Job Description :
Technical Qualifications

. Experience with developing, implementing & management of a broad set of cybersecurity
technologies and processes (e.g., application security, risk management, data protection,
encryption, key management, identity and access management, cybersecurity governance,
network security, cloud security)
. Comfortable with different programming and scripting languages, such as Python, JavaScript,
Java, or others.
. Experience building role-based permission models in a rapidly changing environment
. Strong experience with cloud provider ecosystems, including Microsoft Azure (Preferred),
Amazon AWS and/or OpenStack.
. Strong experience with a broad range of security technologies, including cloud security,
NextGen Firewalls, DLP(Data Loss Protection), NAC, IDS/IPS, IdAM, Certificate Management,
SIEM, Encryption, and vulnerability management.
. Practices and methods of IT strategy, enterprise architecture and security architecture

Education and Background:
. Background in developing and release software products in cloud and/or on premise
environments.
. 10+ years in a Cybersecurity role with deep understanding of Application, Data and Cloud
security. Or Strong interest in learning more about software and infrastructure security.
. Previous Developer and or Solutions Architecture background (Preferred
BS/MS in Computer Information Systems, Programming, Security Architecture, Business,
Finance, or equivalent professional/military experience
. Achieved one or more professional security accreditation(s) that demonstrate knowledge is
the keys areas of the job.
. Understanding of key industry security frameworks (NIST Cyber Security Framework, NY Cyber
Security Requirements, HIPPA, Insurance Regulations etc.
. An understanding of Cybersecurity requirements for Financial Services Companies.

Responsibilities are as follows:
. Work as part of a team of software, infrastructure, and security engineers, to design and build
best-in-class offerings.
. Primary role will be providing Security Governance and Optimization services to technical
teams. You will provide advice on security best practices, and guide the development and
infrastructure teams in developing, adopting, and enforcing security and access policies
appropriate to the security needs of the business.
. Technical point of contact for product teams as it relates to DevSecOps.
. You will provide vulnerability assessment of cloud assets, deliver remediation
recommendations, and provide knowledgeable assistance in resolving identified
vulnerabilities.
. You will be actively involved in the continuous improvement of governance platform, by
providing input into the direction of the Security Roadmap and contributing to the
development of our tools, processes and people.
. Build tools and automation that enables IptiQ developers and engineers to easily consume
security services defined by the Information Security Program.
. Design and test solutions to unique and interesting challenges.
. Improve the accessibility of security through automation, continuous integration pipelines,
and other means. This includes detecting and fixing vulnerabilities, and identifying attacks.
. Acts as the ambassador and senior technical representative for security architecture and
Cybersecurity posture while engaging with other senior technical leaders throughout
organization in design and implementation of cloud enabled solutions.
. Develop documented security architectures detailing secure, defendable configurations of
systems, applications, data, threat protection and processes relevant to the iptiQ business
imperatives.
. Excel in a highly collaborative and fast-paced team environment.
. Define, implement, and model security practices for enterprise environments using an
intelligence and threat-driven defence model.
. Possess a firm understanding of the offerings within Microsoft Azure (Preferred) and Amazon
Web Services (AWS) cloud platforms
. Prepares cybersecurity reports by collecting, analysing, and summarizing data and trends.
. Maintains security by monitoring and ensuring compliance to standards, policies, and
procedures; conducting incident response analyses; developing and conducting training
programs.
. Working collaboratively with other members of Information Security on awareness programs
and educational efforts to keep organization abreast of latest Cybersecurity preventive
measures.