Infrastructure & Network Security Specialist

Job Title: Infrastructure and Network Security Specialist Location: Kolkata Position Overview We are seeking an experienced Infrastructure and Network Security Specialist to design, implement, and maintain robust security measures across our IT infrastructure and network environments. The ideal candidate should possess deep technical knowledge of network protocols, firewalls, endpoint protection, vulnerability management, and cloud/network architecture security. This role will be responsible for safeguarding organizational assets, ensuring network resilience, and protecting data integrity across hybrid environments. The successful candidate will work closely with the IT infrastructure, DevOps, and application security teams to strengthen our overall cybersecurity framework and ensure compliance with internal and external security standards. You will be responsible for identifying, mitigating, and preventing security risks across our cloud and applications while collaborating closely with development and infrastructure teams. The successful candidate will be responsible for implementing robust security practices throughout the application development lifecycle, conducting vulnerability assessments, and performing penetration testing to safeguard our applications built on diverse technological stacks, including .NET, ASP.NET, IIS, Windows OS etc.

Key Responsibilities • Network and Infrastructure Security Governance: Establish and enforce security standards, configurations, and policies for routers, switches, firewalls, VPNs, servers, and endpoints. • Vulnerability and Patch Management: Conduct regular vulnerability assessments and penetration tests on network and infrastructure components. Ensure timely patching and remediation of identified vulnerabilities. • Firewall and Perimeter Defense: Deploy, configure, and maintain next-generation firewalls (NGFW), intrusion detection/prevention systems (IDS/IPS), and network access controls to protect against external and internal threats. • Cloud and Hybrid Security: Implement and manage security controls for cloud environments (AWS, Azure, GCP), including virtual networks, security groups, key management, and identity protection. • Incident Response and Threat Management: Monitor, detect, and respond to infrastructure-level security incidents. Conduct root-cause analysis and work with relevant teams to prevent recurrence. • Access and Identity Management: Manage and audit user access privileges, network authentication mechanisms, and directory services such as Active Directory (AD), LDAP, and Azure AD. • Security Monitoring and Reporting: Leverage SIEM tools to correlate security events, generate actionable alerts, and produce reports for compliance and audit purposes. • Technical Collaboration: Collaborate with IT, DevOps, and Security Operations teams to design secure network architectures and Registered Office:

Stay current with emerging threats, vulnerabilities, and technologies relevant to infrastructure and network security. Monitor, investigate, and respond to security incidents and intrusion attempts. Stay abreast of the latest security threats, trends, and technologies, and continuously improve security policies, tools, processes frameworks, and compliance standards. Support and mentor developers on secure design and architecture. Stay abreast of the latest security threats, trends, and technologies, and continuously improve security policies, tools, and processes. Required Qualifications and Skills • Technical Proficiency: Strong experience in network design, configuration, and security using technologies such as Cisco, Fortinet, Palo Alto, or Check Point. Hands-on expertise in Windows Server, Linux, and virtualized environments (VMware, Hyper-V). Proficiency with cloud security concepts, including network segmentation, zero-trust frameworks, and identity based access control. • Security Expertise: In-depth understanding of network protocols (TCP/IP, DNS, DHCP, HTTP, VPN, SSL/TLS) and security architectures. Experience implementing and managing firewalls, proxies, IDS/IPS, SIEM, and endpoint protection solutions.

Knowledge of incident response, threat hunting, and vulnerability management processes. • Security Tools Experience: Proficient with tools such as Nessus, Qualys, Wireshark, Splunk, CrowdStrike, Microsoft Defender, FortiAnalyzer, or similar solutions. • Analytical Abilities: Strong analytical and troubleshooting skills to identify, assess, and mitigate infrastructure security issues efficiently. • Communication: Excellent written and verbal communication skills with the ability to collaborate effectively with technical teams and leadership. Preferred Qualifications • Certifications such as CISSP, CCNP Security, CEH, CompTIA Security+, or AWS/Azure Security Specialty. • Experience in DevSecOps and automation of infrastructure security using tools like Terraform, Ansible, or PowerShell. • Familiarity with regulatory and compliance frameworks (ISO 27001, NIST, SOC 2, GDPR). • Experience with Zero Trust Architecture and cloud-native security tools.