Application Security Expert

Job Description

Role Summary We are looking for a Security Expert who will be responsible for Cloud, Endpoint, Application, and Information Security for our platform. This role requires an experienced security professional who can assess vulnerabilities, implement security measures, and ensure compliance with industry standards to protect the organization from cyber threats. Job Responsibilities Cloud Security & Infrastructure Protection Secure AWS, Azure, or GCP cloud environments, ensuring best security practices. Implement IAM policies, encryption, and firewall configurations. Monitor cloud security logs, SIEM tools, and anomaly detection systems. Application Security & Secure Development Conduct security code reviews and vulnerability assessments for web and mobile applications. Implement secure coding practices and OWASP guidelines. Work with development teams to ensure DevSecOps integration in CI/CD pipelines. Endpoint Security & Threat Protection Implement endpoint protection strategies across all devices. Manage EDR (Endpoint Detection & Response) solutions to detect and respond to threats. Perform forensic analysis on security incidents and breaches. Information Security & Compliance Ensure compliance with ISO 27001, GDPR, SOC2, PCI-DSS, and other security frameworks. Conduct regular risk assessments, penetration testing, and security audits. Develop incident response plans and disaster recovery strategies. Security Monitoring & Incident Response Monitor SIEM solutions, IDS/IPS, and security analytics tools for potential threats. Lead security investigations, incident response, and forensic analysis. Work with teams to mitigate and remediate security threats in real-time. Job Requirements Educational Qualification and Experience Bachelor’s degree in Computer Science, Engineering, or related field, or equivalent work experience.8-10 years of experience in cybersecurity, cloud security, and application security. Technical Skills Strong expertise in AWS Security, Azure Security, or GCP Security best practices.Experience with SIEM, IDS/IPS, vulnerability scanners, and penetration testing tools.Knowledge of encryption, IAM, network security, and security monitoring tools.Ability to conduct security assessments and implement remediation strategies.Certifications such as CISSP, CISM, CEH, OSCP, or AWS Security Specialty.Experience in DevSecOps, Kubernetes security, and container security. Knowledge of Zero Trust Architecture and Identity & Access Management (IAM). Behavioural Skills Strategic thinkingPlanning and organizingInterpersonal SkillsStakeholder management People LeadershipInnovation and CreativityAttention to detail