As a Network Security Design professional in the MDR category at our Pune location, you will be responsible for architecting and designing secure network infrastructures in banking environments. Your focus will be on ensuring scalability, performance, and compliance. You will leverage SolarWinds for advanced network monitoring and performance management to maintain operational efficiency and quickly identify any issues that may arise. Additionally, you will design, implement, and manage Intrusion Prevention and Detection Systems (IPS/IDS) to protect network traffic from malicious activities. Your role will also involve overseeing the configuration and optimization of firewalls such as Fortinet or Cisco to enforce security policies and network access controls. Implementing and managing SD-WAN solutions will be crucial in optimizing and securing connectivity for remote offices and branch networks. Collaboration with Network Operations Center (NOC) teams will be essential to ensure continuous network security monitoring, troubleshooting, and incident resolution. Regular security audits will also be conducted to assess vulnerabilities and ensure compliance with banking industry standards and regulations. You will need to ensure that network security policies align with industry standards like PCI-DSS and internal audit requirements. Leading incident response efforts and managing threat intelligence will be key in proactively addressing emerging network security risks. Maintaining thorough documentation of network security architecture, configurations, policies, and audit trails for both internal and external stakeholders will also be part of your responsibilities. If you are ready to take on these challenges and contribute to a dynamic and fast-paced environment, we encourage you to apply now for this exciting opportunity.,
As a Security Verification professional with Job Id 56781 based in Mumbai, India, you will be responsible for leading SecArch deep dives with the requestor of the assessment. Your key duties will include conducting assessments and providing technology risk/requirements to the requestor, covering areas such as Authentication, Authorization, Auditing, Application Security, Secure data transport and storage. It will also be your responsibility to periodically review security reference architecture and conduct updates/enhancements, as well as participate in various Operational and Technology Risk governance processes. Additionally, you will assist in identifying new areas and opportunities for technology investment within the firm. To excel in this role, you must possess excellent communication skills in written, oral, and presentation formats, along with active listening abilities. Your ability to influence through factual reasoning, manage time effectively by handling multiple concurrent assessments, and strong follow-up and tracking skills will be crucial. You should have a strong focus on delivery, especially when faced with short timelines and increased involvement from senior management. Your capacity to adjust communication of technology risks versus business risks based on the audience will be highly valued. In terms of Security Architecture skills, you are required to have in-depth knowledge of application security and basic knowledge of network and platform security vulnerabilities. You should be able to explain these vulnerabilities to developers, have experience in conducting Information Security, IT Security, and Audit assessments, as well as reviewing technical designs and functional requirements to identify areas of security weakness. Furthermore, you must have a working experience in various application/network security domains such as Authentication, Entitlements and identity management, Data protection, App Security, Cryptography, and more. Moreover, familiarity with programming and scripting languages like Java, JavaScript, C#, C/C++, Perl, Python, Ruby is essential for this role. Understanding frameworks, protocols, and subsystems like J2EE, .NET, Spring, RPC, SOAP, and more, as well as database design and programming experience, will be advantageous. Experience in liaising with 3rd Party Entities, conducting and reviewing penetration tests, vulnerability assessments, and knowledge of geographic regulations impacting security assessments will be beneficial. Previous experience in Financial Services and industry qualifications like CISSP are preferred. In summary, as a Security Verification professional, you will play a critical role in ensuring the security and integrity of technology systems within the organization. Your expertise in security architecture, communication skills, and ability to manage multiple assessments will be instrumental in safeguarding the firm against potential risks and vulnerabilities.,
As a SOC Lead, you will be responsible for incident detection and response, utilizing tools such as Azure Sentinel SIEM, Splunk, and Microsoft Defender for Endpoint. Your primary tasks will involve investigating high-priority security incidents, determining root causes, and guiding the team in remediation efforts. Furthermore, you will be tasked with creating and refining custom detection rules in Azure Sentinel, monitoring alerts from Microsoft Defender for Endpoint to identify security threats, and documenting security incidents including timelines and outcomes. Your role will also involve collaborating with other SOC team members, IT teams, and external vendors to resolve incidents and provide mentorship to junior analysts. Additionally, you will be conducting forensic analysis on compromised systems, performing threat hunting activities, and contributing to security posture improvement by refining security procedures and optimizing Azure Sentinel and Microsoft Defender for Endpoint configurations. Staying up-to-date with the latest threat intelligence and security trends will be crucial to ensure that tools and strategies evolve with emerging threats. If you are passionate about cybersecurity and have experience in incident response, threat hunting, and security monitoring, we invite you to apply for this challenging and rewarding position in either Bangalore or Mumbai.,
