Systems Engineer

Join LIXIL INDIA PVT LTD in Gurugram for a demanding yet rewarding role as a Systems Engineer within our Global IT Operations Center. This permanent, full-time position requires a dedicated individual to contribute to our 24x7 global infrastructure support, operating on a 6-day working shift. This is a strictly work-from-office role.

Key Responsibilities

• Conduct proactive 24x7 monitoring of security alerts (SIEM) and infrastructure alarms to uphold system integrity and availability.
• Analyze system logs and perform initial triage for security incidents and IT faults, differentiating between false positives and critical threats.
• Investigate suspicious indicators (IPs, Hashes, URLs) using threat intelligence sources such as VirusTotal to prioritize incidents based on their severity.
• Execute L1 security playbooks and IT Standard Operating Procedures/Knowledge Engineering databases to resolve routine incidents and service requests within defined Service Level Agreements (SLAs).
• Meticulously document investigation findings in ticketing systems and escalate complex security or infrastructure issues to Tier 2/3 teams.
• Contribute to the maintenance of monitoring dashboards and generate regular Key Performance Indicator (KPI) reports detailing security alert trends and overall system health.

What We Are Looking For

• Possess a minimum of 2-5 years of combined experience in Security Operations Center (SOC) operations and Infrastructure support, with demonstrable L2-level expertise.
• Exhibit a strong understanding of networking concepts (OSI, TCP/IP, DNS) and cybersecurity principles (CIA Triad, Cyber Kill Chain, MITRE ATT&CK) essential for analyzing attack vectors.
• Have hands-on experience with SIEM tools (e.g., Splunk, Sentinel, QRadar) and Endpoint Detection and Response (EDR) solutions (e.g., CrowdStrike, Defender) for log analysis, alert monitoring, and incident triage.
• Demonstrate proficiency in Windows and Linux command-line navigation, with the ability to perform deep analysis of system logs (Event Viewer, Syslog) to identify anomalies and suspicious activities.
• Previous experience working in a 24x7 rotational shift environment is crucial, along with a proven track record of adhering to SLAs and documenting incidents using tools like ServiceNow or Jira.
• Showcase excellent problem-solving skills to effectively troubleshoot complex issues across the entire technology stack, from network packets to virtual machine performance and security alerts.

Good To Have

• Possession of valid security credentials such as CompTIA Security+, CySA+, BTL1, CEH, or CompTIA Network+ is highly preferred.
• Proficiency in scripting languages like Python, PowerShell, PowerCLI, or Bash, and experience with automation tools such as Ansible or Terraform to streamline incident response and infrastructure management tasks.
• Exposure to Cloud Security monitoring (AWS, Azure, GCP) and experience utilizing Threat Intelligence platforms and Open-Source Intelligence (OSINT) for in-depth analysis.
• Foundational knowledge in virtualization, server administration, networking, and cloud technologies.

Qualifications

• A Bachelor's degree in Information Technology, Computer Science, Cybersecurity, or a closely related field is required.