| Immediate hiring for Security SME at Remote, Remote, USA |
| Email: [email protected] |
|
https://jobs.nvoids.com/job_details.jsp?id=2244554&uid= From: Naveen, Nityainc [email protected] Reply to: [email protected] Job Title: Security SME Location: Remote Role & responsibilities: The Information Security Lead will be responsible for providing leadership in the areas of Information Governance, Data Protection, and Cyber Security. This role involves developing and implementing policies and ensuring compliance with relevant legislation and standards where we operate. The Information Security Lead will play a crucial role in establishing a robust Information Security Governance framework, managing risks, and implementing effective security measures. Responsibilities: Review and assess security posture of Terraform configurations, Azure resources, and overall infrastructure design. Identify potential vulnerabilities and recommend mitigation strategies. Collaborate with the Azure Solution Architect to ensure security considerations are incorporated into the design phase. Configure security controls in Azure for access management (Azure Active Directory), data encryption, threat protection, Web Application Firewall (WAF), and activity logging, following documented best practices. Participate in security discussions with stakeholders and provide recommendations for minimizing risks and ensuring compliance with security policies and regulations (including relevant data privacy regulations). Maintain a focus on continuous learning to stay up-to-date on the latest cloud security threats, vulnerabilities, and best practices for securing cloud environments, proactively identifying and mitigating potential risks. Oversee and potentially conduct regular security assessments of the cloud environment (penetration testing may require collaboration with external specialists). Collaborate with the Technical Lead to implement security controls during infrastructure deployment using Azure security features and IaC security best practices. Work with DevOps teams to integrate security considerations into the development and deployment pipeline. Manage compliance with industry security standards (e.g., ISO 27001) (may vary depending on project requirements). Develop and implement a compliance strategy for the cloud project (may vary depending on project requirements). Promote awareness of security policies and procedures within the project team. Investigate suspected security incidents and manage security incidents according to established procedures. Provide reporting on security risks and mitigation efforts to relevant stakeholders. Qualifications: Strong understanding of cloud security principles and best practices (secure design principles, access controls, data encryption, threat protection, incident response, web application security). In-depth knowledge of Azure security features and configuration options (Azure Active Directory, Azure Security Center, Azure Key Vault, Azure Defender for VMs/Cloud Apps, Azure WAF). Participate in and lead EPIC (Electronic Protected Health Information) migration projects to Azure, ensuring compliance with healthcare data regulations (if applicable). Knowledge of infrastructure security with a focus on IaC security best practices. Experience in security assessments, penetration testing methodologies (may not require hands-on expertise), and security incident response procedures. Excellent communication, collaboration, and presentation skills. Ability to work independently and take initiative in identifying and addressing security risks. Strong analytical and problem-solving skills. Understanding of relevant data privacy regulations (e.g., GDPR, HIPAA) may be required depending on the project. Keywords: Immediate hiring for Security SME [email protected] https://jobs.nvoids.com/job_details.jsp?id=2244554&uid= |
| [email protected] View All |
| 06:42 PM 11-Mar-25 |