Talent.com
Security Consultant - VAPT
Security Consultant - VAPTPrime Infosoft • Bangalore
Security Consultant - VAPT

Security Consultant - VAPT

Prime Infosoft • Bangalore
30+ days ago
Job description

Description : Role Proficiency :

With strong knowledge of various applicable compliance standards independently handle internal / external compliance audits and VAPT / Red Teaming assignments. Involve more in the risk assessment and remediations. Effectively communicate with customer to understand the requirements and clearly convey the requirements to team. Handle the assigned tasks with minimal supervision

Outcomes :

  • Should handle the assigned tasks from the allocated domain with minimal guidance from the leads. (Domain Examples : BCMS Risk assessment incident management HITRUST SOC customer assurance Awareness activities Data Privacy VAPT Red Teaming etc.)
  • Handle (with minimal guidance from the supervisors) internal / external compliance audits to ensure compliance with ISO 27001 / ISO 22301 / ISO 27701 requirement as well as process specific requirements.
  • Responsible for the effective documentation of internal audits (reports) external audit documentation.
  • Help the team for effective external audit facilitation and the related responsibilities.
  • Point out the non-conformance areas related to information security with assistance from the supervisor.
  • Ensure that policies are updated as and when required and eliminate the discrepancies of old policy versions.
  • Conduct information security awareness training programs for all the employees contractors and approved system users.
  • Evaluate IT Controls implementation and perform Risk Assessment.
  • Carry out technical vulnerability assessments of IT systems and processes to identify potential vulnerabilities.
  • Make recommendations to control any risks identified and ensure that they are implemented.
  • Collect review and analyse latest technologies and tools.
  • Analyse user requirements and steps required to perform the VAPT / Red Teaming.
  • Interact with and communicate detailed technical requirements to the team.
  • Lead Security Assessment scoping independently based on security standards like OWASP.
  • Lead Web Application Penetration Testing Network Penetration Testing Mobile Penetration Testing and Code Review independently based on the guidance from leads.
  • Learn and understand existing and emerging security management practices.
  • Independently handle the evidence collection from multiple teams as part of any external audits.
  • Assist in customer assurance activities.
  • Assist in the process automation activities.
  • Mentor and Lead A band employees.

Measures of Outcomes :

  • Number of internal audits and security assessments conducted per year.
  • Number of external audit facilitation activities.
  • Number of Threats / Risks / Vulnerabilities reported per year.
  • Number of NCs in external audits on assigned domains.
  • Number of areas of responsibility on cross domains.
  • Performance of ISMS / BCMS / PIMS / QMS in the responsible centre / regions.
  • Awareness activities conducted and the percentage of adoption in the responsible centre / regions.
  • Noticeable initiatives taken to improve the process.
  • Less than two stake holder escalations.
  • More than three appreciation from the Expected :

    • Documentation :

  • Policy and Procedure amendments
  • Awareness training materials
  • Presentations decks for internal / external discussions
  • Audit / Security Assessment reports

    • Process :

  • Internal ISMS audits independently carry out audits
  • prepare audit reports and ensure timely closure of audit reports
  • Compliance Audits Representation in certification audits
  • conduct preparatory session and evidence collection
  • Risk Assessment - IT Controls implementation and assess risks
  • Infosec activities training material
  • conducting sessions
  • co-ordinate with other teams for trainings conducting
  • Customer Assurance independently handle customer assurance requirements and evidence collection
  • Policy Identify discrepancies in the policies and addressing it
  • Vulnerability Assessment and Penetration Testing / Red Teaming Activities
  • CM activities
  • Executing other location responsibilities

    • Monitoring :

  • Mentoring and leading A band employees

    • Training or certifications :

  • 2 per year (1 certification and minimum 1 of UST trainings on ISMS domains)

    • Skill Examples :

  • Ability to understand prioritize and escalate tasks to resolve issues quickly and make decisions
  • Able to interpret all scenarios applicable to the business for identifying the potential risks associated with various functions / services.
  • Proficiency in Network Security Controls' implementation like IAM IPS / IDS E-Mail Security Controls Cloud Security Controls etc.
  • Proficiency in Technical Vulnerability Assessment and Management.
  • Strong compliance auditing knowledge.
  • Detail oriented customer oriented result delivery oriented analytical thinking
  • Strong Excel and Dashboard skills.
  • Excellent Presentation and communication skills
  • Excellent verbal and written communication skills required including the ability to effectively communicate in both highly technical and non-technical environments
  • A great problem solver with the knack of coaching others to do the same
  • Good at working in a team and with other teams
  • Good time management
  • A desire for continuous learning and skill development.
  • Self-motivated and enthusiastic

