Information Security Engineer

Overview:

Our client is seeking an Information Security Engineer in Chennai, India to join their growing team.

•Configuring and deploying security engineering tools into the environment, firewalls, VPNs, installing event monitoring systems, configuring IDS and IPS, (Intrusion detection and intrusion prevention systems)

•Assessing, building, and supporting security solutions and controls including: SEIM, network firewalls, ACLs, IPS, internet content filtering, Identity and Access Management, web application firewalls(WAF), vulnerability scanners, penetration tests, incident response, Active Directory group policies(GPOs), and logical access controls

•Researching and deploying new technologies

•Performing internal security audits and monitoring systems to ensure that appropriate access levels are maintained

•Preparing for and responding to security incidents

•Serving as an internal Information Security consultant to the organization

•Communicating threats and countermeasures to management and staff to promote security awareness and compliance throughout the organization

•Developing and/or maintaining BCP/DR plans for security systems and participating in tests •Collaborating with IS management, legal, human resources and law enforcement agencies to manage security vulnerabilities or investigations

•Lead working sessions to identify platform, operational, and automation-related issues in XSOAR.

•Triage and remediate bugs impacting system stability, case management, and playbook execution.

•Collaborate with analysts and engineers to test, validate, and deploy fixes.

•Provide weekly updates outlining bugs resolved, progress status, and blockers.

•Integrate Threat Intelligence Sources:

•Connect and validate integrations with platforms such as MISP, URLhaus, MalwareBazaar, and ThreatFox.

•Develop enrichment and response playbooks that leverage threat intel feeds.

•Automate scoring, tagging, and correlation of IOCs across alert workflows.

•Document integration procedures and train analysts on new capabilities.

•Design XSOAR Maturity Roadmap

•Evaluate current platform capabilities and identify opportunities for improvement.

•Propose a phased maturity model for automation, threat intel usage, and analyst experience. •Recommend KPIs, metrics, and best practices for measuring progress.

•Deliver a strategic plan that supports long-term automation and threat detection goals.

Required skills and experience:

•Email Security, DMARK, DKIM

•General Enterprise Security in MS stack

•Cloudflare

•Programming (python preferred)

•Bachelor's Degree in a relevant discipline (Computer Information Systems, Information System Technologies, Management Information Systems, Computer Science, or equivalent experience). •Strong interpersonal, communication, and leadership skills, including the ability to effectively communicate to both technical and non-technical audiences, in both a one on one as well as in a group environment

•Knowledge of the TCP/IP networking protocol suite

•Strong understanding of LAN/WAN technologies; experience configuring FTP services, DNS and SMTP architectures.

•Experience with network protocol analysis

•Three or more years of experience in the design and deployment of network security and operating system solutions and information security infrastructure elements such as Firewalls, VPN, DMZ, Security Event Monitoring systems, IDS/IPS, and Directory Services.

•Strong understanding of common network and system exploits and vulnerabilities.

•Excellent analytical and problem solving skills. Ability to troubleshoot complex networks and design network security solutions

•A solid understanding and work experience with virtualization technologies and host operating systems, including Windows and Linux

•Experience with Digital Certificates, SSL, IPSEC, and other encryption technologies.

•A strong understanding of authentication and authorization methodologies, including knowledge of network authentication protocols including TACACS and RADIUS.

•Experience with scripting languages

•Experience with security auditing tools such as COPS, Tripwire, Nessus, etc.

The pay is $10/hr to $12/hr USD.

Exact compensation may vary based on several factors, including skills, experience, and education.

Employees in this role will enjoy a comprehensive benefits package starting on day one of employment, including options for medical, dental, and vision insurance. Eligibility to enroll in the 401(k) retirement plan begins after 90 days of employment. Additionally, employees in this role will have access to paid sick leave and other paid time off benefits as required under the applicable law of the worksite location.