Multi Cloud Security Specialist

Company Description

Bosch Global Software Technologies Private Limited is a 100% owned subsidiary of Robert Bosch GmbH, one of the world's leading global supplier of technology and services, offering end-to-end Engineering, IT and Business Solutions. With over 22,700 associates, it’s the largest software development center of Bosch, outside Germany, indicating that it is the Technology Powerhouse of Bosch in India with a global footprint and presence in the US, Europe and the Asia Pacific region.

Job Description

5+ Years experience in a security-related domain and technologies 

3+ Years experience in security architecture space

2+ Years of Hands-On experience in the cloud security platforms such as AWS, Azure or Google)Familiarity with security frameworks CSA, NIST, CIS, PCI DSS, etc.

Technical skills to identify and assess cloud security vulnerabilities and risksBuild in-house security frameworks to establish a state-of-the-art security culture inside the techDemonstrated knowledge of multi-cloud platforms (AWS, GCP, Azure, OCI, etc.) to be able to identify and prioritize potential security challenges.

Experience with assessment, development, implementation, optimization, and documentation of a comprehensive and broad set of security technologies and processes (secure software development (Application Security), data protection, cryptography, key management, identity and access management (IAM), network security) within SaaS, IaaS, PaaS, and other cloud environments.

Knowledge with native cloud security services Azure Defender, AWS Trusted Advisor, Amazon Inspector/Google Cloud Security Scanner, AWS Configuration.

Conduct security design/infrastructure reviews, and security architecture reviews.

Contribute to the building, operating, and maintaining of the cloud security infrastructure to improve prevention, detection, and response capabilities.

Understanding of microservices architecture, CI/CD pipelines, containers, and experience in implementing security measures to safeguard containerized applications throughout the development and deployment processes.

Ability to develop and automate in-house security tools ensuring seamless integration and enhanced protection against threats.

An understanding of concepts like Zero Trust Architecture, defense in depth, SASE.

Automate infrastructure security and develop/implement security automation to solve manual effort on a day-to-day basis.

Working knowledge of common and industry standard cloud-native/cloud-friendly authentication mechanisms (OAuth, OpenID, etc).Experience with deployment orchestration, automation, and security configuration management (Jenkins, Puppet, Chef, Cloudformation, Terraform, Ansible) preferred.

Experience with service-oriented architecture for cloud-based services.Experience working with cloud security and governance tools, cloud access security brokers (CASBs), and server virtualization technologies.

Experience with enterprise applications (architecture, development, support, and troubleshooting).

Experience and exposure to threat modeling and design reviews to assess security implications and requirements for introduction of new technologies.

Experience representing technical viewpoints to diverse audiences and in making timely and prudent technical risk decisions.

Experience with enterprise architecture and working as part of a cross-functional team to implement solutions.

Ability to work independently with minimal direction; self-starter/self-motivated.

Ability clearly explain identified risks and recommended remediation.

Ability to clearly communicate technical concepts to all audiences

Technical writing experience.

Minimum of 3 technical certifications – AWS Certified Security – Specialty, CSA Certificate of Cloud Security Knowledge (CCSK), ISC2 Certified Cloud Security Professional (CCSP).

Qualifications

B. E/M. E/B.Sc/M.Sc (Computer/Electronics)

Additional Information

8 to 10 years - Minimum of 2-4 years’ experience with Security Architect assessment and implementation