Information / Cyber Security Consultant (Cloud Security)

Location

Pune | India

Job description

• This role spans our Software-as-a-Service (SaaS) products, current and future

• That product portfolio includes Vuforia - a premier suite of Augmented Reality SaaS products, Onshape - a next-generation SaaS product development platform that helps businesses of all sizes modernize and accelerate their design and manufacturing processes, and ATLAS - the project code name for our underlying SaaS common services platform
• PTCs SaaS application security team leads the charter of ensuring security by design
• We identify security threats at scale and enable development teams to fix them before deployment to production
• Join us to help securely develop next-gen SaaS products
• Our SaaS Security Team is small but growing
• So, we all do what it takes and use all the skills in our personal arsenals to continue to evolve PTC s SaaS Security posture
• Our environment is fast, friendly, and dynamic
• Release teams run under agile methodologies, pushing new version of software at least once a month with goals to drive to even faster cycles

Day-To-Day:

• Provide security expertise to developer-led threat modeling for high risk applications
• Perform technical security assessments on our web, mobile and desktop applications
• Follow secure-by-default concepts and integrate appropriate security controls into PTC SaaS products
• Collaborate with product teams on custom security engineering solutions
• Not only identify issues but develop solutions to categorically prevent them from reoccurring
• Perform research in emerging areas such as AI/ML and apply concepts to the security domain
• Seek out opportunities to automate where appropriate
• Contribute code and security expertise to build an unified SaaS security program

Preferred Skills and Knowledge:

• Background in software engineering or development in a collaborative environment
• 2+ years of demonstrated ability using Python, C, C++, or Java
• Experience with containerization platform technology such as Docker, Kubernetes, Openshift etc
• Deep understanding of application architectures and design principles
• Experience with Threat Modeling applications using STRIDE or a similar framework
• Knowledge of common security flaws and mitigations as published by OWASP, Miter attack framework, etc
• Knowledge of building resilient, highly available systems
• Demonstrated ability to evaluate the security of a system, see patterns, and investigate complex issues
• A results-oriented mindset with excellent interpersonal and communication skills
• Deep empathy for customers including internal developers
• Passion about enabling our developers to deliver new features securely

Preferred Experience:

• Bachelors Degree and 3+ years of experience in Application or Product Security
• Prior SaaS experience a big plus

Basic Qualifications:

• Prefer Information Security or Engineering degree
• CCSP, CISSP, CCSK, GCLD, GCSA or comparable certifications are a plus

Job tags

Salary