CBTS

CBTS partners with businesses to deliver innovative technology solutions, including application services, cloud solutions, consulting, digital workplace solutio

Junior Engineer - Security

Location

India

Posted

8 hours ago

Salary

0

Seniority

Junior

Job Description

Junior Engineer - Security

CBTS

Role Description As a Security Automation Engineer I, you will contribute to the growth and maturity of our Security Operations team by developing and maintaining automation playbooks and workflows within our SOAR and XDR platforms. You will be responsible for translating analyst-driven investigation workflows into automation that accelerates triage, enrichment, containment, and remediation of issues across the SOC. - A strong background in security operations is essential for this role. - Understanding what happens before and after an alert is received is crucial. - Collaborate closely with SOC analysts and senior engineers to reduce manual workload and improve response consistency. - Support a more resilient security operation. Qualifications - 2+ years of experience as a SOC analyst, with senior analyst experience preferred. - Hands-on familiarity with alert triage, threat investigation, and escalation decision-making. - 1-2 years of experience working with a SOAR platform, with Palo Alto XSIAM or XSOAR experience strongly preferred. - Four-year college degree resulting in a bachelor's degree, or equivalent practical experience. - One or more of the following certifications: Palo Alto Cortex, CompTIA Security+, CompTIA CySA+, GIAC GSEC, EC-Council CEH, and similar. Requirements - Solid understanding of cybersecurity principles, common attack techniques, and SOC operational workflows. - Experience with SIEM, SOAR, EDR/XDR, threat intelligence, endpoint protection, and email security technologies. - Familiarity with SOAR playbook development, with Palo Alto XSIAM and/or XSOAR experience being strongly preferred. - Understanding of common detection use cases including phishing, endpoint compromise, identity threats, and network anomalies. - Proficiency in Python for scripting and automation tasks. - Comfortable working with REST APIs, Regex, and JSON to build and troubleshoot platform integrations. - Familiarity with Windows, MacOS, and Linux environments. Skills - Develop, test, and maintain automated playbooks and integrations across Palo Alto XSOAR and Cortex XSIAM. - Collaborate with SOC analysts to identify manual, repetitive workflows and translate them into reliable automation. - Experience integrating security tools and platforms to support cohesive, automated response workflows. - Strong analytical skills to evaluate playbook performance, identify logic gaps, and iterate based on analyst feedback and operational data. - Effective problem-solving to troubleshoot integration and automation failures. - Clear verbal and written communication skills, with the ability to document playbook logic and contribute to design discussions across distributed teams. Abilities - Ability to work independently, manage time effectively, and stay productive in a remote environment. - Collaborative team player capable of contributing to technical conversations and troubleshooting sessions. - High attention to detail to ensure automation logic performs accurately under varied conditions. - Commitment to continuous learning and staying current with evolving threats, detection techniques, and automation capabilities. - Ability to adapt playbook logic as the threat landscape and tool stack change over time. Supervisory Responsibilities - No Supervisory Responsibility.

Related Categories

Related Job Pages

More Security Engineer Jobs

The Leaflet logo

Principal Product Security Engineer

The Leaflet

An independent platform for cutting-edge, progressive, legal, and political opinion.

Security Engineer12 hours ago
Full TimeRemoteTeam 11-50H1B No Sponsor

• Secure SDLC & DevSecOps • Embed automated checks across our cloud (GitHub Actions) and on-prem product pipelines — GitHub Advanced Security (SAST/SCA) and Wiz Code for application, dependency, and container scanning • Define secure-by-default patterns, paved-road guardrails, and standards for secure coding, code review, and dependency hygiene — so teams ship quickly and safely • Serve as the application authority for our Zero Trust program, aligned to NIST SP 800-207 and the CISA Zero Trust Maturity Model (Applications & Workloads pillar) • Threat Modeling & Secure Design • Partner with product and engineering on security reviews for new features and payment integrations — running threat modeling (e.g., STRIDE) early in design and turning output into concrete, prioritized work • Vulnerability Management (End to End) • Own the product and application vulnerability lifecycle — one program spanning code, dependency, container, pen-test, and bug-bounty findings, from discovery through remediation • Prioritize by real-world risk and drive remediation against risk-based SLAs; engineering owns the fixes, you own the program and the escalation paths that shrink time to remediate • Report program health with metrics leadership can act on, and provide evidence for compliance obligations (PCI DSS, GLI, ISO 27001, SOC 2) • Application & API Security • Defend our applications and APIs against the OWASP Top 10 and API abuse, partner on payment security across our payment gateways, and team with our Principal Cloud & Network Security Engineer — who owns our Cloudflare edge defenses (WAF, Bot Management) — on bot and abuse resilience • Own the application security of player-facing account flows — registration, authentication, session management, recovery — partnering with our Principal Identity Engineer on CIAM architecture and with SecOps and Fraud on account-takeover resilience • Testing & External Assurance • Coordinate penetration testing with external partners and drive findings to closure • Mature our existing coordinated-disclosure program into a full bug-bounty capability

