The Job logo

What

Where

Senior Product Security Engineer

ApplyJoin for More Updates

You must Sign In before continuing to the company website to apply.

We are looking for a Senior Product Security Analyst, with a focus on Identity and Access Management solutions. In this role you will work in a team to integrate applications with Predix Identity and Access Management solutions. Candidate will lead several resources on the security team responsible for mission critical application support, including incident management and response.

 

Responsibilities, authorities and accountabilities

In this role, you will:
You are a skilled Analyst who enjoys security work and is an expert in systems security, applications security, identity management. In this role, you will be integrating with our stakeholders and formulating IAM solutions.
In this role, you will:

  • Developing approaches to address the implementation of Identity and Access Management (IdAM) solutions as part of enterprise security services including mobile devices
  • Implementing Privilege Identity Management solutions
  • Working with Attribute-Based Access Control (ABAC) solution
  • Consulting developers on security requirements and utilize common components to meet them
  • Maintaining documentation of design patterns/recipes for common security requirements
  • Ensuring that issues identified are appropriately prioritized and addressed in future product releases
  • Having a complete understanding of the various system interdependency and limitations
  • Architecting, designing, implementing, supporting, and evaluating security focused tools
  • Evaluating and recommending new and emerging security products and technologies

 

 

Required Qualifications

  • Have a Bachelor's Degree in Computer Science or “STEM” Majors (Science, Technology, Engineering and Math). A minimum 8 years of professional experience in STEM related degree, Political Science/Government/International Affairs.

 

Desired Characteristics

Technical Expertise:

  • Be able to understand technical and business discussions relative to future architecture direction aligning with business goals.
  • Be able to understand concepts of setting and driving architecture direction.
  • Be familiar with elements of gathering architecture requirements.
  • Be able to understand architecture standards concepts to apply to project work.
  • Have a general understanding of supporting technologies including SOAP, OAuth, SAML, OpenID Connect, HTTP, XML, LDAP, SQL, and XACML.
  • Have experience with IAM solutions like Cyber-Ark, Ping Identity, Siteminder, Attribute Exchange Network
  • Be able to contribute to and lead discussions and communications within the team and outside, including customers and other business units
  • Be able to foster a collaborative and cooperative team environment, encouraging input and participation from all members
  • Have demonstrated experience in IT Security, system administration, LDAP, and scripting
  • Have experience in large service provider environments
  • Have scripting skills (e.g., Perl, shell scripting)
  • Have excellent written and verbal communication skills, especially experience with executive-level communications
  • Have experience with Agile Management.
Set alert for similar jobsSenior Product Security Engineer role in Bengaluru, India
Baker Hughes Logo

Company

Baker Hughes

Job Posted

a year ago

Job Type

Full-time

WorkMode

On-site

Experience Level

8-12 Years

Category

Technology

Locations

Bengaluru, Karnataka, India

Qualification

Bachelor

Applicants

Be an early applicant

Related Jobs

Baker Hughes Logo

Senior Lead Cloud Security Engineer

Baker Hughes

Bengaluru, Karnataka, India

Posted: a year ago

Designs, programs, documents, tests, and fixes bugs involved in creating and maintaining applications and frameworks involved in a software release lifecycle resulting in a digital product. Deep technical expertise within a field. Has comprehensive knowledge of underlying principles, approaches and methodology.   Responsibilities, authorities and accountabilities Developing, implementing, and managing Azure Policies to enforce governance and compliance standards across the organization's Azure environments Providing technical guidance and support to application teams to ensure policy compliance during application deployments Monitoring and auditing Azure Policy compliance, investigating policy violations, and providing remediation guidance to ensure continuous adherence to security standards Leading small development team and managing end to end execution of software development in the Azure space Gathering user requirements and understanding use cases, design documents, and driving implementation in accordance with project and platform goals   Required Qualifications Have a Bachelor's degree from an accredited university or college with overall 10 years of experience. Have 4-6 years of experience in Cyber Security Engineering. Be an expert with Microsoft Azure, including proficiency in Azure Policy, Azure Resource Manager, and Azure Governance Be an expert with scripting and automation languages (e.g., Python, PowerShell, Azure CLI, JSON) to author and manage Azure Policies  Have strong skills in identifying the pain areas of cloud security and automating cloud security workloads to improve Azure Governance Have a thorough understanding of CICD and DevSecOps to implement and manage Azure Policies and automations Have a thorough understanding of Power Platform, ARM templates and bicep. Have Experience with GRC frameworks (i.e., ISO27001, NIST etc.)   Desired Characteristics Strong oral and written communication skills. Strong interpersonal and leadership skills. Demonstated ability to analyze and resolve problems. Demonstrated ability to lead programs / projects. Ability to document, plan, market, and execute programs. Established project management skills.

