Senior Security Engineer, Cloud
Pune, India
Qualys
Discover how Qualys helps your business measure & eliminate cyber threats through a host of cybersecurity detection & remediation tools. Try it today!Come work at a place where innovation and teamwork come together to support the most exciting missions in the world!
Come work at a place where innovation and teamwork come together to support the most exciting missions in the world!
Job Description:
As a Senior Signature Engineer, you will be part of an engineering team responsible for the research, development, and delivery of compliance signatures for Cloud security products. In this team, you will work on numerous Cloud platforms, Cloud Services, SAAS applications, and security standards like CIS, CSA-CCM, NIST, DISA, and PCI-DSS and help customers assess configurations and compliance.
Responsibilities:
Research and create signatures for Qualys products to identify and fix non-compliant cloud platforms/services-related configurations and settings using API calls and JSON processing.
Research upcoming and emerging technologies to identify vulnerabilities and exploits.
Research hardening Cloud Platforms, SAAS applications, and cloud service configurations and settings.
Track updates pushed by cloud service providers on respective supported cloud platforms/services.
Keep updated with industry standards and features for systems and platform compliance.
Qualifications:
BS in computer science with 5-10 years of experience in the information security domain. MS in computer science or cyber security is preferable.
Experience with public cloud platforms (Azure, AWS, GCP, Oracle), including multi-cloud considerations.
Experience with scripting languages, including Python and Bash.
Knowledge and hands-on experience of several types of security vulnerabilities and attacks.
Skills in designing CI/CD pipelines (e.g., Azure DevOps, Jenkins) and pipeline deployment (e.g., Terraform, Cloud Formation).
Understand and explore APIs (REST, Java, PowerShell, Shell) provided by cloud service providers (AWS, Azure, Google Cloud Platform, Oracle, etc.).
Knowledge of the NIST Cybersecurity Framework and MITRE ATT&CK Framework.
Excellent communication skills with the ability to work collaboratively and effectively with cross-functional teams
Additional Plus Competencies:
Security Certifications like CEH, CISA, CISM, CISSP, ISC2-CCSP
Cloud platform-based certifications like AWS/Azure/GCP Certified Developer/Solution Architect
Exposure to Security benchmarks like the CIS, SCCM, DISA, and STIG
Basic understanding of security standards/mandates like CSA-CCM, NIST, PCI-DSS, MITRE, etc.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
0
0
0
Categories:
CloudSec Jobs
Security Engineering Jobs
Tags: APIs AWS Azure Bash CCSP CEH CI/CD CISA CISM CISSP Cloud Compliance Computer Science DevOps DISA Exploits GCP Java Jenkins JSON MITRE ATT&CK NIST Oracle PowerShell Python Qualys SaaS Scripting Terraform Vulnerabilities
Region:
Asia/Pacific
Country:
India
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Information Security Specialist jobsInformation System Security Officer jobsSenior Security Analyst jobsSenior Cloud Security Engineer jobsSenior Cybersecurity Engineer jobsSystems Administrator jobsSystems Engineer jobsSenior Information Security Analyst jobsInformation Security Manager jobsSenior Network Security Engineer jobsCyber Security Specialist jobsIT Security Engineer jobsIT Security Analyst jobsChief Information Security Officer jobsSecurity Consultant jobsSecurity Specialist jobsInformation System Security Officer (ISSO) jobsSenior Cyber Security Engineer jobsInformation Systems Security Engineer jobsCyber Threat Intelligence Analyst jobsSenior Information Security Engineer jobsSenior Product Security Engineer jobsSecurity Operations Analyst jobsCyber Security Architect jobsStaff Security Engineer jobs
Encryption jobsJava jobsTS/SCI jobsBash jobsEDR jobsThreat detection jobsIDS jobsSQL jobsMalware jobsSplunk jobsIPS jobsTerraform jobsSDLC jobsTop Secret jobsFinance jobsSOC 2 jobsRMF jobsForensics jobsDocker jobsActive Directory jobsCompTIA jobsGIAC jobsIntrusion detection jobsOWASP jobsITIL jobs
VPN jobsHIPAA jobsDoDD 8570 jobsData Analytics jobsIT infrastructure jobsOSCP jobsAnsible jobsCRISC jobsTCP/IP jobsSAP jobsUNIX jobsCCSP jobsClearance Required jobsBanking jobsMITRE ATT&CK jobsSOX jobsZero Trust jobsSOAR jobsNIST 800-53 jobsDNS jobsIndustrial jobsMachine Learning jobsSANS jobsJavaScript jobsSecurity strategy jobs