Security Engineer

Security Engineer II

Work Location - Chennai/Remote

Shift - 24x7

Job Purpose

The mission of the CBTS Corporate Security Team is to protect our organizations people, assets, and information, while supporting continued innovation and the delivery of advanced technology products and services to our customers.

We are seeking to add a skilled and motivated Security Engineer with a strong focus on Data Loss Prevention (DLP) and Application Control. This role is responsible for designing, implementing, and maintaining security controls that protect our data and ensure our endpoints and servers are protected from unauthorized or risky software.

Essential Functions

• Develop and execute strategies to prevent unauthorized data access or exfiltration by leveraging endpoint, network, and cloud DLP systems
• Implement and maintain application allowlisting policies to restrict execution of unauthorized or risky software
• Collaborate with technical and non-technical cross-functional teams to align endpoint and data protection policies with business requirements
• Support incident response teams and participate in post-event reviews
• Assist with the implementation, maintenance, and optimization of other security tools and contribute to broader departmental efforts as required.

Experience

6 to 7 years of experience Senior level roles as IT Security Architect, IT Security Engineer, IT Security Auditor, Cyber-Security Analyst, Cyber-Intelligence Analyst

Certifications, Accreditations, Licenses

One or more of the following certifications dependent on the actual role:

Advanced GIAC/SANS certifications - GCIH, GCIA, GCFE, GCFA, GREM, GIAC, GSEC, GWAPT, ISC-squared CISSP, CompTIA Security

Special Knowledge, Skills, and Abilities:

• Strong troubleshooting and analytical skills.
• Excellent verbal and written communication skills.
• Able to work collaboratively with others and participate in technical conversations, troubleshooting, and design discussions
• Strong technical knowledge of DLP architecture, policy creation
• Experience with DLP platforms such as Microsoft Purview, Palo Alto CASB, or other enterprise DLP technologies.
• Experience with data classification & labeling technologies
• Experience with application control tools and techniques (e.g., ThreatLocker Protect, Microsoft AppLocker, Carbon Black App Control).
• Hands-on experience with security incident response, risk management, and data governance.
• Experience with scripting and automation (e.g., PowerShell, Python)
• Proficient in security frameworks, including NIST 800-53 and Cybersecurity Framework (CSF), as well as industry standards and best practices
• Understanding of compliance regulations such as PCI-DSS, HIPAA, and GDPR
• Incident response experience, including knowledge of intrusion analysis and network/host forensics techniques
• Experience with SIEM or similar log analysis tools and experience reviewing security events.

Interested candidates can share their resumes at hemamalini.dhanasekaran@cbts.com