贝克休斯
Senior Specialist- Cyber Security Architecture
Senior Specialist- Cyber Security Architecture
发布于 3 天前普通员工/个人贡献者
Pune, Mahārāshtra, India
高级经验
全职员工
仅现场办公
本科
NIST
SIEM
ISO 27001
Cyber Security Architecture
AI 估算 · 20k–40k
高级网络安全架构师,跨国企业,技能稀缺,印度市场薪资有竞争力,但人民币折算后适中。
职位详情
关于这个职位
This role involves designing and deploying secure applications in cloud environments (AWS, Azure, GCP), implementing cybersecurity frameworks (NIST, ISO 27001), and managing vulnerabilities and incidents. You will collaborate with development teams to build secure software and ensure high uptime (99.17%) with the highest security levels.
最低要求
Have a bachelor's Degree in Computer Science or 'STEM' Majors (Science, Technology, Engineering and Math). Have 4+ years’ experience in implementing security processes including tools/techniques for Cloud hosted applications. Have Knowledge of application risk identification and evaluation techniques. Have Experience securing applications within cloud platforms such as AWS, Azure, GCP and alike. Have Experience in deploying security services and other cloud services both manually and using automation tools like Cloud formation, Terraform, python or PowerShell scripting. Have Experience with implementing security tools like SIEM (central platform). Have Experienced in integrating applications using web services (SOAP/REST). Been Working experience of various IPS/IDS, WAF, SIEM. Have hands on experience on Network security with devices such as Firewall/Routers. Have Good working experience in data encryption technologies.
工作职责
Participating in designing and deploying application in customer hosted cloud infrastructure. Responsible for cyber security guidelines implementation for application hosted in Baker cloud infrastructure. Responsible for assisting customer and deployment team for implementing cybersecurity guidelines implementation for application hosted in Customer cloud. Defining the framework and processes for Cyber security for application hosted in Baker infrastructure. Defining tools and processes needed for maintaining the security of the applications in consolation with Product Architecture team and Baker IT security team. Working with Architects, independent researchers, and in-house researchers to identify, rate, report and manage product vulnerabilities and incidents. Engaging in incident response methods lead incident response processes related to product cyber. Create and track meaningful metrics around product cyber risk and compensating controls for the infra and application. Creating vulnerability and incident trend analysis to improve infrastructure. Maintaining cyber Bills of Material and conduct proactive vulnerability monitoring and assessment on cyber components. Engaging in application and domain-specific threat modeling and attack surface analysis/reduction. Helping prepare reports at appropriate levels of confidentiality for stakeholders to view. Responding promptly and in detail to customer-sponsored penetration tests and customer queries and issues reported. Making system/images templates/containers available which are hardened and VAPT tested. Driving and leading for certifications such ISO 270001 OR SOC.
优先资格
Have Cybersecurity certification will be preferred. CEH, CISSP, CISM. Have Experience with cyber security framework (NIST 800-53, ISO 27001, IEC 62443, etc.) implementation and governance. Security implementation experience with IIOT based application is preferred. Have experience with container technologies is preferred.
AI 洞察
优缺点分析
优点
- Work with a global energy technology leader, gaining exposure to critical infrastructure security.
- Develop expertise in cloud security and IIoT, highly valued in the industry.
- Opportunity to drive certifications and shape security frameworks, enhancing professional recognition.
- High responsibility for uptime (99.17%) and security in a 24x7 operational environment.
- Managing vulnerabilities and incidents may require on-call support and rapid response.
- Keeping up with evolving threats and cloud technologies demands continuous learning.
- This role suits an experienced cybersecurity professional with strong cloud skills and a passion for securing industrial systems, who thrives in a dynamic, high-stakes environment.
缺点 / 挑战
暂无明显挑战项
角色解读
- Advance to Lead Cybersecurity Architect or Security Manager, overseeing enterprise security strategy.
- Specialize in emerging areas like IIoT security, zero trust architecture, or security automation.
