Senior Security Engineer

Sr. Security Engineer

Location: India – Remote

 

We are seeking a highly skilled and experienced Security Engineer to join our Information Security Team. Reporting to the VP of Information Security, the successful candidate will work with the team to drive forward the organization’s strategic information security initiatives.  This individual will configure and manage cloud services, email security, baseline hardening/standard configurations, identity and access management, intrusion detection and response, and multi-factor authentication. They will also play an essential role in the firm’s ISO 27001 program. We are looking for someone who thrives in a positive and collaborative team environment to join us here at GLG!

 

About GLG / Gerson Lehrman Group

GLG’s platform connects business to expertise for smarter, faster decisions. Our clients rely on GLG’s 700,000+ member-experts and 2,300 employees around the globe to provide 24/7 insight and exceptional service within a rigorous compliance framework. Visit https://glginsights.com

 

Key Responsibilities

• Configure and manage cloud services, including Azure AD, AWS, and O365
• Implement email security measures to protect against phishing and other cybersecurity threats
• Perform baseline hardening to improve the security of systems and network
• Implement Identity and Access Management controls to ensure that only authorized users have access to sensitive information
• Implement Intrusion Detection and Response systems to detect and respond to cyber threats
• Implement multi-factor authentication to improve the security of access to systems and networks
• Manage and maintain web application firewalls to protect against web-based threats
• Execute vulnerability scanning and remediation to identify and fix security weaknesses in systems and networks
• Manage and maintain SIEM and threat intelligence
• Participate as an active contributor in the firms ISO27001 strategic initiative

Education: Bachelor’s degree preferred.

Qualifications

• 5+ years of cybersecurity experience in a cloud services environment
• Very strong knowledge of email security, baseline hardening, Identity and Access Management, Intrusion Detection and Response, multi-factor authentication and web application firewalls
• Experience with Azure AD, AWS, and O365
• Experience with vulnerability scanning and remediation
• Strong knowledge of Web application security, OWASP Top 10, and various web application attack methodologies

 

• Strong knowledge of network protocols, intrusion detection and prevention systems, firewalls, and security best practices.
• Experience with web application firewalls, vulnerability scanning and remediation is required
• Proven experience with at least one scripting language such as bash, powershell, javascript or python.
• Proven success collaborating cross functionally in large projects
• Strong project management skills, ability to work within tight time frames and manage multiple projects simultaneously
• Strong organizational skills with the ability to effectively adapt to changing priorities
• Relevant Certifications including CISSP, CISM, or CISA is a plus, but not required
• Demonstrates strong and clear communication skills
• Enjoys collaborating and working in a team-based environment
• Strong analytical and problem-solving skills
• Demonstrated ability in security best practices and industry standards