Job Description
Experience Skills and Qualifications:
- 3+ years of experience in a similar position.
- Bachelor's degree in Computer Science, or related field.
- Strong understanding of information security principles and best practices
- Strong understanding of operating systems and browser security architecture
- Deep working knowledge of networking concepts and web-related protocols: TCP/IP, UDP, IPSEC, HTTP, HTTPS, DNS, routing protocols.
- Working knowledge of network monitoring tools like TCP View and Wireshark
- 3+ years experience working in Cloud Technologies like GCP, AWS, Azure
- 5+ years of demonstrated experience in penetration testing, vulnerability assessments, embedded device security, application security, systems security, and/or network security.
- Understanding of threat modeling, security vulnerabilities, attacker exploit techniques, and methods for their remediation.
- Understanding of best practices in security engineering, including secure development, cryptography, network security, security operations, systems security, policy, and/or incident response.
- Experience in the public cloud environment (Azure, AWS, or Google Cloud)
- Knowledge of IT security solutions (Security Information and Event Management, Cloud Access Security Broker, Data Leakage Prevention, Web Application Firewall, Multi-Factor Authentication, Data Rights Management, etc.)
- Domain expertise of network security sensors such as IDS ( Suricata), cloud security access broker, DDOS protections, Open DNS, etc
- Detail understanding of Network Technologies Routers, Switches, Load Balancers, firewalls, proxy, etc
- Must have experience deploying and securing IaaS, PaaS, and SaaS solutions using native cloud security controls and be familiar with products and solutions outside of native cloud security controls such as NGFW CSPM Micro-segmentation and others.
- Develops and executes security controls, defenses, and countermeasures to intercept and prevent internal or external attacks or attempts to infiltrate company email, data, e-commerce, and web-based systems.
- Knowledge of microservices, Kubernetes, Docker, etc., is added advantage.
- Experienced using common penetration testing tools
- Experienced with reverse engineering and hardware hacking.
- Programming experience in C, C++, Python, and/or Java.
- Scripting skills (e.g., Python, Perl, Bash, PowerShell, etc.) will be an added advantage.
- Design and build vulnerability scanning solutions for Kubernetes and Docker managed services.
- Integrate application monitoring tools such as Data dog, Prometheus and build visual logging dashboards and alerting using tools like Grafana and PagerDuty
- Familiarity with security benchmarks such as OWASP, PCI-DSS, CIS, SOC2, FedRAMP, etc.
- Understanding of different Squad models in Agile methodologies and ability to adapt quickly to new technologies