BookMyShow
This listing was posted on hirist.
BookMyShow - Information Security Engineer I - DevSecOps (2-4 yrs) Mumbai
Location:
Mumbai
Description:
Your Role :BookMyShow is looking for a skilled information security analyst to be part of our InfoSec team. As information security engineer, you will be responsible for monitoring, fixing the security issues, interacting with different teams regarding security issues, and documenting security incidents.1. Conduct Vulnerability Assessments, Penetration Testing, and Source Code reviews.Automate Technical tasks in CI/CD through use of APIs and applicable set of tools.2. Perform Application source code security reviews for APIs, middleware, frontends in Java,3. Exploit security flaws and vulnerabilities with attack simulations on multiple application platforms like Web, iOS, Android and cloud platform.4. Perform SAST & DAST and improve SDLC.5. Develop solution architecture and blueprints based on business technology and security objectives.6. Research and maintain secure coding guidelines.7. Perform Security Architecture and Low-Level Application Security Design review involving:Data Protection, Authentication and Authorizations, Web Application Security and Network Security.8. Collaborate with product teams to build secure products and achieve cybersecurity.9. Maintain active understanding of industry practices for secure software development and incident response.10. Manage WAF and applications pertaining to application layer protection.11. Assess adequate access controls based on principles of least privilege and need-to-know, configuration baseline12. Assist in defining and implementing security programs, policies, procedures, and best practices to proactively address security concerns13. Participate in cyber incident responses to provide guidance related to cyber security risks and control assuranceYour Checklist :- Zealous to un-learn & re-learn cyber security practices in a "Cloud Native- DevOps Only"environment.- Good Network and Security knowledge (Routing & Switching, Firewalls, proxy, VPN, IDS/IPS, and other security products) and understanding of OSI layers in networking and standard/non-standard protocols and service ports- 1-4 years' experience in Application Security, Penetration Testing, DevSecOps.- Excellent skills with few of the Application Security Testing tools such as: Burpsuite, OWASP, ZAP, SQLMap, Kali, etc.- Able to work with cross functional teams like Site Reliability, Tech Support, etc.Experience with scripting languages such as : - Python, bash, PowerShell etc.- Knowledge of Kubernetes and Docker containers.- Knowledge of OWASP Top 10 and SANS Top 25.- Ability to balance & prioritize between strategic & tactical outcomes.- Ability to operate, decide & evolve in ambiguous situations.- Curiosity to learn & adopt emerging technologies.- Strong interpersonal skills as well as excellent written and verbal communication skills.- Self-motivated and individual contributor. (ref:hirist.tech)
Visit Our Partner Website
This listing was posted on another website. Click here to open: Go to hirist
Important Safety Tips
- Always meet the employer in person.
- Avoid sharing sensitive personal and financial information.
- Avoid employment offers that require a deposit or investment.
To learn more, visit the Safety Center or click here to report this listing.
More About this Listing: BookMyShow - Information Security Engineer I - DevSecOps (2-4 yrs) Mumbai
BookMyShow - Information Security Engineer I - DevSecOps (2-4 yrs) Mumbai is a Engineering Engineer Job at Bookmyshow located in India. Find other listings like BookMyShow - Information Security Engineer I - DevSecOps (2-4 yrs) Mumbai by searching Oodle for Engineering Engineer Jobs.
BookMyShow - Information Security Engineer I - DevSecOps (2-4 yrs) Mumbai is a Engineering Engineer Job at Bookmyshow located in India. Find other listings like BookMyShow - Information Security Engineer I - DevSecOps (2-4 yrs) Mumbai by searching Oodle for Engineering Engineer Jobs.