Total 8 technical support engineer job vacancies in Legal / Public / Security category in India, Pune

THE POSITION:

• Reporting to the Manager – Public Cloud Platform Engineering, the Cloud Engineer helps build and support platform services for Azure and AWS. This role includes communication with internal teams around updates and/or unexpected outages while working with public cloud vendors to help solve those issues. For each new service that will be supported, this role will focus on building automated solutions which can be passed to our Site Reliability Engineering team to build for specific business units. Key areas of impact this role provides are improving speed to market capabilities for through public cloud infrastructure, promoting development and operations best practices, innovative solutions, technical problem solving, and precision engineering through communications and proper blueprinting processes. The ideal candidate will foster a collaborative environment by leaning on a public cloud infrastructure background along with IaC experience. Areas of operation include Software, Systems, Network, Security, Cloud (Public/Private/Community/Hybrid), Automation, and Development and Infrastructure Operations. The candidate will primarily focus on engineering automated platform solutions. Engineers in this role will work tightly with DevOps Engineering and Enablement teams.

ESSENTIAL DUTIES AND RESPONSIBILITIES:

Our employees are tasked with delivering excellent business results through the efforts of their teams.  These results are best achieved by:

• Participate in two-week sprints (planning, implementation, demo, retro)
• Build cloud platform solutions based on business need which includes manual creation for understanding of the process, automation of the process, and hand off to internal development and operations team for implementation into the self-service portal.
• Continuous learning and growth to stay current on new developments within Azure & AWS
• Demonstrate a commitment to diversity, equity, and inclusion through continuous development, modeling inclusive behaviors, and proactively managing bias.
• Accountable for working with engineering teams to help provide a minimum of 99.9% infrastructure uptime in accordance with current service level agreements.
• Maintain and enforce ITIL standards and procedures around service strategy, design, transition, operations, and continuous improvement.
• All other duties as assigned.

The above list reflects the general details necessary to describe the expectations of the position and shall not be construed as the only expectations that may be assigned for the position.

An individual in this position must be able to successfully perform the expectations listed above.

MINIMUM KNOWLEDGE, SKILLS, AND ABILITIES:

• Experience in Azure &/or AWS.
• Hands on experience on Terraform - MANDATORY
• Ability and willingness to work in bi-weekly rotational shifts from 2 PM to 11 PM & 5 PM to 2 AM IST
• 3+ year(s) in working with public cloud infrastructure solutions (IaaS and PaaS solutions specifically).
• 3+ years working in technical software or infrastructure engineering teams.
• Experience with Git based systems for source control management.
• Experience in cloud security and best practices.
• Large-scale server and network management technology
• Procedure and policy design, documentation, and dissemination
• Understanding of global network design and inter-networking
• Security engineering, server and network hardening, auditing, and reporting
• Strong technical, analytical, problem solving and verbal and written communication skills.

PREFERRED QUALIFICATIONS:

• Prior healthcare experience would be a plus.
• Industry certifications based on Public Cloud Infrastructure (e.g., Azure MCSA/MCSE, AWS Solutions Architect)

EDUCATION:

• Any computer graduates.

About the opportunity

Join our Central Technology Team to make a real impact every day. We say that because we know that every code line we write, every interface we design and every conversation we have, is another opportunity for us to enrich our customers’ experiences.

Our Senior Security Engineers contribute to the security of our platforms and applications. The role executes protection of our software assets and infrastructure platforms from threat modelling through to penetration testing, and incident response of our customer facing systems.

Some of the other responsibilities include:

• Preserve the confidentiality, integrity and availability of our information so that it can be safely shared and used to drive our growth and innovation - enabling information confidence
• Implementation of Application and Platform Security, enabling safe and confident product development in partnership with our developers
• Empower our people to be security assets - our first line of defense against the threats to our information security
• Guidance to junior team members on TTPs and novel approaches
• Assist Cyber Threat Response with incident investigations and aid in technical risk assessments
• Coordinate with system development and infrastructure units to identify Cyber risks and the appropriate controls for development, day-to-day operation, and emerging technologies
• Perform regular security assessments including web applications , APIs and mobile apps based on changes in the threat landscape
• Monitor vulnerability assessments and ethical hacks, ensuring that issues are addressed for the applications that they support
• Provide information security support with related activities during systems development (e.g. authentication, encryption)
• Identify and develop new and improved technical procedures and process control manuals
• Identify significant Cyber threats and vulnerabilities
• Assume informal/formal mentorship role within teams and assist with the coaching and training of new team members
• Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Xplor, its customers and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency.

