4,615 Security Engineer jobs in India

Job Description

Security Engineer Job Description

Looking for a Skilled Security Engineer with CCNP Security certification and substantial experience in Security Operations Center (SOC) environments. The ideal candidate will be responsible for designing, implementing, and maintaining robust security solutions to safeguard client’s critical assets and infrastructure. This role requires deep technical expertise in network security, incident response, and threat detection, combined with a strong understanding of SOC operations and best practices.

Key Duties:

·Designing, implementing, and maintaining network security infrastructure to protect organizational assets from cyber threats.

·Firewall Administration: Configure, manage, and troubleshoot firewalls such as Cisco Firepower Threat Defense, Firewall Management Center, Firepower Device Management and Cisco ASA to control network access and protect against unauthorized intrusion.

·IPS/IDS Implementation: Deploy and manage Intrusion Prevention Systems (IPS) and Intrusion Detection Systems (IDS) to detect and prevent cyberattacks.

·VPN Configuration: Configure and manage Virtual Private Networks (VPNs) to enable secure remote access and interconnectivity between network sites.

Required Skills and Qualifications:

·Network Security Expertise: Strong understanding of network security principles, protocols, and best practices. Routing (static, OSPF,EIGRP, BGP), switching protocols. Hands on with Cisco wireless access points and wireless controller, Cisco ISE.

·Firewall Knowledge: Proficiency in configuring and managing firewalls, including Cisco Firepower, Meraki and Cisco ASA.

·Hands-on experience on Cisco tools like Cisco AMP, Cisco ASA, FTD, FMC, Cisco Meraki, Cisco Umbrella, Cisco Secure-X/ XDR and Cisco ISE.

·IPS/IDS Experience: Experience with deploying and managing IPS/IDS solutions.

·VPN Understanding : Knowledge of VPN technologies and protocols.

·Load Balancing and WAF: Experience with load balancers and WAFs.

·Conduct regular security assessments and audits to identify vulnerabilities and recommend remediation measures.

·Collaborate with SOC analysts to enhance security monitoring, networking capabilities and optimize detection and response workflows.

Desired Technical Skills :

·Bachelor's degree (B.E/B.Tech., BCA/MCA) in Computer Science, Information Technology, or related field.

·6-8 years relevant experience

·CCNA and CCNP Security Certification

·Strong understanding of security operations concepts, including threat hunting, incident response, and malware analysis.

·Experience with security tools and technologies such as SIEM, IDS/IPS, EDR, and vulnerability scanners.

·Excellent analytical skills, with the ability to assess complex security issues and formulate effective solutions.

Desired Personal Skills:

·Project management skills to monitor tasks and provide deliverables on schedule.

·Business and security process analysis and development

·Communication skills to quickly understand program details, work side-by-side with project managers, data experts, and analysts/programmers.

·Must demonstrate strong oral and written communication skills, with the ability to communicate technical topics to management and non-technical audiences.

·Must possess strong analytical, problem solving and documentation skills.

·Strong team player and leader.

·Ability to work in rotational shifts.

ISA is a premier technology solution provider for the Aviation industry. We are backed by Air Arabia and headquartered in Sharjah, UAE.

ISA (Information Systems Associates) is a premier in the field of Information Technology providing best-of-breed technology solutions for the global travel and aviation industry since 2005. We offer a wide range of tailor-made aviation technology

We are hiring! Security Engineers - Firewall / GDPR

Pune, India

Responsibilities for Security Engineer

1. Serves as the subject matter expert for supported security technologies and during escalations; provides direction to infrastructure, operations, data, and application developments groups throughout the transitioning phase, implementation in production, and beyond.

2. Plans and directs the implementation and testing of security systems concept and architecture, and prepares security standards, policies, and procedures.

3. Implements cloud-based security for ISA products like (DDOS,WAF…) and for Network (IPS & IDS…); ensures security levels for all new appliances; recommends improvements where applicable.

4. Evaluates ISA/Clients standards, security controls, and industry best practices to determine network information security requirements and specifications and achieve successful solution delivery.

