271 Ceh Jobs - Page 9

Notice Period: Immediate/0-15 Days Joiners Only Job Description: We are seeking a highly experienced VP to lead and enhance our cybersecurity audit and assurance programs. The ideal candidate will have extensive experience in conducting and managing penetration testing, red teaming, social engineering assessments, secure code reviews, and full-scale IT and cybersecurity assessments. This leadership role involves overseeing security audits, and strengthening our clients overall security posture. Key Responsibilities: Lead cybersecurity audits and assurance programs across IT systems, applications, and infrastructure for our clients. Oversee penetration testing, red teaming, and social engineering assessments, ensuring effective security testing strategies. Manage secure code reviews and application security assessments to identify and remediate vulnerabilities. Collaborate with SOC teams, vulnerability management teams, and security engineers to enhance threat detection and mitigation. Evaluate third-party security risks and conduct supplier security assessments. Provide executive-level reports on security assurance findings, risks, and mitigation strategies. Ensure compliance with global security standards and frameworks. Mentor and develop a team of cybersecurity auditors, penetration testers, and security analysts. Qualifications and Skills: 15-20 years of experience in cybersecurity audits, security assessments, and assurance programs. Deep expertise in penetration testing, red teaming, social engineering tactics, and secure coding. Strong knowledge of security frameworks such as OWASP, SANS, CIS, NIST 800-53, ISO 27001, SOC 2, and PCI DSS. Experience with security testing tools (Burp Suite, Metasploit, Kali Linux, etc.). Ability to engage with executive leadership and present security risks effectively. Certifications preferred: CISSP, CISA, OSCP, CEH, CRTP, or equivalent.

A leading financial services firm with a global presence is looking for a Cybersecurity Senior SOC Analyst. Rotational shifts (APAC/EMEA/US) with benefits. 4+ years’ experience, SIEM knowledge, and security certifications preferred.

Overview This position is a member of the Information Security organization reporting to the Sr Manager of Consumer Protection. This technical role will lead information security efforts to support consumer teams globally. The employee will work cross-functionally across Information Security, technology, and solutions teams to drive security. This role will be responsible for integrating the enterprise security stack into consumer solutions being deployed. Additionally, the candidate will determine, track, and monitor key metrics. This position requires expertise in Information Security and must be able to present clearly and adequately to leadership. Responsibilities Work cross-functionally across security engineering to drive innovation Generate, track and monitor key metrics Develops strong partnerships with business clients Maintains expertise to function as subject matter expert in multiple security areas Qualifications Bachelors degree in computer science or equivalent work experience Minimum 14 years of experience in IT field 4-6 years of relevant information security experience with foundational knowledge in multiple areas including SOC operations and hands-on Information Technology Experience Relevant certifications such as CISSP, CEH, or CISM are a plus Technical Skills Strong foundation in information security across multiple domains such as Fraud and Bot defense, Data Security, Web Application Firewall, API security, Network security, etc. Cloud infrastructure experience on tools like load balancer, DNS Able to maintain security full-stack applications, including both front-end and back-end components to support our consumer protection platform Understanding of common security threats and mitigation controls Knowledge of cloud security principles and implementation. Familiarity with Azure cloud solution architecture and cloud security features Experience reviewing and validating the security architecture of solutions deployed on-premises and cloud infrastructure Non-Technical Skills Proficient in English Excellent verbal and written communication skills Strong analytical skills Proven ability to collaborate across technical and business team Desirable Qualifications Proficient/Remedial in Mandarin Previous experience in product engineering organizations Strong and extensive experience working in an agile/lean engineering environment Experience driving security related change within a business Previous experience in security engineering and/or security architecture organizations

Role & responsibilities Essential Skills required :- 5 Years in a Security Related Position Sec+, CEH, CISSP or equivalent certification required. Desired Skills and Experience: Strong knowledge of systems, tools and methods used in Vulnerability Management and Penetration Testing: Nessus, NMAP Strong knowledge of Security Event and Incident Management (SIEM) systems for analytics. Strong Scripting knowledge in Python and PowerShell Strong knowledge of Internet (TCP/IP) Network practices and concepts. Strong knowledge of Firewall technologies, encryption technologies and VPNs. Strong knowledge of Security concepts (i.e. architecture, models, management, practices). Strong knowledge of cloud services and securing hybrid cloud environments. Strong knowledge of Linux/Unix and Windows environments. Strong knowledge of web related technologies (Web applications, Web Services, Service Oriented Architectures). Ability to establish and maintain working relationships with other teams. Demonstrated Project Management abilities. Strong communication (both verbal and written) and customer interfacing skills. Ability to respond to frequent pressure to meet deadlines. Ability to respond to frequent demands of multiple customers (internal and external). Preferred candidate profile Perks and benefits