You will be responsible for overseeing the SOC team in Bangalore, which includes security analysts (L1/L2/L3), engineers, and other cybersecurity professionals. Your role will involve managing security incidents, SLAs, and KPIs, setting priorities, allocating resources, and ensuring that the team is well-trained and equipped. Additionally, you will be required to develop and manage incident response protocols, conduct regular reviews of security incidents and performance metrics, and lead the team in responding to security incidents to ensure timely and effective resolution. Clear communication with client stakeholders and senior management will be essential, along with providing regular updates and reports on security status and incidents. You will also be expected to implement improvements to enhance the organization's security posture. If you have the required experience and skills for this position, please apply now.,
Job Description: As an MDR professional, you will play a key role in SIEM engineering, detection, and integration. Your responsibilities will include developing and optimizing detection rules and use cases in Azure Sentinel and Microsoft Defender for Endpoint. By analyzing security logs, you will identify threats and vulnerabilities, fine-tuning alerts for improved accuracy. Additionally, writing KQL queries to detect malicious activity across cloud and endpoint environments will be a crucial part of your role. In terms of incident investigation and response, you will provide advanced support to SOC L1/L2 teams in triaging complex security incidents. Collaboration with the IR team to contain and remediate security threats will also be a part of your responsibilities. Moreover, participating in proactive threat hunting to enhance detection capabilities will be essential to improving overall security posture. Your duties will also involve the configuration and management of Defender for Endpoint, Azure Sentinel, and related security tools to enhance threat detection. Implementing additional Azure security tools to broaden detection coverage will be part of your daily tasks. Integrating threat intelligence feeds to improve the detection of APTs and targeted attacks will be a critical aspect of your role. Staying updated on emerging threats and integrating new intelligence into detection strategies will be necessary to stay ahead of potential security risks. Collaboration with security teams to enhance detection and response processes will be a regular part of your work. Documenting and reporting on detection efforts, threat analysis, and incident response activities will be crucial for maintaining transparency and accountability. Continuous improvement will be a key focus, as you will mentor and train SOC L1/L2 analysts on advanced detection techniques and use cases for Azure Sentinel and Microsoft Defender for Endpoint. Your knowledge about security trends, attack vectors, and best practices within the SOC will be instrumental in driving continuous enhancement of security operations. If you are passionate about cybersecurity and ready to take on a challenging role in MDR, apply now to be a part of our dynamic team.,
As a professional in Managed Detection And Response based in Mumbai, India, you will showcase proficiency in Incident Management and Response, along with experience in security device management and SIEM. Your role will require in-depth knowledge of security concepts such as cyber-attacks, threat vectors, risk management, and incident management. Additionally, you should have experience in threat management and possess knowledge of various operating systems like Windows, Linux, and Unix, as well as applications, databases, and middleware to address security threats effectively. Moreover, you will be responsible for preparing reports, dashboards, and documentation, and demonstrating excellent communication and leadership skills. Your ability to perform vendor management, handle high-pressure situations with key stakeholders, and exhibit good analytical, problem-solving, and interpersonal skills will be crucial for this role. Proficiency in MS Office, especially Excel, is essential for this position. Your primary responsibilities will include leading and managing the Security Operations Center, with a strong focus on team management and project management. You will be accountable for security event monitoring, management, and response, ensuring incident identification, assessment, quantification, reporting, communication, mitigation, and monitoring. Compliance to SLAs, process adherence, and process improvisation to achieve operational objectives will be key areas of focus. Furthermore, you will need to revise and develop processes to strengthen the current Security Operations Framework, review policies, and address challenges in managing SLAs. Additionally, you will be responsible for team and vendor management, utilization of resources, and initiating corrective actions when needed for the Security Operations Center. Managing, administering, and maintaining security devices under the ITRC's purview, which includes state-of-the-art technologies, will also be part of your role. Your tasks will involve threat management, threat modeling, identifying threat vectors, developing use cases for security monitoring, and integrating standard and non-standard logs in SIEM. You will create reports, dashboards, and metrics for SOC operations and present them to senior management. Coordinating with stakeholders and building positive working relationships with them will also be essential aspects of your responsibilities. In terms of educational qualifications, a degree in BE-IT, B Tech, or Comps, along with certifications like CEH, CISSP, PMP, GCIH, and GSEC, are required. An additional certification in the information security domain will be considered advantageous for this role.,
