14 Security Audits Jobs

Experience Required: 10+ Years Job Summary: We are seeking a highly experienced and proactive Level 3 Network Engineer to join our IT Infrastructure team. The ideal candidate will have deep expertise in Cisco switching technologies and Palo Alto firewalls, with a strong background in designing, implementing, troubleshooting, and optimizing enterprise network environments. This role will act as a technical escalation point and will be responsible for maintaining network performance and security at the highest level. Key Responsibilities: Act as the highest level of technical escalation for complex network issues. Manage, configure, and troubleshoot Cisco switches (Catalyst, Nexus, etc.). Administer, configure, and secure Palo Alto firewall appliances (including Panorama). Design and implement enterprise-level LAN/WAN solutions and network security policies. Monitor network performance and ensure system availability and reliability. Handle network changes through established change management protocols. Perform regular security audits, vulnerability assessments, and compliance checks. Assist with network infrastructure upgrades, patch management, and documentation. Provide L3 support and guidance to junior engineers and operations teams. Participate in root cause analysis (RCA) and create post-incident reports. Collaborate with cross-functional teams including server, cloud, and security operations. Required Skills & Qualifications: Education: Bachelors degree in Computer Science, Engineering, or related field. Certifications: CCNP/CCIE (Routing & Switching). PCNSE (Palo Alto Networks Certified Network Security Engineer) preferred. Technical Skills: Strong hands-on experience with Cisco Catalyst and Nexus switches. Deep understanding of Layer 2 and Layer 3 technologies (VLAN, STP, OSPF, BGP, EIGRP, etc.). Expert-level knowledge of Palo Alto Firewalls (NGFW policies, NAT, VPNs, SSL decryption, Threat Prevention). Experience with HA (High Availability) configurations, VRRP/HSRP. Familiarity with tools like SolarWinds, Wireshark, or similar for monitoring and diagnostics. Soft Skills: Strong analytical and troubleshooting skills. Excellent written and verbal communication skills. Ability to lead technical discussions and mentor junior team members. Preferred Skills: Experience with SD-WAN, NAC (ISE or ClearPass), and Zero Trust implementations. Working knowledge of cloud networking (AWS/Azure/GCP). Experience with network automation . Work Environment: On-call rotation for critical incidents. Fast-paced and highly collaborative IT infrastructure environment. Interested candidates are requested to send their CV to career@bennett.edu.in with the Job Title mentioned in the subject line. Also, provide the following details in the email body: Current Organization: Current Designation: Current Salary: Expected Salary: Notice Period: Willingness to work from our Greater Noida campus (Work from Office only): Yes/No

Candidate must currently be in Bangalore Must be fluent in Spoken Kannada Conduct routine patrols Monitor surveillance Enforce process and policies Documentation Respond to Emergencies Key Responsibilities: Supervise security guards and third-party vendors. Monitor CCTV and security systems. Conduct regular security audits and risk assessments. Handle visitor management, access control, and emergency response drills. Investigate security breaches or suspicious activities. Requirements: Background in defense/security preferred. Knowledge of fire safety protocols, emergency handling, and local law enforcement coordination. Strong leadership, communication, and observation skills.

Responsibilities: Ensure that written processes and procedures are available for every operational activity, with periodic revisions as needed. Ensure the Security Team provides guidance and assurance to staff, building a reputation for operational excellence. Manage and enhance the effectiveness and efficiency of support services (visitor management, material management, escorting, access control, alarm response, emergency response, surveillance, etc.), ensuring no undue complaints from customers. Maintain a professional outlook for the entire security team through close monitoring and taking corrective actions. Ensure compliance with the Site Security Activity Planner (SSAP) within the given timeline. Conduct regular briefings, provide coaching, and ensure timely refreshers for all security team members. Ensure no compromise in post manning, prepare the duty roster, and update all with changes as required. Regularly update time & attendance and leave records in the workday application. Ensure minimal overtime without exposing the business to risk. Distribute routine operations reports to all concerned parties and assist in MIS. Keep line managers informed of internal and external issues or events that may potentially impact GIA's operations by maintaining close vigilance. Record all abnormal instances in the LIR format and investigate, recommend corrective actions. Ensure an effective material management process with no undue non-compliances. Ensure an effective visitor management process with no undue non-compliances. Maintain all records according to standards, fulfilling statutory and regulatory requirements. Provide prompt, professional, and effective assistance to all internal and external customers. Assist in performance appraisals by keeping records of all positive and negative instances of each team member. Ensure all team members complete mandatory training on time. Hold all team members accountable for their non-compliances.

