JOB DESCRIPTION:

• Able to design a security architecture blueprint (from Devsecops, application, infrastructure, operational security, for applications to interact with. Define the process, provisioning, interfaces, provide recommendations.
• Build workplan and drive the team.
• Able to engage and execute Security Vulnerability Scanning activities ( HCR/NVA/Pen Test/ SAST/DAST activities etc) & resolve findings.
• Familiar with implementing HSM, EDRs, DLP , enterprise antivirus product implementation & operationalization.
• Familiar with container orchestration security (either OpenShift/CloudFoundation/Kubernetes). Securing containers, monitoring traffic. Container repository security, secure images.
• Familiar with securing at scale enterprise BigData Architectures with role-based access controls, DLP tools, monitoring tools to ensure proper data usage & reporting & prevention activities.
• Thales CipherTrust & HSM.
• DigitalGuardian DLP Product Suite.
• vmWare CarbonBlack EDR.
• TrendMicrDeepSecurity Product Suite.
• Tenable Nessus, Burp Suite Enterprise.

Familiar with operational security processes

• OS level patching
• Application-level patching
• Operational housekeeping and archival.
• Server and application hardening procedure & steps
• IM8 policy

REQUIREMENTS:

Top 3 MUST have skills:

• Minimum 5 years of experience as a Security Solution Architect.
• CISSP/CCSP/CCSK certification or its equivalent is preferred
• Must have a specialization in 1-2 areas of Cyber domains such as Identity Access Management, Cloud-native Security, Container orchestration platform security with a broad understanding of other areas.

Good to have skills (Optional)

• Familiar with Gov standard of security posture including planning and running SSAT, Security Compliance Check, Security Vulnerability Scanning, DAST & SAST.
• Able to defend and articulate security posture to ACISO
• Work with cloud native security tools & environment.

Please refer the Job description for details