Security Engineer - Attack Surface Management
Gurugram, Haryana, India (Hybrid) · مکمل وقت
درخواست دینے والے پہلے فرد بنیں۔
- تجربہ
- 6-12 سال
- تنخواہ
- —
- کھلنا
- 1
- پوسٹ کیا گیا
- 2 گھنٹے قبل
- کام کا موڈ
- ہائبرڈ
- تعلیم
- کوئی بھی گریجویٹ
- اہلیت
- Open to all candidates holding any graduate degree.
- دوبارہ شروع کریں۔
- درخواست دینے کی ضرورت ہے۔
جہاں آپ کام کریں گے۔
ملازمت کی تفصیل
About GSPANN
GSPANN, headquartered in California, U.S.A., offers consulting and IT services to global enterprises. The company specializes in transforming client business value through optimized IT capabilities in sectors such as retail, high technology, and manufacturing. With over 1900 employees across five global delivery centers, GSPANN delivers the personalized approach of a boutique consultancy combined with the resources of a large IT services organization.
GSPANN fosters a collaborative and supportive culture among its 2000+ employees, emphasizing teamwork, social engagement, and community service. The company encourages continuous learning, innovation, and ownership, enabling employees to reach their full potential within a nurturing environment. GSPANN operates under six core employee-value proposition pillars, including expanding technological innovation, accelerating career growth, ensuring inclusivity, inspiring and being inspired, celebrating successes, and contributing to social and environmental causes.
Role Overview
The Security Engineer position focuses on strengthening the security posture of manufacturing and enterprise environments, with an emphasis on Operational Technology (OT) security operations and Attack Surface Management (ASM). Responsibilities include secure onboarding of manufacturing sites, deployment and support of security technologies, monitoring and investigation of security alerts via CrowdStrike Falcon, log and vulnerability analysis, external exposure mitigation, and coordination with OT/IT teams.
Key Duties and Responsibilities
- Implement and maintain security technology stacks across breweries and manufacturing sites in collaboration with OT, IT, automation, network, and infrastructure teams.
- Onboard and engage OT/IT automation teams to adopt security controls, incident response protocols, and remediation workflows.
- Monitor and manage security alerts arising from CrowdStrike Falcon, endpoint tools, and infrastructure platforms.
- Conduct detailed review and analysis of endpoint alerts, anomalies, and host telemetry to support threat investigation and escalation.
- Perform log investigations across manufacturing systems and security monitoring tools to detect abnormal activities and vulnerabilities.
- Facilitate operational OT security incident responses by coordinating evidence gathering, alert evaluation, impact assessments, and stakeholder communications.
- Identify vulnerabilities across OT and IT assets including endpoints, servers, network devices, and exposed services; perform risk assessments and coordinate remediation efforts.
- Manage Attack Surface Management activities, encompassing discovery and validation of internet-facing assets, exposure analysis, and risk mitigation using ASM platforms and vulnerability tools like Qualys.
- Maintain comprehensive documentation such as SOPs, incident notes, remediation logs, dashboards, and reports in alignment with audit and compliance standards.
- Analyze security trends regarding vulnerabilities, exposures, alerts, and remediation to provide insights that enhance security postures.
- Participate in operational meetings to discuss security status, risks, findings, and control effectiveness.
- Stay abreast of emerging OT security threats, ASM advancements, platform updates, and related technologies to drive continuous improvement.
Candidate Profile
- Excellent verbal and written English communication skills.
- Strong analytical abilities with effective problem-solving and decision-making capabilities.
- Ability to operate effectively in time-sensitive and multi-tasking environments.
- Detail-oriented with a strong commitment to team collaboration and flexibility.
- Result-driven mindset with a focus on efficiency and continuous personal development.
- Technical expertise in OT/ICS security, brewery and manufacturing environment security, automation systems, and IT/OT coordination.
- Proficient with CrowdStrike Falcon for endpoint security monitoring, alert triage, investigations, and telemetry analysis.
- Experience in vulnerability assessment, log analysis, security incident response, and external attack surface management.
- Familiarity with security hygiene practices, asset inventory management, and operational dashboard/report maintenance.
- Strong documentation, communication, and stakeholder engagement skills enabling coordination across IT, OT, SOC, and manufacturing teams.
Additional Information
- Experience Required: 6 to 12 years.
- Working Mode: Hybrid.
- Notice Period: Immediate joiners preferred; up to 20 days acceptable.
- Eligibility: Candidates with any graduate degree are welcome to apply.