IT Security Engineer
Zscaler
- Mohali, Punjab
- Permanent
- Full-time
- Coordinate with U.S. counterparts to develop, implement, maintain, monitor and support company-wide best practices of all corporate infrastructure IT security including areas of networks, applications, and endpoints devices.
- Install security measures and operate software to protect systems and information infrastructure, including assisting firewalls security rules and data security implementation.
- Align security objectives with business goals to enforce changes with minimal support workload increases
- Review and work with internal teams to remediate security concerns in cloud environments
- Implement security measures and tune existing tools to further enforce zero trust
- Design and implement innovative approaches to endpoint protection, malware detection & mitigation, and auditing.
- Collaborate within IT to deploy secure baselines and fix detected vulnerabilities to maintain a high-security standard
- Provide data and root cause analysis of security incidents with corrective actions for improvement.
- Work with the internal security team and analyze false positives and false negatives.
- Monitor computer networks for security issues and investigate security breaches and other cyber incidents
- Closely working with compliance and internal audit departments to ensure IT controls are in place, enforced, maintained and provide evidence samples according to the requirement.
- Configure, maintain, and support internal uses of Zscaler security solution in trial and production implementation; become a Zscaler cloud service expert through self-study, company training, and a desire to excel
- Work closely with internal Zscaler product engineering and engineers to maintain corporate instances to ensure update to date security parameters, implementations, and best practices.
- Create security metrics, reports, and dashboards
- Stay up-to-date on information technology trends and security standards
- Minimum 3+ years prior hands-on experience with enterprise security
- 5+ years of experience in IT security or related field
- Deep understanding of cloud architecture and cloud security challenges and solutions, as well as operating systems (Windows/MacOS/Linux), networking, authentication, and programming and scripting languages.
- Understanding of network connectivity concepts, including IP address allocation, tunneling, L2/L3, firewalls, IDS
- Good knowledge of IT Security, SSL/TLS, TCP/IP, HTTP and DNS.
- Experience of security appliances & applications. Hands on in configuration of content filtering, firewall rules, proxy, packet inspection, DLP, vulnerability & threat detection, etc.
- Experience and familiarity with information security tools and concepts, e.g. IT Compliances, IT general controls, anti-virus/malware, scanning software, identify and access management, endpoint security, vulnerability management, software update processes, etc.
- Experience with log analysis, event correlation, incident management procedures and systems
- Network troubleshooting experience - Familiarity with tools such as Ping, Traceroute, MTR, and Network Protocol Analysers such as tcpdump, Wireshark
- Must have excellent reporting and analytical skills.
- Knowledge of authentication systems such as OKTA/SAML, MS AD/LDAP
- Knowledge of SaaS applications, Google Workspace (GSuite), Okta, AirWatch and etc.
- Knowledge of Cloud platforms with Security Services in Azure, AWS or GCP such as Azure Security Center, IAM, KMS, VPC, Security Groups, AWS Inspector, GCP Security command center
- An environment where you will be working on cutting edge technologies and architectures
- A fun, passionate and collaborative workplace
- Competitive salary and benefits, including equity