Cyber Security Engineer
What We Do at SecPod Security Podium (incarnated as SecPod) is a SaaS-based cybersecurity products and technology company. We believe a strong defence is better than a weak cure. Our products used by enterprises and MSPs of all sizes around the world to secure and manage their endpoints. Preventing cyberattacks is our top priority. We build products and technologies that put prevention before cure. We aim at making cyber hygiene a simple daily routine, which will safeguard the IT infrastructure from emerging attacks. As the curators of the world’s largest vulnerability database with more than 200,000 checks, we have built a full-fedged cyber hygiene platform. We focus on securing and managing endpoints, mobile computing, network infrastructure, cloud infrastructure, operational technology (OT), and the Internet of Things (IoT).
Learn More About SecPod https://www.secpod.com/about-us
What We're Looking For:
We are looking for a highly motivated Cyber Security Engineer to join our team. The ideal candidate will play a key role in safeguarding our organization’s information assets through the implementation, monitoring, and continuous improvement of security best practices. You will work closely with senior engineers to assess vulnerabilities, implement security patches, and ensure the highest standards of cyber defense.
Basic Qualifications
- 2–3 years of experience in Security Engineering, DevSecOps, Security Operations, or a closely related field.
- Strong understanding of network security principles, protocols, and technologies.
- Strong analytical and troubleshooting skills, with the ability to resolve technical issues calmly in a fast-paced environment.
- Strong grounding in core security concepts: encryption, identity and access management (IAM), secrets management, and network security.
- Good with scripting languages like Python, Bash, or PowerShell, and experience with automation tools.
- Good understanding of system and web application vulnerabilities (OWASP Top 10, SANS CWE Top 25), with the ability to validate, prioritize, and explain real-world risk.
- Exposure to vulnerability assessment, security patching, security monitoring (EDR/XDR/SIEM), and incident response.
- Familiarity across Unix/Linux, Windows, Mac systems, and Virtualization.
- Good written and verbal communication skills, with the ability to work effectively in a team environment.
Nice to Have
- Hands-on experience with SIEM and detection engineering (e.g., Wazuh, ELK, Splunk, or similar) writing and tuning rules, building log ingestion pipelines, and reducing noise.
- Experience securing cloud infrastructure on AWS/GCP/Azure (IAM, WAF, networking) and managing secrets with tools like KMS or HashiCorp Vault.
- Familiarity with firewalls, VPNs, and site-to-site connectivity.
- Exposure to compliance and audit work: SOC 2, ISO 27001, GDPR — including producing evidence and post-incident documentation.
- Experience integrating security checks into CI/CD pipelines (SAST, dependency/vulnerability scanning).
- Familiarity with Secure SDLC practices - including threat modelling, secure code, and integrating security checkpoints across the software development lifecycle.
- Understanding of Security by Design principles and the ability to raise security concerns early in the product and infrastructure design process.
- Understanding of Zero Trust Network Access (ZTNA) and modern access models (SASE/SSE).
- Red and Blue Team awareness - familiarity with offensive techniques and defensive countermeasures.
- Exposure to AI and LLMs on two fronts: applying AI security thinking (securing AI usage, AI gateways/firewalls, prompt and data-leak risks) and using AI tools for productivity with a clear awareness of their risks.
Key Responsibilities
- Security Operations & Monitoring: Continuously monitor security systems, logs, network traffic, and endpoints across SIEM, EDR, and DLP platforms; tune detections to catch real threats and reduce false positives.
- Security Tooling & Automation: Design and build security tools, automation scripts, and integrations that help the Security Operations team operate more efficiently.
- Infrastructure Security: Help harden SecPod's infrastructure across cloud and on-prem - secrets management, firewalls/VPNs, ZTNA, DLP controls, and secure configuration baselines.
- Vulnerability Assessment: Conduct regular vulnerability assessments and penetration tests to identify and prioritize security risks, ensuring that vulnerabilities are addressed promptly.
- Security Patching: Support patch management for software, operating systems, and infrastructure, ensuring timely remediation of security-relevant issues.
- Incident Response: Investigate alerts, contain and remediate issues, coordinate with internal teams, and write clear, auditor-grade post-incident reviews and lessons learned.
- Compliance & Audit Support: Help produce and maintain evidence for SOC 2, ISO 27001, GDPR, and customer security obligations, including documentation.
- Security in CI/CD: Assist in integrating security tooling (static analysis, dependency and vulnerability scanning) into our build and delivery pipelines.
- Collaboration: Work closely with senior engineers, IT, DevOps/Development and third-party vendors to apply security policies consistently and meet compliance standards.
- Security Awareness & Communications: Contribute to internal security awareness and IT communications, helping the broader team build good cyber-hygiene habits.
- Documentation & Continuous Improvement: Keep detailed, reusable records of incidents, patching, risk assessments, and best practices; stay current on emerging threats and recommend proactive improvements.
- Continuous Improvement: Stay up to date with the latest cybersecurity trends, vulnerabilities, and emerging threats, recommending proactive measures to strengthen our defense mechanisms.
L
ocation: Bangalore, India
Website: https://secpod.com