5. Maps all existing processes required for network and applications with focus on security architecture.

6. Ensures all applications within ISA are in line with agreed measures, compliant with PCIDSS3.20 and with audit and legal requirements.

7. Applies security DevOps best practices and methodologies integrated with DevOps processes by specifying intrusion detection methodologies and equipment; prepares preventive and reactive measures; creates, transmitting, and maintaining keys.

8. Conducts system security and vulnerability analyses and risk assessments, analyzes cyber technologies, metrics models and performance indicators, to recommend the appropriate architecture/platform.

9. Maintains security by monitoring and ensuring compliance to standards, policies, and procedures; conducts incident response analyses; maintains knowledge of engineering next-gen designs, security trends, threats, and attack techniques.

10. Regularly undertakes penetration testing across the network and application to assess performance capabilities (reliability, maintainability, and availability) versus security and risk, provides feedback to Governance team.

11. Builds and maintains effective relationships with security partners and vendors, management, peers, project managers, and internal customers.

12. Defines system security reports that provide insight into potential threat issues and threat analysis.

13. Updates job knowledge by tracking and understanding emerging security practices and standards. Conducts necessary trainings for ISA/clients when required.

14. Performs any other additional duties as directed by the line manager.

Qualifications for Security Engineer

5+ years in enterprise level IT environment, working as Security Engineer or a similar role.

Proven experience in the design of the practice network security architectures for large networks.

In-depth knowledge of two or more security technology platforms and tools (VMS, Brand abuse protection systems, Web monitoring, Elastic, MS defender…)

Operations and management of technology platforms – both internally and externally hosted.

Hands on technical leadership, technical solutions design, and architecture.

Proven skills in analyzing data, identifying pitfalls and recommending cost-effective solutions.

Capable of conducting cost-benefit analysis for IT investments.

Cost-oriented, possesses effective problem solving and decision-making skills.

Detail oriented, works well under pressure.

Ability to interact with a broad cross-section of personnel to explain and enforce security measures

Employs technical expertise, and interpersonal relations to achieve company’s objectives.

Please send your profiles to

We are looking for a Security Engineer to join our cybersecurity team and strengthen redBus

defence against evolving cyber threats. This role involves monitoring, analysing, and responding

to security incidents while continuously improving our security framework. The ideal candidate

will have 7–10 years of experience in Security Operations, with deep expertise in Endpoint

Security, Network Security Controls, and Application/Data Security, hands-on experience with

relevant tools, and strong scripting skills.

Key Responsibilities:

• Monitor and analyse security events across endpoints, networks, cloud environments, and applications.
• Implement, manage, and optimize security controls using industry-leading security technologies.
• Ensure strong endpoint protection and proactively respond to vulnerabilities, incidents, and suspicious activities.
• Implement and manage CNAPP/DSPM solutions to identify, classify, and protect sensitive data across cloud and hybrid environments
• Manage and enhance email security to prevent phishing, malware, and other email-borne threats.
• Apply Zero Trust principles to strengthen access controls and identity security.
• Lead and support security incident detection, investigation, and remediation.
• Conduct application security assessments, including static (SAST) and dynamic (DAST) testing, to identify and remediate vulnerabilities.
• Collaborate with development teams to integrate security into the SDLC and promote secure coding practices.
• Develop and maintain security policies, procedures, and compliance documentation.
• Collaborate with IT, cloud, and product teams to improve the overall security posture.
• Automate security workflows and threat detection using Python, PowerShell, or Bash.
• Stay updated on emerging threats, vulnerabilities, and evolving security technologies.

Required Skills & Qualifications:

• 7–10 years of experience in cybersecurity, with a strong focus on endpoint, network, cloud,
• and application/data security.
• Hands-on expertise with:
• Endpoint Security: EDR, XDR, Incident Response, Malware Analysis, Threat Hunting
• Network Security: NAC, Firewalls, IDS/IPS, Network Segmentation, Zero Trust Access
• Cloud & Web Security: CNAPP, DSPM , CASB, Secure Web Gateway, DLP
• Application Security: SAST, DAST, API security testing, secure coding review, OWASP Top 10
• Email Security: Email analysis, authentication protocols, modern email threat defence, and
• threat intelligence integration
• Knowledge of security frameworks and compliance standards (NIST, ISO 27001, CIS, etc.).
• Experience in threat intelligence, vulnerability management, incident investigation, and
• application security risk assessment.
• Familiarity with SIEM platforms and log analysis techniques.
• Strong problem-solving skills, proactive learning attitude, and excellent communication/documentation capabilities.

