Security Engineer

Job Role:  Security Engineer

Location: Hyderabad
Job Role:  Security Engineer

Location: Hyderabad

Purpose:  Security Engineer role will be global in nature and engineering guidance will be critical to Organization's Global Transformation initiatives and will be focused on infrastructure initiatives such as Unified Communication and Collaboration, End User Computing and Network.

The Security Engineer will be a member of the Global Unified Communication and Collaboration team and will support engineering around security of Unified Communication and Collaboration platforms and end user computing devices/platforms in close partnership with the Global Information Security and Global Infrastructure organizations. 

This role will work closely with the sector delivery leads, infrastructure engineers and SMEs, and IT engineers and architects. The recipient should demonstrate experience across key infrastructure domains including Compute, Network, Cloud, IT Service Management, Unified Communication, Collaboration and Security.

 

Accountability:

·         Providing Engineering and technical guidance to support End User Computing (EUC), Unified Communication and Collaboration (UCC)

·         Assessing current and planned UCC platforms and EUC footprint to identifying security architecture issues and designing solutions for gaps.

·         Review, assess, and mitigate penetration tests and vulnerability assessments around UCC and EUC

·         Understands and sets direction for protecting end user devices (desktop, laptop and mobile) with device management, encryption, anti-virus and other proactive security solutions.  Including familiarity with security features available with Windows Enterprise.

·         Participating in infrastructure projects to develop, plan, and implement specifications for network and distributed system security technologies in support of UCC platforms and EUC footprint 

·         Preparing and presenting information on infrastructure plans, progress, and resolution of security gaps to leadership.

·         Security policy development

·         Participating in risk assessments and security audits to include assessment of vulnerabilities, threats, and likelihood

 

Skills/Experience Required:

 

  • The ideal candidate should have 8-12years of experience with the following: 
  • Identity and Access Management (e.g., LDAP, Sun Access Manager, MS Active Directory)
  • Remote Access Authorization and Authentication (RADIUS, SecurID, IPSEC and SSL VPN)
  • Content security (Cisco/Ironport ESA/WSA/Cloud/OpenDNS/Umbrella) security testing
  • Good understanding of VPN (site-to-site, remote access client, IPSec, IKE, tunnel modes, SSL/clientless/AnyConnect, tunnels between firewalls, routers) 
  • Web Proxies and URL/Content Filtering (e.g., products from WebWasher, and the ICAP protocols)
  • Secure File Transfers (e.g., Sterling, Forum Systems, Ipswitch, sftp, ftps, https, and ftp with PGP)
  • Experience implementing secure cloud-based solutions leveraging Microsoft Security capabilities such as conditional access, rights management, multi-factor authentication and certificate-based solutions.  Familiarity with O365 E3 Security & Compliance features.
  • Experience implementing and managing BitLocker encryption for on-premise Exchange
  • Completes risk-benefit assessments for devices, communication and collaboration solutions.
  • Ability to consult regarding network security architecture to support adoption of Communication, Collaboration and End User compute solutions
  • Familiarity with the security features available in the Microsoft EMS suite including Identity and Access Management, Managed Mobile productivity, Information Protection and Assume BRL Security.
  • Experience with 3rd party authentication and multi-factor solutions such as RSA and Okta
  • Encryption and Key Management (whole disk, file-level, network, database, PGP, MS Certificate Services, and backup tapes)
  • Endpoint Protection (e.g., Anti-Virus, Personal Firewall, and Application Executable Control from vendors such as Symantec and McAfee)
  • Network and Host-based Intrusion Detection and Prevention (e.g. external monitoring integration as well as Cisco Mars)
  • SSL Server Certificates (i.e., VeriSign)
  • Data Loss Prevention (for databases/storage, the network, and endpoints e.g. Symantec Vontu)
  • Email Filtering (e.g., Anti-virus, Anti-Spam, Content Filtering)
  • Work with customers to understand requirements and onboard users to application or desktop virtualization solutions.
  • Log Monitoring (e.g., Windows, Unix, Linux, Networking, and Applications leveraging tools such as Kiwi, Snare, Arcsight, and LogLogic)
  • Audit and Regulatory Issues (e.g., SOX)
  • Normal duties include but are not limited to; security engineering analysis and design; network, desktop, and O3665 platform risk analysis; recommendations of procedural and technological compensating controls; project management; policy and procedure development; incident management, and forensic analysis.
  • Experience leading large projects with matrixed team members from requirements analysis and design to implementation is a must.
  • The following certifications would be a plus: SANS GIAC, CISSP, and CISM. B
  • Bachelor’s Degree required. Master’s in Information Security (or related field) is a plus.
  • Ability to build and maintain constructive working relationships with a diverse community (in and outside of technology); ability to effectively communicate (both written and verbal) with and influence both technical and non-technical audiences.
 
Differentiating Competencies Required:
 
  • Recognized as a subject matter expert within areas of expertise, and/or is certified in one or more technology areas. Capable of diagnosing and evaluating complex issues. Work is performed with minimal direction and reviewed by senior management. Provides solutions to a diverse range of complex problems.
  • Ensure the features, benefits, and architectural impact of technology are understood and valued
  • Assist in developing the business cases for architectural solutions
  • Position the appropriate IT services for customers to consider when deploying a technology solution
·         Lead technical discussions, driving clarity of complex issues/requirements to build robust solutions
  • Develop advanced understanding of technological capabilities 
  • Effectively highlight IT technological advantages and disadvantages from the customer’s perspective
  • Identify technical win strategies from a business and technology perspective
Purpose:  Security Engineer role will be global in nature and engineering guidance will be critical to Organization's Global Transformation initiatives and will be focused on infrastructure initiatives such as Unified Communication and Collaboration, End User Computing and Network.

The Security Engineer will be a member of the Global Unified Communication and Collaboration team and will support engineering around security of Unified Communication and Collaboration platforms and end user computing devices/platforms in close partnership with the Global Information Security and Global Infrastructure organizations. 

This role will work closely with the sector delivery leads, infrastructure engineers and SMEs, and IT engineers and architects. The recipient should demonstrate experience across key infrastructure domains including Compute, Network, Cloud, IT Service Management, Unified Communication, Collaboration and Security.

Want to apply later?

Type your email address below to receive a reminder

Apply to Job

ErrorRequired field
ErrorRequired field
ErrorRequired field
Error
Error
insert_drive_file
insert_drive_file