Senior Security Engineer (L2)

• Develop and refine security standards and protocols to strengthen digital infrastructure.
• Conduct thorough security assessments to identify gaps and vulnerabilities.
• Perform security architecture reviews for new projects and existing infrastructure setups.
• Lead security configuration reviews, ensuring optimal secure settings and minimizing risks.
• Evaluate the effectiveness of deployed security controls, collaborating with the technical operations team to address gaps and maximize technology utilization.
• Identify security gaps and exposures, devising and implementing robust mitigation plans.
• Design and execute organizational security roadmaps.
• Leverage automation and scripting to enhance security processes.
• Define and maintain security procedures, standards, and guidelines as required.
• Stay ahead of emerging threats by implementing proactive security measures and collaborating cross- functionally to maintain cutting- edge protocols

Requirements

• Bachelors or masters degree (B. E/B. Tech or M. S/MTech) in Information Technology or a related field.
• T3- 5 years of experience in information security domains with a strong security mindset.
• At least 2 years of hands- on experience with any of the below security technologies such as:
  1. Next- Gen Firewall
  2. IDS/IPS
  3. NAC
  4. Email Security
  5. CASB
  6. EDR
  7. WAF
  8. Antivirus
  9. DLP
  10. ATP
  11. PAM
  12. SIEM
• Comprehensive understanding of networking concepts, protocols, and security technologies like AD, Azure AD, Wi- Fi security, and proxy systems.
• Solid knowledge of operating systems including Windows, macOS, Linux, and VDI environments.
• Familiarity with security frameworks and standards such as ISO 27001, NIST, and CIS.
• Proven expertise in secure architecture, configuration reviews, and cloud security.
• Experience in conducting security architecture reviews and managing cross- functional security programs.
• Strong foundation in security principles, including:
  1. Least privilege access
  2. Preventative vs. detective controls
  3. Network, cloud, application, and endpoint security
  4. Data protection and incident response
• Understanding of operational and organizational structures.
• Exceptional problem- solving, interpersonal, communication, and presentation skills.
• Ability to work both independently and collaboratively in a fast- paced environment.