Information Security Specialist - 2283

About the role

The Specialist - Information Security is a hands-on Security Engineer role responsible for designing, implementing, and improving enterprise security controls across multiple domains including endpoint security, identity security, network security, cloud security, and application security. This role focuses on security engineering, platform ownership, control effectiveness, and proactive risk reduction, rather than day-to-day SOC ticket handling. The specialist works closely with infrastructure, cloud, application, and compliance teams to strengthen the organization's security posture across on‑prem and cloud environments.

Responsibilities

• Ø Design, implement, and continuously improve enterprise security controls across endpoint security, identity and privileged access security, network security, cloud security, and application security domains
• Ø Act as a hands-on security engineer and technical owner for multiple security platforms, ensuring effective configuration, integration, tuning, and lifecycle management
• Ø Engineer and maintain endpoint detection and response (EDR) and advanced threat protection solutions such as CrowdStrike, Trellix, and Halcyon, improving prevention, detection, and response capabilities
• Ø Design and optimize email security and anti-phishing controls using platforms such as Proofpoint
• Ø Implement and support privileged access management (PAM) and identity monitoring solutions including CyberArk and AD Audit Plus, working closely with IAM and IT teams to reduce access-related risks
• Ø Engineer and maintain cloud and SaaS security controls across Microsoft Azure and hybrid environments using tools such as Prisma Cloud
• Ø Secure internet-facing applications and APIs using Cloudflare and Datadome, including WAF, DDoS protection, and bot mitigation
• Ø Conduct vulnerability analysis and risk assessments across infrastructure, cloud, and applications, validating control effectiveness and driving remediation recommendations
• Ø Support security incident investigations in an engineering capacity by providing advanced technical analysis, tooling expertise, and root-cause identification, while improving preventive and detective controls based on lessons learned
• Ø Leverage SIEM and detection platforms (e.g., Microsoft Sentinel, Splunk) to support security engineering use cases, detection logic, and threat visibility rather than routine alert handling
• Ø Develop and maintain security architecture diagrams, standards, policies, and technical documentation
• Ø Collaborate closely with IT, Cloud, Network, Application, Risk, and Compliance teams to embed security into platforms, architectures, and operational workflows
• Ø Support audit, regulatory, and compliance activities by providing technical evidence, control validation, and remediation guidance
• Ø Mentor junior engineers and contribute to internal security best practices, knowledge sharing, and continuous improvement
• Ø Stay current with emerging threats, security technologies, and industry best practices, recommending and implementing improvements to strengthen the organization's overall security posture
• Experience Requirements
• Ø 8-10 years of hands-on experience in enterprise information security or security engineering roles
• Ø Strong experience working across multiple security domains including endpoint, identity, network, cloud, and application security
• Ø Practical experience with SIEM and detection platforms (e.g., Crowdstrike, Microsoft Sentinel, Splunk) for security engineering and detection use cases
• Ø Hands-on experience with: EDR / Threat Protection: CrowdStrike, Trellix, Halcyon, Email Security: Proofpoint, IAM / PAM: CyberArk, AD Audit Plus, Network & Micro-Segmentation: Illumio, ExtraHop, Cloud & App Security: Microsoft Azure, Prisma Cloud, Cloudflare, Datadome,
• Ø Solid understanding of: TCP/IP, network protocols, and traffic analysis, Windows, Linux, and macOS operating systems, Virtualization and cloud-native architectures
• Ø Experience working in hybrid and cloud environments (Azure preferred)
• Skills and Competencies
• Ø Strong security engineering and troubleshooting mindset
• Ø Ability to design and optimize security controls rather than only monitor alerts
• Ø Excellent analytical and problem-solving skills
• Ø Strong collaboration and communication skills with technical and non-technical stakeholders
• Ø Ability to balance security requirements with business and operational needs
• Ø Documentation and design skills for architecture and control models
• Qualifications & Certifications
• Ø Bachelor's degree in Computer Science, Information Security, Electronics & Communication, or a related field
• Ø Preferred certifications: Security+, CEH, Ping Federate AZ-500 (Microsoft Azure Security), Vendor certifications related to CrowdStrike, CyberArk, or cloud security (preferred)
• About Medline India:
• Medline India was setup in 2010 in Pune,

Additional Information

Job Summary Job Description Title: Specialist - Information Security Specialist - Information Security

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at Medline? Share your experience