Similar Jobs

1. Knowledge of cloud platforms (AWS, Azure, GCP) and containerization technologies (Docker, Kubernetes, OpenShift).
2. Implement security tools and best practices within CI/CD pipelines to automate security testing, vulnerability assessments, and ethical hacking.
3. Design, deploy, and manage secure infrastructure using Infrastructure as Code (IaC) principles and tools like Terraform, CloudFormation, or Ansible.
4. Lead and perform ethical hacking, penetration testing, and security audits to identify vulnerabilities, assess risks, and recommend mitigation strategies.
5. Conduct penetration testing on applications, networks, and cloud environments using tools like Burp Suite, Metasploit, Nmap, and Kali Linux.
6. Develop, maintain, and enhance security-focused regression testing frameworks to proactively identify and address security vulnerabilities.
7. Monitor and respond to security threats, perform regular security assessments, and implement remediation strategies using SIEM tools like Splunk, ELK, or AWS Security Hub.
8. Participate in incident response and post-incident analysis, contributing to continuous improvement and learning.
9. Collaborate with cross-functional teams to define and implement best practices for secure DevOps processes.
10. Ensure adherence to security compliance frameworks (e.g., NIST, CIS, ISO 27001, SOC 2) and assist in security audits.
11. Implement security hardening techniques for applications, networks, and infrastructure.
12. Develop and enforce security policies for secrets management, identity & access management (IAM), and role-based access control (RBAC).
13. Automate security scanning, configuration management, and patch management processes.
14. Conduct threat modeling and risk assessment to improve security posture.
15. Work with developers to integrate security best practices into the software development lifecycle (SDLC).
16. Stay updated with the latest security threats, vulnerabilities, and industry trends.

Required Qualification:

• Bachelor's degree in Computer Science, Cybersecurity, Information Security, or a related field.

Required Experience:

• Minimum 2 years of experience in DevSecOps, Security Engineering, or a related field.
• Hands-on experience in penetration testing, ethical hacking, and security automation.

Required Skills:

1. Cloud Security: AWS, Azure, GCP
2. Security Frameworks &Compliance: NIST, CIS, ISO 27001, SOC 2
3. CI/CD Security: Jenkins, GitLab CI, GitHub Actions, Azure DevOps
4. Infrastructure as Code (IaC): Terraform, CloudFormation, Ansible
5. Container Security: Docker, Kubernetes, OpenShift, Istio
6. Web Security & Penetration Testing: OWASP Top 10, Burp Suite, Metasploit, Kali Linux, Nmap, SQL Injection, XSS, CSRF
7. Network Security: VPNs, Firewalls, IDS/IPS, Network Penetration Testing
8. Monitoring & Incident Response: Splunk, ELK, AWS Security Hub, SIEM tools
9. Scripting & Automation: Python, Bash, PowerShell
10. IAM & Secrets Management: AWS IAM, HashiCorp Vault, AWS Secrets Manager, Azure Key Vault
11. Threat Modeling & Risk Assessment: STRIDE, DREAD, MITRE ATT&CK

Experience:

• Min 2 Years

What are we offering?

• Health Insurance
• Provident Fund
• Annual Paid Leaves
• Compensation Plans
• Paid Certifications & Training
• Car Finance Program
• Bike Finance Program
• Child Education Program
• Two Annual Trips
• Stars Of the Month Rewards
• Quarterly Meetups
• Referral Bonuses
• Birthday & Eid Gifts

Skills:

Incident Response, CI, CD Security, Security Frameworks, Communication Skills,