About our Central Technology team

At Xplor, we have many different products and technologies. We have evolved from a bunch of start-ups to a single company with over 700 Xplorers who work in our CT team as one team across the world. You can find everything from super modern to older languages. We continue to iterate on our processes and technologies to find common ground between the different projects and product we have.

With this, we rely heavily on our engineers to be dynamic. Xplor is not the company (yet) where you’ll always have well-defined requirements and rigid processes. Our Engineers have a lot of input into the process and requirements. However, there can be challenges and ambiguity you as an Engineer have to overcome – and we know that’s not for everyone. The positive side of this is that you get to have a lot of say and ownership in the product and the process.

Job Summary:

We are seeking a highly skilled and experienced Cyber Security Engineer specializing in Data Loss Prevention (DLP) to join our professional services team. As a Cyber Security Engineer (DLP), you will

be responsible for implementing and maintaining effective DLP solutions to protect our clients' sensitive data from unauthorized disclosure or loss. You will collaborate with cross-functional teams to assess data risks, design DLP strategies, and deploy and manage DLP technologies and processes.

Responsibilities:

• Implement, and maintain Data Loss Prevention (DLP) solutions for network and endpoint environments to protect sensitive data from unauthorized disclosure, loss, or leakage.
• Configure and deploy DLP policies, rules, and alerts within network and endpoint DLP platforms.
• Collaborate with cross-functional teams, including IT, Legal, and Compliance, to align DLP strategies with regulatory requirements and industry standards.
• Conduct data discovery and classification exercises to identify and categorize sensitive data across the organization.
• Integrate DLP solutions with existing security infrastructure, including firewalls, proxies, and endpoint protection systems.
• Stay up-to-date with the latest trends and developments in DLP technologies, data protection regulations, and industry best practices.
• Document DLP configurations, procedures, and troubleshooting guides for knowledge sharing and future reference.

For Senior position include the following responsibilities: -

• Develop and deliver DLP training and awareness programs to educate Junior teammates on data security best practices and policy compliance.

Qualifications:

• Bachelor's degree in Computer Science, Information Security, or a related field. Relevant certifications (CISSP, CISM, Certified DLP Professional) are highly desirable.
• Strong technical knowledge and hands-on experience with leading DLP platforms such as Symantec DLP, McAfee DLP, or Forcepoint DLP.
• In-depth knowledge of DLP concepts, methodologies, and tools, including content analysis, data classification, and network and endpoint DLP solutions.
• Familiarity with network protocols, endpoint security technologies, and data protection regulations (GDPR, CCPA, ISO 27001).
• Proficient in configuring DLP policies, rules, and alerts to enforce data protection policies and prevent data loss.
• Experience with data discovery and classification tools to identify sensitive data and define appropriate protection measures.
• Excellent analytical and problem-solving skills to identify and address DLP risks and incidents effectively.
• Strong communication and collaboration skills to work effectively with clients, cross-functional teams, and stakeholders.
• Ability to work independently, manage multiple projects simultaneously, and meet deadlines.

We offer a competitive salary, benefits package, and opportunities for professional growth and development. Interested applicants may send your CV to hr@cybersense-tech.com, kindly note that only selected candidates will be contacted.

Our Software Security Engineer builds and maintains specific tooling and integrations that test the  security of our platforms and applications. Using knowledge of Python, C#, API connections, SQL and Windows Internals, this role writes code to break code, and enables data visibility and automation for security - supporting our penetration testers, incident responders and risk monitors.

Essential Responsibilities:

• Develop custom tools and scripts in C# and python to probe, assess, and exploit Windows internals for security testing purposes. 
• Build, extend and maintain an implementation of MITRE Caldera for security testing automation
• Collaborate with the Adversaries Team to design, develop and test methods to execute sophisticated attacks on systems and applications
• Stay abreast of the latest developments in Infrastructure and Application security, vulnerabilities, and exploitation techniques. 
• Conduct research and development to discover new methods of automating attack vectors and techniques. 
• Continuously improve and update existing tools and techniques to keep pace with evolving security challenges. 

Job description:

· Consistent and regular attendance is an essential function of this job.

· Detect, respond and / or escalate issues with CSOC tools in a timely fashion.

· Maintain and review CSOC tools so that they continue to be effective in detecting cyber threats.

