Overview
3 - 5 Years
1 Opening
Trivandrum
Role description
Role Proficiency:
With strong knowledge and competence independently carry out the assigned tasks with minimal support from the supervisors. Handle the internal audits to ensure the compliance requirements of various applicable standards and more independently handle VAPT/Red Teaming assignments and involve in customer discussions to identify requirements. (Minimum Supervision)
Outcomes:
- Handle the assigned tasks from the allocated domain with minimal guidance from the leads. (Domain Examples: BCMS Risk assessment Incident management HITRUST SOC Customer Assurance Awareness activities Data Privacy VAPT Red Teaming etc.)
- Should independently handle internal audits (with minimal support from the leads) to ensure compliance with ISO 27001/ISO 22301/ISO 27701 requirement as well as process specific requirements.
- Responsible for the effective documentation of internal audits (reports) with accurate mapping to control points.
- Point out the non-conforming areas and suggest measures to improve the information security posture.
- Understand IT Controls implementation and to conduct Risk Assessment.
- Involve with the leads in customer discussions to clearly identify/document the requirement.
- Perform Security Assessment scoping independently based on security standards like OWASP.
- Perform Web Application Penetration Testing Network Penetration Testing Mobile Penetration Testing and Code Review independently based on the guidance from leads.
- Learn and understand existing and emerging security practices with minimal guidance from the leads.
- Mentor A1 and A2 band employees
- Independently handle preparatory sessions and evidence collections from all applicable teams as part of any external audits
- Independently contribute to infosec awareness activities
- Contribute to establish a tracking and reporting strategy.
Measures of Outcomes:
- Number of internal audits conducted or security assessments been a part of.
- Number of Areas of responsibility on cross domains
- Number of NCs in external audits
- Less than two stake holder escalations
- More than two appreciation from the stakeholders
Outputs Expected:
Documentation:
- Policy and Procedure amendments
Awareness training materials
Presentations decks for internal/ external discussions
Audit /Security Assessment reports
Process:
- Internal ISMS audits – independently carry out audits
prepare audit reports and ensure timely closure of audit reports
- Compliance Audits – Representation in certification audits
conduct preparatory session and evidence collection
- Infosec activities – training material
conducting sessions
co-ordinate with other teams for trainings conducting
- Customer Assurance – assist in customer assurance requirements and evidence collection
- Vulnerability Assessment and Penetration Testing/Red Teaming Activities
- CM activities
- Assisting the leads in executing other location responsibilities.
Monitoring:
- Mentoring and monitoring the responsibilities of A1 and A2 band employees
Training or certifications:
- 3 per year (1 certification and minimum 2 of UST training related to Information/Cyber Security domains)
Skill Examples:
- Ability to understand prioritize and escalate tasks to resolve issues quickly and make decisions.
- Strong compliance auditing knowledge.
- Ability to interpret all scenarios applicable to the business for identifying the potential risks associated with various functions/services.
- Proficiency in Network Security Controls' implementation like IAM IPS/IDS E-Mail Security Controls Cloud Security Controls etc.
- Detail oriented customer oriented result delivery oriented analytical thinking
- Strong Excel and Dashboard skills.
- Excellent Presentation and communication skills
- Excellent verbal and written communication skills required including the ability to effectively communicate in both highly technical and non-technical environments
- A great problem solver with the knack of coaching others to do the same
- Good at working in a team and with other teams
- Good time management
- A desire for continuous learning and skill development.
- Self-motivated and enthusiastic
Knowledge Examples:
- Should have a strong understanding of concepts of Information Security Business Continuity Data Privacy VAPT Red Teaming and various compliance standards.
- Knowledge on ISO and other Compliance standards efficient to evaluate the security controls.
- Knowledge on ISO 22301/27001/9001/27701 Risk Management incident management awareness activities customer assurance etc.
- Knowledge on standard SDLC and project management life cycles.
