Company Name : Adobe Systems India
Location : Noida
Experience : 0 – 1 yrs.
Requisition Title:Cloud Operations Security Analyst (37024)
At Adobe, we’re changing the world. How? We give people the tools to bring their ideas to life and create content that makes life more fun and work more meaningful. We give businesses and organizations the power to truly engage their customers. We’re the ones behind the gorgeously designed content that streams across your laptop, TV, phone, and tablet every day and we’re the ones who harness the massive power of big data to help companies movedata to insight and insight to action by delivering content that people crave most.
We’re a company that understands that product innovation comespeople innovation, and that’s why we invest in cultivating leaders throughout the organization. If you’re passionate about leadingwhere you sit, join us.
Cloud Ops has an exciting and challenging mission: Build, deploy, operate, scale, maintain and secure a company-wide platform (PaaS) for Adobe SaaS solutions. While Engineering focuses on building the platform, Cloud Ops provides operational support for both the platform as well as the product teams that leverage the platform. Within Cloud Ops, the Cloud Ops Security Team engineer world-class security solutions to enable the business to move both quickly and securely. Our mission: Building Continuous Security. (See this short Video for an overview of our Continuous Security project.)
As a Cloud Operations Security Analyst, you will be responsible for perform real-time log analysis to provide network and data security for Adobe’s Cloud Services. The Cloud Security Analyst will evaluate the type and severity of security events by making use of packet analyses, and an in-depth understanding of exploits and vulnerabilities. The Analyst will resolve client issues by taking the appropriate corrective action, or following the appropriate escalation procedures.
Are you the type of person who runs to a fire rather than awayit? Excellent — since you will be diving to dive in the middle of security incident response. And then turn around and drive the effort to prevent ithappening again.
You don’t need to be a security ninja to apply for this position. Just bring your coding skills, your passion for securing cloud-based services, and your passion for diving into new and diverse technologies.
Candidate should have a solid background in both Linux and Windows. Candidate should also have an educational background in technical development. Experience supporting a production environment is desired, as you will be a key member of the team responsible for delivering the world-class online service to a fast growing customer base. Experience with Bash, Ruby or Python and REST APIs is a plus. Show us your github!
You’ll be working with the local engineering teams on a daily basis and the broader Application Management team located in New York, Paris, Hamburg, San Francisco, San Jose, Lehi, (Utah), Seattle, Bucharest, Delhi, and Sydney. We are truly a global team!
What you’ll do
Serve as primary responder and point of contact in the response, forensic investigation, analysis and resolution of security incidents.
Identification and tracking of security improvements identified during incidents or as part of a review
Monitor and analyze daily security intelligence feeds and reports.
Perform routine technical security audits of user accounts, system and network configurations.
Perform routine vulnerability management services that include vulnerability identification, risk assessments, generating vulnerability remediation or mitigation requirements, and validation testing.
Tweak and tune our Splunk Enterprise Security dashboard to minimize false positives and maximize risk ranked results for our environments
Onboard additional data sources into our Splunk Enterprise Security environment
Responsible for reporting security metrics reporting for services
Stay up to date on the latest threats, countermeasures that may impact our services
Share indicators of compromise with other Adobe teams.
Draft new/update existing Information Security policies and procedures.
Participate in department on-call rotation.
Track critical vulnerability remediation across multiple service teams
Perform other related duties as directed by the Director of Security Operations
What you need to succeed
University degree (BS/MS) in Information Security or equivalent work experience
Thorough understanding of networking concepts and Internet protocols.
Experience with cloud-computing stacks is an important advantage
Ability to hit the ground running and provide value immediately
Willingness to work in a fast-paced environments
Ability to learn quickly and adapt to changing priorities and requirements.
Excellent communication and prioritization skills
Programming and scripting skills
Fluency in English is a requirement
Experience with Splunk
Knowledge of Networking protocols and technologies, e.g. TCP/IP, Firewalls, Routers, etc.
Packet analysis tools (tcpdump, Wireshark, ngrep, etc.)
Knowledge of Security principles, techniques and technologies
Experience with Vulnerability scannersNessus, MVM, Qualys, etc.
Technical certifications (GCIH, CEHv8, OSCP, CHFI, CCSP, CCNP-Security or MCSE-Security).