· Operationalize new tools introduced as part of Global CSOC initiatives environment.

· Review and update Cyber Security Operations Engineering runbooks timely.

· Collect, review and analyze Cyber Security Operations Engineering metrics and trending, including the health of the security monitoring systems timely.

· Ensure IT compliance within CSOC tools.

· Ensure CSOC tools compliance to regulatory requirements.

· Coordinate with other stakeholders to resolve cases, where required.

· Support CSOC in reviewing, enhancing and updating tools used by CSOC.

· Performs other related duties as assigned.

· On-call for any technical issues affecting the availability of CSOC tools.

Requirements

· Degree or Diploma with at least 2-5 years of work experience in supporting, reviewing and administering tools used in a Global CSOC environment.

· Professional cyber security engineering / tool related membership / certification is required.

· Experience in Integrated Resort, Banking or Critical Infrastructure InfoComm Industry is preferred, but not a must.

· Proven effective verbal and written communication skills.

Skills required:

· Applying host/network access controls (e.g., access control list).

· Tuning sensors / tools

· Using incident handling methodologies.

· Securing network communications.

· Protecting a network against malware. (e.g., NIPS, anti-malware, restrict/prevent external devices, spam filters).

· Troubleshooting and diagnosing cyber defense infrastructure anomalies and work through resolution.

· Applying cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).

· System, network, and OS hardening techniques. (e.g., remove unnecessary services, password policies, network segmentation, enable logging, least privilege.

Velotio Technologies is a product engineering company working with innovative startups and enterprises. We are a certified Great Place to Work® and recognized as one of the best companies to work for in India. We have provided full-stack product development for 110+ startups across the globe building products in the cloud-native, data engineering, B2B SaaS, IoT & Machine Learning space. Our team of 325+ elite software engineers solves hard technical problems while transforming customer ideas into successful products.

• Build a Security Hardening strategy for our cloud services and continue to assess and take actions that result in a highly secure cloud service.
• Confidently and intelligently respond to security incidents and proactively consider how to prevent the same type of incidents from occurring.
• Design and coordinate cohesive responses to security events that involve multiple teams across the organization.
• Build security utilities and tools for internal use that enable you and your fellow Security Engineers to operate at high speed and wide scale.
• Evaluate the impact on the organization of current security trends, advisories, publications, and academic research. Coordinate responses across affected teams to do the right thing for our customers and organization.
• Ability to communicate effectively at multiple levels of sensitivity and multiple audiences.
• Recognize, adopt, and instill the best practices in security engineering fields throughout the organization: development, cryptography, network security, security operations, incident response, and security intelligence.
• Provide subject matter expertise on architecture, authentication, and system security. • Fulfil regular on-call responsibilities.

Desired Skills & Experience

• Experience with AWS and AWS Security, Identity, and compliance resources and secure architecting .
• Should have more than 4 years of experience in relevant technologies. preferably in Engineering or Computer Science .
• Experience with Web Application Architecture Security Review, Threat Modelling, Static Code Review, Penetration Testing, and Incident Response Planning
• Experience with third-party risk analysis and management
• Current knowledge of web and mobile application vulnerabilities, attacks, and mitigation methods
• Strong understanding of information security principles and core technologies (CIA, encryption, identity, auth/authZ, SSO, Networking, web protocols, and privacy)
• Strong understanding of web and mobile application security best practices and secure architecture patterns
• Experience with security testing tools: BurpSuite, ZAP, AppScan, SQLMap, Wireshark/TCPdump, Metasploit, Security Monkey, Curl, etc
• Proficient in one programming language – Java preferred along with one scripting language (Perl, Python or PowerShell)
• Good interpersonal and communications skills and the ability to liaison for both technical and non-technical audiences.

Bonus points if you have...

• Certifications in CompTIA Security+, CEH, or GSEC
• Experience with Incident Response , Governance, Risk, and Compliance experience.

Our Culture:

• We have an autonomous and empowered work culture encouraging individuals to take ownership and grow quickly.
• Flat hierarchy with fast decision making and a startup-oriented “get things done” culture.
• A strong, fun & positive environment with regular celebrations of our success. We pride ourselves in creating an inclusive, diverse & authentic environment.

We want to hire smart, curious and ambitious folks so please reach out even if you do not have all of the requisite experience. We are looking for engineers with the potential to grow!

Note: Currently, all interviews and onboarding processes at Velotio are being carried out remotely through virtual meetings.

