Sr. Security Engineer/Specialist, Security Operations Centre

apartmentColgate-Palmolive (India) placeMumbai calendar_month 
Job Description
  • Diligently monitoring our IT infrastructure and quickly responding to security incidents.
  • Analyzing sophisticated security data and deriving actionable intelligence to avert potential security breaches.
  • Refining our incident response strategies in collaboration with various business units and the Global Information Technology team.
  • Applying your skills across various operating systems and proficiency in security tools like SIEM, email, networking, and endpoint technologies to bolster our security measures in both on-premise and cloud environments, including GCP.
  • Engaging with individuals and teams across Colgate-Palmolive, you will articulate key security issues and drive our comprehensive cybersecurity agenda. Your role is pivotal in upholding Colgate-Palmolive s standards for cyber hygiene and in defending the company's resources against dynamic cyber threats. This role presents both a challenge and an opportunity to enhance the protection of Colgate-Palmolive's global digital infrastructure.

Who are you-

You are a function expert, able to:

  • Monitor and analyze security events from various sources, such as SIEM, IDS/IPS, firewalls, and endpoint protection systems.
  • Investigate security incidents to determine impact and root cause, implementing and refining investigation and incident response procedures.
  • Conduct sophisticated threat analysis and proactive threat hunting to detect and remediate advanced persistent threats (APTs).
  • Ensure continuous monitoring of the organizations networks and systems, generating detailed documentation on security incidents, including findings, remediation steps, and recommendations.
  • Maintain and improve SOC documentation and operating procedures.

You connect the dots by:

  • Reviewing and analyzing incoming alerts from various security tools.
  • Correlating alerts with logs from other sources to identify patterns or anomalies.
  • Gathering contextual information about affected systems, users, and networks.
  • Integrating threat intelligence to enhance detection and response capabilities.
  • Analyzing user and entity behavior to identify deviations from normal patterns.
  • Constructing timelines of events and developing hypotheses about potential threats.
  • Collecting and preserving evidence, ensuring its integrity for further investigation.
  • Documenting all findings in detailed incident reports and escalating incidents when necessary.
  • Recommending actions to contain and mitigate threats and implementing remediation steps.
  • Conducting post-incident analyses to identify gaps and continuously improving detection rules and security measures.

You are a collaborator who can:

  • Work closely with other IT and security teams to address security issues and implement best practices.
  • Provide guidance and support to junior SOC analysts.
  • Communicate effectively with the Global SOC Manager, Team Lead, and other senior leaders on security incidents and status updates.

You are an innovator who will:

  • Stay ahead of the latest cybersecurity trends, technologies, and threats.
  • Find opportunities for process improvements and automation within the SOC.
  • Participate in post-incident reviews to identify lessons learned and areas for improvement.
What you'll need (Required)
  • Bachelor s or Master s degree in Computer Science, Information Technology, Cybersecurity, or a related field (or equivalent experience).
  • At least 3 years of experience in a SOC environment, with demonstrable experience in incident detection, response, and threat analysis.
  • Solid grasp of cybersecurity principles, threat landscape, and incident response methodologies.
  • Proficiency with security tools and technologies such as SIEM, IDS/IPS, firewalls, and endpoint protection.
  • Excellent analytical and problem-solving skills.
  • Effective communication and interpersonal skills.

What you'll need (Preferred):

  • Relevant cybersecurity certifications (e.g., CompTIA Security+, CySA+, ISC(2) CC, CISSP, GSEC, GCHI, CEH, etc.) are highly desirable.
business_centerHigh salary

Security Engineer III

apartmentInteractive BrokersplaceMumbai
Security Engineer is a senior-level role that reports directly to and serves as a technical expert for the Head of Security Engineering. This role is entrusted with protecting sensitive financial data and critical infrastructure across a complex hybrid...
thumb_up_altRecommended

Security Engineer - Fully Remote

apartmentMercorplaceMumbai
Position: Security Engineer (Coding Agent Experience) Type: Contract Compensation: $85/hour Location: Remote Role Responsibilities  •  Use frontier AI coding agents to complete and evaluate complex security engineering tasks.  •  Review model-generated code...
check_circleNew offer

Senior Security Engineer, CIAM

apartmentVistra EnergyplaceMumbai
Job Description Job Title-Senior Security Engineer, CIAM Position Overview This role is designed as a modern CIAM platform engineering position focused on securing and automating customer identity services using Auth0. Market direction in 2025...