Security Automation Engineer - Bengaluru, India - DigiCert

    DigiCert
    DigiCert Bengaluru, India

    2 weeks ago

    Default job background
    Technology / Internet
    Description

    Security Engineer

    The Security Automation Engineer will join DigiCert's crusade in delivering world-class Cyber Trust capabilities, continuously advancing global security operations by building programs to further strengthen DigiCert's Security hygiene posture as well as activities to continuously evolve crisis response functions. This engineer will be a key resource in helping build security solutions the enable the business.

    This exciting opportunity empowers strategic collaboration, joining forces across multiple business areas, and engineering scalable systems to achieve DigiCert's common vision.

    Job Summary:

    We are seeking a detail-oriented and experienced Security Automation Engineer to join our enterprise security team. The ideal candidate will have a solid understanding of cyber threat prevention systems and the ability to analyze and mitigate risks. This role involves monitoring our networks for security breaches, investigating security incidents, and implementing protective measures.

    PRIMARY RESPONSIBILITIES AND COMPETENCIES

    · Triage and recast vulnerabilities based on business risk

    · Partner with business units to provide centralized, platform-driven integrated technical solutions for security posture and incident management.

    · Join forces with Product and Engineering to promote embedded security solutions, driving speed and agility of delivery.

    · Assess escalated anomaly detections and investigate security events, promoting a continuous improvement feedback loop for posture strengthening.

    · Perform threat modeling exercises.

    · Drive security risk and assessment systems, driving vulnerability management based on business risk and appetite thresholds.

    · Partner on third-party risk management lifecycle activities.

    · Develop program documentation to promote operational stability and scalability.

    · Support Leadership in strategic planning.

    · Develop security policies and standards, as needed.

    · Drive and support security identified remediation efforts.

    · Foster and promote a security-forward culture.

    · Mentor junior team members.

    · Other duties and responsibilities, as assigned.

    REQUIRED QUALIFICATIONS (EDUCATION, EXPERIENCE, &/OR CERTIFICATION)

    · Programming: Python, Bash, PowerShell, JavaScript

    · OS: Windows, Linux

    · Network Protocols: TCP/UDP/SSL/TLS

    · Tools: Splunk, Tanium, Kibana, Tenable, Atlassian, Crowdstrike, Burp, Metasploit, snort, Suricata

    · Must have experience working in Incident Response

    · 5+ years of experience in Information Security

    · Advanced level of knowledge of Information Security design concepts and principles

    · Experience with cloud-based identity providers, SSO, SAML, etc

    · Experience with vulnerability management technologies

    · Experience with Public Clouds

    · Experience with threat hunting and malware identification, analysis, and removal

    · CISSP required

    PREFERRED QUALIFCATIONS & EXPERIENCE

    · Bachelor's degree in network security or computer science

    · Master's degree in a technical discipline

    · Experience working in highly regulated environments.

    · 3-5 years of experience with SIEM technologies (preferably Splunk)

    · Advanced level of knowledge of IT frameworks and standards (NIST, COBIT, ITIL, ISO, PCI-PIN, GDPR, WebTrust)

    · Advanced level of experience with Incident Response.

    · Certified Information Systems Auditor (CISA)

    · AWS Solutions Architect