Your Job Cloud Security Engineer - This role will focus on Molex Cloud Security space, where the individual is responsible for identifying risk in our cloud infrastructure and working with the teams involved to mitigate the risk or develop treatment plans to reduce or remove the risk. This role will also act as a consultant for existing teams and any new cloud implementation. Our Team Molex Security Engineering and Operations develops, improves, and runs programs that improve our security posture. We respond to cyber incidents and manage the response for Molex along with implementing improvements that prevent a re-occurrence. What You Will Do Develop processes and programs to improve our cloud security Consult with teams on securing their workloads in the cloud Create standards and processes to manage our cloud security posture Support incident response team during cloud incidents Assist cloud architects with security guidance Who You Are (Basic Qualifications) 3-5 years cyber security experience 3-5 Years working with and securing IaaS and PaaS environments Good written and verbal communication skills Knowledge of IAM (Identity and Access Management) Knowledge of IAC (Infrastructure as Code) What Will Put You Ahead AWS Experience and certifications (Security Specialty, Solutions Architect Assoc.) Knowledge of building workloads via IAC Strong knowledge of IAM Prior development experience Security certifications (Security+, CEH, CCSP)

SecurityHQ Security Engineer L2 - General Duties (Experience 3 - 5 years) Security Monitoring and Incident Response : Review and address incidents flagged by the SOC. Collaborate with the corporate IT team, Firewall management, advisory, and EDR teams to implement appropriate responses and remediation actions. Hands-on experience will be an added advantage with tools such as SIEM platforms, EDR solutions, identity and access management systems, cloud environments, email security gateways, web application firewall (WAF) solutions, network firewalls, Zero Trust Network Access (ZTNA) technologies, and enterprise password management systems. Security Configuration and Threat Hunting : Continuously review and assess security configurations across the infrastructure to identify potential gaps. Conduct threat hunting to uncover potential weaknesses in configurations and ensure gaps are addressed with appropriate countermeasures. Vulnerability Assessment, Penetration Testing, and Patch Management (VAPT, TRI) : Oversee and ensure the timely execution of vulnerability assessments and penetration testing (VAPT), Threat and Risk Identification (TRI), and patch management processes. Drive the resolution of identified vulnerabilities and gaps through collaboration and follow-up actions. Security Policy Enforcement : Assist in the creation and enforcement of security policies and procedures in line with recognized standards, including ISO, NIST, Cyber Essentials Pulse, SOC 2 Type 2, and the Essential Eight Maturity Model (AU). Reporting and Documentation : Prepare detailed reports and presentations on security configurations, incident response actions, and change management reviews. Maintain comprehensive documentation to demonstrate how security initiatives align with operation and organizational goals. Training and certification: CEH, ECIH, CCSP, CompTIA Security+ and security audits experience/certifications will be added advantage. This dedicated L2 resource who will help with day-to-day activities and can ensure timely closure of security issues. Also, to document IT security policies and ensure enforcement of it across the organization.

Job Summary We are looking for an Application Security Analyst with 2-3 years of experience in IT and security to strengthen our security team. The ideal candidate will focus on securing web and mobile applications (Android/iOS) by conducting penetration testing, vulnerability assessments, API security reviews, and ensuring compliance with security best practices . Key Responsibilities Application Security & Penetration Testing Conduct security assessments for web, mobile (Android/iOS), and APIs . Identify, exploit, and remediate OWASP Top 10 vulnerabilities. Perform manual and automated security testing to uncover security risks. Conduct secure code reviews to detect application security flaws. Mobile Security (Android & iOS) Perform static and dynamic analysis of Android/iOS applications. Identify security risks such as insecure data storage, API vulnerabilities, and jailbreak/root detection bypass . Utilize tools like MobSF, Frida, Burp Suite, Objection, Drozer, Jadx, and apktool . Validate applications against OWASP Mobile Top 10 security risks. API Security & Secure Development Perform API penetration testing using Burp Suite, Postman, OWASP ZAP . Identify critical vulnerabilities such as Broken Authentication, Excessive Data Exposure, and IDOR . Collaborate with developers to implement secure coding practices and remediation strategies . Vulnerability Management & Compliance Conduct vulnerability assessments using tools like Nessus, Acunetix, Nexpose, Rapid7, and Qualys . Ensure compliance with ISO 27001, SOC2, GDPR , and other regulatory frameworks. Work closely with development teams to remediate security vulnerabilities . Required Skills & Qualifications Bachelors degree in Computer Science, Information Security, or a related IT field . 2-3 years of experience in IT , with at least 1-2 years focused on Application Security & Penetration Testing . Strong understanding of OWASP Top 10 (Web & Mobile) vulnerabilities. Hands-on experience with security tools such as Burp Suite, MobSF, Frida, Objection, Drozer, Jadx, apktool . Proficiency in secure code review (Java, Swift, Kotlin, JavaScript). Expertise in API Security Testing and secure development best practices. Strong analytical, problem-solving, and communication skills . Preferred Qualifications Security certifications such as OSCP, CEH, eJPT, OSWE, GMOB (preferred). Experience with bug bounty programs or responsible disclosure initiatives. Compensation & Benefits Competitive salary based on experience. Career growth opportunities in Application Security & Ethical Hacking . Health & wellness benefits . Access to continuous learning, certifications, and security training programs . If your skills matches the above requirement, kindly share drop your updated resume at "pooja.valluru@engro.io". Looking for immediate to 30 Days Notice Period.

