- Help plan VIMAAN's information security strategy
- Develop security standards and practices as part of SDLC and oversee architecture, design, development, coding, testing, deployment and production to ensure product and infrastructure security
- Assess risks, maintain risk register, analyze and communicate impact, undertake remedial actions and follow-up on remedial actions by team members
- Install, configure and use security devices, tools and software, such as firewalls, IDS, IPS and data encryption solutions
- Automate and deploy network scans to find vulnerabilities and perform penetration testing
- Perform code reviews ensuring implementation of security best practices
- Develop scripts to automate security related work
- Track third party software security and keep updated for security patches and upgrades
- Collaborate with DevOps for deployment of software updates and security patches
- Collaborate with IT staff and system administrators to monitor networks and systems for security breaches or intrusions
- Lead incident response activities, investigations into potential breaches, report on findings, develop and implement remediation plans
- Interface with third parties to conduct threat assessment and penetration tests and to implement corrective actions
- Ensure product and infrastructure meets specific industry InfoSec standards, such as medical or government, and drive product compliance to those standards
- Continually research the current threat landscape and state of the art
- Raise information security awareness in product development teams
- Establish and maintain thorough and accurate documentation of all work
- Bachelor's of Computer Science or equivalent degree
- 8+ years of experience as System Security Engineer or Information Security Engineer
- Thorough understanding of the latest security and data protection principles, techniques, and protocols
- Experience designing and implementing secure networks, systems, and application architectures
- Experience with securing web technologies including web applications, Web Services, Microservices
- Experience with securing Linux systems and databases such as Postgres
- Knowledge of TCP/IP networking protocols, REST, SSH, TLS, and experience securing them
- Experience with Identity Management, authentication and SSO methods, LDAP, Active Directory, OpenID, OAuth, and Role Based Access Control
- Experience with data encryption and knowledge of encryption algorithms
- System administration experience including Linux, network and database administration
- Expertise in scripting using shell scripts, Python, Perl or similar languages
- Knowledge of risk assessment tools, technologies, and methods
- Experience with Software Composition Analysis and Vulnerability Assessment
- Experience in designing, implementing, configuring, and managing security by using firewalls, network monitoring tools, intrusion detection systems, anti-virus software, authentication systems, log management systems, content filtering, etc.
- Experience with SAST and DAST tools and integrating them into DevSecOps
- Experience with code reviews using OWASP Top 10 and MITRE CWE Top 25 and training team on secure coding methodologies
- Experience with ISO27001 and SOC2 compliance, audit and certification, and with other industry guidelines, regulations and standards such as NIST, DISA, CPRA, GDPR, etc.
- Ability to collaborate effectively with fellow team members
- Strong written and verbal communication skills
- Experience configuring and monitoring security and data protection in Cloud systems using provider tools such as those provided by AWS, Azure and GCP
- Security certifications such as CISSP, CISA, CISM, CEH, or similar
- Knowledge of data protection and disaster recovery, and experience with related technologies and methods
- Understanding of tactics used by APT and other threat groups, and knowledge of computer forensic tools
- Experience in Developing a SecureDevOps for an AI/ML product
- Self motivated and self managed
- You are someone that others enjoy working with due to your positive attitude and technical competence
- Pragmatic approach to solving problems and collaboration
- Open-minded, passionate, but not ideological
- Biased towards automation and ensuring "it just works"
- Team-first attitude motivated by helping team members succeed
- Excellent health insurance benefits
- Stock options
- 401(K)
- Company sponsored lunch
- Friday socials
-
Security Engineer
1 week ago
Glocomms San Jose, United StatesGlocomms are partnered with a globally leading technology media firm in the search for an experience and highly technical Security Engineer to focus on further developing the enterprises security posture in areas on endpoint security, email security, application security, network ...
-
Security Engineer
1 week ago
AlfaTech San Jose, United StatesSecurity Engineer · About Us · At AlfaTech we believe in more than just engineering solutions; we believe in promoting a culture of agility, collaboration, and inclusion. As a leading consulting engineering firm, we provide thoughtful engineering design that is technologically fo ...
-
Security Engineer
1 week ago
eTeam San Jose, United StatesTitle: Senior Security Analyst · Location: New York NY, Basking Ridge NJ, Dallas TX, Denver CO, and San Jose, CA (Hybrid) · Duration: Months · Years of Experience: 7-10 years · The Product Security Team ensures security by design product engineering and architecture for clien ...
-
Security Engineer
1 week ago
Glocomms San Jose, United StatesGlocomms are partnered with a globally leading technology media firm in the search for an experience and highly technical Security Engineer to focus on further developing the enterprises security posture in areas on endpoint security, email security, application security, network ...
-
Security Engineer
1 week ago
InterSources San Jose, United StatesTitle: Security Engineer · Location: ustin, TX (3 days onsite per week) · Duration: Long term contract · Job #: 89534 · Last date: Dec 09, 2022 · Additional Comments: Must understand all aspects of security engineering. Should be able to: · Identify vulnerabilities through t ...
-
Security Engineer
2 weeks ago
eTeam San Jose, United StatesTitle: Senior Security Analyst · Location: New York NY, Basking Ridge NJ, Dallas TX, Denver CO, and San Jose, CA (Hybrid) · Duration: Months · Years of Experience: 7-10 years · The Product Security Team ensures security by design product engineering and architecture for client ...
