Security Engineer III
Innovaccer
Your Role
We at Innovaccer are looking for a Security Engineer-III who will be responsible to perform Application Security Assessment for web, desktop & mobile applications. This role will encompass the use of a broad range of security domains (VAPT, WAF, DDoS Protection, Data Security, CI/CD, Cloud Security, Secure Coding, Training). This role would be a great opportunity to learn and grow as you would be exposed to multiple security domains at single time.
A Day in the Life
⦁ This role requires being available on call during weekends and off hours.
⦁ Application Security – SAST, DAST, API Security, OWASP top 10, SANS 25
⦁ Penetration Testing – CVE, NIST, MITRE
⦁ Proficiency Manual Security Testing
⦁ Secure code review & Secure-SDLC
⦁ Comfortable with AWS, Azure, GCP and services AKS, EKS, ECR, ECS, Docker containers
⦁ Comfortable to work with opensource tools
⦁ Mobile App Security Assessment – Android App & iOS App (native & flutter)
⦁ Writing rules for Web Application Firewall & Network Firewalls
⦁ Vulnerability Management & Reporting
⦁ Skilled with CICD and work with automation tools such as Jenkins, Argo, Gitlab
⦁ Familiarization with Databases like Mongo, Redshift, PostgreSQL, Snowflake
⦁ Triage, Investigate, document, and report on security events
⦁ Governance of Cloud Infrastructure (AWS/Azure/GCP)
⦁ Understanding of Kubernetes & docker security
⦁ Creation of Golden images & cluster hardening
⦁ Work closely with DevOps, Engineering, Product departments to remediate security related issues and incidents
⦁ Proficiency in Scripting & Automation
⦁ CEH, OSCP, OSCE, Security+, CISSP or similar certifications is desired
⦁ Contributions to opensource community is desirable
What You Need
- ⦁ Bachelor’s degree in Information Technology, Computer Science Engineering preferred
⦁ Minimum of 5+ years of prior experience as a Security Analyst
⦁ Hands-on skills in Penetration Testing for Application & Infra both
⦁ Proficient in opensource tools & technologies
⦁ Skilled in tools like Kali Linux, Burp Suite, OWASP ZAP, Gitlab, etc.
⦁ Have good exposure to CI/CD
⦁ Exposure to core security technologies (SIEM, Firewalls, IDS/IPS, AV, DLP etc.).
⦁ Strong understanding of TCP/IP Protocols, network analysis, security applications and devices, vulnerability management, and standard Internet protocols and applications.
⦁ Understanding in one or more security information and event monitoring tools (SIEM).
⦁ Experience in major Cloud services like AWS, Azure & GCP
⦁ Ready to take up more responsibilities along-with existing role
⦁ Familiar with AWS Security Hub, AWS S3, Security Groups, AWS Inspector, Azure Security Center etc.
⦁ Familiar with Amazon AWS/Microsoft Azure services as an IaaS/PaaS containers (Dockers/Kubernetes)
⦁ Able to work independently, being a team player, ability to work well under pressure
⦁ Able to multi-task, prioritize, and manage time effectively.
⦁ Collaborates effectively and communicates efficiently.
⦁ Readily available 24x7 and willing to work outside work hours, weekends, & holidays.
Here’s What We Offer
- Generous Leave Benefits: Enjoy generous leave benefits of up to 40 days
- Parental Leave: Experience one of the industry's best parental leave policies to spend time with your new addition
- Sabbatical Leave Policy: Want to focus on skill development, pursue an academic career, or just take a break? We've got you covered
- Health Insurance: We offer health benefits and insurance to you and your family for medically related expenses related to illness, disease, or injury
- Pet-Friendly Office*: Spend more time with your treasured friends, even when you're away from home. Bring your furry friends with you to the office and let your colleagues become their friends, too. *Noida office only
- Creche Facility for children*: Say goodbye to worries and hello to a convenient and reliable creche facility that puts your child's well-being first. *India offices
Where and how we work
Our Noida office is situated in a posh techspace, equipped with various amenities to support our work environment. Here, we follow a five-day work schedule, allowing us to efficiently carry out our tasks and collaborate effectively within our team. Innovaccer is an equal-opportunity employer. We celebrate diversity, and we are committed to fostering an inclusive and diverse workplace where all employees, regardless of race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, marital status, or veteran status, feel valued and empowered.
Disclaimer: Innovaccer does not charge fees or require payment from individuals or agencies for securing employment with us. We do not guarantee job spots or engage in any financial transactions related to employment. If you encounter any posts or requests asking for payment or personal information, we strongly advise you to report them immediately to our HR department at px@innovaccer.com. Additionally, please exercise caution and verify the authenticity of any requests before disclosing personal and confidential information, including bank account details.