    • Knowledge Examples :

  • Should have a strong understanding of concepts of Information Security Business Continuity and Data Privacy VAPT Red Teaming and various compliance standards.
  • Knowledge on ISO and other Compliance standards efficient to evaluate the security controls.
  • Knowledge on ISO 22301 / 27001 / 9001 / 27701 Risk Management incident management awareness activities customer assurance etc.
  • Knowledge on standard SDLC and project management life cycles.
  • Knowledge on the operations of various functional units like HR REFM IT Finance etc. and units involved in IT Asset lifecycle management.
  • Expert on security testing standards like OWASP Top 10 SANS 25 etc.
  • Good at OWASP cheat sheets and other security frameworks.
  • Expert on Linux commands.
  • Expert on Scripting Languages like Shell Script Python etc.
  • Development and Testing knowledge would an added advantage.
  • Hands on experience in RSA Archer Postman Burp Suite Nessus Nmap Genymotion MobSF Drozer etc.
  • Good to have Certifications like ISO 27001 / 22301 / 9001 / 27701 Lead Auditor / Implementor CISA CRISC SSCP ECSA (Practical) ECES CHFI OSEE etc.

    • (ref : hirist.tech)

    Create a job alert for this search

    Security Consultant • Bangalore

    Related jobs
    Senior Consultant, Offensive Security

    Senior Consultant, Offensive Security

    Palo Alto Networks • Bengaluru, Karnataka, India
    At Palo Alto Networks®, we’re united by a shared mission—to protect our digital way of life.We thrive at the intersection of innovation and impact, solving real-world problems with cutting-edge tec...Show more
    Last updated: 14 days ago • Promoted
    SAP GRC and Security Specialist

    SAP GRC and Security Specialist

    LogFix SCM Solutions Pvt Ltd • Bengaluru, Republic Of India, IN
    Position Title : SAP GRC Security Consultant.Location : Bangalore / Chennai / Hyderabad.Notice Period : Immediate to 15 Days. We are seeking a highly skilled SAP GRC Security Consultant with strong exp...Show more
    Last updated: 8 days ago • Promoted
    Lead Security Solutions Consultant

    Lead Security Solutions Consultant

    Palo Alto Networks • Bengaluru, Republic Of India, IN
    At Palo Alto Networks®, we’re united by a shared mission—to protect our digital way of life.We thrive at the intersection of innovation and impact, solving real-world problems with cutting-edge tec...Show more
    Last updated: 2 days ago • Promoted
    Sap Security Consultant

    Sap Security Consultant

    LogFix SCM Solutions Pvt Ltd • Bengaluru, Republic Of India, IN
    Position Title : SAP GRC Security Consultant.Location : Bangalore / Chennai / Hyderabad.Notice Period : Immediate to 15 Days. We are seeking a highly skilled SAP GRC Security Consultant with strong exp...Show more
    Last updated: 8 days ago • Promoted
    Soc & Vapt Security Analyst

    Soc & Vapt Security Analyst

    FinSpot Technology Solutions Private Limited • Bengaluru, Republic Of India, IN
    We are seeking a skilled SOC & VAPT Security Analyst with strong expertise in analyzing and remediating vulnerabilities identified in VAPT reports across firewalls, servers, and network infrastruct...Show more
    Last updated: 2 hours ago • Promoted • New!
    Managed Services Security Consultant

    Managed Services Security Consultant

    KPMG India • Bengaluru, Republic Of India, IN
    KPMG Global Services (KGS) was set up in India in 2008.It is a strategic global delivery organization, which works with more than 50 KPMG member firms to provide a progressive, scalable and customi...Show more
    Last updated: 5 days ago • Promoted
    SOC & VAPT Security Analyst