The role supports full end to end software development cycle, from initial client engagement, through assessments and road-mapping, to longer term engagement in an advisory capacity. As an Application Security Consultants, the person should leverage the technical expertise of the security competencies, varied product and delivery capabilities Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional expertise Candidate with 8 + years of experience in IT domain with 3+ years on Delina (Thycotic) PAM implementation with Thycotic Certification (Optional). Experience in development and end to end implementation, design and architecture of privileged access solution using Delina Secret Serveries Experience in Installing and upgrading secret server, onboarding secrets, remote password changing, configuring roles & Permissions, configuring folder structure, secret templates, secret policy, launchers, session recording, account discovery, sites, event subscriptions, event pipeline policy and other operational activities for Delina Secret Server Preferred technical and professional experience Knowledge of Web Services (REST/SOAP), Directories (LDAP, AD), etc and PowerShell scripts in PAM solution REST API Automations using PowerShell Scripting (Bulk Upload Utility options, Account Onboarding PowerShell Script, User Deletion using Script PowerShell Script) Good understanding of LDAP concepts and working experience with at least few of the following directories: Oracle Internet Directory/Oracle Virtual Directory, Sun Directory Server, Active Directory, Tivoli Directory Server

The role supports full end to end software development cycle, from initial client engagement, through assessments and road-mapping, to longer term engagement in an advisory capacity. As an Application Security Consultants, the person should leverage the technical expertise of the security competencies, varied product and delivery capabilities Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional expertise Candidate with 8 + years of experience in IT domain with 3+ years on Delina (Thycotic) PAM implementation with Thycotic Certification (Optional). Experience in development and end to end implementation, design and architecture of privileged access solution using Delina Secret Serveries Experience in Installing and upgrading secret server, onboarding secrets, remote password changing, configuring roles & Permissions, configuring folder structure, secret templates, secret policy, launchers, session recording, account discovery, sites, event subscriptions, event pipeline policy and other operational activities for Delina Secret Server Preferred technical and professional experience Knowledge of Web Services (REST/SOAP), Directories (LDAP, AD), etc and PowerShell scripts in PAM solution REST API Automations using PowerShell Scripting (Bulk Upload Utility options, Account Onboarding PowerShell Script, User Deletion using Script PowerShell Script) Good understanding of LDAP concepts and working experience with at least few of the following directories: Oracle Internet Directory/Oracle Virtual Directory, Sun Directory Server, Active Directory, Tivoli Directory Server

