Job Description

Location: Mohali 

Job Type: Full-Time

Exp: 1 to 2 Years

Work mode: Work From Office 

About RChilli

RChilli is a leading provider of AI-driven HR technology solutions, helping businesses streamline their hiring processes with cutting-edge automation. We are committed to fostering innovation, learning, and growth for emerging talents in the tech industry.

Job Summary

We are looking for a highly motivated Information Security Engineer to monitor and enhance security measures across our networks and systems. The ideal candidate will have strong analytical skills, hands-on experience in cybersecurity tools, and the ability to proactively identify and mitigate threats.

Job Role & Responsibilities

• Continuously monitor computer networks for security threats and respond to incidents promptly.
• Investigate security breaches, analyze root causes, and implement corrective measures.
• Deploy and manage endpoint detection and prevention tools to defend against malware, phishing, and cyberattacks.
• Maintain an information security risk register and assist with internal and external security audits.

• Perform security assessments, penetration testing, and vulnerability scans across all IT systems.
• Develop and implement remediation plans for identified vulnerabilities to maintain a high-security standard.
• Ensure compliance with ISO 27001:2022, SOC 2 Type II, HIPAA, and other security frameworks through regular audits and assessments.
• Set up and manage patch management systems to ensure timely updates of applications and OS security patches.

• Implement and maintain firewalls, intrusion detection/prevention systems (IDS/IPS), and encryption protocols.
• Design, analyze, and implement robust IT security architectures and policies.
• Automate security processes and develop tools to enhance threat detection and response.
• Collaborate with IT teams to deploy security controls across cloud and on-premises environments.

• Develop and execute security incident response plans, ensuring rapid containment and resolution.
• Investigate and document security alerts, providing detailed analysis and recommended actions.
• Work with IT operations to establish and maintain a disaster recovery (DR) and business continuity plan (BCP).
• Plan and test contingency strategies to minimize downtime and data loss in case of security breaches.

• Ensure security policies, procedures, and guidelines align with industry regulations and best practices.
• Conduct security awareness training sessions for employees to prevent social engineering attacks.
• Stay updated with the latest cybersecurity threats, trends, and mitigation techniques.

Required Skills & Qualifications

• Degree Required: BCA, MCA, B.Tech, M.Tech, B.Sc IT

• Technical Background: Strong understanding of cybersecurity principles and best practices.

• Minimum Experience: 6 months to 1 year in domain / overall industry.

Technical Skills:

• Network Security Monitoring: Proficiency in continuously monitoring computer networks to identify and respond promptly to security threats.

• Incident Response and Management: Experience in investigating security breaches, analyzing root causes, and implementing corrective measures to prevent recurrence.

• Endpoint Security Management: Ability to deploy and manage endpoint detection and prevention tools to defend against malware, phishing, and other cyberattacks.

• Risk Assessment and Management: Experience in maintaining an information security risk register and assisting with internal and external security audits.

• Vulnerability Assessment and Penetration Testing: Proficiency in performing security assessments, penetration testing, and vulnerability scans across all IT systems.

• Remediation Planning: Capability to develop and implement remediation plans for identified vulnerabilities to maintain a high-security standard.

• Compliance Frameworks: Knowledge of and experience ensuring compliance with frameworks such as ISO 27001:2022, SOC 2 Type II, and HIPAA through regular audits and assessments.

• Patch Management: Skill in setting up and managing patch management systems to ensure timely updates of applications and operating system security patches.

• Security Infrastructure Implementation: Experience in implementing and maintaining firewalls, intrusion detection/prevention systems (IDS/IPS), and encryption protocols.

• Security Architecture Design: Ability to design, analyze, and implement robust IT security architectures and policies.

• Automation and Tool Development: Proficiency in automating security processes and developing tools to enhance threat detection and response.

• Cloud and On-Premises Security: Experience collaborating with IT teams to deploy security controls across cloud and on-premises environments.

• Disaster Recovery and Business Continuity Planning: Experience working with IT operations to establish and maintain disaster recovery (DR) and business continuity plans (BCP).

• Security Policy Development: Ensuring security policies, procedures, and guidelines align with industry regulations and best practices.

• Security Awareness Training: Experience conducting security awareness training sessions for employees to prevent social engineering attacks.

• Continuous Learning: Commitment to staying updated with the latest cybersecurity threats, trends, and mitigation techniques.

Soft Skills:

• Analytical Thinking: Strong analytical skills to assess complex security issues and develop effective solutions.

• Communication: Excellent verbal and written communication skills to effectively convey security concepts to technical and non-technical audiences.

• Problem-Solving: Proactive problem-solving abilities to address security challenges promptly.

• Collaboration: Ability to work collaboratively with cross-functional teams to implement security measures.

• Attention to Detail: Meticulous attention to detail in monitoring systems and documenting incidents.