- Knowledge on the operations of various functional units like HR REFM IT Finance etc. and units involved in IT Asset lifecycle management.
- Expert on security testing standards like OWASP Top
- Expert on Linux commands.
- Expert on Scripting Languages like Shell Script Python etc.
- Development and Testing knowledge would an added advantage.
- Hands on experience in RSA Archer Burp Suite Nessus Nmap Postman Genymotion MobSF Drozer etc.
- Good to have Certifications like ISO 27001/22301/9001/27701 Lead Auditor/Implementor CEH (MASTER) ECSA CASE OSWP etc.
Additional Comments:
VAPT
Skills
Vulnerability Assessment,Vulnerability Management,Vulnerability Testing
About UST
UST is a global digital transformation solutions provider. For more than 20 years, UST has worked side by side with the world’s best companies to make a real impact through transformation. Powered by technology, inspired by people and led by purpose, UST partners with their clients from design to operation. With deep domain expertise and a future-proof philosophy, UST embeds innovation and agility into their clients’ organizations. With over 30,000 employees in 30 countries, UST builds for boundless impact—touching billions of lives in the process.
Similar Jobs
View All
1 Day ago
Test
Information Technology
- 2,00,000 - 2,00,000 INR - Hourly
- 5 - 5 Yrs
- Bhopal
Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco "Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed do ei...
1 Day ago
CSPL India - .Net Developer
Information Technology
- Bangalore, Karnataka, India
Job SummaryWe are looking for a .NET Developer to join our team and drive the development of high-quality software solutions. The ideal candidate will have deep expertise in .NET Core and C#, along with strong experience in Microservices, Event-Driv...
1 Day ago
Senior Full Stack Developer - Spring Boot/AngularJS
Information Technology
- Bangalore, Karnataka, India
Position : Senior Full Stack DeveloperLocation : Chennai / LucknowExperience : 6+ years in IT (preferably in product-based companies)Education : Graduate degree from a recognized institutionJD SummaryWe're hiring a hands-on full stack developer with...
1 Day ago
VAYUZ Technologies - Shopify Full Stack Developer
Information Technology
- Bangalore, Karnataka, India
Job DescriptionKey Responsibilities : Develop, customize, and optimize Shopify stores, ensuring seamless UI/UX. Implement Shopify Liquid templates and themes to create responsive designs. Customize Shopify apps and integrations using RESTful APIs...
1 Day ago
Interesting Job Opportunity: Technical Lead - MERN Stack
Information Technology
- Bangalore, Karnataka, India
Job DescriptionRole : MERN full stack developer (Reactr.js + Node.js)Responsibilities Thorough understanding of React.js and its core principles Experience with popular React.js workflows (such as Flux or Redux) Strong proficiency in JavaScript, ...
1 Day ago
Algoleap Technologies - Java Full Stack Developer
Information Technology
- Bangalore, Karnataka, India
Job DescriptionWe are seeking a highly motivated and experienced Java Fullstack Developer to join our dynamic team. In this role, you will be instrumental in the full software development lifecycle, from conceptualization and design to implementatio...
1 Day ago
Software Engineer in Bangalore
Information Technology
- Bangalore, Karnataka, India
Key Responsibilities Work on building the enterprise product using ReactJS as a front-end. Handle the other front-end responsibilities. About Company: vBridge Hub is the 1st AI-enabled enterprise platform built for talent sourcing, screening, and...
1 Day ago
Interesting Job Opportunity: Bharuwa Solutions - Java Developer - Spring Boot/Hibernate
Information Technology
- Bangalore, Karnataka, India
Job DescriptionCandidates with 3+ years of experience in developing Java web applications, with good analytical skills and technical expertise in developing software products by using Java, Spring/Struts, Hibernate platforms, and the latest web tech...
Talk to us
Feel free to call, email, or hit us up on our social media accounts.
Email
info@antaltechjobs.in