Job description Maddisoft has the following immediate opportunity, let us know if you or someone you know would be interested. Send in your resume ASAP. Send in resume along with LinkedIn profile without which applications will not be considered. Role : Network Security Engineer Location : Hyderabad, India We are looking for a Network Engineer with general experience in LAN/WAN network engineering (including network design), installation, configuration, and maintenance of various network equipment (routers, switches and associated technologies). The role of Network Engineer is to interpret a customer request and then transform that request into a successful project. A successful project is one that meets the customers requirements, is delivered on time, and has a positive impact on the business of customer. The Network Engineer is responsible for all connectivity aspects of an Field Communication Services network technologies This includes customer service, solution design, implementation and technical support. This position is responsible for all network equipment used by customer that directly affects communication for field operations. The direct responsibilities include solution design, implementation and technical support. The bespoke nature of the account requires this role to be filled by very high performing individual who can independently work to achieve the customers requirements, perform well in a high-pressure environment, and interact with both junior and senior client staff in a professional manner. Qualifications Basic Qualifications : The primary technology areas covered by the Data Transport Engineer are: LAN, MAN and WAN devices. Cisco Routing and Switching CCNP level knowledge Palo Alto Firewalls QOS for WAN and LAN Voice over IP EIGRP and BGP Routing Protocols VSAT Technologies Responsibilities include: Communicate Customers Product Line IT Requirements with External Customer IT Create LAN design and Patching records for Customer Product Lines Engage with the FCS Network Engineering team on the WAN Architecture / Interconnection Assist FCS Network Engineering team with creating Firewall rules (based on Product Line IT requirements) Liaise with Customer IT and Customer Operations to successfully manage deployment of each Customer Product Line on the Customers Infrastructure Solution Design: Evaluating technology options and presenting those that best suit customer requirements. Produce the technical design in the format specified by standards. This requires excellent technical writing skills and proficiency with office automation tools. Provide detailed and accurate bill of materials and cost estimates. Estimate Resource Requirements with a high degree of accuracy. Ensure Compliance with all Standards for Data and Voice Networks. Communicate the design in both a technical and business style manner, this will normally be done in meeting and require the development of additional presentation material. Assist junior engineers with project costing estimates. Generally, the first to use new solutions provided by Network Technology engineering team. Project Management: Develop a High-level plan at project initialization that will guide the project through the requirements and pre-sales stage. Develop a Detailed project plan that will guide the project through the solution design, procurement, and delivery stages. Hold regular meeting with stakeholders to track progress and communicate issues and delegate tasks. Provide Project reporting as required by Customer’s standards. Update the Resource Plan for any project or task for which effort is forecasted. Implementation: Determining implementation time frames and risks. Coordinating and gaining consensus on change windows with change management and other IT teams and submission and tracking of Change Management tickets for implementation. Coordinating the installation of equipment and connections with Move/Add/Change team. Testing of network connectivity post implementations. Ensuring Compliance of all Changes with standards. Completing the Acceptance into Service (AIS) Process for all projects. General Support: Provide Tier 3 Technical Support during major incidents and troubleshooting assistance for complex long-term issues affecting network performance. Provide Technical consultation as requested by the customer. Assist with internal and external audit requests . Other: Assist in additional assigned roles as required. Preferred Qualifications : Certification(s) (Security+, GSEC, SSCP, CCIE-Security); Minimum Cisco certifications (CCNA, CCNP); Palo Alto – PCNSA/PCNSE

1 year contract (LPE) Work location: Patna (Work from Office) Work Experience: Minimum 10 years of experience in the field of IT/ITeS Experience of handling large IT /e-governance/GRC/ IT Network / AI /Cyber Security/ Surveillance/ Security Operation Centre Certification : CISA/CISM/CISSP/CEH/OSCP/ ISO 27001/ISO 27701/ISO 20000/ISO 22301 /CCNA /CCNP/ OEM certification like Oracle , Microsoft, Red hat/ equivalent

Key deliverables: Conduct client and vendor security assessments and audits Coordinate business continuity and penetration testing initiatives Maintain compliance with InfoSec standards and best practices Support incident response and audit readiness activities Role responsibilities: Review third-party security controls and practices Prepare responses for client InfoSec inquiries Work with GRC platforms to track compliance Ensure alignment with CISSP/CISA frameworks and audit standards

