Information Security Specialist

As a Security Engineer, you will be responsible for designing and implementing the security architecture of our organization. This includes firewall and endpoint security, WAF implementation, VAPT, fraud investigation, dark web monitoring, brand monitoring, email security, and compliance enforcement.

The ideal candidate will have expertise in securing IT infrastructure, conducting risk assessments, ensuring compliance, and implementing Microsoft security layers to strengthen the organization's security posture.

1. Firewall, Endpoint & WAF Security

• Design, configure, and manage firewalls (Palo Alto, Fortinet, Cisco ASA, Check Point).
• Deploy and maintain Web Application Firewalls (WAF) for web security (Cloudflare, Imperva, AWS WAF).
• Implement Endpoint Detection & Response (EDR) solutions like Microsoft Defender for Endpoint, CrowdStrike, SentinelOne.
• Conduct regular firewall rule audits, optimize configurations, and enforce Zero Trust principles.

2. Microsoft Security Layer Implementation

• Configure and manage Microsoft Defender for Office 365 to protect against phishing, malware, and email threats.
• Implement Safe Links, Safe Attachments, and Anti-Phishing policies.
• Monitor and respond to email security alerts in Microsoft Security Portal.
• Conduct email security threat hunting using Defender for O365 and advanced hunting queries.

3. Endpoint Security & Compliance Management

• Deploy and manage Microsoft Defender for Endpoint (MDE) to protect corporate devices.
• Enforce attack surface reduction (ASR) rules for endpoint protection.
• Configure endpoint compliance policies using Microsoft Intune.
• Implement DLP (Data Loss Prevention) policies to prevent data exfiltration.

4. Fraudulent Incident Investigation & Threat Hunting

• Investigate fraud incidents, phishing attempts, and business email compromise (BEC).
• Conduct forensic analysis on compromised endpoints, servers, and email accounts.
• Develop and implement threat intelligence and threat hunting processes.
• Work closely with SOC teams for incident response and mitigation.

5. VAPT & IT Security Operations

• Perform Vulnerability Assessments & Penetration Testing (VAPT) on infrastructure, applications, and cloud environments.
• Implement and manage intrusion detection/prevention systems (IDS/IPS).
• Monitor, analyze, and mitigate vulnerabilities from external and internal security scans.
• Work with teams to remediate vulnerabilities and harden IT assets.

6. IT Security & Compliance Management

• Develop and enforce security policies, standards, and procedures.
• Implement Zero Trust Architecture and IAM policies.
• Conduct security awareness training and phishing simulations.
• Ensure compliance with ISO 27001, NIST, CIS, PCI-DSS, GDPR, and other industry standards.

Required Skills and Qualifications:

Technical Skills:

• Firewall & Network Security: Palo Alto, Fortinet, Cisco ASA, Check Point
• Microsoft Security Stack: Defender for Endpoint, Defender for Office 365, Intune, Purview Compliance
• Endpoint Security & EDR: Microsoft Defender, CrowdStrike, SentinelOne
• WAF & Web Security: Imperva, AWS WAF, Akamai, Cloudflare
• VAPT & Red Teaming: Burp Suite, Nessus, Metasploit, Kali Linux, OWASP ZAP
• SIM & Threat Intelligence: Microsoft Sentinel, Splunk, QRadar, ELK Stack, MITRE ATT&CK
• Cloud Security: Azure Security Center, AWS Security Hub, GCP Security Command Center
• IAM & Zero Trust: Okta, Microsoft Entra ID, Conditional Access Policies, PAM
• Dark Web & Brand Monitoring: Recorded Future, Digital Shadows, Microsoft Defender Threat Intelligence

Soft Skills:

• Strong analytical and problem-solving skills.
• Excellent communication and stakeholder management abilities.
• Ability to work independently and in cross-functional teams.
• Proactive security mindset with attention to detail.