Monitor and protect systems against cyber threats. Implement firewalls, access controls, and security policies. Conduct vulnerability assessments and security audits. Investigate and respond to security incidents.

We are seeking an experienced Cybersecurity Sr. Analyst to join our Mumbai based Exposure Management team. The Exposure Management team is responsible for overseeing the Vulnerability Management & Threat Hunting program thus gathering, analyzing, and responding to data from various threat intel sources. Youll regularly engage with stakeholders from across the organization and oversee all vulnerability and threat remediation and mitigation efforts. Your expertise in proactive threat assessment and vulnerability management will be crucial in safeguarding our organization's critical assets and ensuring the integrity of our systems and data. Interested candidates please share your updated resume to rhule@russellinvestments.com Job Location: Goregaon East Years of Experience: Minimum 4+ years of experience in Cybersecurity, with a focus on Threat Intelligence, Threat Hunting, and Vulnerability Management. Qualifications: Experience with proactive Threat Hunting and Detection, Vulnerability Management, including scanning, compiling reports, and overseeing remediation, as well as. Responsibilities: Perform proactive threat hunting for indicators of compromise across various Collect and analyze threat intelligence reports covering new threats, vulnerabilities, products, and research. Collect, curate, and disseminate tactical threat intelligence from industry sources to enhance security operations. Support security research initiatives, analyzing emerging threats, vulnerabilities, and new attack vectors. Monitor, analyze, and respond to threat intelligence feeds, zero-day vulnerabilities, and emerging attack trends to strengthen cyber defence Conduct regular vulnerability scans, analyze reports, and provide actionable insights to stakeholders. Drive remediation efforts, ensuring vulnerabilities are addressed within defined SLAs by collaborating with system owners and security teams. Be familiar with Russell Investments security policies and standards. Develop and maintain related documentation. Candidate Requirements: Bachelors degree in Cybersecurity, Information Security, or a related field. Relevant certifications such as CISSP, CEH, CTIA, or equivalent are highly desirable. Strong expertise in Threat Intelligence, including collecting, analyzing, and leveraging intelligence for proactive defence. Experience with SIEM, XDR, Web Proxy, Firewalls, Vulnerability Management Solutions, SWG, honeypots, and other security tools for threat hunting and analysis. Hands-on experience in threat intelligence analysis, cyber threat research, and vulnerability management. Experience with Threat Intelligence Platforms (TIPs) preferred Familiarity with industry standards and frameworks such as NIST Cybersecurity Framework, MITRE ATT&CK, and ISO 27001. Strong analytical skills with the ability to assess threats, vulnerabilities, and attack trends and propose effective mitigation strategies. Excellent communication skills, with the ability to articulate technical security concepts to both technical and non-technical stakeholders.

Resource with minimum 5 to 7 years of total IT Experience, with 3+ yrs. in SIEM Operations and BAU. Experience in handling L1 and L2 task related to Security Incident Handling across different SIEM Platform (Primary skill ArcSight, Secondary Splunk) Proven experience on handling security incident investigation / forensics Knowledge of security and compliance regulatory standards. Create dashboards on SIEM Console to visualize data and events which help identify trends, anomalies and monitor the general health or security status of the environment Knowledge of ArcSight SIEM, its components, and associates Experience in handling Incident response, triaging and analysing the incidents Security threat identification (including malware), research, analysis and advisory capabilities Some knowledge of hacking stages and techniques Excellent troubleshooting skills, with a creative approach to problem solving Team player and collaborator with excellent follow up and documentation skills. Must be able to work and develop a positive relationship with customers of various size and complexity Self driven engaging individual with a proven history of demonstrated technical skills. Ability to determine root cause of technical issues either on own or in a collaborative scenario. Strong problem solving skills are necessary. Ability to ramp up quickly on new features and technologies around threat protection Must be able to manage time effectively and accurately maintain the project and operational documentation Willing to work in 24*7*365 shifts (as per Business requirement)

