Information Security Engineer
WFA Digital Insight
The demand for skilled cybersecurity professionals has grown exponentially, with a 25% increase in job openings over the past year. As companies like Sphera expand their remote teams, the need for experts who can protect digital assets and maintain network integrity has never been more pressing. With the rise of remote work, the ability to work independently and collaboratively in a global team is crucial. Sphera, a leader in the Environmental, Social, and Governance (ESG) space, is poised to make a significant impact in the industry, making this an exciting opportunity for the right candidate. Before applying, it's essential to have a solid grasp of cybersecurity principles, threat analysis, and incident response, as well as excellent communication skills to work effectively with the team.
Job Description
About the Role
The Information Security Engineer role at Sphera is a critical position that entails day-to-day operations to protect the company's computer systems and networks. As a key member of the security team, this role reports to the Information Security Manager and is responsible for maintaining the highest level of security posture. The ideal candidate will have a strong understanding of cybersecurity principles, threat analysis, and incident response, as well as excellent communication skills to work effectively with the team.The role is based in India, with a night shift schedule, and the company is proud to be an equal opportunity employer, celebrating diversity and promoting an inclusive environment. The successful candidate will be working in a collaborative and dynamic environment, with opportunities for growth and professional development.
In this role, the engineer will be working closely with the Information Security Manager to identify and mitigate potential security risks, ensuring the integrity of Sphera's systems and data. The company is committed to creating a safer, more sustainable, and productive world, and the Information Security Engineer will play a vital part in achieving this mission.
What You Will Do
- Perform full-cycle incident investigation and response, ensuring timely and effective resolution of security incidents
- Assist in maintaining Security Operations Center (SOC) tools, such as SIEM and NGAV/XDR, to monitor and analyze security threats
- Execute information security projects and initiatives to enhance cybersecurity posture and mitigate risk
- Perform threat hunting and other proactive monitoring to identify potential security threats
- Automate security processes, tasks, and reports to improve efficiency and effectiveness
- Support gathering core information security metrics to inform security decisions
- Collaborate with the team to develop and implement security policies and procedures
- Participate in incident response activities outside of regular working hours, as required
- Communicate effectively with stakeholders, both verbally and in writing, to ensure seamless incident response and security operations
What We Are Looking For
- Bachelor's Degree in Cybersecurity, Computer Science, Information Systems, or another related field
- Proficiency in common security tools, such as SIEM, NGAV/XDR, firewalls, and email security
- Advanced understanding of security investigation procedures and core information security concepts, especially endpoint security and network security
- Ability to assess and control for information security risks
- Ability to read and understand application/script code, as well as develop scripts and perform automation
- Strong communication and collaboration skills, with the ability to foster a collaborative relationship with colleagues
- Ability to prioritize tasks, projects, and other responsibilities, with a willingness to learn and grow skills
- Industry-recognized certification, such as CISSP, CISA, CISM, or equivalent, is desirable
- Experience working in a 24/7 security operations environment, with a strong understanding of incident response and threat analysis
Nice to Have
- Experience with cloud security platforms, such as AWS or Azure
- Knowledge of compliance frameworks, such as ISO 27001 or NIST
- Familiarity with security orchestration, automation, and response (SOAR) tools
- Experience with threat intelligence platforms and threat hunting techniques
- Certification in a related field, such as CompTIA Security+ or CISSP
Benefits and Perks
- Competitive salary and benefits package
- Opportunity to work with a leading company in the ESG space
- Collaborative and dynamic work environment, with a strong focus on diversity and inclusion
- Professional development opportunities, with a willingness to support ongoing education and training
- Remote work arrangement, with flexible working hours and a night shift schedule
- Access to cutting-edge security tools and technologies, with ongoing support and training
- Recognition and reward for outstanding performance, with opportunities for career advancement
- Comprehensive health and wellness program, with a focus on employee well-being
How to Stand Out
- When applying, make sure to highlight your experience with security tools and technologies, such as SIEM and NGAV/XDR, and be prepared to provide examples of your incident response skills.
- To stand out, consider including a portfolio of your work, such as security project reports or incident response plans, to demonstrate your expertise and skills.
- Be prepared to discuss your understanding of compliance frameworks and security regulations, such as ISO 27001 or NIST, and how you have applied them in previous roles.
- Emphasize your ability to work independently and collaboratively in a global team, with a strong focus on communication and problem-solving skills.
- Don't be afraid to ask about the company culture and values, and how they support employee well-being and professional development.
- When negotiating salary, consider the cost of living in India and the company's overall compensation package, and be prepared to provide evidence of your skills and experience to support your request.
- Be wary of any red flags, such as a lack of transparency about the company's security practices or a focus on overtime work without adequate compensation
This is a remote position listed on WFA Digital, the platform for professionals who work from anywhere. Browse more remote jobs across all categories.