Building Stronger Businesses & Communities. Providing Managed IT Services in the Dallas-Fort Worth Area since 2008.
Senior Security Engineer
Location
Pakistan
Posted
5 days ago
Salary
0
Seniority
Senior
Job Description
Senior Security Engineer
GXA
Role Description GXA is seeking a highly capable Security Engineer to support the delivery and operation of our gShield security services. This role is hands-on and technical, focused on incident response, security tool operations, remediation execution, client security support, and internal security improvement initiatives. The Security Engineer serves as a Tier 3 escalation point for active security incidents and plays a key role in operating and improving the gShield security stack across client environments. This individual will work closely with the InfoSec Manager (vISM), vCISO, SOC, Centralized Services, onboarding teams, and internal technical leadership to strengthen client security posture and support rapid, effective response to threats. This is an execution-focused role for someone who is comfortable working in live security events, analyzing alerts and evidence, supporting remediation efforts, and helping maintain the operational excellence of GXA’s security program. Key Responsibilities - Incident Response - Serve as a Tier 3 escalation point for active security incidents, including business email compromise (BEC), adversary-in-the-middle (AiTM), ransomware, and account compromise. - Lead technical analysis during incident response and war room events, including log review, IOC hunting, and lateral movement tracing. - Execute containment and eradication actions such as endpoint isolation, session revocation, and credential resets. - Coordinate with SOC teams and vendor threat intelligence teams during active investigations and containment efforts. - Produce accurate incident timelines, technical findings, and evidence packages for vCISO review and client-facing follow-up. - Tool Operations & Security Stack Support - Operate daily within the gShield toolstack, including platforms such as Huntress, Microsoft Defender for Endpoint (MDE), Cyrisma, DNSFilter, SIEM, and related security technologies. - Perform alert triage, risk identification, scan issue resolution, and follow-through on issues surfaced by security tools. - Support SIEM operations including query development, alert review, and rule tuning. - Assist in tuning detection logic, scan settings, and platform effectiveness in coordination with Centralized Services and security leadership. - Monitor for security gaps, suspicious activity, and control weaknesses across managed environments. - Work within established security standards, baselines, and operational policies defined by the security team and vITMs. - Client Delivery Support - Execute technical remediation items identified through MRMMs, preventative actions, vulnerability reviews, and security recommendations. - Support gShield deliverables through technical validation, evidence gathering, scan review, and vulnerability analysis. - Act as a quality assurance resource for client onboarding into the gShield toolstack, while execution remains with onboarding and Centralized Services teams. - Assist with client hardening efforts and follow-through on security improvement actions across managed environments. - Internal Security Posture - Support remediation of internal GXA security backlog items, including POA&M-related work. - Assist with rollout and support of phishing-resistant MFA, passkeys, and other internal security initiatives. - Contribute to security engineering efforts related to Intune, Defender, ThreatLocker, AppLocker, and RMM scripting. - Help improve internal security controls, tool effectiveness, and technical enforcement mechanisms. - Documentation & Process Improvement - Write and maintain security engineering SOPs, runbooks, detection playbooks, and response procedures related to gShield operations and incident response. - Document technical findings, repeatable procedures, and lessons learned from incidents and tool operations. - Collaborate with security leadership and technical stakeholders on process improvements, skill development, and automation opportunities. - Contribute technical depth to broader security documentation where needed, while recognizing that ownership of policy, standards, and governance documentation remains with security leadership and related functions. Qualifications - 5–7+ years of experience in cybersecurity, security operations, security engineering, or incident response roles. - Strong hands-on experience with incident response, threat detection, and security operations workflows. - Experience working with security platforms such as Microsoft Defender, Huntress, DNSFilter, SIEM solutions, vulnerability management tools, and endpoint security technologies. - Ability to investigate security alerts, analyze logs, trace attacker activity, and support containment and remediation. - Familiarity with common attack types including phishing, BEC, account compromise, ransomware, and identity-based attacks. - Experience supporting security controls in Microsoft 365 and endpoint environments. - Strong documentation skills and ability to write clear technical procedures and findings. - Ability to work calmly and methodically during active incidents and escalations. - Strong collaboration and communication skills with both internal teams and leadership stakeholders. Preferred Qualifications - Experience in an MSP, MSSP, or multi-client environment. - Familiarity with Intune, Microsoft Defender, AppLocker, ThreatLocker, and RMM-based scripting or automation. - Understanding of CIS benchmarks, security hardening standards, and configuration drift monitoring. - Experience supporting vulnerability remediation and technical aspects of vCISO or managed security programs. - Security certifications such as Security+, CySA+, SC-200, SC-300, AZ-500, GCIH, GCIA, or similar are a plus. Success in This Role Looks Like - Security incidents are handled quickly, accurately, and with strong technical discipline. - Alerts and risks surfaced by the toolstack are investigated and acted on consistently. - Client security remediation items are executed thoroughly and on time. - gShield tooling is tuned, effective, and operationally reliable. - Documentation, SOPs, and response playbooks are clear, useful, and continuously improving. - Internal and client security posture improves through strong technical follow-through.
