Tech Mahindra Hiring For Endpoint Security Specialist For Bangalore Tech Mahindra

5.0 - 10.0 years

10 - 17 Lacs

bengaluru

Work from Office

Job Title : Endpoint Security Specialist Location: CSAPL-Bengaluru Years of Experience : 5-7 Years Job Summary The Endpoint Security Specialist will be responsible for providing comprehensive endpoint security support, focusing on multi-vendor security solutions to protect corporate devices. This role involves administering Azure MS Defender Endpoint, managing encryption technologies, and ensuring compliance with security protocols. The ideal candidate will have a strong background in endpoint protection and patch management, with a proactive approach to incident resolution. Responsibilities Administer and support Azure MS Defender Endpoint, ensuring optimal performance and compliance. Provide support for BitLocker, including recovery key management and compliance monitoring. Assist end-users with S/MIME and PGP email encryption issues and enrollment requests. Monitor and troubleshoot endpoint security solutions, including Trellix and Microsoft Defender. Support Data Loss Prevention (DLP) initiatives, including incident resolution and exception requests. Prepare and present compliance reports to stakeholders on a regular basis. Follow established processes for ticket resolution and maintain proactive communication with team members. Engage in continual service improvement initiatives and contribute to knowledge management efforts. Participate in team meetings and adhere to incident, problem, and change management processes. Mandatory Skills More than 5 years of IT experience with a minimum of 3 years in endpoint protection and patch management. Proficient in administering Azure MS Defender Endpoint. Experience with BitLocker, Azure Active Directory (AAD), and encryption technologies (S/MIME, PGP). Fundamental knowledge of endpoint security solutions (Trellix Endpoint Security, Windows Defender Antivirus). Strong troubleshooting and problem-solving skills. Ability to monitor security compliance and generate reports. Excellent Effective Communication and Stakeholder Management skills. Experience in handling Incident Management tickets efficiently. Preferred Skills Basic understanding of Data Loss Prevention (Trellix Endpoint DLP, Microsoft Purview DLP). Good understanding of network and client/server related terminologies. Willingness to work in 16x5 support shifts and on-call support during off-business hours. Ability to think independently and find solutions to complex issues. Customer and team-oriented with outstanding communication skills. Relevant MS 365 Certified: Security Admin Associate. Qualifications Bachelor's degree in Computer Science, Information Technology, or a related field. 5-7 years of relevant experience in IT security, specifically in endpoint protection. Experience in a large organization with globally distributed personnel and operations is preferred.

Posted 21 hours ago

Apply

Senior Security researcher Trellix

5.0 - 8.0 years

7 - 10 Lacs

Bengaluru

Work from Office

Role Overview: Were looking for a Email Security Researcher to join our Email Security Research Team. In this role, you will focus on identifying and mitigating advanced email-borne threatsspam, Business Email Compromise (BEC), vishing, and targeted impersonation campaigns. Youll leverage open-source and commercial tools, develop detection rules, and collaborate with global SOC teams to continuously improve our email threat-detection capabilities. Key Responsibilities Threat Analysis & Hunting: Review large volumes of email traffic to identify malicious patterns, emerging spam campaigns, BEC tactics, vishing attempts, and impersonation fraud. Perform root-cause analysis on incidents and produce actionable intelligence. Rule Development & Tuning: Author and maintain detection signatures in Snort, YARA, ClamAV, and SpamAssassin. Optimize rule performance to minimize false positives/negatives. Automation & Tooling: Develop Python scripts and serverless functions (AWS Lambda or GCP Cloud Functions) to automate email parsing, feature extraction, and alerting. Integrate detection engines into SIEM and SOAR platforms. Collaboration & Reporting: Work closely with SOC analysts, incident responders, and product teams to triage alerts, refine workflows, and deploy new detection logic. Communicate findings and recommendations through clear technical reports and dashboards. Continuous Improvement: Stay current on attacker tactics (TTPs), new phishing/vishing toolkits, and protocol-level evasion techniques (e.g., sender forging, DMARC bypass). Contribute to threat-intel feeds and internal knowledge bases. Basic Qualifications Experience: 5-8 years total with 35 years in email security research or detection engineering, with a focus on spam, BEC, vishing, and impersonation. Tools & Technologies: Rule engines: Snort, YARA, ClamAV, SpamAssassin Scripting: Python (experience with email librariesimaplib, email, etc.) Cloud platforms: AWS or GCP (Lambda/Functions, serverless compute, storage) Email Protocols & Forensics: Proficient with SMTP, MIME, DKIM, DMARC, SPF, and email header analysis. Analytical Skills: Strong capability to sift through raw logs and MIME bodies to uncover malicious indicators. Communication: Clear written and verbal skills to document findings for technical and non-technical audiences. Preferred Qualifications Machine Learning & Analytics: Hands-on experience applying ML or statistical methods to email threat detection (e.g., feature engineering, anomaly detection, clustering). Global SOC Environment: Prior work in a 247 Security Operations Center supporting multi-region email volumes. Threat Intelligence Integration: Familiarity with integrating open-source or commercial intel feeds into detection pipelines. Scripting & Infrastructure as Code: Experience with Terraform, CloudFormation, or similar for automated deployment of detection infrastructure.

Posted 3 months ago

Apply

Start Your Job Search Today

Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.