Unity Senior Information Security Technical Program 

India, Karnataka, Bengaluru 

322504876

What you'll be doing

• Driving Technical audits and implementation of audit and control framework to monitor production environments for potential system integrity, cyber-risk exposure and control weaknesses
• Perform security gap analysis and help define specific/technical remediation measures.
• End-to-end project and program management : Manage audit and/or remediation projects. Produce high-quality deliverables, project material and audit documentation that are suitable for engineering teams, external stakeholders and auditors.
• Guide and work with engineering and DevOps as they execute on risk remediation and novel solutions Work day-to-day with technical Security engineers and collaborate with them for driving project progress and resolving blockers
• Be responsible for reporting on these projects to senior leadership. Effectively communicate not only with peers, engineers , devops, business development stakeholders, but also with VP and execs.
• Operate and lead initiatives within a distributed team and collaborate with colleagues both local and remote, cross functionally and within your department. Stay updated on the latest industry trends and technologies to keep our services cutting-edge.

What we're looking for

• Experience driving compliance or audit engagements (eg SOX or SOC 2 or PCI or ISO 27001). Experience conducting risk assessment on products and applications (in-house and/or third-party) to inculcate better security using NIST or Similar compliance frameworks..
• Experience working on cloud service providers such as AWS/GCP/AZURE, and knowledge of cloud services and infrastructure
• Experience in Vulnerability management ( Qualys/ORCA etc), Security Operations ( Logging and monitoring, SIEM and SOAR tools ) and Infrastructure Security.
• Familiarty with SAST/ DAST tools
• Exposure to distributed systems development and/or an understanding of container and orchestration technologies such as Docker, Kubernetes or Nomad.
• Strong understanding of software development best practices and design patterns, a security and quality first mentality and approach (Secure Software development Lifecycle SSDLC)
• Experience with one or more of the following: threat modeling, security reviews, vulnerability management, penetration testing, secure software development
• Excellent project management skills and communication and collaboration abilities, adept at working with teams across various disciplines. Experience with process mapping (preferably on MS Visio / Lucidchart or equivalent). Excellent skills with excel and powerpoint.
• Excellent communication skills and experience collaborating with cross functional teams, driving for alignment on key decisions, effective communication with project participants and leadership

You might also have

• Professional certifications in security, privacy risk management, and audit areas are a plus, such as PMP, CISA, CISM, CISSP, or CIPT.
• Experience with Unity, Unreal, or other game engines
• Experience working within an Agile environment (SCRUM/Kanban/XP) and leading work within teams

Additional information

• Relocation support is not available for this position.
• International relocation support is not available for this position.
• Work visa/immigration sponsorship is not available for this position.