General Information

Country
India
Department
IM SECURITY
Date
Tuesday, November 19, 2024
Working time
Full-time
Ref#
20034486
Job Level
Individual Contributor
Job Type
Experienced
Job Field
IM SECURITY
Seniority Level
Associate

Description & Requirements

About Xerox Holdings Corporation
For more than 100 years, Xerox has continually redefined the workplace experience. Harnessing our leadership position in office and production print technology, we’ve expanded into software and services to sustainably power today’s workforce. From the office to industrial environments, our differentiated business solutions and financial services are designed to make every day work better for clients — no matter where that work is being done. Today, Xerox scientists and engineers are continuing our legacy of innovation with disruptive technologies in digital transformation, augmented reality, robotic process automation, additive manufacturing, Industrial Internet of Things and cleantech. Learn more at www.xerox.com and explore our commitment to diversity and inclusion.


Key Responsibilities:

  • Perform Threat Modeling, Security architecture and design reviews on applications
  • Review security settings in public cloud platforms (like AWS, Azure, Google Cloud) and suggest ways to improve them.
  • Design and build automated tools that keep our cloud environments secure.
  • Set up guardrails using tools like Terraform and CloudFormation to enforce security rules across our cloud systems.
  • Identify and address potential security risks by performing threat modeling and security reviews.
  • Work with developers and system admins to advise them on safe design and secure development practices.
  • Track and report security performance metrics (KPIs) to keep stakeholders updated on our security progress.
  • Create clear documentation for security policies, guidelines, and best practices.
  • Research the latest trends in cloud security and emerging risks to keep our systems up-to-date.

 

Experience, Education, and Technical Requirements. 

  • At least 5 years of experience in cybersecurity, with at least 3 years specifically in cloud security, including hands-on experience with Amazon AWS or Microsoft Azure.
  • Strong understanding of cloud vulnerabilities, attack vectors, and mitigation techniques.
  • Experience with threat modeling using various frameworks.
  • Broad knowledge of security domains, including authentication, authorization, data security, and network security.
  • Familiarity with cloud-native security tools such as CNAPP (Cloud Native Application Protection Platform) and CSPM (Cloud Security Posture Management).
  • Strong exposure to popular application security standards, including OWASP Top 10 and SANS Top 25.
  • Experience with integrating security tools into development pipelines (e.g., Azure DevOps, Jenkins) to support DevSecOps practices.
  • Strong proficiency with scripting and automation for security purposes.
  • Excellent interpersonal, written, and verbal communication skills.
  • Uncompromising personal and professional integrity and ethics.
  • Cloud security certifications (e.g., AWS Certified Security Specialty, Microsoft Certified: Security, Compliance, and Identity Fundamentals) are a plus.

#L1- REMOTE
#L1- SS3
< Go back