Cloud Security Engineer
Bengaluru
Whatfix
Whatfix's interactive digital adoption platform and analytics enable employees with contextual user experiences, step-by-step guidance, self-help user support, and user behavior analytics to drive digital adoption for desktop, mobile, and web...Location: Bengaluru,None,None
Position Summary:
Your role will be working on leading the security strategy governing the application and cloud-based platform infrastructure. You will work with other infrastructure, DevOps and application engineers to understand product and business needs, provide expertise around Secure application and cloud service development, as well as define and own clear guardrails, alerts, and Security as Code (SaC) deployments to provide 24/7 protection from malicious traffic, vulnerabilities and other attack vectors.
Responsibilities:
Support cross-team security initiatives of internal teams and consult with teams on security in design
Engineer and tune the cloud security solutions including but not limited to enrollments, monitoring, alerting and maintaining defined security posture.
Designing a secure application-release automation process to make security an integral part of the CI/CD pipelines and Integrate security tools for issue tracking with Jira.
Identifying security tools and leading operationalization of solutions from POC to Production.
Implementing automation to investigation and response workflows for Automated Incident Response.
Reduce time-to-detect and time-to-remediate by driving the automation of applied threat intelligence and sensor enrichment.
Work with Architecture teams to Implement a identity management ecosystem holistically and create a secure infrastructure, Enforce compliance with IAM principals including least privilege access, password management, Audit logging, RBAC, deploy and maintain password management, user account lifecycle, certificate management and system authentication solutions
improve Web App Firewalls (WAF), Ensure early Identification of intrusion & attacks and implement countermeasures
Implement security measures that monitor and protect sensitive data and systems from infiltration and cyber-attacks.
Work with cloud providers to obtain understanding of security controls, ensure controls are leveraged
Develop innovative security controls to protect assets across a complex environment
Administer a wide and interesting range of security platforms and systems
Implement security orchestration and automation in support of security operations
Stay abreast of emerging technologies and threats proactively assess and evaluate the adoption thereof into the organization
Act as a first-responder for security-related incidents.
Strong commitment to standardization and documentation
Skills and Experience Required:
At least 5+ years of total experience in Cyber security including Incident response, Engineering, Cloud architectures, Tuning etc
At least 3+ years of experience and hands-on expertise in tuning of network sensors like SIEM, DDOS, WAF, Cloud Security and/or Opensource development.
Must have proficiency with scripting languages (Batch scripting, Python and Ansible)
Must have experience in Monitoring and improving DevSecOps tools and processes, automate routine tasks, improve system reliability and should be from the strong information security background.
Must have hand on experience with Linux/Unix systems.
Experience in developing and reviewing hardening guidelines for various Linux and Unix Operating systems in line with the industry best practices.
Understanding of security frameworks and standards like OWASP & NIST, Solid understanding of security protocols, cryptography, authentication, authorization
Good understanding of Linux, TCP/IP protocol stack and networking fundamentals, security principles at all layers of the OSI stack
Detail understanding of Network Technologies Routers, switches, Load Balancers,firewalls, proxy etc
Should have broad technical foundation and be able to understand network, operating system, database and application development design and support as necessary to be able to analyse issues and recommend solutions for the detection, remediation and prevention of security vulnerabilities.
Experience in designing and reviewing security controls for Public cloud based deployments
Experience of implementing any cloud based SIEM Tools will be an advantage.
Experience with PKI, SSL, SSH, HHTPS etc
Knowledge of RESTful web services (client – server application)
Hands on knowledge of Automation skills, Dev-Ops skills etc.
Software development domain and principles, including design patterns, code structure, programming languages, continuous integration (Bitbucket), continuous deployment (Jenkins), and deployment orchestration (Puppet, Ansible, or equivalent)
Qualifications
Bachelor degree in a technical field such as computer science, computer engineering
Minimum experience: 10 yrs. in technology field out of which 5-6 yrs in Devsecops
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Ansible Automation Bitbucket Certificate management CI/CD Cloud Compliance Computer Science Cryptography DDoS DevOps DevSecOps Firewalls IAM Incident response Jenkins Jira Linux Monitoring NIST OWASP PKI Puppet Python Scripting Security strategy SIEM SSH Strategy TCP/IP Threat intelligence UNIX Vulnerabilities
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.