Associate Security Consultant
Skills Band experience Position count Job location Job description BudgetAplication Security Architect P1 10 to 15 yrs 3 Navi Mumbai “Experience ¿ 10+ yrs. Qualificaton – BE \ B.Tech \ MCAJob Description ¿ Hands-on experience with key components of Cybersecurity including Penetration Testing, Red teaming, Vulnerability management, Network & Infrastructure security, managed detection and response.¿ Expert knowledge and practical experience with common frameworks, standards and methodologies used such as MITRE, OWASP, NIST Cybersecurity, IS 27001/2.¿ Practical experience with conducting penetration tests and executing red team engagements.¿ Possession/working towards the following certifications: CISSP, CISA CISM, OSCP, GPEN, GWAPT¿ Experience with Dark Web Monitoring and Crawlers¿ Prior experience or expertise performing Red team exercises will be a plus¿ Experience in writing proof-of-concept exploits and creating custom payloads and modules for common ethical hacking frameworks and tools¿ Well versed in system exploits (e.g. Buffer Overflows, PTH attacks, windows authentication framework etc.), network exploitation (e.g. VLAN hopping) or web application exploitation¿ Well versed with security tools & frameworks like Metasploit, Core, Canvas etc.¿ Should be able to formulate Enterprise Security Strategy, Security policy development¿ Should be able to face the security audit and provide responses¿ Identify and manage access control strategy¿ Need to own and enhance the project security architecture¿
Experience in penetration testing, VA, Cyber security testing.¿ Is a single point of contact for the security framework implementation and maintenance¿ Should have experience in application security tools and interpretation of reports¿ Should be aware of top 20 OWASP vulnerabilities and ways to overcome them.¿ Should have experience on Load balancers from Radware & F5¿ Should have implementation experience for DDOS and WAF¿ Should be able to implement robust solutions to overcome the security issues.” Application Security SME U4 7 to 9 yrs 3 Navi Mumbai & Chennai “Qualificaton – BE \ B.Tech \ MCA1. Information Security Professional with an experience of 5-7 Years in information security2. Extensive experience of 5-7 years in Vulnerability Assessment and Penetration testing, Web Application security3. Experience in automated web application vulnerability scanners like Burp Suite, Hp web inspect etc4. Strong understanding of OWASP top 10.5. Knowledge of web Application security testing (Black, white and grey box) testing6. Strong Web application security experience with thorough understanding of web application vulnerabilities and their mitigation7.
Experience in WAF would be an added advantage.8. Thorough understanding of vulnerabilities found invulnerability assessment and their mitigation9. Experience in handling client queries regarding security 10. Suggest mitigation for identified vulnerabilities11. Analyze and closure of Security Incidents.12. Response for IS Audits ,Comprehensive Security Audits etc.11. Mandatory certification: CEH, Good to have: OSCP, CISSP” 17.5 LPANetwork Security lead U4 7 to 9 yrs 1 Navi Mumbai “Qualificaton – BE \ B.Tech \ MCA.Candidate should have hands on Experience on Load Balancer, WAF and DDOS. Load Balancer – 1. Capacity Planning2. SSL Off loader Configuration3. Configuration and Troubleshooting issues4. IPv4 and IPv6 enablement5. Integration with SOC, SIEM and Other tools6. Co-ordination with Vendor for support7. Preventive Maintenance8. Maintaining Configuration of DR devices9. Preparing Plan of Action and Change Requests WAF (Web Application Firewall)1. Monitoring security alerts2. Provide Remedial actions3. Prepare Analysis Reports4. Analysis of application logs5. Coordinate with Application team and get input6. Fine tuning as per the recommendation by App team7.
Skill Set: IDENTITY AND ACCESS MANAGEMENT \ APPLICATION SECURITY ARCHITECT \ APPLICATION SECURITY SME \ SPLUNK ADMIN AND CONTENT WRITING
Job Expiry Date: 29/05/2021