-
Security Engineer
16 hours ago
Zscaler San Jose, United StatesAbout Zscaler · Zscaler (NASDAQ: ZS) accelerates digital transformation so that customers can be more agile, efficient, resilient, and secure. The Zscaler Zero Trust Exchange is the company's cloud-native platform that protects thousands of customers from cyberattacks and data l ...
-
Security engineer
6 days ago
QData San Jose, United States contractSkills needed In-depth & hands-on experience with identity and access management network security data protection cryptography and penetration testing. In-depth & hands-on with architecting developing or maintaining secure cloud solutions such as Google Cloud Platform and AWS. In ...
-
Security Engineer
1 week ago
TEKsystems Santa Clara, United StatesOpen to new opportunities? Join this leader in electronics and semiconductor manufacturing as an Email Security Engineer Hybrid to Santa Clara, Ca · Description: · • The security engineer is part of the security group responsible for developing and implementing security projects ...
-
Sr Engineer, Security Engineering
2 weeks ago
F5 Networks San Jose, United StatesSr Engineer, Security Engineering page is loaded · Sr Engineer, Security Engineering · Apply remote type Hybrid locations San Jose time type Full time posted on Posted 30+ Days Ago job requisition id RP · At F5, we strive to bring a better digital world to life. Our teams empow ...
-
Product Security Engineer
1 week ago
PER International San Jose, United StatesAutomotive Product Security Engineer (San Jose and San Diego CA/ Seattle, WA) · The Company: · Our Client is one of the world's largest global Top-tier Semiconductor Companies. Their chips are used by some of the biggest names in the tech industry, and they are helping to shape t ...
-
Enterprise Security Engineer
1 week ago
Source Technology San Jose, United StatesEnterprise Security Engineer · Fulltime Onsite - San Jose, · Job Description · An exciting opportunity to join our team as an Enterprise Security Engineer. The successful applicant will work to protect our company's computer systems and networks from threats. · Responsibilities ...
-
Enterprise Security Engineer
6 days ago
Glocomms San Jose, United StatesSocial Media · San Francisco Bay Area (5 days/week on site) · Glocomms is partnered with a social media giant looking to expand their global IT Security team with an experienced Enterprise Security Engineer. The IT Security team serves as an internal partner to business units acr ...
-
Security Engineer AppSec
1 week ago
CyberTec San Jose, United StatesApplication Security · Penetration testing · Excellent AWS security skills. · Need senior candidates · Remote role · Rate: $80-90/hr · Employment Type: Contract Client: Business Wire City: State: Status: ccepting Candidates Description: We are seeking a skilled and experienced ...
-
Enterprise Security Engineer
2 days ago
Phaidon International San Jose, United States· Enterprise Security Engineer · Location: San Jose (on-site) · Glocomms are partnered with a globally leading technology media firm in the search for an experience and highly technical Security Engineer to focus on further developing the enterprises security posture in areas on ...
-
Product Security Engineer
5 days ago
PER International San Jose, United StatesAutomotive Product Security Engineer (San Jose and San Diego CA/ Seattle, WA) · The Company: · Our Client is one of the world's largest global Top-tier Semiconductor Companies. Their chips are used by some of the biggest names in the tech industry, and they are helping to shape ...
-
Network Security Engineer
1 day ago
Cloud Destinations LLC San Jose, United StatesLocation: Onsite in San Jose · Job Overview: · As an ACI Security Engineer, you will play a critical role in designing, implementing, and managing security measures within our network, with a strong focus on network segmentation and the integration of Cisco Firepower Threat Defen ...
-
Security Engineer
1 day ago
NVIDIA Santa Clara, United States Full timeNVIDIA has been transforming computer graphics, PC gaming, and accelerated computing for more than 25 years. It's a unique legacy of innovation that's fueled by great technology—and amazing people. Today, we're tapping into the unlimited potential of AI to define the next era of ...
-
Product Security Engineer
1 week ago
PER International San Jose, United StatesAutomotive Product Security Engineer (San Jose and San Diego CA/ Seattle, WA) · The Company: · Our Client is one of the worlds largest global Top-tier Semiconductor Companies. Their chips are used by some of the biggest names in the tech industry, and they are helping to shape ...
-
Security Engineer AppSec
1 week ago
CyberTec San Jose, United StatesApplication Security · Penetration testing · Excellent AWS security skills. · Need senior candidates · Remote role · Rate: $80-90/hr · Employment Type: Contract Client: Business Wire City: State: Status: · ccepting Candidates · Description: We are seeking a skilled and experien ...
Senior Security Engineer - San Jose, CA, United States - Industrialinnovationfund
Description
Senior Security Engineer
VIMAAN is looking to hire a talented senior security engineer to join our exceptional engineering team developing the next generation of information systems for the warehouse. You will work with cross-functional teams, plan, and prepare to block security threats, identify potential threats, and implement remediation. You will define, implement and test security strategies, report on incidents, keep track of the status of network and system security, and raise security awareness amongst employees.
Scope of work will span the breadth of product development and deployment. You will ensure the product, its deployment, and integration into the infrastructure are not vulnerable to security risk while complying with contemporary security guidelines. You will also be responsible for interfacing with third parties to conduct threat assessment and implement corrective actions. You will be responsible for meeting specific industry InfoSec guidelines, standards and regulations, such as medical or government, and driving product compliance.
You will thrive in this role if you are curious, innovative, relish complexity, pay attention to detail, and work to make things a little better every single day. We expect you are smart, humble, hardworking and, above all, collaborative. If this sounds like a good fit for you, reach out for the start of a great journey together.