PlaySimple Games
Website:
playsimple.in
Job details:
About Us
We are one of India’s most exciting & fast-growing mobile gaming companies. Founded in 2014, and creating a global mobile gaming landscape in partnership with Modern Times Group (MTG), our Vision is to create simple, impactful casual game experiences at a massive scale. Since our inception, we have built a worldwide network of chart-topping games, and powerful tech & analytics infrastructure to turbocharge their growth. Our product portfolio consists of evergreen hits like Daily Themed Crossword, WordTrip, WordJam, WordRoll, TileMatch, Jigsaw, Wordy, 2248 Number Merge, Word Search Solitaire and Many more.
Visit us at www.playsimple.in to know more.
Job Description
We are looking for a hands-on Security Engineer who can operate, build, and automate security across endpoints, identity systems, and SaaS applications.This role will own security operations using tools like CrowdStrike, JumpCloud, ManageEngine OpsManager, and our SaaS ecosystem. You will not just respond to alerts—you will improve detection, reduce risk, and automate security workflows.
What You Will Own
1. Endpoint Security (Primary Ownership)
- Manage and optimize policies in CrowdStrike
- Investigate and respond to endpoint alerts (malware, suspicious behaviour, lateral movement)
- Perform root cause analysis and prevent recurrence
- Improve detection coverage using behavioural rules and threat intelligence
2. Identity & Access Security
- Secure user lifecycle management via JumpCloud
- Enforce:
- MFA across all systems
- Least privilege access
- Device trust policies
- Design and execute periodic access reviews
- Investigate identity-related incidents (account compromise, privilege misuse)
3. SaaS Security & Risk Management
- Audit and secure SaaS platforms (Google Workspace, Slack, Zoom, etc.)
- Identify and remediate:
- Over-permissioned users
- Risky OAuth integrations
- Public data exposure
- Define SaaS security baselines and governance controls
4. Incident Detection & Response
- Own the full incident lifecycle:
- Detection → Triage → Containment → Recovery → RCA
- Build and maintain incident response playbooks
- Partner with Service Desk for rapid containment actions
- Continuously improve response time and accuracy
5. Security Automation (Core Expectation)
- Automate:
- User offboarding (access revocation + device lockdown)
- Alert-driven responses (via EDR and identity tools)
- Access reviews and compliance checks
- Reduce manual effort and improve consistency across security operations
6. Monitoring, Visibility & Correlation
- Correlate signals from: CrowdStrike (endpoint) , ManageEngine OpManager (infra/network) and SaaS audit logs
- Build meaningful dashboards and alerts
- Improve signal-to-noise ratio (reduce alert fatigue)
7. Policy, Hardening & Compliance
- Define and enforce:
- Endpoint hardening standards
- Identity and access policies
- Incident response procedures
- Support audits (ISO/SOC2 if applicable)
- Ensure continuous improvement of security posture
What We Expect
Core Technical Skills-
- Strong hands-on experience with:
- CrowdStrike (or similar EDR like SentinelOne, Defender)
- JumpCloud / Okta / Azure AD
- Real-world incident response experience (not just theoretical SOC work)
- Deep understanding of:
- Endpoint attack techniques
- Identity-based attacks
- SaaS security risks
Automation & Engineering Mindset
- Experience with scripting (Python / Bash / PowerShell)
- Ability to automate workflows and integrate tools
- Strong problem-solving and system thinking approach
Security Fundamentals
- MITRE ATT&CK framework understanding
- Endpoint detection and response concepts
- Identity & access management principles (SSO, MFA, RBAC)
Experience
- 6-10 years in Security Engineering / Blue Team / Endpoint Security
- Experience in SaaS-heavy or cloud-first environments preferred
Click on Apply to know more.