Lead Security Engineer
2 weeks ago
The Security Standards team is a part of the central Information security function which is primarily responsible for security standards, secure configuration reviews, architecture reviews, validating efficacy and efficiency of the existing security controls, threat modeling, assessment of the various security controls / technologies based on the gaps identified, security metrics, analytics, automation etc. This team owns the IT Security, Security controls and reviews them on a regular basis to ensure IT/Security controls are working as designed, and all features/capabilities of IT and Security products are being used to the maximum.
The InfoSec Security Standards team is primarily responsible for defining new and reviewing existing hardening standards, and carrying out secure configuration review assessments for Flipkart and Group. This function is also responsible for reviewing and approving technical security exceptions against the defined security standards.
About the role:
Flipkart is seeking a skilled, technocrat, motivated, strong security mindset and collaborative Lead, Security Engineer in the Security Standards team. You will serve as an expert, lead and be a mentor to the Security Standards team members. You will be a strong communicator and influencer, demonstrating curiosity to learn and understand the business.
What you’ll do:
Specializes in Security Standards Development, meticulously crafting security standards and protocols to fortify digital infrastructures.
Conducts comprehensive Security Standards Assessments, scrutinizing systems for gaps and vulnerabilities
Develop standards in accordance with industry recognised standards like CIS (Center for Internet Security), standards implementation and interpretation across FK Group.
Security review of the architecture for the new projects and existing infrastructure setup.
Expert in Security Configuration Reviews, ensuring optimal secure configurations and settings to mitigate risks.
Ensure efficacy of security controls deployed. Work with the technical operations team to understand security controls / tech deployed and come up with recommendations to address gaps and also take full advantage of the deployed technologies.
Conduct threat modeling based on well known standards / frameworks such as STRIDE, PASTA etc.
Identifying and defining the requirements of the overall security of the information processing systems.
Identify security gaps, exposures and develop mitigation plans
Build and execute on organizations roadmaps
Automation & Scripting as required.
Defining and maintaining security procedures, standards,guidelines and procedures as required.
Executes proactive measures to safeguard against emerging threats and collaborates cross-functionally to maintain cutting-edge security protocols.
What you’ll need:
Bachelor’s degree(B.E/B.Tech or M.S/M.Tech) in Information Technology or other related fields.
At least 8-11 years of working experience in domains related to Information security and with a very strong security mindset.
Implementation experience in Security technologies (at least 2+ years) such as Next Gen Firewall / IDS/ IPS / NAC / Email Security/CASB / EDR / WAF / AV / DLP / ATP / PIM / PAM / DAM / SIEM etc.
In-depth understanding of networking concepts, protocols and in-depth knowledge of infrastructure, identity and endpoint security technology such as AD, Azure AD, Next Gen Firewall, IDS, IPD, AV, EDR, CASB, WAF, NAC, Wi-fi security, DLP, ATP, SIEM, Proxy etc.
Proficiency in CIS (Center for Internet Security) standards implementation and interpretation.
Very good understanding of Operating systems (Windows, MAC, Linux) & VDI etc.
Knowledge and understanding of security standards, security configuration reviews, secure architecture and cloud security.
Good understanding of security frameworks, standards such as ISO 27001, NIST, CIS etc.
Experience in security architecture reviews and driving cross-functional programs.
Strong skills in security principles such as least privilege access, defense in depth, preventative vs detective controls, network security, cloud security, application security, endpoint security, data protection, and incident response.
Solid understanding of operational and organizational structures
Possess of information security certifications such as CEH / ISO 27001 / TOGAF etc.
Excellent problem solving, interpersonal,communication and presentation skills.
Able to work independently and efficiently, as well as with others, to meet deadlines in a fast-paced environment.
-
RSA - Application Security Engineer
2 weeks ago
Bengaluru, India RSA Security Full timeRSA - Application Security Engineer Location: Remote India RSA offers mission-driven security solutions that provide organizations with a unified approach to managing digital risk that hinges on integrated visibility, automated insights and coordinated actions. RSA solutions are designed to effectively detect and respond to advanced attacks; manage...
-
Netwitness Product Senior Security Engineer
2 weeks ago
Bengaluru, India RSA Security Full timeResponsibilities • Work on any number of security and identity related areas and products • Build systems for detecting anomalous activities within the product • Develops and administers software engineering procedures and training for vulnerability scans and static code analysis • Analyse vulnerability report of various SCA and SAST scan tools...
-
Lead - IT Security Engineer
1 month ago
Bengaluru, India Bosch Full timeJob DescriptionRole: Lead IT Security EngineerYou will lead the planning and implementation of Security Engineering Process across projects/programs. In the process, you will have to build seamless security and define how developers view security, eliminate friction and improve Security natively.You will work closely with other Security functions, DevOps,...
-
Lead - IT Security Engineer
1 month ago
Bengaluru, India Bosch Full timeJob Description Role : Lead IT Security Engineer You will lead the planning and implementation of Security Engineering Process across projects/programs. In the process, you will have to build seamless security and define how developers view security, eliminate friction and improve Security natively. You will work closely with other Security...
-
Lead Security Engineer
2 weeks ago
Bengaluru, India Flipkart Full timeAbout the team: The Security Standards team is a part of the central Information security function which is primarily responsible for security standards, secure configuration reviews, architecture reviews, validating efficacy and efficiency of the existing security controls, threat modeling, assessment of the various security controls / technologies based...
