Security Engineer

We are hiring a Security Engineering for one of our clients' MNCs.

Exp 3-6 Years

Location : Remote

Job Type : 6 months contract + ext .

Job Title : Security Engineer / Security Engineering

Roles & Responsibilities :

1. Security Architecture & Design :

- Design, implement, and maintain secure network and system architectures (firewalls, IDS/IPS, SIEM, VPNs, MFA, encryption)

- Define and enforce security policies, standards, and best practices (e.g., ISO 27001, NIST, CIS benchmarks, GDPR, HIPAA, PCI DSS)

- Collaborate with developers and DevOps to integrate security controls into infrastructure and CI/CD pipelines, promoting secure coding and secure SDLC practices .

2. Threat Detection & Incident Response :

- Monitor environments via SIEM/EDR/XDR, analyze logs, detect anomalies, and respond swiftly to incidents

- Lead incident response efforts : triage alerts, perform forensic investigations, coordinate containment, remediation, and post-incident reporting

- Develop automation for threat response, vulnerability management, asset inventory, and coordinate across teams

3. Vulnerability Management & Penetration Testing :

- Run regular vulnerability scans (Nessus, OpenVAS, Qualys), perform manual/automated pen-tests, threat modeling

- Analyze risk and prioritize fixes, working with IT/dev teams to remediate identified weaknesses

4. Risk & Compliance Management :

- Conduct risk assessments and align risk treatment plans with business priorities .

- Ensure organizational compliance with regulatory standards (GDPR, HIPAA, PCI DSS, ISO 27001, SOC 2, NIST)

- Prepare and maintain documentation for internal/external audits .

5. Security Awareness & Training :

- Build and deliver employee training sessions (phishing simulations, social-engineering awareness) .

- Cultivate a security-first mindset by advocating policies and best practices across teams

6. Tooling & Automation :

- Select, deploy, tune, and manage security tools (firewalls, EDR, IDS/IPS, DLP, threat intel, vulnerability scanners)

- Build automation for detection, response, alerts, and integrating security tools into DevOps pipelines

Required Skills & Qualifications :

- Bachelor's in CS, IT, Cybersecurity or equivalent.

- 37 years in security engineering, infrastructure, or related roles.

- Hands-on : SIEM, IDS/IPS, EDR/XDR, firewalls, DLP, vulnerability scanners

- Strong in vulnerability assessment, pentesting, threat modeling, forensic analysis

- Secure coding/SSDLC experience, familiarity with static analysis tools

- Cloud security expertise (AWS, Azure, GCP) .

- Proficient in Python, Bash, PowerShell, Go or JavaScript

- Knowledgeable in encryption/PKI, authentication, MFA, VPNs, Zero Trust .

- Excellent communication skills able to summarize technical risks for execs and non-tech stakeholders .

- Certifications like CISSP, CISM, CEH, OSCP, Security+ preferred

Experience Levels :

- Junior (24?yrs) : Assist with assessments, basic monitoring, implement security controls, support incident handling.

- Mid?level (5+?yrs) : Lead architecture design, build automation, own detection/response, coordinate audits, mentor juniors.

- Senior/Principal (7+?yrs) : Define security roadmap, own major systems, lead complex initiatives, lead cross-functional teams, liaise with execs