Role 1SOC Engineer (L1 / L2) About The Role Identifying, monitoring and responding to events and incidents that occur in the network Monitoring alerts from SIEM Creating and handling ticket related in security Ensuring SLAs are met; escalate the incident when SLAs are not met Investigating and analyzing network threats, and performing root cause analysis of incidents that occur in the network; Identifying and collecting data associated with initial security investigation finding. Collects data and context necessary to be relayed later to IR team. Hands on experience triaging security alerts, events, logs and artifacts Creates and maintains standard operating procedures and other similar documentation. Work in a team of 24/7 members 2 4 years experience as SOC Analyst At least 1 year hands on experience with SOAR platform, SIEM tools and log management tool In depth knowledge of security concepts such as security operations center (SOC), cyber attacks and techniques, threat vectors Hands on experience triaging security alerts, events, logs and artifacts Excellent analytical and problem solving skills as well as interpersonal skills to interact with team members, vendors and upper management Familiarity in malware and attack techniques Forensics experience is advantage Knowledge in Basic Linux is advantage Qualifications Experience of working within medium to large scale complex IT environments in telecommunication industry Strong oral and written communication skills Forensics experience is advantage Excellent attention to detail Resilient and approachable with the ability to work successfully in a dynamic, fast paced environment Ability to operate as a team player, with a flexible and positive attitude Strong analytical and problem solving skills Ability to work under pressure A self starter able to work independently but comfortable and effective working in a team environment. Commitment to accuracy and precision with all outcomes At least Bachelors degree in Network Engineering, Computer Science, Computer Information System or any equivalent degree/experiences. Ability to communicate written and verbally in English and Japanese (preferred). CertificationsPreferred Splunk, CEH, CompTIA+, Analyst Fundamentals Training, Security Analytics Training Acceptance Criteria for SelectionWith due selection process of Customer

Akmai waf fitting for Cequence Defender Engineer 2 positionsWe are seeking a skilled and motivated Cequence Defender Engineer to join our growing security team. As a Cequence Defender Engineer, you will play a crucial role in protecting our organizations web applications and APIs from sophisticated cyber threats. You will be responsible for the implementation, configuration, and ongoing management of the Cequence Security Platform, ensuring its optimal performance and effectiveness in mitigating bot attacks, DDoS attacks, and API abuse. Responsibilities:Design, implement, and maintain the Cequence Security Platform, including Defender (WADC/WAAP), Unified API Protection, and Bot Defense. Integrate Cequence Defender with existing security infrastructure, including Imperva, Datapower/APIC, and threat intelligence platforms. Develop and maintain comprehensive security policies and rules within Cequence Defender to effectively mitigate threats. Analyze security events and incidents detected by Cequence Defender, conducting thorough investigations and implementing appropriate remediation actions. Proactively monitor the threat landscape for emerging threats and vulnerabilities, adapting Cequence Defender configurations accordingly. Create and maintain detailed documentation for Cequence Defender configurations, policies, and incident response procedures. Collaborate with other security team members to ensure the overall security posture of the organization is maintained. Stay up to date on the latest security best practices and industry trends, particularly in application security and API protection. Qualifications:Proven experience working with Cequence Security Platform, specifically Cequence Defender. Strong understanding of web application security principles, common vulnerabilities (OWASP Top 10), and attack methodologies. Hands on experience with security tools and technologies, such as firewalls, intrusion detection/prevention systems (IDS/IPS), and web application firewalls (WAFs). Familiarity with scripting languages (e.g., Python, Bash) for automation and integration purposes. Excellent analytical and problem solving skills, with the ability to troubleshoot complex technical issues. Strong communication and collaboration skills, with the ability to effectively communicate technical concepts to both technical and non technical audiences.Preferred Qualifications:Industry certifications in cybersecurity, such as CISSP, CEH, or CCNP Security. Experience with cloud security platforms (e.g., AWS, Azure, GCP). Knowledge of API security best practices and standards (e.g., OpenAPI Specification, OAuth 2.0).

