R418421 Staff Engineer- Cyber Security

Location: Gurgaon
Specialization: Site Engineering/Project Management
Sub Specialization:
Reference: 29865

This position is with our client which is one of the world’s leading medical technology companies.


 Job Description

 

Experienced and motivated professional who is ready to take challenges and work with globally distributed teams to provide cyber security recommendations and solutions for cutting-edge medical devices


Skill Set


Primary

·         4-6 years’ experience in Security Architecture, Data security, Mobile Security and Web Application Security

·         1-2 years’ experience in Intrusion prevention system (IPS) and Penetration Testing

·         Understanding of Authentication Strategies, Firewalls, IPSec VPN appliances

·         Sound knowledge on Malware Analysis and Vulnerability Assessment

·         Understanding of one or more security standards/frameworks like NIST 800-53, IEC80001-2-8, IEC 27002, ISO 27799, IEC 15408-2, IEC 62443-3-3

·         Knowledge around Hardening Windows and Linux operating systems

·         Knowledge of one or more programming languages, scripting etc.


Additional

·         Understanding of network infrastructure including routers, switches, firewalls, iSCSI storage systems and SSL

·         Understanding of Quality standards e.g. IEC 62304, IEC 60601, 21CRF 820

·         Certifications from vendors including Microsoft, VMware, Dell SonicWALL and others

·         Knowledge of Computer Forensics

·         Knowledge of Cloud base environments like Azure and Amazon Web Services

·         Published white papers/ blogs on Security Research

·         Strong written and oral communication skills


Role & Responsibilities

·         Perform risk analysis and develop mitigation strategies

·         Work closely with cross-functional teams including Quality and Marketing in driving alignment around product Cybersecurity and HIPAA compliance objectives

·         Provide input to project management on scheduling, milestone achievement, and project challenges

·         Manage all facets of infrastructure and device security, including systems hardening, automated and manual penetration testing, automated vulnerability scanning for Compliance and issue remediation

·         Perform manual and automated code review for complex Desktop, Web and Mobile applications to identify security flaws

·         Integrate automated security testing into all phases of SDLC

·         Provide security training and education to developers, management, technical staff and users

·         Discover anomalies, trends and potential threats within the data

·         Automate routine tasks and extract valuable data using various scripting languages such as PowerShell, Ruby or Python

·         Support device HIPAA features and design considerations

·         Configure and maintain security systems, including firewalls, web application firewalls, IDP/IPS systems, VPN appliances and multi-factor authentication

·         Handle documentation requests from legal and sales e.g. MDS forms etc. on an as needed basis.

·        

Additional Job Description

Education:

·         B.Tech/B.E/M.C.A/M.Tech/MS. - Computers, Electronics/Telecommunications

Experience: 8 -10 Years