Job Location: Gurugram
Description
Job Summary:
The Life & Annuity Predictive Analytics (LAPA) business unit is a lean, agile, diverse, and geographically distributed data science startup that develops leading edge data products and deploys them on the cloud as web applications for the world’s premiere life insurers.
As a Security Analyst on the LAPA team you will work with the security administrator to define, enhance, document, implement, and test a broad range of information security policies, procedures, and controls appropriate for a software products startup.
Primary Responsibilities:
- Assist in conducting business risk assessments.
- Assist in drafting and updating information security policies and procedures.
- Test security procedures and controls in regards on-premises development environments, cloud hosting environments, and end-user web applications
- Assist in conducting threat modeling, disaster recovery and incident response exercises and software security design reviews
- Provide cybersecurity engineering support to the data science team in regard to software development and software operations
- Support the third-party/vendor security risk assessment process; monitor and report on progress of third-party/vendor security risk treatment activities by business owners.
- Support annual security compliance audits (e.g., SOC 1/SOC 2, HITRUST).
- Participate in internal security assessments and security reviews; conduct security risk analysis of business processes and technology solutions to evaluate whether they comply with internal security policies and standards as well as regulatory / industry requirements and security best practices.
- Work on improving the overall cloud security hygiene by auditing and hardening the cloud infrastructure.
- Work on managing Qualys, our web application vulnerability assessments platform.
- Configure and correlate multiple log sources and write custom rules to detect security incidents on Azure Cloud Analytics Platform to perform security analysis.
- Assess information security risks and vulnerabilities within the enterprises architecture.
- Develop, maintain and implement security software with the goal of ensuring a secure work environment for PTC’s users and the improvement of the security posture of the organization.
- Integration, Modification and Automation of Security tools by means of scripting.
- Administer and manage 3rd-party authentication as a service provider
- Play a key role in leading the organization toward SOC 2 certification
Skills and Requirements:
Required skills and knowledge:
- Experience implementing information security controls and practices.
- Knowledge of common information security frameworks.
- Knowledge of information security best practices within a software development environment.
- Experience with operating system security configuration Windows (development environment), and Linux (web app hosting environment)
- Experience with cloud infrastructure and cloud security (Azure/AWS)
- Experience with virtualization technology and virtual machines
- Ability to work in a highly collaborative environment as well as independently with minimum supervision
- Knowledge and use of command line in the Linux environment
- Basic knowledge of web application technology (JavaScript, HTML, and CSS)
- Ability to take ownership of a technical challenge and see it through to a successful conclusion
- Excellent written and verbal communication skills
Preferred skills and knowledge:
- Knowledge of best practices for a secure software development lifecycle practice (SAMM, BSIMM)
- Experience with RStudio Shiny web application framework
- Any security Certifications (e.g.: CompTIA Security+ or CEH)
Required education:
- Currently pursuing candidate with 3 to 7 years’ experience in Cybersecurity, Computer Security, Information Assurance, or equivalent.
Location: Gurgaon
What we offer?
- Work with amazing team members having cross-functional expertise.
- Great work culture, open to try new ideas & implement effective improvements.
- Competitive compensation & once in a life-time opportunity to expand your role and knowledge.
How we differ?
- We provide a start-up-like work environment in a large and stable corporation.
- We encourage everyone to contribute to multiple domains and to automate their function wherever possible.
- Openly discuss and continuously evaluate improvement opportunities.
About Milliman:
Milliman is one of the world’s largest independent professional services firms. Founded in 1947, the firm provides consulting services to clients in four practice areas: healthcare, life insurance and financial services, employee benefits and pensions, and property and casualty insurance. Today, Milliman has more than 3,500 employees, in excess of $1 billion in annual revenue, and more than 60 offices worldwide.
How to apply:
Interested candidates should submit their resume and cover letter.
Nothing in this job description restricts management’s right to assign or reassign duties and responsibilities to this job at any time. Additionally, this job description reflects management’s assignment of essential functions. It does not prescribe or restrict the tasks that may be assigned.
Submit CV To All Data Science Job Consultants Across Bharat For Free