In India, Bosch is a leading supplier of technology and services in the areas of Mobility Solutions, Industrial Technology, Consumer Goods, and Energy and Building Technology. Additionally, Bosch has in India the largest development center outside Germany, for end-to-end engineering and technology solutions. The Bosch Group operates in India through twelve companies: Bosch Limited – the flagship company of the Bosch Group in India – Bosch Chassis Systems India Private Limited, Bosch Rexroth (India) Private Limited, Bosch Global Software Technologies, Bosch Automotive Electronics India Private Limited, Bosch Electrical Drives India Private Limited, BSH Home Appliances Private Limited, ETAS Automotive India Private Limited, Robert Bosch Automotive Steering Private Limited, Automobility Services and Solutions Private Limited, Newtech Filter India Private Limited and Mivin Engg.Technologies Private Limited. In India, Bosch set-up its manufacturing operation in 1951, which has grown over the years to include 16 manufacturing sites, and seven development and application centers. The Bosch Group in India employs over 30,500 associates and generated consolidated sales of about Rs. 26,827 crores (3.1 billion euros) in fiscal year 2021-22 of which Rs. 24,406 crores (2.8 billion euros) are from consolidated sales to third parties. Bosch Limited is the flagship company of the Bosch Group. It earned revenue of over Rs. 11,782 crores (1.39 billion euros) in fiscal year 2021-22.
Additional information can be accessed at www.bosch.in

Role:  Lead IT Security Engineer 

You will lead the planning and implementation of Security Engineering Process across projects/programs. In the process, you will have to build seamless security and define how developers view security, eliminate friction and improve Security natively. 

You will work closely with other Security functions, DevOps, Architects and Developers and QA to build highly reliable and secure products on cloud. 

As our Lead IT Security Engineer, you will be responsible for the security assessment of IT infrastructure & applications. Some of the key responsibilities will be implementing and managing security controls for web / custom applications hosted on-premises as well as onboarding SaaS / cloud applications, services which includes Secure configuration management for all Cloud native services, setting up processes and guidelines. 

You will have the following responsibilities: 

• Understand the data/cloud ecosystem holistically and create a secure infrastructure by  enforcing compliance with IAM principals including least privilege access, password management, audit logging, RBAC, user account lifecycle, certificate management and system authentication solutions(SSO/Federation). Minimum of 3 years of experience with AWS. 

• Prepare reference architectures for Developer adoption- Secure Cloud Architecture. 

• Devise and implement Serverless, Container and Kubernetes Security Strategy in the company. 

• Deploy CNAPP(Cloud-Native Application Protection Platform)- CSPM , CWPP solutions at a large scale. 

• Lead Remediation for findings from CSPM(Cloud Security Posture Management), work with developers on targeted remediation based on prioritization 

• Experience working with Infrastructure-as-Code (IaC) to secure-by-design solutions to mitigate/fix cloud security issues(Terraform, Cloud formation,etc) 

• Build Tools to assist Engineering teams with remediation of issues at scale across Cloud. 

• Building security tooling to aid with protection of data stored in the cloud and compliant with relevant regulations- Enforcement of Cloud Data Protection Guidelines from Risk team. 

• Improve Web App Firewalls (WAF), prior experience with WAF rule fine tuning a plus .Ensure early Identification of intrusion & attacks and implement countermeasures. 

• Experience with solutions around DDoS and identify Anti-bot patterns for critical flows. 

• Partner with SOC team for Security Incident Management and Remediation triage with Engineering across the ecosystem. 

Qualifications
Bachelor’s degree in Computer Science or a related technical discipline,
or equivalent practical experience

6-9 years specialist/architect with end to end experience in Enterprise Application.

Good to have
1.    Certificate of CISM/ CISSP/ CISA is preferred.
2.    Proficient in Systems Security Engineering Process
3.    Strong communication/stakeholder management skills
4.    Detailed understanding of cloud architecture/deployments
5.    Basic understanding of IoT architecture
6.    Risk assessment mindset with a passion for security
7.    Should have a good attitude to continuous learning /sharing knowledge, self-motivated team player
8.    Information Security Experience 5+ years.
9.    Completed the training in
a.    [SP-SEC-SPD-B] Secure Product Design – B
b.    [SP-SEC-SCP-B] Secure Connected Products –B