Cyber Security Analyst

Job Description Information Security Engineer / Security Analyst

Location: Arjan Garh, Delhi (Onsite)

Workdays: 6 days (Sundays along with Second Saturday)

Pay Band: 25k-45k

Role Summary

Responsible for vulnerability assessment, security monitoring, incident management, compliance activities, and maintaining the organization's overall security posture.

IMMEDIATE JOINERS PREFERRED

Key Responsibilities

* Perform VAPT for web apps & infrastructure using Burp Suite, Nmap, OWASP ZAP, OpenVAS.

* Identify, validate, and report vulnerabilities as per OWASP Top 10 & CVSS.

* Monitor security alerts through Wazuh SIEM and handle incidents as per defined SLAs.

* Support ISO 27001 & 27701 audits, client security assessments, and evidence collection.

* Prepare security documentation (policies, checklists, incident reports, VAPT reports).

* Coordinate with vendors for black-box/grey-box testing and with clients during audits.

* Assist with basic AWS security reviews, IAM checks, SG reviews, and Secret Manager.

* Maintain vulnerability tracker, incident register, and key management logs.

Requirements

IMMEDIATE JOINERS PREFERRED

* 24 years of experience in Information Security/VAPT.

* Hands-on experience with Burp Suite, Nmap, OWASP ZAP, Wazuh, OpenVAS.

* Strong understanding of OWASP Top 10, CVSS, SIEM operations, and basic AWS security.

* Good documentation and communication skills.

Nice to Have:

* Experience in fintech/API-based products.

* Familiarity with Fortinet/Reticen8 firewalls.

* Certifications: CEH, ISO 27001 LA/LI, Security+, AWS Security (optional)