Job Description

Job Responsibilities: Cyber Security Analyst will lead the planning, development, and delivery of multiple security and compliance technologies, projects for customers as well as in-house project. This position will also assist with the review, revision, and rollout of security standards, Application assessments, VAPT, SIEM, Policies, and Procedures, SOC monitoring. Projects will include but are not limited to the implementation of Cyber Security Tools, risk assessments, Internal & External audits, Audit observation closures , and BAU activities etc. Key Accountable: Knowledge of cyber security risk management concepts, cybersecurity frameworks, controls, standards, secure coding principles, and security technologies. Well-versed in cyber threat actors, attack methodologies, and mitigation/remediation methods. Good understanding and hands on experience on vulnerability management Network & System VAPT, Web Application Security, Mobile App sec, OWASP, Application Threat modelling, Source Code Review. Identifying and tracking vulnerabilities till closure. Manage & Monitor 24*7 external SOC and ensure cyber security posture of company Knowledge of security architecture, operating systems and tools such as SIEM, PIM, FIM, Anti-APT, DLP & DDoS, email security, DNS security, IPS, Digital Risk Monitoring, Network access control, API gateway, GRC products, Cyber security awareness tool, PII and Critical data discovery tool, etc. Knowledge of statutory audits i.e RBI, NPCI, Master Card, VISA & customer audits Oversee the development and implementation of hardening procedures for the firm's servers, workstation (desktops and laptops) and mobile devices, as per CIS bench mark. Execute & Close all assigned project management activities related to information security, compliance, and data privacy Co-ordinate with the internal stakeholders (Application, IT, Database Teams, Legal, HR, Admin) for Internal/External audit point closure, Assessment Observation closures etc Participate in technical meetings/Audits and working groups to address issues related to malware security, vulnerabilities, and issues of cyber security and preparedness Responsible for MIS/Reporting on established security metrics on a regular basis Responsible for performing and coordination of various PCI-DSS compliance activities associated with Cyber security vertical. Firewall rule base review, NMAP scanning, WIFI scanning, External PT, ASV scanning, PII & Critical Data discovery, Risk acceptance tracking, User access review, SIEM & SOC team management, Advisory compliance etc Participate in all the Core certifications (PCI-DSS, PA-DSS, ISO 27001 Perso Bureau NPC, Master Card, VISA) and with closure of Internal, external audit findings. Drive PCI-DSS certification process for organization. Enhance the cyber security posture by implementing latest cyber security tools.