Sr. Information Security Engineer
- ACL Digital
- 8 - 12 years
- Pune
- 8 months ago
- Email to a friend
- Report this job
Job Description
Candidate will work as a member of the Corporate Security Team and assist in various day to day operational activities such as:
- Drive Corporate Security Program based on the NIST CSF - Identify, Detect, Protect, Respond and Recover.
- Develops, publishes, and maintains a comprehensive organization-wide information privacy and security plans, policies, procedures, and guidelines.
- Function as primary liaison with auditors, internal teams and vendors and be the resident expert on systems and services in use for PCI compliance and reporting
- Responsible for managing all aspects of the Vulnerability Risk Management Program including vulnerability identification, analysis, remediation coordination and reporting.
- Lead the development, implementation, and maintenance of security policies, standards, and guidelines.
- Identify and Monitor Corporate Networks to determine if there have been any attacks. Analyze network traffic to identify anomalies and test information security controls for weaknesses.
- Design and implement safeguards to protect the system with the help of network engineers and other members of the Technology Services team.
- Respond to threats by taking mitigating actions to contain the activity and minimize damage. Participate in risk assessments and breach readiness exercises for incident management.
- Facilitate forensics analysis to determine the source of the threat. Document lessons learned as well as identify process improvements.
- Communicate security issues to management via reports, dashboards. Provide weekly metrics on overall security posture.
- Research emerging threats and work with the Security Operations Center (SOC).
- Drive the Third party vendor security evaluation .
- Participate in the security toll-gates on SSDLC projects.
- Implement innovative solutions to scale the program with emphasis on automation where applicable.
Qualifications
Basic Qualifications:
- Bachelors Degree in Business, Computer Science or in a STEM major (Science, Technology, Engineering, or Math).
- Minimum of 8 years of experience in Information Security
- Experience in at least one full lifecycle supporting PCI compliance is a must have
- Experience in managing and maintaining a vulnerability management program using Qualys is a must have
- Experience in developing content in Splunk - searches, alerts (including POC and tuning) , dashboards , A pps .
- Experience of Security Incident and Event Management (SIEM) tools (Splunk) - ingesting data (Forwarders, HTTP Event Collectors, add-ons) , troubleshooting Splunk Installatio n.
- Experience in Endpoint security (EDR) - Detection and Response . Help create policies and SOP for Response workflow. Experience in Cortex XDR preferred.
- Experience in Security evaluation of third-party tools.
- Experience in Email Security and running phishing campaign
- Experience in Incident Management
- Experience in system and network security.
- Experience in Network Penetration testing .
- Knowledge of software development, computer networks and Internet threat activity.
- Programming experience in python, perl and HTML/JS
- Previous enterprise or platform/cloud vulnerability management experience and Cloud Security is a plus
- Excellent written and verbal communication skills, including experience engaging with executive and technical audiences.
- Must be able to work in a fast paced, high profile environment.
Job Classification
Industry: IT Services & ConsultingFunctional Area / Department: IT & Information SecurityRole Category: IT SecurityRole: System Security EngineerEmployement Type: Full timeContact Details:
Company: ACL DigitalLocation(s): Pune+ View Contact
Keyskills: Automation Event management Information security Consulting Workflow Incident management HTML Troubleshooting Risk management Operations
Fraud Alert to job seekers!
₹ Not Disclosed
Similar positions
Job Listings
We are in open beta version of website, please let us know if any issues, at: info(at)indigojobs.in