Senior Cyber Security Engineer (3-7 yrs)

About Freight Tiger :

Freight Tiger is India's largest software-enabled neutral freight network today. We have built anintelligent operating system, on-ground expertise, and a digital platform that together enhance every step of the logistics process. With our help, customers in traditional industries move material to their customers with full visibility, predictability and speed, all at lower cost. We do this through three products:

1. Cloud-based TMS (Transportation Management Software) & Visibility platform.

2. Freight Assignment platform to facilitate efficient freight procurement by Shippers via Logistics Service Providers.

3. Marketplace platform designed to seamlessly align demand and supply of trucks pan-india.

We take pride in processing an impressive 4% of India's total freight on our platform, serving a vast network of 400+ shippers, 1500+ logistics service providers (LSPs), across 90,000+ locations. Our exceptional clientele includes over 300 industry titans, among them Saint Gobain, Dalmia Group, JSW Steel, ITC, DHL, MRF, and Pernod Ricard. We have tier-1 investors such as Lightspeed Venture Partners, Munjal Family Trust, Florintree Infra (founded by Former CEO of Blackstone Group India), and Aroa Ventures (Family office of Oyo founder). Moreover, we have notable individual investors, such as Founders of Transporeon - Peter Forster & Marc-Oliver Simon, CEO of Transplace Francis McGuigan, Hermann Ude - Chairman of Transporeon and former CEO of DHL Global Freight Forwarding.

Website : https://www.freighttiger.com/

Company Size : Startup / Small Enterprise

Working Days : 5 days/week

Office Location : Sector 18, Gurugram

Role & Responsibilities :

- Lead the efforts towards development and implementation of cyber security architecture for Freight Tiger's application and cloud infrastructure.

- Conduct regular vulnerability assessments to identify and mitigate potential security risks in applications and perform penetration testing to simulate cyber-attacks and identify weaknesses in the cloud infrastructure.

- Work and coordinate with engineering teams to fix security vulnerabilities & bugs and integrate security measures into the development lifecycle to ensure security is considered in all stages of software and system development.

- Lead incident response plans to address security incidents and investigate security breaches and provide detailed reports on root causes and recommended actions.

- Conduct cybersecurity best practices and awareness training campaigns across the organization.

- Plan and implement solutions to monitor network traffic and end user computing devices for unusual activities and potential security threats.

- Participate in regular security audits to assess compliance with security standards.

Ideal Candidate :

- Graduation or higher, preferably in CS or relevant stream.

- CEH or similar industry certification.

- 3 - 7 years of relevant experience conducting security and vulnerability assessment of Applications and cloud infrastructure.

- Product Expertise : Strong experience with leading security assessment tools like Burp Suite, Metasploit, Wireshark, Snort and Nmap etc.

- Hands-on exposure of working with AWS environment including the security services like IAM, Guard Duty, CloudTrail, WAF, Shield etc.

- Exposure of participation in the audit process, preferably for PCI-DSS, ISO 2701, SOC II etc.

- Strong attention to detail with an analytical mind and outstanding problem-solving skills.

- Great awareness of cybersecurity trends and hacking techniques.