Security Engineer

We are looking for a Security Engineer to join our cybersecurity team and strengthen redBus

defence against evolving cyber threats. This role involves monitoring, analysing, and responding

to security incidents while continuously improving our security framework. The ideal candidate

will have 7–10 years of experience in Security Operations, with deep expertise in Endpoint

Security, Network Security Controls, and Application/Data Security, hands-on experience with

relevant tools, and strong scripting skills.

Key Responsibilities:

• Monitor and analyse security events across endpoints, networks, cloud environments, and applications.
• Implement, manage, and optimize security controls using industry-leading security technologies.
• Ensure strong endpoint protection and proactively respond to vulnerabilities, incidents, and suspicious activities.
• Implement and manage CNAPP/DSPM solutions to identify, classify, and protect sensitive data across cloud and hybrid environments
• Manage and enhance email security to prevent phishing, malware, and other email-borne threats.
• Apply Zero Trust principles to strengthen access controls and identity security.
• Lead and support security incident detection, investigation, and remediation.
• Conduct application security assessments, including static (SAST) and dynamic (DAST) testing, to identify and remediate vulnerabilities.
• Collaborate with development teams to integrate security into the SDLC and promote secure coding practices.
• Develop and maintain security policies, procedures, and compliance documentation.
• Collaborate with IT, cloud, and product teams to improve the overall security posture.
• Automate security workflows and threat detection using Python, PowerShell, or Bash.
• Stay updated on emerging threats, vulnerabilities, and evolving security technologies.

Required Skills & Qualifications:

• 7–10 years of experience in cybersecurity, with a strong focus on endpoint, network, cloud,
• and application/data security.
• Hands-on expertise with:
• Endpoint Security: EDR, XDR, Incident Response, Malware Analysis, Threat Hunting
• Network Security: NAC, Firewalls, IDS/IPS, Network Segmentation, Zero Trust Access
• Cloud & Web Security: CNAPP, DSPM , CASB, Secure Web Gateway, DLP
• Application Security: SAST, DAST, API security testing, secure coding review, OWASP Top 10
• Email Security: Email analysis, authentication protocols, modern email threat defence, and
• threat intelligence integration
• Knowledge of security frameworks and compliance standards (NIST, ISO 27001, CIS, etc.).
• Experience in threat intelligence, vulnerability management, incident investigation, and
• application security risk assessment.
• Familiarity with SIEM platforms and log analysis techniques.
• Strong problem-solving skills, proactive learning attitude, and excellent communication/documentation capabilities.