Principal Engineer, Information Security in Hyderabad at Advance Auto Parts

Date Posted: 1/13/2021

Career Snapshot

  • Employee Type:
    Full-Time
  • Location:
    Hyderabad
  • Career Type:
  • Date Posted:
    1/13/2021

Career Description



Job Description

SUMMARY

Advance Auto Parts is looking for a Principal Cloud Security Engineer to join our team in Roanoke, VA. This individual will join an established team of talented individuals dedicated to ensuring the security of information systems assets and to protect systems from intentional or inadvertent access or destruction. This position is ideal for the intrinsically curious individual who likes to challenge themselves in the security space. Advance Auto Parts offers the facilities to research while enjoying support from the senior leadership and board levels. If you’ve been looking for an opportunity to work for a targeted Fortune 300 company this could be the perfect position for you.

The successful candidate will be a subject matter expert with hands-on experience in a wide range of cloud technologies, tools and methodologies. The role is suited for an experienced Cloud Engineer with proven understanding in enterprise security and will focus on building tool sets and processes to support the Information Security Program (ISP).

ESSENTIAL DUTIES AND RESPONSIBILITIES include the following. Other duties may be assigned.

  • Contribute to the vision, strategy, and drive execution for integrated security controls across Software-as-a-Service (SaaS), Platform-as-a-Service (PaaS), Infrastructure-as-a-Service (IaaS). Environments include Amazon Web Services (AWS), Microsoft Azure and fo, Oracle Cloud and r Millennium’s Google Cloud Platform (GCP).and Amazon Web Services (AWS) efforts.
  • Able to demonstrate clear understanding of current risks and threats to Cloud infrastructure and/or IT infrastructures at technical and managerial levels.
  • Drive Identity and Access Management (IAM), configuration management, and monitoring strategy for GCP and AWScloud environments.
  • Provide security consultancy and engineering support for cloud security solutions including analysis and development of Amazon, Azure, Oracle, Google, Azure, and other security solutions.
  • Provide architecture assurance on Cloud security initiatives and compliance of existing security standards interfacing with infrastructure and development teams.
  • Maintain the security infrastructure tools that are built on the Cloud platform, providing stability and policies and procedures.
  • Support the development and delivery of a comprehensive ISP for the entire organization.
  • Actively monitor new and emerging cloud security technologies, trends, issues, and solutions and assess their applicability to AAP’s cloud strategy.
  • Participate in Information Security Incident Response activities for on premise and cloud environments.
  • Perform periodic and on-demand system audits and vulnerability assessments of systems, internal applications and Cloud services to identify security vulnerabilities.
  • Monitor compliance with the organization's information security policies and procedures among employees, contractors and third parties.
  • Manage remediation efforts for any gaps reported in audits or recommended process improvements.
  • Collaborate with IT management, Legal, Human Resources and Compliance departments to manage security vulnerabilities and investigations.
  • Provide support to Security and other technical operations staff to ensure smooth turnover from Engineering to Production - and provide mentoring to junior level security professionals.
  • Liaison with key stakeholders to create and enforce policy including Information Technology and various business units including Legal, Internal Audit, and Compliance.
  • Leads the effort to ensure security compliance in accordance with regulatory security standards required by appropriate governing bodies.
  • Develop and maintain documentation of all Security products including specific tools, technologies and processes.

QUALIFICATIONS

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

  • Deep and broad knowledge of information security tools, concepts, and techniques.
  • Solid technical security foundation with the ability to learn new security skills and concepts quickly.
  • Solid analytical skills to identify problem areas and opportunities for remediation.
  • Excellent verbal/written communication skills and excellent interpersonal skills.
  • Confidence and ability to project an authoritative presence.
  • Hands-on development and scripting skills, Python preferred.
  • Hands-on technical experience designing and/or deploying cloud security and hybrid solutions using Amazon Web Services (preferred), Microsoft Azure, Oracle Cloud and Google Cloud platforms.
  • Strong knowledge and experience in a variety of technologies including: Unix, Networking, Databases, and Storage.
  • Strong knowledge of Information security controls.
  • Knowledge of software development security and cryptography.
  • Strong knowledge and experience of Web API standards and security.
  • Strong knowledge and experience of secure coding practices.
  • Possess a passion for Information Security and Technology.
  • Work well as part of a team of technical specialists.
  • Able to prioritize in a fast moving, high pressure, constantly changing environment; high sense of urgency
  • Ability to communicate and collaborate across teams.

EDUCATION and/or EXPERIENCE

  • Bachelor’s degree in Computer Science, Cybersecurity or equivalent experience and knowledge in a related field of study
  • 7+ years of experience in Information Security
  • 5+ years of experience working to develop and secure Cloud

SUPERVISORY RESPONSIBILITIES

None

CERTIFICATES, LICENSES, REGISTRATIONS

AWS certifications strongly desired

Certification in one or more relevant platform systems (e.g. Cisco, Microsoft, VMWare, Linux, Unix, web development, storage technologies)

ISC2 CCSP

ISC2 CISSP or SANS GISP desired

One or more SANS GIAC certifications preferred

PHYSICAL DEMANDS

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

While performing the duties of this job, the employee is regularly required to sit and talk or hear.  The employee is occasionally required to stand; walk; use hands to finger, handle, or feel; reach with hands and arms; and stoop, kneel, crouch, or crawl.  The employee must regularly lift and/or move up to 10 pounds and occasionally lift and/or move up to 25 pounds.  Specific vision abilities required by this job include close vision, distance vision, color vision, and ability to adjust focus.

WORK ENVIRONMENT

The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

The noise level in the work environment is usually moderate.

CHECK OUT OUR SIMILAR CAREERS

  1. Security Specialist Jobs
  2. Security Consultant Jobs