Trellix (formerly known as Fireeye) Seasoned Endpoint Security resource with minimum 6 8 years of relevant experience working in Endpoint security domain. Should have extensive hands on knowledge in Endpoint Security Solutions including but mot limited to installation, configuration, and troubleshooting. MUST have hands on experience managing Trellix EDR (Endpoint Detection and Response) and Sentinel One EDR. Should be able to manage operations for Endpoint Security solutions like EDR, XDR Browser control etc. Hands on experience deploying and troubleshooting EDR clients as well as EDR console setup. Hands on experience on Configuring EDR clients, Recommendations for configuring clients, create a custom policy, Configure a policy Configure EDR advanced features, Single Sign On/MFA to log on EDR console, configure users, add and assign roles to users and respond to security incidents like Ransomware, Malware, virus outbreak. Monitoring EDR logs Excellent verbal and written communication skills Should have knowledge on change management, problem management, ITIL process, SLA management. Should be able to raise CR and implement the policies in Trellix, Sentinel One and other similar EDR products as per approved CR Excellent Team player with good analytical skills. Good to have certification CEH, Cyber Security Fundamentals

"Saviynt Developers JD(U4 Band Saviynt SME) Very good understanding of information security concepts with in depth knowledge of IAM solutions and latest trends. Hands on Development experience on Provisioning Workflows, triggers, Rules and customizing the tool as per the requirements. Hands on experience on Saviynt projects Use case design, Solution Requirements Specification and mapping business requirements to technical requirements (Traceability Matrix) Should have experience in implementing at least one complete IAM SDLC engagements projects, including requirements gathering, analysis, design, development, testing, deployment, and application support. Good understanding of the concepts such as self service, access provisioning, automated approval process, RBAC, attestation, separation of duties and recertification Experience / Knowledge in LDAP, PKI, SSL technologies would be an advantage. Good to have Saviynt L100, L200 certification."

The Senior Analyst - Information Security role at IndusInd Bank involves overseeing key operations, ensuring compliance, and driving business growth. Responsibilities include managing customer interactions, improving service efficiency, and coordinating with various teams to achieve operational excellence. The ideal candidate should possess strong analytical skills, excellent communication, and a proactive approach to problem-solving. Prior experience in a similar role is preferred. Candidates must demonstrate leadership qualities and adaptability to dynamic banking environments. This position offers a great opportunity to grow within the banking sector.

Position: Senior Engineer-IT Security Job Location: Pune, India Role Overview/Your Impact: We are looking for a highly skilled and detail-oriented Senior Engineer IT Security to join our Security Operations Center (SOC) team. As a Senior Engineer, you will be responsible for protecting the organization's IT infrastructure by monitoring, identifying, and responding to security threats or weaknesses and vulnerabilities. You will manage security tools for advanced analysis and investigation of security logs from various sources such as firewalls, intrusion detection/prevention systems (IDS/IPS), servers, applications, and other security devices. You will be expected to identify, investigate, and respond to security incidents, provide deep technical analysis, and work closely with other teams to improve the organizations overall security posture. What Does the team do The Security Operations Center (SOC) team plays a critical role in safeguarding an organization's IT infrastructure by actively monitoring, detecting, responding to, and mitigating cybersecurity threats in real time. This team's primary responsibility is to maintain a robust security posture, ensuring the integrity, confidentiality, and availability of systems, networks, and data. What will you do Acknowledge, analyze, and validate incidents triggered by multiple security tools like IDS/IPS, Web Application Firewall, Firewalls, Endpoint Detection & Response tools, and events through SIEM solution. Acknowledge, analyze, and validate incidents received through other reporting mechanisms such as email, phone calls, management directions, etc. Collection of necessary logs that could help in the incident containment and security investigation Escalate validated and confirmed incidents. Understand the structure and the meaning of logs from different log sources such as F/W, IDS/IPS, WAF, Domain Controller, Cloudflare, XDR Solution, Microsoft office 365 etc. Open incidents in the ticketing platform to report the alarms triggered or threats detected. Track and update incidents and requests based on updates and create root cause analysis. Report on IT infrastructure issues to the IMS Team. Working with vendors to work on security issues. Log Analysis and Investigation: Analyze large volumes of security logs from multiple sources (e.g., network devices, firewalls, IDS/IPS, SIEM tools, etc.) to identify potential security incidents, threats, and vulnerabilities. Perform in-depth investigations of suspicious activities to identify the root cause and potential impact. Prioritize and escalate incidents based on severity and risk. Incident Response: Lead the investigation and resolution of security incidents, coordinating with L1 and L2 teams as necessary. Provide detailed analysis and actionable intelligence to stakeholders to guide remediation efforts. Track incidents through to resolution and closure, ensuring all documentation is accurate and complete. Maintain Incident response procedures and SOPs Threat Intelligence Integration: Use threat intelligence feeds and other external resources to enhance log analysis and identify emerging threats. Correlate internal data with external threat intelligence to identify new attack vectors and trends. Tools & Technologies: Utilize SIEM tools (e.g., LogRhythm) to perform advanced log searches, filtering and correlation. Work with other SOC tools such as ticketing systems, network monitoring solutions, Email monitoring, and endpoint security tools. Collaboration & Reporting: Collaborate with SOC teams, IT teams, and management to provide detailed incident reports and security assessments. Develop and maintain documentation, playbooks, and procedures to improve the efficiency of the SOC. Provide mentorship and training to junior analysts (L1/L2). Continuous Improvement: Analyze and improve SOC processes, workflows, and detection methodologies to enhance overall efficiency and security posture. Regularly update and review log sources, collection mechanisms, and detection rules to adapt to changing threat landscapes. Perform other duties as assigned. Required Skills & Qualifications: Experience: Minimum of 4 years of experience in a security operations environment with a focus on log analysis, incident response, and threat detection. Strong knowledge of security concepts and technologies such as firewalls, IDS/IPS, antivirus, vulnerability scanners, encryption, and network protocols. Experience working with SIEM tools such as LogRhythm etc. Technical Skills: Strong knowledge of networking protocols (TCP/IP, HTTP, DNS, etc.) and the ability to analyze traffic and logs. Experience with log parsing, log correlation, and log analysis at an advanced level. Familiarity with scripting languages (e.g., Python, PowerShell) for automating tasks and log analysis. Strong understanding of security incident response lifecycle, including containment, eradication, and recovery. Certifications(Preferred): Certified Incident Handler (GCIH) Certified SOC Analyst (CSA) Certified Ethical Hacker (CEH) Soft Skills: Strong analytical and problem-solving abilities. Ability to work under pressure in a high-stress, fast-paced environment. Strong written and verbal communication skills for preparing reports and interacting with teams across the organization. Excellent attention to detail and a proactive approach to identifying and addressing security issues.

