Senior Security Engineer

About Everest Group Everest Group is a leading research firm helping business leaders make confident decisions. We guide clients through today’s market challenges and strengthen their strategies by applying contextualized problem-solving to their unique situations. This drives maximized operational and financial performance and transformative experiences. Our deep expertise and tenacious research focused on technology, business processes, and engineering through the lenses of talent, sustainability, and sourcing delivers precise and action-oriented guidance. Find further details and in-depth content at Everest Group is with you on the journey. We are committed to empowering team members to develop their potential, share their authentic selves, and inclusively engage. This means we continually celebrate the diverse journeys different individuals cultivate. We hire great people from a wide variety of backgrounds, not just because it’s the right thing to do, but because it makes our company stronger. If you share our values and enthusiasm for solving challenges, you will find a home at Everest Group. Job Overview We are seeking a dynamic and experienced Senior Security Engineer to join our team in India. In this pivotal role, you will be responsible for leading the development and implementation of robust security systems to protect our organization's data and network infrastructure. You will work closely with cross-functional teams to identify vulnerabilities, develop mitigation strategies, and ensure compliance with the latest security standards and regulations. As a Senior Security Engineer, your primary responsibilities will include conducting sophisticated security assessments, overseeing the deployment of security solutions, and responding effectively to any security incidents. You will also play a key role in shaping our security policies and procedures, providing expert guidance to both technical and nontechnical stakeholders, and staying abreast of emerging security threats and technologies. Key Responsibilities

• Design and implement security architectures and strategies within the Azure cloud environment, ensuring secure and efficient cloud operations
• Conduct security assessments and penetration testing using Burpsuite and Nessus to identify vulnerabilities and implement effective remediation strategies
• Manage and fine-tune ZScaler configurations and policies for robust network and data security
• Utilize Sophos XDR for advanced threat detection, investigation, and response, ensuring comprehensive monitoring and protection against complex cyber threats
• Lead efforts to achieve and maintain SOC2 compliance, developing and enforcing policies and procedures in line with SOC2 standards
• Monitor network traffic and analyze protocols using tools like Wireshark to identify and mitigate security threats in TCP/IP networks
• Respond promptly and effectively to security incidents and ensure resolution with minimal impact
• Collaborate with various teams to integrate security best practices into development and operational processes
• Stay informed about emerging security trends, threats, and mitigation techniques, and educate others on cybersecurity best practices
• Develop and maintain detailed documentation of security configurations, policies, and procedures
• Evaluate and implement new security technologies and solutions as needed
• Provide expert guidance and leadership for security-related decision-making and project planning

Required skills / Aptitude

• Advanced knowledge of cybersecurity principles, practices, and risk management
• Strong proficiency in cloud security, particularly in Azure environments
• Expertise in network security, including protocol analysis and intrusion detection
• Familiarity with security tools such as Burpsuite, Nessus, ZScaler, Sophos XDR, and Wireshark
• Deep understanding of SOC2 compliance frameworks and requirements
• Excellent analytical and problem-solving skills, with a strong attention to detail
• Proven ability to identify, assess, and mitigate security vulnerabilities and threats
• Effective communication skills, capable of explaining complex security concepts to diverse audiences
• Strong documentation and reporting skills, with an emphasis on clarity and accuracy
• A proactive mindset towards staying abreast of the latest cybersecurity trends and technologies
• Ability to work collaboratively in a team environment and lead security initiatives
• Leadership qualities, including the ability to mentor junior staff and influence decision-making
• Capacity for critical thinking and making well-informed decisions under pressure

Education and Experience

• Bachelor’s degree in computer science, Information Technology, Cybersecurity, or a related field. A Master’s degree is preferred
• Minimum of 5-7 years of experience in cybersecurity, with a focus on areas such as network security, cloud security, and compliance
• Prior experience in a professional services B2B firm, understanding the specific security needs and challenges in such settings
• Relevant cybersecurity certifications (e.g., CEH, OSCP, CISSP, CISM etc.) are highly desirable

Everest Group complies with the GDPR, CCPA/CPRA and other data protection regulations. For more information on how Everest Group processes your personal information, please read our Privacy Notice ( By submitting this application, you indicate that you have read and understand our privacy terms and consent to the processing of your personal information by us. To exercise your data subject rights under GDPR, CCPA/CPRA you can fill in our form available at Data Rights – Everest Group (everestgrp.com). You can email your data protection request to privacy@everestgrp.com. Everest Group is an equal opportunity employer. We have a culture of inclusion, and we provide equal opportunities for all applicants and employees, including those with disabilities. We are committed to providing an environment that is free of all discrimination and harassment and to treating all individuals with respect.