-
Lead Product Security Engineer
3 weeks ago
Bengaluru, Karnataka, India TIBCO Software India Pvt Ltd Full timeApply for Lead Product Security Engineer, Career Progress Consultants in Bengaluru/ Bangalore for Year of Experience on
-
Lead Cyber Security Engineer
1 week ago
Bengaluru, India Resillion Full timeJob DescriptionTitle: Lead SIEM EngineerExperience Range: 9-14 YearsLocation: BangaloreAbout You:The successful candidate will be a passionate information security professional with the ability to communicate to different business and IT leaders.The candidate will demonstrate drive, intelligence, maturity, and energy and will have a proven dedicated desire...
-
Lead Security Engineer
2 weeks ago
Bengaluru, India JPMorgan Chase & Co. Full timeTake on a crucial role where you'll be a key part of a high-performing team delivering secure software solutions. Make a real impact as you help shape the future of software security at one of the world's largest and most influential companies.As a Lead Security Engineer at JPMorgan Chase within the Cybersecurity and Technology Controls organization, you are...
-
Lead Cyber Security Engineer
1 week ago
Bengaluru, India Resillion Full timeJob DescriptionTitle: Lead SIEM EngineerExperience Range: 9-14 Years Location: BangaloreAbout You:The successful candidate will be a passionate information security professional with the ability to communicate to different business and IT leaders.The candidate will demonstrate drive, intelligence, maturity, and energy and will have a proven dedicated desire...
-
Lead Security Engineer
2 weeks ago
Bengaluru, India JPMorgan Chase & Co. Full timeTake on a crucial role where you'll be a key part of a high-performing team delivering secure software solutions. Make a real impact as you help shape the future of software security at one of the world's largest and most influential companies. As a Lead Security Engineer at JPMorgan Chase within the Cybersecurity and Technology Controls organization, you...
-
Lead App Security Engineer
2 days ago
Bengaluru, India Hinge Health Full timeHinge Health is moving people beyond pain by transforming the way it is treated and prevented. Connecting people digitally and in-person with expert clinical care, we combine advanced technology, AI and a care team of experts to guide people through personalized care directly from their phone. Our approach is proven to reduce pain by 68%, prevent 42% of new...
-
Lead Cloud Security Engineer
5 days ago
Bengaluru, India Thomson Reuters Full timeThe Information Security and Risk Management (ISRM) organization seeks a Lead Cloud Security Engineer to join our growing Security Engineering team. This candidate will join a team that manages and consults on cloud security tooling that supports securing Thomson Reuters’ multi cloud environment from cyber threats. The candidate will also have the...
-
Lead Security Engineer
1 week ago
Bengaluru, India JPMorgan Chase & Co. Full timeTake on a crucial role where you'll be a key part of a high-performing team delivering secure software solutions. Make a real impact as you help shape the future of software security at one of the world's largest and most influential companies.As a Lead Security Engineer at JPMorgan Chase within the Cybersecurity and Technology Controls team, you are an...
-
Lead Engineer
2 months ago
Bengaluru, India Kenvue Full timeAs the Lead Engineer of Cloud Security, you will be responsible for leading the engineering, testing, and deployment of cloud security capabilities to secure our data, mitigate threats, and protect our digital assets. This role requires technical experience in multiple cloud environments like AWS, Azure, and GCP. You will collaborate with multiple groups...
-
Lead Information Security Engineer
6 days ago
Bengaluru, India WELLS FARGO BANK Full timeAbout this role:Wells Fargo is seeking a Lead Information Security Engineer.In this role, you will:Develop, implement, and maintain security systems to protect Wells Fargo's IT infrastructure.Monitor and analyze security threats, vulnerabilities, and incidents to ensure the confidentiality, integrity, and availability of data and services.Configure and...
-
Lead Cloud Security Engineer
6 days ago
Bengaluru, India Thomson Reuters Full timeThe Information Security and Risk Management (ISRM) organization seeks a Lead Cloud Security Engineer to join our growing Security Engineering team. This candidate will join a team that manages and consults on cloud security tooling that supports securing Thomson Reuters’ multi cloud environment from cyber threats. The candidate will also have the...
-
Lead Security Engineer
1 week ago
Bengaluru, India JPMorgan Chase & Co. Full timeTake on a crucial role where you'll be a key part of a high-performing team delivering secure software solutions. Make a real impact as you help shape the future of software security at one of the world's largest and most influential companies. As a Lead Security Engineer at JPMorgan Chase within the Cybersecurity and Technology Controls team, you are an...
-
Lead Engineer
2 months ago
Bengaluru, India Kenvue Full timeAs the Lead Engineer of Cloud Security, you will be responsible for leading the engineering, testing, and deployment of cloud security capabilities to secure our data, mitigate threats, and protect our digital assets. This role requires technical experience in multiple cloud environments like AWS, Azure, and GCP. You will collaborate with multiple groups...
-
Lead Engineer
2 months ago
Bengaluru, India Kenvue Full timeAs the Lead Engineer of Cloud Security, you will be responsible for leading the engineering, testing, and deployment of cloud security capabilities to secure our data, mitigate threats, and protect our digital assets. This role requires technical experience in multiple cloud environments like AWS, Azure, and GCP. You will collaborate with multiple groups...
-
Lead Engineer
2 months ago
Bengaluru, India Kenvue Full timeAs the Lead Engineer of Cloud Security, you will be responsible for leading the engineering, testing, and deployment of cloud security capabilities to secure our data, mitigate threats, and protect our digital assets. This role requires technical experience in multiple cloud environments like AWS, Azure, and GCP. You will collaborate with multiple groups...
