Lead Security Engineer

Job Title : Lead Engineer – Security Operations

Department : Engineering and Operations

Location : Mumbai

Reporting : Manager Security Operations

Job Type : Full Time

Shift : Rotational Shift

• PRE-REQUISITES
• Strong technical and subject matter expertise in at least four or more of the following security specialties :
• Firewall : Cisco, Palo Alto, Checkpoint, Fortinet, Zscaler, Barracuda
• VPN - IPSEC, SSL VPN : Ivanti, F5, Cisco, GlobalProtect
• NAC : Cisco ISE, Aruba ClearPass
• Unified Thread Management (UTM)
• SIEM products Qradar, Microsoft Sentinel etc.
• Load Balancers : F5 BigIP LTM / GTM, Citrix ADC
• Network Security (multi-vendor) experience.
• Cloud Infrastructure Mgmt. : Cloud stack, OpenStack, AWS, Azure, Netskope, PaloAlto Prisma
• Knowledge on scripting language like Python and automation
• Working knowledge and hands-on experience on Linux / Unix OS is desirable.
• Customer service experience preferably in a Global Operations Center environment
• Ticketing system knowledge
• Ability to workdays, evenings and weekends as required; 24x7 support in rotating shifts
• Flexibility with the ability to manage stressful situations and adapt to rapidly changing environments and requirements
• Analytical thinker willing to “think outside the box” to resolve customer impacting situations on first contact; understand customer pain
• Ability to work with Operations and Engineering on the priority of issues to resolve the urgent customer impacting issues first
• Aptitude and desire to learn advanced Network Security services.
• Creative, flexible thinker who is willing to take initiatives and share alternative solutions with peers and management
• Hands-on experience on Vulnerability Scanning, Penetration Testing Tools (Qualys, Nessus, Rapid7)
• Exceptional documentation and communication skills
• Ability to thrive in a fast paced, multi-cultural, customer-oriented environment
• MS Office proficiency
• RESPONSIBILITIES
• Incident Resolution
• Ticket resolution - work on trouble tickets, support the operation of advanced Network Security Services and take escalations
• Queue Management - keep a watch on queue and assign tickets
• Service Request - working on request for changes as per client requirements
• Perform the minor / major changes as per defined SoC process and work instructions
• Be a Subject Matter Expert (SME) on a few products
• Create Standard Operation Procedure
• Attend client calls and other technical meetings
• Assist in creation of Root Cause analysis (RCA)
• Security Performance Tuning
• Identify areas of Service Improvement Program (SIP) for key clients and reduce incidents
• Review code upgrade and test implement before rolling on to production
• Review documentation
• Recognize successful intrusions and compromises through review and analysis of relevant event detail information
• Review and update ROE on yearly basis
• Other Functions
• Work with hardware / software vendors to resolve problems
• Coordinate shifts and exchange handoff between various shifts
• Cross-train and mentor juniors
• Participate in various network and security related projects
• Perform other duties as assigned
• Any additional task given to the incumbent from time-to-time based on business needs
• TRAINING AND CERTIFICATION REQUIRED
• CCNA, CCSA, Fortinet NSE-4, PCNSE, CCIE, CEH
• EXPERIENCE
• Minimum 10 years of progressive, relevant experience and proven capability to work in a complex network environment
• EDUCATION
• Bachelor in Engineering - Computers / Electronics / Communication or related field
• Graduate / Post Graduate in Science / Math / IT or related streams with relevant technology experience
• TECHNICAL AND OTHER SKILLS
• Knowledge of ITIL, ISO27K, SOC 2 will be beneficial