8 Configuration Review Jobs

PN: who are relevant & interested candidates can come for F2F interviews on Wednesday,20th Aug 25 btw 10:30am to 6:00pm, Venue details: Happiest Minds- SMILES 1,3rd & 4th Floor, SJR Equinox,Sy.No.47/8,Doddathogur Village,Begur Hobli,E- City Phase1,Hosur Road, Opposite to Velankani tech park,B-560100. . POC:-Sreenivas Please find below the JD for your reference, experience conducting Application Security assessments Experienced in conducting Manual and Automated DAST for Web, API & Thick client covering OWASP Top 10 Experienced in conducting Manual code review Experienced in Mobile VAPT (Both static and Dynamic) Knowledge of Infra VAPT or at least VA and configuration review Knowledge in Container / Docker security / Cloud Audit is a plus Certifications suck as CEH, CRTP, OSCP is preferred Good communication skills, ability to explain vulnerabilities to business users in simple terms.

As a Database Administrator specializing in MSSQL, you will be responsible for monitoring log and event files to identify potential errors that may lead to incidents. Your duties will include monitoring the availability of the Disaster Recovery Database, reporting on log replications, and ensuring consistent configurations through periodic configuration reviews. You will be required to review and make recommendations to maintain database availability, generate monthly reports on database availability, and take necessary actions to prevent database failures. This may involve reinstalling database software, reconfiguring log shipping, and responding to database-related incidents by driving corrective actions. Furthermore, you will be expected to correlate related incidents into problem tickets for management through the problem management process. Utilizing trend analysis, you will identify, detail, categorize, prioritize, and create Problem Management Records. Other responsibilities include restoring databases, creating and scheduling jobs for routine maintenance tasks, rebuilding indexes, purging database logs and trace files, and managing performance through defragmentation and performance tuning. Additionally, you will be required to handle service requests through the change management process. This role requires a minimum of 4-5 years of experience and is based in Mumbai. If you are a proactive individual with a strong understanding of MSSQL database administration, this opportunity may be a perfect fit for you.,

The role at KPMG in India involves working as a professional services firm affiliated with KPMG International Limited. Established in India in August 1993, KPMG professionals utilize the global network of firms while being well-versed in local laws, regulations, markets, and competition. With offices located across India in various cities, KPMG entities cater to both national and international clients, offering services across different sectors. The focus is on delivering rapid, performance-based, industry-focused, and technology-enabled services that draw on a shared knowledge of global and local industries and experience in the Indian business environment. The responsibilities for this position may include Vulnerability Assessment and Penetration Testing (VAPT), Code Review, and Configuration Review. As a part of the team, you will contribute to ensuring the security and integrity of systems through these assessments. In terms of qualifications, the ideal candidate should hold a BTech degree with certification in Certified Ethical Hacker (CEH). KPMG is an equal opportunity employer, and encourages individuals with diverse backgrounds and experiences to apply for this role.,

As an Analyst in Cyber Security, you will be responsible for applying your hands-on expert knowledge of tools such as Burp, Nessus, Nmap, Nipper, Metasploit, and other latest tools in the field. Your expertise will be crucial in conducting Vulnerability Assessment and Penetration Testing (VAPT) across various domains including Cloud Security, Web, and Mobile Applications. You should possess a solid understanding of OWASP top 10 and other application/network security frameworks to effectively discover and analyze security vulnerabilities. Your experience in Web Application and Internal/External Network Testing will be key in identifying and mitigating security risks. Moreover, your skills in Configuration Review, policy review, system and network hardening, as well as endpoint review will play a vital role in enhancing the overall security posture. Experience in Application Code Review and Testing tools will be an added advantage in this role. Your ability to create comprehensive reports and communicate effectively, both in writing and verbally, will be essential as you directly engage with clients during projects. You will also be expected to review cyber-attack surfaces, recommend security measures, and conduct cyber investigations when necessary. A minimum of 1 year of post-qualification experience in Security Testing Projects is required for this position. Holding certifications such as CEH/CHFI, OSCP/eWPTX, or any other industry-recognized security certification will be advantageous. If you have a basic scripting knowledge in any language, it will be considered a plus. Additionally, your willingness to travel as needed will be appreciated in this role.,

As a Senior Consultant in the Cyber Security department located in Gurugram, you will be responsible for various tasks and possess a range of skills and experiences. Your role will involve working on programming languages used for storing and processing raw data, having knowledge of operating systems such as Windows, macOS, Linux, UNIX, and other OSs, conducting penetration testing, understanding ethical hacking and coding practices, mastering advanced persistent threat management, ensuring firewall safety and management, utilizing encryption techniques and capabilities, conducting compliance assessments, and working with frameworks like COBIT and ITIL. You should have at least 5 years of relevant experience in cybersecurity, IT systems operation, and IT solutions development and maintenance. You must be well-versed in configuring and troubleshooting vulnerability management platforms like Tenable or Qualys, as well as patch management control platforms such as Microsoft MECM/SCCM. Experience in supporting patch management, vulnerability management, or configuration management programs is crucial, along with troubleshooting patch deployment and installation through log analysis and investigation. Your expertise should include knowledge of OWASP top 10 and other network security frameworks, hands-on experience in VAPT for application and network security, skills in configuration review, policy review, hardening of systems and networks, endpoint review, application code review, and testing tools. You should possess excellent communication and analytical skills to interact with clients directly, experience in Mobile AppSEC for Android and iOS, API testing, willingness to travel, good presentation and report-making skills, research knowledge in cyber security for consulting and customizing services, and hands-on working knowledge of tools like Burp, Nessus, Nmap, Qualys, Acunetix, Metasploit, and other relevant tools. Additionally, you should have knowledge of SIEM/SOAR, DLP, EDR/EPP, Firewall/IPS, Web Servers, and basic scripting knowledge in any language would be advantageous. Your role will also involve being willing to travel and actively participating in pre-sales activities, ensuring the highest level of security for clients and their systems.,

