The Role :

We're building a cybersecurity practice from the ground up at SARC Global a 40-year advisory firm with 500+ professionals and direct relationships with India's largest banks, PSUs, and enterprises. We need a hands-on, client-facing engineer who can deploy microsegmentation and network security solutions at enterprise scale. You'll work directly with CISOs at BFSI and government clients, design Zero Trust architectures, and implement our OEM partner solutions on their networks.

This is a founding-team position. You'll be one of the first engineers shaping how SARC delivers cybersecurity. That means equity participation, direct CEO access, zero bureaucracy, and the chance to build something from scratch with marquee clients from day one.

Primary : Microsegmentation & Network Security

- This is the core of the role. You should have direct, hands-on deployment experience with at least one of these

Platforms :

- ColorTokens Xshield | Akamai Guardicore | Illumio Core | Cisco Secure Workload (ACI/Tetration) | VMware NSX | VXLAN-based segmentation

What you'll do :

- Design and deploy microsegmentation architectures for enterprise clients - agent installation, workload labelling, policy creation, east-west traffic control, and enforcement across on-prem, hybrid, and multi-cloud environments

- Conduct network security assessments, map application dependencies, identify segmentation gaps, and build remediation roadmaps for BFSI and government clients

- Implement Zero Trust at the network layer - security zoning, firewall policies, network access controls, and least-privilege segmentation aligned with RBI, CERT-In, SEBI, and ISO 27001 requirements

- Provide L2/L3 technical support and ongoing troubleshooting for deployed solutions across Windows, Linux, Unix, and AIX environments

- Build deployment playbooks, runbooks, and configuration templates for repeatable, scalable delivery

- Run client-facing demos, PoCs, and technical workshops for our OEM solutions

Secondary : WAF, API Security & WAAP

You'll also deploy and manage web application protection for clients :

- Deploy WAF / WAAP solutions (Prophaze, Imperva, Akamai, F5, AWS WAF, Azure WAF, Cloudflare) for client environments cloud, Kubernetes, hybrid, and on-prem

- Implement API security policies, bot mitigation, DDoS protection, and Layer 7 threat detection

- Conduct OWASP Top 10 assessments, configure custom WAF rules, virtual patching, SSL/TLS termination, and reverse proxy architectures

- Support client onboarding onto WAAP platforms domain configuration, endpoint mapping, policy tuning, and alert optimization

What We Need :

Must Have :

- 10+ years in network security / cybersecurity implementation, with at least 3 years in client-facing delivery

- Direct hands-on experience deploying a microsegmentation platform ColorTokens, Guardicore, Illumio, Cisco ACI/Secure Workload, VMware NSX, or equivalent

- Strong network security foundation firewalls (Check Point, Palo Alto, Fortinet, Cisco ASA), VPN, IPS/IDS, network access control, VLAN/VXLAN segmentation

- Deep understanding of TCP/IP, DNS, HTTP/S, SSL/TLS, and packet-level analysis (Wireshark)

- Proven track record of deploying solutions at enterprise or BFSI client sites in India

- Ability to articulate east-west traffic risks, lateral movement threats, and Zero Trust value to CISOs and technical teams equally

Strong Plus :

- Experience with WAF / WAAP deployment (Imperva, Akamai, F5, Prophaze, cloud-native WAFs)

- Cloud networking and security across AWS, Azure, and/or GCP (VPCs, security groups, NACLs)

OT/ICS/SCADA environment security exposure

- Scripting / automation (Python, Bash, PowerShell, Terraform) for deployment automation

Knowledge of Indian regulatory frameworks RBI cybersecurity framework, CERT-In directives, SEBI CSCRF, ISO 27001, NIST CSF

- SIEM integration and security monitoring experience

- Certifications (Preferred, Not Required)

- Microsegmentation vendor certifications : ColorTokens, Guardicore (GCSA), Illumio

- Network security : CCSA/CCSE (Check Point), PCNSE (Palo Alto), CCNP Security (Cisco)

- Cloud security : AWS Security Specialty, Azure Security Engineer, GCP Security

- CEH, OSCP, or equivalent offensive/defensive certifications

The Right Person :

You've spent years making enterprise networks more secure. You're tired of being a cog in a 10,000-person delivery machine. You want to build something.

Here's what matters to us beyond technical skills :

Builder, not a passenger - you want to define how a cybersecurity practice operates, not follow someone else's playbook

Client-obsessed - you're comfortable in a CISO's conference room at a bank, not just behind a terminal

Ownership - you don't wait for tickets to be assigned; you see a problem and fix it

High energy - a 45-minute technical discussion with you turns into 75 minutes because you can't stop talking about the problem

Communication range - you can explain microsegmentation to a CTO and debug a firewall rule with a network engineer in the same day

Why SARC Global :

- You're not employee #500 - you're one of the first engineers. Your fingerprints will be on every deployment, every playbook, every client relationship

- Equity participation - meaningful ownership in the company's growth, not just a paycheck

- Marquee clients from day one SARC's 40-year advisory relationships give you warm introductions to India's top banks, PSUs, and enterprises. No cold calls

- Strategic OEM partnerships work with cutting-edge microsegmentation and WAAP technologies (ColorTokens, Prophaze), get certified, become one of India's few experts

- Growth trajectory individual contributor to team lead to practice head. The ceiling is what you build

- No bureaucracy small team, direct access to the CEO, fast decisions, real impact