Cyber Security Consultant

Responsibilities :

• Threat & Risk Analysis : Conduct comprehensive threat and risk analysis, assessing the business impact of new and existing systems and technologies to eliminate risk, performance, and capacity issues.
• Vulnerability Management : Implement vulnerability assessments and configure audits of operating systems, web servers, and databases. Detect patterns, insecure features, and malicious activities within the infrastructure.
• Security Technology Evaluation & Deployment : Perform research, testing, evaluation, and deployment of cutting-edge security technology and procedures.
• Breach Detection & Diagnostics : Run diagnostics on any changes to data to verify any undetected breaches and continuously monitor for unusual activities.
• Custom Security System Development : Develop custom systems for specialized security features and procedures for software systems, networks, data centers, and hardware.
• Security Standards & Procedures : Develop and implement robust information security standards, guidelines, and procedures. Maintain security guidelines, procedures, standards, and controls documentation.
• Network Security : Develop and configure firewalls to secure the network infrastructure.
• Threat Intelligence & Protection : Keep current with new intrusion methods and develop proactive protection plans. Possess an in-depth understanding of vulnerabilities, management systems, and common security applications.
• Incident Response & Reporting : Conduct counteractive protocols and report security incidents. Offer customized risk ratings for vulnerabilities based on company policies. Implement defensive protocols if breaches occur.
• Security Tool Proficiency : Demonstrate an in-depth understanding of OWASP testing methodology, Dynamic and Static Application Security Testing, re-engineering, automation, ASP.NET / JAVA, IDS / IPS systems, Burp Suite, Nmap, Nessus, Qualys, and Metasploit, etc.
• Client & Service Provider Coordination : Manage relationships and coordinate with clients and service providers. Provide customized security assessments, implement security policies, design security training materials, organize training sessions, provide technical support, and communicate security policies and procedures.
• Data Protection : Design broad defenses against intruders to protect client data, particularly sensitive data, from both internal and external threats.
• Proactive & Defensive Systems Development : Collaborate with other members of the cybersecurity team to develop new protocols, layers of protection, and both proactive and defensive systems to stay ahead of cyber criminals.
• Security Monitoring & Reporting : Constantly monitor for attacks and run appropriate defensive protocols if breaches occur. Collect data on current security measures for risk analysis and write regular systems-status reports.
• Vulnerability Testing & Remediation : Conduct vulnerability testing to identify weaknesses and collaborate with the cybersecurity team to update defensive protocols as necessary.
• System Configuration : Configure anti-virus systems, firewalls, data centers, and software updates with a security-first mindset.
• Access Management : Grant credentials to authorized users, monitor access-related activities, and check for unregistered information changes.
• Security Awareness Training : Help lead employee training against phishing and other forms of cyberattack.
• Stakeholder Interface : Coordinate and interface with stakeholders, including taking calls and responding to emails, to ensure timely updates and progress reports on projects.
• Documentation & Confidentiality : Prepare internal and external corporate documents for team members and industry partners. Maintain an organized filing system of paper and electronic documents. Uphold a strict level of confidentiality and professionalism.
• Compliance Monitoring : Ensure monitoring compliance with applicable privacy laws.
• Thought Leadership & Advisory : Conduct research and prepare client presentations, information memorandums, and thought leadership documents. Contribute to advisory engagements as a team member, delivering quality output within assigned timelines.

Required Skills :

Good to Have :

Skills Required

Risk Analysis, Vulnerability Management, Network Security, Access Management, compliance monitoring , Stakeholder Management