Senior Security Operations Engineer

Senior Security Operations Engineer
Location: India - Remote

We are seeking an experienced and effective Security Operations Engineer to join our Information Security Team. The successful candidate will report to the VP of Information Security and will maintain, implement, and enrich the program that safeguards our infrastructure, systems, applications and data stored within our modern cloud infrastructure. The candidate will be involved in our ISO 27001 program, handle incident response and forensic analysis, monitor and report on vulnerabilities, assist with compliance related activities and generally be a positive advocate for security best practices and awareness within our company. We are looking for someone who thrives in a positive and collaborative team environment to join us here at GLG!

 

About GLG / Gerson Lehrman Group

GLG’s platform connects business to expertise for smarter, faster decisions. Our clients rely on GLG’s 700,000+ member-experts and 2,300 employees around the globe to provide 24/7 insight and exceptional service within a rigorous compliance framework. Visit https://glginsights.com

 

Key Responsibilities

• Perform regular operational security functions, ongoing compliance-related activities, and conduct security assessments across various technologies and third parties
• Internal and external vulnerability identification and remediation
• Act as primary point of contact with our managed security service provider (MSSP)
• Monitor and report on security tools (i.e., SIEM, EDR, IAM, IDS/IPS, vulnerability scanning)
• Manage security incident triage, investigation, and response.
• Conduct forensic analysis and evidence collection
• Perform compliance related tasks such as privileged access reviews and change monitoring
• Track operational metrics related to alerts, incidents, and vulnerabilities
• Execute information security reviews against infrastructure, applications, and vendor services
• Participate in various programs and initiatives supporting the further implementation of the company's information security policies and standards
• Be a positive advocate for security best practices and awareness throughout the company

Qualifications

• 5+ years of experience as a security analyst, security operations engineer or in a forensics role
• Strong hands-on network, systems, and application security experience
• Knowledge of security and control frameworks, such as ISO27001/2, NIST, and/or CIS
• Interpersonal and collaborative skills with the ability to communicate security and risk-related concepts to technical and nontechnical audiences
• High level of personal integrity, and the ability to professionally handle confidential matters
• High degree of initiative, dependability and ability to work with little supervision
• Natural passion for security and strong drive to see both projects and investigations to completion
• Enjoys collaborating and working in a team-based environment