Security Operations Analyst

<h3 data-section-id="19rybb8" data-start="1493" data-end="1534"><span><strong data-start="1497" data-end="1532">Security Analyst (SecOps &amp; GRC)</strong></span></h3> <p data-start="1535" data-end="1589"><strong data-start="1535" data-end="1548">Location:</strong> Hyderabad (IIC) – Hybrid (3 days onsite)</p> <h3 data-section-id="1cg918x" data-start="1591" data-end="1612"><span><strong data-start="1595" data-end="1612">Role Overview</strong></span></h3> <p data-start="1613" data-end="1903">Nasuni is seeking an early-career Security Analyst to support both Security Operations (SecOps) and Governance, Risk, and Compliance (GRC) initiatives. This role provides hands-on exposure to incident detection, response, and enterprise compliance programs in a fast-paced SaaS environment.</p> <p data-start="1905" data-end="2177">You will contribute to monitoring and triaging security events, supporting audits, and maintaining risk and compliance processes. This role is ideal for individuals looking to build a strong cybersecurity foundation across both technical operations and governance domains.</p> <p data-start="2179" data-end="2357">This role is best suited for candidates who are detail-oriented, execution-focused, and eager to learn—not for those seeking immediate ownership of large-scale security programs.</p> <h3 data-section-id="92wpt5" data-start="2364" data-end="2396"><span><strong data-start="2368" data-end="2396">Level &amp; Scope Definition</strong></span></h3> <ul data-start="2397" data-end="2731"> <li data-section-id="iw6ha2" data-start="2397" data-end="2482">Executes defined security and compliance tasks with guidance from senior analysts</li> <li data-section-id="t9fry5" data-start="2483" data-end="2546">Limited decision-making authority; escalates complex issues</li> <li data-section-id="115rw7l" data-start="2547" data-end="2598">Balanced exposure across SecOps and GRC domains</li> <li data-section-id="12k1azk" data-start="2599" data-end="2670">Collaborates across Security, IT, Engineering, and Compliance teams</li> <li data-section-id="uuzr9o" data-start="2671" data-end="2731">Focus on execution, documentation, and skill development</li> </ul> <h3 data-section-id="165gfiz" data-start="2738" data-end="2766"><span><strong data-start="2742" data-end="2766">Key Responsibilities</strong></span></h3> <h4 data-start="2768" data-end="2805"><span><strong data-start="2773" data-end="2805">Security Operations (SecOps)</strong></span></h4> <ul data-start="2806" data-end="3269"> <li data-section-id="10v9fd5" data-start="2806" data-end="2902">Monitor alerts across SIEM, EDR, identity, and cloud platforms to identify potential threats</li> <li data-section-id="sxl7p8" data-start="2903" data-end="2984">Perform initial triage, investigation, and escalation using defined playbooks</li> <li data-section-id="1a5uq1b" data-start="2985" data-end="3053">Support incident response by collecting and analyzing indicators</li> <li data-section-id="6ywfxl" data-start="3054" data-end="3115">Assist in phishing and email threat analysis and response</li> <li data-section-id="1giuxwy" data-start="3116" data-end="3200">Contribute to detection tuning and SOAR-based workflow automation under guidance</li> <li data-section-id="ebzi07" data-start="3201" data-end="3269">Maintain accurate incident documentation and operational metrics</li> </ul> <h4 data-start="3271" data-end="3315"><span><strong data-start="3276" data-end="3315">Governance, Risk &amp; Compliance (GRC)</strong></span></h4> <ul data-start="3316" data-end="3644"> <li data-section-id="cou91b" data-start="3316" data-end="3399">Support audits (SOC 2, ISO 27001) through evidence collection and documentation</li> <li data-section-id="jw8gim" data-start="3400" data-end="3461">Maintain security policies, controls, and audit artifacts</li> <li data-section-id="1mv9eo0" data-start="3462" data-end="3520">Assist with risk assessments and risk register updates</li> <li data-section-id="vnwr0m" data-start="3521" data-end="3582">Support third-party risk reviews and remediation tracking</li> <li data-section-id="1ibndi1" data-start="3583" data-end="3644">Track and document compliance gaps and corrective actions</li> </ul> <h4 data-start="3646" data-end="3685"><span><strong data-start="3651" data-end="3685">Security Awareness &amp; Reporting</strong></span></h4> <ul data-start="3686" data-end="3863"> <li data-section-id="exybz4" data-start="3686" data-end="3742">Support phishing simulations and awareness campaigns</li> <li data-section-id="178jhdj" data-start="3743" data-end="3792">Track participation and analyze effectiveness</li> <li data-section-id="1orzeqs" data-start="3793" data-end="3863">Assist in reporting metrics for security operations and compliance</li> </ul> <h4 data-start="3865" data-end="3902"><span><strong data-start="3870" data-end="3902">AI &amp; Automation Contribution</strong></span></h4> <ul data-start="3903" data-end="4165"> <li data-section-id="1iumujd" data-start="3903" data-end="4000">Assist in leveraging AI-driven security tools (e.g., alert enrichment, triage prioritization)</li> <li data-section-id="j5t0sw" data-start="4001" data-end="4077">Support automation of repetitive workflows using