Lead - IT Security Engineer - Bengaluru, India - Bosch

    Bosch
    Bosch Bengaluru, India

    1 week ago

    Default job background
    Description
    Job Description

    Role
    :
    Lead IT Security EngineerYou will lead the planning and implementation of Security Engineering Process across projects/programs.

    In the process, you will have to build seamless security and define how developers view security, eliminate friction and improve Security natively.

    You will work closely with other Security functions, DevOps, Architects and Developers and QA to build highly reliable and secure products on cloud.

    As our Lead IT Security Engineer, you will be responsible for the security assessment of IT infrastructure & applications.

    Some of the key responsibilities will be implementing and managing security controls for web / custom applications hosted on-premises as well as onboarding SaaS / cloud applications, services which includes Secure configuration management for all Cloud native services, setting up processes and guidelines.


    You will have the following responsibilities:


    Understand the data/cloud ecosystem holistically and create a secure infrastructure by enforcing compliance with IAM principals including least privilege access, password management, audit logging, RBAC, user account lifecycle, certificate management and system authentication solutions(SSO/Federation).

    Minimum of 3 years of experience with AWS.

    Prepare reference architectures for Developer adoption- Secure Cloud Architecture.

    Devise and implement Serverless, Container and Kubernetes Security Strategy in the company.

    Deploy CNAPP(Cloud-Native Application Protection Platform)- CSPM , CWPP solutions at a large scale.

    Lead Remediation for findings from CSPM(Cloud Security Posture Management), work with developers on targeted remediation based on prioritization

    Experience working with Infrastructure-as-Code (IaC) to secure-by-design solutions to mitigate/fix cloud security issues(Terraform, Cloud formation,etc)

    Build Tools to assist Engineering teams with remediation of issues at scale across Cloud.


    Building security tooling to aid with protection of data stored in the cloud and compliant with relevant regulations- Enforcement of Cloud Data Protection Guidelines from Risk team.


    Improve Web App Firewalls (WAF), prior experience with WAF rule fine tuning a plus .Ensure early Identification of intrusion & attacks and implement countermeasures.

    Experience with solutions around DDoS and identify Anti-bot patterns for critical flows.

    Partner with SOC team for Security Incident Management and Remediation triage with Engineering across the ecosystem.

    Qualifications

    QualificationsBachelor's degree in Computer Science or a related technical discipline,or equivalent practical experience

    6-9 years specialist/architect with end to end experience in Enterprise Application.

    Additional Information

    Good to have1. Certificate of CISM/ CISSP/ CISA is preferred.2. Proficient in Systems Security Engineering Process3. Strong communication/stakeholder management skills4. Detailed understanding of cloud architecture/deployments5. Basic understanding of IoT architecture6. Risk assessment mindset with a passion for security7. Should have a good attitude to continuous learning /sharing knowledge, self-motivated team player8. Information Security Experience 5+ years.9. Completed the training ina. [SP-SEC-SPD-B] Secure Product Design – Bb. [SP-SEC-SCP-B] Secure Connected Products –B