Senior Security Engineer

Location: Noida, India

Thales people architect identity management and data protection solutions at the heart of digital security. Business and governments rely on us to bring trust to the billons of digital interactions they have with people. Our technologies and services help banks exchange funds, people cross borders, energy become smarter and much more. More than 30,000 organizations already rely on us to verify the identities of people and things, grant access to digital services, analyze vast quantities of information and encrypt data to make the connected world more secure.

Present in India since 1953, Thales is headquartered in Noida, Uttar Pradesh, and has operational offices and sites spread across Bengaluru, Delhi, Gurugram, Hyderabad, Mumbai, Pune among others. Over 1800 employees are working with Thales and its joint ventures in India. Since the beginning, Thales has been playing an essential role in India’s growth story by sharing its technologies and expertise in Defence, Transport, Aerospace and Digital Identity and Security markets.

Senior Security Engineer

The Opportunity

As a Senior Security Engineer, you will collaborate with a team of experienced security professionals to safeguard our corporate and production environments, leveraging state-of-the-art security tools and techniques to play a critical role in detecting, preventing, investigating, and responding to security threats and incidents. As a first line of defense, you are expected to bring deep expertise across various security domains, with strong hands-on experience. In addition, you will partner with cross-functional teams to provide security guidance, support, and training to strengthen our organization’s overall security posture.

This position requires participation in an on-call rotation to support 24/7 security monitoring.

Responsibilities

• Monitor, investigate, and triage security events to support and enhance threat modeling efforts

• Proactively monitor cloud, network, endpoint to identify suspicious activity and emerging threats

• Perform cloud security configuration review, and policy enforcement

• Develop and maintain security alerts, log correlation rules, and dashboards using SIEM solution

• Configure and manage security tools (e.g., SIEM, CSPM, EDR, DLP, vuln scanners). Strong experience in tuning and leveraging these tools is essential

• Conduct quarterly security gap analyses and risk assessments

• Conduct ongoing threat hunts and publish regular threat intelligence reports

• Manage the InfoSec ticket queue, conduct investigations, and document resolutions

• Review and evaluate vulnerability scan results and remediation efforts

• Investigate and respond to data loss prevention (DLP) events

• Document, analyze, and escalate security incidents as needed

• Collaborate with other business units to assess system configurations and ensure secure integration

• Partner with internal stakeholders to define, develop, and implement security standards and best practices

• Conduct third-party security assessments for new and renewing vendors

Qualifications

• 5+ years of experience in information security or 7+ years in IT operations with significant security exposure

• 5+ years of hands-on experience with major cloud service providers (e.g., AWS, Azure, GCP)

• 3+ years of experience working with SIEM tools, including log correlation, alert development, and dashboard creation

• 3+ years of experience in security alert monitoring and incident investigation

• Strong understanding of cloud-native security tools and configurations, including identity and access management, logging/monitoring, and workload protection

• Practical experience with threat hunting techniques and methodologies

• Familiarity with the MITRE ATT&CK framework and its application to detection engineering and incident analysis

• Strong ability to interpret and analyze security logs, network traffic, and system behaviors to detect attack patterns and anomalies

• In-depth knowledge of network, endpoint, and cloud security technologies and principles

• Demonstrated experience collaborating across global teams and working in cross-functional environments

• Knowledge of data security architecture, data classification frameworks, and policy development

• Strong organizational and time management skills with the ability to work independently

• Up-to-date knowledge of recent vulnerabilities, attack vectors, and remediation strategies

• Excellent written and verbal communication skills to support collaboration with technical and non-technical stakeholders

• Experience administering and fine-tuning security infrastructure is a strong plus

At Thales we provide CAREERS and not only jobs. With Thales employing 80,000 employees in 68 countries our mobility policy enables thousands of employees each year to develop their careers at home and abroad, in their existing areas of expertise or by branching out into new fields. Together we believe that embracing flexibility is a smarter way of working. Great journeys start here, apply now!