Information Security Analyst

Job Description

Where you’ll work: India (Remote) / Bangalore
 

Security at GoTo

At GoTo, security is at the core of empowering businesses in a 'work anywhere, secure everywhere' world. By embedding security and privacy into our processes by design and by default, we prioritize safeguarding business assets, customer data, and employee information—without compromising usability. In an Incident Response role, our focus is on enabling rapid threat detection, effective mitigation, and maintaining organizational resilience in an ever-evolving threat landscape.

Your Day to Day

• Serve as a frontline team member in a fast-paced security environment by actively monitoring security alerts, analyzing dashboards, and triaging incoming security reports.

• Analyze logs from various systems (firewalls, servers, endpoints, etc.) to detect unusual patterns, and escalate confirmed or complex incidents to senior analysts.

• Accurately document all actions taken, observations made, and conclusions drawn during investigations within the incident management system.

• Collaborate with senior team members by providing support during critical incident investigations.

• Provide feedback and insights to evaluate the effectiveness of existing controls and identify potential new threat vectors.

• Stay informed on emerging threats, vulnerabilities, and attack patterns to strengthen monitoring capabilities.

• Participate in lessons-learned reviews from true-positive incidents, identifying security gaps or areas for improvement, and share findings with senior analysts to enhance operational processes.

• Assist senior analysts with projects aimed at improving the effectiveness, efficiency, and overall performance of SOC tools, workflows, and procedures.

What we are looking for

• 2 to 5 years of relevant experience in the Information Security domain.

• Solid foundation in networking fundamentals, with a deep understanding of TCP/IP and other core protocols. 

• Solid foundation in core Cloud Security domains with a good understanding of Cloud Security best Practices.

• Good knowledge on Identity Domains including, Active Directory/Entra ID and Cloud IAM services.

• Experience working on enterprise intrusion analysis, SIEM, and incident response.

• Understanding of Windows and Linux operating systems, and command-line tools. Basic Knowledge of Forensics methods and tools for investigations.

• Expertise in analyzing logs from various security devices and web servers to detect patterns and anomalies. Also, experience doing packet captures and interpreting network traffic (e.g., tcpdump, Wireshark).

• Knowledge of attack vectors, threat tactics, kill chain, and attacker techniques is a plus.

• Interpersonal skills sufficient to work with both technical and non-technical personnel at various levels in the organization.

• Ability to elicit and communicate technical and non-technical information clearly and concisely.

• An open mind, willingness to be challenged, and strong desire to learn.

• Should be flexible to work during different shifts and possibly weekends.

You’ll be collaborating with an open-minded and cohesive team, working together toward a shared goal that is greater than the sum of its parts. At GoTo, we are deeply committed to fostering a diverse and inclusive work environment because we believe that unique perspectives make us a stronger and more innovative company—Stronger Together. We are dedicated to building a space where everyone feels included and supported, regardless of background or identity. This is how we live our values: Be Real, Think Big, Move Fast, and Keep Growing, every step of the way