Job Description

: Hungry, Humble, Honest, with a Heart. The Opportunity: Your role: Flexible and Adaptable: able to work in ambiguous situation. You will be trusted to validate customer security questions and assessments from start to finish. Depending on the project, you may coordinate validation and response with engineering teams, SREs, and other members of the product security team. Interact directly with customers, via zoom or similar, to explain security issues, remediation suggestions, and to negotiate acceptable compromises in terms of remediation and scheduling of security fixes. Possess a deep understanding of cyber-security threats, vulnerabilities, security controls and remediation strategies in global enterprise environment. Experience in coordinating development and validation / testing of security hardening guides, such as STIGs and CIS Benchmark. Fluent in common security domains such as cloud security, encryption, AuthN and authZ, application security, penetration tests, vulnerability management, threat intelligence as they relate to product security. Track customer interactions and scheduled work using industry standard tools such as jira, related kanban boards and Smartsheets. Able to conduct in-house sessions, presentations, and other knowledge-sharing sessions to internal team members and Engineering teams. What you will bring: BE/BTech/ME/MTech or equivalent in Computer Science or any branch from a reputed educational institute Proficient with one of the scripting languages such as bash, python, ruby etc. is a plus. Experienced in detecting, understanding and explaining the impact of host and web vulnerabilities. Understanding of security best practices and security hardening approaches. Experienced with cloud computing technologies, virtualization and configuration of IaaS, PaaS and SaaS environments and associated software development environments using Microsoft Azure and/or AWS. Proficient with container systems like Docker and container orchestrators like Kubernetes. Certifications from SANS, ISC2, Offensive Security (OSCP, OSWE, OSEP) are a plus.

foundit