Sr. Security Engineer/Specialist, Security Operations Centre
Colgate-Palmolive (India) Mumbai
Job Description
- Diligently monitoring our IT infrastructure and quickly responding to security incidents.
- Analyzing sophisticated security data and deriving actionable intelligence to avert potential security breaches.
- Refining our incident response strategies in collaboration with various business units and the Global Information Technology team.
- Applying your skills across various operating systems and proficiency in security tools like SIEM, email, networking, and endpoint technologies to bolster our security measures in both on-premise and cloud environments, including GCP.
- Engaging with individuals and teams across Colgate-Palmolive, you will articulate key security issues and drive our comprehensive cybersecurity agenda. Your role is pivotal in upholding Colgate-Palmolive s standards for cyber hygiene and in defending the company's resources against dynamic cyber threats. This role presents both a challenge and an opportunity to enhance the protection of Colgate-Palmolive's global digital infrastructure.
Who are you-
You are a function expert, able to:
- Monitor and analyze security events from various sources, such as SIEM, IDS/IPS, firewalls, and endpoint protection systems.
- Investigate security incidents to determine impact and root cause, implementing and refining investigation and incident response procedures.
- Conduct sophisticated threat analysis and proactive threat hunting to detect and remediate advanced persistent threats (APTs).
- Ensure continuous monitoring of the organizations networks and systems, generating detailed documentation on security incidents, including findings, remediation steps, and recommendations.
- Maintain and improve SOC documentation and operating procedures.
You connect the dots by:
- Reviewing and analyzing incoming alerts from various security tools.
- Correlating alerts with logs from other sources to identify patterns or anomalies.
- Gathering contextual information about affected systems, users, and networks.
- Integrating threat intelligence to enhance detection and response capabilities.
- Analyzing user and entity behavior to identify deviations from normal patterns.
- Constructing timelines of events and developing hypotheses about potential threats.
- Collecting and preserving evidence, ensuring its integrity for further investigation.
- Documenting all findings in detailed incident reports and escalating incidents when necessary.
- Recommending actions to contain and mitigate threats and implementing remediation steps.
- Conducting post-incident analyses to identify gaps and continuously improving detection rules and security measures.
You are a collaborator who can:
- Work closely with other IT and security teams to address security issues and implement best practices.
- Provide guidance and support to junior SOC analysts.
- Communicate effectively with the Global SOC Manager, Team Lead, and other senior leaders on security incidents and status updates.
You are an innovator who will:
- Stay ahead of the latest cybersecurity trends, technologies, and threats.
- Find opportunities for process improvements and automation within the SOC.
- Participate in post-incident reviews to identify lessons learned and areas for improvement.
- Bachelor s or Master s degree in Computer Science, Information Technology, Cybersecurity, or a related field (or equivalent experience).
- At least 3 years of experience in a SOC environment, with demonstrable experience in incident detection, response, and threat analysis.
- Solid grasp of cybersecurity principles, threat landscape, and incident response methodologies.
- Proficiency with security tools and technologies such as SIEM, IDS/IPS, firewalls, and endpoint protection.
- Excellent analytical and problem-solving skills.
- Effective communication and interpersonal skills.
What you'll need (Preferred):
- Relevant cybersecurity certifications (e.g., CompTIA Security+, CySA+, ISC(2) CC, CISSP, GSEC, GCHI, CEH, etc.) are highly desirable.
Interactive BrokersMumbai
Security Engineer is a senior-level role that reports directly to and serves as a technical expert for the Head of Security Engineering. This role is entrusted with protecting sensitive financial data and critical infrastructure across a complex hybrid...
MercorMumbai
Position: Security Engineer (Coding Agent Experience)
Type: Contract
Compensation: $85/hour
Location: Remote
Role Responsibilities
• Use frontier AI coding agents to complete and evaluate complex security engineering tasks.
• Review model-generated code...
Vistra EnergyMumbai
Job Description
Job Title-Senior Security Engineer, CIAM
Position Overview
This role is designed as a modern CIAM platform engineering position focused on securing and automating customer identity services using Auth0. Market direction in 2025...