Cloud App Security Engineer
Bengaluru, India
Skylo Technologies
We are an NTN service provider, offering a service that enables smartphones, wearables, sensors, and other devices to connect by satellite, without requiring any special hardwareEvery company wants to change the world, and we are doing it. Skylo’s unique service allows standard cellular devices to simply connect directly over both cellular and satellite networks seamlessly for data, messaging, SOS and other critical applications. We are bringing hybrid cellular - satellite connectivity to ordinary cellular devices.
We have an open opportunity to join our team as a Cloud App Security Engineer, onsite, in Bangalore, India to ensure comprehensive security around development and maintenance of technology assets and partnerships for a next generation Satellite IoT service.
Responsibilities:
- Cloud Security Review: Conduct regular assessments and reviews of cloud deployments to identify security vulnerabilities, misconfigurations, and compliance gaps.
- Security Testing: Conduct security testing of web applications, APIs, container and mobile applications using a variety of tools and techniques, including static analysis, dynamic analysis, and penetration testing.
- Security Improvement Initiatives: Develop and implement strategies to continuously improve the security of cloud deployments, including enhancing security controls, implementing automation, and optimizing security configurations.
- DevSecOps Implementation: Lead the adoption of DevSecOps practices in cloud environments by integrating security into the software development lifecycle, including design, development, testing, deployment, and operations.
- Security Automation: Develop and maintain security automation scripts, tools, and pipelines to automate security tasks, such as vulnerability scanning, compliance checks, and security testing.
- Vulnerability Management: Identify and prioritize security vulnerabilities discovered during security testing and collaborate with development teams to ensure timely remediation.
- Security Incident Response: Develop and maintain incident response procedures for cloud environments, including monitoring, detection, investigation, and remediation of security incidents.
- Collaboration: Work closely with development teams, DevOps engineers, architects, and other stakeholders to ensure that security is integrated into all aspects of cloud deployments and operations.
- Documentation: Maintain accurate documentation of security policies, procedures, configurations, and incidents related to cloud deployments.
Requirements:
- 6 to 8 years of proven experience in security domain or similar role
- Strong understanding of cloud architecture and security principles, with experience in Google Cloud Platform, AWS, or Azure.
- Hands-on experience with DevSecOps tools and practices, such as infrastructure as code (IaC), continuous integration/continuous deployment (CI/CD), and security automation.
- Proficiency in scripting and programming languages, such as Python, PowerShell, or Bash.
- Strong understanding of web application security principles, common vulnerabilities, and attack vectors, such as OWASP Top 10 and SANS 25.
- Experience with security testing tools such as Burp Suite, OWASP ZAP, Veracode, or similar tools.
- Excellent communication and collaboration skills, with the ability to work effectively with cross-functional teams.
- Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field. Advanced degrees and industry certifications, such as CISSP, CEH or OSCP are a plus.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: APIs Application security Automation AWS Azure Bash Burp Suite CEH CI/CD CISSP Cloud Compliance Computer Science DevOps DevSecOps GCP Incident response IoT Monitoring OSCP OWASP Pentesting PowerShell Python SANS Scripting SDLC Veracode Vulnerabilities Vulnerability management
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Cybersecurity Analyst jobs
- Open Senior Cybersecurity Engineer jobs
- Open Security Operations Engineer jobs
- Open Information Security Officer jobs
- Open Principal Security Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Product Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Network Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Analyst jobs
- Open Security Consultant jobs
- Open IT Security Analyst jobs
- Open Security Operations Analyst jobs
- Open Manager Pentest H/F jobs
- Open Information Security Architect jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Agile-related jobs
- Open Network security-related jobs
- Open Risk assessment-related jobs
- Open Analytics-related jobs
- Open SOC-related jobs
- Open CISA-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open Vulnerability management-related jobs
- Open DevOps-related jobs
- Open DoD-related jobs
- Open Security Clearance-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open SaaS-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open PowerShell-related jobs