Application Security Expert

As a Security Expert at the company, you will play a crucial role in safeguarding the platform from cyber threats by focusing on Cloud, Endpoint, Application, and Information Security. Your responsibilities will include: - **Cloud Security & Infrastructure Protection** - Secure AWS, Azure, or GCP cloud environments with best security practices. - Implement IAM policies, encryption, and firewall configurations. - Monitor cloud security logs, SIEM tools, and anomaly detection systems. - **Application Security & Secure Development** - Conduct security code reviews and vulnerability assessments for web and mobile applications. - Implement secure coding practices and adhere to OWASP guidelines. - Collaborate with development teams to integrate DevSecOps in CI/CD pipelines. - **Endpoint Security & Threat Protection** - Implement endpoint protection strategies across all devices. - Manage EDR solutions for threat detection and response. - Conduct forensic analysis on security incidents and breaches. - **Information Security & Compliance** - Ensure compliance with ISO 27001, GDPR, SOC2, PCI-DSS, and other security frameworks. - Perform regular risk assessments, penetration testing, and security audits. - Develop incident response plans and disaster recovery strategies. - **Security Monitoring & Incident Response** - Monitor SIEM solutions, IDS/IPS, and security analytics tools for potential threats. - Lead security investigations, incident response, and forensic analysis. - Collaborate with teams to address security threats in real-time. In terms of qualifications, we are looking for someone with: - Bachelor's degree in Computer Science, Engineering, or related field, or equivalent work experience. - 8-10 years of experience in cybersecurity, cloud security, and application security. Your technical skills should include: - Proficiency in AWS Security, Azure Security, or GCP Security best practices. - Experience with SIEM, IDS/IPS, vulnerability scanners, and penetration testing tools. - Knowledge of encryption, IAM, network security, and security monitoring tools. - Ability to conduct security assessments and implement remediation strategies. - Certifications such as CISSP, CISM, CEH, OSCP, or AWS Security Specialty. - Experience in DevSecOps, Kubernetes security, and container security. - Understanding of Zero Trust Architecture and Identity & Access Management (IAM). Join us in our mission to secure the platform and protect it from cyber threats.,