Information Security Engineer

Job Description

Location:Mohali

Job Type:FullTime

Exp: 1 to 2 Years

Work mode: Work From Office

About RChilli

RChilli is a leading provider of AIdriven HR technology solutions helping businesses streamline their hiring processes with cuttingedge automation. We are committed to fostering innovation learning and growth for emerging talents in the tech industry.

Job Summary

We are looking for a highly motivated Information Security Engineer to monitor and enhance security measures across our networks and systems. The ideal candidate will have strong analytical skills handson experience in cybersecurity tools and the ability to proactively identify and mitigate threats.

Job Role & Responsibilities

• Continuously monitor computer networks for security threats and respond to incidents promptly.
• Investigate security breaches analyze root causes and implement corrective measures.
• Deploy and manage endpoint detection and prevention tools to defend against malware phishing and cyberattacks.
• Maintain an information security risk register and assist with internal and external security audits.

• Perform security assessments penetration testing and vulnerability scans across all IT systems.
• Develop and implement remediation plans for identified vulnerabilities to maintain a highsecurity standard.
• Ensure compliance withISO 27001:2022 SOC 2 Type II HIPAA and other security frameworksthrough regular audits and assessments.
• Set up and manage patch management systems to ensure timely updates of applications and OS security patches.

• Implement and maintain firewalls intrusion detection/prevention systems (IDS/IPS) and encryption protocols.
• Design analyze and implement robust IT security architectures and policies.
• Automate security processes and develop tools to enhance threat detection and response.
• Collaborate with IT teams to deploy security controls across cloud and onpremises environments.

• Develop and execute security incident response plans ensuring rapid containment and resolution.
• Investigate and document security alerts providing detailed analysis and recommended actions.
• Work with IT operations to establish and maintain adisaster recovery (DR) and business continuity plan (BCP).
• Plan and test contingency strategies to minimize downtime and data loss in case of security breaches.

• Ensure security policies procedures and guidelines align withindustry regulations and best practices.
• Conduct security awareness training sessions for employees to prevent social engineering attacks.
• Stay updated with the latest cybersecurity threats trends and mitigation techniques.

Required Skills & Qualifications

• Degree Required: BCA MCA B.Tech M.Tech B.Sc IT

• Technical Background: Strong understanding of cybersecurity principles and best practices.

• Minimum Experience: 6 months to 1 year in domain / overall industry.

Technical Skills:

• Network Security Monitoring: Proficiency in continuously monitoring computer networks to identify and respond promptly to security threats.

• Incident Response and Management: Experience in investigating security breaches analyzing root causes and implementing corrective measures to prevent recurrence.

• Endpoint Security Management: Ability to deploy and manage endpoint detection and prevention tools to defend against malware phishing and other cyberattacks.

• Risk Assessment and Management: Experience in maintaining an information security risk register and assisting with internal and external security audits.

• Vulnerability Assessment and Penetration Testing: Proficiency in performing security assessments penetration testing and vulnerability scans across all IT systems.

• Remediation Planning: Capability to develop and implement remediation plans for identified vulnerabilities to maintain a highsecurity standard.

• Compliance Frameworks: Knowledge of and experience ensuring compliance with frameworks such as ISO 27001:2022 SOC 2 Type II and HIPAA through regular audits and assessments.

• Patch Management: Skill in setting up and managing patch management systems to ensure timely updates of applications and operating system security patches.

• Security Infrastructure Implementation: Experience in implementing and maintaining firewalls intrusion detection/prevention systems (IDS/IPS) and encryption protocols.

• Security Architecture Design: Ability to design analyze and implement robust IT security architectures and policies.

• Automation and Tool Development: Proficiency in automating security processes and developing tools to enhance threat detection and response.

• Cloud and OnPremises Security: Experience collaborating with IT teams to deploy security controls across cloud and onpremises environments.

• Disaster Recovery and Business Continuity Planning: Experience working with IT operations to establish and maintain disaster recovery (DR) and business continuity plans (BCP).

• Security Policy Development: Ensuring security policies procedures and guidelines align with industry regulations and best practices.

• Security Awareness Training: Experience conducting security awareness training sessions for employees to prevent social engineering attacks.

• Continuous Learning: Commitment to staying updated with the latest cybersecurity threats trends and mitigation techniques.

Soft Skills:

• Analytical Thinking: Strong analytical skills to assess complex security issues and develop effective solutions.

• Communication: Excellent verbal and written communication skills to effectively convey security concepts to technical and nontechnical audiences.

• ProblemSolving: Proactive problemsolving abilities to address security challenges promptly.

• Collaboration: Ability to work collaboratively with crossfunctional teams to implement security measures.

• Attention to Detail: Meticulous attention to detail in monitoring systems and documenting incidents.