Galaxy Office Automation

Number of Positions: 1

Senior Application Security / Product Security Engineer

Experience : 4+ Years
Job Location : Ghansoli, Mumbai

Job Description
We are seeking an experienced Application Security / Product Security Engineer to help secure
our applications and products throughout the software development lifecycle. The ideal
candidate will have strong knowledge of cloud-based architectures, application security best
practices, and secure SDLC, along with hands-on experience performing security design
reviews and application testing across web, API, mobile, and thick client applications. This role
requires close collaboration with engineering, architecture, DevOps, and product teams to
identify security risks early and ensure secure product development.
Key Responsibilities
 Integrate security practices into the Software Development Lifecycle (SDLC).
 Perform application security design reviews for new and existing products.
 Conduct manual and automated security testing of:
o Web applications
o REST / GraphQL APIs
o Mobile applications (Android / iOS)
o Thick client / desktop applications
 Identify vulnerabilities such as OWASP Top 10, authentication issues, authorization
flaws, and API security risks.
 Review cloud architecture and deployments (AWS, Azure, GCP) for security best
practices.
 Work with development teams to prioritize and remediate vulnerabilities.
 Perform threat modeling and security architecture assessments.
 Track vulnerabilities, remediation status, and risk metrics using Excel or vulnerability
management tools.
 Support secure coding practices and developer security awareness.
 Manage multiple security assessments and coordinate tasks across teams.
 Provide reports and dashboards for management regarding security posture.
Required Skills & Qualifications
 Strong understanding of Application Security and Product Security principles.
 Experience with secure SDLC practices.
 Hands-on experience performing security testing for:
o Web applications
o APIs
o Mobile apps
o Thick client applications
 Knowledge of cloud platforms (AWS / Azure / GCP) and cloud security architecture.
 Experience performing security design reviews and threat modeling.
 Familiarity with OWASP Top 10, API Security Top 10, and common vulnerability
classes.
 Experience using security tools such as:
o SAST
o DAST
o SCA
 API testing tools
 Good working knowledge of Excel for tracking vulnerabilities, metrics, and reporting.
 Strong task management and stakeholder coordination skills.
 Ability to work with engineering and product teams to drive security remediation.
Preferred Qualifications
 Certifications such as:
o CEH
o OSCP
o GWAPT
o CSSLP
o CISSP
 Experience with DevSecOps pipelines and CI/CD security integration and
architecture design principles.
 Experience with container and Kubernetes security and cloud security.
Soft Skills
 Strong communication and collaboration skills
 Ability to manage multiple projects and stakeholders
 Analytical thinking and problem-solving ability
 Strong documentation and reporting skills

L2 Engineer (Sophos Specialists)

Experience: 5-9 Years
Job Location: Mumbai Fort

Job Description
The L2 Engineer (Sophos Specialists) will provide advanced technical support for endpoint security and cyber defense
operations. The role involves handling complex issues related to EDR, incident response, threat hunting, and forensics,
along with supporting Linux/Windows environments, databases, network management software, and related IT
technologies.
Key Responsibilities

  • Provide L2 support for Sophos security products and related endpoint protection solutions.
  • Troubleshoot and resolve complex incidents related to EDR, incident response, threat hunting, and forensics.
  • Work on Linux and Windows operating systems, databases, network management software, and IT infrastructure
    technologies.
  • Analyze security events, perform deeper technical investigation, and coordinate escalations when required.
  • Ensure proper documentation, case updates, and resolution tracking.
  • Support implementation and operational activities for proposed OEM or reputed EDR solutions.
  • Collaborate with internal teams to maintain service quality and timely issue closure.
    Academic Qualifications
    Candidates should possess one of the following:
    BTech/MTech in CS or IT / MCA Degree or Equivalentwith a minimum of5 years of experienceinEDR / Incident
    Response / Threat Hunting / Forensics solutions.
    OR
    BCA / B.Sc. IT / B.Sc. Computers / Diploma in Computer Science or Information Technology with relevant operational
    exposure.
    Required Skills
  • Strong knowledge ofLinux and Windows operating systems.
  • Familiarity with databases,network management software, and core IT technologies.
  • Hands-on experience withEDR toolsand security operations.
  • Good analytical, troubleshooting, and communication skills.
  • Ability to manage escalations and work in a support-driven environment.
    Certifications
  • Preferred or required certifications include:
    OEM certificate of proposed solution or any reputed EDRsolution.
    CISM / CISSP / CEH / CSA / CIH / CompTIA Security+
    Experience Requirement
    Minimum5 yearsof experience inEDR / Incident Response / Threat Hunting / Forensics for candidates with
    BTech/MTech/MCA or equivalent qualification.