The primary responsibility in the role of L3-Information Security involves managing organizational practices related to Vulnerability Assessment, Infrastructure Penetration Testing (Cloud/Traditional DC), Configuration Review, and Red Teaming. As a part of the role, you will be expected to lead the team in delivering Vulnerability Management operations efficiently. Your duties will include conducting penetration testing based on scheduled activities and responding to on-demand requests for Infrastructure Vulnerability Assessment. You will also be responsible for performing Vulnerability Assessment and Penetration Testing on Cloud Environments such as AWS, GCP, and Azure. Additionally, conducting configuration reviews based on the calendar activities and responding to on-demand requests for server, database, and network components will be a part of your responsibilities. As part of this role, you will need to identify critical vulnerabilities and propose workarounds. You will be required to explain vulnerabilities to system owners, provide recommendations for mitigation, monitor the progress of vulnerability mitigations, and keep track of remediation efforts. Providing advisory support to the internal IT team for closing identified vulnerabilities during security testing will also be expected. To excel in this position, you should stay updated on the latest trends in tools and technologies used for application security. Developing Proof of Concepts (POCs) to demonstrate security issues will also be a key aspect of this role. In terms of qualifications, a B.Tech, B.E, MCA, or equivalent degree from a recognized university is required. Candidates should have a minimum of 8 years of experience in a similar role. Preferred certifications include OSCP and EC-Council LPT, while hands-on experience with popular security tools like Nessus, Metasploit, and KALI Linux is essential. Additionally, working knowledge of CIS Security benchmarks and practical experience in auditing various operating systems, databases, networks, and security technologies will be beneficial for this position.,

The Cybersecurity Intern will be responsible for supporting various aspects of cybersecurity operations including governance, risk, compliance, assessments, and Security Operations Center (SOC) activities. The Intern will have the opportunity to work on different projects across multiple locations such as Thane, Pune, Bengaluru, and Mumbai. This internship will provide hands-on experience in the field of cybersecurity and offers a potential full-time position upon successful completion. In the role of CyberSecurity Intern - GRC, you will assist in developing and implementing information security policies, standards, and procedures. Your responsibilities will include educating employees on best practices, collaborating on security awareness programs, and supporting clients in establishing effective security governance frameworks. Additionally, you will help in compliance programs, conduct security audits, and identify vulnerabilities in clients" IT infrastructure. As a CyberSecurity Intern - Assessment, your key responsibilities will involve conducting Vulnerability Assessment and Penetration Testing (VAPT) for various applications, performing source code and configuration reviews, and preparing detailed security findings and recommendations. You will also guide clients in patching vulnerabilities, stay updated on cybersecurity trends, and contribute to continuous learning and adaptation in the field. In the role of CyberSecurity Intern - SOC, you will monitor security events and alerts, assist in analyzing potential threats, and participate in the investigation and documentation of security incidents. You will research emerging cyber threats, work on improving detection use cases, apply threat intelligence to monitoring activities, and support in creating reports and dashboards. Requirements for this internship include pursuing a degree in Computer Science, Information Security, or a related field, basic understanding of cybersecurity principles and tools, familiarity with Linux/Windows systems and networking concepts, eagerness to learn in a SOC/MDR environment, excellent communication and analytical skills. Certifications like CompTIA Security+ and CEH are preferred but not mandatory.,

As a CFIN Manager at DynPro India, you will be responsible for leveraging your extensive experience in SAP ECC and S/4 HANA, specifically in the FICO and CFIN modules. Your role will involve integrating these modules with other key modules like FI and CO, ensuring a seamless flow of information and process alignment. You should have a track record of more than 10 years in SAP ECC and S/4 HANA, with a focus on end-to-end implementations and recent project involvement. Your expertise in SLT (System Landscape Transformation) will be an added advantage in this role, allowing you to contribute effectively to large-scale implementations and transformation projects. Your responsibilities will include gathering and defining requirements, conducting FIT GAP analysis, system configurations, and overseeing project planning and deliveries. You will be expected to design and implement RICEFW objects, write functional specs, debug ABAP code, and create SAP queries to enhance client implementations. In addition to your technical skills, you should possess a clear vision for the roadmap of various business processes within SAP Finance and CFIN. Staying up to date with the latest innovations and out-of-the-box features in this spectrum will be crucial for your success in this role. Your experience in people management, mentoring, escalation handling, and resource optimization will be valuable assets in leading and managing a team across all SAP modules. Your responsibilities will extend to engaging with clients, ensuring project delivery, and managing teams effectively. You will be involved in requirements gathering, pre and post-implementation reviews, BBP design and review, configuration review, program management, project risk assessments, data migration, and segregation of duties design or review engagements. Any certification in S/4 Hana CFIN or S4 Hana Financial Accounting will be considered an advantage in this role. If you are looking to join a dynamic team and contribute to cutting-edge technology solutions in a fast-paced environment, we welcome your application for the CFIN Manager position at DynPro India.,