Information Security Engineer - Mid to Senior

Job Description:As a Security Engineer, you will be at the forefront of our mission to ensure the highest level of security and compliance for our clients organization. Your expertise in the following areas is paramount:

Key ResponsibilitiesWork closely on security aspects of multiple technologies and methodologies as it relates to operating systems, databases, access controls, patch management, encryption, antivirus, and vulnerability assessments etc. to assist the Engineering and Compliance team with effective research, data gathering, analysis, metrics, reporting, and communications.

Identify security prospects of multiple solutions that help keep the organization safe from threats.

Experience in building and maintaining security systems.

Provides direction to infrastructure, operations, data, and network teams throughout the implementation of security aspects in production, and beyond.

Maintains knowledge of engineering Next Gen designs, security trends, threats, and attack techniques.

Builds and maintains effective relationships with management, peers, project managers, and internal customers.

Translate threat intelligence into actionable security across tools such as endpoint protection, Access management, patch management, firewall, IPS, and malware detection across multiple security vendor platforms.

Get hands-on with in-depth investigations, malware analysis, and connecting the dots between user activities and network traffic to resolve complex security incidents.

The ideal candidate will haveIn-depth experience in theMicrosoft 365 ecosystem , with a focus on Endpoint, Email, Vulnerabilities, and Threat Hunting.

Proficiency withinMicrosoft's E5 licensing environment.

Expertise in Identity Governance, Conditional Access, and Applications, including Single Sign On (SSO) implementation.

Comprehensive understanding of Logging, Event Management, Incident Management, and Security Operations Center (SOC) runbooks.

Automation, Data Connectors, and Analytic Rules.

Proficiency in Kusto Query Language.

Integration with Threat Intelligence feeds.

Mastery of Endpoint Security tools, including Microsoft Defender for Endpoint (MDE), Microsoft InTune, JAMF.

Expertise in system hardening and Intune policy/compliance configuration.

Experience withRapid7 and adherence to Microsoft Patch Tuesday.

Proficiency in Common Vulnerability Scoring System (CVSS) scoring.

Network Detection and Response (NDR) experience.

Skills in Segmentation, Firewall Reviews, and packet analysis (Wireshark, etc.).

Host isolation and containment strategies.

Proficiency inDNS Security.

Familiarity with KnowBe4, emphasizing the importance of user security awareness.

Competency in Cloud Security practices, including assessment and remediation inAzure and AWS.

Expertise in Identity and Access Management (IAM), Identity Provider (IdP),Privileged Identity Management (PIM),JustInTime (JIT) access.

Knowledge of Azure Defender, Defender for Cloud suite, and Zero Trust principles across Azure, AWS, and GCP.

Profound understanding of email security, including MSFT Exchange.

Capability in SMTP, MAPI, and email header analysis for threat detection.

Validation of SPF/DKI/DMARC configurations.

Hands-on experience with the analysis and handling of suspicious email attachments and adherence to best practices.

Education & QualificationsBachelor's Degree in an IT-related discipline

CISSPor similar security-related certification

In lieu of certifications, at least 2 years of information security Experience in building and maintaining security system

Job Details:Location: Lahore-REMOTE

Work Timing: 5:30 PM to 2:30 AM

Work Days: Monday - Friday

Experience: 5+ years

Work Mode: Onsite

Salary: Depends upon experience + Benefits#J-18808-Ljbffr