    SOC & VAPT Security Analyst

    FinSpot Technology Solutions Private Limited • Bengaluru, Karnataka, India
    We are seeking a skilled SOC & VAPT Security Analyst with strong expertise in analyzing and remediating vulnerabilities identified in VAPT reports across firewalls, servers, and network infrastruct...Show more
    Last updated: 1 hour ago • Promoted • New!
    SAP BTP Security Technical Consultant

    SAP BTP Security Technical Consultant

    Tata Consultancy Services • Bangalore, IN
    Experience with SAP Cloud Identity Services.SAP Authorization and Trust Management Service.Analyze new business requirements and changes to existing functionalities (small and medium size projects)...Show more
    Last updated: 23 days ago • Promoted
    Security Consultant

    Security Consultant

    Confidential • Bengaluru / Bangalore, India
    At Cyberium Labs, we help organizations navigate the complex cybersecurity landscape with confidence.Our mission is to provide not just protection, but strategic guidance and custom-built security ...Show more
    Last updated: 27 days ago • Promoted
    SAP Security Consultant

    SAP Security Consultant

    LogFix SCM Solutions Pvt Ltd • Bengaluru, Karnataka, India
    Position Title : SAP GRC Security Consultant.Location : Bangalore / Chennai / Hyderabad.Notice Period : Immediate to 15 Days. We are seeking a highly skilled SAP GRC Security Consultant with strong exp...Show more
    Last updated: 8 days ago • Promoted
    Security Consultant

    Security Consultant

    Tata Consultancy Services • Bengaluru, Karnataka, India
    Location : Bengaluru, Chennai, Hyderabad.IT experience specifically in Identity Management.Hands on development, customization, and solution experience on one or more Identity Management solution s...Show more
    Last updated: 9 days ago • Promoted
    Saint Fox - Senior VAPT Consultant - SIEM

    Saint Fox - Senior VAPT Consultant - SIEM

    St. Fox Consultancy Pvt Ltd • Bangalore
    Description : Fox, a leading consultancy in the realm of Cybersecurity and advanced tech solutions, is recognized for its pioneering appr...Show more
    Last updated: 30+ days ago • Promoted
    Senior Network Security Consultant

    Senior Network Security Consultant

    Palo Alto Networks • Bengaluru, Republic Of India, IN
    At Palo Alto Networks® everything starts and ends with our mission : .Being the cybersecurity partner of choice, protecting our digital way of life. Our vision is a world where each day is safer and m...Show more
    Last updated: 30+ days ago • Promoted
    Security & Controls Consultant

    Security & Controls Consultant

    PwC Acceleration Center India • Bengaluru, Republic Of India, IN
    To really stand out and make us fit for the future in a constantly changing world, each and every one of us at PwC needs to be a purpose-led and values-driven leader at every level.To help us achie...Show more
    Last updated: 8 days ago • Promoted
    SAP Security and Controls Consultant

    SAP Security and Controls Consultant

    EliteRecruitments • Bengaluru, Republic Of India, IN
    GGN | Bangalore | Pune | Hyderabad.Individual Contributor / Supervisory.Deliver IT Risk & Controls Assessments, IT Audits, and Compliance reviews. Coordinate with global teams on engagements.Ensure ...Show more
    Last updated: 5 days ago • Promoted
    Senior Security Consultant (Offensive)

    Senior Security Consultant (Offensive)

    CloudSEK • Bengaluru, Republic Of India, IN
    We are a bunch of super enthusiastic, passionate, and highly driven people, working to achieve a common goal! We believe that work and the workplace should be joyful and always buzzing with energy!...Show more
    Last updated: 5 days ago • Promoted
    Senior Security Consultant

    Senior Security Consultant

    Palo Alto Networks • Bengaluru, Republic Of India, IN
    At Palo Alto Networks®, we’re united by a shared mission—to protect our digital way of life.We thrive at the intersection of innovation and impact, solving real-world problems with cutting-edge tec...Show more
    Last updated: 11 days ago • Promoted
    Strategic Security Solutions Consultant

    Strategic Security Solutions Consultant

    Palo Alto Networks • Bengaluru, Republic Of India, IN
    At Palo Alto Networks® everything starts and ends with our mission : .Being the cybersecurity partner of choice, protecting our digital way of life. Our vision is a world where each day is safer and m...Show more
    Last updated: 30+ days ago • Promoted