Job Overview: We are seeking a motivated and detail-oriented Junior Security Analyst to join our security team. As a Junior Security Analyst, you will assist in monitoring and defending our network and systems, helping to identify and resolve security vulnerabilities, and ensuring the safety of our organization's data and assets. Key Responsibilities: Monitor Security Systems: Assist in monitoring security alerts and events from various security tools and platforms (e.g., SIEM, firewalls, intrusion detection systems). Incident Response: Support the identification, investigation, and response to security incidents, including potential breaches, malware infections, and system vulnerabilities. Vulnerability Management: Help assess and track vulnerabilities and assist with patch management and remediation efforts. Security Audits: Participate in regular security audits and assessments to evaluate and ensure the security posture of the organization. Threat Intelligence: Stay updated on the latest cybersecurity threats and trends, providing insight into emerging risks and recommended countermeasures. Security Documentation: Maintain accurate documentation for security incidents, vulnerabilities, and remediation steps taken. Collaboration: Work closely with seniors, IT teams, and other departments to improve the overall security posture of the organization. Security Awareness: Assist in developing and promoting security best practices among employees and assist with training on security-related topics. Our Ideal Candidate: Qualifications: Education: Bachelor's degree in computer science, Information Technology, Cybersecurity, or a related field. Alternatively, relevant certifications or work experience in cybersecurity may be considered. Experience: 0-2 years of experience in IT security or a related field. Familiarity with security concepts such as firewalls, intrusion detection systems, malware, encryption, and risk assessments. Technical Skills: Good understanding of network protocols, operating systems, and security tools. Knowledge of security frameworks and standards (e.g., NIST, ISO 27001, CIS). Familiarity with SIEM tools, vulnerability scanners, and endpoint protection technologies is a plus. Certifications: Industry certifications such as CompTIA Security+, Certified Information Systems Security Professional (CISSP), or Certified Ethical Hacker (CEH), eJPT, or any relevant certifications are a plus. Problem-Solving Skills: Ability to analyze security incidents and recommend actionable steps for remediation. Communication Skills: Strong written and verbal communication skills, with the ability to document incidents and work with teams effectively. Attention to Detail: Ability to focus on details while managing multiple tasks in a fast-paced environment. Must have Skills : Familiarity with cloud security (AWS, Azure, Google Cloud). Basic scripting or programming skills (Python, PowerShell, etc.) for automation or analysis. Experience with endpoint protection, antivirus solutions, or web application security. Personal Attributes: Eagerness to learn and adapt to new technologies and security practices. Strong team player with the ability to work independently when needed. A proactive mindset, always thinking ahead to prevent security incidents before they occur. Ability to handle sensitive information with discretion and integrity.

The Senior Information Protection Analyst will play a pivotal role in enhancing our organization's information security posture by developing and executing robust information protection strategies. This position requires a deep understanding of information security principles, risk management, and industry best practices. What You'll Do: Lead the development, implementation, and enforcement of information protection policies, procedures, and guidelines using best in industry data protection tools & technologies. Monitor and manage security technologies, such as data loss prevention (DLP), data classification (unstructured & structured), encryption, etc. Collaborate with cross-functional teams to assess information protection requirements and ensure compliance with relevant laws, regulations, and industry standards. Analyze security incidents, breaches, and vulnerabilities, and provide guidance for effective incident response and resolution. Provide technical expertise and guidance to IT teams on security architecture around data protection. Participate in security audits, assessments, and compliance initiatives to ensure alignment with information protection standards. Mentor and guide junior members of the information protection team. Collaborate with the legal and compliance teams to address privacy concerns and ensure compliance with data protection regulations. Assist in the development of information security strategies and roadmaps. Prepare and present regular reports on information protection activities, incidents, and risk assessments to senior management. What You'll Bring : Bachelors degree in information security, Cybersecurity, or related field. 4-6 years of experience in information security, with a focus on information protection, DLP and data protection. Strong understanding of information security frameworks, regulations, and standards (e.g., ISO 27001, NIST, GDPR). Experience with security technologies such as data classification, DLP, encryption, SIEM, and access controls. Professional certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or equivalent. Excellent analytical and problem-solving skills, with the ability to assess risks and recommend effective solutions. Strong communication and interpersonal skills to collaborate with various teams and stakeholders. Proven track record of successfully implementing and managing information protection programs.

