Please inbox your updated resume to workwithus@kimbal.io

You will hear from us at the earliest possible. We wish you our best! Team Kimbal

Share

Share this link via

Or copy link

hyperlink

Request for Demo

Start saving on your energy bills right now!

    Order your kit

    Start saving on your energy bills right now!

      Join the waiting list

      Be the first one to know everything about smartest ways to save on your energy bills.

        Principal Information Security Engineer

        At Kimbal

        Apply

        Principal Information Security Engineer: A Principal Information Security Engineer is an Individual Contributor role responsible for maintaining Kimbal Private Limited’s Information Security posture, the role requires to work closely with the Corporate IT & Cloud-based Infrastructure teams to help them understand what security flaws they need to watch out for, and how to fix the ones already present in both the Corporate & Cloud-based IT infrastructure.

        A TYPICAL DAY OF “Principal Information Security Engineer” AT KIMBAL INCLUDES:

        • Conducting regular internal Vulnerability Assessments and Penetration Tests on all Kimbal Applications, both on the Source and Running Code.
        • Prioritise identified vulnerabilities based on risk to the security of the application/IT infrastructure and business and prepare a mitigation plan.
        • Follow-up on all identified vulnerabilities as per the mitigation plan and work with Development & QA & IT infrastructure teams to close them.
        • Supporting the preparation of application security releases with Development & QA & IT infrastructure teams.
        • Establishing and enforcing Information Security standards and best practices within Kimbal Private Limited.
        • Conducting regular Risk Assessments, identifying vulnerabilities, and working with Corp IT and cloud-based IT Infrastructure teams to remediate them.
        • Developing and maintaining Corp IT and cloud-based IT infrastructure security policies and procedures.
        • Providing technical leadership, guidance, and direction to the Corp IT and cloud-based IT Infrastructure teams.
        • Cross function collaboration & customer interaction & client visits will be a part of the responsibilities.
        • Managing Data Security & Data Privacy by implementing the relevant information security & data privacy standards.

        CURRENT MAJOR CHALLENGES FOR THE POTENTIAL HIRE TO RESOLVE:

        • Implementation of ISO27001 across entire organization.
        • Implementation of best information security practices across all functions.
        • Improve security posturing of entire organization as per CEA/CERT-IN requirements.
        • Conducting regular ISMS audits across all functions belonging to Kimbal Private Limited.

        KIMBAL DESIRES THE Principal Information Security Engineer TO HAVE:

        • Knowledge of OWASP TOP 10 + SANS CWE Top 25 is a MUST.
        • Proficiency with penetration testing tools include but not limited to (e.g., Metasploit, Burp Suite, Nmap, Kali Linux, SSL Labs, OWASP ZAP).
        • Knowledge of scripting and programming languages (e.g., Python, Ruby, Bash) for custom tool development and automation.
        • Knowledge and implementation of OWASP – Application Security Verification Standard will be a big PLUS.
        • Knowledge of various development platforms.
        • Knowledge of Networks, load balancers, firewalls, WAFs, IDS/IPS, SIEM is a MUST have.
        • OS Platform knowledge: Windows Server, Linux Server, Ubuntu is a MUST have.
        • Knowledge and implementation of AWS/GCP/Azure cloud architecture will be a big PLUS.
        • CISM / CISA certifications will be preferred.
        • Knowledge and implementation of Information Security Standards — ISO27001:2022, ISO/IEC 27018:2019 is a MUST have.
        • Knowledge and implementation of ISMS audit lifecycle will be a big plus.

         

        Latest Jobs

        Principal Information Security Engineer

        Principal Information Security Engineer: A Principal Information Security Engineer is an Individual Contributor role responsible for maintaining Kimbal Private Limited’s Information Security posture, the role requires to work closely with the Corporate IT & Cloud-based Infrastructure teams to help them understand what security flaws they need to watch out for, and how to fix the […]

        Field Application Engineer

        A TYPICAL DAY OF Field Application Engineer AT KIMBAL INCLUDES: Work in a technical support / application engineering / customer-facing technical role. Collaborate with customers to understand their requirements and troubleshoot initial level issues. Should know multiple tool setup, capture logs, basic hardware connections. Good in any scripting language (shell/python) to write automation scripts. Diagnose […]

        Cassandra Expert

        Primary Responsibilities and Tasks for This Role: Design and architect scalable, high-performance Cassandra database solutions. Develop and implement data models and database schemas tailored to business requirements. Optimize database performance and ensure high availability and reliability. Lead the design and implementation of disaster recovery and backup strategies. Collaborate with development teams to integrate database solutions […]

        Bid Manager

        Primary responsibilities and tasks for this role: Identify and track tendering opportunities. Coordinate with AMISP’s/Customers, both domestic and international, for identifying partners. Create and manage client proposals, including responses to RFPs and RFIs, and developing material. Plan and coordinate the pitch process. Collaborate with various teams (engineering, finance, sales, and marketing) to gather necessary technical […]