Job Description

:
Role Proficiency:
Develop Cloud Platforms and Cloud services such as Azure Logic Apps and Azure Functions including triggers actions connectors and custom connectors. Create UDFs to perform custom processing within the cloud platform and service. Optimize the cloud platform and service runtimes and reduce the number of failed runs.
Outcomes: * Enhance the integration between the workflow engine and the web platform

• Design and develop the software infrastructure and tools to help our teams create well designed maintainable customizable and top-quality integrations and automations for cyber threats
• Design and develop integrations with third-party security products
• Create automation scenarios for investigation and response to cyber threats
• Support and troubleshoot solutions
• Collaborate with cyber analysts & solution architects; find optimal solutions that satisfy requirements

Measures of Outcomes: * Create successful playbooks

• Create successful platform runs including number of failed platforms runs average runtime of the platform and platform triggers and actions
• Number of custom connectors created
• Number of user-defined services created successful service run and failed service runs
• Average runtime of services
• Identify number of custom connectors created
• Provide service integrations connections triggers and actions

Outputs Expected:
Cloud Platform development: * Efficiency in creating and deploying the cloud platform: The developer should be able to create and deploy the platform quickly and with minimal errors.

• Use of connectors: The developer should be familiar with a wide range of connectors and be able to use them effectively to integrate various systems and services.
• Error handling: The developer should be able to create platforms that can handle errors gracefully and provide meaningful error messages to users.

Cloud Service development: * Efficiency in creating and deploying the cloud service: The developer should be able to create and deploy the service quickly and with minimal errors.

• Use of bindings: The developer should be familiar with a wide range of bindings and be able to use them effectively to integrate various systems and services.
• Error handling: The developer should be able to create cloud services that can handle errors gracefully and provide meaningful error messages to users.
• Monitoring and debugging: The developer should be able to monitor and debug the cloud service and troubleshoot issues as they arise.

Skill Examples: * Proficiency in Azure Logic Apps and Azure Functions development

• Proficiency in programming languages and technologies commonly used for Azure development such as C# JavaScript and JSON.
• Proficiency in developing best practices such as version control testing and debugging.
• Proficiency in networking protocols and technologies such as TCP/IP DNS and HTTP.
• Proficiency in development frameworks such as .NET Core NodeJS and Python.
• Analytical skill to evaluate and understand the requirements and translate them into functional and technical design.
• Problem-solving skills to troubleshoot and resolve issues with Logic Apps and Azure Functions.
• Debugging skill to identify and fix errors in Cloud Platforms and Cloud services such as Logic Apps and Azure Functions.
• Verbal and written communication skills to effectively communicate with team members stakeholders and clients.
• Collaboration skill to work effectively within a team of developers security experts and other stakeholders.
• Management skills to prioritize work and meet deadlines

Knowledge Examples:
Knowledge Examples * Cloud Platforms and Cloud services

• Azure services such as Azure Event Grid Azure Event Hub Azure Service Bus Azure App Service Azure Data Factory Azure storage Azure Cosmos DB and Azure AD.
• Programming languages such as C# JavaScript Python and JSON.
• Development frameworks such as .NET Core NodeJS and Python.
• Authentication methods such as OAuth OpenID Connect and Azure Active Directory.
• Encryption and decryption techniques such as symmetric and asymmetric encryption and public and private key encryption.
• Incident response procedures and best practices.
• Cybersecurity concepts such as authentication authorization encryption and incident response.
• Networking protocols and technologies such as TCP/IP DNS and HTTP.
• Security best practices for cloud computing and for Azure Logic Apps and Azure Functions.
• Industry and government regulations related to cybersecurity and data privacy such as HIPAA SOC2 PCI-DSS.
• Security tools such as Azure Security Center Azure Policy Azure Monitor and Azure Sentinel.

Additional Comments:
UST Global is looking for a Security Engineer (Offshore) to support enterprise security assessments, compliance initiatives and third-party risk reviews for one of the leading healthcare organizations in the US. The ideal candidate will possess strong analytical skills, solid understanding of healthcare data protection requirements and the ability to collaborate effectively with technical and business stakeholders across distributed teams. Responsibilities Primary duties may include, but are not limited to: o Conducts security reviews for applications integrating with the organization, including SaaS platforms and API-based solutions. o Evaluates vendor-provided security controls and documentation to ensure alignment with enterprise security and compliance requirements. o Reviews data flow, PHI usage and integration patterns to validate adherence to healthcare security standards. o Supports implementation and maintenance of security frameworks such as NIST, SOC 2 Type 2 and HITRUST (experience with HITRUST preferred). o Participates in governance, risk, and compliance activities including documenting controls, tracking remediation and preparing artifacts for audits. o Performs initial triage of security exception requests and routes them appropriately based on technical complexity and risk. o Conducts research and analysis of third-party applications to determine suitability, data protection posture and potential model training or data-use concerns. o Assesses endpoint-level security requirements and ensures solutions meet baseline security expectations. o Coordinates with internal teams to launch, conduct and manage security awareness and training. o Develops documentation, assessment reports and communication materials for technical and non-technical stakeholders. o May provide guidance to project teams and act as a subject-matter resource for application and vendor security assessments. Requirements o Bachelor's degree in Information Security, Computer Science, or a related field; minimum of 5 years of security engineering, application security, or GRC experience. o CISSP certification is required. o Experience conducting security assessments for SaaS, API and third-party integrations. o Strong understanding of PHI handling requirements and healthcare data protection expectations. o Familiarity with security frameworks such as NIST, SOC 2 Type 2 and HITRUST. o Experience supporting governance, risk, and compliance functions. o Ability to analyze technical controls at an appropriate level without requiring deep engineering specialization. o Experience reviewing exception requests, vendor assessments or third-party risk evaluations. o Strong written and verbal communication skills, including the ability to create clear documentation and communicate risk effectively. o Comfortable working independently in an offshore model while collaborating closely with US based teams. o Proficiency with productivity tools such as MS Word, MS Excel, and standard security assessment templates or platforms.
Skills:
Audit,Compliance,Information Security
About Company:
UST is a global digital transformation solutions provider. For more than 20 years, UST has worked side by side with the world's best companies to make a real impact through transformation. Powered by technology, inspired by people and led by purpose, UST partners with their clients from design to operation. With deep domain expertise and a future-proof philosophy, UST embeds innovation and agility into their clients' organizations. With over 30,000 employees in 30 countries, UST builds for boundless impact--touching billions of lives in the process.

Skills Required