Senior Security Operations

Position: Senior Security Operations

Job Location: Chennai

Employment Type: Full Time

Responsibilities:
• Work closely with system/development/business architects to understand goals, determine security requirements, design and implement application and data security solutions.
• Coordinate with infrastructure and application development project teams to deliver solutions collaboratively, ensuring that corporate security policy, standards and industry best practices are met.
• Drive the selection, POC, implementation and operational deployment of new security technology solutions through the delivery pipeline to ensure the confidentiality, integrity and availability of business data.
• Coordinate with DevOps team for the integration of Security DevOps scripts, through the various deployment pipelines and environments (development, test, integrations and production), to achieve production readiness
• Assist in designing solutions to meet remediation requirements from audits security reviews, external regulatory changes, PEN Tests, PCI changes.
• Work with end users on secure best practices in Infrastructure as Code, cloud design patterns and CI/CD with built in cloud, container and application security controls.
• Customize cloud compliance tools to meet operational, audit and risk-based needs.
• Develop procedures to automate security tasks during code builds and deployments. Assist application teams as required to adopt the security code-based controls.
• Report unresolved security exposures, misuse of resources, and noncompliance situations using defined escalation processes. Manage security incidents.
• Automate security controls, data and processes to provide better metrics and operational support. Utilize cloud-based APIs when appropriate to write network/system level tools for securing cloud environments.
• Facilitate achievement of compliance certifications - SOC2 Type II , GDPR , etc

Experience & Skills
• 6+ years of experience in information security with background in cloud security, network security, systems security or infrastructure security.
• Good to have experience with DevSecOps CI/CD, including Jenkins, Terraform, Scripting experience.
• AWS network security experience - IAM, WAF, Cloud audit, EKS security
• Should have 4+ years of experience in Web Application and API Penetration and API testing
• Should have eperience with OWASP top 10, SANS 25, CIS benchmarks, NIST controls
• Should have a good understanding about cloud technologies and containerization
• Must have a experience on Software release security signoff & Code Review process
• Should have experience with intrusion/threat analysis, Incident handling, incident response, Malware analysis, vulnerability assessment (performing internal VAPT & OSINT), Identify & Access management
• Should have 4+ years experience in operating and analyzing continuous SIEM monitoring tools to prevent, detect, analyze, and respond to security incidents.
• Must have at least 5+ years hands-on experience working with a Security/Network Operations Center
• Hands-on experience with multiple security technologies such as antivirus software, intrusion detection, SIEM, firewalls, and content filtering
• Nice to have experience on Compliance and Data Security
• Firewalls, Security groups and networking
• OS Platform Security

Certification:
• Not mandatory but good to have along with real work experience.
• Certification alone won't be considered until has got an additional work experience Good to have any/all of the below
• Cloud certification - AWS, Google , Azure - https://aws.amazon.com/certification
• Splunk - SIEM , Sumologic - https://www.splunk.com/en_us/training/certificatio... iew.html
• Security - CEH , OSCP or Any Equivalent Application/Penetration testing Certifications

About us:

Experience.com empowers businesses of all sizes to turn customer and employee experiences into social proof to drive growth and their bottom line. We're building the platform that reinvents how companies from local real estate experts to global hospitality brands build their online brand and reach new customers. By taking the manual work out of online brand reputation management, we free businesses to focus on what matters most: their customers. Whether it is the incredible people we work with on our team every day or the companies we partner with, we are always looking for ways to make others around us better and Create WOW.

Founded in 2015, Experience.com is headquartered in San Ramon with quickly growing offices in Nashville and Chennai.

Indian Registered name: Buyers Road India Private Limited

URL: www.experience.com