Security Signature Automation Engineer

Delhi | Experience: 2 to 6 years

Core Responsibilities

  • Review and understand Security Benchmarks such as CIS, STIG, NIST etc. for servers, endpoints, databases, network & security devices, etc for creating automated security assessment signatures and remediation procedures
  • Evaluate and implement Infrastructure ( Windows Endpoints and Servers, Linux and Unix Endpoints and Servers, Network & Security Nodes, Database & Storages, Cloud ) to test identified automated security assessment signatures and remediation procedures
  • Create Information Security Baselines (Controls basis on Security Hardening Guidelines) for various infrastructure devices and define subsequent remediation guidelines, risk level of non-compliance, etc.
  • Quality Assurance of Security Baselines, automated security assessment signatures and remediation procedures
  • Research and recommend innovative ideas, and wherever possible, automated approaches, for system administration tasks
  • Automate associated processes to ensure efficiency and accuracy
  • Continual maintenance and enhancement of Security Control Library

Experience and Qualifications

  • Strong scripting (e.g. Python, Bash, Batch, Powershell) and automation skills.
  • Windows system administration experience including Active Directory domains, DNS, DHCP, Windows Security, Group Policies, User Account Control, User Rights, Account policy, Audit policy etc.
  • Exposure of working with multiple windows platforms inclusive but not limited to Windows XP/8/8.1/10/Windows Server 2003/2008/2008 R2/2012/2012 R2/2016/2019 and linux platforms inclusive but not limited to Redhat, CentOS, Ubuntu, AIX, HP UX
  • Linux and Unix system administration experience including system configuration and in-depth under the hood working of: Secure Boot Settings, TCP Wrappers, IPtables, Logging and Auditing, syslog, auditd, logrotate, cron, PAM, File permissions, user and group settings
  • Basic to intermediate knowledge of cybersecurity principles, cybersecurity frameworks, threats and vulnerabilities
  • Professional IT Certifications, such as: Microsoft MCP, MCSA, or MCSE, RHCSA , RHCE. Security certification is a plus (Security+, CISSP, GIAC, CEH, SSCP, etc.)