Application Engineer

About Us -

GRIDsentry is a cybersecurity system integrator specializing in securing power‑grid and digital‑substation infrastructure. We design, integrate, and manage end‑to‑end OT and critical‑infrastructure security solutions for utilities and grid operators. You will work on cutting‑edge technologies like AI‑based intrusion detection, deception systems, and Security Information Management for the grid. Joining GRIDsentry offers exposure to mission‑critical infrastructure projects and rapid professional growth in a niche, high‑impact domain. It is an ideal place for those who want to build expertise in OT and power‑grid cybersecurity while shaping next‑generation security architectures.

Work Location - Manesar, Haryana.

Role Summary -

The Applications Engineer – IDS & Log Collector is responsible for the deployment, configuration, integration, and operational management of Intrusion Detection Systems (IDS) and log collection infrastructure within the OT cybersecurity environment across substations and control centres.

The role ensures real-time network threat detection, traffic visibility, and reliable log acquisition from distributed OT assets, enabling effective monitoring and correlation within the centralized SIEM platform.

Key Responsibilities -

IDS Deployment & Configuration

• Deploy and configure IDS sensors and centralized management systems across substations and control centres.

• Implement network-based intrusion detection aligned with OT communication protocols and architectures.

• Ensure optimal sensor placement for maximum network visibility and threat coverage.

Log Collection & Aggregation (LC)

• Deploy and manage log collectors and forwarders across distributed OT environments.

• Configure secure log transmission from:

• Network devices (firewalls, switches, routers)

• OT systems and substation devices

• Servers and cybersecurity tools

• Ensure reliable, lossless, and secure log aggregation for SIEM ingestion.

Threat Detection & Monitoring

• Monitor network traffic for anomalies, intrusions, and suspicious activities.

• Analyze IDS alerts and validate potential threats.

• Fine-tune detection rules to reduce false positives and improve detection accuracy.

• Integration with SIEM & Security Platforms

• Integrate IDS and log collectors with SIEM platforms for centralized monitoring and correlation.

• Ensure proper mapping, normalization, and forwarding of events.

• Support end-to-end visibility across network, endpoint, and OT environments.

Protocol Analysis & OT Security

• Monitor and analyse OT protocols such as:

• IEC 61850

• Modbus

• DNP3

• Detect abnormal behaviour in industrial communication traffic.

• Support development of OT-specific detection use cases.

Performance & Maintenance

• Monitor system performance of IDS and log collectors.

• Perform updates, patching, and configuration tuning.

• Ensure high availability and reliability of monitoring systems.

Incident Support & Reporting

• Support SOC teams in incident investigation and response.

• Generate reports on network threats, traffic patterns, and security events.

• Maintain documentation related to IDS and log collection configurations.

Experience -

• 5–8 years experience in network security, IDS deployment, and log management.

• Experience in multi-site or distributed monitoring environments preferred.

• Exposure to OT/ICS network environments is an advantage.

Skills -

• IDS technologies (Snort, Suricata, Zeek, or OEM solutions)

• Network traffic analysis and packet inspection

• Log collection and forwarding mechanisms

• SIEM integration and event correlation

• Understanding of OT/ICS protocols and architectures

• Troubleshooting and performance tuning

Qualification -

B.E / B.Tech in Networking, Cybersecurity, Information Technology, or related field.

Certifications (Preferred) -

• CompTIA Security+

• CEH (Certified Ethical Hacker)

• Network Security Certifications

• IDS / Network Monitoring Tool Certifications