Engineer ITIS

Job Title:

Location

Designation

Work Mode:

Job Summary

IT Security and Cybersecurity Engineer

Key Responsibilities:

• DLP Management

• Manage

  DLP solutions

  (Endpoint, Email, Web).
• Monitor and respond to DLP alerts; perform investigation and mitigation.
• Fine-tune DLP policies and rules based on evolving business requirements.
• Coordinate with business units to ensure minimal disruption from DLP enforcement.

• Network Security

• Apply fundamental

  network security

  principles including firewall rules, segmentation, and traffic inspection.
• Collaborate with network teams to ensure secure configurations.
• Monitor for anomalies in internal and perimeter network traffic.

• Vulnerability Management

• Perform regular

  vulnerability assessments

  using tools such as Qualys, Nessus, or similar.
• Prioritize and coordinate remediation efforts with IT and application teams.
• Track vulnerability trends and prepare reports for leadership.

• SOC Operations Management

• Oversee and guide L1/L2

  SOC analysts

  in incident triage and response.
• Develop and maintain security

  incident response playbooks

  .
• Ensure SIEM rules and correlation logic are updated for evolving threats.
• Coordinate with threat intelligence and red team for proactive defense measures.

• Security Monitoring and Incident Response

• Act as a senior escalation point for critical security incidents.
• Lead forensic analysis, containment, and root cause identification.
• Prepare post-incident reports with lessons learned and improvement plans.

• Governance, Risk & Compliance Support

• Assist in audits, compliance checks, and regulatory requirements (ISO 27001, SOC Type 1 & 2, etc.)
• Maintain documentation and evidence for security controls and practices.

Required Skills and Qualifications

• Bachelors or masters degree in information security, Computer Science, or related field.
• Minimum

  4

  years

  of experience

  in cybersecurity or IT security engineering roles.
• Proven knowledge in

  DLP platforms

  like Forcepoint, Netskope, Digital Guardian, etc.
• Strong understanding of

  network protocols

  , firewalls, proxies, and security zoning.
• Proficiency in

  vulnerability scanning

  , remediation tracking, and reporting.
• knowledge of

  SIEM tools

  (e.g., Splunk, Qradar, Sentinel, etc.).
• Familiar with

  MITRE ATT&CK

  ,

  NIST

  , and other security frameworks.
• Experience managing or working in a

  24x7 SOC environment

  is a plus.
• Excellent analytical, communication, and leadership skills.

Certifications Preferred

• CEH

  ,

  Cyber security certifications

• SIEM or SOC-related certifications