willin and contribute to initiatives that improve overallsecurity posture and help ensure compliance withall regulatory, audit and security requirements for data platforms.
You will:
- Review and analyse security, audit and regulatoryrequirementsand create documentation and reports for security related metrics
- Contribute to thesecurityarchitectureand designofdata platforms and databasesto meet all compliancerequirements
- Work with Platform Engineers in ensuring that data platforms are meeting all the compliancerequirementsand review security vulnerabilities,identifyand track vulnerability fixes fordataplatforms
- Partner with cybersecurity team to conduct penetration testing,auditsand securityscans
- Collaborate with developer team to ensure secure development practices &ability toidentifyand evaluate the scan results and provide remediations
Essential Requirements- Experience with cybersecurity concepts and how security controls are applied across on-premises and cloud environments.
- Specialized knowledge in security standards development, meticulously crafting security standards and protocols to fortify infrastructures.Comprehensive knowledge in threat modelling approaches like STRIDE and PASTA.
- Experience and familiarity with network data, logs, andvarious typesof attack artifacts.Deep knowledge in security vulnerabilities & exploitation techniques.
- Hands on experience with DAST and SAST tools such asSnyk, X-ray scan,checkmarx, SonarQube etc.
- Hands on Experience on cyber frameworks as NIST, ISO27001, ISO27002 etc.Strong communicationand interpersonal skills, with the ability to effectively communicate complex security concepts to technical and non-technical stakeholders.
Desirable Requirements
- Typically requires 8+ years ofsoftware engineeringexperience.Minimum 3-5 years ofhands-on experience in system security engineering, network security, or a related field.
- Basic experience with risk assessment, penetration testing, and incident response methodologies.Experience in Data platform, Information security or related field is abig plus.