Security Engineer IV

Cloud Security Architecture

Asses, help in design and development of AWS, Azure and AWS security architectures for protecting PII/PCI data deployed into different types of cloud and cloud/hybrid systemsImprove the security around cloud-based applications, across all types (including Infrastructure, Platform, and Software as a Service (IaaS/PaaS/SaaS)Work part of Cyber team for Enterprise Security for other Technology teams and Vendors within the organisation for all matters related to cloud securityImplement NIST framework on cloud-native architectures to mitigate the risk to Organisation PII, PCI data and with appropriate security controls presentSSDLC Embed Security practices in development and implementation of the overall enterprise cloud architecture to ensure Secure Software Development LifecycleEnhance/redesign existing cyber standards in partnership with Engineering, Infrastructure Services, and Application Development.Act as the ambassador and senior technical representative to Lead initiatives designed to share knowledge across Security Platforms and/or Technology teams, identify, recommend, coordinate and deliver timely knowledge to support teams regarding technologies, processes or toolsEnsures the effective translation of the security architecture is implemented into the solutionsAssist to evaluate all the new initiatives/solutions (including Cloud) with the design recommendations and work with project managers and architects during implementationSAP GRC / AC 12 experience is good to have

New Technology & Risks

Evaluate and recommend tools and solutions to enhance the security posture of the EnterpriseMaintain contact with vendors regarding security system updates and technical support of security productsPerform cost-benefit and risk analysis- Analyzes business impact and exposure, based on emerging security threats, vulnerabilities and risks

Measures of Success

Product/services are cyber compliant and risk reduced to minimal or zero.Successful implementation/ adoption of any new solution, technology or frameworkTimely and in- budget delivery of security projects specifications within time and budget

Technical Skills / Experience / Certifications

CCSP certification is mandatory, Any among like TOGAF, SABSA, OSCP or python certification is preferredKnowledge of enterprise IT Systems, infrastructure and security technologiesKnowledge of Information Security Standards like ISO 27001, PCI-DSS, NIST CSF, CSA framework etc.Working knowledge of common and industry standard cloud-native/cloud-friendly authentication mechanisms (OAuth, OpenID, etc.)Experience with deployment orchestration, automation, and security configuration management (Jenkins, Puppet, Chef, etc.) preferredExperience architecting solutions within Amazon Web Services (AWS), Azure, Google Cloud Platform (GCP), VMware NSX, Oracle etc.Experience with assessment, development, implementation, optimization, and documentation of a comprehensive and broad set of security technologies and processes such as secure software development, Application Security, data protection, cryptography, key management, identity and access management (IAM), network security) within SaaS, IaaS, PaaS, and other cloud environmentsExperience working with cloud security and governance tools, cloud access security brokers (CASBs), and server virtualization technologiesExperience performing threat modeling and design reviews to assess security implications and requirements for introduction of new technologiesSAP GRC / AC 12 experience is good to have