Qualification: B.Tech./ BE/ MCA Experience: 8+ Years Essential Skills (technical): Must has SIEM, SOAR, EDR/XDR, NAC, Threat Intelligence Platform SOC ANYLST L3- Proficient in Incident Management and Response, handling escalations In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management etc. Provide analysis and trending of security log data from a large number of heterogeneous security devices Provide threat and vulnerability analysis as well as security advisory services Analyze and respond to previously undisclosed software and hardware vulnerabilities Investigate, document, and report on information security issues and emerging trends Guide and share information with other analysts and other teams; Knowledge of various operating system flavors including but not limited to Windows, Linux, Unix Knowledge of TCP/IP Protocols, network analysis, and network/security applications; Knowledge of common Internet protocols and applications Communicate effectively by contributing significantly to the development and delivery of a variety of written and visual documents for diverse audiences Knowledge about various tools like SIEM, SSL, Packet Analysis, HIPS/NIPS, Network Monitoring tools, Remedy, Service Now Ticketing Toolset Web Security, AV, UBEA, Advanced SOC

Description 1.Manage and maintain the Claroty platform. 2.Performing the Compute Service Requirements in respect of the Clatory platform 3.Perform policy configuration and tuning as directed by the Customer 4.Configure Threat Detection rule and tune alerts as per Customer requirements. 5.Firmware updates and software patching Patch cycle monthly with additional patching as required, where security/vulnerability patches to be analysed and, all patching as approved by the Customer for deployment by the Service Provider during planned downtime 6.Create and maintain all relevant design and platform management documents 7.Report any critical anomaly to Customer SOC team if identified and provide necessary support during security incident analysis and investigation. 8.Provide support for Network Devices and Operational Technology component integration with Claroty platform. 9.Security alert monitoring and investigation Akash Saksena CV Recieved. Named Job Posting? (if Yes - needs to be approved by SCSC) Additional Details Global Grade C Level To Be Defined Named Job Posting? (if Yes - needs to be approved by SCSC) No Remote work possibility No Global Role Family To be defined Local Role Name To be defined Local Skills security;intrusion detection Languages RequiredENGLISH Role Rarity To Be Defined

