Security Engineer - Lead Engineer
- Fico
- 4 - 8 years
- Bengaluru
- 4 months ago
- Email to a friend
- Report this job
Job Description
- Secure the design of next next-generation FICO Platform, its capabilities, and services.
- Support full-stack security architecture design from cloud infrastructure to application features for FICO customers.
- Work closely with product managers, architects, and developers on implementing the security controls within products.
- Develop and maintain Kyverno policies for enforcing security controls in Kubernetes environments.
- Collaborate with platform, DevOps, and application teams to define and implement policy-as-code best practices.
- Contribute to automation efforts for policy deployment, validation, and reporting.
- Stay current with emerging threats, Kubernetes security features, and cloud-native security tools.
- Implement required controls and capabilities for the protection of FICO products and environments.
- Build & validate declarative threat models in a continuous and automated manner.
- Prepare the product for compliance attestations and ensure adherence to best security practices.
- Provide expertise as a subject matter expert regarding edge services for public/private cloud information system controls related infrastructure, policy, and decision-making processes.
- Provide timely resolutions for security configuration or solutions in support of service availability.
- Work on problems of diverse scope where analysis of situation requires evaluation and troubleshooting including network packet analysis, Linux or Windows DNS, certificates lifecycle, logfile analysis, and related.
- Strong knowledge and hands-on experience with Kyverno and OPA/Gatekeeper (optional but a plus).
- Experience in threat modeling, code reviews, security testing, vulnerability detection, attacker exploit techniques, and methods for their remediation.
- Hands-on experience with programming languages, such as: Java, Python, etc.
- Experience of deploying services and securing cloud environments, preferably AWS
- Experience of deploying and securing containers, container orchestration and mesh technologies (such as EKS, K8S, ISTIO).
- Experience with Crossplane to manage cloud infrastructure declaratively via Kubernetes.
- Certifications in Kubernetes or cloud security (e.g., CKA, CKAD, CISSP) are desirable
- Ability to articulate complex architectural challenges with the business leadership and product management teams.
- Independently drive transformational security projects across teams and organizations.
- Experience with securing event streaming platforms like Kafka or Pulsar.
- Experience with ML/AI model security and adversarial techniques within the analytics domains.
- Hands-on experience with IaC (Such as Terraform, Cloudformation, Helm) and with CI/CD pipelines (such as Github, Jenkins, JFrog).
- Resourceful problem-solver skilled at navigating ambiguity and change.
- Customer-focused individual with strong analytical problem-solving skills and solid communication abilities.
Job Classification
Industry: IT Services & ConsultingFunctional Area / Department: Engineering - Software & QARole Category: DevOpsRole: Site Reliability EngineerEmployement Type: Full timeContact Details:
Company: FicoLocation(s): Bengaluru
Keyskills: kubernetes helm devops terraform aws continuous integration opa python github cloud security vmware ci/cd aws cloudformation eks cissp gatekeeper java threat modeling security engineering kafka jenkins cloud infrastructure code review
Similar positions
Fico
\n\n Arup Group Limited, trading as Arup, is a British multinational professional services firm headquartered in London that provides design, engineering, architecture, planning, and advisory services across every aspect of the built environment.
Job Listings
We are in open beta version of website, please let us know if any issues, at: info(at)indigojobs.in