Sr. Security Engineer- Azure

XenonStack’s SecOps team is looking for an experienced and knowledgeable System Security Engineer professional to join our SecOps team for preventing and mitigating security breaches that may arise within our company's computer systems. 

How You can help us

As a System Security Engineer, you will be responsible for planning, implementing and managing the overall system security strategy. Your focus will be on Network Security, Application Security and Infrastructure Security.

Here’s why you’ll love working with us

● Purposeful work culture and people oriented organisation 

● Exposure to working on enterprise national and international $million projects 

● Complete job and employee security 

● Warm, authentic and transparent communication 

● Time to time jon feedback and exposure to different technologies 

● Appreciation and rewards on performance achievements. 

Key Responsibilities

● Work with the team to plan, prepare, execute, and summarise the security testing
● Review and correlate security logs 

● Work with a team in delivering and implementing consistent test disciplines and processes using associated best practices across the program. 

● Identify security vulnerabilities and issues, perform risk assessments, and evaluate remediation alternatives 

● Artful communication skills and organizational savvy, to steer peers and leadership toward solutions that carefully balance business, risk, compliance, and engineering concerns. 

● Eagerness to challenge the status quo, balanced with a reasonable and methodical approach to effecting change. 

● Security testing- Penetration security/ Infrastructure security/ cloud security/Devsecops security/ Application security 

● Collaborate and consult with peers, colleagues and managers to resolve issues.

Technical Requirements 

● Understanding of security practices of various CSP(Cloud Service Provider).

 ● Understanding of Web Application n-tier architectures, threat modeling and secure coding practices. 

● Understanding of security vulnerabilities and remediation detailed by organizations like OWASP, SANS, etc. 

● Experience assessing Application Security - - development, implementation and maintenance of Application Security posture in an enterprise organization. 

● Identifying, measuring and detailing risks and recommendations on the security controls 

● Ability to analyze vulnerabilities appropriately characterizes threats, and provide sound remediation advice 

● Familiarity with commercial testing applications (i.e. Burp, dbProtect, Acunetix, SonarQube)

● Knowledge of network protocols and network monitoring like "sniffing" (e.g. Wireshark, tcpdump) 

● Knowledge of tools used for Thick clients, web application, and mobile security testing.
● Experience in SIEM and SOC solutions. 

● Experience in two or more of the following: Rapid7 InsightVM, Crowdstrike, ProofPoint, Nexpose, Nessus, Qualys, Splunk, Endpoint Security, etc. 

● Coding/scripting experience (Python, Ruby, C, Assembly, Bash, PowerShell, etc.) 

Professional Attributes

● Excellent communication skills 

● Attention to detail 

● Analytical mind and Problem Solving Aptitude 

● Strong Organisational skills 

● Visual Thinking 

Education : B.E/B.Tech in Computer Science or a related technical degree or M.S/M.Tech in Information Security. 

Experience : 2-4 years
Location: Plot No. C-184, Sixth Floor 603 , Sector 75 Phase VIIIA, Mohali 160071

Work Engagement: In-Office