We are seeking an experienced Security Engineer to design, implement, and maintain the security architecture of our organization. The ideal candidate will oversee firewall and endpoint security, WAF deployment, VAPT activities, fraud investigations, dark web monitoring, brand protection, email security, and compliance enforcement. This role requires strong expertise in securing IT infrastructure, performing risk assessments, enforcing compliance frameworks, and implementing Microsoft security solutions to enhance overall security posture.
Key Responsibilities
1. Firewall, Endpoint & WAF Security
- Design, configure, and manage enterprise firewalls (Palo Alto, Fortinet, Cisco ASA, Check Point).
- Deploy and maintain Web Application Firewalls (Cloudflare, Imperva, AWS WAF).
- Implement and manage Endpoint Detection & Response (Microsoft Defender, CrowdStrike, SentinelOne).
- Conduct firewall rule reviews, optimize configurations, and apply Zero Trust principles.
2. Microsoft Security Ecosystem Implementation
a. Microsoft Email Security
- Configure and manage Microsoft Defender for Office 365.
- Implement Safe Links, Safe Attachments, and Anti-Phishing policies.
- Monitor and respond to alerts in Microsoft Security Portal.
- Conduct email threat hunting using advanced hunting queries.
b. Microsoft Endpoint Security
- Manage Microsoft Defender for Endpoint (MDE) for corporate device protection.
- Enforce Attack Surface Reduction (ASR) rules.
- Configure compliance policies via Microsoft Intune.
- Implement DLP policies to prevent data leakage.
c. Compliance & Risk Management
- Use Microsoft Purview Compliance Manager for assessments and reporting.
- Enforce Information Protection and Encryption policies.
- Configure Conditional Access Policies (Microsoft Entra ID).
- Maintain adherence to ISO 27001, NIST, CIS, GDPR, and other frameworks.
3. Dark Web Monitoring & Brand Protection
- Monitor dark web sources for stolen data, compromised credentials, and insider threats.
- Leverage tools such as Recorded Future, Digital Shadows, or Microsoft Defender Threat Intelligence.
- Detect and respond to brand impersonation attempts and fraudulent domains.
- Collaborate with legal and compliance teams for takedown actions.
4. Fraud Investigation & Threat Hunting
- Investigate fraud incidents, phishing attempts, and BEC attacks.
- Conduct forensic analysis on compromised systems and accounts.
- Develop threat intelligence and hunting methodologies.
- Partner with SOC teams for incident response and remediation.
5. VAPT & Security Operations
- Perform Vulnerability Assessments & Penetration Testing for infrastructure, applications, and cloud.
- Manage IDS/IPS systems and monitor threat activity.
- Analyze and mitigate security vulnerabilities identified from scans.
- Coordinate with technical teams to remediate and harden IT assets.
6. IT Security & Compliance Management
- Develop, implement, and maintain security policies, standards, and procedures.
- Implement Zero Trust Architecture and IAM controls.
- Conduct security awareness programs and phishing simulations.
- Ensure compliance with ISO 27001, NIST, CIS, PCI-DSS, GDPR, and related standards.
Required Qualifications & Skills
Technical Skills
- Network Security & Firewalls: Palo Alto, Fortinet, Cisco ASA, Check Point
- Microsoft Security Stack: Defender for Endpoint, Defender for O365, Intune, Purview
- Endpoint Security & EDR: Microsoft Defender, CrowdStrike, SentinelOne
- WAF Technologies: Cloudflare, Imperva, AWS WAF, Akamai
- VAPT Tools: Burp Suite, Nessus, Metasploit, Kali Linux, OWASP ZAP
- SIEM & Threat Intelligence: Microsoft Sentinel, Splunk, QRadar, ELK, MITRE ATT&CK
- Cloud Security: Azure Security Center, AWS Security Hub, GCP SCC
- IAM & Zero Trust: Okta, Microsoft Entra ID, Conditional Access, PAM
- Dark Web & Brand Intelligence: Recorded Future, Digital Shadows, Defender Threat Intelligence
Soft Skills
- Strong analytical and problem-solving abilities
- Excellent communication and stakeholder management
- Ability to work independently and collaboratively
- Proactive security mindset with high attention to detail