Job Responsibilities :

The Security Engineer performs real-time analysis and trending of security log data from various security devices and systems. He/She maintains data sources feeding the log monitoring system, develops and maintains detection and alerting rules. He responds to user incident reports and evaluates the type and severity of security events. He executes initial triage of incidents to rule out false positives. He documents incidents and develops reports. He identifies recurring security issues and risks and develops mitigation plans and recommends process improvements. He interprets and applies security policies and procedures. He is required to be on standby with on-call availability with varied shifts including nights, weekends and holidays. He is diligent and takes an analytical approach to perform real-time analyses. He is skilled in synthesising trends and insights, and is confident in putting forth creative mitigation plans and solutions to security incidents.

Maintain security operations

• Implement security protocols
• Create emergency response procedures
• Maintain data sources feeding the log monitoring system
• Schedule security checks in accordance with reporting schedules
• Prepare periodic status reports for presentation to management

Respond to security incidents

• Review security incident reports
• Evaluate the type and severity of security events
• Assist with establishing procedures for handling detected security events
• Provide status updates during the life cycle of an incident
• Create final incident report detailing the events of the incident
• Support the maintenance and update of business recovery/contingency plans and/or procedures

Provide user support

• Respond to user requests for technical assistance
• Assess incident severity
• Set clear user expectations on issue resolution
• Update users on changes in status during issue resolution
• Manage user accounts

Job Requirements :

• Technical clarity and understanding of Firewalls, VPN, IPS, IDS, Two Factor Authentication, Active Directory, Internet Proxies, Anti Virus and Perimeter Security principles including log review and analysis (must have worked extensively on at least one product in each of these).
• Experience with TCP/IP networking protocols.
• Knowledge in security patching, software installation, network/system troubleshooting and maintenance.
• Knowledge of basic security concepts and policies.
• Experience with vendor and service level management.
• Experience in the following areas: operating system security, database security, network security, firewalls, computer security Incident response, vulnerability scanning, SAP, LDAP and PKI.
• Bachelor degree in Information Technology or equivalent.