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
Sr Security Engineer - AI
QuickbaseQuickbase offers a no-code platform that helps clients unlock the potential of their digital operations by “turning ideas about better ways to work” into fu
Role Description Reporting to the CISO, the Senior AI Security Engineer will serve as a key contributor to Quickbase's AI security program. This role is responsible for securing enterprise AI technologies, enabling the safe use of AI-powered development tools, supporting AI governance initiatives, conducting AI risk assessments, and helping implement security controls that enable responsible AI adoption across the organization. The ideal candidate combines strong cybersecurity fundamentals with practical experience working with generative AI technologies, developer AI tools, cloud-native architectures, and modern software development practices. Qualifications - 4–7 years of experience in Security Engineering, Application Security, Product Security, Cloud Security, DevSecOps, Information Security, or related cybersecurity disciplines. - Experience conducting security assessments, architecture reviews, technology evaluations, or risk assessments. - Working knowledge of generative AI technologies, large language models (LLMs), AI agents, copilots, and AI-powered development tools. - Understanding of AI security risks including data leakage, prompt injection, excessive permissions, insecure outputs, model misuse, agent abuse, and emerging AI threats. - Experience with cloud platforms such as AWS, Azure, and/or GCP. - Familiarity with modern software development practices, APIs, CI/CD pipelines, and application security principles. - Strong analytical, problem-solving, communication, and stakeholder management skills. - Ability to translate security requirements into practical and scalable solutions. Requirements - Experience supporting enterprise AI adoption, AI governance, AI risk management, or AI security initiatives. - Experience with enterprise AI platforms such as ChatGPT Enterprise, Claude Enterprise, GitHub Copilot, Microsoft Copilot, Gemini, or similar technologies. - Familiarity with AI governance frameworks and industry guidance such as NIST AI RMF, ISO 42001, OWASP Top 10 for LLM Applications, MITRE ATLAS, or responsible AI principles. - Experience evaluating AI vendors, AI-enabled SaaS platforms, or emerging technology solutions. - Experience working in SaaS, cloud-native, or high-growth technology organizations. Benefits - Compensation range for this role is $136,000 - $210,000 per year. - Bonus/commission eligibility. - Access to a full benefits package including health insurance, 401k, paid time off, etc.
Administrador de Sistemas Microsoft, Identidad, Seguridad
Ibertech IT ServicesPersonas, equipo, confianza, profesionales. Crece con nosotros!!
• Administración y soporte avanzado (Nivel 2-3) de entornos Microsoft on-premise, cloud e híbridos. • Gestión y resolución de incidencias complejas relacionadas con identidad, seguridad, virtualización y puesto de trabajo digital. • Administración de Active Directory, Microsoft Entra ID, ADFS y soluciones de autenticación híbrida. • Gestión y evolución de plataformas Microsoft Intune y administración de endpoints corporativos. • Operación y mantenimiento de soluciones Microsoft Defender, Defender XDR y Microsoft Sentinel. • Administración de entornos Citrix Virtual Apps & Desktops (CVAD), Citrix DaaS y Azure Virtual Desktop (AVD). • Gestión de infraestructuras virtualizadas VMware, Hyper-V y otras plataformas de virtualización. • Administración de Windows Server, Microsoft 365, Exchange, SharePoint y SCCM. • Participación en proyectos de migración, modernización tecnológica y mejora de la postura de seguridad. • Elaboración de documentación técnica, procedimientos operativos y transferencia de conocimiento. • Aplicación de buenas prácticas de seguridad, hardening y gestión de vulnerabilidades.
