Application Engineer

About Us -

GRIDsentry is Hiring OT Cybersecurity Experts for Power Infrastructure Projects. GRIDsentry is expanding its team to support large-scale OT Cybersecurity deployments for power substations and control centres. This project involves implementing advanced cybersecurity technologies to protect critical grid infrastructure.

Work Location - Manesar/Gurgaon/Bangalore. Also candidates who are willing to relocate.

Role Summary -

The Applications Engineer IDS & Log Collector is responsible for the deployment, configuration, integration, and operational management of Intrusion Detection Systems (IDS) and log collection infrastructure within the OT cybersecurity environment across substations and control centres.

The role ensures real-time network threat detection, traffic visibility, and reliable log acquisition from distributed OT assets, enabling effective monitoring and correlation within the centralized SIEM platform.

Key Responsibilities -

IDS Deployment & Configuration

Deploy and configure IDS sensors and centralized management systems across substations and control centres.

Implement network-based intrusion detection aligned with OT communication protocols and architectures.

Ensure optimal sensor placement for maximum network visibility and threat coverage.

Log Collection & Aggregation (LC)

Deploy and manage log collectors and forwarders across distributed OT environments.

Configure secure log transmission from:

Network devices (firewalls, switches, routers)

OT systems and substation devices

Servers and cybersecurity tools

Ensure reliable, lossless, and secure log aggregation for SIEM ingestion.

Threat Detection & Monitoring

Monitor network traffic for anomalies, intrusions, and suspicious activities.

Analyze IDS alerts and validate potential threats.

Fine-tune detection rules to reduce false positives and improve detection accuracy.

Integration with SIEM & Security Platforms

Integrate IDS and log collectors with SIEM platforms for centralized monitoring and correlation.

Ensure proper mapping, normalization, and forwarding of events.

Support end-to-end visibility across network, endpoint, and OT environments.

Protocol Analysis & OT Security

Monitor and analyse OT protocols such as:

IEC 61850

Modbus

DNP3

Detect abnormal behaviour in industrial communication traffic.

Support development of OT-specific detection use cases.

Performance & Maintenance

Monitor system performance of IDS and log collectors.

Perform updates, patching, and configuration tuning.

Ensure high availability and reliability of monitoring systems.

Incident Support & Reporting

Support SOC teams in incident investigation and response.

Generate reports on network threats, traffic patterns, and security events.

Maintain documentation related to IDS and log collection configurations.

Experience -

58 years experience in network security, IDS deployment, and log management.

Experience in multi-site or distributed monitoring environments preferred.

Exposure to OT/ICS network environments is an advantage.

Skills -

IDS technologies (Snort, Suricata, Zeek, or OEM solutions)

Network traffic analysis and packet inspection

Log collection and forwarding mechanisms

SIEM integration and event correlation

Understanding of OT/ICS protocols and architectures

Troubleshooting and performance tuning

Qualification -

B.E / B.Tech in Networking, Cybersecurity, Information Technology, or related field.

Certifications (Preferred) -

CompTIA Security+

CEH (Certified Ethical Hacker)

Network Security Certifications

IDS / Network Monitoring Tool Certifications