Hiring For Cloud Azure Security- L3_ Hanu
- Bhanu Dixit
- 5 - 9 years
- Noida, Gurugram
- 4 years ago
- Email to a friend
- Report this job
Job Description
Hello,
We are hiring for Cloud Azure Security- L3_ Hanu Software
Roles and Responsibilities:
Translates complex security-related matters into business terms that are readily understood
by customers.
The security architect should anticipate presenting analysis in person and in written formats to senior leadership.
Interprets technology and threat drivers, and develops practical security roadmaps to deal with these drivers.
Demonstrates flexibility within a variety of changing situations, while working with individuals and groups.
Develops and maintains a cloud security architecture process that enables the enterprise to develop and implement identity and security solutions and capabilities that are clearly aligned with business, technology and threat drivers.
Develops identity and cloud security strategy plans and roadmaps based on sound enterprise architecture practices.
Develops and maintains identity and security architecture artifacts (e.g., models, templates, standards and procedures) that can be used to leverage Cloud security capabilities in projects and operations.
Tracks developments and changes in the digital business and threat environments to ensure that they're addressed in cloud security strategy plans and architecture artifacts.
Participates in application and infrastructure projects to provide cloud security-planning advice.
Drafts security procedures and standards to be reviewed and approved by executive management and/or formally authorized by Information Security and Compliance.
Determines baseline security configuration standards for operating systems (e.g., OS hardening), network segmentation, and identity and access management (IAM).
Conducts or facilitate threat modeling of services and applications that tie to the risk and data associated with the service or application.
Ensures a complete, accurate and valid inventory of all systems, cloud infrastructure and applications that should be logged by the security information and event management or log management tool.
Coordinates with DevOps teams to advocate secure coding practices.
Validates cloud IT infrastructure and other reference architectures for security best practices and recommend changes to enhance security and reduce risks, where applicable.
Validates security configurations and access to security infrastructure tools, including firewalls, IPSs, WAFs and anti-malware/endpoint protection systems.
Reviews network segmentation to ensure least privilege for network access.
Liaise with the internal audit (IA) team to review and evaluate the design and operational effectiveness of security-related controls.
Reviews security technologies, tools and services, and make recommendations to the broader security team for their use, based on security, financial and operational metrics.
Liaise with other security architects and security practitioners to share best practices and insights
Responsible for research and evaluation of new tools and technologies, and the individual is expected to stay abreast of new developments in the technology and retail industry.
Serves in capacity of technology advisory services for engaging with the business to "solve business problems via technology and process innovation relative to IT capability requirements.
Desired Candidate Profile
Minimum of 8-12 years in an engineering and architectural role.
Experience in Cloud Platform Expertise Azure, AWS (optional) & Google Cloud (optional).
Experience in using architecture methodologies such as SABSA, Zachman and/or TOGAF.
Direct, hands-on experience & strong working knowledge of managing security infrastructure & applications e.g., firewalls, intrusion prevention systems (IPSs), web application firewalls (WAFs), endpoint protection, SIEM and log management technology.
Third party Solutioning knowledge E.g. Barracuda, Fortinet, Alert Logic, Palo Alto and other Native Cloud Security tools & Solutions.
Verifiable experience reviewing application code for security vulnerabilities.
Direct, hands-on experience or a strong working knowledge of vulnerability management tools.
Documented experience and a strong working knowledge of the methodologies to conduct threat-modeling exercises on new applications and services.
Documented experience and a strong working knowledge of the methodologies to conduct threat-modeling exercises on new applications and services.
Full-stack knowledge of Cloud IT infrastructure:
Applications
Databases
Operating systems Windows, Unix and Linux
Hypervisors
IP networks WAN and LAN
Active Directory
Lightweight Directory Access Protocol (LDAP)
Cloud (Azure, AWS & GCP) IAM
Strong working knowledge of IT service management (e.g., ITIL-related disciplines):
Change management
Configuration management
Asset management
Incident management
Problem management
Regulations, Standards and Frameworks
Payment Card Industry Data Security Standard (PCI-DSS)
HIPAA-HITECH
Validated Systems (e.g., GAMP)
Sarbanes-Oxley
General Data Protection Regulation (GDPR)
Privacy Practices
ISO 27001/2
NIST Cybersecurity Framework (CSF)
Consulting skills required:
Passionate, persuasive, articulate Cloud professional capable of quickly establishing interest and credibility in how to design, deploy and operate cloud-based Architectures. Strong written, verbal and chalk board skills
Experience in enterprise applications, solutions and Cloud infrastructures.
Experience in platform and cloud migrations, including of Mass Migration Toolsets:
Ability to work with team members from around the globe / experience working with off-shore models.
Degrees/Certifications Earned:
Bachelor's degree in Computer Science, Computer Engineering or Information Technology
Relevant Industry certifications such on Microsoft Azure, AWS & Google Cloud.
At least One Certification is Mandatory
CEH Certified Ethical Hacker
CHFI Computer Hacking Forensic Investigator
SIEM certified; - Splunk, IBM Q radar, HP Arch sight
Azure Security Engineer
GIAC, OSCP, OSWE
Other
Exposure and working level knowledge of working with and interfacing to global delivery teams
Good business judgment, a comfortable, open communication style, and a willingness and ability to work with customers and teams.
Strong service attitude and a commitment to quality.
* Willing to work in 24x7 model as needed.
Interested can share resume on ar*********a@ha*u.com
Regards,
Arushi Verma
IT Recruiter
ar*********a@ha*u.com
Job Classification
Industry: IT-Software, Software ServicesFunctional Area: IT Software - Application Programming, Maintenance,
Role Category: Admin/Maintenance/Security/Datawarehousing
Role: Admin/Maintenance/Security/Datawarehousing
Employement Type: Full time
Education
Under Graduation: B.Tech/B.E. in Any SpecializationContact Details:
Company: Hanu Software solutions India Pvt Ltd.Address: PLOT - 6,FIRST FLOOR,SIGNATURE TOWER,TECH ZONE ANS, AL IT,GREATER NOIDA, , NOIDA, Uttar Pradesh, India
Location(s): Noida, Gurugram
Keyskills: Log Management Cloud Security Identity Access Management IAM Networking Threat Modeling SIEM Security Compliance Vulnerability Assessment azure security
Bhanu Dixit
We perform our benchmark expertise with differentiable strategies in every domain and are engaged by practically all large and serious players. We help our client base of leading transnational and Indian organizations to create, identify, judge and produce optimum benchmark in manpower recruitment. ...
Job Listings
We are in open beta version of website, please let us know if any issues, at: info(at)indigojobs.in