Infinite Computer Solutions
Location
Delhi | India
Job description
Title : Architect/ Senior Lead Information Security – Cloud(AWS) Sec Ops Security: • Deep understanding of security principles and
frameworks such as Zero Trust, Mitre Attack Framework, NIST, CIS, PCI-DSS, etc. • Architect level understanding of Information Security, Risk Management, and how it is applied to protect the confidentiality, integrity, and availability of information. • Expertise in core security technologies for OnPrem and Cloud such as IAM, EDR, SIEM, Firewalls, etc. • Competency in incident response and threat hunting. Understanding of attack vectors, investigation tooling, and forensics. • The ability to assess a design, associated diagrams, and documentation, understand its benefits and drawbacks, then communicate how the design can be improved to maintain the confidentiality, integrity, and availability of information it processes. • The ability to identify infrastructure or application security risks and propose how the identified risk can be managed. • Collaborate with internal teams and respective stakeholders to understand user requirements and implement secure infrastructure capable of passing internal or external security audits. • Experience with Security Frameworks such as NIST and CIS • Assist in defining and maintaining security guidelines and corporate standards. • Ability to establish high-level architectural and design diagrams and associated documentation. AWS: • Architect level knowledge: o Ability to design a solution using AWS services that meets architecture and design best practices and provides the necessary controls to ensure information is protected. o Ability to access existing solutions and identify challenges, gaps, and deficiencies with the design and propose a possible next generation architecture that prepare us for the future. o Strong understanding of cloud networking including the ability to design bleeding edge networks that incorporate security boundaries to protect users and information. o Comprehension of multi-tier architectures, how to incorporate data segregation, and integrate logging, monitoring, and alerting capabilities. IAC: • Terraform is our tool of choice: o The user should have a clear understanding and be able to deploy IAC using Terraform Best practices. o The ability to establish high-quality, secure CI/CD pipelines (GitHub) that meet IAC scanning policy requirements. o The ability to understand and execute with a shift-left mindset. • The ability to identify, monitor, and resolve issues related to infrastructure. • The ability to integrate security controls to ensure risks and vulnerabilities do not make it into production environments. General: • Excellent organizational, communication, presentation, and interpersonal skills. • Excellent architecture, and design documentation skills. • Problem solving and analytical mindset. • Must be adaptable, able to think strategically on their feet, understand and manage risk, and have good business acumen.Job tags
Salary