L1 Support Engineer (Sophos Specialists)

Experience: 3-7 Years
Job Location: Mumbai Fort

Job Description
The L1 Support Engineer (Sophos Specialists) will provide first-level operational support for endpoint security and related
cyber defense activities. The role focuses on supporting EDR, incident response, threat hunting, and forensic solutions,
along with timely triage and escalation of security issues.
Key Responsibilities

  • Provide L1 support for Sophos security products and related operational issues.
  • Monitor, identify, and escalate incidents related to EDR and security events.
  • Assist in incident response, threat hunting, and forensic support activities.
  • Perform initial troubleshooting, analysis, and documentation of reported issues.
  • Coordinate with internal teams for resolution and closure of incidents.
  • Maintain proper logs, updates, and case records in line with support processes.
    Academic Qualifications
    Candidates should possess one of the following:
    BTech/MTech in CS or IT / MCA Degree or Equivalentwith a minimum of3 years of experienceinEDR / Incident
    Response / Threat Hunting / Forensics solutions.
    OR
    BCA / B.Sc. IT / B.Sc. Computers / Diploma in Computer Science or Information Technology.
    Relevant certifications such as CEH / CSA / CIH / CompTIA Security+ are preferred or required based on profile fit.
    Required Skills
  • Strong understanding of cybersecurity operations.
  • Exposure to Sophos security solutions or similar endpoint protection platforms.
  • Knowledge of EDR, incident response, threat hunting, and forensics.
  • Good analytical, troubleshooting, and communication skills.
  • Ability to work in a structured support environment and handle escalations efficiently.
  • Certification Requirements
  • CEH
  • CSA
  • CIH
  • CompTIA Security+
    Experience Requirement
    Minimum3 yearsof experience inEDR / Incident Response / Threat Hunting / Forensics solutions for candidates with
    BTech/MTech/MCA or equivalent qualification.

Principal Storage Architect – Dell Hyper-Converged & Dell/NetApp Advisory

Experience : 15+ Years

Location : Bengaluru

Job Description
The Principal Architect (Storage Consultant) will have deep expertise in Dell Hyper-Converged
(VxRail-centric) environments, Dell primary storage platforms and NetApp ecosystems,
combined with strong enterprise advisory and roadmap definition capabilities. This role will be
client-facing and strategic in nature. The architect will engage with senior customer
stakeholders to assess current storage maturity, define future-state architecture and develop a
multi-year storage modernization roadmap aligned to performance, resiliency, regulatory,
cyber-resilience and cost objectives. This is not an operations role. It is a strategy-led
architecture and advisory position.
Key Responsibilities
Storage Strategy & Roadmap Definition (Primary Mandate)
 Lead enterprise storage assessments across Dell HC, Dell Storage, and NetApp
platforms.
 Hel the customer in defining a 3 to 5 year storage roadmap including –
o Platform rationalization
o Technology standardization
o HCI adoption strategy
o Data lifecycle and tiering models
o Cyber-resilience posture
 Conduct maturity assessments and gap analysis.
 Align storage strategy with –
o Regulatory and compliance requirements
o Business continuity & DR strategy (RPO/RTO alignment)
o Cloud and hybrid integration roadmap
 Present recommendations to senior IT and infrastructure leadership.
Dell Hyper-Converged Architecture (Core Requirement)
 Architect and optimize Dell VxRail / Dell HC environments.
 Define –
o Cluster sizing strategy
o Workload placement models
o Performance and scalability planning
o Lifecycle and expansion approach
 Provide guidance on modernization from legacy SAN/NAS to HCI where appropriate.
 Advise on integration with VMware and enterprise data protection frameworks.