Role Overview: As a Cloud Security professional in Bangalore, India, your primary responsibilities will include building prototypes and proofs of concept on AWS or Azure services to showcase security value. You will also be tasked with implementing DevSecOps tools and techniques for clients, as well as focusing on continuous self-development and up-skilling. Key Responsibilities: - Build prototypes and proofs of concept on AWS or Azure services - Implement DevSecOps tools and techniques for customers - Continuously up-skill and self-develop Qualifications Required: - Minimum 5 years of information security experience - At least 2 years of application security experience - 2 or more years of cloud security and DevOps experience - Background in secure application design - Familiarity with cryptographic tools and APIs - Proficiency in SAST/DAST skills - Working knowledge of CI/CD pipelines - Experience with single sign-on management in the cloud (LDAP, OAuth) - Understanding or working knowledge of IDS, IPS or SIEMs, Cloud logs, and flow logs - Preferred experience with multi-cloud environments - Exposure to infrastructure as code practices - Familiarity with one or more configuration management tools such as Chef, Jenkins, or Ansible,
Role Overview: As a Network Security Design professional in the MDR category at the Pune location, your primary responsibility will be architecting and designing secure network infrastructures in banking environments. Your focus will be on ensuring scalability, performance, and compliance with industry standards. Key Responsibilities: - Leverage SolarWinds for advanced network monitoring and performance management to maintain operational efficiency and quickly identify any issues. - Design, implement, and manage Intrusion Prevention and Detection Systems (IPS/IDS) to protect network traffic from malicious activities. - Oversee the configuration and optimization of firewalls such as Fortinet or Cisco to enforce security policies and network access controls. - Implement and manage SD-WAN solutions to optimize and secure connectivity for remote offices and branch networks. - Collaborate with Network Operations Center (NOC) teams for continuous network security monitoring, troubleshooting, and incident resolution. - Conduct regular security audits to assess vulnerabilities and ensure compliance with banking industry standards and regulations. - Ensure network security policies align with industry standards like PCI-DSS and internal audit requirements. - Lead incident response efforts and manage threat intelligence to proactively address emerging network security risks. - Maintain thorough documentation of network security architecture, configurations, policies, and audit trails for both internal and external stakeholders. Qualification Required: - Bachelor's degree in Computer Science, Information Technology, or a related field. - Relevant certifications such as CISSP, CCNP Security, or equivalent would be advantageous. - Strong experience in architecting and designing secure network infrastructures in banking environments. - Proficiency in utilizing tools like SolarWinds for network monitoring and performance management. - Hands-on experience with Intrusion Prevention and Detection Systems (IPS/IDS) and firewalls like Fortinet or Cisco. - Familiarity with SD-WAN solutions and their implementation for optimizing connectivity. - Excellent collaboration skills to work effectively with NOC teams and other stakeholders. - Ability to conduct security audits, assess vulnerabilities, and ensure compliance with industry standards. - Strong documentation skills to maintain detailed records of network security architecture and policies. If you are ready to take on the challenges of designing and securing network infrastructures in a dynamic banking environment, we encourage you to apply for this exciting opportunity.,
As a Security Architect Integrator in Mumbai, India, you will have the following responsibilities: - Lead SecArch deep dives with the requestor of the assessment - Conduct assessment and provide technology risk/requirements to the requestor. Areas covered: - AAA (Authentication, Authorization, Auditing) - Application Security (Session Security, Vulnerability/Pen Testing items, Input Validation) - Secure data transport and storage - Periodically review security reference architecture (security blueprints) and conduct updates/enhancements - Participate in various Operational and Technology Risk governance processes - Assist in identifying new areas and opportunities of technology investment for the firm In order to excel in this role, you should possess the following qualifications: - Excellent communication skills: written, oral, presentation, listening - Ability to influence through factual reasoning - Time management: ability to handle multiple concurrent assessments, plan based deliverable