Description
We seek a highly skilled, experienced, and self-motivated Senior Cyber Security Engineer. You will play a critical role in fortifying the security posture of Atlan, by implementing cutting-edge security best practices like Policy as Code and Shift Left Security and ensuring compliance with industry standards such as SOC 2, HIPAA, GDPR, and ISO27001.
What you will do?
- Be the subject matter expert for Information Security matters. Implement and manage security best practices that bolster the security posture of the organization.
- Identify security gaps, explore and Identify open source or 3rd party solutions that address the security gaps, and prove the ROI for each solution with a strong business use case.
- Partner with GRC engineers in driving cyber security initiatives covering : Cloud Security, Application Security, Endpoint Security, Data Security, Email Security etc
- inline with frameworks like SOC 2, ISO 27001, GDPR, NIST, and other data privacy and cybersecurity frameworks.
- Partner with GRC engineers in risk assessments and developing relevant policies, procedures, and guidelines for security compliance and support in security audits for various standards and client questionnaires.
- Develop internal capabilities to identify vulnerabilities, misconfigurations, and violations of best practices using Vulnerability Assessments, Penetration Testing, Threat Modelling, Security Review /Audits etc.
- Develop and maintain vulnerability management processes and procedures to streamline the identification, reporting, and resolution of security vulnerabilities.
- Manage VAPT partner(s) and collaborate with cross-functional teams to ensure that vulnerabilities are remediated in the defined SLA.
- Create dashboard/reports to communicate the performance of various security initiatives to the entire org such as External VAPT, Secret Scanning, SCA, SAST, DAST, and Internal VAPT.
- Stay up-to-date with the latest security threats, vulnerabilities, and best practices in vulnerability management.
- Use data/logs collected from a variety of tools (e.g Audit logs, access control logs EDR, identity provider, MDM, SaaS platforms, AWS, GCP, Azure, WAF, Application Logs, etc) to analyze, identify and mitigate potential threats/anomalies.
- Build response workflows and actions that auto-resolve false positives, enabling engineers to focus on relevant threats.
- Develop and automate security workflows, playbooks, and tools to improve the efficiency and effectiveness of security operations.
- Drive the implementation of Policy as Code methodologies to automate and enforce security policies throughout the organization.
- Advocate and identify Shift Left Security practices to embed security into the early stages of the development lifecycle.
- Partner with Cloud Infra and IT team in implementing shift left security practices, such as :
- Embedding security practices in SDLC & Cloud infrastructure.
- Embedding the GRC team approvals/reviews in day-to-day processes to enable better governance.
- Support security incident response in a cross-functional environment and drive incident resolution for internal and external threats.
- Carry out digital forensics as part of security incident investigation.
- Ensure that engineering teams understand the impact of an incident and derive corrective and preventive actions for themselves.
- Drive the security mindset across the organization in partnership with the GRC team.
- Create awareness/training content that forces engineering teams to embed a security shift left approach.
Vulnerability Management :
SOC :
Policy as a Code:
Shift Left Security:
Security Incident Management :
Security Training:
What makes you a match
- 5+ years of relevant industry experience in a security engineering or cloud infrastructure security team.
- Strong coding proficiency in Python /Go/ Shell etc.
- Strong technical knowledge of security principles and technologies such as, firewalls, IDS/IPS, DLP, Encryption, SIEM, UEBA, EDR, SOAR, Threat Intelligence, Web Proxy/Content Filtering, Active Directory, and PKI.
- Experience with industry standards and frameworks such as CVE, CVSS, NIST, SANS 25 and OWASP.
- Experience deploying solutions for monitoring of security best practices in cloud resources, CI/CD pipelines and Kubernetes platforms.
- Familiarity with infrastructure as code tools (Terraform, CloudFormation, etc)
- Familiarity with more than one cloud vendor (AWS, GCP, Azure).
- Ability to work alongside a remote team, using a data-driven mindset to propose and own engineering decisions.
- Bachelor’s degree in Computer Science, Information Technology, or a related field. Relevant certifications (e.g., CISSP, CEH, Security+).
- Proven experience working in a Security Operations Center (SOC) environment with a focus on vulnerability management.
- Excellent analytical and problem-solving skills, with the ability to prioritise and manage multiple tasks in a fast-paced environment.
- Strong attention to detail and a commitment to delivering high-quality results.
- Ability to work both independently and collaboratively as part of a team.
Jobs from our Partners
Power Platform/Dataverse Software Engineer Lead
Pittsburgh, PA
US
Golang Developer
Atlanta, GA
US
Cognitive AI Engineer
Jacksonville, FL
US
Splunk Engineer, Lead
Washington, D.C.
US
Software Engineer- On-Site
Tallahassee, FL
US
Other Jobs from Atlan
Software Engineer I
Remote
India
Senior Product Manager - Data Governance
Remote
Europe
Senior Software Engineer - Frontend
Remote
India
Software Engineer III - Frontend
Remote
India
Staff Engineer - Frontend
Remote
Europe
Similar Jobs
Senior Software Engineer
Bengaluru, India
Site Reliability Engineer
Raleigh, NC
Staff Site Reliability Engineer
Remote
Seattle, WA
Staff Site Reliability Engineer
Remote
Los Angeles, CA
Staff Site Reliability Engineer
Remote
San Francisco, CA
(IND) Senior Software Engineer
Bengaluru, India
There are more than 50,000 engineering jobs:
Subscribe to membership and unlock all jobs
Engineering Jobs
50,000+ jobs from 4,500+ well-funded companies
Updated Daily
New jobs are added every day as companies post them
Refined Search
Use filters like skill, location, etc to narrow results
Become a member
🥳🥳🥳 241 happy customers and counting...
Overall, over 80% of customers chose to renew their subscriptions after the initial sign-up.
Cancel anytime / Money-back guarantee