Experience: 3.00 + years
Salary: Confidential (based on experience)
Shift: (GMT+05:30) Asia/Kolkata (IST)
Opportunity Type: Hybrid (Bengaluru)
Placement Type: Full time Permanent Position
(*Note: This is a requirement for one of Uplers client - Aurigo Software Technologies)
What do you need for this opportunity
Must have skills required:
CrowdStrike, Azure, AWS, SIEM tools, Burp Suite, NIST, Qualys, MITRE ATT&K, Microsoft Sentinel, Microsoft defender
Aurigo Software Technologies is Looking for:
Job Title: Security Engineer
Location: Bengaluru, Karnataka, India
Experience: 3 to 5 years
About Aurigo:
Aurigo is a well-established enterprise SaaS provider with over 20 years of experience. We specialize in serving the needs of major infrastructure and public sector organizations in the United States. We are an American technology company founded in 2003 with a mission to help public sector agencies and facility owners plan, deliver, and maintain their capital projects and assets safely and efficiently. With more than $300 billion of capital programs under management, Aurigo's award-winning software solutions are trusted by over 300 customers in transportation, water and utilities, healthcare, higher education, and government on over 40,000 projects across North America. We are a privately held corporation headquartered in Austin, Texas, USA, with software development and support centers in Canada and India. We are proud to be Great Place to Work Certified three times in a row and recently recognized as one of the Top 25 AI Companies of 2024.
Role Description:
The Security Analyst plays an integral role in the Aurigo Security Practice and works directly with the manager of Aurigo Security Practice. This role is primarily responsible for monitoring security alerts, identifying threats, and responding to incidents. He/she will work closely with CloudOps, IT, Engineering and other departments to mitigate risks, improve security measures and ensure compliance with security policies.
Key Responsibilities:
- Continuously monitor the security alerts and incidents from various platforms such as SIEM, EDR, to identify and respond to security incidents.
- Analyze and assess threats including malware, network intrusions, phishing and other attack vectors and provide actionable intelligence.
- Daily assessment of vulnerabilities identified by the infrastructure scan and prioritize vulnerability remediation by working closely with other departments.
- Create reports and provide analysis on vulnerabilities including the remediation efforts, timelines for completion and track the security exceptions.
- Report on areas of noncompliance against standards and policies.
- Conduct periodic security tests on web applications (OWASP Top 10), track and remediate application security vulnerabilities by working closely with concerned departments.
- Perform continuous monitoring and auditing of systems to ensure compliance with CIS controls, identify the areas of improvement and address the security gaps by working with other departments as necessary.
- Facilitate quarterly access reviews of user access across cloud, on-prem, and third-party applications, work with relevant teams to revoke or adjust access for users with excessive or inappropriate permissions.
- Create and update security documentation such as SOPs, Security Policies, Incident response playbooks.
- Develop and deliver security training to the organization workforce and track the progress of completion.
Qualifications Required:
- Bachelor's degree in computer science, IT, Cybersecurity or a related field.
- Must have a minimum of 3-5 years of relevant experience as SOC Analyst /Engineer.
- Must possess good knowledge and understanding of cloud platforms such as AWS and Azure.
- Good Knowledge and understanding of SIEM tools such as Sumo Logic, Splunk, QRadar, Microsoft Sentinel.
- Good knowledge and hands on experience on Vulnerability Management tools such as Qualys, Burp Suite etc.
- Experience in analyzing security alerts in CrowdStrike, Defender 365, Microsoft Entra, Sumo Logic along with managing and troubleshooting issues in CrowdStrike, and Microsoft Defender.
- Good understanding of MITRE ATT&K, NIST and other security frameworks.
- Excellent communication and collaboration skills are required.
- Ability to work as a team player and as an individual contributor.
- Must be willing to learn, adapt, and work in fast paced, dynamic environment.
How to apply for this opportunity
- Register or login on our portal & fill out the application form.
- Clear the given Video Screening (30 min) and Click on Apply to get shortlisted
- Once it's all done, your profile will be shared with the client for the Interview round.
- When selected, just meet the client and get your exciting career started!
About Uplers:
Our goal is to make hiring reliable, simple, and fast. Our role will be to help all our talents find and apply for relevant contractual onsite opportunities and progress in their career. We will support any grievances or challenges you may face during the engagement. You will also be assigned to a dedicated Talent Success Coach during the engagement.
(Note: There are many more opportunities apart from this on the portal. Depending on the assessments you clear, you can apply for them as well).
So, if you are ready for a new challenge, a great work environment, and an opportunity to take your career to the next level, don't hesitate to apply today. We are waiting for you!