Business Analyst Level 3, Security Coordinator
Ellit GroupsPutting patients at the heart of healthcare digital transformation enabled by information technology.
• Guide and support Application Support Analysts in the execution of security assignments and user provisioning activities. • Establish and maintain ownership of security classes and ensure access is granted only to authorized users based on business need. • Coordinate user-to-security template mappings and role assignments. • Develop and maintain procedures for onboarding new employees, modifying access for role changes, and deprovisioning terminated users. • Create standardized processes for login authorization, password issuance, and security onboarding. • Develop approval workflows and governance processes for creating or modifying security roles. • Collaborate with technical and application teams to understand security infrastructure and role-based access templates. • Develop familiarity with operational and clinical workflows to align security templates with job responsibilities. • Map provider-related data elements to provider records based on provider classifications. • Process inbound and outbound files related to employee and provider databases, including EMP and SER records. • Generate and review daily, weekly, and monthly security audit reports. • Provide Level 2 support for enterprise application and data security incidents and requests. • Assist leadership with additional security initiatives and special projects as assigned. • Accurately process large volumes of provider and user data while meeting established service-level expectations. • Gather, analyze, document, and validate business and system requirements. • Translate business needs into functional specifications and detailed test plans. • Serve as the liaison between business stakeholders, development teams, and third-party vendors. • Analyze and document current and future-state business processes and workflows. • Support issue identification, tracking, reporting, and timely resolution. • Assist with project planning, scheduling, resource coordination, and change management activities. • Produce regular status reports detailing milestones, risks, dependencies, and project progress. • Facilitate meetings, workshops, and stakeholder communications to support successful project delivery.
Network Security Engineer
ZensarAt Zensar, we’re “experience-led everything”. We are committed to conceptualizing, designing, engineering, marketing, and managing digital solutions and experiences for over 130 leading enterprises. We are a company driven by a bold purpose: Together, we shape experiences for better futures. Whether for our clients, our people, or the world around us, this belief powers everything we do. At the heart of our culture is ONE with Client - a set of four core values that reflect who we are and how we work: One Zensar, Nurturing, Empowering, and Client Focus. Part of the $4.8 billion RPG Group, we’re a community of 10,000+ innovators across 30+ global locations, including Milpitas, Seattle, Princeton, Cape Town, London, Zurich, Singapore, and Mexico City. We believe the best work happens when individuality is celebrated, growth is encouraged, and well-being is prioritized. We are an equal employment opportunity (EEO) and affirmative action employer, committed to creating an inclusive workplace. All qualified applicants will be considered without regard to race, creed, color, ancestry, religion, sex, national origin, citizenship, age, sexual orientation, gender identity, disability, marital status, family medical leave status, or protected veteran status.
Role Description As a Network Security Engineer at Zensar, you will be responsible for: - Designing and implementing secure network solutions. - Monitoring network traffic for suspicious activity. - Conducting vulnerability assessments and penetration testing. - Responding to security incidents and breaches. - Collaborating with cross-functional teams to enhance security posture. Qualifications - Bachelor's degree in Computer Science, Information Technology, or a related field. - Relevant certifications (e.g., CISSP, CISM, CEH). - Proven experience in network security engineering. - Strong understanding of firewalls, VPNs, IDS/IPS, and other security technologies. Requirements - Excellent problem-solving skills and attention to detail. - Ability to work independently and as part of a team. - Strong communication skills, both verbal and written. - Willingness to stay updated on the latest security trends and threats. Benefits - Competitive salary and performance-based bonuses. - Comprehensive health and wellness benefits. - Opportunities for professional development and training. - Flexible work arrangements.
