As a part of the cybersecurity team, you will be asked to :
- Monitor the latest attack trends and market security threats to ensure we're ahead of any emerging risks; along with performing the occasional code reviews, you will look at both the overall roadmap and specifically focus on the security implications of the code.
- This could involve collaborating with developers to address any vulnerabilities.
- To help the overall business plan, KPIs and a technical "gap list" will be maintained for the products you will focus on.
- Participating in security audits and creating necessary reports are regular occurrences, helping us maintain compliance and identify potential weaknesses.
- Oversee penetration testing activities, working with other internal Red teams to identify and address system vulnerabilities.
- Training and knowledge sharing, either learning about new security technologies or educating colleagues on best practices.
Expanded Responsibilities:
- Secure cloud systems, addressing concerns with container and monolithic deployments in public clouds.
- Implementing US government standards, data impact assessments, and security controls (CJIS, SOC-2, ISO 27001, FedRamp, WCAG, and NIST 800-53).
- Support secure and efficient web applications, ensuring seamless REST-based interactions and an optimal user experience.
- Innovate with hybrid cloud-AI applications, leveraging AI and machine learning services.
- Software testing, bug tracking, and management of software deployment using Agile-related software tracking tools (Jira, Confluence, Testrails, OTRS, ServiceNow)
- Create and track metrics using Neculus, Google Sheets, and other related tools
- Work with incident response and security teams to implement processes and procedures in the event of an incident.
