Lead Security Engineer - Secure Web Gateway

Job Requirements

Lead Network Security Engineer (Secure Web Gateway – SWG)

Location: Navi Mumbai/Chennai/Bengaluru/Hyderabad

Experience: 10+ years

Employment Type: Full-time

Role Overview

We are looking for a Senior Network Security Engineer – Secure Web Gateway (SWG) to manage and optimize enterprise internet access security for users and endpoints in a regulated banking environment.

This role focuses on secure web access, content inspection, threat protection, and data controls , while collaborating with teams managing firewalls, ZTNA, and Web/API Protection .

Key Responsibilities

Primary Focus – Secure Web Gateway • Design, configure, and operate Secure Web Gateway (SWG) platforms for enterprise users. • Define policies for URL filtering, SSL inspection, malware protection, and data protection. • Monitor web traffic behaviour and investigate policy violations or suspicious activity. • Optimize policies to balance security, user experience, and performance.

Security Operations & Compliance • Analyse SWG logs and alerts; integrate telemetry with SIEM and SOC teams. • Support incident investigations related to web-borne threats and data exposure. • Ensure SWG controls align with banking security standards and regulatory requirements. • Maintain operational documentation and audit evidence.

Required Skills • Strong experience with Secure Web Gateway / proxy-based security platforms. • Solid understanding of SSL/TLS inspection, DNS, and web traffic flows. • Experience implementing user-based and device-based access policies. • Familiarity with data loss prevention (DLP) policies, content filtering, and network traffic inspection. • Ability to troubleshoot network and security issues in complex environments. • Strong understanding of cloud security principles, including SaaS, IaaS, and PaaS. • Knowledge of security frameworks such as ISO 27001, NIST, or GDPR is a plus. • Hands-on experience with networking protocols such as DNS, and • TCP/IP. • Strong communication skills and the ability to collaborate with teams across various functions. • Certifications in network security (e.g., CCSP, CISSP, CompTIA Security+, or equivalent) are a plus. • Ability to operate under audit and regulatory scrutiny.

Good to Have • Exposure to ZTNA access models. • Understanding of network firewalls and perimeter security. • Familiarity with Web & API Protection technologies. • Experience integrating SWG with identity providers and endpoint posture controls. • Exposure to SASE / SSE frameworks.