SecOps Engineer

Monitor security events, logs, and alerts.Perform root cause analysis and recommend remediation action.Document incidents and improve incident response playbooks.Run regular vulnerability scans and track remediation progressWork with DevOps/Infrastructure teams to patch high-risk findings.Evaluate new vulnerabilities and assess business impact.Enforce security best practices for AWS/Azure/GCP environments.Support security configuration, hardening, and continuous compliance.Improve alert enrichment, triage automation, and response actions.Implement continuous compliance checks and guardrails (CIS Benchmarks, NIST, ISO).Create scripts and internal tools (Python/Bash/PowerShell) to automate security tasks.Monitor IAM policies, privilege escalations, and access anomalies.Support Zero Trust and least-privilege models.Assist in security audits, compliance checks, and evidence collection (ISO 27001, SOC 2, etc).Maintain security policies, standards, and operational documentation.Develop custom tools to improve detection, investigation, and response efficiency.Conduct security patches and server updates for the system regularly.Understand and build automation processes.Integrate OWASP Top 10 recommendations throughout the software development lifecycle (SDLC), focusing on secure coding practices and secure design principles. Work with developers to identify and fix security vulnerabilities in applications.Other tasks assigned.