Florida
Binance logo

Senior Application Security Architect

Binance

The World’s Leading Blockchain Ecosystem and Digital Asset Exchange

Security Engineer13 hours ago
Full TimeRemoteTeam 1,001-5,000Since 2017H1B No Sponsor

• Design and implement secure application architectures, considering factors like authentication, authorization, data protection, and vulnerability management etc. • Develop and maintain secure coding guidelines and standards. • Conduct architectural / security requirement reviews to identify/assess potential security risks and mitigate security risks that may be caused by new products, new functions, bug fixes, etc.. • Develop and implement security controls and countermeasures to mitigate identified risks. • Conduct regular security audits or penetration testing. • Ensure compliance with relevant security standards and regulations (e.g., OWASP). • Stay up-to-date with the latest security threats and vulnerabilities and incident in the community etc. • For the company's product business area, conduct pre-research to deep understand the business and reserve security tech research • Gradually form a basis for risk identification based on different products and security solution • Communicate security risks and recommendations to stakeholders. • Provide guidance and mentorship to the teams on security suggestions and secure coding practices.

Singapore
Full TimeRemoteTeam 1,001-5,000Since 2025H1B No Sponsor

• Define and enforce enterprise network security standards, including firewall governance, least-privilege principles, and network segmentation. • Design and drive Zero Trust architecture, including identity-aware and persona-based access controls. • Develop secure network architectures for cloud, hybrid, and internet-facing environments. • Lead network security workstreams for Mergers & Acquisitions (M&A), including integration planning and risk reduction. • Drive adoption and maturity of Zscaler capabilities and the organization's Zero Trust strategy. • Design and implement security controls for Specific Use Networks (SUN) and other controlled environments. • Architect and secure high-trust environments, including Operational Technology (OT) and Process Control Networks (PCN).

India

Manager, Cybersecurity Operations

Dutch Bros Coffee

Dutch Bros Coffee, founded in 1992, is a drive-through coffee company committed to delivering exceptional beverages and creating meaningful connections. With a

