Ranking: 3
We are looking for Cybersecurity specialists to work integrated into our client Architecture team in order to support adoption and implementation of new IT Security capabilities specially in the following fields:
CSPM, CWPP, ZTNA, Application Security Testing, Threat Management, Vulnerability Management
Requirements:
- Wide knowledge and solid base of IT Security principles and sub-domains
- Undestanding of cloud models and cloud security principles in general
- Experience with security for particular cloud providers: Aure, AWS or Openshift Container Platform
- Ability to provide and implement solutions in all SDLC phases (from design to operation). This includes infrastructure and application security layers but also aspects related with the operation of security: monitoring and observability of security in runtime
- Knowledge of IT Security best practices, standards and frameworks. Examples: ISO2700X, NIST, Mitre ATT&CK, CIS benchmarks
- DevSecOps knowledge: integraton and automation of Cybersecurity in SDLC. Examples: DAST, SAST, SCA, SRE testing, secure image and container registry, Policy-as-Code for infrastructure security checks automation and guardrails, etc..
- Experience with at least one Application Security Testing solution: Fortify, Veracode, Checkmarx, Snyk (tool knowledge, definition of policies, definition of process for vulnerability remediation)
- Experience with CPSM and CWPP solutions
Nice to have:
- Experience with Thread Intelligence / SIEM tools such as Google Chronicle, Splunk and SOAR (PaloAlto Cortex / Demisto) will be a plus (very nice to have)
- Certifications in IT Security in general will be a plus
- Demonstrating experience and/or security certifications in a particular cloud provider: GCP, Azure, AWS, will be a plus
- Experience with PaloAlto Prisma Cloud
- Experience in Threat Management and Response automation (SOAR) with next generation SIEMs
About the Client:
Contractual Process and Relationship:
Ranking: 3
We are looking for Cybersecurity specialists to work integrated into our client Architecture team in order to support adoption and implementation of new IT Security capabilities specially in the following fields:
CSPM, CWPP, ZTNA, Application Security Testing, Threat Management, Vulnerability Management
Requirements:
- Wide knowledge and solid base of IT Security principles and sub-domains
- Undestanding of cloud models and cloud security principles in general
- Experience with security for particular cloud providers: Aure, AWS or Openshift Container Platform
- Ability to provide and implement solutions in all SDLC phases (from design to operation). This includes infrastructure and application security layers but also aspects related with the operation of security: monitoring and observability of security in runtime
- Knowledge of IT Security best practices, standards and frameworks. Examples: ISO2700X, NIST, Mitre ATT&CK, CIS benchmarks
- DevSecOps knowledge: integraton and automation of Cybersecurity in SDLC. Examples: DAST, SAST, SCA, SRE testing, secure image and container registry, Policy-as-Code for infrastructure security checks automation and guardrails, etc..
- Experience with at least one Application Security Testing solution: Fortify, Veracode, Checkmarx, Snyk (tool knowledge, definition of policies, definition of process for vulnerability remediation)
- Experience with CPSM and CWPP solutions
Nice to have:
- Experience with Thread Intelligence / SIEM tools such as Google Chronicle, Splunk and SOAR (PaloAlto Cortex / Demisto) will be a plus (very nice to have)
- Certifications in IT Security in general will be a plus
- Demonstrating experience and/or security certifications in a particular cloud provider: GCP, Azure, AWS, will be a plus
- Experience with PaloAlto Prisma Cloud
- Experience in Threat Management and Response automation (SOAR) with next generation SIEMs
About the Client:
Contractual Process and Relationship: