- Advanced knowledge in secure coding techniques, CWE Top 25, OWASP and known cross-language as well as platform-specific weaknesses
- Experience in designing automation for usage of security tools in Continuous Integration Pipeline to enable frictionless usage by developers.
- Experience with overall security aspects of Terraform.
- AdvancedexperienceinfollowingAWS services.
- Design and implementation AWS Key Management Service and CloudHSM
- Design and implementation of data encryption for Data at Rest (DaR) and Data in Transit (DiT)
- For DaR, experienced in implementation with AWS Aurora, AWS EBS, AWS S3, AWS RDS
- For DiT, experienced in implementation of certificate management lifecycle using ACM
- Some understanding and experience with equivalent services in Azure
- Experience in secure development life-cycle (SDLC) practices including threat modeling and security testing.
- Strong, proven problem-solving skills and ability to identify, analyze, and resolve problems, driving work through to completion.
REQUIRED SKILL LEVEL
- Advanced experience in AWS services (Senior level experience)
- Advanced knowledge in secure coding techniques (Senior lever experience)
- Automation for usage of security tools in Continuous Integration Pipeline (Junior level experience)