Allegis Global Solutions (AGS) logo

Cyber Security Audit

4 - 9 years

9 - 19 Lacs

Noida Gurugram

Posted:4 months ago| Platform: Naukri logo

Apply

Skills Required

Cyber Security Auditing Cybersecurity Risk Assessment Third Party Risk Management GRC Vulnerability Management NIST Frameworks

Work Mode

Work from Office

Job Type

Full Time

Job Description

Role Overview:

The Cyber Security Auditor is responsible for auditing cybersecurity processes, risks, and controls. The role requires a strong understanding of industry frameworks like NIST (e.g., NIST CSF, NIST 800-53) and hands-on experience in assessing cybersecurity risks, governance controls, and technical security measures.

Key Responsibilities:

  • Risk and Control Assessments:

    Conduct assessments of cybersecurity risks and controls across network security, application security, vulnerability management, and governance controls.

  • Issue Validation:

    Perform closure verification and issue validation for security findings, ensuring remediation aligns with risk reduction objectives.

  • Vulnerability Management:

    Understand vulnerability management and penetration testing programs, patch management processes, threat intelligence, and threat hunting integrations.

  • Governance Controls:

    Review and test governance controls related to cybersecurity policies, procedures, roles, and responsibilities.

  • Technical Expertise:

    Test controls for network security, firewalls, IDS/IPS, SIEM tools, and endpoint security.

  • Application Security:

    Hands-on experience in application security, vulnerability management, patch management, and security monitoring.

  • Network Protocols:

    Strong knowledge of network protocols (TCP/IP, HTTP, SSL/TLS, DNS, VPN, etc.) and secure configurations.

  • Cloud Security:

    Familiarity with cloud security controls (AWS, Azure, GCP) and DevSecOps principles.

Desired Skills and Certifications:

  • Frameworks and Standards:

    Strong understanding of NIST frameworks (CSF, 800-53), ISO 27001, CIS Controls, and regulatory requirements.

  • Tools:

    Experience with GRC tools or IAM/PAM tools such as Archer, SailPoint.

  • Certifications:

    Professional certifications like CISA, CISSP, CISM, CRISC, CEH, or GIAC certifications (GCIH, GCFA, GPEN) are highly desirable.

  • Emerging Threats:

    Stay up to date with emerging cyber threats, attack techniques, and regulatory requirements impacting security controls.

Top 5 Keywords for LinkedIn Search:

  1. Cyber Security Auditor

  2. NIST Frameworks (CSF, 800-53)

  3. Vulnerability Management

  4. Governance, Risk, and Compliance (GRC)

  5. Professional Certifications (CISA, CISSP, CISM)

These keywords should help you identify candidates with the relevant skills, experience, and certifications for the position. If you need further assistance or have any other questions, feel free to ask!

You said:

make a good roles and responsibility based on the jd given for a job p[ost

Copilot said:

Copilot

Roles and Responsibilities for Cyber Security Auditor

Role Overview:

The Cyber Security Auditor is responsible for auditing cybersecurity processes, risks, and controls. This role requires a strong understanding of industry frameworks such as NIST (e.g., NIST CSF, NIST 800-53) and hands-on experience in assessing cybersecurity risks, governance controls, and technical security measures. The auditor will validate control effectiveness and perform closure verification/issue validation to strengthen the organization's cybersecurity posture.

Key Responsibilities:

  1. Risk and Control Assessments:

    • Conduct comprehensive assessments of cybersecurity risks and controls across various domains including network security, application security, vulnerability management, and governance controls.
    • Evaluate the effectiveness of existing security measures and recommend improvements.

  2. Issue Validation and Remediation:

    • Perform closure verification and issue validation for security findings.
    • Ensure remediation efforts align with risk reduction objectives and enhance overall security posture.

  3. Vulnerability Management:

    • Understand and assess vulnerability management and penetration testing programs.
    • Oversee patch management processes and integrate threat intelligence and threat hunting activities.

