Job Description
Come work at a place where innovation and teamwork come together to support the most exciting missions in the world!
As a Sr. Security Signature Engineer you will be part of an engineering team that is responsible for the research, development and delivery of compliance signatures for product - Policy Compliance (PC). In this team you will work on numerous security standards like CIS, NIST, DISA, PCI-DSS and help customers assess the the database configurations and compliance.
Responsibilities:
- Research and Develop signatures to identify non-compliant OS security settings in the areas of Unix/Linux, Windows, Application Software that will be processed by the Qualys engine to collect data from target machines that are being audited.
- Hardening and Configuration of end-points, ranging from Operating systems to Database to Application software such as Apache Http Server, Microsoft IIS, Oracle DB, etc.
- Provide subject matter expertise to internal core engineering and infrastructure teams
Qualifications:
- BS/MS in Computer Science or a related field with 3+ years experience
- Strong understanding of common protocols such as HTTP(s), TCP/IP, SSH, DNS, TLS/SSL.
- Proficient in Shell and Python scripting language, knowledge of programming in the Unix/Linux/windows environment.
- Proficient in Regular Expressions.
- Experience with installation, configuration and administration of applications on Windows/Linux/Unix platforms such as MS office, MS IIS, Apache Tomcat, Docker, Kubernetes
- Windows system administration experience including system configuration and in-depth under the hood working of: Local security Policy, Domain Security Policy, WMI, GPO, User Account Control, User Rights, Account policy, Audit policy, Event Log, Windows Firewall, Updates and various security Options.
- UNIX system administration experience including system configuration and in-depth under the hood working of: Secure Boot Settings, TCP Wrappers, IPtables, Logging and Auditing, syslog, auditd, logrotate, cron, PAM, File permissions, user and group settings
- Experience with administration of network device technologies such as Cisco/Juniper/Aruba
- Experience of working with SVN, GIT and bug tracking tools (JIRA)
Pluses:
- Knowledge on Security benchmarks like CIS or SCCM , DISA and STIG
- Knowledge of Cloud Platforms (AWS, Azure, GCP, etc.).
- Understanding of Lua
- Familiarity with Packet Capturing and Analysis.
- Knowledge of Security techniques
Job Details
-
Job Location
-
India
-
Company Industry
-
Other Business Support Services
-
Company Type
-
Unspecified
-
Employment Type
-
Unspecified
-
Monthly Salary Range
-
Unspecified
-
Number of Vacancies
-
Unspecified