Role: Senior Security Engineer
What you’ll do
We’re MiQ, a global programmatic media partner for marketers and agencies. Our people are at the heart of everything we do, so you will be too. No matter the role or the location, we’re all united in the vision to lead the programmatic industry and make it better.
As a Senior Security Engineer in our technology department, you’ll have the chance to:
- Conduct VAPT of Network and Cloud Infrastructure using various open source and commercial tools
- Map out a network, discover ports and services running on the different exposed network and Cloud services
- Conduct penetration test and launch exploits using various industry standard penetration testing distribution tool sets
- Research and maintain proficiency in computer network exploitation, tools, techniques, countermeasures, and trends in computer network vulnerabilities & threats, network security and encryption, Cloud threat landscape
- Analyze scan reports and suggest remediation / mitigation plan.
- Keep track of new vulnerabilities & threats on various network, security devices and Cloud Infrastructure running multiple services and propose mitigation
- Review security posture and work with operations to plan version upgrade requirements of supported security and network infrastructure and Cloud services
Who are your stakeholders?
Internal Customers
- Product Development Teams: Internal product development teams rely on technology R&D to provide them with innovative ideas, cutting-edge technologies, and research insights. R&D helps in creating new product concepts, improving existing products, and enhancing their features and capabilities. By collaborating closely with R&D, product development teams can leverage advancements to drive product innovation, differentiate offerings in the market, and meet customer demands effectively
- Engineering Teams: Engineering teams work closely with technology R&D to translate research findings and concepts into tangible solutions. They rely on R&D to provide prototypes, proof-of-concepts, and technical specifications that guide their development efforts. By collaborating with R&D, engineering teams gain access to advanced technologies, methodologies, and tools, enabling them to design and build high-quality products efficiently and effectively
- Operations and Manufacturing Teams: Technology R&D contributes to operations and manufacturing teams by providing insights and advancements that improve processes, enhance efficiency, and reduce costs. R&D can identify ways to streamline production, optimize supply chains, and implement automation technologies. These improvements enable operations and manufacturing teams to achieve higher productivity, cost savings, and improved product quality
External Customers
- End Users and Customers: Technology R&D creates value for end users and customers by delivering innovative products and services that meet their evolving needs. R&D efforts focus on understanding customer pain points, conducting market research, and identifying opportunities for improvement. By incorporating customer feedback into R&D activities, organizations can develop products that offer enhanced functionality, better user experience, and increased value
- Business Partners and Collaborators: Technology R&D can create value for business partners and collaborators by fostering innovation and providing opportunities for collaboration. R&D-driven organizations often engage in partnerships, joint ventures, and collaborative projects with other companies, research institutions, or startups. These collaborations enable the exchange of knowledge, resources, and expertise, leading to shared innovations, co-developed products, and expanded market opportunities
What you’ll bring
- Overall, 5 years in Cyber security, with Min 3 years in VAPT & Cloud Security
- Experience with Docker and containerization technologies
- Experience in network vulnerability scanning & penetration testing
- Hands-on experience in managing and conducting Network and AWS Cloud VAPT assignments and projects
- Experience with Nessus, NetCat, NMAP, Kali Linux, Metasploit, HPing, Qualys and similar VAPT tool sets
- Understanding of Network Systems Security Architecture
- OS Security, e.g., Linux, Unix, Windows
- Understanding of common network services and protocols, e.g., LDAP, SMTP, DNS, SSH, AD
- Conducting VAPT assessments and articulating security issues to technical and non-technical audience is a plus
- In-depth understanding on Common Vulnerability Exposure (CVE)/ Cert advisory database, vulnerability risk, scoring and measurement
We’ve highlighted some key skills, experience, and requirements for this role. But please don’t worry if you don’t meet every single one. Our talent team strives to find the best people. They might see something in your background that’s a fit for this role, or another opportunity at MiQ.
If you have a passion for the role, please still apply.