Lead Security Engineer

Job Title: Lead Engineer Security Operations

Department: Engineering and Operations

Location: Mumbai

Reporting: Manager Security Operations

Job Type: Full Time

Shift: Rotational Shift

1. PRE-REQUISITES

• Strong technical and subject matter expertise in at least four or more of the following security specialties:
• Firewall: Cisco, Palo Alto, Checkpoint, Fortinet, Zscaler, Barracuda
• VPN - IPSEC, SSL VPN: Ivanti, F5, Cisco, GlobalProtect
• NAC: Cisco ISE, Aruba ClearPass
• Unified Thread Management (UTM)
• SIEM products Qradar, Microsoft Sentinel etc.
• Load Balancers: F5 BigIP LTM/GTM, Citrix ADC
• Network Security (multi-vendor) experience.
• Cloud Infrastructure Mgmt.: Cloud stack, OpenStack, AWS, Azure, Netskope, PaloAlto Prisma
• Knowledge on scripting language like Python and automation
• Working knowledge and hands-on experience on Linux/Unix OS is desirable.
• Customer service experience preferably in a Global Operations Center environment
• Ticketing system knowledge
• Ability to workdays, evenings and weekends as required; 24x7 support in rotating shifts
• Flexibility with the ability to manage stressful situations and adapt to rapidly changing environments and requirements
• Analytical thinker willing to think outside the box to resolve customer impacting situations on first contact; understand customer pain
• Ability to work with Operations and Engineering on the priority of issues to resolve the urgent customer impacting issues first
• Aptitude and desire to learn advanced Network Security services.
• Creative, flexible thinker who is willing to take initiatives and share alternative solutions with peers and management
• Hands-on experience on Vulnerability Scanning, Penetration Testing Tools (Qualys, Nessus, Rapid7)
• Exceptional documentation and communication skills
• Ability to thrive in a fast paced, multi-cultural, customer-oriented environment
• MS Office proficiency

1. RESPONSIBILITIES

• Incident Resolution
• Ticket resolution - work on trouble tickets, support the operation of advanced Network Security Services and take escalations
• Queue Management - keep a watch on queue and assign tickets
• Service Request - working on request for changes as per client requirements
• Perform the minor/major changes as per defined SoC process and work instructions
• Be a Subject Matter Expert (SME) on a few products
• Create Standard Operation Procedure
• Attend client calls and other technical meetings
• Assist in creation of Root Cause analysis (RCA)
• Security Performance Tuning
• Identify areas of Service Improvement Program (SIP) for key clients and reduce incidents
• Review code upgrade and test implement before rolling on to production
• Review documentation
• Recognize successful intrusions and compromises through review and analysis of relevant event detail information
• Review and update ROE on yearly basis
• Other Functions
• Work with hardware/software vendors to resolve problems
• Coordinate shifts and exchange handoff between various shifts
• Cross-train and mentor juniors
• Participate in various network and security related projects
• Perform other duties as assigned
• Any additional task given to the incumbent from time-to-time based on business needs

1. TRAINING AND CERTIFICATION REQUIRED

• CCNA, CCSA, Fortinet NSE-4, PCNSE, CCIE, CEH

1. EXPERIENCE

• Minimum 10 years of progressive, relevant experience and proven capability to work in a complex network environment

1. EDUCATION

• Bachelor in Engineering - Computers/Electronics/Communication or related field
• Graduate/Post Graduate in Science/Math/IT or related streams with relevant technology experience

1. TECHNICAL AND OTHER SKILLS

• Knowledge of ITIL, ISO27K, SOC 2 will be beneficial