About Persistent
We are an AI-led, platform-driven Digital Engineering and Enterprise Modernization partner, combining deep technical expertise and industry experience to help our clients anticipate what's next. Our offerings and proven solutions create a unique competitive advantage for our clients by giving them the power to see beyond and rise above. We work with many industry-leading organizations across the world, including 20 Fortune 50 companies and 4 of the 5 top banks in both the US and India, and numerous innovators across the healthcare ecosystem.
Our disruptor's mindset, commitment to client success, and agility to thrive in the dynamic environment have enabled us to sustain our growth momentum. Persistent has been recognized across top industry platforms for innovation, leadership, and inclusion. We reported $1,654.4M FY26 revenue with 17.4% Y-o-Y growth. We have delivered 24 sequential quarters of growth with $436.0M in Q4 FY26 revenue, up 3.2% Q-o-Q and 16.2% Y-o-Y growth. Our 27,500+ global team members, located in 18 countries, have been instrumental in helping the market leaders transform their industries. We have been recognized as the Fastest Growing IT Services Brand Globally in the 2026 Brand Finance IT Services 25 Report. We named a Leader in the Everest Group Private Equity (PE) Services PEAK Matrix® Assessment 2026 and Software Product Engineering PEAK Matrix® Assessment 2026.
About Position
Responsibilities:Security Operations Incident ResponseLead and coordinate detection, investigation, and response to security incidents (including P1/P2 events)Act as incident handler and support root cause analysis and post-incident reviewsEnsure proper triage, containment, eradication, and recovery activitiesCollaborate with external SOC providers and ensure effective escalation and responseThre
Role: Security Analyst
Location: Bengaluru
Experience: Between 5 to 8 Years
Job Type: Full Time Employment
What You'll Do
- Security Operations Incident Response
- Lead and coordinate detection, investigation, and response to security incidents (including P1/P2 events)
- Act as incident handler and support root cause analysis and post-incident reviews
- Ensure proper triage, containment, eradication, and recovery activities
- Collaborate with external SOC providers and ensure effective escalation and response
- Threat Detection Monitoring
- Develop, tune, and improve detection use cases across SIEM, EDR/XDR, and cloud platforms
- Analyse security events and logs to identify suspicious activity and emerging threats
- Reduce false positives and improve detection quality and coverage
- Contribute to threat hunting and proactive detection initiatives
- Vulnerability Management
- Coordinate vulnerability scanning activities across infrastructure, cloud, and endpoints
- Support prioritization and tracking of remediation activities
- Validate remediation effectiveness and risk reduction
- Align vulnerability management with business risk and operational constraints
- Security Tooling Platforms
- Manage and optimize security tools (SIEM, EDR, vulnerability scanners, email/web security, etc.)
- Support integration of new security technologies and automation (SOAR where applicable)
- Ensure proper logging, monitoring coverage, and visibility across environments
- Security Testing Validation
- Coordinate and lead internal and external penetration testing activities (web, API, infrastructure)
- Support or perform technical security testing where applicable
- Ensure findings are tracked, prioritized, and remediated
- Conduct security assessments and configuration reviews
- Continuous Improvement Governance Support
- Develop and maintain SOC playbooks, procedures, and operational documentation
- Contribute to security metrics, reporting, and maturity improvements
- Support audit activities and evidence collection for operational controls
- Ensure alignment with security policies, standards, and frameworks (ISO 27001, NIST, CIS)
- Collaboration Leadership
- Provide technical guidance and mentorship to Security Analysts
- Act as a key point of contact for security operations topics across IT, Cloud, and Product teams
- Support cross-functional initiatives to improve overall security posture
- Stay updated on emerging threats, vulnerabilities, and industry best practices
Expertise You'll Bring
- Required4-7+ years of experience in cybersecurity, preferably in Security Operations / Blue Team
- Strong experience with SIEM, EDR/XDR, and security monitoring tools
- Hands-on experience in incident response and investigation
- Experience with vulnerability management tools (e.g., Nessus, Qualys, Rapid7)
- Good understanding of cloud security principles (Azure/AWS)
- Knowledge of networking fundamentals and common attack techniques
- Familiarity with security frameworks (ISO 27001, NIST, MITRE ATTCK, CIS Controls)
- Strong analytical, problem-solving, and communication skills
- Ability to operate in on-call rotation (if applicable)
- Preferred
- Experience with detection engineering and SIEM rule tuning
- Experience with SOAR and automation
- Exposure to penetration testing or security assessments
- Basic scripting skills (Python, PowerShell, Bash)
- Knowledge of web and API security (OWASP Top 10)
- Security certifications (e.g., Security+, CEH, or similar)
Education: Bachelor's or Master's degree in Computer Science, Engineering, or a related field.
Benefits
- Competitive salary and benefits package
- Culture focused on talent development with quarterly growth opportunities and company-sponsored higher education and certifications
- Opportunity to work with cutting-edge technologies
- Employee engagement initiatives such as project parties, flexible work hours, and Long Service awards
- Annual health check-ups
- Insurance coverage: group term life, personal accident, and Mediclaim hospitalization for self, spouse, two children, and parents
Values-Driven, People-Centric & Inclusive Work Environment
Persistent is dedicated to fostering diversity and inclusion in the workplace. We invite applications from all qualified individuals, including those with disabilities, and regardless of gender or gender preference. We welcome diverse candidates from all backgrounds.
- We support hybrid work and flexible hours to fit diverse lifestyles.
- Our office is accessibility-friendly, with ergonomic setups and assistive technologies to support employees with physical disabilities.
- If you are a person with disabilities and have specific requirements, please inform us during the application process or at any time during your employment
Let's unleash your full potential at Persistent - persistent.com/careers
Persistent is an Equal Opportunity Employer and prohibits discrimination and harassment of any kind.
Incident Response & Threat Detection,SIEM / EDR / Security Operations,Vulnerability Management
