Security Auditor

**Security Auditor**:

- Req ID: 54629
- Location: Bangalore, IN

Sapiens is on the lookout for a **Security Auditor**to become a key player in our Bangalore team. If you're a seasoned **Security Audit** pro and ready to take your career to new heights with an established, globally successful company, this role could be the perfect fit.

Location: Bangalore

Working Model: Our flexible work arrangement combines both remote and in-office work, optimizing flexibility and productivity.

**Job Description: Security Auditor**

**Summary**

Sapiens is seeking a skilled and experienced System Security Auditor to join our team in supporting projects and development teams with compliance auditing, knowledge transfer and training of Cybersecurity processes, compliance, and best practices as part of our Secure Software Development Framework (SSDF).

**Responsibilities**
- Audit all project's compliance with SSDF procedures and work on mitigation and correction.
- Assist and train Delivery and Project teams in comprehending and adhering to the Secure development process.
- Participate in the Security Champions initiative forum and aid the CISO team in creating training materials and reviewing existing cybersecurity best practices.
- Support the regular security compliance external audits (SOC, ISO, etc.) for the division.
- Assess projects' readiness for internal and external Penetration Testing.
- Facilitate and manage discussions with internal teams as well as clients on cybersecurity risks, issues, and mitigations.

**Qualifications**
- Demonstrated ability to assess security controls based on cybersecurity principles and tenets (e.g., CIS CSC, NIST SP 800-53, Cybersecurity Framework, etc.).
- In-depth knowledge of Personal Identifiable Information (PII) data security standards and cybersecurity and privacy principles.
- Expertise in security system design tools, methods, and techniques.
- Knowledge of systems security testing and evaluation methodologies.
- Proficient in recognizing risks and vulnerabilities in security systems (e.g., vulnerability and compliance scanning, design analysis, and control review).
- Deep understanding of the security aspects of a Cloud PaaS/SaaS deployment and Integration.
- Excellent verbal communication, facilitation, and documentation skills.
- Openness to learning new skills, problem-solving abilities, and a keen eye for detail.
- A university-level degree in a relevant field, with formal cybersecurity certification being strongly preferred.

**Experience Requirements (Must Have)**
- 3 years of experience in auditing and facilitating cybersecurity audits in software development and/or cloud-based hosting environments.
- Hands-on experience with Cybersecurity testing, Penetration testing mitigation, and security risk analysis.
- Expertise in using third-party software vulnerability tools, managing CVEs and CWEs based on the CVSS scoring.
- Experience with implementing security scanning and testing as part of CI/CD.
- Experience with integrating SIEM principles into secure logging systems and observability.

**Preferred**
- Prior experience working as a CISO or a part of CISO team.
- Background in software development, DevOps, or systems administration.
- Experience working for or with Financial Services companies.

**About Sapiens**

Sapiens International Corporation (NASDAQ and TASE: SPNS) is a global leader in intelligent insurance software solutions. With Sapiens’ robust platform, customer-driven partnerships, and rich ecosystem, insurers are empowered to future-proof their organizations with operational excellence in a rapidly changing marketplace. We help insurers harness the power of AI and advanced automation to support core solutions for property and casualty, workers’ compensation, and life insurance, including reinsurance, financial & compliance, data & analytics, digital, and decision management. Sapiens boasts a longtime global presence, serving over 600 customers in more than 30 countries with its innovative SaaS offerings. Recognized by industry experts and selected for the Microsoft Top 100 Partner program, Sapiens is committed to partnering with our customers for their entire transformation journey and is continuously innovating to ensure their success.

Sapiens India does not authorise any third parties to release employment offers or conduct recruitment drives via a third party. Hence, beware of inauthentic and fraudulent job offers or recruitment drives from any individuals or websites purporting to represent Sapiens. Further, Sapiens does not charge any fee or other emoluments for any reason (including without limitation, visa fees) or seek compensation from educational institutions to participate in recruitment events.

Accordingly, please check the authenticity of any such offers before acting on them and where acted upon, you do so at your own risk. Sapiens shall neither be responsible for honouring or making good the promises made by fraudulent third parties,