Lowongan Kerja : DevSecOps Engineer
Perusahaan : byOrange
Deskripsi Pekerjaan : About The Job:
We are looking for a passionate security professional who has a proven track record. Here, we will improve the security of the application and the company by focusing on building the automation and continuous checking. You will be part of the change and progress to the new way of security management.
Responsibilities:
- Perform regular monitoring to infrastructure,
- Build and Apply security checklist to infrastructure,
- Design, plan, develop and deploy Security Orchestration, Automation, and Response to infrastructure,
- Analyze security events and logs,
- Support for incident response investigations,
- Create daily and monthly reports,
- Collaborate with others security team for handling security technology, issue, incident, awareness,
- Participate in PCI DSS and ISO 27001 audit.
Requirements:
- Minimum 3 year’s experience in Information Security,
- Good communication skill, able to explain technical language to business users,
- Team player, able to work together with peers in the technology team and other employees,
- Experienced in hybrid infrastructure (OnPremises and Cloud),
- Experienced in using security defence technologies (such as SIEM, Firewall, etc),
- Familiar with MITRE ATT&CK Framework,
- Experienced in security incident and investigation,
- Understand where and when to apply cloud security controls on IaaS, PaaS and SaaS,
- Security & Identity Controls in cloud, IAM, WAF, Data Protection (DLP), Loggings, Cloud firewall, API functions and security policies,
- Able to understand architecture and network traffic flow in architecture diagram to accommodate security solution by applying security standards where applicable,
- Understand multi infrastructure architecture, e.g: on-premise connectivity towards hybrid cloud setup and what type of controls used,
- Solid understanding in data protection security standards eg: encryption in-motion/at-rest, encryption type and its mechanism applied,
- Familiar with General CIS Controls & NIST standards to apply security best practises,
- Cloud Security Posture Management(CSPM) knowledge will be an added advantage.
Powered by JazzHR
Perkiraan Gaji :
Lokasi : Jakarta
Tanggal : Thu, 09 Dec 2021 06:32:46 GMT
Kirim Lamaran!