Baker Hughes Logo

Senior Cyber Security Engineer

Baker Hughes

Bengaluru, Karnataka, India

Posted: a year ago

Responsibilities, authorities and accountabilities In this role, you will: Write, test, and maintain automation scripts/workflows within SOAR platform. Author and maintain documentation for all scripts, integrations, and workflows. Design, implement, standardize, and maintain efficient and reusable Python code or other programming language. Review, test, debug, and resolve technical issues throughout all stages of Software Development Life Cycle Translate conceptual CFC requirements into technical data and integration requirements for the SOAR platform. Deliver API solutions that streamline, simplify, and improve efficiencies for the CFC teams as well as other enterprise Business Units. Design, test, and implement new playbooks for the cyber security operation center. Partner with CFC leadership to gather SOAR requirements, priorities, and enhancements. Partner with CFC teams to review the development of integrations, workflows, & scripts to ensure anticipated output is achieved. Provide assistance with other cyber security tools (SIEM, EDR, Vuln. Management, etc.) as needed.   Required Qualifications Bachelor's Degree in Computer Science or “STEM” Majors (Science, Technology, Engineering and Math). A minimum 5 years of professional experience. A technical engineer, with an extensive security operations background, who drives the SOAR development lifecycle, in support of the security operations teams. Strong understanding of SOAR playbook development and logic.  Strong understanding of cyber security operation workflows. Have a minimum 2 - 4 years of experience maintaining a SOAR environment. Have ability to plan, organize and prioritize tasks to complete independently and meet tight timelines. Have Knowledgeable about useful metrics, and how to work with them to track against goals/KPIs. Technical Expertise: Have strong development background, with a focus on secure development. Have working knowledge of SOAR automation. Have great communication, team spirit, and leadership abilities. Have experience with scripting such as Python, BASH, and PowerShell.  Have good understanding of a variety of security tools and technologies (IDS/IPS, EDR, XDR, SIEM, Vuln Mgmt., etc.) 

Baker Hughes Logo

Senior Cyber Security Engineer

Baker Hughes

Bengaluru, Karnataka, India

Posted: a year ago

Responsibilities, authorities and accountabilities The Cyber Security Engineer will also assist with other cyber security application management like SOAR, DLP, OT Security and Endpoint Security tools. In this role, you will be: Maintaining the current custom managed Splunk infrastructure (on-prem and cloud) Supporting log on boarding and alert monitoring setup in Splunk Cloud Monitoring the health of the customer managed asset and vendor managed Splunk infrastructure configuration. Working with key stakeholders of the services to ensure the expectations are meeting the requirements. Maintaining the documented baseline configuration and executing the standard operating procedures to maintain the configuration. Researching and looking for opportunities to adopt the best practices and industry standards to enhance the SIEM and SOAR platforms. Providing assistance with other cyber security tools (SOAR, EDR, Vulnerability Management, Secure Remote Access, Passive Network Monitoring, DLP, OT Security, etc.)   Required Qualifications Have a Bachelor's Degree in Computer Science or “STEM” Majors (Science, Technology, Engineering and Math). A minimum 5 years of professional experience. Have 2+ years of experience with Splunk Development Have 2+ years of experience with tool integrations, including APIs, REST APIS, and Syslog Have good understanding of Splunk infrastructure, components, and configurations.  Have good understanding of cyber security operation workflows. Knowledge of OT Security concepts and architectures   Technical Expertise: Have good development background, with a focus on secure development. Working knowledge of Splunk. Have in-depth knowledge of operating systems security configurations Have in-depth knowledge of network appliances Have experience with Windows Server and Linux OS. Have knowledge of other security platforms such as: SOAR, EDR, Vulnerability Management, Secure Remote Access, Passive Network Monitoring. Have experience with scripting such as Python, BASH, and PowerShell. 

Baker Hughes Logo

Senior Cyber Security GRC Architect

Baker Hughes

Cochin, Kerala, India

Posted: a year ago

As a Senior Cyber Security Architect, you'll support Baker Hughes Governance, Risk, and Compliance (GRC) architecture team with security architecture reviews associated with projects and initiatives. As a member of the GRC architecture team, the individual will collaborate with technical and project teams across the organization to support technical architecture governance.   As a Cyber Security Architect - Cloud, you will be responsible for: Leading/participating in cyber security architecture reviews. Serve as architecture/design subject matter expert for design reviews, issues management, and exceptions. Leading/participating in risk assessment and data classification activities. Lead/participate in firewall rule reviews and compliance activities. Ensuring cyber security architecture risks are identified, analyzed, prioritized, and documented. Lead/participate strategic projects and initiatives with broad scope and high impact to the business and be a recognized expert in security architecture and design. Identifying risks across network infrastructure that would lead to the exposure of sensitive data, unauthorized access, or loss of availability and prioritize remediation efforts to address gaps. Working with customers, vendors, and project managers on understanding business requirements and translating those into technical requirements. Fuel your passion   To be successful in this role you will:   Have a Bachelors degree in Computer Science, Information Systems, or other related STEM Majors (Science, Technology, Engineering, and Math) field . Have minimum 10 years of professional experience with In-depth understanding of networking technologies, including TCP/IP, networking, routing protocols, subnetting, switching, LAN, WAN, Load-Balancing, SD-WAN, DHCP, DNS, OT/IoT, etc. Have In-depth understanding of security technologies, including VPN, IPSec, WAF, PKI, SSH, SSL/TLS, IAM, SSO, basic/modern auth, MFA, etc. Have In-depth understanding of next-generation firewalls such as Palo Alto and associated capabilities, including Panorama, Threat, URL Filtering, Global Protect, App-ID. Have In-depth understanding of cloud technologies & associated architectures, including AWS, Azure, OCI, GCP, etc. Have In-depth understanding of operating systems including Windows, Linux, Unix, & MacOS. Understanding of firewall policy/compliance management platforms such as Algosec, Tufin, FireMon, etc. Have Understanding of technologies, architectures, and protocols used in oilfield services and Natural Gas/LNG/Turbo Machinery sectors.