Consultant

Job Title : Cyber Security Assessments & Security Domain-Specific Audits Consultant (E3.2)

Location : Noida, India

Company : HCL Technologies

Job Type : Full-time

Experience Level : Mid-Senior (E3.2)

About HCL Technologies :

HCL Technologies is a global IT services company, providing a comprehensive range of technology solutions across diverse industries. We are committed to driving digital transformation and building secure, innovative, and future-ready enterprises. At HCLTech, we leverage next-gen technologies like AI, IoT, and cybersecurity to deliver value and make a real-world impact.

Role Overview :

As a Cyber Security Assessments & Security Domain-Specific Audits Consultant , you will be responsible for conducting detailed cybersecurity assessments, audits, and evaluations to assess the security posture of client organizations. You will specialize in security domain-specific audits and work closely with clients to identify vulnerabilities, recommend improvements, and ensure compliance with industry standards and best practices.

You will collaborate with cross-functional teams to provide actionable insights, and deliver solutions that mitigate security risks and enhance the overall security landscape of the organization.

Key Responsibilities :

• Cybersecurity Assessments :
• Conduct comprehensive security assessments of enterprise IT systems, networks, and applications.
• Identify, evaluate, and prioritize security vulnerabilities, risks, and gaps.
• Develop and execute penetration testing and vulnerability scanning procedures.
• Review security policies, protocols, and incident response procedures.
• Analyze security architecture and make recommendations for improvements.
• Security Domain-Specific Audits :
• Lead security domain-specific audits (e.g., network security, cloud security, application security).
• Perform risk-based assessments in specific security domains to ensure compliance with internal policies and external regulatory requirements.
• Identify security gaps, misconfigurations, and potential threats within various security domains.
• Work with clients to ensure that they meet industry standards such as ISO 27001, NIST, GDPR, PCI-DSS, etc.
• Security Controls & Compliance :
• Assess the design, implementation, and effectiveness of security controls.
• Ensure compliance with internal and external security requirements.
• Work with clients to prepare for external audits, and facilitate internal compliance reviews.
• Generate audit reports, track action items, and provide recommendations for improvements.
• Security Best Practices :
• Share best practices, methodologies, and frameworks for implementing robust security measures.
• Mentor and guide junior team members on security audit methodologies and techniques.
• Assist in the development and review of security policies, guidelines, and standards.
• Stakeholder Communication :
• Present findings to technical and non-technical stakeholders, including senior management.
• Provide clear and actionable reports on the security posture of client systems.
• Collaborate with client teams to implement remediation plans for identified vulnerabilities.
• Continuous Learning & Research :
• Stay updated on the latest trends in cybersecurity and threat intelligence.
• Research new vulnerabilities, emerging threats, and industry-specific security concerns.
• Apply new knowledge to improve security assessments and audits.