Senior Staff Security Engineer

Information Technology Bangalore, India


Description

The NextNav Security Team is responsible for evolution and implementation of our global enterprise security strategy in partnership with technology leaders across the organization.

We are seeking a Sr. Security Engineer to grow with NextNav global security team. This job requires the ability to work with multiple teams to deliver coordinated solutions with the agreement from other domain specialists and stakeholders across both IT and the Business. The role will serve as a domain specialist in the areas of cloud security, incident management, SOC/SIEM implementation, management and automation. The primary responsibilities are assessing, designing, building, implementation, and testing, of security tools within our Cloud based IT Infrastructure, systems and solutions.

Required Skills:

The candidate’s responsibilities include, but are not limited to:

· Experience with various enterprise technology domains such as cloud architecture security (AWS, Azure and/or GCP), networking, cryptography, identity and access management, and virtualization and containers.

· Experience in SOC, SIEM, SOAR tool implementation and customization.

· Incident response and management expertise.

· Evaluate the security of cloud services and establish baseline control requirements.

· Performing hands-on Cyber security risk assessments of both new and existing in house and vendor-based systems. Identify security gaps and make recommendations for remediation.

· Have experience in the creation and execution of Cyber Security test procedures to verify and validate cyber requirements

· Experience with container and application vulnerability management tools (such as Tenable, Burp Suite, Checkmarx)

· Lead and provide direction for the Cyber Technical baseline of tools such as NESSUS, Nexpose/RAPID7, NMAP, NIPPER along with system configuration and hardening guidance.

· Knowledge of security frameworks & methodologies such as MITRE ATT&CK & OWASP

· Extensive knowledge of security controls and technologies, public key infrastructure (PKI), identity and access management (IDAM) systems, DevSecOps, endpoint detection and response (EDR), XDR, threat intelligence platforms, security automation and orchestration, deception technologies and DLP solutions.

· Experience with CI/CD pipeline workflows and tools (e.g., git, Bitbucket, Confluence, Jira)

· Experience developing hardening standards for cloud environments

· Evaluation of reported "bugs"/vulnerabilities to ensure appropriate triage

· Experience in Linux and Windows server knowledge for validation of vulnerabilities, troubleshooting scanning issues, agent installs and performance monitoring

Desired Skills:

· Bachelor’s degree in Computer Systems, Cyber Security, Electrical Engineering or similar with 8 to 10 years of related experience

· Exposure to attack surface management platforms such as Cycognito, Expanse or RiskIQ

· Work with and evolve the Security Operations toolsets and reporting to provide better vulnerability insight and create effective communications and reporting

· Definition, measurement and reporting on operational KPIs

· Creating reports & dashboards for senior management

· Knowledge of privacy and data protection regulations, e.g., GDPR, CCPA,

Any of the following certifications would be a plus:

· Certification in cloud security (e.g., AWS Cloud Security Architect, GCP Cloud Security Engineer, Azure Security Engineer)

· CISSP

· CEH or similar