Information Security

Job description

Key things to Note, before you consider applying:

• Willing to undergo a background check, in accordance with local law/regulations.
• We will verify the validity/authenticity of your experience if any (previous internships and projects).

Note:
If you think you are fine with the above process, please take further look into the JD below.

Role & Responsibilities:

This role involves leading the overall effort in developing automation workflows, integrating security tools, and ensuring the effectiveness of security automation initiatives. They also play a key part in staying up-to-date with emerging threats and security best practices.

• Have experience leading large scale automation effort for info sec organization. Lead a decent team sized team, with strong experience guiding and mentoring team members, fostering collaboration, and ensuring alignment with organizational automation goals.

• This involves designing, coding, and deploying automated scripts and processes for tasks like vulnerability scanning, incident response, and threat intelligence gathering. Will build team to test these cybersecurity automation workflows will be tested on our AI-enabled automation platform NiKi.

• Integrating security systems and applications, connecting various security tools and platforms to create seamless automated workflows for efficient incident handling and data sharing.
• Staying updated on security threats and automation advancements, Keeping abreast of the latest security threats and emerging automation technologies to improve security posture.
• Creating and maintaining detailed documentation for all automation workflows, and procedures.
• Working with security engineers, developers, and operations teams to identify automation opportunities and implement solutions.
• Responsible for managing and automating the overall cloud Infrastructures (AWS, Azure, GCP)
• Manage and take ownership of the IT security, cloud security policies and deployments at large scale.
• Quickly able to automate cloud infrastructures to cater the needs of customers and engineering teams in a least-privilege manner.
• See that the enterprise network and cloud infrastructures stay compliant all the time with tight security knobs and controls in place.
• Take lead in helping engineering team in the cloud security and architecture decisions.
• Work as part of a small but focused, strong, and fast-moving team.

What you bring onboard

• At least 5 to 10 years of experience managing large scale cloud infrastructures (AWS, Azure, GCP), infosec organizations automation efforts
• Deep expertise securing more than one cloud infrastructure such as AWS, GCP, Azure infrastructures is a Plus. Proven track record securing cloud infrastructures is mandatory for this role.
• Expertise in enterprise scale IT, DevSecOps, Vulnerability management is a plus
• Deep knowledge in the Cloud/Enterprise security automation, is mandatory
• Experience implementing cloud security and hardening, especially in a large or complex environment
• Experience in integration native and third-party cloud security services
• Have experience automating the cloud infrastructure deployments in a secure manner is mandatory.
• Knowledge on the best practices, including but not limited to, automation and secure containerization frameworks (e.g., Ansible, Terraform, Chef, Salt, Puppet, and Cloud Formation Templates), directory services (e.g., Active Directory, LDAP), AWS IAM, Okta, SSO, encryption technologies in a cloud environment.
• Identify and access management experience, and least-privilege is a must.
• Architect, design and build critical CI/CD pipelines for Kubernetes orchestrated cloud and data platforms and cloud services maintaining availability and reliability at massive scale.
• Participate in the development of the deployment automation strategy working closely with security engineering team, DevOps Engineers, and Product Development.
• Networking knowledge, including network security and segmentation
• Scripting knowledge in Python, Go lang, rust is a plus.
• B.Tech/M.Tech in Computer Science, MCA, Engineering degree in electronics and communication.