Security Engineer

Stashfin -
Gurugram, Haryana

Quick apply

Job details

Full-time
2 days ago

Qualifications

BCS
Authentication
Vulnerability assessment
Azure
Computer Science
PCI
Encryption
CISSP
CCSP
Information security
Finance
Master's degree
Bash (Unix shell)
CEH
Firewall
AWS
Cloud security
Information Security
Bachelor's degree
IDS
Private equity
Splunk
Scripting
ISO 27001
Business Administration
Investment banking
Cybersecurity
Python
PowerShell
SDLC

Full job description

We are looking for a skilled and proactive Security Engineer with a strong understanding of cybersecurity principles and hands-on experience in implementing security measures in a financial service or NBFC environment. The ideal candidate will work closely with IT, compliance, and risk teams to ensure robust security across systems, networks, and applications.

Key Responsibilities:

Design, implement, and manage security tools, technologies, and controls across the IT infrastructure.
Monitor security events and logs, investigate incidents, and respond to threats in real-time (SIEM/SOC operations).
Ensure compliance with RBI guidelines, ISO 27001, PCI DSS, and other applicable regulatory frameworks.
Conduct vulnerability assessments and penetration testing for web, mobile, and infrastructure layers.
Develop and enforce security policies, standards, and procedures tailored to NBFC operations.
Support data protection initiatives, including DLP, encryption, secure key management, and endpoint protection.
Collaborate with product and engineering teams to embed security best practices into SDLC and DevSecOps.
Prepare reports and documentation for audits, inspections, and regulatory reviews.
Provide regular training and awareness programs for employees on cybersecurity hygiene.

Must-Have Skills:

Hands-on experience with firewalls, IDS/IPS, antivirus, DLP, and SIEM tools (e.g., Splunk, ELK, QRadar).
Strong understanding of security protocols, cryptography, authentication, and authorization.
Experience in cloud security (AWS/Azure/GCP), endpoint security, and network hardening.
Familiarity with RBI regulations, cyber resilience guidelines, and NBFC-specific security controls.
Knowledge of application security, OWASP Top 10, and secure coding practices.

Good to Have:

Relevant certifications like CEH, CISSP, CISA, OSCP, or CCSP.
Prior experience working in an NBFC, fintech, or regulated financial environment.
Experience with automation/scripting tools (Python, Bash, PowerShell) for security operations.
Exposure to risk management and business continuity planning (BCP/DR).

Educational Qualification:

Bachelor's degree in Computer Science, Information Security, or a related field.

Work Location: In person

Quick apply

Jobseeker tools

Employer Tools

Browse

Stay Connected