Manager, Cybersecurity Eng Cloud and App Security
- Merck Sharp
- 3 - 6 years
- Hyderabad
- 2 months ago
- Email to a friend
- Report this job
Job Description
Role Overview
As a Cybersecurity Engineer, you will be responsible for designing, implementing, and maintaining security measures to protect the organizations computer systems, networks, and data from cyber threats. This role will involve a combination of technologies, processes, and practices designed to safeguard data, applications, and networks from threats like malware, phishing, and data breaches. You will be tasked with identifying vulnerabilities, supporting the response to incidents, and ensuring that security protocols and controls are adhered to. Your role is vital in safeguarding critical assets and ensuring compliance with legal and regulatory standards.
What will you do in this role:
- Contribute to the development of enhanced cloud and application security control integrations and architectural best practices.
- Contribute to the development and implementation of product security policies and standards to ensure that application, cloud services and infrastructure meet organizational security requirements.
- Help maintain and monitor security tools and dashboards, ensuring that applications deployed in our environments adhere to organizational security standards and compliance requirements.
- Identify and prioritize adoption of our security tools within other teams ensuring the inputs and outputs are fully integrated enabling a complete security function.
- Follow standard approaches and established design patterns to create new designs for systems or system components. Identify and resolve minor design issues.
- Assist in implementing and maintaining specific security controls as required by organisational policy and local risk assessments and contribute to identifying risks that arise from potential technical solution architectures.
- Monitor and log the actual service provided, compared to that required by service level agreements.
- Undertake low-complexity routine vulnerability assessments using automated and semi-automated tools and contribute to evaluating and documenting the scope of results.
- Design, implement, test, document, and support integration of security tools and technologies in pipelines, Also, assist the product teams in related activities.
- Assist in maintaining security infrastructure and performing system updates.
- Investigate minor security breaches in accordance with established procedures. Assist users in defining their access rights and privileges and perform non-standard operational security tasks. Resolve security events and operational security issues.
- Work closely with cross-functional Infrastructure teams on Automation and Orchestration.
- Create and document detailed designs for simple software applications or components. Apply agreed modelling techniques, standards, patterns, and tools.
- Work within a matrix organizational structure, reporting to both the functional manager and the project manager.
What should you have:
- Bachelors degree in Information Technology, Computer Science or any Technology stream.
- Working experience in cloud environments AWS must have and good to have Azure, or GCP.
- Understanding of OWASP Top 10 security risks and mitigation strategies, relevant NIST standards, and Zero Trust principles.
- Familiarity with programming/scripting languages like Python, Bash, Terraform, Ansible, JSON, PowerShell, or JavaScript for automating tasks.
- Familiarity with software development/delivery lifecycle and related technologies
- 3+ years of hands-on experience working with network protocols, firewalls, intrusion detection systems, encryption technologies, and endpoint security solutions.
- Proficiency in security tools in the areas of cloud, application, endpoint, network or identity, vulnerability scanners, and malware analysis platforms..
- Knowledge of authentication methods, identity management, and security access protocols (e.g., SSO, MFA, LDAP).
- Ideally AWS certified.
- Good interpersonal and communication skills (verbal and written).
- Relevant certifications (e.g., CISSP, CISM, CEH, CompTIA Security+) are often required or highly desirable.
- Proven record of delivering high-quality results.
- Product and customer-centric approach.
- Innovative thinking, experimental mindset.
Job Classification
Industry: Pharmaceutical & Life SciencesFunctional Area / Department: IT & Information Security, Role Category: IT SecurityRole: Manager Information SecurityEmployement Type: Full timeContact Details:
Company: Merck SharpLocation(s): Hyderabad+ View Contact
Keyskills: CVS Automation LDAP Javascript Healthcare JSON Application security Information technology Python Identity management
Fraud Alert to job seekers!
₹ Not Disclosed
Similar positions
Merck Sharp
MSD operates its human health business in India through three separate legal entities: MSD Pharmaceuticals Private Limited, Organon (India) Private Limited, and Fulford (India) Limited. Since its existence in India, the company has moved quickly in laying the foundation for a business that is differ...
Job Listings
We are in open beta version of website, please let us know if any issues, at: info(at)indigojobs.in