Preferred Experience:
? 4+ years of experience working with systems deployed on AWS
? 2+ years of technical experience in Incident Management for AWS Cloud solutions
? 2+ years of experience with network security, intrusion detection and response, security
incident management (SIEM)
? 2+ years experience using Splunk for Incident Management, Risk Management
techniques, Vulnerability Management, Web Application Firewalls, SOAR playbooks and
workflows and processes supported by Identity Management, Phishing handling, On-Call
systems, End point Detection and response, AWS cloud security tools.,etc.,
? Nice to have:
o Familiarity with some of the following concepts:
? SAST (Static Application Security Testing)
? DAST (Dynamic Application Security Testing)
? SCA (Software Composition Analysis)
? Image Scanning
? IaC (Infrastructure as Code)
o Familiarity with Java (including npm and Maven), Docker & Kubernetes
Professional Profile:
? Considered subject matter expert within discipline
? Solves complex problems; takes a broad perspective to identify innovative solutions
? Can either work independently on in teams
? Requests guidance in complex situations or when needed
? Interprets challenges and recommends best practices to improve processes
? Capacity to lead functional teams or projects to solve complex problems and deliver
solutions
? Communicates difficult concepts and negotiates with others to conclude on goal-centric
points of view
? Provides resolution support to wide array of issues that are complex in scope
? Contributes to departmental business planning and solution design
? Uses expert level Cyber Security knowledge base to complete tasks
? Intrinsic understanding of software development life cycles
? Excellent oral and written communication skills
? Knowledge of current and emerging security technologies, threats, and techniques for
exploiting security vulnerabilities in the code or application