidelines Participate in tabletop exercises drills and simulations to test and improve incident response capabilities Participate in regular training and awareness programs Requirements Bachelors degree in computer science Information Security or a related field Relevant certifications eg CISSP CISM GIAC are a plus Proven experience in security incident management preferably in a fast paced and complex environment Strong understanding of security frameworks standards and regulations eg GDPR Familiarity with incident response tools technologies and forensic techniques Excellent communication skills both written and verbal with the ability to convey complex technical concepts to nontechnical stakeholders Strong analytical and problemsolving abilities with a keen attention to detail Ethical mindset and commitment to maintaining the confidentiality integrity and availability of sensitive information

Vice President Enterprise Security Research and Solution Development (ESRD) Reports to Group VP/Chief Delivery Officer, Dotted line to CS and SA Vertical Heads Role Description ReBIT functions as a think tank for RBI for Information Technology and associated Security adoption for the planning, execution and strategic roles of RBI in Central Banking. The Cyber Security (CS) Vertical provides the next Gen services and protection in Cyber Security, Engineering and Governance for RBI. The System Audit (SA) vertical is responsible for providing technical audit support to RBIs supervision function. The Project Management function is responsible for building the platform, Enterprise applications and offer Enterprises services for various functions/ department of RBI. In order to offer relevant services and next generation products and solutions in the areas of Cyber Security which are needed for CS and SA vertical core Research in various advancements in Cyber security is needed. Based on the various tools, solutions and applications need to be developed which are state of the art, proactive, smart and AI/ML enabled. The ESRD Business Unit is formed for this purpose and VP is responsible for spearheading this function, strategizing and execution of all functions in this Business Unit. The ESRD BU will have sub COEs of Security Research in multiple domain areas with association with CS/SA COEs and formulations of AI/ML models in association with Data Science COE. The ESRD BU also will have a Core development team for developing and enhancing the solutions and products based on RBI Enterprise Platform. They will be augmented by various expert resources from various COEs/BUs of Project Management (PM) vertical. This role works closely with the teams of RBI in Department of Supervision (DOS), Department of Payment and Settlement Systems (DPSS), Department of IT (DIT) and Department of Risk Management as well as other Depts on a need basis. Mandatory qualifications Graduate degree in information systems, engineering, technology, computer science, or a related field. Masters degree in technology/management preferred Extensive experience in technology function or in technology Research and Development. Relevant experience in financial services desirable Strong understanding of application development, databases, networking, technology infrastructure and cyber security technologies. Hands-on experience in software development preferred Advanced knowledge of Technology Risk Management and cybersecurity Controls, including: Business Continuity Management Privacy and Data Protection Application Security (e.g., user entitlements, authentication, accountability) System Architecture and Design (e.g., availability, performance, scalability, data integrity) Technology Operations (e.g., change and release management, data backup and retention, capacity management) Technology Governance (e.g., technology risk management, metrics/KRIs, cybersecurity rules and regulations) Interest in broad exposure in banking domain areas - banking operations, payment systems, investment management, sales, trading, operations, risk management, finance, legal, and compliance activities in the banking industry Proficient understanding of current regulatory and industry events Experience in Building solutions and products in Cyber security and AI/ML based Enterprise products Relevant professional certifications are a plus Research Papers, Patents will be definite advantage Desired Skills 22-24 Years of relevant industry experience, of which at least 5 years as CTO/Head of Engineering / Head of R&D. A history of proven delivery of results. Excellent communication (verbal, written, listening) and interpersonal skills Ability to develop effective working relationships with peers and stakeholders Should be a team player with proven leadership qualities Intellectual and research curiosity and healthy skepticism Ability to synthesize and articulate complex ideas Critical thinking and problem-solving abilities Strong project management, organizational, and presentation skills Commitment and strong work ethic Domain: IT/ITES, Banking captive units, Banking/financial services, Cyber Security Consulting/Auditing organizations Responsibilities : Establishing ESRD as a core Business Unit within REBIT Gain respect within RBI and REBIT as Core and high performing Research unit and building Cyber security-based solutions and Products for the functions of CS, SA and PM which will enable RBI for more effective Central Banking Building a high performing team, establishing process and delivery models Key Focus Areas: NexGen Audit Tools and applications based on AI /ML Modelling Autonomous and human-less/ agentic AI /ML models for Audit SIEM enhanced log analysis with ML models Threat Hunting models / Proactive threat detections Enhancing threat attack detection with cyber kill chain patterns Critical infrastructure attack surface models NexGen Cybersecurity Mesh solutions and products Quantum based encryptions Data classification and privacy solutions Advanced end point / perimeter security Work Location: Navi Mumbai Interested Leaders can share their profile on aditya.sharma@rebit.org.in . Profiles found relevant will be reached out directly.