Security Engineer

Position - Security Engineer Threat Hunting & Compliance

Location - Gurugram

Employment Type - Full-time

Key Responsibilities

• Perform proactive threat hunting using Sophos EDR and MDR, Cisco Umbrella, and other advanced tools.
• Lead all incident response activities for network, server, and cloud environments.
• Develop, implement, and independently manage the Incident Response Plan (IRP), including tabletop exercises and continuous improvements.
• Act as the go-to person during any security incident or breach.
• Administer and optimize security solutions including DLP, PAM (Delinea/others), CrowdStrike, Zscaler, Cisco Umbrella, and Cloud-native security tools (AWS, Azure, GCP).
• Continuously enhance security posture across on-premise and cloud infrastructure.
• Implement policies for secure identity and access management across hybrid environments.
• Perform quarterly VAPT using RSPL-owned licensed tools.
• Conduct vulnerability scanning, exploit validation, and penetration testing across applications, servers, endpoints, and cloud workloads.
• Document findings, recommend risk-based remediation, and track closure with technical and business teams.
• Implement and maintain ISO 27001 controls across applications, servers, and cloud services.
• Drive improvements towards achieving higher maturity under the NIST Cybersecurity Framework (CSF).
• Ensure all audits, risk assessments, and compliance reporting requirements are successfully met. 
• Maintain real-time security dashboards, incident logs, and compliance metrics for management.
• Drive cross-team awareness and security best practices through training and playbooks.

Required Skills & Qualifications

• 4–5 years of experience in cybersecurity operations, threat hunting, cloud security, and compliance.
• Strong expertise with Sophos EDR/MDR, CrowdStrike, Zscaler, Cisco Umbrella, DLP, and PAM solutions.
• Hands-on experience with VAPT tools for security testing.
• Knowledge of cloud-native security controls across AWS, Azure, and/or GCP.
• Understanding of ISO 27001 implementation and NIST CSF maturity assessments.
• Familiarity with SIEM/SOC operations and security automation tools.
• Certifications such as CEH, CCNA Security, AWS Security, ISO 27001 LA, or equivalent preferred.