SOC Generalist

Candescent is a forward-thinking technology company transforming how financial institutions deliver Intelligent Banking experiences. We unite digital banking, account opening, and branch solutions that power and connect digital banking, account opening, and branch solutions—creating seamless engagement across digital, remote, and in-person channels.

Our Experience-Led, Intelligence-Driven approach combines human-centered design with data, automation, and cloud-based innovation. Built on an API-first architecture, our extensible ecosystem enables institutions to adapt quickly, integrate easily, and unlock new opportunities for growth—turning every customer interaction into a moment of clarity, confidence, and connection.

Title:
Information Security Engineer II -
Security Operations (SOC) Generalist

Experience: 3 years - 7 Years

Location:
Hyderabad

Candescent is the leading cloud-based digital banking solutions provider for financial institutions. We are transforming digital banking with intelligent, cloud-powered solutions that connect account opening, digital banking, and branch experiences for financial institutions. Our advanced technology and developer tools enable seamless, differentiated customer journeys that elevate trust, service, and innovation. Success here requires flexibility in a fast-paced environment, a client-first mindset, and a commitment to delivering consistent, reliable results as part of a performance-driven, values-led team.

As an Information Security Engineer II, you will play a critical role in protecting Candescent's cloud-based platforms and services. This position combines traditional security engineering responsibilities with a strong emphasis on vulnerability management and cloud security posture management (CSPM). You will monitor threats, manage vulnerability scans, and collaborate with IT and Dev Ops teams to ensure timely remediation and compliance across AWS, Azure, and GCP environments.

The Information Security Engineer II role encompasses five core responsibility areas: vulnerability and posture management, security monitoring and incident response, certificate management, cloud and application security, and compliance and documentation. Each area requires specific technical expertise and collaborative engagement with cross-functional teams to maintain Candescent's security posture across multi-cloud environments.

• Execute and manage regular vulnerability scans using Qualys and cloud security posture assessments using Wiz

• Analyze scan results, prioritize remediation based on risk, and track progress against SLAs

• Coordinate with IT and Dev Ops teams to ensure timely patching and configuration updates across multi-cloud environments

• Maintain dashboards and reports on vulnerability trends and risk posture

• Monitor SIEM platforms (Splunk or similar) for alerts related to unauthorized access, malware, or misconfigurations.

• Investigate and triage security incidents, following established playbooks to contain and mitigate threats.

• Respond promptly to new and emerging threats, ensuring timely remediation of risks and attacks.

• Administer Microsoft Purview for data classification, sensitivity labeling, and information protection across Microsoft 365 environments.

• Configure and maintain Data Loss Prevention (DLP) policies to prevent unauthorized sharing of sensitive data via email, Teams, SharePoint, and One Drive.

• Monitor DLP alerts and incidents, investigating policy violations and coordinating with business units for remediation.

• Create and update retention policies and records management classifications to ensure compliance with regulatory requirements.

• Collaborate with compliance and legal teams to implement information governance frameworks aligned with organizational risk tolerance.

• Day-to-day administration of Venafi (certificate management platform) including role-based access for various teams

• Manage full certificate lifecycle: request/approve, renew, update, revoke, recover, and secure…