Senior Security Engineer
Lebara
Office
Tamil Nadu, Chennai, India
Full Time
Our Business
Lebara is a telecommunications company providing services using the mobile virtual network operator (MVNO) business model to customers in the United Kingdom, Germany, Netherlands, France and Denmark. Additionally, Lebara has license agreements for the use of the brand in further four global markets Spain, Switzerland, Saudi Arabia and Australia with Nigeria launching soon. Lebara was founded in 2001 with the intent to bring something new to the telecoms industry. Created by three entrepreneurs who migrated to Europe from Sri Lanka, the company name was formed from a combination of the founders’ surnames, and Lebara quickly became one of the fastest-growing MVNOs in Europe.
Lebara became private equity owned in 2017 and our current owners Waterland acquired the business in Nov 2024. Lebara is a business on a transformation journey which has and continues to achieve results and under our new ownership the business is moving from a consolidation phase to a growth phase.
Lebara’s business has evolved based on its customers’ needs, from providing international calls to the migrant community, to becoming a significant value challenger within the wider telecoms category. Lebara offers prepaid and SIM-only mobile tariffs, and in 2017, Lebara launched its first postpaid monthly contract SIMs in the Netherlands. Lebara operates under the Full MVNO model in France and Germany and Light MVNO model in its other markets with the UK and the Netherlands preparing to move to full MVNO.Lebara’s purpose is to consistently provide customers with a better value alternative to the established category players. Lebara supports its 4.7 million customers with a reliable network offering and exceptional customer service (Trustpilot average of 4.6 across the main 5 markets), at an affordable price, all of which makes Lebara the smarter way to connect.
Role Purpose:
We are seeking a Senior Security Engineer with a strong foundation in security incident response, infrastructure security, and expertise in a wide range of security tools and platforms. The ideal candidate will have 7+ years of hands-on experience in securing enterprise environments, managing high workloads, and acting as a subject matter expert (SME) across multiple domains. The role requires strong technical capabilities in Windows and Linux security, excellent problem-solving skills, and the ability to lead and support security operations and projects in a collaborative team environment.
Responsibilities:
• Lead and respond to complex security incidents, including investigation, containment, eradication, and recovery.
• Perform cloud and on-premise forensic analysis using industry tools and best practices.
• Manage and tune SIEM, EDR, DLP, and CNAPP solutions to ensure effective detection and alerting.
• Handle vulnerability management lifecycle using tools like Rapid7, Microsoft Defender, and Tenable.• Serve as a SME for security platforms: - EDR & AV: Microsoft Defender for Endpoint - SIEM: Microsoft Sentinel - CNAPP: Wiz, Prisma Cloud - IAM & PAM: Azure PIM, CyberArk
• Conduct security hardening of Linux and Windows systems; enforce configuration baselines and compliance policies.
• Automate repetitive incident handling tasks using PowerShell and Bash scripting.
• Collaborate cross-functionally with IT, DevOps, and compliance teams to drive security best practices.
• Maintain clear documentation and reporting of incidents, processes, and security improvements.
• Assist with the design and implementation of scalable, secure solutions in cloud and hybrid environments.
• Mentor junior team members and contribute to improving team workflows and response maturity.
Skills & Experience:• 7+ years of experience in information security, preferably in a SOC, incident response, or engineering role.
• Deep expertise in Windows (AD, DNS) and Linux environments.
• Strong experience in incident handling, threat detection, and forensic analysis.
• Proven track record in managing and fine-tuning SIEM (Sentinel), EDR (Defender), DLP, CNAPP (WIZ, Prisma) platforms.
• Familiarity with cloud-native security solutions and concepts (Azure preferred).
• Experience with CyberArk, Azure PIM, and access control best practices.
• Proficient in PowerShell and Bash for automation and custom tooling.
• Ability to prioritize tasks, manage multiple projects, and adapt to shifting workloads under pressure.
• Excellent communication and collaboration skills; ability to work in a team-oriented environment.
Preferred Certifications (Optional but a Plus)
• GIAC (GCIA, GCIH, GCFA)
• Microsoft SC Series (SC-200, SC-300, SC-400)
• OSCP, CEH, CISSP
• Azure Security Engineer Associate (AZ-500)
Behavioral Fit:
• Flexible and adaptable approach
• Influencing and persuading skills
• Proactive and driven approach
• High level of integrity and discretion
Role Key Performance Indicators:
• Development of the Security Operations Centre
• Development of Security operations functions within agreed KPI/Metrics
• Development of the Security operations function and associated tools
• Implement existing and future Information Security Projects with associated resources
• Contribute to future Target Operating Model for Information Security & Compliance
• Development of Security Operations Processes
Lebara is a telecommunications company providing services using the mobile virtual network operator (MVNO) business model to customers in the United Kingdom, Germany, Netherlands, France and Denmark. Additionally, Lebara has license agreements for the use of the brand in further four global markets Spain, Switzerland, Saudi Arabia and Australia with Nigeria launching soon. Lebara was founded in 2001 with the intent to bring something new to the telecoms industry. Created by three entrepreneurs who migrated to Europe from Sri Lanka, the company name was formed from a combination of the founders’ surnames, and Lebara quickly became one of the fastest-growing MVNOs in Europe.