Experience with vulnerability management, secure coding practices, and the OWASP Top 10 vulnerabilities. compliance standards (SOC 2, ISO 27001, PCI-DSS, GDPR). Experience with threat modelling, penetration testing, and security risk assessments. Required Candidate profile Proven experience with end-to-end security in cloud and containerized environments. Experience in leading security initiatives and guiding teams toward better security practices. CISSP

Ensure effective implementation and operation of the SIEM system (Splunk), protect the organization's network and systems from security threats and incidents, collect and analyze security event data, provide timely and accurate information to incident response teams, support the investigation and remediation of security incidents. SIEM System Setup & Integration Event Data Collection & Analysis Real-Time Monitoring & Incident Detection Incident Response & Remediation Reporting & Documentation Roles and Responsibilities SIEM Deployment & Configuration Use Case Development & Correlation Rules Threat Detection & Incident Response Performance Optimization & Health Monitoring Compliance & Security Best Practices Collaboration & Documentation

Responsibilities Work on projects with clearly defined guidelines as team member with responsibility for project delivery To understand end-to end application architecture and business logics. Conduct manual penetration testing of web applications, mobile applications, APIs, networks, and other systems to identify security vulnerabilities. Utilize penetration testing tools and frameworks to simulate real-world attack scenarios and identify vulnerabilities. Performs cyber security assessments which includes vulnerability assessment & penetration testing, network security architecture review, secure configuration / code review, manually etc. Understands basic business and information technology management processes. Demonstrates knowledge of firm's methodologies, frameworks, and tools. Participate in practice development. The Key Skills Understanding of basic business and information technology management processes Good knowledge of protocols, security measures and Networks including Firewall, IDS/IPS, Routers, Switches, and network architecture. Must have in-depth business logic vulnerabilities, XSS, SQLi, Broken Access Control, SSRF, and other OWASP TOP 10 best practices and cyber security guidelines. Experience in Infrastructure Penetration Testing and Application Security Testing Experience in secure code review and expertise in tools like Checkmarx and SonarQube are required. Experience in conducting configuration reviews of Windows, Linux, UNIX, Solaris, Databases, etc. Must have Hand-on-Experience of tools like Burp-Suite, Nmap, Metasploit as well as open-source tools. Should possess knowledge of vulnerability exploitation and exploit development. Experience in basic scripting such as: Shell, Python, etc. Basic knowledge of Technologies such as: IPSEC, SSL, SSH, VPN, Ethernet Token Ring, WAP, SMTP, etc. Additional Skills Strong analytical and communication skills (written, verbal and presentation) Open to learn new tools and technologies as per the project requirement. Any other professional certificated will be an added advantage. Requirement: CEH (Required) and OSCP (Preferred)

Business Development will spearhead the efforts to establish and grow a network of business partners delivering cybersecurity training courses in Eastern and North-Eastern India Bachelors degree in Engineering, Business Administration / Management, Information Technology, or a related field; Qualification will be not a limitation for the right candidate Keywords : - CISSP, CEH (Certified Ethical Hacker), and CISA, CompTIA Security+, strategic roadmap Mandatory Key Skills : - Partnership Development, Building and Managing a Regional Team, Spreading Regional Awareness of Cybersecurity Certifications, Organising Webinars, Conferences, and Events, Strategic Market Engagement Ability to build and lead teams effectively in a dynamic and competitive environment. Strong event management and marketing acumen. Data-driven decision-making with excellent reporting and analysis capabilities. Readiness for extensive travel across Eastern and North-Eastern India.

Business Development will spearhead the efforts to establish and grow a network of business partners delivering cybersecurity training courses in Eastern and North-Eastern India Partnership Development, Building and Managing a Regional Team, Spreading Regional Awareness of Cybersecurity Certifications, Organising Webinars, Conferences, and Events, Strategic Market Engagement Ability to build and lead teams effectively in a dynamic and competitive environment. Strong event management and marketing acumen. Data-driven decision-making with excellent reporting and analysis capabilities. Readiness for extensive travel across Eastern and North-Eastern India. CISSP, CEH (Certified Ethical Hacker), and CISA, CompTIA Security+, strategic roadmap

Responsibilities: Lead cybersecurity testing for CCTV devices per BIS/ITSAR, ensuring ISO 17025 compliance. Develop methodologies, oversee assessments, review reports, collaborate with clients on security needs, and enhance lab operations.

