Job Description :
Job Description
About us Founded in 2008 in Pune by a group of technology evangelists passionate about travel, technology, and values that reflect even today in the culture within the organisation. We at Tavisca today create some of the world’s most cutting-edge software products in the Travel technology and Customer loyalty and engagement business.
We are now a cxLoyalty company with a team of over 600 dedicated and passionate employees in India and 3000+ employees globally, building products and solutions that power some of the world’s leading Travel, customer engagement & loyalty programs. Tavisca’s platforms help corporations in creating loyalty & engagement and reward programs for their customers through a bouquet of offerings that include travel, merchandise and other benefits. We are in the journey of constantly transforming the way brands engage, thank and rewards their most loyal customers.
Good To Have Skills :TeamworkCommunication
Must Have Skills :AWS Cloud SecurityPCI ComplianceCloud ComputingSec
Responsibilities:
• Perform security design reviews and assessments
• Architect, deploy and maintain proactive security tools including, but not limited to: firewalls, file integrity monitoring, antivirus, static code analysis, application security, single sign-on, and custom tools
• Manage security vulnerabilities and compliance for Tavisca Web Applications and Data Stores
• Contribute to Tavisca security strategy, vision and roadmap
• Define and iterate upon best security practices
• Create and foster a security culture in cloud operations and development
• Collaborate with Engineering and Operations teams to address security vulnerabilities and risks.
• Monitor and analyze security data
• Produce and present security reports for management
• Take part in red-team and offensive security exercises where applicable
• Advocate Security best practices throughout Tavisca
• Advise product and operations teams on product and infrastructure security as the Security subject matter expert (SME)
• Support and deliver upon assigned security projects
• Automation of vulnerability assessments and other security related SecOps tasks
• Resolve security issues from assessments and other sources
• Participate in Security Incident On-call rotation
Requirements:
• 7 to 12 years of experience in an equivalent security related role.
• Hands on experience of AWS cloud security.
• PCI compliant environment experience will be preferred.
• Strong experience in web application security eg (XSS, CSRF, SQL injection)
• Familiarity with Cloud Computing and Software as a Service
• Hands-on operational experience with security tools such as file integrity monitoring, firewalls, antivirus, static code analysis, application
security, Kibana, SSEC, Rapid7, BurpSuite, Nmap and SSO
• 3+ years of experience with automation using Java, Perl, PHP, Python, Ruby
• Strong communication skills; both written and oral
• Ability to work in a team environment.
External Skills And Expertise
• Hands on experience of AWS cloud security.
• PCI compliant environment experience will be preferred.
• Strong experience in web application security eg (XSS, CSRF, SQL injection)
• Familiarity with Cloud Computing and Software as a Service
• Hands-on operational experience with security tools such as file integrity monitoring, firewalls, antivirus, static code analysis, application security, Kibana, SSEC, Rapid7, BurpSuite, Nmap and SSO Required Skills
Cloud, Cloud Security, Web Application Security, XSS, SQL Injection, Security Tools, File Integrity Monitoring, Firewalls, Antivirus, Analysis, Automation, Java, Perl, PHP, Python, Ruby, Communication Skills, Application Security, Kibana, Nmap, SSO, Passionate, Travel Technology, Customer Loyalty, Engagement, Dedicated, Customer Engagement, Loyalty Programs, Platforms, Security Design, Single Sign-On, Manage Security, Compliance, Web Applications, Security Strategy, Roadmap, Development, Management, Best Practices, Operations, Infrastructure Security, Cloud Computing, Software as a service, Ability to work in a team
Source link
