Information Security Lead – Managed Security Services
3 days ago
Experience: 8+ Years Function: Security Assessments (Web, API, Mobile, Infra, Cloud) | Customer/Delivery Support Location: Bangalore Employment Type : Full-Time (In office) Application Form: Role Purpose We are seeking an experienced Information Security Lead to drive and oversee end-to-end security assessments across diverse technology stacks — including web, mobile, API, infrastructure, and cloud. The role involves hands-on testing, validating findings with technical evidence or PoC, mapping results to standards (OWASP, NIST, CIS), and ensuring closure through effective remediation. The candidate will also act as a technical interface with customers, delivery teams, and internal stakeholders. Key Responsibilities 1. End-to-End VAPT Delivery ● Plan, scope, and execute Vulnerability Assessment and Penetration Testing (VAPT) across applications, APIs, infrastructure, and cloud workloads. ● Focus on manual-first testing to uncover complex issues like IDOR/BOLA, broken access control, SSRF, logic abuse, and weak authentication. ● Deliver detailed reports with proof-of-concept, impact assessment, and remediation guidance. 2. Application / API / Mobile Security ● Conduct security testing of web and APIs aligned with OWASP Top 10 (Web & API) standards. ● Perform mobile app testing (Android/iOS) per OWASP MASVS/MSTG, using tools like MobSF, Frida, and Objection. ● Work closely with developers and DevOps teams to clarify findings, verify fixes, and perform retests. 3. Cloud Security Review ● Review AWS, Azure, and GCP configurations for misconfigurations, weak IAM policies, and exposed services. ● Recommend security hardening in line with CIS benchmarks. ● Validate cloud-exposed endpoints and configurations to prevent SSRF and metadata exposure attacks. 4. Defensive Integration ● Translate assessment findings into actionable defensive controls — SIEM rules, WAF policies, and API gateway configurations. ● Collaborate with SOC/Defensive teams to enhance visibility and detection based on VAPT results. 5. Customer / Delivery / Internal Support ● Join client and internal calls to explain methodologies, findings, and risk ratings. ● Provide inputs for SOWs, level of effort (LoE), and environment requirements. ● Conduct walkthroughs of assessment results with app, infra, and cloud teams for effective remediation. 6. Process & Team Enablement ● Maintain and update SOPs, templates, and checklists in line with OWASP and NIST frameworks. ● Integrate testing processes into SDLC and CI/CD pipelines for continuous security assurance. ● Mentor junior team members, review reports, and ensure quality in assessment delivery. Required Technical Skills ● Strong hands-on experience in VAPT, WAPT, API, and Mobile Application Testing. ● Proficiency with tools: Burp Suite Pro, Nmap, MobSF, Frida, Objection, Postman, sqlmap, cloud consoles. ● Deep understanding of HTTP, OAuth2/OIDC/JWT, TLS, REST, GraphQL, and CORS. ● Familiarity with security frameworks and standards — OWASP, NIST CSF, CIS Benchmarks, CVSS v3.x. ● Scripting ability in Python/PowerShell for automation and PoC generation. Preferred Certifications ● Offensive Certifications: OSCP, OSWE, eWPTX, GWAPT, GMOB ● Cloud & Security Certifications: AZ-500, AWS Security Specialty, CCSP ● Exposure to SAST, DAST, SCA, and DevSecOps pipeline integration
-
Senior Security Engineer – AI, Cloud
6 hours ago
bangalore, India Symosis Security Full timeLocation: Remote (India)Type: Full-TimeCompany: Symosis SecurityAbout Symosis SecuritySymosis is a cybersecurity consulting firm purpose-built for the AI-native, cloud-first era. We help public-sector and enterprise clients mature their security operations through managed services, offensive testing, governance, and automation. We’re expanding our MSSP...
-
Information Security Lead
3 days ago
Bangalore, India Terralogic Full timeExperience: 8+ Years Function: Security Assessments (Web, API, Mobile, Infra, Cloud) | Customer/Delivery Support Location: Bangalore Employment Type : Full-Time (In office) Application Form: Role Purpose We are seeking an experienced Information Security Lead to drive and oversee end-to-end security assessments across diverse technology stacks — including...
-
bangalore, India Terralogic Full timeExperience: 8+ YearsFunction: Security Assessments (Web, API, Mobile, Infra, Cloud) | Customer/Delivery SupportLocation: BangaloreEmployment Type: Full-Time (In office)Application Form: https://forms.gle/7cxxBw7k3Hghp2Vw5Role PurposeWe are seeking an experienced Information Security Lead to drive and oversee end-to-endsecurity assessments across diverse...
-
Information Security Lead
2 days ago
bangalore district, India Terralogic Full timeExperience: 8+ Years Function: Security Assessments (Web, API, Mobile, Infra, Cloud) | Customer/Delivery Support Location: Bangalore Employment Type : Full-Time (In office) Application Form: Role Purpose We are seeking an experienced Information Security Lead to drive and oversee end-to-end security assessments across diverse technology stacks — including...
-
Head of Information Security
2 days ago
bangalore, India Cube Consultancy Services Full timeJob Responsibilities: - Develop, implement, and monitor a strategic, comprehensive enterprise information security and IT risk management program to ensure the integrity, confidentiality, and availability of information owned, controlled, or processed by the organization. - Manage the enterprise's information security organization, consisting of direct...
-
Cyber & Information Security
2 days ago
bangalore, India WEBSKITTERS TECHNOLOGY SOLUTIONS PRIVATE LIMITED Full timeWe are seeking a strategic, forward-thinking Head of Cyber & Information Security to lead the design, implementation, and governance of enterprise-wide information security frameworks across Webskitters. This senior leadership role will be responsible for defining and executing the organisation’s cybersecurity, data protection, and compliance...
-
Information Security Manager
4 weeks ago
Bangalore, Karnataka, India EMBARKGCC SERVICES PRIVATE LIMITED Full timeRole Information Security Manager Base location Bangalore Chennai Mumbai Pune Hyderabad Key Responsibilities Security Architecture Review Threat Modeling Conduct security architecture reviews for applications cloud environments and IT systems to identify risks Perform threat modeling e g STRIDE PASTA MITRE ATT CK DREAD to assess potential attack vectors and...
-
Information Security Training Lead
2 weeks ago
Bangalore, India Narayana Health Full timeThe Information Security Lead will be responsible for developing and implementing the organization's information security framework to safeguard patient data, clinical systems, and enterprise IT infrastructure. This role ensures compliance with healthcare regulations, international standards, and hospital group policies, while building a culture of security...
-
Information Security and Risk Lead
3 days ago
Bangalore, India Dairy Day Full timeDairy Day is one of India’s largest ice cream brands. Dairy Day manufactures and supplies products across a variety of cups, cones, sticks, tubs, and other special packaging with over 30+ flavors. The company has state-of-the-art manufacturing facilities in Karnataka with a production capacity of 3 Lakh liters/day. The Information Security and Controls...
-
Information Security
4 days ago
bangalore, India Dairy Day Full timeCompany Description Dairy Day is one of India’s largest ice cream brands. Over the last 22+ years, we have built a formidable presence across South & West India and are continuously expanding across the country, selling to over 60,000+ retailers. Dairy Day manufactures and supplies products across a variety of cups, cones, sticks, tubs, and other special...
