Job Description

Location: Noida, India

Thales people architect identity management and data protection solutions at the heart of digital security. Business and governments rely on us to bring trust to the billons of digital interactions they have with people. Our technologies and services help banks exchange funds, people cross borders, energy become smarter and much more. More than 30,000 organizations already rely on us to verify the identities of people and things, grant access to digital services, analyze vast quantities of information and encrypt data to make the connected world more secure.

Present in India since 1953, Thales is headquartered in Noida, Uttar Pradesh, and has operational offices and sites spread across Bengaluru, Delhi, Gurugram, Hyderabad, Mumbai, Pune among others. Over 1800 employees are working with Thales and its joint ventures in India. Since the beginning, Thales has been playing an essential role in India's growth story by sharing its technologies and expertise in Defence, Transport, Aerospace and Digital Identity and Security markets.

Summary

Thales is a global leader in data protection and cybersecurity. Thales offers the only complete enterprise encryption portfolio that provides persistent protection of sensitive data at all critical points in its lifecycle. From the physical and virtual data center to the cloud, our solutions help organizations remain protected, compliant, and in control of their data.

The Data Security team is part of the Cloud Protection and Licensing (CPL) business line of DIS Global Business Unit. Ultimate goal of this team is to build the best product suite of data-centric security products and solutions that unify data discovery, protection and control in one platform. We are currently looking for a Security Expert to join our team; he/she would be responsible for overall security posture of the Data Security product suite.

Responsibilities

As a Security Engineer you'll:

• Work closely with Security Champions across product teams, enabling product teams to make risk-based decisions that pragmatically balance security, performance, and compliance to ensure that products are not just secure, but usable for real world use cases.
• Stay abreast of the evolving threat landscape; investigate, prototype, and test mitigations that defend against current and new attack techniques.
• Champion security within the development teams to help them make their implementations more secure.

As a member of the global Security Engineering team:

• Act as a security subject matter authority on projects and initiatives;
• Explore security topics that interest you and develop your skills in those areas;
• Contribute to the development of a high quality product security program, advocating for and helping implement security practices across all domains within Thales CPL.

Skills & Qualifications

Minimum:

• A desire for learning and understanding the security discipline, and a commitment to sharing with the community.
• Effective oral and written communications skills.
• Smarts, curiosity, humility, and a positive personality; an open-minded approach to work; and equal willingness to both learn and teach.
• Collaborated well in a team environment, were sensitive to needs of the teams, and effectively developed relationships across disciplines.
• A demonstrated track record of building things, including experience in what does and doesn't work; and a curiosity for the many interesting ways in which things can break
• Professional experience building products in at least one high-level language;
• Knowledge of how to read (and break) code in languages such as C/C++, Java, or Go.
• Understanding of how cryptography is correctly applied in products and protocols to provide capabilities such as authentication, privacy, and integrity.
• Experience in solving challenging security problems using knowledge and/or skills in one, or more, of the following areas:

• Threat Modeling;
• Cryptography & Secure Protocols;
• Vulnerability Assessments/Penetration Testing;
• Tool Assisted & Manual Code Reviews;
• Vulnerability Management;
• Secure Development Lifecycles.

Preferred:

• Experience in developing and/or deploying security tools to identify security flaws in products.
• Experience with security testing, CICD Pipelines, and automation
• Experience with software development, modern programming and frameworks, and agile development practices
• Practical experience with web application security technologies, frameworks, protocols, API Security, mitigation techniques, and potential pitfalls.
• Experience with cloud deployments, GCP or other cloud platforms, cloud technologies, and relevant security concepts
• Understanding or experience with hardware security and attack techniques such as physical tampering, counterfeiting, side-channel attacks, or glitching.

At Thales we provide CAREERS and not only jobs. With Thales employing 80,000 employees in 68 countries our mobility policy enables thousands of employees each year to develop their careers at home and abroad, in their existing areas of expertise or by branching out into new fields. Together we believe that embracing flexibility is a smarter way of working. Great journeys start here, apply now!