Job Summary:

We are seeking a skilled and dedicated Cyber Security Engineer specializing in Endpoint to join our professional services team. As a Cyber Security Engineer (Endpoint), you will play a critical role in protecting our clients' endpoints and ensuring the security of their sensitive data. You will be responsible for implementing and managing endpoint security solutions, conducting threat assessments, and providing expertise in mitigating endpoint-based threats.

Responsibilities:

• Deploy, and maintain endpoint security solutions to safeguard client endpoints from cyber threats.
• Implement endpoint security policies, standards, and procedures to ensure compliance with industry regulations and best practices.
• Configure and manage endpoint security technologies, such as antivirus/anti-malware software and endpoint detection and response (EDR) tools.
• Collaborate with cross-functional teams to ensure secure endpoint configurations and deployment of new devices and applications.
• Stay updated with the latest endpoint security threats, vulnerabilities, and industry trends, and proactively recommend and implement appropriate countermeasures.
• Provide technical guidance and support to the incident response team during endpoint security incidents and investigations.
• Document endpoint security configurations, processes, and procedures.

Qualifications:

• Bachelor's degree in Computer Science, Information Security, or a related field. Relevant certifications (CISSP, CompTIA Security+, EC-Council Certified Endpoint Protection Specialist) are highly desirable.
• In-depth knowledge of endpoint security technologies, such as antivirus/anti-malware software, IDS/IPS, and EDR tools.
• Familiarity with endpoint security management platforms and tools (Symantec Endpoint Protection, CrowdStrike Falcon, Microsoft Defender).
• Strong understanding of operating systems (Windows, macOS, Linux) and their security features.
• Knowledge of scripting languages (PowerShell, Python) for automation and customization of endpoint security solutions.
• Familiarity with security standards and frameworks (NIST, CIS) and their application in endpoint security.
• Excellent analytical and problem-solving skills to identify and resolve endpoint security issues.
• Strong communication and collaboration skills to work effectively with clients, cross-functional teams, and stakeholders.
• Ability to work in a fast-paced environment and manage multiple priorities effectively

We offer a competitive salary, benefits package, and opportunities for professional growth and development. Interested applicants may send your CV to hr@cybersense-tech.com, kindly note that only selected candidates will be contacted.

Job Summary:

We are seeking a skilled and dedicated Cyber Security Engineer specializing in Endpoint to join our professional services team. As a Cyber Security Engineer (Endpoint), you will play a critical role in protecting our clients' endpoints and ensuring the security of their sensitive data. You will be responsible for implementing and managing endpoint security solutions, conducting threat assessments, and providing expertise in mitigating endpoint-based threats.

Responsibilities:

• Deploy, and maintain endpoint security solutions to safeguard client endpoints from cyber threats.
• Implement endpoint security policies, standards, and procedures to ensure compliance with industry regulations and best practices.
• Configure and manage endpoint security technologies, such as antivirus/anti-malware software and endpoint detection and response (EDR) tools.
• Collaborate with cross-functional teams to ensure secure endpoint configurations and deployment of new devices and applications.
• Stay updated with the latest endpoint security threats, vulnerabilities, and industry trends, and proactively recommend and implement appropriate countermeasures.
• Provide technical guidance and support to the incident response team during endpoint security incidents and investigations.
• Document endpoint security configurations, processes, and procedures.

Qualifications:

• Bachelor's degree in Computer Science, Information Security, or a related field. Relevant certifications (CISSP, CompTIA Security+, EC-Council Certified Endpoint Protection Specialist) are highly desirable.
• In-depth knowledge of endpoint security technologies, such as antivirus/anti-malware software, IDS/IPS, and EDR tools.
• Familiarity with endpoint security management platforms and tools (Symantec Endpoint Protection, CrowdStrike Falcon, Microsoft Defender).
• Strong understanding of operating systems (Windows, macOS, Linux) and their security features.
• Knowledge of scripting languages (PowerShell, Python) for automation and customization of endpoint security solutions.
• Familiarity with security standards and frameworks (NIST, CIS) and their application in endpoint security.
• Excellent analytical and problem-solving skills to identify and resolve endpoint security issues.
• Strong communication and collaboration skills to work effectively with clients, cross-functional teams, and stakeholders.
• Ability to work in a fast-paced environment and manage multiple priorities effectively

We offer a competitive salary, benefits package, and opportunities for professional growth and development. Interested applicants may send your CV to hr@cybersense-tech.com, kindly note that only selected candidates will be contacted.