We are seeking a highly motivated Corporate Security Analyst II to join our team in Bengaluru, India. This is a strategic engineering and governance role focused on hands-on risk reduction across endpoints, identities, SaaS platforms, and third-party vendors.
You will act as an individual contributor and subject matter expert, partnering with IT, Legal, and Engineering to design and enforce security controls that balance risk with business velocity. Do note that this is not a SOC role.
Key ResponsibilitiesEndpoint & SaaS Security Operations
- Lead the security oversight for corporate endpoints and SaaS applications, ensuring robust configuration of EDR/XDR, MDM, DLP, and device encryption.
- Manage Shadow IT discovery and conduct periodic risk reviews of applications. Partner with IT Operations to resolve alerts, misconfigurations, and policy gaps.
Identity & Access Management (IAM) Governance
- Drive enterprise IAM security, including the oversight of Joiner/Mover/Leaver (JML) processes and high-risk access exception reviews.
- Enforce least-privilege principles, MFA, SSO, and device trust configurations. Assist in access reviews and support Privileged Access Management (PAM) initiatives.
Vulnerability Management
- Own the vulnerability management lifecycle for corporate endpoints and internal business systems. Triage and prioritize vulnerabilities.
- Collaborate to track remediation efforts and validate closure.
Vendor/3rd Party Risk Management
- Execute end-to-end vendor security assessments for onboarding and periodic reviews.
- Analyze SOC 2 reports, security questionnaires, and identify third-party risks.
- Cross Collaborate with Procurement, Legal, and GRC teams.
Qualifications
Required Skills & Experience
- Education: Bachelor’s in Computer Science, Electronics, Cybersecurity or related field.
- Experience: 2+ years of information security experience with significant exposure to corporate security environments.
- Technical Stack: Hands-on proficiency with any Endpoint security (e.g. CrowdStrike, SentinelOne, Cortex), IAM (e.g. Okta, Onelogin, Entra ID), DLP (e.g. Symantec, Forcepoint, ProofPoint), Cloud Security Posture Management (CSPM) tooling (e.g. Orca, Wiz, Dome9) OR any other market leading security tooling/s.
- Frameworks: Solid working knowledge of industry frameworks such as NIST CSF, ISO 27001, and CIS Controls.
- Communication: Excellent ability to translate complex technical risks into clear, actionable advice for technical and non-technical stakeholders.
Developer and Automation Mindset: Has at least an intermediate level of knowledge in scripting and/or in any high level programming language. Familiar with the usage of AI programming tools such as Cursor, Cline, Copilot, etc.
Preferred (Bonus) Skills
- Education: Master's degree in Computer Science or Information Security.
- Modern Tooling: Experience with modern security engineering and automation tools (e.g. Splunk, Datadog, Torq, Reco.AI).
- AI Implementation: Interest or experience in leveraging AI tools for threat detection and operational efficiency.
- GRC Platforms: Familiarity with ServiceNow GRC, OneTrust, or similar governance platforms.
Certifications: Professional certifications such as CISSP, CISM, Security+, Network+, Cloud Security Certifications, or CCSP is a plus.
What you'll need to thrive (Requirements)
AI at Toast
At Toast, one of our company values is that we're hungry to build and learn. We believe learning new AI tools empowers us to build for our customers faster, more independently, and with higher quality. We provide these tools across all disciplines, from Engineering and Product to Sales and Support, and are inspired by how our Toasters are already driving real value with them. The people who thrive here are those who embrace changes that let us build more for our customers; it’s a core part of our culture.
Our Total Rewards Philosophy
We strive to provide competitive compensation and benefits programs that help to attract, retain, and motivate the best and brightest people in our industry. Our total rewards package goes beyond great earnings potential and provides the means to a healthy lifestyle with the flexibility to meet Toasters’ changing needs. Learn more about our benefits at https://careers.toasttab.com/toast-benefits.
How Toast Uses AI in its Hiring Process
Throughout the hiring process, our goal is to get to know you. We use AI tools to support our recruiters and interviewers with tasks like note-taking, summarization, and documentation of interviews to ensure they can be fully focused on your conversation. All hiring decisions are made by people.
Diversity, Equity, and Inclusion is Baked into our Recipe for Success
At Toast, our employees are our secret ingredient—when they thrive, we thrive. The restaurant industry is one of the most diverse, and we embrace that diversity with authenticity, inclusivity, respect, and humility. By embedding these principles into our culture and design, we create equitable opportunities for all and raise the bar in delivering exceptional experiences.
We Thrive Together
We embrace a hybrid work model that fosters in-person collaboration while valuing individual needs. Our goal is to build a strong culture of connection as we work together to empower the restaurant community. To learn more about how we work globally and regionally, check out: https://careers.toasttab.com/locations-toast.
Apply today!
Toast is committed to creating an accessible and inclusive hiring process. As part of this commitment, we strive to provide reasonable accommodations for persons with disabilities to enable them to access the hiring process. If you need an accommodation to access the job application or interview process, please contact [email protected].
------
For roles in the United States, it is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.
