Lead Subject Matter Expert

Job Title: Lead SME Cybersecurity and Infosec

Location: Pune

About Zygal -

Zygal is built on a decade of product development and manufacturing expertise, where innovation is

at our core. From the outset, we recognized the limitations of conventional cameras in securing

premises. Our relentless pursuit of an unparalleled security and surveillance ecosystem has

positioned us at the forefront of AIoT innovation, driven by AI and Robotic Process Automation (RPA).

We aspire to establish Zygal as a global brand in B2B security surveillance, leveraging our SaaS model

to power our solutions. We have earned the trust of industry giants in critical sectors such as BFSI,

retail, logistics, and supply chain management, serving over 25,000 locations nationwide. Our cloud-

based AIoT ecosystem currently manages a vast network of over 3.5 million connected devices,

processing more than 1.2 billion alerts annually to meet the ever-evolving demands of security and

surveillance.

Duties and Responsibilities

1. Discover and Mitigate Cyber Risks and exploitable vulnerabilities on the internet facing

apps/assets

2. Conduct Regular Vulnerability Assessment and Penetration Testing of the applications

3. Experience with latest technologies and security standards such as OWASP, CVSS, Mitre etc.

4. Mobile App Reversing and pen testing as Android and iOS applications security standards

5. Familiarity with malicious code identification and common hacker attack techniques

6. Conduct regular Secure Code and Architecture Review, SAST and DAST

7. Latest technology security- API, Microservices, RPA, IOT etc.

8. Ethical Hacking and Red Teaming Activity (Addon preferred)

9. Assess Third Party Partner vulnerabilities and security risk

10. Remediations, Closures Tracking, Reporting and Management of all Cyber Risks

11. Engage with technology Teams and partners and business units to resolve identified

vulnerabilities within acceptable timelines

12. Design and deliver actionable Information Security dashboards and scorecards

13. Work with partners in carrying out comprehensive VAPT assessment

14. Advanced understanding with working experience collecting and tracking threat intelligence

15. Experience working with tracking, communicating, and prioritizing vulnerabilities and cyber

threats to an enterprise-wide organization

Required Qualifications and Experience

1. Engineering / Computer Graduate with 3-5 years of Information / Cyber Security Experience

2. Relevant Security Certifications like CEH, CPENT, PNPT, EJPT, EWPT, OSCP etc. preferred

3. Prior experience of Security Testing, OWASP Top 10 and application security

4. Prior experience of Penetration Testing Web Application, Mobile Applications and API

Security testing

5. Sound in latest application technologies and network attacks execution

6. Good Written and Verbal Communication with Presentation Skills

Good Team Player and sound in stakeholder management

8. Threat Modelling, Cloud Security and WAF basics clarity

9. DevOps / DevSecOps and Source Code security review experience is added boon

10. Well versed with related tools and techniques of all the above

Role: Lead SME - Cyber Security

Department: IT & Information Security

Employment Type: Full Time, Permanent

Role Category: IT Security

Experience: 5 to 8 Years

Education