Senior It Security Engineer

Job Description

Senior IT Security Administrator Location: Bangalore Department: IT & Security Reports To: Head of IT Job Overview: Valenta is seeking an experienced and proactive Senior IT Security Administrator to lead our end-to-end IT security operations. This role will be responsible for safeguarding our entire technology stackincluding infrastructure, cloud, endpoints, email systems, and VPN environments—while ensuring compliance with industry standards like ISO 27001. The ideal candidate will have hands-on experience with tools such as Azure, Sophos, ManageEngine, endpoint security platforms, and will be able to implement security from the initial development phase through to production environments. Key Responsibilities: Audit & Compliance: Lead and manage IT infrastructure audits (internal & external). Ensure ongoing ISO 27001 compliance and security best practices. Maintain documentation for audits, compliance checks, and client reviews. Security Operations: Oversee the complete security lifecycle across development, staging, and production environments. Implement and manage hardening strategies for all systems (servers, VMs, applications, networks). Administer and monitor endpoint security tools across all devices. Ensure email security using anti-spam, phishing detection, and encryption protocols. Tools & Infrastructure: Manage and secure Microsoft Azure environments and services. Deploy and administer Sophos for firewall, endpoint, and threat prevention. Use ManageEngine for IT operations, device management, patching, and log analytics. Handle virtual machine (VM) deployment, configuration, and security hardening. Monitor and maintain the health and performance of all security tools and platforms. Configure and maintain secure VPN setups for remote workforces. Policies & Governance: Develop and enforce IT security policies, SOPs, and incident response plans. Train staff on IT security awareness and corporate security standards. Collaborate with DevOps, IT, and leadership to maintain a secure development pipeline. Monitoring & Incident Response: Proactively monitor logs, alerts, and system behavior. Lead incident response, root cause analysis, and corrective action planning. Continuously evaluate and improve detection and response capabilities. Required Qualifications: Bachelor’s degree in Computer Science, Information Security, or a related field. 5+ years of experience in IT Security Administration or related role. Hands-on experience with: Microsoft Azure security & configuration Sophos security suite (firewall, EDR, antivirus) ManageEngine tools (Endpoint Central, Log360, ADManager, etc.) Endpoint security platforms, VPN, email filtering systems VM deployment and management Strong knowledge of firewalls, IDS/IPS, and network segmentation. Experience in implementing and managing hardening procedures across environments. Familiarity with scripting (PowerShell, Bash) for automation and monitoring. Preferred Certifications: CISSP, CISM, CEH, CompTIA Security+, or ISO 27001 Lead Implementer/Auditor