Secop Engineer

About the role

The Secop Engineer will join a 24x7 security operations team to provide L1, L2 and L3/L4 support for the client’s infrastructure security platforms. The role ensures continuous protection, rapid response to incidents, and consistent reporting while adhering to governance, compliance and ITSM standards.

Key responsibilities

• Implement and troubleshoot firewall policies and ACLs.
• Manage WAF, IPS and Guardium solutions.
• Administer VPN, MFA and token services.
• Perform website and proxy whitelisting and block indicators of compromise.
• Oversee endpoint security tools (AV, EDR, DLP).
• Monitor security mailboxes and queues.
• Handle configuration management for all in‑scope security technologies.
• Prepare audit evidence and support compliance activities.
• Participate in disaster‑recovery drills and provide DR support.
• Conduct impact analysis, root‑cause analysis and produce SOPs.
• Review firewall rules, conduct device hardening and coordinate vulnerability remediation.
• Follow ITSM processes for incidents, changes and problems.
• Generate accurate MIS reports on ticket volumes, BAU metrics, preventive maintenance status and operational trends.

Required profile

• Bachelor’s degree in Computer Science, IT, Cybersecurity or a related field.
• Proven experience in security operations across L1, L2 and L3/L4 levels.
• Ability to work in shift‑based 24x7 coverage and provide back‑fill for planned/unplanned leave.
• Strong understanding of governance, compliance and ITSM frameworks.

Required skills

• Firewall policy and ACL implementation
• WAF, IPS, Guardium management
• VPN, MFA and token administration
• Website and proxy whitelisting
• IoC blocking
• Antivirus, EDR and DLP solutions
• Security mailbox monitoring
• Configuration management
• Audit evidence preparation
• Disaster‑recovery support
• Root‑cause analysis
• SOP development
• Firewall rule review
• Device hardening
• Vulnerability remediation
• ITSM processes (Incident, Change, Problem)
• MIS reporting