Skip to main content
Back to jobs

Security Engineer

External
appviewx logoAppviewx · Coimbatore/bangalore
Full-timeOn-site1w ago
ComplianceDocumentationIncident ResponseKubernetesRoutingService Mesh
Cover LetterConnect

Prepare for this interview

Elite

AI-generated questions, company research, and talking points tailored to this role

Responsibilities

  • SOC alert triage and response. Operate primarily as a SOC engineer and analyst. Triage alerts. Calibrate severity. Route or escalate. Be the human in the loop with AI and Agents operating under your authority .
  • Vulnerability alert handling and remediation coordination. Take the daily dose of vulnerability findings (SAST/SCA/Secrets, CSPM, container/infra, endpoint via EDR ) and turn it into a managed remediation pipeline. Apply CTEM/risk-context prioritization - CVSS + EPSS + KEV + business context.
  • Close-the-loop ownership. Open the ticket, assign the right owner (Engineering / SRE / Corp IT / AppSec), ensure the SLA, run the rescan /retest , document the fix in GRC Platform , and close the ticket. Make 'open and forgotten' a thing of the past.
  • SLA enforcement and metrics. Operate the SLA dashboard. Watch for aging items at 75% of SLA window and escalate. Run the weekly SLA compliance report. Own the monthly CISO view of open vulnerabilities, MTTR trends, and aging by owner.
  • Threat hunting partnership. Support the Senior SOC/Detection Engineer on hypothesis-driven threat hunts. Bring vulnerability and remediation context into hunts (e.g., known unpatched assets → focused hunt).
  • AI agents for the loop. Build agents where the work is repetitive: alert deduplication and enrichment, vuln-to-owner routing, SLA reminder cadences, evidence collection for closures, post-mortem drafting. You decide where the human stays in the loop.
  • Incident response support. During Severity 1/2 events, serve as a SOC technical contributor - investigation, evidence collection, timeline documentation, customer-advisory technical content (with CSIRT/ PSIRT/CISO oversight).
  • Customer reports. Be the SOC partner for customer-reported security issues - initial triage, severity calibration, and handoff to the right internal owner with proper escalation.
  • You may work on
  • MDR partnership runbook authorship and detection content engineering
  • Code-level vulnerability fixes (owned by Engineering - you coordinate, prioritize, and verify, & may even help provide or author the code patches).
  • Ensure Production patching execution SLAs completed by SRE/DevOps
  • Endpoint patching execution (owned by Corporate IT - you set SLA expectations and ensure compliance).
  • Incident command for Severity 1 events (owned by the Sr. SOC Engineer , escalating to CISO).
  • First 90 days
  • SOC triage shift coverage operational with the SOC Lead - defined handoff cadence, escalation paths, on-call rotation seat.
  • Vulnerability remediation pipeline measured end-to-end: time-to-triage, time-to-assignment, time-to-fix, SLA compliance baseline established.
  • First AI agent shipped for the remediation loop (e.g., alert enrichment, vuln-to-owner routing, or SLA chase cadence).
  • Top 10 highest-aging vulnerabilities triaged and either closed, exception-approved, or escalated with documented compensating controls.
  • Weekly SLA compliance dashboard live for the CISO and Director of Security Engineering review.

Requirements

  • Required
  • Four or more years in SOC, security operations, vulnerability management, or incident response - with hands-on alert triage and remediation coordination experience.
  • Hands-on with SIEM/EDR/XDR tooling (CrowdStrike, Splunk, Sentinel, Chronicle, Sumo, or equivalent).
  • Hands-on with at least one vulnerability scanner or AppSec platform (Endor, Snyk, Tenable, Qu

Benefits

Paid time offFlexible schedule

Additional Information

Security Engineer Experience: 3-5 years Location: Coimbatore & Bangalore Who we are and What we do? AppViewX is trusted by the world's leading organizations to reduce risk, ensure compliance, and increase visibility through automated certificate lifecycle management. At AppViewX, you will get to work with our AVX ONE platform that provides complete certificate lifecycle management and PKI-as-a-Service using streamlined automation workflows to prevent outages, reduce security incidents and enable crypto-agility. Glimpse of our Team The core of AppViewX lies within its robust, flexible low code platform which is being built by the architecture team. The team designs ready to consume solutions that efficiently orchestrate and meet the scalable demands of our ever-growing customers. If you are someone who would like to develop solutions using cutting-edge technologies like Kubernetes, Containers and Service Mesh and design this low code platform then this is the right place for you!! Why this role exists We are hiring a Security Engineer who lives at the intersection of SOC alerting and vulnerability remediation - the work that connects 'something looks wrong' to 'something is fixed.' You will own the close-the-loop motion: triage SOC alerts and vulnerability findings, prioritize against business context and threat intel, assign and chase down remediation owners, and measure what actually got fixed. AI leverage: AI SAST AppSec triage, CSPM for cloud findings, AISOC for L1/L2 alert handling, and your own agents for the repetitive parts of the remediation loop.

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at appviewx? Share your experience

Interested in this role?

Apply on the company's website.

Cover LetterConnect