Head of Threat Graph & Correlation

About Company:

Our client is CyberSecurity Startup, which is a sister concern of a major Business House in India

An Ideal Candidate:

This is a hands-on leadership role for someone who has built graph-driven systems and understands real-world incident response workflows.

Key Competencies:

What You’ll Do

 Define and evolve the security entity and relationship model, including lifecycle, properties, and retention strategies.

 Design and own the graph ingestion layer, responsible for translating events and posture data into persistent, queryable relationships.

 Build and operate entity resolution systems that accurately correlate users, hosts, identities, workloads, and data assets across domains.

 Develop a robust library of investigation, blast-radius, and pivot queries used by analysts, automation, and guardrails.

 Partner with Detection and ML teams to compute, refine, and expose entity- and campaign-level risk scores.

 Ensure the graph supports real incident workflows, including timeline reconstruction, lateral movement analysis, and impact assessment.

 Drive performance, scalability, and correctness of the correlation layer as data volume and tenant count grow.

 Lead and mentor a senior team focused on correlation logic, investigation ergonomics, and analytical correctness.