Job Description

Project Role :

Security Engineer

Project Role Description :

Apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats.

Must have skills :

Security Delivery Governance

Good to have skills :

Identity Access Management (IAM)

Minimum

3

year(s) of experience is required

Educational Qualification :

15 years full time education



Summary: We are seeking a detail-oriented SDLC (Software Development Life Cycle) Engineer to support and optimize software development processes across the organization. The ideal candidate will have a deep understanding of development methodologies, tools, and best practices, ensuring projects are delivered on time, within scope, and aligned with quality standards. The SDLC Engineer will collaborate with cross-functional teams to define requirements, implement process improvements, and maintain documentation that enhances efficiency, scalability, and governance throughout the software lifecycle. Roles & Responsibilities: 1. Proactively use security engineering tools to identify and mitigate network & security risks. 2.Develop and implement security measures using specialized tools based on Cyber security best practices. 3. Support and build network segmentation capabilities, including deciding on the granularities of segmentation from a threat-led perspective (e.g., application level, environment level, network level, network policies, mapping attack paths, and building mitigations). 4. Hands-on exposure and knowledge of Cyber & network security, e.g. management of firewalls, IDS, Web Gateways etc. 5 Familiarity with deploying Infrastructure as Code and using CI/CD technologies, such as Azure DevOps. 6 Hands-on experience working with cloud networking with a focus on security. For example, working with virtual networks, network security groups, virtual firewalling, Web Application Firewalls, and cloud networking security monitoring. 7 Previous experience working with security best practices - e.g. Zero trust, defence in depth, least privilege, security hardening. 8 Experience in applying zero-trust principles to secure large-scale IT infrastructures, demonstrated by successful deployments within a corporate setting. Web Gateway, Web Security Detect & Respond end points, Siem, Sentinel & Defender It's a bonus if you have but not essential 9 Experience as a Cyber Security Engineer, Cyber Security Analyst, or a Network Engineer with an interest in becoming a Cyber Security Engineer. 10 Experience with Terraform, Python, JavaScript/Node.js, PowerShell or Bash 11 Knowledge of infrastructure and application monitoring, such as Icinga or Elastic Stack. 12 Network Security certifications (especially Cloud centric) would be advantageous. 13 Proven ability to design and deploy zero-trust security solutions, including identity and access management, micro segmentation, and continuous authentication, in complex organizational structures would be an advantage." Professional & Technical Skills: "Professional Skills o Strong problem-solving and analytical thinking with Excellent communication and collaboration abilities o Risk assessment and management expertise o Incident response and crisis management o Security policy development and enforcement o Threat modeling and mitigation planning o Knowledge of regulatory frameworks (e.g., GDPR, HIPAA, PCI-DSS) o Ability to conduct audits and compliance assessments o Training and awareness program development o Ethical hacking and penetration testing mindset o Attention to detail and commitment to continuous learning o Project management and cross-functional teamwork o Documentation and reporting skills o Adaptability to fast-changing security threats and technologies Professional & Technical Skills o Network security architecture and design o Firewall, VPN, and IDS/IPS configuration o Endpoint protection and anti-malware solutions o Cloud security (AWS, Azure, Google Cloud Platform) o Encryption protocols (TLS, SSL, IPsec) o Identity and access management (IAM) o Security Information and Event Management (SIEM) tools (e.g., Splunk, QRadar) o Vulnerability scanning and assessment tools (Nessus, OpenVAS) o Penetration testing tools (Metasploit, Burp Suite, Kali Linux) o Secure coding practices and code review o Operating system hardening (Linux, Windows, macOS) o Scripting and automation (Python, Bash, PowerShell) o Threat intelligence platforms o Application security testing (SAST, DAST) o Patch management and configuration control" Additional Information: 10 or more years' experience working in Cyber Security This position is based at our Bengaluru office A 15-year full time education is required"




15 years full time education