Job description

As a Security Engineer - VAPT, you will be responsible for conducting comprehensive security assessments, identifying vulnerabilities, and implementing effective remediation strategies. Leveraging your expertise in penetration testing and ethical hacking, you will play a key role in enhancing the security posture of our clients' systems and networks. This position offers an exciting opportunity to work on challenging projects, collaborate with talented professionals, and contribute to the advancement of cybersecurity practices.

Key Responsibilities:

• Perform end-to-end Vulnerability Assessment and Penetration Testing (VAPT) for clients' IT infrastructure, applications, and networks.
• Conduct thorough security assessments using industry-standard tools and methodologies, including but not limited to, Nmap, Nessus, Metasploit, Burp Suite, and OWASP.
• Identify and exploit security vulnerabilities to assess the potential impact on clients' systems and data.
• Prepare detailed assessment reports outlining findings, risk levels, and recommended remediation measures.
• Collaborate with clients' IT teams to prioritize and address identified security issues in a timely manner.
• Develop and implement custom scripts or tools to enhance testing capabilities and automate repetitive tasks.
• Stay abreast of emerging security threats, vulnerabilities, and industry best practices to continually improve testing methodologies.
• Provide guidance and mentorship to junior security engineers, fostering a culture of knowledge sharing and skill development within the team.

Requirements:

• Bachelor's degree in Computer Science, Information Technology, or related field.
• 2+ years of experience in cybersecurity, with a focus on Vulnerability Assessment and Penetration Testing.
• Proficiency in using tools such as Nmap, Nessus, Metasploit, Burp Suite, and OWASP.
• Hands-on experience with various operating systems, including Windows, Linux, and Unix.
• Strong understanding of network protocols, web application architecture, and common security vulnerabilities.
• Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP), or similar certifications preferred.
• Excellent analytical skills and attention to detail, with the ability to prioritize and manage multiple tasks effectively.
• Effective communication skills, both verbal and written, with the ability to convey technical concepts to non-technical stakeholders.
• Proven track record of delivering high-quality security assessments and actionable recommendations

We are looking for talented Security Engineers to join our team!

Altered Security is an information security startup with focus on edtech, hands-on learning and focused security assessments. It has offices in India and Singapore.

We are experts in information security training, cyber ranges, online labs and security assessments. We have trained more than 4000+ information security professionals from more than 130+ countries across the globe through our in-person and online trainings.

We are looking for some amazing Security Engineers to join our India team at Bhopal location! If you have passion for information security, this is the right opportunity.

Who should apply:

• Very good communication skills and ability to communicate with customers.
• Good knowledge of Windows, Active Directory and/or Azure security.
• Excellent work ethics and passion to make and break stuff.

Your job will involve:

• Solve security issues and challenges for an enterprise environment.
• Running and maintaining Windows Active Directory and Azure Labs.
• Resolve lab related issues and maintain the availability.
• Solve student problems related to lab challenges.
• Monitor certification exams.

Certifications:

- CRTP is a plus.

Evaluation : Evaluation includes interviews.

Location: Bhopal

Number of positions : Multiple

Experience : 1 year and above

What do we offer:

- We offer best in the industry salary.

- Medical benefits.

Job Title: Security Engineer – Email Security Specialist

Location: Remote

Experience Required: 5 to 10 years

Job Summary:

We are seeking a highly skilled and experienced Security Engineer with deep expertise in email security , specifically with Mimecast and Cofense Triage & Vision . The ideal candidate will play a critical role in protecting our organization from email-based threats and enhancing our cybersecurity posture.

