Sr. Security Automation Engineer

Vista Equity Partners is a leading global investment firm focused exclusively on enterprise software data and technology-enabled businesses. Withover$100B in assets under managementand a portfolio of90 companies worldwide Vista acceleratesgrowth through operationalexcellencesharedexpertise and India Vistas presence continues to expand with45 portfolio companiesemploying more than17000 professionalsacross technology product customer success and operations reinforcing Indias strategic role as ahubof innovation and talent within the Vistaecosystem.

Through its Agentic AI Factory Vista is embedding Generative AI across its global portfolio enabling companies to integrate intelligent responsible AI into products operations and decision-making. This initiative is strengthened through portfolio-wide learning programs leadership workshops and AI hackathons that foster innovation build fluency and accelerate practical AI adoption across teams.

Critical Start a Vista-backed companyis on a mission to stop breaches simplify security and shape the future of cyber defense. We deliver 24x7 AI-accelerated human-validated detection investigation and response across IT and OT helping organizations outpace evolving threats with faster response and measurable risk reduction.

Innovation isnt just a buzzword here;itsour DNA. We pioneered the first MOBILESOC app for on-the-go detection and response infused AI into automated alert resolution toeliminatenoise and slashed investigation time by an astounding 99.3%.Weretransforming how security teams work and you could be a part of it. From AI-assisted triage to analyst copilots that elevate humanexpertise we combine machine intelligence with human judgment to deliveroutcomesourcustomerstrust.

Ifyourelooking for a high-trust high-impact team where your ideas are amplified by AI and valued by colleagues and customers alike Critical Start is the place for you. Come build the future of cybersecurity with us.

With Vistas investment and strategic guidance we combine the agility of a growth-stage company with the scale stability and career opportunities of a global technology network. Our teams are empowered to innovate collaborate and build meaningful solutions that drive measurable outcomes for customers worldwide.

Our Employee Value Proposition (EVP)

At Critical StartTechnologies Private Ltd.our people are our greatest advantage andwe empower our team to make a real impact by transforming how the world defends against cyber threats. Our employeevalue proposition reflects what we stand for and the experience we create for every team member:

• Purpose-Driven Mission
  Join a team united by a clear and inspiring purpose: to stop breaches simplify security and shape the future of cyber defense. Every role directly contributes to protecting organizations and strengthening global resilience.
  

• Innovation at the Core
  Innovation is in our DNA. From pioneering the first MOBILESOC app toleveragingAI to reduce investigation time by 99.3% we continuously push boundaries. Team memberscanwork withcutting-edgetechnologies that redefinewhatspossible in cybersecurity.
  

• Human AI Collaboration
  We combine the best of machine intelligence and human judgment to deliver trusted outcomes.Youllwork in an environment where AI elevatesexpertisethrough AI-assisted triage automated alert resolution and analyst copilotsempowering you to focus on high-impact work.
  

• High-Trust High-Impact Culture
  We thrive on collaboration transparency and shared success. Your ideas are valued your growth is supported and your contributions drive meaningful results. This is a place where your work truly matters.

Together these pillars define what it means to work at Critical Start a place where you cando the most meaningful work of your career supported by Vistas global ecosystem.Vistas ecosystemenablespurposeful career mobility and sustained professional growth. Employeesbenefitfrom the ability to build diverse experiences collaborate with high-performing peers across portfolio companies and progress into new roles within a global network of leading enterprise software organizations. This shared talent environment strengthens capabilities broadens perspective and supports long-term career development across the Vista portfolio.

Joinusandletsbuild the future of cybersecuritytogether!Wantto hear from our team Watchthese videosto gain insights into life at Critical Start or check out our Glassdoor reviews for an inside look.

We are seeking a Sr. Security Automation Engineer to join the Critical Start Technologies Private Ltd. team operating under the Critical Start umbrella for our India operations.

The ideal candidate is a security engineer who moves fluidly between strategy and execution equally comfortable designing an automation architecture and building it. You bring 5-8 years of hands-on experience in security engineering detection engineering threat hunting and automation with a sharp focus on orchestration and integrations. Youve built automation playbooks and custom integrations from the ground up using APIs scripting and modern programming frameworks and you know the difference between automation that holds up in production and automation that doesnt. Python is your go-to; PowerShell or BASH in your back pocket. You understand REST APIs JSON and webhooks not just conceptually but as daily tools.

Youre well-versed in SIEM platforms Sentinel Splunk Sumo Logic and know how to use them for log correlation enrichment and automated response. Youve worked across cloud environments (Azure AWS GCP) and have a solid grasp of cloud security automation principles. Infrastructure-as-Code concepts like Terraform and Ansible are familiar territory and you understand how they connect to CI/CD pipelines for scalable security deployments. AI/ML in cybersecurity isnt a buzzword to you youve applied it to real detection workflows enrichment pipelines and analytics problems.

Beyond the technical depth youre a clear communicator and a strong collaborator. You know how to bring cross-functional teams along and youre motivated by driving real innovation not just maintaining the status quo.

This role is designated as a hybridposition. You are required to have a reliable high-speed internet connection the ability to participate in video meetings and a dedicated home office or private workspace suitable for professional work. As the position involves collaboration with U.S.-based teams and clients you will be expected to work during overlapping hours with U.S. business hours as guided by your manager.

