L2/L3 - Security Engineer - (Firewall + EDR + PAM/IAM)

The Security Engineer is responsible for the operations, administration, advanced support, optimization, and continuous improvement of enterprise security infrastructure across multiple domains including Firewall, Endpoint Security (EDR/EPP), PAM/IAM, DAM, WAF, IDS/IPS, DDoS protection, and Micro -Segmentation.

The role involves ensuring secure, stable, and highly available security services across enterprise and cloud environments while supporting incident response, troubleshooting, policy governance, integrations, and transformation initiatives.

The engineer will work closely with Information Security, SOC, Infrastructure, Cloud, Audit, Application Teams, and OEM TAC teams to maintain and enhance the organization’s security posture.

Experience Required

• L2 Level: 3–5 years in Security Operations / Network Security / IAM / PAM
  
• L3 Level: 5–8+ years in Security Engineering / Advanced Security Operations
  
• Experience in enterprise -scale production environments is required
  

Primary Skills Required

Endpoint Security / EDR

Hands -on experience with:

• Trend Micro Deep Security
  
• Trellix Endpoint Security / EDR
  
• SentinelOne Singularity Platform / EDR
  

Key areas:

• EPP / EDR operations and administration
  
• Threat detection, incident triaging, and malware analysis
  
• Policy management, tuning, and endpoint hardening
  
• File Integrity Monitoring (FIM)
  
• Incident response and security automation (L3 depth)
  

Firewall & Network Security

Hands -on experience with:

• Cisco Firepower / ASA
  
• Palo Alto Networks Firewall
  
• Check Point Firewall
  
• Fortinet FortiGate
  

Key areas:

• Firewall policy management and optimization
  
• VPN (site -to -site & remote access)
  
• NAT and ACL configuration
  
• Network segmentation and Zero Trust concepts
  
• HA setup, troubleshooting, and maintenance
  
• Incident handling and RCA (L3 advanced)
  

Additional exposure:

• F5 WAF
  
• DDoS protection (Radware / ISP -based)
  
• IDS/IPS solutions (Cisco / Trend Micro)
  
• Micro -segmentation (Akamai Guardicore)
  

PAM / IAM / DAM

Hands -on experience with:

• ARCON PAM
  
• Imperva DAM
  

Key areas:

• Identity & Access Management (IAM)
  
• Privileged Access Management (PAM)
  
• RBAC and access governance
  
• Password vaulting and rotation
  
• MFA and SSO integration
  
• Identity lifecycle management
  
• Access certification and compliance reviews
  
• AD / LDAP integration
  

Good to Have Skills

• Cloud security exposure (AWS / Azure)
  
• SIEM / SOAR integration awareness
  
• Vulnerability management concepts
  
• Secure Web Gateway / Proxy understanding
  
• Zero Trust architecture concepts
  
• ServiceNow and ITIL processes (incident/change/problem)
  
• CAB and change management exposure
  
• Agile / SAFe environments
  
• Basic scripting (PowerShell / Python / Bash)
  

Roles & Responsibilities

L2 Responsibilities (Operational Focus)

• Handle day -to -day security operations across Firewall, EDR, and IAM/PAM systems
  
• Perform troubleshooting for incidents related to policies, agents, VPNs, access, and authentication
  
• Implement firewall rules, access changes, and IAM requests under SOP guidance
  
• Monitor security alerts and ensure system health and compliance
  
• Support upgrades, patching, backups, and operational maintenance
  
• Coordinate with OEM TAC for issue resolution
  
• Maintain operational documentation and reports
  

L3 Responsibilities (Advanced / Engineering Focus)

• Lead critical incidents, escalations, and RCA across security domains
  
• Design and optimize security policies, architectures, and workflows
  
• Lead migrations, upgrades, integrations, and transformation projects
  
• Perform threat hunting, malware analysis, and advanced investigations
  
• Integrate security platforms with SIEM, SOAR, IAM, and cloud systems
  
• Mentor L2 engineers and provide technical leadership
  
• Drive automation, optimization, and operational maturity improvements
  
• Own SOPs, runbooks, architecture diagrams, and governance documentation
  
• Participate in audits, CAB reviews, and compliance activities
  
• Enforce Zero Trust and least privilege security principles
  

Preferred Candidate Profile

• Strong troubleshooting and analytical mindset
  
• Good communication and stakeholder coordination skills
  
• Experience in enterprise production environments
  
• Ability to handle critical incidents independently (L3 expectation)
  
• Strong understanding of security architecture and operations
  

Requirements

Note: Joining Immediate or within 1 month