Firewall Support Manager Location : Vadodara Office (Work from Office) Shift : US shift time (5 days a week) About VikingCloud VikingCloud is the leading Predict-to-Prevent cybersecurity and compliance company, offering businesses a single, integrated solution to make informed, predictive, and cost-effective risk mitigation decisions faster. Powered by the Asgard Platform, the industry’s largest repository of anonymized cybersecurity and compliance event data, we continuously monitor and analyze over 6+ billion online events every day. Viking Cloud is the one-stop partner trusted by 4+ million customers to provide the predictive intelligence and competitive edge they need to stay one step ahead of cybersecurity and compliance disruptions to their business. Our 1,000 dedicated cybersecurity and compliance expert advisors understand that it’s not just about technology. It’s about transacting business and delivering an exceptional customer experience every day, without fail. That’s the measurable value we deliver. And that’s what we call, Business Uninterrupted. This Position We are seeking a highly skilled and experienced Firewall Support Manager to join our team. This position will be responsible for overseeing the implementation, configuration, and maintenance of the organization's firewall systems to ensure the security and integrity of the network. This role involves managing a team of Lead and support engineers, coordinating with other IT departments, and ensuring compliance with security policies and procedures. This role requires strong technical expertise, strategic thinking, excellent communication skills and strong team management skills. Key Responsibilities: Oversee the configuration, administration, and maintenance of firewall systems. Ensure firewalls are updated with the latest security patches and firmware. Monitor firewall performance and security logs to identify and mitigate potential threats. Develop and implement Firewall systems strategies, policies and procedures to safeguard the company's systems, networks and data Conduct regular assessments and audits to identify vulnerabilities and recommend corrective actions Manage the deployment and maintenance of security tools, such as firewalls, intrusion detection/prevention systems and antivirus software Monitor security logs and alerts for suspicious activities and respond to security incidents in a timely manner Collaborate with cross-functional teams to integrate security best practices into software development lifecycle and infrastructure deployment processes Stay up to date on emerging threats, vulnerabilities and security technologies to proactively mitigate risks Provide guidance and support to internal teams on security-related matters, including incident response, data protection and access control Conduct security awareness training and workshops for employees to promote a culture of security awareness and compliance Liaise with external auditors, regulatory agencies and third-party vendors to ensure compliance with relevant standards and regulations Prepare and present reports on cybersecurity metrics, incidents and compliance status to senior management and stakeholders Lead the response to security incidents and breaches. Coordinate with other IT teams to investigate and resolve security issues. Develop and implement incident response plans Project Management Manage firewall-related projects, including upgrades, migrations, and new implementations. Coordinate with vendors and service providers for firewall-related products and services. Ensure projects are completed on time, within scope, and budget. Reporting and Documentation Generate regular reports on firewall performance, security incidents, and compliance status. Maintain detailed documentation of firewall configurations, policies, and procedures. Communicate security updates and status reports to senior management. Team Leadership Manage and mentor a team of firewall support engineers. Assign tasks, provide technical guidance, and conduct performance reviews. Develop training programs (in collaboration with offshore team)to enhance the team's skills and knowledge. Improve customer satisfaction metric, through stable transparent service Deliver better than agreed customer SLAs. Continuous Improvement Monitor and assist their team to meet individual metrics for Level 1 Support Engineer Identify and suggest process improvements as they arise. Participate in departmental training activities including training programs in support of new technologies, procedures, and customer service enhancements. Assist the Manager on creating training needs Work closely with the Quality Team: Plan the required Trainings based on the feedback Work closely with the Leads to develop improvement plan for the Team-members based on the feedback Technical Skills Knowledge and experience with network protocols and concepts including SSH, FTP, ICMP, TCPIP (IPv4 & IPv6), Network Address Translation (NAT), SNMP, IPSec, GRE, QoS, and VLANs. Ability to interpret output from network traffic analysis tools such as Ethereal (Wireshark) Hands-on experience with Meraki and Fortinet firewalls. Ability to effectively collaborate in a dynamic team environment. Monitor performance, capacity, and availability of the firewalls on an ongoing basis. Recommend improvements in technologies and practices to increase these metrics. Maintain awareness of and familiarity with trends and new developments in technologies used in, or appropriate for use in, firewall support and operating infrastructure. Work with the direct manager, other senior member of the team to develop firewall architectures, technologies, and quality assurance policies and procedures. Education Bachelor’s degree in computer science, Information Technology, or a related field. Relevant certifications (e.g., CISSP, CISM, CEH) are highly desirable. Experience: Minimum of 10+ years of experience in firewall management and network security. Proven experience in leading and managing a technical support team. Skills: In-depth knowledge of firewall technologies (e.g., Cisco, Palo Alto, Fortinet). Strong understanding of network protocols, security architectures, and best practices. Excellent problem-solving and analytical skills. Strong communication and interpersonal skills. Ability to manage multiple tasks and projects simultaneously