Current jobs related to Associate Security Consultant- Appsec + Network Security - mumbai - Tech Mahindra
-
Security Lit
1 month ago
Mumbai, India Security Lit Full timeJob Description : - IS Auditing skills(ISO27001,NIST,PCIDSS Process documentation / enhancement) & RBI Cybersecurity Framework- Experience in Red Teaming & Testing of Security controls - Experience in preparing the Security Questionnaire for baseline controls, Checklist & Validation of controls - Thorough knowledge and skill in handling continuous cyber...
-
Information Security Consultant
16 hours ago
mumbai, India TAC Security Full timeJob Title: Information Security AnalystLocation: Lower Parel, Mumbai (On-site)Job Description:We are seeking a skilled Information Security Analyst to join our team in Lower Parel, Mumbai. In this role, you will play a critical part in monitoring and enhancing our cybersecurity posture.Key Responsibilities:Monitor security alerts and events using SIEM tools...
-
Information Security Consultant
1 day ago
mumbai, India TAC Security Full timeJob Title: Information Security AnalystLocation: Lower Parel, Mumbai (On-site)Job Description:We are seeking a skilled Information Security Analyst to join our team in Lower Parel, Mumbai. In this role, you will play a critical part in monitoring and enhancing our cybersecurity posture.Key Responsibilities:- Monitor security alerts and events using SIEM...
-
Eventus Security
1 month ago
Navi Mumbai, Maharashtra, India Eventus Security Full timeResponsibilities :- Implement, manage, and maintain security systems and tools, including Trend Micro, McAfee, Symantec, Vision1, Apex1, Deep Security, and DLP solutions.- Monitor and analyze security logs, alerts, and events to identify and respond to potential threats.- Conduct vulnerability assessments and penetration testing to identify security...
-
Eventus Security
2 months ago
Navi Mumbai, India Eventus Security Full timeResponsibilities :- Implement, manage, and maintain security systems and tools, including Trend Micro, McAfee, Symantec, Vision1, Apex1, Deep Security, and DLP solutions.- Monitor and analyze security logs, alerts, and events to identify and respond to potential threats.- Conduct vulnerability assessments and penetration testing to identify security...
-
Eventus Security
1 week ago
Navi Mumbai, India Eventus Security Full timeResponsibilities :- Implement, manage, and maintain security systems and tools, including Trend Micro, McAfee, Symantec, Vision1, Apex1, Deep Security, and DLP solutions.- Monitor and analyze security logs, alerts, and events to identify and respond to potential threats.- Conduct vulnerability assessments and penetration testing to identify security...
-
Security Researcher
2 months ago
Mumbai, India Security Brigade Full timeNoteCurrently this role is only open to candidates available to join immediately and based in Mumbai, India.Job DescriptionSecurity Brigade is looking for a Security Researcher to be deployed on-site at a client location to manage the ShadowMap Platform. ShadowMap is a Digital Risk Management Platform which includes Attack Surface Management, Dark Web...
-
Security Engineer
1 week ago
Navi Mumbai, India Eventus Security Full timeJob Title: Junior Security EngineerAbout the Job:At Eventus Security, we are looking for a skilled Junior Security Engineer to join our team and help us protect our clients' digital assets. As a Junior Security Engineer, you will be responsible for implementing, managing, and maintaining our security systems and tools, ensuring the integrity and...
-
Security Researcher
2 months ago
Mumbai, India Security Brigade Full timeNote Currently this role is only open to candidates available to join immediately and based in Mumbai, India. Job Description Security Brigade is looking for a Security Researcher to be deployed on-site at a client location to manage the ShadowMap Platform. ShadowMap is a Digital Risk Management Platform which includes Attack Surface Management, Dark Web...
-
Security Researcher
2 months ago
Mumbai, India Security Brigade Full timeNoteCurrently this role is only open to candidates available to join immediately and based in Mumbai, India. Job DescriptionSecurity Brigade is looking for a Security Researcher to be deployed on-site at a client location to manage the ShadowMap Platform. ShadowMap is a Digital Risk Management Platform which includes Attack Surface Management, Dark Web...