Educational Qualification: BE/BTech/MCA Required Skills Deep knowledge of web Application and mobile applications security testing Suggest mitigation for identified vulnerabilities SOC incidents and threat analysis A clear conceptual understanding of the SDLC Strong knowledge on automated scanning using HP Fortify, Burp suite or similar tools Strong knowledge on network penetration testing. Security knowledge capturing and consolidation Collaboration on product conceptualization for security by design Knowledge on web appsec, ethical hacking, DFRA, CSR Experience in understanding false positive from the Source code scans Led at least one CSR (Compressive security review) Knowledge static application security testing (SAST), dynamic application security testing (DAST), and open source security (OSS) Strong understanding of OWASP top 10. Experience in WAF logs analysis Rapid decision making to prevent delayed releases due to security issues To coordinate with various stakeholders for completion of Audit points observed by internal and external auditor. 8. Make sure all CERTS in, RBI and various security advisories are checked and recommended action taken on the respective platforms in the application. Outside the box thinking to anticipate possible threats Desirable Skills Working knowledge of web and mobile application security Extensive experience in Vulnerability Assessment and Penetration testing, Web Application security Knowledge on kali linux would be an added advantage Knowledge on conducting Security Audits Good knowledge on Threat modeling, cryptography, and common application vulnerabilities Certificate in Certified Application Security Engineer (CASE), Certified Ethical Hacker (Latest CEH)

Mandatory Skill Must Have : - AWS + Cloud Security Job Detail : - Experience on AWS Cloud Security Audits. Must have experience with CSPM Tool, Highlight Process Gaps on AWS Cloud, Must have worked on below AWS Services: Security Hub, Guard Duty, Inspector, IAM Access Analyzer, Macie, AWS Config, Control Tower, AWS Shield and other Security Services. The candidate also should have familiarity on Container Security. The candidate should have also worked on ensuring compliance on regulatory frameworks like CIS, NIST, IRDAI etc. Experience Range : - 5-8 Years"

1. Liaison with Govt. and local authorities. 2. Site Security Assessment 3. General Security Guards Training 4. Updating Emergency Contacts in Database 5. Emergency Response Plan 6. Implementation of In-house Rules and Security Policies 7. Maintenance of CMS Room 8. VIP Escorting 9. Hotel Surveys 10. Audits related to Admin, Security and local 11. General Admin tasks 12. Vendor Empanelment 13. Safety Inspection 14. Loss prevention 15. Surveillance coordination and regular patrolling (CCTV, Access Control, )

Role & responsibilities Implement cybersecurity best practices across networks, applications, and cloud environments. Lead and maintain ISO/IEC 27001 standards, ensuring compliance with NIST, CIS Controls, and industry regulations. Conducting risk assessments, gap analyses, and defining security controls, policies, and procedures. Plan and conduct internal ISO 27001 audits, identify non-conformities, and recommend corrective actions. Assist in external audits and manage risk mitigation efforts to enhance security posture. Updated knowledge on cybersecurity threats and frameworks (NIST, CIS, GDPR). Perform vulnerability assessments, conduct penetration tests, and establish log analysis and threat detection capability. Maintain technical documentation (policies, risk registers, and audit reports) and develop security training materials. Integrate security into the development lifecycle. Conduct code reviews, threat modeling, and secure software assessments. Work closely with Western clients, ensuring clear communication on security requirements. Provide security advisory and consultation to clients and stakeholders. Translate complex cybersecurity concepts into business-friendly language Conduct employee training sessions on information security policies, procedures, and best practices. Promote a culture of security awareness and ensure employees understand their roles in maintaining compliance. Foster a collaborative and security-conscious culture within the team. Recruit, train, and retain top cybersecurity talent. Drive initiatives for continuous improvement and innovation in security practices. Manage the internal and external client relationships Preferred candidate profile Threat detection, Incident response, and Risk management Knowledge of SIEM tools like Wazuh/ Splunk/ SentinalOne/ AlienVault OSSIM (Now known as AT&T Cyber Security) Implementation of ISO 27001 Knowledge of NIST, CIS, GDPR, SOC 2, PCI-DSS frameworks. AWS, Azure, GCP, IDS/IPS, vulnerability scanners, GRC tools Problem-solving, Analytical, and decision-making. Documentation capabilities Team management, client handling, and cross-functional collaboration. Perks and benefits