Manager, Cyber Security

Systems & Firmware Bangalore, India


Description

The NextNav Security Team is responsible for evolution and implementation of our global enterprise security strategy in partnership with technology leaders across the organization.

 

We are seeking a Manager Cyber Security to grow with NextNav global security team. This job requires the ability to work with multiple teams to deliver coordinated solutions with the agreement from other domain specialists and stakeholders across both IT and the Business.

The role will serve as a domain specialist in the areas of cloud security, incident management & security threat modelling. The primary responsibilities are assessing, designing, building, implementation, and testing, of security tools within our Cloud based IT Infrastructure, systems and solutions. It is expected that the role will be involved in the product design process to ensure product enhancements are secure and compliant.

Required Skills:

The candidate’s responsibilities include, but are not limited to:

  • Experience with various enterprise technology domains such as cloud architecture security (such as Azure, AWS, GCP), networking, cryptography, identity and access management, and virtualization and containers.
  • Architect solutions to secure business-to-business initiatives, third-party relationships, outsourced solutions, and vendors.
  • Experience in security threat modelling tools and deception techniques.
  • Incident response and management expertise.
  • Evaluate the security of cloud services and establish baseline control requirements.
  • Performing hands-on IT security risk assessments of both new and existing in house and vendor-based systems. Identify security gaps and make recommendations for remediation.
  • Have experience in the creation and execution of Cyber Security test procedures to verify and validate cyber requirements
  • Lead and provide direction for the Cyber Technical baseline of tools such as NESSUS, Nexpose/RAPID7, NMAP, NIPPER along with system configuration and hardening guidance.
  • Knowledge of security frameworks & methodologies such as MITRE ATT&CK & OWASP
  • Extensive knowledge of security controls and technologies, such as Security Information and Event Management (SIEM) systems, intrusion detection/prevention systems (IDS/IPS), public key infrastructure (PKI), identity and access management (IDAM) systems, DevSecOps, endpoint detection and response (EDR), threat intelligence platforms, security automation and orchestration, deception technologies and DLP solutions.
  • Familiarity with cloud security solutions such as Web Application Firewalls (WAF), Cloud Access Security Brokers (CASB)
  • Experience with CI/CD pipeline workflows and tools (e.g., git, Bitbucket, Confluence, Jira)
  • Experience developing hardening standards for cloud environments
  • Experience with container and application vulnerability management tools (such as Tenable, Burp Suite, Checkmarx)
  • Evaluation of reported "bugs"/vulnerabilities to ensure appropriate triage
  • Experience in Linux and Windows server knowledge for validation of vulnerabilities, troubleshooting scanning issues, agent installs and performance monitoring

Desired Skills:

  • Bachelor’s degree in Computer Systems, Cyber Security, Electrical Engineering or similar with 10+ years related experience
  • Exposure to attack surface management platforms such as Cycognito, Expanse or RiskIQ
  • Evaluation of reported "bugs"/vulnerabilities to ensure appropriate triage
  • Work with and evolve the Security Operations toolsets and reporting to provide better vulnerability insight and create effective communications and reporting
  • Definition, measurement and reporting on operational KPIs
  • Creating reports & dashboards for senior management
  • Knowledge of privacy and data protection regulations, e.g., GDPR, CCPA,

Any of the following certifications would be a plus:

  • Certification in cloud security (e.g., AWS Cloud Security Architect, GCP Cloud Security Engineer, Azure Security Engineer))
  • SANS GIAC
  • CISSP or similar
  • CEH or similar