-
Security Researcher
3 months ago
Mumbai, India Security Brigade Full timeNoteCurrently this role is only open to candidates available to join immediately and based in Mumbai, India. Job DescriptionSecurity Brigade is looking for a Security Researcher to be deployed on-site at a client location to manage the ShadowMap Platform. ShadowMap is a Digital Risk Management Platform which includes Attack Surface Management, Dark Web...
-
Security Researcher
2 months ago
mumbai, India Security Brigade Full timeNoteCurrently this role is only open to candidates available to join immediately and based in Mumbai, India. Job DescriptionSecurity Brigade is looking for a Security Researcher to be deployed on-site at a client location to manage the ShadowMap Platform. ShadowMap is a Digital Risk Management Platform which includes Attack Surface Management, Dark Web...
-
Senior security consultant
2 days ago
Navi Mumbai, India Eventus Security Full timeWork Location: Ahmedabad & Navi MumbaiJob Summary:We are seeking a highly skilled and experienced Senior Security Consultant specializing in Red Teaming to join our dynamic security team. The successful candidate will play a crucial role in simulating advanced cyber threats, identifying vulnerabilities, and providing actionable recommendations to enhance our...
-
Senior Security Consultant
2 days ago
Navi Mumbai, India Eventus Security Full timeWork Location: Ahmedabad & Navi MumbaiJob Summary:We are seeking a highly skilled and experienced Senior Security Consultant specializing in Red Teaming to join our dynamic security team. The successful candidate will play a crucial role in simulating advanced cyber threats, identifying vulnerabilities, and providing actionable recommendations to enhance our...
-
Senior Security Consultant
4 days ago
Navi Mumbai, India Eventus Security Full timeWork Location: Ahmedabad & Navi MumbaiJob Summary:We are seeking a highly skilled and experienced Senior Security Consultant specializing in Red Teaming to join our dynamic security team. The successful candidate will play a crucial role in simulating advanced cyber threats, identifying vulnerabilities, and providing actionable recommendations to enhance our...
-
Senior Security Consultant
2 days ago
navi mumbai, India Eventus Security Full timeWork Location: Ahmedabad & Navi Mumbai Job Summary: We are seeking a highly skilled and experienced Senior Security Consultant specializing in Red Teaming to join our dynamic security team. The successful candidate will play a crucial role in simulating advanced cyber threats, identifying vulnerabilities, and providing actionable recommendations to enhance...
-
Senior Security Consultant
3 days ago
Navi Mumbai, India Eventus Security Full timeWork Location: Ahmedabad & Navi MumbaiJob Summary:We are seeking a highly skilled and experienced Senior Security Consultant specializing in Red Teaming to join our dynamic security team. The successful candidate will play a crucial role in simulating advanced cyber threats, identifying vulnerabilities, and providing actionable recommendations to enhance our...
-
Senior Security Consultant
1 day ago
Navi Mumbai, India Eventus Security Full timeWork Location: Ahmedabad & Navi Mumbai Job Summary: We are seeking a highly skilled and experienced Senior Security Consultant specializing in Red Teaming to join our dynamic security team. The successful candidate will play a crucial role in simulating advanced cyber threats, identifying vulnerabilities, and providing actionable recommendations to...
-
Senior Security Consultant
2 days ago
Navi Mumbai, India Eventus Security Full timeWork Location: Ahmedabad & Navi Mumbai Job Summary: We are seeking a highly skilled and experienced Senior Security Consultant specializing in Red Teaming to join our dynamic security team. The successful candidate will play a crucial role in simulating advanced cyber threats, identifying vulnerabilities, and providing actionable recommendations to enhance...
