Security Engineer

Cloud Security Architecture :

• Asses, help in design and development of AWS, Azure and AWS security architectures for protecting PII/PCI data deployed into different types of cloud and cloud/hybrid systems.

• Improve the security around cloud-based applications, across all types (including Infrastructure, Platform, and Software as a Service (IaaS/PaaS/SaaS).

• Work part of Cyber team for Enterprise Security for other Technology teams and Vendors within the organisation for all matters related to cloud security.

• Implement NIST framework on cloud-native architectures to mitigate the risk to Organisation PII, PCI data and with appropriate security controls present.

• SSDLC Embed Security practices in development and implementation of the overall enterprise cloud architecture to ensure Secure Software Development Lifecycle.

• Enhance/redesign existing cyber standards in partnership with Engineering, Infrastructure Services, and Application Development.

• Act as the ambassador and senior technical representative to Lead initiatives designed to share knowledge across Security Platforms and/or Technology teams, identify, recommend, coordinate and deliver timely knowledge to support teams regarding technologies, processes or tools.

• Ensures the effective translation of the security architecture is implemented into the solutions.

• Assist to evaluate all the new initiatives/solutions (including Cloud) with the design recommendations and work with project managers and architects during implementation.

• SAP GRC / AC 12 experience is good to have.

New Technology & Risks :

• Evaluate and recommend tools and solutions to enhance the security posture of the Enterprise.

• Maintain contact with vendors regarding security system updates and technical support of security products.

• Perform cost-benefit and risk analysisAnalyzes business impact and exposure, based on emerging security threats, vulnerabilities and risks.

Measures of Success :

• Product/services are cyber compliant and risk reduced to minimal or zero.

• Successful implementation/ adoption of any new solution, technology or framework.

• Timely and inbudget delivery of security projects specifications within time and budget.

Technical Skills / Experience / Certifications :

• CCSP certification is mandatory, Any among like TOGAF, SABSA, OSCP or python certification is preferred.

• Knowledge of enterprise IT Systems, infrastructure and security technologies.

• Knowledge of Information Security Standards like ISO 27001, PCI-DSS, NIST CSF, CSA framework etc.

• Working knowledge of common and industry standard cloud-native/cloud-friendly authentication mechanisms (OAuth, OpenID, etc.

• Experience with deployment orchestration, automation, and security configuration management (Jenkins, Puppet, Chef, etc.) preferred.

• Experience architecting solutions within Amazon Web Services (AWS), Azure, Google Cloud Platform (GCP), VMware NSX, Oracle etc.

• Experience with assessment, development, implementation, optimization, and documentation of a comprehensive and broad set of security technologies and processes such as secure software development, Application Security, data protection, cryptography, key management, identity and access management (IAM), network security) within SaaS, IaaS, PaaS, and other cloud environments.

• Experience working with cloud security and governance tools, cloud access security brokers (CASBs), and server virtualization technologies.

• Experience performing threat modeling and design reviews to assess security implications and requirements for introduction of new technologies.

• SAP GRC / AC 12 experience is good to have.