- Move into consulting or advisory roles within the energy sector or broader industry.
- Design and deploy secure applications in customer-hosted cloud infrastructure (AWS, Azure, GCP) and Baker's own cloud.
- Implement and enforce cybersecurity guidelines and frameworks (NIST, ISO 27001) for cloud-hosted applications.
- Identify, manage, and report product vulnerabilities, lead incident response, and conduct threat modeling.
- Create hardened system images and containers, and drive certifications like ISO 27001 or SOC.
- Deep knowledge of cybersecurity architecture and cloud security best practices.
- Hands-on experience with cloud platforms (AWS, Azure, GCP) and automation tools (Terraform, CloudFormation, Python, PowerShell).
- Proficiency with security tools: SIEM, IPS/IDS, WAF, firewall, data encryption.
- Understanding of cybersecurity frameworks (NIST 800-53, ISO 27001, IEC 62443) and risk evaluation techniques.
申请策略
- Tailor your cover letter to demonstrate understanding of energy sector security challenges.
- Prepare to discuss how you've driven security improvements in previous roles with measurable outcomes.
- Emphasize hands-on experience with cloud security on AWS/Azure/GCP and automation via Terraform/Python.
- Showcase specific vulnerability management, incident response, and threat modeling projects.
- Highlight certifications (CISSP, CEH, CISM) and knowledge of security frameworks (NIST, ISO 27001).
- Brush up on container security (Docker, Kubernetes) and IIoT security practices.
- Familiarize yourself with SIEM tools (Splunk, QRadar) and security automation.
面试指南
- Use the STAR method (Situation, Task, Action, Result) to structure your responses.
- For technical questions, first outline the principles (defense in depth, least privilege), then give concrete examples from experience.
- Emphasize collaboration with cross-functional teams and priority on business continuity.
- Can you describe a time you led an incident response for a cloud security breach?
- How would you implement a security framework like NIST 800-53 for a cloud-hosted application?
- Explain how you would secure a CI/CD pipeline using automation tools.
- What is your experience with threat modeling? Walk us through an example.
- How do you stay current with emerging cybersecurity threats and technologies?
匹配度报告
72
综合匹配度
Senior cybersecurity role at a global energy giant, strong compensation and technical growth, but demanding 24x7 support and office-based.
适合人群
Ideal for a cybersecurity professional seeking technical depth, competitive pay, and global exposure, who can tolerate on-call demands.
最强匹配
薪资福利匹配
最弱匹配
工作生活匹配
薪资福利85
成长发展80
工作生活55
使命价值70
薪资福利匹配
85较高
The position offers competitive compensation for senior cybersecurity roles in India, with comprehensive benefits and job security at a multinational giant.
薪资信号未披露(AI估算:20K-40K/月)
福利待遇Contemporary work-life balance policies and wellbeing activities、Comprehensive private medical care options、Safety net of life insurance and disability programs、Tailored financial programs、Additional elected or voluntary benefits
成长发展匹配
80较高
The role provides strong growth through exposure to cutting-edge cloud security, IIoT, and certifications. However, promotion path is not explicitly mentioned.
技术前沿前沿/新兴技术
技术栈AWS、Azure、GCP、Terraform、Python、PowerShell、SIEM、WAF、IPS/IDS、Container、Threat Modeling
业务类型cost_center
工作生活匹配
55较低
The role requires 24x7 on-call support and is likely office-based in Pune. Flexible working patterns are mentioned but not clearly defined, impacting work-life balance.
工作模式仅现场办公
办公地点市区核心地段
加班情况未提及(无法判断)
工作生活平衡Contemporary work-life balance policies and wellbeing activities
使命价值匹配
70中等
Working in energy technology for a company with a century of history offers a sense of purpose in driving safer and cleaner energy, though the role is security-focused and not directly mission-driven.
行业发展稳定成熟行业
社会影响正向社会影响力较高
使命信号making it safer, cleaner and more efficient for people and the planet
创新程度积极采用新技术
Watch Jobs