Job
Description
Job Title: Lead SME Cybersecurity and Infosec Location: Pune About Zygal - Zygal is built on a decade of product development and manufacturing expertise, where innovation is at our core. From the outset, we recognized the limitations of conventional cameras in securing premises. Our relentless pursuit of an unparalleled security and surveillance ecosystem has positioned us at the forefront of AIoT innovation, driven by AI and Robotic Process Automation (RPA). We aspire to establish Zygal as a global brand in B2B security surveillance, leveraging our SaaS model to power our solutions. We have earned the trust of industry giants in critical sectors such as BFSI, retail, logistics, and supply chain management, serving over 25,000 locations nationwide. Our cloud- based AIoT ecosystem currently manages a vast network of over 3.5 million connected devices, processing more than 1.2 billion alerts annually to meet the ever-evolving demands of security and surveillance. Duties and Responsibilities 1. Discover and Mitigate Cyber Risks and exploitable vulnerabilities on the internet facing apps/assets 2. Conduct Regular Vulnerability Assessment and Penetration Testing of the applications 3. Experience with latest technologies and security standards such as OWASP, CVSS, Mitre etc. 4. Mobile App Reversing and pen testing as Android and iOS applications security standards 5. Familiarity with malicious code identification and common hacker attack techniques 6. Conduct regular Secure Code and Architecture Review, SAST and DAST 7. Latest technology security- API, Microservices, RPA, IOT etc. 8. Ethical Hacking and Red Teaming Activity (Addon preferred) 9. Assess Third Party Partner vulnerabilities and security risk 10. Remediations, Closures Tracking, Reporting and Management of all Cyber Risks 11. Engage with technology Teams and partners and business units to resolve identified vulnerabilities within acceptable timelines 12. Design and deliver actionable Information Security dashboards and scorecards 13. Work with partners in carrying out comprehensive VAPT assessment 14. Advanced understanding with working experience collecting and tracking threat intelligence 15. Experience working with tracking, communicating, and prioritizing vulnerabilities and cyber threats to an enterprise-wide organization Required Qualifications and Experience 1. Engineering / Computer Graduate with 3-5 years of Information / Cyber Security Experience 2. Relevant Security Certifications like CEH, CPENT, PNPT, EJPT, EWPT, OSCP etc. preferred 3. Prior experience of Security Testing, OWASP Top 10 and application security 4. Prior experience of Penetration Testing Web Application, Mobile Applications and API Security testing 5. Sound in latest application technologies and network attacks execution 6. Good Written and Verbal Communication with Presentation Skills Good Team Player and sound in stakeholder management 8. Threat Modelling, Cloud Security and WAF basics clarity 9. DevOps / DevSecOps and Source Code security review experience is added boon 10. Well versed with related tools and techniques of all the above Role: Lead SME - Cyber Security Department: IT & Information Security Employment Type: Full Time, Permanent Role Category: IT Security Experience: 5 to 8 Years Education
