Senior Cloud Application Security Engineer


Category: IT, Security, Software Engineering
Job Type: Full Time

Posted on:
Last Updated:

About Avaya

Businesses are built by the experiences they provide, and every day millions of those experiences are delivered by Avaya Holdings Corp. (NYSE: AVYA). Avaya is shaping what’s next for the future of work, with innovation and partnerships that deliver game-changing business benefits. Our cloud communications solutions and multi-cloud application ecosystem power personalized, intelligent, and effortless customer and employee experiences to help achieve strategic ambitions and desired outcomes. Together, we are committed to help grow your business by delivering Experiences that Matter. Learn more at www.avaya.com.

About the Opportunity

Hello! We are Avaya Cloud. We exist at the intersection of cutting-edge Contact Centre solution, technology and creativity in the Cloud. Our Avaya cloud-based contact center makes experiences effortless, seamless, and context driven—memorable across all touchpoints for customers and the employees who serve them.

 

Our solution focuses on the “everything customer” who wants to connect using voice, chat, email, text, social, and self-service options. Avaya OneCloud CCaaS delivers a seamless experience across devices, touchpoints, and modalities. The “everything customer” wants to connect using voice, chat, email, text, social, and self-service options. Avaya OneCloud CCaaS delivers a seamless experience across devices, touchpoints, and modalities. Were focused on Automation, to give employees and customers the power to streamline their journeys. Even the best employee can only do so much at once. Innovating using an AI-powered contact-center, where employees and customers can leverage the latest in AI and machine learning to deliver exactly what the customer needs in the moment..

About the Responsibilities

2021/2022 is about growing our Cloud-based solution space. We are looking for a Cloud Application Security Engineer, and this position will work collaboratively with the software engineering teams, infrastructure, and security teams to create and maintain the solution security/audit compliance requirements. The position will play a key role as part of the Security and Governance team implementing Azure multi-layered security framework, ensuring ISO-27001 standards and Security by Design principle and best practices (NIST Cloud Computing Security Reference Architecture).

 

  • Collaborate with Incident Response teams to develop correlation rules and corresponding incident response workflows/playbooks
  • Evaluate cutting edge Cloud security technologies, drive towards adoption, create proof-of-concept and frameworks
  • Perform security scans using vulnerability, web application, static code analysis, and third-party library scanners
  • Review and evaluate environmental risk of new security vulnerabilities
  • Open bug reports with development teams, and track remediation progress
  • Work with penetration testers to demonstrate proof of compromise for critical issues
  • Track platform API changes, and ensure scans provide adequate coverage
  • Work with Security and DevOps to integrate security tools into CI/CD pipelines
  • Implement new security services and solutions as directed by Cloud Security leadership

About the Requirements

  • Bachelor’s degree or equivalent experience in a software engineering discipline
  • Exposure to micro-services architecture and reactive architecture principles
  • Strong Java development experience in real time distributed computing environments; Python and Bash scripting skills helpful
  • Experience working on product that deploy as SaaS offers
  • Experience beyond usage of Docker and container management systems like Kubernetes in production
  • Extensive experience in DevSecOp methodology and philosophy of working & cross-functional team environment
  • Experience of:
    • Cloud Environment (AWS, GCP, Azure)
    • Developing automation tools
    • Unix/Linux administration and Shell Scripting
    • Log data aggregation solutions (eg Elk, Splunk, Sumologic, etc.)
    • Deploying and integrating security technologies
    • Center for Internet Security (CIS) benchmark and CSA Cloud Control Matrix
    • Some aspect(s) of computer security: network security, application security, security protocols, cryptography
    • Working with security capabilities (Edge, WAF, Azure Defender, Security Groups, IAM, etc) preferred. Working knowledge of infrastructure components (e.g. routers, load balancers, cloud products, container systems, compute, storage, and networks)
  • Familiarization with Security Orchestration and Automation Response (SOAR) platforms
  • Excellent debugging and troubleshooting skills

Avaya

       I confirm I have read the Privacy Policy, Terms and Conditions & Cookie Information and agree to join the Jobsexpo.ie community.