Security Engineer16 hours ago

Title: Manager, Cybersecurity Operations Location: Tempe, AZ 85281 Job Description: Headquarters widget:Full time Job ID:REQ-18645 SummaryResponsibilitiesEducationSkills The Manager of Cybersecurity Operations is responsible for safeguarding critical systems and sensitive information at Dutch Bros Coffee. This role requires a minimum of 6 years of experience in information security, with a strong background in IT areas such as software development and incident response. The position is based in Tempe, Arizona, and requires in-office presence four days a week. Compensation is dependent on experience. It's fun to work in a company where people truly believe in what they are doing. At Dutch Bros Coffee, we are more than just a coffee company. We are a fun-loving, mind-blowing company that makes a difference one cup at a time. Position Overview: The Manager of Cybersecurity Operations plays a crucial role in ensuring the protection and security of critical systems and sensitive information across the organization. Reporting to the Director, Cybersecurity this role oversees key cybersecurity programs, including the Security Operations Center (SOC), Vulnerability Management, Data Loss Prevention (DLP), ensuring the confidentiality, integrity, and availability of critical assets. This role will be tasked with driving security strategies and initiatives while proactively addressing emerging cybersecurity risks. Strong technical expertise, leadership capabilities, and a proactive approach to challenges are essential for success in this role. Job Qualifications: - Bachelor’s degree (BA/BS) in a related discipline, or 4 additional years of related experience, required - A minimum of 6 years of experience in infosec roles that provide a background in IT areas such as software development, infrastructure, operations, and incident response, is required - Understanding of Artificial Intelligence (AI) concepts, including their applications, risks, and implications within cybersecurity environments - A Certified Information Security Manager (CISM) or Certified Information Systems Security Professional (CISSP) Certification, is preferred - Proven experience managing a SOC and implementing vulnerability management, and DLP - Strong knowledge of cybersecurity technologies, MDR, EDR, SIEM, SOAR, Vulnerability Management tools and best practices - Thorough understanding of SOX, CCPA, PCI, NIST, and CIS18 - Previous experience in SaaS-heavy environments and vendor management - Deep experience with risk management, threat modeling, and vulnerability assessment - Can lead without authority. Ability to lead, mentor, and develop a high-performing cybersecurity team, fostering a collaborative and growth-oriented environment - Expertise in managing high-pressure, time-sensitive incidents and making quick, informed decisions under stress - In-depth knowledge of current and emerging cyber threats, with the ability to apply advanced detection methodologies to stay ahead of risks - Familiarity with cloud security frameworks, controls, and best practices for securing cloud environments (e.g., AWS, Azure, Google Cloud) Location Requirement: This role is located in Tempe, Arizona. This position is required to be in office 4 days per week (Mon-Thurs); Fridays are optional remote work days. Key Result Areas (KRAs): - Design workflow and processes for Security Operations Center (SOC): - Manage and optimize the day-to-day operations and tools of the SOC, ensuring effective monitoring, detection, and response to security incidents. - Develop and implement SOC processes and procedures to improve efficiency and effectiveness with increased focus on new capabilities and advanced threat detection. - Incident Response: - Oversee the incident response process, ensuring rapid identification, containment, eradication, and recovery from security incidents. - Conduct post-incident reviews and implement lessons learned to enhance security measures. - Partners with IT and GRC teams to maintain readiness, incident response plans, to include building playbooks and conducting simulations ensuring preparedness across the organization. - Vulnerability Management: - Lead the vulnerability management program, including vulnerability assessments, prioritization, and remediation strategies. - Collaborate with IT and development teams to ensure timely patching and vulnerability mitigation. - Establish metrics on the status of the program and inform leadership on areas for opportunity. - Data Loss Prevention (DLP): - Oversee the DLP strategy, ensuring the protection of sensitive data across all platforms and preventing unauthorized access or data exfiltration. - Conduct regular audits and assessments to evaluate DLP effectiveness and compliance. - AI-Driven Security Strategy & Risk Management - Define and drive key results related to Artificial Intelligence adoption and governance within cybersecurity, including evaluating AI-driven security tools, understanding AI-enabled threat vectors, and ensuring secure, responsible use of AI across security operations. - Support the growth of the infosec team while operationalizing cybersecurity initiatives to highlight improvements in posture: - Evangelize scorecards against NIST and CIS standards to track the improvement of security across programs. - Foster team mentality centered around business benefits from security initiatives. - Actively participate in hiring processes and onboarding of new employees and vendors. - Plan, assign and support workloads for direct reports. - Grow and mentor security talent. - Set reasonable stretch performance goals, provide balanced, regular performance feedback, and conduct tri-annual performance reviews. - Recognize and reward performance excellence. - Provide leadership, direction, and training to improve information security awareness. - Other duties as assigned Skills: - Change Management - Project Management - Business Plan Development - Using data to make decisions - Communication - Critical Problem Solving - Delegation Physical Requirements: - In-Office Environment:Must be able to work in a busy, crowded, and loud office with frequent distractions and interruptions - Must be able to collaborate in-person with occasional impromptu in-person meetings - Office Conditions:Adaptability to typical office conditions, which may include exposure to air conditioning, heating, artificial lighting, and varying noise levels - Mobility: Ability to sit, stand, reach, twist, stretch, and work at a desk for long stretches. Must be able to occasionally move or lift office items up to 25 pounds - Hearing Requirements:Hearing must be sufficient or correctable to ensure clear understanding of spoken information, including participating in virtual meetings and phone calls. Use of hearing aids or other assistive devices is acceptable if needed. - Reading and Writing Proficiency:Ability to read and write in English is essential for processing documents, drafting reports, and following up on necessary actions. Proficiency in written communication is required to handle job-related tasks effectively. - Vision Requirements:Vision must be adequate or correctable to perform essential job duties, such as reading documents on a computer screen and using other visual tools. Use of corrective lenses or other measures to meet visual requirements is expected if needed. - Technology Proficiency:Must be proficient in operating a computer and other office productivity tools such as printers, scanners, and collaboration software. - Effective Communication:Must possess strong verbal and written communication skills to interact effectively with team members, clients, and other stakeholders via email, video conferencing, and other in office communication tools. Compensation: DOE If you like wild growth and working in a unique and fun environment, surrounded by positive community, you'll enjoy your career with us!

Arizona