Key Responsibilities:

• Design, implement, and manage email security solutions using Mimecast and Cofense.
• Monitor, analyze, and respond to phishing and email-based threats using Cofense Triage & Vision.
• Collaborate with incident response teams to investigate and remediate email security incidents.
• Develop and maintain email security policies, procedures, and best practices.
• Conduct threat hunting and analysis to identify emerging email threats.
• Provide technical guidance and support to internal teams on email security matters.
• Generate reports and metrics to track email threat trends and security posture.

Required Skills & Qualifications:

• 3+ years of hands-on experience with Mimecast email security solutions.
• Proven experience with Cofense Triage & Vision tools.
• Strong understanding of email threat vectors, phishing campaigns, and mitigation strategies.
• Solid foundation in cybersecurity principles and practices.
• Experience with SIEM tools, threat intelligence platforms, and incident response.
• Excellent analytical, problem-solving, and communication skills.
• Relevant certifications (e.g., CEH, CISSP, CISM) are a plus.

Preferred Qualifications:

• Experience working in a global or enterprise environment.
• Familiarity with other email security platforms and threat detection tools.
• Ability to work independently and collaboratively in a fast-paced environment.

About Position:

We are seeking a highly skilled Security Engineer with a primary focus on penetration testing and offensive security to join our team. The ideal candidate will have a strong background in ethical hacking across networks, cloud infrastructure, web and mobile applications. You will be responsible for proactively identifying, exploiting, and reporting security vulnerabilities to protect our systems and data from evolving threats. This is a key role that requires a proactive, adversarial mindset, strong technical expertise, and excellent problem-solving skills.

• Role: Security Engineer
• Location: All Persistent Office
• Experience: 4 to 10 years
• Job Type: Full Time Employment

What You'll Do:

• Penetration Testing: Define test suites for pen testing, red teaming and conduct comprehensive black-box and white-box penetration tests against our web applications, mobile applications, cloud infrastructure to identify and validate security weaknesses.
• Web Application Security: Conduct security assessments and pen tests for web applications, including an understanding of common vulnerabilities beyond the OWASP Top 10.
• Mobile Application Security: Conduct security assessments, penetration tests and code reviews for iOS and Android mobile applications.
• Cloud & Network Security: Conduct pen tests on cloud assets, validate vulnerabilities reported by tools including CNAPP, threat monitoring tools and simulate real-world attacks on our cloud environments (e.g., AWS, Azure, GCP) and internal networks to test the effectiveness of existing security controls.
• Vulnerability Management: Perform continuous vulnerability scanning, manage the vulnerability lifecycle
• Incident Response: Support the incident response team by providing technical analysis of attack vectors, root cause analysis during incidents and threat intelligence derived from penetration tests.
• Collaboration: Work closely with development, DevOps and infrastructure teams to provide clear, actionable recommendations for remediation and help build more secure systems.
• Tooling: Develop and maintain custom scripts and tools to automate testing and analysis.
• Reporting: Create detailed, high-quality technical and executive-level reports that clearly articulate findings, risks, and recommendations.

Expertise You'll Bring:

• Bachelor’s degree in computer science, Information Technology, or a related field, or equivalent practical experience.
• 4-6 years of professional experience in information security, with a strong focus on offensive security.
• Proven hands-on experience in conducting penetration tests for web applications, networks, cloud infrastructure, and mobile applications.
• Deep understanding of the OWASP Top 10, common attack vectors, and exploitation techniques.
• Good knowledge of AWS/Azure and DevSecOps processes and security best practices. Proficiency with penetration testing tools like Burp Suite, Metasploit, Nmap, Kali Linux.
• Strong analytical and problem-solving skills, with the ability to work independently and as part of a team.
• Excellent written and verbal communication skills, including the ability to present complex technical information to non-technical audiences.
• Relevant security certifications such as OSCP, CEH .
• Experience with scripting languages (e.g., Python, Bash) for automation and tool development.
• Familiarity with container security (Docker/Kubernetes/ECS etc.) and attacking containerized environments.
• Knowledge of AI/ML fundamentals, their security and agent development
• Knowledge of common security compliance frameworks (e.g., PCIDSS, ISO 27001, NIST).

