Talent.com
Consultant / Senior Consultant - Cyber Security & Vulnerability Assessment

Consultant / Senior Consultant - Cyber Security & Vulnerability Assessment

XequalstoNavi Mumbai
7 days ago
Job description

Description :

  • Red Team Assessment / Support
  • SAP Security, Authorizations and GRC Access Control
  • IT / OT Security Assessments and Implementation
  • ISO 27001 ISMS Implementation and Certification
  • Vendor Security & Risk Assessment
  • Cyber / Security Incident Response, Investigation, Root Cause Analysis, Corrective and Preventive Action Plans
  • Supporting various Internal / External / Cybersecurity and Certification Audits
  • Providing information security support for IT / Business projects and enquiries from other functions and business across the APAC / EMEA Region
  • Assessing and managing risks, vulnerabilities, threats and compliance within the Region
  • Develop, use and continuously improve a formal set of processes by which the organization can identify various security concerns, gaps and remedial actions to ensure the appropriate IT Security resilience of the infrastructure
  • Implement and sustain the Group Standards / Policies and Guidelines on Information Security
  • Develop Local / Regional specific Security Guidelines / Processes and implement in APAC Region, as needed
  • Co-ordinate with Internal Teams within IT / Business and ensure critical audit findings and gaps are addressed in timely manner
  • IT Security / Cybersecurity Projects Business Case Preparation, Project Management and Governance

Your Role & responsibilities :

Primary Responsibilities :

  • Internal and External Vulnerability Assessment and Penetration Testing All kind of applications Client / Web / Mobile, IT Infrastructure and Network Devices
  • Retesting / Revalidation, post remediation if vulnerabilities
  • Preparing VAPT Report and provide the walkthrough of findings and evidences to IT Infrastructure, Application Support and Development Teams
  • Supporting the implementation of DevSecOps

    • Secondary Skills / Responsibilities :

  • Red Teaming / Purple Team operations
  • Internal Red Team Assessment
  • IT / OT Cybersecurity Assessment and Penetration Testing
  • WiFi Pen Test

    • Your profile :

  • Bachelors degree in Computer Science, Information Technology or Engineering degree in any discipline with experience / skills in Information Security / Cybersecurity.
  • Must have at least one practical / lab / challenge penetration testing certification (OSCP, OSWE, OSCE, OSEE, SANS, eCPPTv2, eCPTX, eWPTXv2, etc.);
  • CEH / CFIH / CISSP / CISM / CRISC certifications are optional / added advantage

    • Your experience :

  • At least 5+ years of experience in Information Security / Cybersecurity, primarily in performing Vulnerability
  • Assessment and Penetration Testing for Web / Mobile / Client Applications, IT Infrastructure and Network Devices,
  • Red Team Assessment, OSINT, Purple Teaming, etc.

    • Required skills :

  • Penetration Testing using various open source and professional tools and methodologies.
  • Good command over Kali Linux and Tools
  • NIST Cybersecurity and MITRE Framework
  • Open Source Intelligence (OSINT)
  • Knowledge and Experience in VA / PT Tools like Kali Linux, Nessus, MetaSploit, Acunetix, BurpSuite, MobSF, etc.
  • Top 10 OWASP Vulnerabilities and Attack Vectors
  • Phishing and Social Engineering Attack vectors
  • Privilege Escalation Techniques
  • Application Security / SSDLC / DevSecOps
  • Networking and IT Security Fundamentals

    • Leadership & Soft skills :

  • Open-minded, collaborative and an effective team player.
  • Ability to work in a multicultural and diverse team.
  • Good in Document / report preparation for Penetration Testing
  • Committed to deliver the VAPT and report in the agreed time / SLA
  • Driven for success and aspiring to a culture of service excellence, always putting the customer, our people and our business at the center of everything he / she does.
  • Ability to deal with ambiguity / conf. to work proactively and under pressure considering the criticality required to ensure the right quality of service for the business.
  • Lead by example on values and culture.

    • Key Personal Attributes :

  • Security and Continuous Improvement Mind-set
  • Business focused, Customer & Service minded
  • Strong Consultative and Management skills
  • Confident in advising, developing and articulating solution
  • Result oriented and with a work ethic of delivering on-time and in scope
  • Open to Change and Attitude to challenge the Status Quo, as needed

    • Language Requirements :

  • Fluent written and spoken English with good command on inter personal and business communication.

    • Work Location :

  • Navi Mumbai, India
  • Hybrid working / Remote working model as per company policy

    • Travel requirements :

    May be required, depending on the business / project requirements

    (ref : hirist.tech)

    Create a job alert for this search

    Cyber Security Consultant • Navi Mumbai