management, strong follow up and tracking - Strong focus on delivery when presented with short timelines and increased involvement from senior management - Ability to adjust communication of technology risks vs business risks based on the audience Security Architecture Skills: - In-depth knowledge of application and basic knowledge of and network and platform security vulnerabilities. Ability to explain these vulnerabilities to developers - Experience in conducting Information Security, IT Security, Audit assessments. Presenting the outcomes of the assessment and obtaining buy-in. - Strong focus on reviewing technical designs and functional requirements to identify areas of Security weakness. - The candidate must have working experience in the following application/network security domains: - Authentication: SAML, SiteMinder, Kerberos, OpenId - Entitlements and identity management - Data protection, data leakage prevention and secure data transfer and storage - App Security - validation checking, software attack methodologies - Cryptography - encryption and hashing - Even though the SecArch Integrator role is not a development role, the candidate must have understanding in programming, design, and application architecture. - In order to be a practical SecArch Integrator, the candidate must have experience implementing complex applications in an enterprise environment. - Knowledge of programming and scripting languages: Java, JavaScript, C#, C/C++, Perl, Python Other Areas of Expertise: - Frameworks, protocols, and subsystems: J2EE, .NET, Spring, RPC, SOAP, MQSeries, JMS, RMI, JMX, Hibernate. - Knowledge of JSP/Servlet/EJB or ASP.NET, HTTP/HTTPS, Cookies, AJAX, JavaScript, Flex/Silverlight. - Database design and programming experience - Experience of liaising with 3rd Party Entities (exchanges, suppliers, regulators) - Experience in conducting and/or reviewing penetration tests, dynamic vulnerability assessments, and static vulnerability assessments - Understanding of geographic regulations and their impact on Security assessments - Previous experience in Financial Services is preferred - CISSP or other industry qualification - Desired experience working with global organizations,
Role Overview: As a member of the SOC team, you will be responsible for leading the investigation of high-priority security incidents using tools such as Azure Sentinel SIEM, Splunk, and Microsoft Defender for Endpoint. Your role will involve performing deep-dive investigations, determining root causes, guiding the team in remediation efforts, and collaborating with other team members to resolve security incidents. Key Responsibilities: - Lead the investigation of high-priority security incidents and guide the team in remediation efforts - Use Azure Sentinel to create and refine custom detection rules for identifying new threats - Monitor and validate alerts from Microsoft Defender for Endpoint to identify endpoint security threats - Document security incidents, actions taken, outcomes, and create comprehensive post-incident reports - Collaborate with SOC team members, IT teams, and external vendors to resolve security incidents - Provide mentorship and guidance to junior analysts (L1/L2) and assist in training on incident response procedures and tool usage - Perform forensic analysis on compromised systems and conduct proactive threat hunting activities - Contribute to the improvement of security monitoring and incident response processes - Administer and optimize Azure Sentinel and Microsoft Defender for Endpoint configurations - Stay up-to-date with the latest threat intelligence and security trends Qualifications Required: - Experience in incident detection and response using tools like Azure Sentinel, Splunk, and Microsoft Defender for Endpoint - Strong understanding of security monitoring and incident documentation - Ability to collaborate with team members, IT teams, and external vendors - Experience in forensic analysis and threat hunting - Knowledge of improving security posture and refining security procedures - Proficiency in administering and optimizing Azure Sentinel and Microsoft Defender for Endpoint configurations - Up-to-date knowledge of threat intelligence and security trends Apply Now,
As a Security Verification professional based in Mumbai, you will play a crucial role in categorizing and prioritizing vulnerabilities stemming from misconfigurations, lack of patching, or outdated software. Your responsibilities will include: - Categorizing and prioritizing vulnerabilities based on critical assets, severity, and SLAs as per the information security policy. - Identifying vulnerabilities and coordinating with infrastructure/systems owners to deploy fixes within the defined period. - Providing advisory support to infrastructure and systems teams for issue resolution. - Maintaining and delivering the Vulnerability Remediation Management Tracker. - Collaborating with IT operations and application teams to ensure timely resolution of misconfiguration-related vulnerabilities for compliance. - Ensuring continuous follow-up with IT teams for closure status within agreed timelines. - Following the escalation process and seeking timely support from senior management when needed. - Providing feedback to improve the Vulnerability Management Process and reviewing hardening baseline updates. - Collecting and reporting Vulnerability Management KPIs as required. Your role will be instrumental in enhancing the security posture of the organization by effectively managing and remedying vulnerabilities. If there are any additional details about the company in the job description, please provide them. Thank you.,