Job Overview
Location
Bangalore
Job Type
Full-time
Category
Data Science
Date Posted
May 21, 2026
Full Job Description
đź“‹ Description
- • Perform technical analysis of data security incidents to identify potential insider threats and investigate endpoint forensic events.
- • Analyze event data from Cyberhaven’s Data Detection and Response (DDR) platform to refine policies, improve incident alerts, and highlight areas of data loss risk.
- • Refine and manage datasets and DLP policies in alignment with evolving customer data risk strategies and business requirements.
- • Eliminate noise and false positives from analytic results to increase the accuracy and reliability of threat detection.
- • Conduct forensic investigations on individuals, groups, and unauthorized data egress destinations as requested by customers or internal teams.
- • Provide actionable insights into Data Loss Prevention (DLP) analytics and related operational issues.
- • Prepare and present clear summaries, reports, and findings to internal team members and stakeholders.
- • Collaborate globally with cross-functional teams to deliver customer-centric incident response and mitigation solutions.
- • Utilize SQL for data analysis, dashboard creation, and reporting on security events and risk trends.
- • Edit and maintain XML-based DLP rules to align with organizational security policies and compliance needs.
- • Script and leverage APIs to automate data extraction, analysis, and response workflows.
- • Apply endpoint protection best practices and incident mitigation workflows across diverse environments.
- • Monitor and evaluate sensitive data handling controls across DLP, Insider Threat, and CASB platforms.
- • Support the growth of Cyberhaven’s Professional Services and Managed Services functions through hands-on customer incident analysis.
- • Engage with emerging cloud security technologies and maintain proficiency across macOS, Linux, Windows, and major cloud platforms (AWS, GCP, Azure).
- • Maintain a customer-first mindset while driving improvements in detection accuracy and response efficiency.
- • Work in a dynamic, AI-enabled security environment focused on data lineage analysis to uncover behavioral risks across billions of workflows.
- • Contribute to a team led by industry veterans from CrowdStrike, Palo Alto Networks, Meta, and Google, shaping the future of next-generation data protection.
🎯 Requirements
- • 2–5 years of experience with data protection or adjacent security tools (EDR, SIEM, SOAR)
- • 2+ years of experience in Insider Threat or InfoSec
- • Experience with DLP, Insider Threat, CASB, and controls for handling sensitive data
- • Comfortable working across macOS, Linux, Windows, and cloud platforms (AWS, GCP, Azure)
- • Proficiency in SQL for data analysis, dashboard building, and reporting
- • Ability to edit XML-based DLP rules and script using APIs
🏖️ Benefits
- • Opportunity to join a fast-growing company backed by $250M from leading investors including Khosla and Redpoint
- • Work alongside industry leaders who built technologies at CrowdStrike, Palo Alto Networks, Meta, and Google
- • Shape the future of AI-enabled data security with cutting-edge data lineage technology
- • Collaborate in a global, diverse, and inclusive environment as an equal opportunity employer
Skills & Technologies
About Cyberhaven Inc.
Cyberhaven Inc. provides data detection and response (DDR) software that traces the lineage of sensitive enterprise data across endpoints, cloud, email and SaaS apps. The platform maps how files flow through an organization, monitors real-time usage and prevents or remediates unauthorized sharing, exfiltration or ransomware encryption. Built on graph analytics and lightweight sensors, it classifies intellectual property, PII and regulated content without predefined rules, enforcing least-privilege policies and accelerating incident investigation for security teams in large, regulated industries.
Subscribe to the weekly newsletter for similar remote roles and curated hiring updates.
Newsletter
Weekly remote jobs and featured talent.
No spam. Only curated remote roles and product updates. You can unsubscribe anytime.
Similar Opportunities
Highmark Health
2 months ago
Devoted Health, Inc.
2 months ago