Security Operations Engineer

Security Operations Engineer

Application Deadline: 30 April 2025

Department: IT

Employment Type: Permanent - Full Time

Location: Pune

Description

The Role

As Security Operations Engineer, you will work as part of a growing team of Security Engineers in the management of vulnerabilities from identification through to resolution. You will work closely with IT Operations, Cyber Security and the wider IT teams including line of business teams to ensure resolution of issues.

Be a contributor to Operational Security improvements, developing robust resolutions in-line with IT information security and/or Cyber requirements.
Opportunity will cover a diverse IT Operations including but not limited to:

• Assess the quality of security controls, using performance indicators.
• Conduct investigations of information/cyber security breaches to identify vulnerabilities and evaluate the damage.
• Coordinate documentation of security or emergency measure policies, procedures, or tests.
• Coordinate monitoring of networks or systems for security breaches or intrusions.
• Coordinate vulnerability assessments or analysis of information security systems
• Develop or implement software tools to assist in the detection, prevention, and analysis of security threats.
• Develop or install software, such as firewalls and data encryption programs, to protect sensitive information.
• Develop response and recovery strategies for security breaches.
• Identify or implement solutions to information security problems.
• Identify security system weaknesses, using penetration tests.
• Roll out critical patches and deploy security updates,
• Provide research and support the development/use of new technologies.
• The role will require active participation in a technology aligned community focused on continuous service delivery and improvement, along with improving the knowledge and skills of the squad. Engineers will work to improve learning, knowledge, and experience on Davies IT systems and processes.
• You will promote a continuous improvement mindset across the function.

Key Responsibilities

• Oversee performance of risk assessment or execution of system tests to ensure the functioning of security measures or activities.
• Review security assessments for computing environments or check for compliance with security standards and regulations.
• Scan networks, using vulnerability assessment tools to identify vulnerabilities.
• Troubleshoot security and network problems.
• Write reports regarding investigations of information security breaches or network evaluations.
• Check for vulnerabilities in digital infrastructure.
• Security monitoring
• Investigate security-related incidents. 
• Update tickets in line with business SLAs
• Adhering to service management principles, provide technical support, acting as escalation point for any issues highlighted to the IT Support Teams, ensuring timely resolution and regular communication. 
• Proactive monitoring and fault finding of infrastructure, ensuring the Support of internal and external audits. 
• Assisting with risk management tasks; Identification and risk assessment of newly identified vulnerabilities. 
• Operational IT security, including the monitoring and maintenance of IT security tools, such as Security Incident & Event Management (SIEM), anti-virus, and vulnerability management platforms. 
• Assist with IT security gap and risk assessments including PCI DSS, ISO 27001, CIS Top 18 and Cyber Essentials. 
• Timely escalation of issues to Team Leader, Operations Manager and Group Head of Deliver and Operations.

Skills, Knowledge & Expertise

• Proven technical hands-on knowledge of the implementation, maintenance, and tuning of security systems and integrating those systems into the enterprise.
• One or more relevant IT security qualifications from a recognised body, such as GIAC GSEC and ISC2 CISSP. 
• Experience of Compliance (NIST, GDPR, PCI). 
• Knowledge of Network Segmentation: virtual and physical 
• Knowledge of common security attacks and indicators of compromise: phishing, smishing, malware, man in the middle attack, SQL Injection, Denial of Service Attacks, Insider Threats, Cryptojacking, Ransomware 
• Ability to manage and work on multiple concurrent deliverables at various stages of development and completion.
• Strong problem solving and analytical skills.
• Highly focused customer service approach with excellent interpersonal skills. 
• Experience with the Microsoft on premise and cloud platforms 
• Ability to communicate technical information to both technical and non-technical people. 
• Management of third-party relationships. 
• Strong attention to detail, with excellent communication skills, both written and verbal. 
• Flexible and approachable. 
• You are self-motivated, result driven and business oriented. 
• Willingness to seek out and implement coaching, suggestions, and guidance from others.
• Advance knowledge of security operations.