Sr Engineer, Software - Security Operations [T500-20383]

ANSR is hiring for one of its clients.About T-Mobile : T-Mobile US, Inc. (NASDAQ : TMUS), headquartered in Bellevue, Washington, is America’s supercharged Un-carrier, connecting millions through its strong nationwide network and flagship brands, T-Mobile and Metro by T-Mobile. Customers benefit from an unmatched combination of value, quality, and exceptional service experience.About TMUS Global Solutions : TMUS Global Solutions is a world-class technology powerhouse accelerating the company’s global digital transformation. With a culture built on growth, inclusivity, and global collaboration, the teams here drive innovation at scale, powered by bold thinking.TMUS India Private Limited is a subsidiary of T-Mobile US, Inc. and operates as TMUS Global Solutions.About the Role : Security is a core pillar of our digital infrastructure. As a Senior Engineer – Security Operations, you will be a key member of the CFL Platform Engineering and Operations team you will play a critical role in ensuring the reliability, integrity, and responsiveness of security operations across large-scale cloud and enterprise platforms.You’ll work closely with threat intelligence, platform engineering, and cloud teams to detect, investigate, and respond to threats. You’ll also contribute to the design and automation of detection pipelines, incident workflows, and security observability frameworks—helping protect systems, data, and users in real time.What You’ll Do : Respond to security alerts and incidents, triaging and escalating as appropriateInvestigate security events across cloud, infrastructure, and application layers using SIEM and telemetry toolsParticipate in incident response, post-incident reviews, and root cause analysis processesWrite, tune, and deploy detection rules using platforms such as Splunk, Sentinel, ChronicleIntegrate telemetry from cloud logs, IAM, APIs, containers, and endpoint toolsCollaborate with threat intelligence teams to build and test detections for IOCs and attacker behaviorsDevelop and maintain SOAR workflows, automation scripts, and investigation playbooksContribute to the observability stack with monitoring, metrics, and alerting capabilitiesIntegrate security signals into CI / CD pipelines and DevSecOps toolchainsCollaborate with cloud, SRE, and engineering teams on secure architecture and operationsContribute to platform hardening and baseline security configurationsPromote security best practices and awareness across engineeringWhat You’ll Bring : Bachelor’s degree in Computer Science, Information Security, or a related field4-7 years of experience in security operations, detection engineering, or incident responseStrong experience with SIEM / SOAR platforms including detection rule creation and tuningExperience with cloud-native security tooling (Azure preferred, AWS / GCP acceptable)Proficiency in Python, PowerShell, or Bash for scripting and automationKnowledge of security monitoring in Kubernetes, APIs, and container-based workloadsMust Have Skills : Application & Microservice : Java, Spring boot, API & Service DesignAny CI / CD Tools : Gitlab Pipeline / Test Automation / GitHub Actions / Jenkins / Circle CIApp Platform : Docker & Containers (Kubernetes)Any Databases : SQL & NOSQL (Cassandra / Oracle / Snowflake / MongoDB)Any Messaging : Kafka, Rabbit MQAny Observability / Monitoring : Splunk / Grafana / Open Telemetry / ELK Stack / Datadog / New Relic / Prometheus)Security Skillset : OWASP Concepts, threat modelingNice To Have : CSPM (AWS, Azure, Databricks)Data protection : tokenization, masking, key rotationPolicy-as-code enforcement (OPA, Kyverno)SIEM / SOAR pipeline tuning & ownership.