You are responsible for implementing, and maintaining the security solution to secure containerized environments, such as Docker or Kubernetes, for the customers applications and services.

You are expected to have fundamental understanding of containerization and stay up to date with the latest security technology, standards, trends, and best practices.

Responsibilities

• Participate in project implementation to ensure the solution is delivered on time and compliant to security requirements.
• Review current security controls and recommend enhancements.
• Develop and implement security policies and procedures to ensure compliance with industry standards and regulations.
• Develop security documentations such as
  • Technical presentation slides,
  • Design Document
  • UAT Test Cases/Plan
  • System Security Acceptance Test Cases/Plan.
• Remediate known product vulnerabilities based on Security Findings or Product Security Advisory.
• Collaborate with Application Teams to integrate security into the software development lifecycle
• Communicate the finding from security tools (e.g. outcome of scanning containers & functions) to Application Teams.
• Keep abreast of latest cybersecurity trends and advise customers that address the everchanging threat landscape.

Requirements

• Diploma/bachelors degree in information security or related field.
• Aqua Product certifications will be an advantage.
• Good foundation in AWS (preferably AWS certified or minimally 2 years hands-on experience with AWS). Experience with other cloud platforms will also be considered.
• Experience in Serverless/Container technologies such as Dockers, Kubernetes (AWS ECS, EKS, Lambda)
• Experience in Infrastructure as code (IAC) - Terraform, CloudFormation.
• Good understanding of common services across different AWS categories which allow setting up a full basic cloud environment (EFS, ELB, VPC, S3, RDS)
• Good understanding of the security mechanism in AWS (IAM for ABAC, VPC, Security group for EC2, KMS, Cloudfront, WAF, etc) to secure cloud infra from internal and external threats
• Good understanding of DevOps/DevSecOps
  • Fundamental knowledge on DevOps process and tools, CI/CD pipelines, Terraform and general scripting skills are required
• Good understanding of Risk/Vulnerability Management
  • Understands compliance/assurance policies that applies to containers and functions as part of DevSecOps methodology of Security Quality Gates
• Strong analytical and design thinking skills
• Ability to work both independently and as a team player.
• Fluent communicator in both written and spoken English. Other language skills will be advantageous.

To Apply:
Please send your latest CV in word file to pooja@quinnox-solutions.com
Kindly indicate your availability, current and expected remuneration package.
We regret that only shortlisted candidates will be notified.

For more job opportunities, please visit our career page: http://quinnox-solutions.com/c...

Quinnox Solutions Pte Ltd (License Number: 06C3126)
Registered EA Personnel (Reg. No.:R1551322)