Product Security Architect
Hybrid
Bengaluru
Posted 6 months ago
| Security EngineeringGlobally recognized Cyber Security Certifications (Advanced/Expert Level) – CSSLP / CCSMFirm with knowledge of OWASP, CVSS, FIPS 140-2/140-3 and DoD RMF7+ years of full-time information security experience [out of 12+ YOE) with emphasis on technical assessment (system/web application vulnerability assessment, penetration testing, white-box secure code analysis, etc.) and security architecture (design of security controls, secure system design, understanding of identity and authentication management, etc.)The Architect shall be capable of not only finding risks/issues but shall also suggest the best route to remediation, knowing the compensatory controls & guiding the product team for its closure.Sound understanding of security technologies/techniques like Cryptography, Algorithms, Public key Infrastructure (PKI) Certificate Authority (CA), Hardware/embedded authentication, OAuth, 2-factor authentication, and white-box code analysis.Experience with a range of security tools related to SAST (Static Application Security Assessment), DAST (Dynamic Application Security Assessment), Vulnerability Management, SCA (Software Composition Analysis), Penetration TestingThreat Modelling Tools etc.Product EngineeringExperience in working in a Product sector environmentKnowledge of Cloud Infrastructure [Platform as a Service] |
Job Features
| Job Category | IT |
| Experience | 9 - 13 years |
| Skills | information security, Cryptography, Algorithms |
| Positions | 1 |
| swetha@aimplusstaffing.com |