Cyber Security Specialist/Engineer - IPAM

Description

• Title: TAVS Tech Cyber Security Specialist.
• Experience: 10+ Years.
• Location: Pune.
• Vault & Privileged Access Management (Core Requirement).
• HashiCorp Enterprise Vault (preferred).
• CyberArk (alternative).
• Broadcom CA PAM (alternative).
• Experience building, deploying, and maintaining Vault clusters.
• Credential vaulting concepts & secure secret management.
• Programming / Scripting.
• Go (Golang) minimum 2 years.
• OR C# (as an alternative skill).
• Ability to review code and support development teams.
• Cloud & DevOps.
• Experience with Azure cloud environment.
• DevOps practices.
• GitLab (CI/CD, version control).
• Exposure to Ansible (automation).
• Exposure to Terraform (Infrastructure-as-Code).
• Identity & Access Management (IAM).
• Experience with industry-leading IAM solutions.
• Strong understanding of enterprise integration patterns.
• Knowledge of authentication/authorization frameworks.
• Web & Security Protocols.
• Strong, hands‑on understanding of :
  • HTTP / HTTPS.
  • TLS.
  • REST & SOAP.
  • Cookie/session handling.
  • SAML.
• Multi‑tier web application architecture.
• Security standards and best practices.
• Enterprise Experience.
• Working in large‑scale, global, high‑availability environments.
• Handling mission‑critical systems.
• Production issue investigation and resolution.
• Release readiness and milestone reviews.

Key Responsibilities

• Monitor, identify, investigate, and analyze activities related to potential or actual cybersecurity incidents.
• Detect and remediate security flaws, vulnerabilities, and configuration weaknesses across systems and applications.
• Respond promptly to security incidents, conduct in‑depth threat analysis, and take corrective actions to mitigate impact.
• Evaluate event logs and alert flows to identify common risks and develop proactive security measures.
• Conduct risk assessments, security audits, and vulnerability scans to ensure compliance with organizational standards.
• Assist in network forensics, penetration testing, and root‑cause analysis for identified incidents.
• Prepare detailed incident reports, technical briefs, and documentation for management and compliance teams.
• Maintain adherence to established security standards, frameworks, and regulatory requirements.
• Collaborate with IT, DevOps, and compliance teams to enhance the organizations overall security posture.
• Monitor and maintain the security of networks, servers, applications, and cloud systems.
• Support continuous improvement of SIEM monitoring, correlation rules, and alert triaging processes.

Additional Technical Skills

• Ability to perform code reviews.
• Strong analytical & debugging skills.
• Documentation of technical issues and solutions.