Benefits:

• Competitive salary and benefits package
• Culture focused on talent development with quarterly promotion cycles and company-sponsored higher education and certifications
• Opportunity to work with cutting-edge technologies
• Employee engagement initiatives such as project parties, flexible work hours, and Long Service awards
• Annual health check-ups
• Insurance coverage: group term life, personal accident, and Mediclaim hospitalization for self, spouse, two children, and parents

Values-Driven, People-Centric & Inclusive Work Environment:

Persistent Ltd. is dedicated to fostering diversity and inclusion in the workplace. We invite applications from all qualified individuals, including those with disabilities, and regardless of gender or gender preference. We welcome diverse candidates from all backgrounds.

• We support hybrid work and flexible hours to fit diverse lifestyles.
• Our office is accessibility-friendly, with ergonomic setups and assistive technologies to support employees with physical disabilities.
• If you are a person with disabilities and have specific requirements, please inform us during the application process or at any time during your employment

Let’s unleash your full potential at Persistent - persistent.com/careers

“Persistent is an Equal Opportunity Employer and prohibits discrimination and harassment of any kind.”

Compensation :

LPA

Key responsibilities:

• Work on security assessment VAPT of different web/android applications from diverse sectors.
• Create and implement automation solutions to enhance security and reduce manual effort.
• Collaborate with best security professionals to ensure the protection of the organization's information systems, data, and network infrastructure.
• Responsible for securing cloud infrastructure by designing, implementing, and monitoring security controls, ensuring compliance, and mitigating risks across cloud environments
• Triage vulnerability reports on bug bounty programs and take it to resolution within the defined SLAs.
• Develop and maintain security policies, procedures, and standards
• Perform application security reviews and threat modeling on mission-critical systems, & enterprise applications to find and address potential security risks.
• Work on staying up-to-date with the latest security threats and vulnerabilities, and recommend security improvements.
• Good communication skills to organize and lead security awareness training sessions.
• Real life social engineering simulation campaigns with the organizations.
• Bug Bounty experience is a must

What To Bring:

• In-depth knowledge of security vulnerabilities not just limited to OWASP Top 10

• Experience in doing security assessments on web applications, Android and iOS mobile applications in microservice architecture

• Experience in using the security tools to carry out manual & automated security assessments

• Experience working with common product flows like payment gateway integration, authentication etc.

• Knowledge of how applications work end-to-end which may help in multiple scenarios.

• Good knowledge & understanding of Python, Burp Suite, NMAP etc. is a must.

• Passion for security, and a practical and balanced approach to security issues

• Ability to visualize the root cause and deep dive

• Curiosity in knowing how things work in different conditions

• Independent, self-motivated and comfortable working in a fast-paced environment with teams ranging from product to engineering teams.

• Exceptional interpersonal verbal and written skills in English.

• Ability to document risks, security controls and evidence to ensure compliance

Who are we?

Apni Sec aims to deliver a Security as a Service (SECaaS) offering with different solutions consolidated on a centralized dashboard (a one-stop-shop for all your security needs). With the fast evolving needs of the world and rapid development within an organization, it becomes harder for the teams to deliver their flagship offerings to clients both securely and seamlessly. Apni Sec team comprises best security researchers and certified white hat hackers to protect organizations' data from attackers by detecting, investigating, and responding to cyber-threat. The main motto for ApniSec is to work hand-in-glove with the business, to enable them to still deliver their digital ambition without compromising on the security of their product and also of their stakeholders. This ensures that the business can build a digital info system vested in innovation, security & trust.

Our Values

• We are audacious in vision and action

• We encourage honesty and open dialogue

• We respect everyone and every point of view

• We make objective and data-driven decisions

• We believe trust and accountability go hand-in-hand

• We invest in each other's growth

• We bring our A-game and nothing else

• We take charge and get it done

Benefits Offered/Perks

• The glory. Almost too much responsibility and ownership of projects.
• Company Onsite / Fun Events.
• Work with skilled security researchers