Job Description:
- Able to design a security architecture blueprint (from Devsecops, application, infrastructure, operational security, for applications to interact with. Define the process, provisioning, interfaces, provide recommendations.
- Build workplan and drive the team.
- Able to engage and execute Security Vulnerability Scanning activities ( HCR/NVA/Pen Test/ SAST/DAST activities etc) & resolve findings.
- Familiar with implementing HSM, EDRs, DLP , enterprise antivirus product implementation & operationalization.
- Familiar with container orchestration security (either OpenShift/CloudFoundation/Kubernetes). Securing containers, monitoring traffic. Container repository security, secure images.
- Familiar with securing at scale enterprise BigData Architectures with role-based access controls, DLP tools, monitoring tools to ensure proper data usage & reporting & prevention activities.
- Thales CipherTrust & HSM.
- DigitalGuardian DLP Product Suite.
- vmWare CarbonBlack EDR.
- TrendMicrDeepSecurity Product Suite.
- Tenable Nessus, Burp Suite Enterprise.
Familiar with operational security processes
- OS level patching
- Application-level patching
- Operational housekeeping and archival.
- Server and application hardening procedure & steps
- IM8 policy
Requirements:
Top 3 MUST have skills:
- Minimum 5 years of experience as a Security Solution Architect.
- CISSP/CCSP/CCSK certification or its equivalent is preferred
- Must have a specialization in 1-2 areas of Cyber domains such as Identity Access Management, Cloud-native Security, Container orchestration platform security with a broad understanding of other areas.
Good to have skills (Optional)
- Familiar with Gov standard of security posture including planning and running SSAT, Security Compliance Check, Security Vulnerability Scanning, DAST & SAST.
- Able to defend and articulate security posture to ACISO
- Work with cloud native security tools & environment.