  4. Governance Controls:

    • Review and test governance controls related to cybersecurity policies, procedures, roles, and responsibilities.
    • Ensure compliance with regulatory requirements and industry standards.

  5. Technical Expertise:

    • Test and validate controls for network security, firewalls, intrusion detection/prevention systems (IDS/IPS), SIEM tools, and endpoint security.
    • Apply hands-on experience in application security, vulnerability management, patch management, and security monitoring.

  6. Network Protocols and Secure Configurations:

    • Demonstrate strong knowledge of network protocols (TCP/IP, HTTP, SSL/TLS, DNS, VPN, etc.) and secure configurations.
    • Implement and maintain secure network configurations.

  7. Cloud Security and DevSecOps:

    • Familiarity with cloud security controls for platforms such as AWS, Azure, and GCP.
    • Apply DevSecOps principles to integrate security into the development and operations processes.

  8. Professional Development:

    • Stay up to date with emerging cyber threats, attack techniques, and regulatory requirements impacting security controls.
    • Pursue relevant professional certifications such as CISA, CISSP, CISM, CRISC, CEH, or GIAC certifications (GCIH, GCFA, GPEN).

Desired Skills and Certifications:

  • Frameworks and Standards:

    Strong understanding of NIST frameworks (CSF, 800-53), ISO 27001, CIS Controls, and regulatory requirements.

  • Tools:

    Experience with GRC tools or IAM/PAM tools such as Archer, SailPoint.

  • Certifications:

    Professional certifications like CISA, CISSP, CISM, CRISC, CEH, or GIAC certifications (GCIH, GCFA, GPEN) are highly desirable.

More Jobs at Allegis Global Solutions (AGS)

Customer Support Executive

Pune

1 - 4 yrs
|

INR 3 - 6 Lacs

AVP - Finance Engineer-Python Developer-Bangalore & Gurgoan

Bengaluru, Gurgaon

6 - 11 yrs
|

INR 14 - 24 Lacs

Reinsurance Expert

Bengaluru

2 - 7 yrs
|

INR 5 - 15 Lacs

Snowflake Architect

Bengaluru

9 - 14 yrs
|

INR 20 - 35 Lacs

zTPF Assembler Developer/Lead

Bengaluru

4 - 9 yrs
|

INR 10 - 20 Lacs

Mock Interview

Practice Video Interview with JobPe AI

Start Job-Specific Interview
cta

Start Your Job Search Today

Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.

Job Application AI Bot

Job Application AI Bot

Apply to 20+ Portals in one click

Download Now

Download the Mobile App

Instantly access job listings, apply easily, and track applications.

Google Play App Store
coding practice

Enhance Your Skills

Practice coding challenges to boost your skills

Start Practicing Now
Allegis Global Solutions (AGS) logo
Allegis Global Solutions (AGS)

Staffing and Recruitment

Hanover

RecommendedJobs for You

Allegis Global Solutions (AGS) logo

Cyber Security Audit

Allegis Global Solutions (AGS)

Noida, Gurugram

Y Axis logo

Audit & Data Analyst

Y Axis

hyderabad

S K AGRAWAL AND CO CHARTERED ACCOUNTANTS LLP logo

Qualified Experienced Chartered Accountant - For Statutory Audit

S K AGRAWAL AND CO CHARTERED ACCOUNTANTS LLP

kolkata

Crescendo Global Leadership Hiring India logo

CA-SOX Audit - Immediate Joiner - 1+Years -Bangalore/Gurugram

Crescendo Global Leadership Hiring India

gurugram, bengaluru

LTFinance logo

TEAM LEADER - INTERNAL AUDIT

LTFinance

kolkata

Deputy Manager

Tega Industries Limited

kolkata

Indian Hotels Company (IHCL) logo

DIWA Professional

Indian Hotels Company (IHCL)

shimla

Indian Hotels Company (IHCL) logo

DIWA Professional

Indian Hotels Company (IHCL)

theog

Biostatistician - Academics

Medcare Hospitals Medical Centres

kannur

Diageo logo

Manager E2E Commercial

Diageo

gurugram