Information Security Consultant

Experience:- 8 years to 12 years.

Budget-18.0L to 23.0L

- Location: Ahmedabad/Pune

- Work Hours: (8 AM to 11 AM in morning and 7 PM to 12 AM in evening)

- Experience: 8 to 12 years in the Security Domain

Notice Period:- Immediate Joiner only

Skills:- SOC, Vulnerability risk, Endpoint Security, Incident Management

Job Description:

Roles and Responsibilities

Candidate will work as a member of the Corporate Security Team and assist in various day to day

operational activities such as:

Drive customer's Corporate Security Program based on the NIST CSF Identify, Detect,

Protect, Respond and Recover.

Develops, publishes, and maintains a comprehensive organization-wide information privacy

and security plans, policies, procedures, and guidelines.

Function as primary liaison with auditors, internal teams and vendors and be the resident expert

on systems and services in use for PCI compliance and reporting

Responsible for managing all aspects of the Vulnerability Risk Management Program including

vulnerability identification, analysis, remediation coordination and reporting.

Lead the development, implementation, and maintenance of security policies, standards, and

guidelines.

Identify and Monitor Customer's Corporate Networks to determine if there have been any

attacks. Analyze network traffic to identify anomalies and test information security controls for

weaknesses.

Design and implement safeguards to protect the system with the help of network engineers

and other members of the Technology Services team.

Respond to threats by taking mitigating actions to contain the activity and minimize damage.

Participate in risk assessments and breach readiness exercises for incident management.

Facilitate forensics analysis to determine the source of the threat. Document lessons

learned as well as identify process improvements.

Communicate security issues to management via reports, dashboards. Provide weekly

metrics on overall security posture.

Research emerging threats and work with the Security Operations Center (SOC).

Drive the Third party vendor security evaluation.

Participate in the security toll-gates on SSDLC projects.

Implement innovative solutions to scale the program with emphasis on automation where

applicable.

Qualifications

Basic Qualifications:

Bachelor's Degree in Business, Computer Science or in a STEM major (Science,

Technology, Engineering, or Math).

Minimum of 8 years of experience in Information Security

Experience in at least one full lifecycle supporting PCI compliance is a must have

Experience in managing and maintaining a vulnerability management program using Qualys

is a must have

Experience in developing content in Splunk searches, alerts (including POC and tuning),

dashboards, Apps.

Experience of Security Incident and Event Management (SIEM) tools (Splunk) ingesting

data (Forwarders, HTTP Event Collectors, add-ons), troubleshooting Splunk Installation.

Experience in Endpoint security (EDR) Detection and Response. Help create policies and

SOP for Response workflow. Experience in Cortex XDR preferred.

Experience in Security evaluation of third-party tools.

Experience in Email Security and running phishing campaign

Experience in Incident Management

Experience in system and network security.

Experience in Network Penetration testing.

Knowledge of software development, computer networks and Internet threat activity.

Programming experience in python, perl and HTML/JS

Previous enterprise or platform/cloud vulnerability management experience and Cloud

Security is a plus

Excellent written and verbal communication skills, including experience engaging with

executive and technical audiences.

Must be able to work in a fast paced, high profile environment.