You Will:
Map the organizations attack surface and ensure exposed assets are configured correctly
Implement and enforce best practices for application security, including regular scanning and vulnerability management
Develop and manage tools and processes for detecting and responding to security threats
Collaborate with the Governance, Risk, and Compliance team to execute security audits and assessments to ensure compliance with applicable regulations, industry best practices, and organizational security policies
Monitor and analyze security logs and events, and respond to security incidents including investigation, containment, and recovery efforts, as needed
Collaborate with cross-functional teams, including security experts to maintain a cohesive security strategy
Conduct security design reviews for new and existing features
Provide local training and awareness programs to educate employees and users about security best practices and procedures
You Have:
Bachelor’s degree in Computer Science, Information Technology, or relevant proven experience.
5+ years of experience in security engineering or a related field.
Proven track record in application security, vulnerability management, and incident response.
Strong knowledge of security principles, best practices, and industry standards, such as NIST, ISO 27001, and CIS Critical Security Controls.
Familiarity with security-related regulations, such as GDPR, HIPAA, and PCI-DSS.
Ability to lead and make critical decisions in complex, high-stress environments.
Experience with risk assessment, penetration testing, and incident response methodologies.
Strong understanding of networking concepts and protocols, such as TCP/IP, VLANs, VPNs, and routing/switching.
Working knowledge of Cloud Security Concepts covering GCP (preferred) or AWS.
Working knowledge of Docker/Kubernetes MicroServices architecture security concepts.
Ability to code in one of the popular coding languages, preferably JS, Python, or GoLang.
