Senior Security Engineer

Job Description

Be part of a growing company with dynamic security needs. E2open is seeking an experienced security specialist to join our team in Hyderabad.Role: Senior Security Engineer Mandatory Skills: Application Security, SOC, Incident management, Vulnerability Management Experience: 3-5 years Location: Hyderabad About us:Founded in 2000 and headquartered in Austin, TX, E2open provides the largest and most comprehensive Supply Chain Operating Network, including a broad suite of collaborative supply chain solutions. E2open helps companies such as AkzoNobel, Campbell Soup, Cisco, Dell, Exostar, Lenovo, Kimberly-Clark, Seagate, Shell, Unilever and Vodafone better manage their supply chain operations. ( www.e2open.com )This position involves performing professional security analysis and monitoring for a SaaS organization. You will represent our company s offerings and perform requirements and risk analysis. You will be responsible for ensuring our company SaaS offerings, network and managed data is secure from unauthorized access and adequately protected from attacks. You will also assist R&D in the prioritization of security features and assist R&D with requirements, and testing solutions to ensure it meets E2open security standards before it is released. Determining security needs, developing policies and solutions, controls and enforcing security policies are essential skills to this position. You must also be able to be able to relate technical security and risk related matters to management at an appropriate level.Position Responsibilities:

• Resolve E2open s security work items and priorities
• Answer customer information requests and present security information about E2open solutions, policies and features to other employees
• Assisting pre and post release application security testing
• Analyzing/recommending security architectural solutions, courses of actions and prioritizations
• Evaluating, designing and implementing controls to improve security risks
• Establish and manage SaaS system security policies and procedures
• Working with operations to deploy controls
• Perform security audits/scans, analyze the reports, and recommend/implement defect eradication
• Working with R&D to understand requirements, prioritize, design and implement solutions to security
• Monitor and manage Linux/Unix security patches
• Reviewing and approving operational tickets related to data center security

Required Experience and Knowledge:

• Minimum of 3 years experience working on Information Security monitoring and implementation
• Experience with customer facing assignments for pre-sales and audit security support
• Experience with cybersecurity requirement and analysis
• Experience with Linux/Unix security patch management, analysis of security scans and defect eradication
• Experience with writing/implementing security policies
• Experience with the Apache web server and plugins and configuration
• Security Tools experience desired: Automation tools (e.g. AppScan, Nessus, Tripwire)
• Experience with configuring and deploying applications on Linux
• Experience with SQL and scripting (e.g. Bash Shell, Perl, Python)
• Experience writing Java code for security features
• Networking protocol knowledge (must have): ssh, DNS, TCP/IP, HTTP, HTTPS, SSL
• Networking protocol knowledge (nice to have): SNMP, SMTP, LDAP
• Operating System knowledge: Linux (prefer RedHat/CentOS), Windows
• Experience with performing and analyzing penetration testing
• Experience with ISO 27001, SOC 2, PCI and other certifications

Background and Education:

• Bachelor s degree or higher from an accredited 4 year university with
• Professional Information Security credentials (e.g. CRISC, CISM), CISSP preferred

Personal Qualities:

• Exceptional interpersonal verbal and written skills in English.
• Very high level of initiative, self-confidence, energy and personal integrity
• Quick learner, pragmatic and ability to adapt to multiple tasks

,

Keyskills :
firewallsiso 27001supply chainpocmusic makingdata centerweb serverdeliverysecurity testingsalesapache web serversecurity patch management