Overview
Skills
Job Details
Description Of Services:
At least 7+ years of experience in the IT industry with strong technical knowledge on Cyber Security & Cloud security services.
Minimum 5+years of experience in leading any major security domains like Cloud Security Engineering, Security risk management, DevSecOps, IT Compliance, Information Security assessments, Security project management.
Lead and mentor a team of Security Engineers, fostering a culture of collaboration, innovation, and continuous improvement.
Experience in designing and implementing a Secured and highly available, fault-tolerant architectures for cloud-based applications.
Good understanding of security controls related to regulatory requirements, such as NIST, PCI, ISO 27001, HIPAA compliance etc
Strong experience working on enterprise security solutions such as WAF, IPS, DDOS, and SIEM.
Experience working on managing alerts and insights from security solutions like SIEM, SOAR, CSPM, EDR & AppSec toolsets.
Strong experience working on industry leading security toolsets like Splunk ES, Trend Micro, Prisma, SonarQube, Tenable, and Cloud native security services.
Ensure compliance with regulatory standards & internal policies across all IT systems and processes.
Experience in performing and/or participating in technical assessments in direct support of compliance efforts such as (FedRAMP, HIPAA, PCI, GxP, SOC2, ISO27001, ISO27002) Conduct comprehensive security assessments and actively manage the vulnerability lifecycle.
Monitor and analyze the organizations security posture and report on threats, breaches, and security weaknesses.
Coordinate with cross-functional teams to resolve security issues and enhance the overall security infrastructure.
Experience in developing and reviewing system security plans, information security policies and procedures, contingency plans, incident response plans, etc. Update & maintain security policies, procedures, and guidelines in accordance with regulatory requirements.
Ability to drive incident response process, including investigation and reporting of security incidents.
Experience creating security reports for senior management and executives. Architecture certification (Google, Amazon, Azure) from a major cloud platform. Stay current with emerging security trends, threats, and technologies.
Must be CISSP certified.
Deliverables:
-Process Flows
-Mentor and Knowledge transfer to client project team members
-Participate as primary, co and/or contributing author on any and all project deliverables associated with their assigned areas of responsibility
-Participate in data conversion and data maintenance
-Provide best practice and industry specific solutions
-Advise on and provide alternative (out of the box) solutions
-Provide thought leadership as well as hands on technical configuration/development as needed.
-Participate as a team member of the functional team
-Perform other duties as assigned.
CST provides its clients with complete, cost-effective, end-to-end personnel solutions across a range of industrial domains. CST's mission is to empower businesses around the world to make better, faster operational decisions.