Cybersecurity Professional

Job Title: Cybersecurity Expert

In a world where data protection is paramount, we seek an accomplished cybersecurity specialist to safeguard sensitive information and ensure regulatory compliance.

Key Responsibilities:

• Develop a comprehensive enterprise-wide cybersecurity strategy, encompassing frameworks and controls that address threat management, data protection, cloud security, and regulatory compliance.

• Monitor, detect, and respond to cyber threats and incidents using SIEM and SOC processes, ensuring timely resolution and minimizing business disruption.

• Conduct thorough vulnerability assessments, penetration testing (VAPT), red/blue/purple team exercises to identify and remediate potential security risks.

• Perform digital forensics, root cause analysis, and incident response lifecycle management to ensure seamless continuity and optimal business outcomes.

• Establish and enforce policies for data privacy, identity and access management (IAM/PAM), and data loss prevention (DLP).

• Secure infrastructure across network, endpoint, application, database, and cloud environments, leveraging expertise in firewalls, intrusion detection/prevention systems (IDS/IPS), encryption, and secure configuration.

• Implement security controls for cloud environments (AWS, Azure, GCP) and containers (Docker, Kubernetes), ensuring scalability and adaptability to evolving threats.

• Manage and tune security tools such as firewalls, web application firewalls (WAF), intrusion detection/prevention systems (IDS/IPS), endpoint detection/response (EDR), security orchestration, automation, and response (SOAR), cloud access security brokers (CASB), and denial-of-service (DDoS) protection.

• Collaborate with DevOps teams to embed security in continuous integration/continuous deployment (CI/CD) pipelines, adhering to DevSecOps practices and ensuring seamless integration with existing infrastructure.

• Ensure compliance with industry-specific regulations, including IRDAI, RBI, GDPR, HIPAA, ISO 27001, NIST, PCI-DSS, and SOC2, maintaining a high level of security awareness and risk management.

• Conduct third-party/vendor risk assessments and ensure supply chain security, mitigating potential threats and vulnerabilities.

• Lead business continuity and disaster recovery efforts from a security standpoint, developing and implementing strategies to minimize downtime and ensure rapid recovery.

• Drive security awareness programs for employees and stakeholders, promoting a culture of security and fostering a strong sense of responsibility.

Technical Skills Required:

Core Security Areas:

• Network Security: Firewalls, IDS/IPS, VPN, Zero Trust, SD-WAN, Network Access Control (NAC).

• Endpoint Security: Endpoint Detection/Response (EDR) solutions (CrowdStrike, Carbon Black, SentinelOne, Microsoft Defender).

• Application Security: OWASP Top 10, Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Runtime Application Self-Protection (RASP), API security.

• Cloud Security: Cloud Security Posture Management (CSPM), Cloud Workload Protection Platforms (CWPP), Cloud Access Security Brokers (CASB); secure configuration of AWS, Azure, GCP.

• Identity & Access Management: Identity and Access Management (IAM), Privileged Access Management (PAM) (CyberArk, Okta, Ping, Azure AD, SailPoint).

• Data Protection: Data Loss Prevention (DLP) solutions, encryption (AES, RSA, TLS, PKI), key management, tokenization.

• Security Operations: Security Information and Event Management (SIEM) (Splunk, QRadar, ArcSight, ELK), Security Orchestration, Automation, and Response (SOAR), threat hunting, Security Operations Center (SOC) operations.

• Threat & Vulnerability Management: Qualys, Nessus, Rapid7, Burp Suite, Metasploit.

• Incident Response & Forensics: EnCase, FTK, Volatility, Wireshark, memory forensics.

• DevSecOps: Container scanning (Aqua, Twistlock, Snyk), CI/CD pipeline security, Infrastructure as Code (IaC) scanning.

• Governance, Risk & Compliance (GRC): RSA Archer, ServiceNow GRC, ISO/NIST frameworks.

Advanced Areas:

• Red/Blue/Purple Teaming: Adversary simulation, MITRE ATT&CK framework.

• Malware Analysis: Reverse engineering, sandboxing.

• Blockchain & IoT Security: Secure protocols, device hardening.

• AI/ML Security: Model poisoning, adversarial attacks.

• Threat Intelligence: STIX/TAXII, MISP, integrating CTI feeds.

Required Qualifications:

• Bachelor's/Master's in Computer Science, Information Security, or related discipline.

• Certifications (one or more preferred):

• CISSP, CISM, CISA, CRISC (Governance & Risk).

• CEH, OSCP, OSWE, GPEN (Offensive Security).

• CCSP, CCSK, AZ-500, AWS Security Specialty (Cloud Security).

• ISO 27001 LA/LI, PCI-DSS, HIPAA, GDPR compliance certifications.

Soft Skills:

• Strong analytical, troubleshooting, and documentation skills.

• Excellent communication skills to interact with business and technical stakeholders.

• Ability to handle high-pressure security incidents and provide timely resolution.

• Leadership capability for senior roles (mentoring SOC teams, driving projects).