Penetration Tester Consultant

Overview:

• We are a leading AI-driven Global Supply Chain Solutions Software Product Company and one of Glassdoor’s “Best Places To Work India 2023”

.

Scope:

• The role of the Penetration Tester Consultant is to work closely with information technology and development staff to help implement secure systems, tools, and processes.
• As a Tester, you will be responsible for performing and determining the technology that is implemented within the Cloud security practice.
• Being an expert and mentor on all technologies used by the security staff, researching new security trends and improvements, getting new staff members up to speed on internal projects and new development, and providing direction and management of assigned projects.
• Additionally, engineers will look for opportunities to collaborate and educate other departments that are impacted by security policies and processes.

What you’ll do:

• Develops and applies Blue Yonder security policies and procedures to ensure Blue Yonder applications are available for customer use and interaction.
• Provides guidance to PD teams to assist them in meeting application security policies.
• Collaborates with information security, product development teams, customer support, and Blue Yonder customers to resolve security related issues/concerns.
• Responds to customer queries concerning the security analysis of Blue Yonder Products.
• Supports the sales organization by providing responses to application security related questions in RFP's and customer queries.
• Manages the utilization and implementation of corporate application security testing tools and processes.
• Analyzes output from product software security scans and advises development teams on security vulnerabilities and recommends  prevention/ mitigation methodologies.
• Manages the relationship with Security Partners and vendors and coordinates external security testing for Blue Yonder Products.
• Analyzes results of external testing and provides guidance to product teams on issue mitigation approaches.
• Briefs senior management on the state of product security.
• Working with internal and external resources, manage the development and implementation of application security training for the organization.
• Manages the rollout of strategic corporate application security initiatives and application changes.
• Escalates and notifies management of security policy/procedure discrepancies and recommends changes to correct deficiencies.
• Generates reports for audit control purposes.
• Maintains system and application security by administering application security policies and procedures.
• Maintains up to date documentation of problem resolution for audit and reference purposes.
• Provides appropriate guidance/training to associates on Blue Yonder application security processes, procedures, applications and systems to ensure Blue Yonder meets or exceeds expected customer satisfaction levels.
• Reviews application security logs to monitor for anomalous activities and guides development teams in the necessary corrections.
• Works with internal and external resources to resolve application security issues within prescribed time frames.
• Works with Blue Yonder associates and staff support functions to analyze user needs, test and develop solutions based on business requirements.
• Mentors and coaches application security champions within the Development and R&D organizations.
• Is an active member of the Technology Review Committee and provides security review and analysis for third party component requests

What we are looking for:

• A bachelor's or master's degree in computer science, information technology, or a related field.
• At least 10 years of cloud security experience, focusing on penetration testing.
• A strong understanding of cloud computing technologies, including Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS).
• Knowledge of security frameworks such as ISO 27001, NIST Cybersecurity Framework, and CIS Controls.
• Familiarity with cloud security platforms like Microsoft Azure, Amazon Web Services, and Google Cloud Platform.
• Strong analytical and problem-solving skills, with an ability to think strategically and tactically about complex cloud security issues.
• Excellent communication skills, including communicating complex technical concepts to non-technical stakeholders.
• The ability to work well in a team environment and collaborate effectively with other IT professionals.
• The ability to manage multiple projects and priorities and meet deadlines in a fast-paced environment.
• Attention to detail and a commitment to quality work.
• Certifications such as Certified Cloud Security Professional (CCSP), Certified Information Systems Security Professional (CISSP), or Certified Cloud Architect (CCA) are preferred.

Our Values

If you want to know the heart of a company, take a look at their values. Ours unite us. They are what drive our success – and the success of our customers. Does your heart beat like ours? Find out here: Core Values

Diversity, Inclusion, Value & Equality (DIVE) is our strategy for fostering an inclusive environment we can be proud of. Check out Blue Yonder's inaugural Diversity Report which outlines our commitment to change, and our video celebrating the differences in all of us in the words of some of our associates from around the world.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status.