Lebara became private equity owned in 2017 and our current owners Waterland acquired the business in Nov 2024. Lebara is a business on a transformation journey which has and continues to achieve results and under our new ownership the business is moving from a consolidation phase to a growth phase.
Lebara’s business has evolved based on its customers’ needs, from providing international calls to the migrant community, to becoming a significant value challenger within the wider telecoms category. Lebara offers prepaid and SIM-only mobile tariffs, and in 2017, Lebara launched its first postpaid monthly contract SIMs in the Netherlands. Lebara operates under the Full MVNO model in France and Germany and Light MVNO model in its other markets with the UK and the Netherlands preparing to move to full MVNO.Lebara’s purpose is to consistently provide customers with a better value alternative to the established category players. Lebara supports its 4.7 million customers with a reliable network offering and exceptional customer service (Trustpilot average of 4.6 across the main 5 markets), at an affordable price, all of which makes Lebara the smarter way to connect.
Role Purpose:
We are seeking a Senior Security Engineer with a strong foundation in security incident response, infrastructure security, and expertise in a wide range of security tools and platforms. The ideal candidate will have 7+ years of hands-on experience in securing enterprise environments, managing high workloads, and acting as a subject matter expert (SME) across multiple domains. The role requires strong technical capabilities in Windows and Linux security, excellent problem-solving skills, and the ability to lead and support security operations and projects in a collaborative team environment.
Responsibilities:
• Lead and respond to complex security incidents, including investigation, containment, eradication, and recovery.
• Perform cloud and on-premise forensic analysis using industry tools and best practices.
• Manage and tune SIEM, EDR, DLP, and CNAPP solutions to ensure effective detection and alerting.
• Handle vulnerability management lifecycle using tools like Rapid7, Microsoft Defender, and Tenable.• Serve as a SME for security platforms: - EDR & AV: Microsoft Defender for Endpoint - SIEM: Microsoft Sentinel - CNAPP: Wiz, Prisma Cloud - IAM & PAM: Azure PIM, CyberArk
• Conduct security hardening of Linux and Windows systems; enforce configuration baselines and compliance policies.
• Automate repetitive incident handling tasks using PowerShell and Bash scripting.
• Collaborate cross-functionally with IT, DevOps, and compliance teams to drive security best practices.
• Maintain clear documentation and reporting of incidents, processes, and security improvements.
• Assist with the design and implementation of scalable, secure solutions in cloud and hybrid environments.
• Mentor junior team members and contribute to improving team workflows and response maturity.
Skills & Experience:• 7+ years of experience in information security, preferably in a SOC, incident response, or engineering role.
• Deep expertise in Windows (AD, DNS) and Linux environments.
• Strong experience in incident handling, threat detection, and forensic analysis.
• Proven track record in managing and fine-tuning SIEM (Sentinel), EDR (Defender), DLP, CNAPP (WIZ, Prisma) platforms.
• Familiarity with cloud-native security solutions and concepts (Azure preferred).
• Experience with CyberArk, Azure PIM, and access control best practices.
• Proficient in PowerShell and Bash for automation and custom tooling.
• Ability to prioritize tasks, manage multiple projects, and adapt to shifting workloads under pressure.
• Excellent communication and collaboration skills; ability to work in a team-oriented environment.
Preferred Certifications (Optional but a Plus)
• GIAC (GCIA, GCIH, GCFA)
• Microsoft SC Series (SC-200, SC-300, SC-400)
• OSCP, CEH, CISSP
• Azure Security Engineer Associate (AZ-500)
Behavioral Fit:
• Flexible and adaptable approach
• Influencing and persuading skills
• Proactive and driven approach
• High level of integrity and discretion
Role Key Performance Indicators:
• Development of the Security Operations Centre
• Development of Security operations functions within agreed KPI/Metrics
• Development of the Security operations function and associated tools
• Implement existing and future Information Security Projects with associated resources
• Contribute to future Target Operating Model for Information Security & Compliance
• Development of Security Operations Processes
Senior Security Engineer
Office
Tamil Nadu, Chennai, India
Full Time
August 6, 2025