Security Engineer - DNS Security
SHI | Locuz.com
Office
Telangana, Madhapur, India
Full Time
Role: Security Engineer – DNS SecurityExpertise Level – Level 2Experience – 5-8 yearsLocation: Bengaluru, India
Roles & ResponsibilitiesYou’ll own design, deployment, tuning and operationalization of enterprise-grade DNS security using Cisco Umbrella, Infoblox DDI, and related tooling. This is a hands-on technical role that works across networking, cloud, SOC, and incident response teams.
Roles & ResponsibilitiesYou’ll own design, deployment, tuning and operationalization of enterprise-grade DNS security using Cisco Umbrella, Infoblox DDI, and related tooling. This is a hands-on technical role that works across networking, cloud, SOC, and incident response teams.
- Design, deploy and manage Cisco Umbrella policies (DNS-layer protection, content filtering, secure proxy) across hybrid environments.
- Administer Infoblox DDI (DNS/DHCP/IPAM) — zone management, DNSSEC, DHCP scopes, and IP address lifecycle.
- Implement DNS security controls: RPZ, DNSSEC, response rate limiting, and sinkholing workflows.
- Integrate DNS telemetry with SIEM/SOAR for detection, alerting and automated response.
- Perform threat hunting and malware/ransomware detection using DNS query patterns and threat intelligence.
- Triage and lead DNS-related security incidents — containment, root-cause analysis, remediation and post-incident reporting.
- Tune and operate DNS resilience and availability: monitoring, capacity planning, and failover testing.
- Manage change control for DDI changes — RFCs, peer reviews, and rollback procedures.
- Conduct security assessments and configuration hardening for DNS servers, resolvers and forwarders.
- Liaise with network, cloud and application teams to deploy DNS mitigations and ensure least-privilege DNS access.
Required skills & qualifications
- 5+ years in network/security engineering with demonstrable DNS experience.
- Hands-on experience with Cisco Umbrella and Infoblox (production deployments).
- Strong DNS protocol knowledge (A/AAAA/CNAME/NS/SOA, DNSSEC, TSIG, recursion, EDNS).
- Experience integrating DNS telemetry into SIEM (Splunk/QRadar/Elastic) and SOAR platforms.
- Proficiency in scripting (Python, Bash) and REST API automation.
- Bachelor’s degree in CS/IT/EE or equivalent; relevant certifications preferred
Desired Qualities
- Strong cross-team communicator; translates technical DNS issues for non-technical stakeholders.
- Security-first mindset with attention to operational rigor and documentation.
- Curious and proactive — keeps up with DNS-based attack trends and emerging tooling.
- Comfortable with cloud-native DNS (Route53, Azure DNS, Cloud DNS) and hybrid architectures.