In this role you will be responsible for driving impact by contributing to our Security Engineeringfunction. Youll collaborate with cross-functional teams apply yourexpertiseto real-world challenges and deliver solutions that improve outcomes for customers worldwide. Your day-to-day will include:

• Architect implement and maintain Security Orchestration Automation and Response (SOAR) solutions developing custom automation playbooks scripts and integrations across SIEM EDR ITP DLP IAM and cloud environments to optimize and scale cybersecurity operations.
• Leverage AI and ML technologies to improve event correlation detection accuracy and decision-making efficiency within the SOC ecosystem integrating automation pipelines with SIEM platforms (e.g. Splunk Sumo Logic) to enrich alerts and reduce false positives.
• Design and maintain REST API-based integrations between security IT and business systems and develop automation scripts using Python PowerShell or Bash to streamline investigation and remediation tasks.
• Collaborate with SOC Incident Response and Threat Hunting teams to identify repetitive processes and automate triage containment and recovery workflows.
• Partner with IT Engineering and Cloud Operations teams to integrate automated security controls into CI/CD and DevOps pipelines.
• Create dashboards metrics and reporting mechanisms to measure automation efficiency performance and operational outcomes.
• Maintain and document playbooks workflows and standard operating procedures (SOPs) to ensure repeatability quality and compliance while providing technical mentorship to promote automation-first practices across security teams.
• Collaborate with Security Engineering leadership to align automation initiatives with the organizations global cybersecurity strategy and evaluate emerging AI-driven and cloud-native security automation technologies.

Were seeking a candidate who brings passion curiosity and a drive for excellence. The ideal profile includes:

Required Qualifications:

• 58 years of experience in security engineering detection engineering threat hunting and automation with a focus on orchestration and integrations.
• Hands-on experience developing automation playbooks and custom integrations using APIs scripting and modern programming frameworks.
• Strong understanding of AI/ML technologies applied in cybersecurity analytics enrichment and detection workflows.
• Experience with SIEM systems (e.g. Sentinel Splunk Sumo Logic) for log correlation enrichment and automated response capabilities.
• Proficiency in Python (preferred) with additional experience in PowerShell or BASH is beneficial.
• Deep understanding of REST APIs JSON and webhooks for security data exchange and automation workflows.
• Solid grasp of cloud security automation principles across Azure AWS and GCP environments.
• Familiarity with Infrastructure-as-Code concepts (Terraform Ansible) and CI/CD integrations for scalable security deployments.
• Excellent problem-solving communication and collaboration skills with the ability to drive innovation and cross-functional alignment.

Desired Qualifications:

• Bachelors degree in Cybersecurity Computer Science or a related technical field (or equivalent experience).
• Certifications such as GIAC Security Automation Engineer (GSAE) GIAC Cloud Security Automation (GCSA) or Splunk SOAR Certified Automation Developer.
• Experience developing and maintaining event enrichment pipelines and automated detection validation workflows.
• Knowledge of security frameworks and methodologies such as MITRE ATT&CK NIST and zero-trust architecture principles.
• Experience integrating automation and orchestration solutions into enterprise SIEM SOAR and endpoint security ecosystems.
• Strong understanding of metrics-driven performance management for security automation programs.

JoiningCritical Start Technologies Private toa mission-driven teamwhile being part of thebroader Vista portfolio the opportunity to innovate grow your career and help share the future of Critical Start in India while staying connected to peers and leaders across Vistas global network. We offer a dynamic supportive and engaging work environment where meaningful work and a relaxed comfortable culture go hand in hand!

Be part of something bigger. Build your career withCritical Start.

What does our Compensation and Benefits package entail

• Competitive salary
• Statuary PTO (Paid Time Off) policy
• Depending on the role you may work in the office remotely or adopt a hybrid work model.

We prioritize your privacy and security. Please note that Critical Start will never request financial information or sensitive personal data during the interview process. If you encounter any suspicious requests do not respond and contact us directly at Thank you for helping us maintain a safe and trustworthy hiring experience.

Critical Start welcomes people from all backgrounds and walks of life. One of our core values is to Do whats best for our employees and that starts with the hiring process by finding the best candidates and providing an environment that upholds equal employment opportunities for all employees and applicants strictly prohibiting any form of discrimination or harassment based on race color religion age sex national origin disability status genetics protected veteran status sexual orientation gender identity or expression or any other characteristic protected by federal state or local laws.

This policy encompasses all aspects of employment including recruitment hiring placement promotion termination layoff recall transfer leaves of absence compensation and training.

Mental and Physical Requirements

Its important to note that specific physical and mental requirements may vary depending on the nature of the office job organization and individual responsibilities.

Physical:

• Stationary position for extended periods of time.
• Constantly operate a computer.
• Occasionally you may be required to move equipment or other items up to 20 lbs.
• The ability to communicate information and ideas so others will understand. Must be able to exchange accurate information in these situations.

Mental:

• Must be able to apply established protocols in a timely manner.
• Make timely decisions in the context of workflow.
• Ability to complete tasks and perform in situations requiring speed deadlines or productivity quota.
• Ability to work effectively and efficiently in high stress situations.
• Ability to simultaneously address multiple complex problems.

How to Apply:

Interested candidates are invited to visit our career site and apply for the position: Experience:

Senior IC