Security engineer
Posted: July 24, 2024, 9:33 a.m. - Full Time - Whitefield bangloreJob Description: Job Title: Security Engineer
Location : Whitefield, Bangalore Exp : 3-8 Years
Primary Skills:
• Having 3-8 years of hands on experience, working as a Vulnerability management engineer in the Application and Infrastructure/Cloud space
Must have: • Daily assessment experience of vulnerabilities reports identified by SAST, DAST, and SCA tools • Experience to Evaluate, rate and perform risk assessments on the findings. Knowledge of risk assessment methods like Modular Risk Assessment process (MoRA), Threat Analysis and Risk Assessment(TARA) defined by ISO/SAE 21434 is a plus. • Should be able to quickly analyze and prioritize the vulnerabilities discovered • Communicate with the Security Function owners within each team for the tracking and mitigation of the prioritized vulnerabilities • Interaction with multiple teams like Development teams, penetration testing teams, independent researchers, suppliers and team across multiple brands
Nice to have: • Working knowledge of the entire SDLC process for software development • Maintain knowledge of the threat landscape • Knowledge of Cloud and virtualized environment( VMs, containers etc) security • Experience/knowledge of Incident management, UNECE R155/156, GDPR and ISO/SAE 21434 • German level fluency in a plus
Job Responsibilities • Hands on experience, working as a Vulnerability management engineer in the Application and Infrastructure/Cloud space • Comfortable in handling vulnerability reports coming from multiple sources, for example BlackDuck, static analysis scans, etc • Able to perform quick assessment of vulnerabilities and prioritize them