SecOps Engineer

Job Description

We are seeking a skilled SecOps Engineer to monitor, assess, and remediate security risks across infrastructure, cloud, applications, and endpoints. The role focuses on security operations, vulnerability management, incident response support, and close collaboration with systems and development teams to maintain a strong security posture and regulatory compliance.

5+ years of proven experience Expert at implementing and managing Cloud and DataCenter Operational controls.

Good understanding of O365 E5, MS inTune and Azure Cloud Security Challenges. Manage Vulnerability

Able to research and develop solutions for emerging requirements and challenges.

Be able to Assess issues from discovery to resolution.

Application Penetration Testing.

Setup Audit, Logging and SIEM & WAF Solution.

Able to maintain SOC2 and PCI Compliance requirements.

Able to work on maintaining Policy and Control Documents

Ability to work in 24x7 environment and be able to provide support as needed.

Compensation is based on experience

Key Responsibilities

• Manage and execute vulnerability management activities, including scanning, triage, risk rating, tracking, and validation of remediation

• Work closely with systems, infrastructure, and DevOps teams to remediate security findings and harden environments

• Monitor security alerts and events from security tools and platforms, supporting incident detection and response

• Perform security testing of APIs, POS systems, and supporting infrastructure with a focus on PCI DSS requirements

• Execute internal and external network security assessments and configuration reviews

• Support secure CI/CD pipelines by implementing security controls aligned with DevSecOps practices

• Operate and maintain DAST and SAST tools integrated into the SDLC

• Utilize automated scanning and monitoring tools such as SonarQube Cloud and vulnerability scanners

• Support endpoint and identity security using Microsoft 365 Security and Microsoft Defender

• Assist in incident investigation, root cause analysis, and post-incident remediation

• Prepare clear security reports and dashboards for technical teams and management

Required Skills & Experience

• Proven experience in Security Operations (SecOps) or similar role

• Strong hands-on experience with vulnerability management and remediation coordination

• Solid understanding of PCI DSS controls and security monitoring requirements

• Must have strong knowledge of CI/CD pipelines and DevSecOps security practices

• Experience working with security monitoring, endpoint, and cloud security tools

• Ability to communicate security risks effectively to technical and non-technical stakeholders

Good to Have / Bonus (Not Mandatory)

• OSCP and/or CRTP certification

• Hands-on experience with Bug Bounty programs or penetration testing engagements

• Working experience with Microsoft 365 Security and Microsoft Defender

• Exposure to cloud security and SIEM/SOAR platforms

Email [email protected]