Senior Specialist Cybersecurity - BAS Engineering

Experience Level: 8+ years

Location: Hyderabad /  Bengaluru

Responsibilities Include:

The overall objectives and responsibilities for this position are to:

·         Maintain, Update, schedule, and run breach and attack simulations

·         Analyze and interpret breach and attack simulation results

·         Identify security control shortfalls, validate log/alerting flows, and prioritize vulnerability remediation efforts by exposure and business criticality

·         Stay current with emerging threats and work with vendor to ensure simulations exist for emerging threats

·         Work with security control owners to guide breach and attack finding remediation and retest after remediation

·         Make recommendations for security posture improvements based on analysis of breach and attack simulation trends

·         Work with senior analysts and leadership to develop relevant BAS dashboards to represent program value

·         Quantify risk reduction due to breach and attack simulation program

·         Leverage APIs and automation techniques to integrate BAS with other security tools

·         Maintain awareness of threat landscape to drive BAS scenarios and inform defense strategies

Required skills:

·         Overall – At least 8+ years of cyber security experience, with a focus on breach and attack simulation or other offensive security discipline.

·         Offensive security skills such as penetration testing or vulnerability assessment

·         Cybersecurity fundamentals: Understanding and experience in application of security best practices and fundamentals as well as familiarity and hands on experience with common security controls such as firewalls, intrusion detection and prevention, web application firewall, endpoint security, data loss prevention, and web proxies.

·         Networking fundamentals: Understanding and hands on experience with networking technologies such as network addressing, routing and routing protocols, and LAN technologies.

·         Cloud fundamentals: Understanding of cloud fundamentals as well as hands on experience working within cloud environments as well as deploying cloud components

·         Basic Systems: Familiarity with common operating systems such as Windows, MacOS and Linux and experience in basic administrative tasks such as OS native security controls, networking, and patch management

·         Experience in security operations environment responding to alerts and incidents.