Job Description

Job Summary
We are seeking a Senior Security Engineer who is passionate about building and maintaining a world-class security program in a dynamic, global environment. You will serve as the technical anchor for our team, driving our "Cyber Operations & Threat Management" capabilities. This role acts as the primary bridge between our US-based engineering team and our India-based operations.
This is a high-impact role for a "builder" and a technical leader. You will not only execute advanced security tasks but also serve as a force multiplier by using automation to reduce operational toil and foster efficiency. You will lead a team of analysts through technical mentorship, collaborating with cross-functional teams to protect our infrastructure. While this is a senior individual contributor role, it offers the opportunity to grow into a management position based on demonstrated leadership qualities.
What You'll Do
Key Responsibilities

• SOC Leadership: Oversee day-to-day SOC activities - monitoring alerts, triaging incidents, and coordinating escalations while acting as the primary point of contact during EST business hours..
• Automation & Efficiency: Identify repetitive operational tasks and architect automated solutions using Python, Bash, or PowerShell. Build custom integrations between security tools to ensure seamless data flow that supports 24/7 global operations..
• Incident Response: Own the incident response lifecycle: detection, containment, investigation, remediation, and lessons learned, managing independent execution during US hours and coordinating handovers.
• Mentorship: Provide mentorship and career development opportunities to junior staff, utilizing a mix of synchronous sessions during overlap windows and asynchronous methods like video walkthroughs and ticket reviews ensuring expertise in areas like cloud security and incident response.
• Cloud Security & DevOps: Work closely with infrastructure and DevOps teams to secure cloud deployments (e.g., containers, CI/CD pipelines). Advocate for secure coding practices and automated security testing.
• Vulnerability Management: Oversee vulnerability management programs - from scanning and assessment through remediation tracking and reporting.
• Continuous Improvement: Drive continuous improvements in processes and procedures, including the standardization of global handoff protocols and operational runbooks for remote and hybrid teams.

Core Capability Areas

• Security Engineering & Automation: Systematically reducing manual "toil" by scripting workflows, integrating APIs, and deploying orchestration to accelerate detection and response across the global security stack.
• SOC Operations: Providing 24/7 vigilance through continuous monitoring, alert triage, and systematic tuning of the security stack to eliminate blind spots to ensure seamless coverage.
• Vulnerability Management: Reducing the attack surface through continuous asset discovery, risk-based scanning, and coordinated remediation of security flaws.
• Incident Response: Minimizing business impact by maintaining rapid forensic investigation, containment, and recovery capabilities.
• Offensive Security: Validating defense effectiveness by simulating real-world attacks through rigorous penetration testing and red-teaming exercises.
• Threat Intelligence: Driving proactive defense by analyzing global threat trends and OSINT to anticipate and neutralize targeted attack campaigns.
• Insider Threat Management: Detecting and preventing internal risks through behavioral analytics and strategic data loss prevention protocols.

About You

• Experience: 5-7+ years of combined IT and security experience in Security Operations in a lead capacity.
• Technical Expertise:
• Deep understanding of threat detection, vulnerability management, incident response, and enterprise security controls.
• Automation: Proven ability to write scripts (Python, PowerShell, Bash) and automate security workflows to improve efficiency.
• Security Stack: Familiarity with SIEM, EDR, NDR, WAF, and DLP technologies.
• Infrastructure: Familiarity with modern infrastructure (cloud platforms, containerization, CI/CD pipelines).
• Soft Skills: Excellent communication skills - able to manage and mentor team members across varying shifts and convey complex concepts to both technical and non-technical stakeholders.
• Education: Bachelor's degree in Computer Science, Information Systems, or related field preferred (or equivalent experience).
• Certifications: Relevant security certifications (e.g., CISSP, GIAC, CISM, OSCP) are highly desirable.

Working Conditions

• On-Site: This position is based on-site in India.
• Time Zone: Candidates must be willing to coordinate across multiple time zones and strictly align working hours to the US East Coast (EST) businesss hours.
• On-Call: Participation in on-call rotations for high-severity incidents is required.

Skills Required