SOAR or scripting tools</li> <li data-section-id="ai4s7v" data-start="4078" data-end="4165">Validate AI-generated insights under supervision to ensure accuracy and reliability</li> </ul> <h3 data-section-id="15diiqs" data-start="4172" data-end="4194"><span><strong data-start="4176" data-end="4194">Qualifications</strong></span></h3> <h4 data-start="4196" data-end="4214"><span><strong data-start="4201" data-end="4214">Must-Have</strong></span></h4> <ul data-start="4215" data-end="4550"> <li data-section-id="iqzsf1" data-start="4215" data-end="4283">1–3 years of experience in cybersecurity, IT, or risk/compliance</li> <li data-section-id="1qxtohk" data-start="4284" data-end="4366">Foundational understanding of security operations and/or compliance frameworks</li> <li data-section-id="1g8xlu8" data-start="4367" data-end="4417">Exposure to SIEM, EDR, or cloud security tools</li> <li data-section-id="3yau0u" data-start="4418" data-end="4481">Strong analytical, organizational, and documentation skills</li> <li data-section-id="e63b2g" data-start="4482" data-end="4550">Ability to follow structured processes and manage multiple tasks</li> </ul> <h4 data-start="4552" data-end="4570"><span><strong data-start="4557" data-end="4570">Preferred</strong></span></h4> <ul data-start="4571" data-end="4777"> <li data-section-id="43wigu" data-start="4571" data-end="4623">Exposure to SOC 2, ISO 27001, or NIST frameworks</li> <li data-section-id="1f8sx2k" data-start="4624" data-end="4679">Familiarity with GRC platforms (e.g., Vanta, Drata)</li> <li data-section-id="jhofnw" data-start="4680" data-end="4737">Basic cloud and identity knowledge (AWS, Azure, M365)</li> <li data-section-id="1uozvot" data-start="4738" data-end="4777">Exposure to scripting or automation</li> </ul> <h4 data-start="4779" data-end="4793"><span><strong data-start="4784" data-end="4793">Ideal</strong></span></h4> <ul data-start="4794" data-end="4980"> <li data-section-id="1r5i3ua" data-start="4794" data-end="4854">Hands-on experience triaging alerts or supporting audits</li> <li data-section-id="x8z9t" data-start="4855" data-end="4930">Experience contributing to detection tuning or compliance documentation</li> <li data-section-id="m0mcao" data-start="4931" data-end="4980">Certifications (Security+, CySA+, or similar)</li> </ul> <h3 data-section-id="qju0sf" data-start="4987" data-end="5016"><span><strong data-start="4991" data-end="5016">Experience Guidelines</strong></span></h3> <ul data-start="5017" data-end="5176"> <li data-section-id="vhyyjd" data-start="5017" data-end="5047">1–3 years total experience</li> <li data-section-id="1py7b4g" data-start="5048" data-end="5112">Internship or academic lab experience acceptable if hands-on</li> <li data-section-id="1watnpn" data-start="5113" data-end="5176">Depth in either SecOps or GRC acceptable; both not required</li> </ul> <h2 data-section-id="1uiny2x" data-start="5183" data-end="5229">🌍 About Nasuni &amp; Why Work Here (Hyderabad)</h2> <p data-start="5231" data-end="5524">Nasuni is the unstructured data foundation for enterprise teams—and the AI that supports them. As a Vista-backed SaaS data infrastructure company, we help organizations manage, protect, and activate massive volumes of file data, making it secure, accessible, and AI-ready for modern workflows.</p> <p data-start="5526" data-end="6004">Our Hyderabad team operates at the intersection of cloud, AI, and enterprise data infrastructure. Backed by Vista Equity Partners, you’ll gain exposure to a global ecosystem of technology leaders while working in a fast-paced, high-growth environment. You’ll collaborate with experienced engineers and security professionals, contribute to modern security and compliance programs, and build foundational skills in one of the most critical domains in enterprise technology today.</p> <p data-start="5526" data-end="6004">&nbsp;</p> <p><em>To all recruitment agencies: Nasuni does not accept agency resumes. Please do not forward resumes to our job boards, Nasuni employees, or any other company location. Nasuni is not responsible for any fees related to unsolicited resumes.</em></p> <p><em>Nasuni is proud to be an equal opportunity employer. We are committed to fostering a diverse, inclusive, and respectful workplace where every team member can thrive. All qualified applicants will receive consideration for employment without regard to race, religion, caste, color, sex, gender identity or expression, sexual orientation, disability, age, national origin, or any other status protected by applicable laws in India or the country of employment.&nbsp;We celebrate individuality and are committed to building a workplace that reflects the diversity of the communities we serve. If you require accommodation during the recruitment process, please let us know.</em></p> <p>&nbsp;</p><div class="content-conclusion"><p class="p1"><em>This privacy notice relates to information collected (whether online or offline) by Nasuni&nbsp;Corporation and our corporate affiliates (collectively, “Nasuni”) from or about you in your&nbsp;capacity as a Nasuni employee, independent contractor/service provider or as an&nbsp;applicant for an employment or contractor relationship with Nasuni.&nbsp;</em></p></div>