Security Engineer

About the Role:

We are seeking an experienced Security Engineer with a strong focus on network and infrastructure security, VAPT, and compliance. The ideal candidate will have hands-on experience leading vulnerability management programs, conducting penetration tests, and implementing security best practices across hybrid environments. This role requires a proactive individual passionate about strengthening enterprise security, optimizing processes, and mentoring teams.

Key Responsibilities:

• Lead vulnerability assessment and penetration testing (VAPT) activities for networks, servers, cloud, and containerized environments.
• Develop and enforce security policies, SOPs, and frameworks aligned with PCI DSS, ISO 27001, and NIST.
• Perform infrastructure and network hardening, patch management, and secure configuration reviews.
• Oversee incident response, threat analysis, and remediation plans, collaborating with cross-functional teams.
• Conduct cloud security assessments (AWS, Azure, or GCP) and recommend security improvements.
• Implement and manage endpoint security, VPNs, DLP solutions, and multi-factor authentication.
• Coordinate with compliance teams and QSAs for audit readiness and industry-standard certifications.
• Mentor junior team members, deliver security awareness sessions, and optimize team performance.
• Continuously monitor for emerging threats and recommend mitigations to minimize risk exposure.

Required Skills & Qualifications:

• Education: Bachelor's or Master’s in Computer Science, Cybersecurity, or related field.
• 5–8 years of experience in security engineering, infrastructure security, or vulnerability management.
• Strong hands-on knowledge of:
• Vulnerability scanning tools (Nessus, Nexpose, Qualys, Tenable, Trivy, Prowler, ScoutSuite)
• Network security tools (firewalls, VPNs, IDS/IPS)
• Cloud security best practices and configuration reviews
• Container security (Docker, Kubernetes)
• Understanding of PCI DSS, ISO 27001, NIST, ASV guidelines, and other regulatory frameworks.
• Experience with incident response, risk assessments, and remediation roadmaps.
• Familiarity with automation and scripting (Python, Bash) for security operations is a plus.

Preferred Certifications:

• CEH, CISSP, or CICSA
• OSCP, CompTIA Security+
• Cloud Security Certifications (AWS/Azure Security Specialty)

Job Type: Full-time

Work Location: In person