Senior Security Analyst

NextDynamix Tech Pvt Ltd
Bangalore City, Bengaluru, Karnataka

Quick apply

Job details

Full-time
Up to ₹20,00,000 a year
8 days ago

Benefits

Internet reimbursement
Provident Fund
Leave encashment
Flexible schedule
Paid sick time

Qualifications

Jira
Microsoft Access
Azure
Regulatory reporting
CISSP
English
Information security
CISM
AWS
Analysis skills
Confluence
NIST standards
Security
ServiceNow
ISO 27001
SIEM
Cybersecurity
CompTIA Security+
Intune
Identity & access management

Full job description

The Security Analyst is a critical member of the NextDynamix Information Security team, responsible for monitoring, detecting, and responding to security threats across our cloud, on-premise, and hybrid environments. This role drives day-to-day security operations, supports governance and compliance activities, and contributes to building a robust cyber resilience posture across the organization.

The ideal candidate is a hands-on security professional with strong SIEM/SOC experience, Microsoft security stack expertise, and a proactive approach to risk management. This is a full-time, work-fromoffice role based in Bangalore.

Key Responsibilities

1. Security Operations & Monitoring

Monitor and investigate security alerts, suspicious activity, and incidents across cloud, endpoint, network, and SaaS platforms.
Operate and maintain SIEM platforms such as Microsoft Sentinel – including rule tuning, alert management, and dashboarding.
Perform threat detection, log analysis, incident triage, and escalation activities.
Coordinate with Managed Detection & Response (MDR) providers and external security vendors.
Support vulnerability management including scanning, remediation tracking, and executive reporting.
Maintain endpoint security solutions: antivirus, EDR/XDR, and email security controls.

2. Security Testing & Assurance

Conduct regular cybersecurity assurance activities including:
◦ Security drills and simulated cyber incident exercises
◦ Tabletop exercises involving technical and business stakeholders
◦ Backup and recovery testing
◦ Disaster recovery validation
◦ Security control effectiveness reviews
Perform regular review and analysis of security logs, privileged access, authentication anomalies, and email/phishing events.
Validate backup integrity, restoration capability, and recovery time/point objectives (RTO/RPO).
Assist in developing and documenting incident response playbooks and testing procedures.
Maintain evidence and reporting associated with security monitoring, drills, testing, and compliance activities.

3. Incident Response & Risk Management

Lead and participate in cybersecurity incident response: containment, investigation, recovery, and post-mortem.
Assist with data breach assessments and regulatory reporting obligations including Australian Notifiable Data Breach (NDB) scheme requirements.
Support cyber risk assessments and maintain the organization's IT risk register.
Identify security gaps and recommend remediation strategies aligned with organizational risk appetite.
Contribute to business continuity and disaster recovery planning.

4. Cloud & Identity Security

Administer and monitor security across Microsoft Entra ID, Microsoft Intune, Microsoft Defender for Endpoint, and Microsoft 365.
Implement and manage Conditional Access policies, MFA, privileged access controls, and identity governance.
Support secure configuration and monitoring of SaaS and cloud environments (Azure / AWS).

5. Governance, Compliance & Documentation

Maintain cybersecurity policies, procedures, standards, and technical documentation.
Support compliance activities aligned with NIST Cybersecurity Framework, ACSC Essential Eight,

ISO 27001, and relevant Australian privacy and regulatory obligations.

Participate in internal and external audits, compliance reviews, and risk assessments.
Assist with vendor and third-party security assessments.

6. User Awareness & Collaboration

Drive cybersecurity awareness and phishing simulation programs for employees.
Provide security guidance to IT teams and end users.
Collaborate cross-functionally with infrastructure, DevOps, service desk, and business teams to improve security maturity.

Required Qualifications & Experience

Must Have

7+ years of hands-on experience in cybersecurity, SOC, IT security, or infrastructure roles.
Proven expertise with Microsoft Security stack: Microsoft Sentinel, Microsoft Defender (for Endpoint / 365 / Identity), Microsoft Entra ID.
Strong knowledge of SIEM/SOC operations, incident response processes, and vulnerability management.
Understanding of Identity & Access Management (IAM), MFA, Conditional Access, and PAM.
Familiarity with cybersecurity governance frameworks: NIST CSF, ISO 27001, CIS Controls.
Knowledge of cybersecurity governance frameworks including NIST CSF, ACSC Essential Eight, and ISO 27001.
Strong analytical, troubleshooting, and security documentation skills.
Ability to communicate effectively with technical and non-technical stakeholders, including leadership.

Good to Have

Experience with Sophos MDR, Microsoft Purview, or similar security platforms.
Familiarity with ITSM tools: Jira, Confluence, ServiceNow.
Experience in conducting tabletop exercises, backup restoration testing, and incident simulations.
Experience with vulnerability scanning tools and email security platforms.
Experience in healthcare, government, or regulated industry environments.

Preferred Certifications

CompTIA Security+
Microsoft SC-200 (Security Operations Analyst) / SC-900 / AZ-500
CISSP
CISM

Pay: Up to ₹2,000,000.00 per year

Benefits:

Flexible schedule
Internet reimbursement
Leave encashment
Paid sick time
Provident Fund

Application Question(s):

Availability to join / current NP ?

Experience:

Cybersecurity: 7 years (Required)
Microsoft Security stack: 7 years (Required)

Language:

FLUENT ENGLISH (Required)

Location:

Bangalore City, Bengaluru, Karnataka (Required)

Work Location: In person

Quick apply

Jobseeker tools

Employer Tools

Browse

Stay Connected