-
Senior Security Consultant
2 days ago
Navi Mumbai, India Eventus Security Full timeWork Location: Ahmedabad & Navi Mumbai Job Summary: We are seeking a highly skilled and experienced Senior Security Consultant specializing in Red Teaming to join our dynamic security team. The successful candidate will play a crucial role in simulating advanced cyber threats, identifying vulnerabilities, and providing actionable recommendations to...
Associate Security Consultant- Appsec + Network Security
2 months ago
Primary Skill: Application Security Lead ( VAPT, Web application Security)
Secondary Skill- Network Security (Firewall, LB,WAF,DDOS)
Good to have-GRC ,IT & Infra Audit
Education must be BE/BTech/ MCA & 7yrs+ exp.
Location- Mumbai, Bellapur
Summary-Governance Risk & Compliance
Perform risk assessments and compliance reviews against regulatory requirements such as RBI Information Assurance, CIS,NIS and global ISMS standards such as ISO27001
Execute internal audits such as IT General Controls for on-premise IT infrastructure, Microsoft Azure cloud infrastructure, IT Project Management, IT Operations and Service Management including ISO20000, Information Security, Network and Application Architecture Security
Establish and govern the Information Security Policy Program across the organization. Establish the GRC assurance program in association with security team for holistic assurance activity, in association with manager aligned with organizational security & compliance framework.
Endorse and Oversee Information Security Risk Assessment for strategical initiatives and information involved in the operational activities, Establish Compliance management program for the approved and applicable regional and international GRC relevant compliance.
Establish the performance management framework and metrics for measuring performance of governance and compliance related internal controls.
Knowledge of common information security management frameworks, such as CIS Benchmarks for AWS, Azure and GCP, Cloud Security Alliance Guidance for critical areas of focus in Cloud Computing, Cloud Controls Matrix, and NIST 800-53.
Establish GRC assurance management policies and processes to ensure the implementation posture and effectiveness of the controls across the organisation.
Working knowledge of the Microsoft Security Development Lifecycle (SDL), OWASP Software Assurance Maturity Model (SAMM), or Building Security in Maturity Model (BSIMM).
Core Accountabilities:
Perform penetration testing and vulnerability scanning on network/infrastructure, web and mobile applications along with configuration review on network appliances and servers.
Designing and implementing infra and network security solutions, and strong knowledge & administration of Firewall (Cisco & Paloalto), LB, WAF and DDoS.
Perform risk assessments and compliance reviews against regulatory requirements such as RBI & PCIDSS Information Assurance, CIS and global ISMS standards such as ISO27001
Carry out IT audits for government and private sector clients including stakeholder communication, observation buy-ins, and exit meetings
Execute internal audits such as IT General Controls for on-premises IT infrastructure, Microsoft Azure cloud infrastructure, IT Project Management, IT Operations and Service Management including ISO20000, Information Security, Network and Application Architecture Security
Conduct hands-on sessions comprising of OWASP and NIST penetration testing methodologies and secure source code guidelines for client’s Information Security teams
Knowledge of web Application security testing (Black, white and grey box) testing & Strong Web application security experience with thorough understanding of web application vulnerabilities and their mitigation
Experience in Secure code review would be an added advantage & thorough understanding of vulnerability assessment and sharing the mitigation / recommendation for the identified security weakness.
Analyze and closure of Security Incident
Maximize productivity and manage onsite delivery of IT audits across multiple, simultaneous clients in accordance with project scopes and deadlines.
Establish and govern the Information Security Policy Program across the organization. Establish the GRC assurance program in association with security team for holistic assurance activity
Establish the Information Security Risk Management process in association with manager aligned with organizational security & compliance framework.
Endorse and Oversee Information Security Risk Assessment for strategical initiatives and information involved in the operational activities.
Establish Compliance management program for the approved and applicable regional and international GRC relevant compliance.
Establish the performance management framework and metrics for measuring performance of governance and compliance related internal control.
Enhance the objectives, re-evaluate goals and other compliance relevant requirements for the applicable compliance within organization. Assess and adopt new applicable regulatory and other compliances in liaison with the compliance officer.
