System Engineer (1 to 3 years)

About PhonePe Limited:

Headquartered in India its flagship product the PhonePe digital payments app was launched in Aug 2016. As of April 2025 PhonePe has over 60 Crore (600 Million) registered users and a digital payments acceptance network spread across over 4 Crore (40 million) merchants. PhonePe also processes over 33 Crore (330 Million) transactions daily with an Annualized Total Payment Value (TPV) of over INR 150 lakh crore.

PhonePes portfolio of businesses includes the distribution of financial products (InsuranceLending and Wealth) as well as new consumer tech businesses (Pincode - hyperlocal e-commerce and Indus AppStore Localized App Store for the Android ecosystem) in Indiawhich are aligned with the companys vision to offer every Indian an equal opportunity toaccelerate their progress by unlocking the flow of money and access to services.

Culture:

At PhonePe we go the extra mile to make sure you can bring your best self to work Everyday!. And that starts with creating the right environment for you. We empower people and trust them to do the right thing. Here you own your work from start to finish right from day one. PhonePe-rs solve complex problems and execute quickly; often building frameworks from scratch. If youre excited by the idea of building platforms that touch millions ideating with some of the best minds in the country and executing on your dreams with purpose and speed join us!

Job Description:

We are seeking a System Engineer with 1-3 years of experience to help maintain our proactive defense posture. You will manage the end-to-end lifecycle of technical vulnerabilities: from initial detection via our Wazuh-ELK stack to the final deployment of patches across our server and workstation fleet. This is a hands-on role requiring a mix of data analysis security monitoring and systems administration.

Core Responsibilities

Regardless of your specific title your day-to-day will likely revolve around these four pillars:

1. Monitoring & Detection
   You act as the eyes of the organization using SIEM tools (Wazuh ELK Stack) to analyze logs and system behavior.
2. Vulnerability & Patch Management
   Beyond finding security gaps you are responsible for the entire remediation lifecycle: Scanning Deployment & Validation.
   
   
3. Compliance & Reporting
   You ensure the infrastructure remains within defined legal and technical boundaries:

• Drift Monitoring: Identifying systems that fall out of alignment with CIS Benchmarks.
• Audit Readiness: Generating the data and evidence needed for high-level audits like ReBIT or ISO 27001.

Required Skills

Technical Skills

These are the tools and technologies you should be able to navigate without a manual.

Network Security & Architecture

• Packet Analysis: Proficiency in Wireshark or Tcpdump to analyze traffic and identify malicious patterns.
• Protocols: Deep understanding of the OSI model specifically how HTTP/S DNS DHCP and SMB are exploited.
• Infrastructure: Knowledge of VPNs Proxies and the difference between Statefull and Stateless firewalls.

Endpoint & OS Mastery

• Windows Internal & AD: Understanding Active Directory Group Policy Objects (GPOs) and how Living off the Land binaries (Windows tools used by hackers) work.
• Linux Proficiency: Ability to navigate the CLI manage permissions and analyze logs in /var/log using grep awk and sed.
• EDR/AV Management: Experience managing Endpoint Detection and Response tools (like CrowdStrike SentinelOne or Microsoft Defender for Endpoint).

Cloud Security (Modern Essential)

• Shared Responsibility Model: Understanding what the provider (AWS/Azure/GCP) secures versus what the user secures.
• IAM (Identity & Access Management): Configuring the Principle of Least Privilege for users and service accounts.

Scripting & Automation

You dont need to be a software engineer but you must be able to read and modify code.

• Python: For automating log analysis or API integrations.
• PowerShell / Bash: Essential for interacting with OS environments and automating repetitive administrative tasks.

Analytical & Security Operations Skills

This is how you apply your technical knowledge to solve problems.

• Log Analysis (SIEM): The ability to write queries in ES/QL (ElasticSearch) or SPL (Splunk) to find needles in haystacks.
• Vulnerability Assessment: Moving beyond just running a scan (Nessus/OpenVAS) to interpreting the results and prioritizing them based on the business context.
• Threat Intelligence: Knowing how to use frameworks like MITRE ATT&CK to map attacker behavior and improve defenses.
  
  

Required Qualifications

• Bachelors degree in Computer Science IT Cybersecurity or related field.
• 1-3 years of experience in cybersecurity.
• Relevant certifications such as CEH Security CCNA Security or equivalent are an added advantage.
• Exposure to cloud security concepts is a plus.
• Strong analytical and problem-solving skills.
• Ability to learn and upgrade technical and other non-technical skills.
• Knowledge of security technologies tools and best practices.

PhonePe Full Time Employee Benefits (Not applicable for Intern or Contract Roles)

• Insurance Benefits - Medical Insurance Critical Illness Insurance Accidental Insurance Life Insurance
• Wellness Program - Employee Assistance Program Onsite Medical Center Emergency Support System
• Parental Support - Maternity Benefit Paternity Benefit Program Adoption Assistance Program Day-care Support Program
• Mobility Benefits - Relocation benefits Transfer Support Policy Travel Policy
• Retirement Benefits - Employee PF Contribution Flexible PF Contribution Gratuity NPS Leave Encashment
• Other Benefits - Higher Education Assistance Car Lease Salary Advance Policy

Our inclusive culture promotes individual expression creativity innovation and achievement and in turn helps us better understand and serve our customers. We see ourselves as a place for intellectual curiosity ideas and debates where diverse perspectives lead to deeper understanding and better quality results. PhonePe is an equal opportunity employer and is committed to treating all its employees and job applicants equally; regardless of gender sexual preference religion race color or disability. If you have a disability or special need that requires assistance or reasonable accommodation during the application and hiring process including support for the interview or onboarding process please fill out this form.

Read more about PhonePe on our blog.

Life at PhonePe

PhonePe in the news