Lead IT Administration & Security Engineer
Location
Itanagar | India
Job description
Greetings from Starkflow!!
We are hiring for a Lead IT Administration & Security Engineer for our direct client for a Full Time/Permanent opportunity.
About Client : The Client is a dynamic and innovative Trading leader dedicated to make crypto accessible for all and build an exchange that is guided by values of innovation, transparency and trust. Our client takes pride in fostering a collaborative and inclusive work environment, where creativity and excellence thrive. As we continue to expand, we are seeking a talented individual to join our team in the role of Lead IT Administration & Security Engineer.
What is in it for you: You will have the opportunity to work in a remote-first company with a flexible work culture. You will be a
part of a hyper growth community of young, vibrant and enthusiastic minds who passionately own and love
what they do. You will have complete freedom to chase down your goals without inhibitions and have a
front seat view of the crypto revolution as we make our way to the pages of history.
Title:
Location: Remote (Full-time/)
Desired Experience:
Key Skill-set:
Be responsible for the complete security layer and be a single point of contact for Security
deliverables across the organization.
- Plan future security posture to address the developing cybersecurity threat landscape.
- Perform network penetration testing, system vulnerability assessment & security configuration
review
- Evaluate, integrate and onboard security tools such as SAST, RASP, open source scanning into the
DevSecOps life cycle.
- Work with product development teams to encourage security as a design paradigm and establish
good practices & suggest development of risk mitigation plans, when needed.
- Integrate automated Application Security scanning into the build CI/CD pipeline.
- Handle regulatory audits and provide reports to the authorities for audit and compliance
- Maintain comprehensive documentation related to the product security processes and controls.
- Serve as the main contact for external security researchers, assessing and validating reported
vulnerabilities.
- Responsible for assigning bounty rewards in accordance with the severity of these vulnerabilities
and organizational policies.
You should have:
- Strong background in multiple security disciplines and technologies, including network and
endpoint security, identity and access management, end-user security services, SIEM, and security
automation/orchestration, including deployment in AWS environments.
- Experience in cloud security and AWS Security architecture
- Working experience with CI/CD pipeline, containerization (Kubernetes, Docker, etc) and
MicroServices
- Ability to coordinate on penetration testing/bug bounty programs and assisting with remediation
- Experience in writing scripts in any scripting language including Python.
- Hands-on experience with Application Security tools including SAST, DAST, and OSS
vulnerability scanning.
- Experience working with product development teams to identify and implement security
improvements.
- Knowledge and experience performing security assessments of web and mobile applications.
- Knowledge of OWASP top-10 and a deep understanding of web application and mobile app
vulnerabilities.
- Ability to work with minimal levels of supervision or oversight
Powered by JazzHR
N2KkWUGbnA
Job tags
Salary