38 Security Audits Jobs - Page 2

Description We are looking for a Product Security Governance Engineer with 6-8 years of experience to join our team in India. The ideal candidate will be responsible for developing and implementing security governance frameworks, conducting risk assessments, and ensuring compliance with security policies across our product lines. Responsibilities Develop and implement security governance frameworks for product security. Conduct risk assessments and security audits on products throughout the development lifecycle. Collaborate with product teams to ensure compliance with security policies and standards. Provide guidance and support to teams on security best practices and compliance requirements. Monitor and report on the effectiveness of security controls and governance initiatives. Assist in the development of training programs to educate employees on security protocols and practices. Skills and Qualifications 6-8 years of experience in product security governance or related field. Strong understanding of security frameworks such as NIST, ISO 27001, and OWASP. Experience with risk management methodologies and security assessments. Proficiency in security tools and technologies used for product security. Excellent communication and collaboration skills to work with cross-functional teams. Ability to analyze complex security issues and provide actionable recommendations.

As a Regional Security Support crew, your primary role, will be to assist the Regional Information Security Officers (RISO) in implementing and maintaining cybersecurity strategies for various legal entities Globally. You will be responsible for ensuring compliance with group security policies, managing risks, and supporting the continuous improvement of the regional security posture. This role offers a unique opportunity to be part of a newly established team, providing a dynamic environment where you can help shape security processes from the ground up. Key Responsibilities: Provide direct support to the RISO in managing and implementing security plans for legal entities across the region. Assist in the creation, follow-up, and management of remediation plans for identified security risks and non-compliance issues. Conduct security risk assessments and ensure that security measures are aligned with the Groups standards and adapted to each legal entitys needs. Support the RISO in reviewing and approving changes to systems, processes, and applications prior to deployment. Perform and prioritize security audits, vulnerability scans, and reviews (including access rights, firewall rules, cloud compliance, etc.). Coordinate and support legal entities during internal and third-party security audits, ensuring compliance with all security policies. Conduct security training and awareness programs customized for regional entities, ensuring all staff are informed and compliant. Maintain accurate inventories of assets, third-party vendors, and local processes for audit and security monitoring purposes. Collaborate with regional and Group IT teams to ensure a security by design approach is applied in all regional architectures, applications, and processes. Assist in evaluating third-party vendors to ensure they meet security standards. Support the development of Disaster Recovery (DR) and Business Continuity (BC) plans. Assist the RISO with the development and implementation of policies, procedures, and guidelines that cater to local regulatory requirements and Group standards. Core Responsibilities in Incident Response and Vulnerability Management: Assist the RISO in incident response activities by investigating security breaches and incidents in collaboration with the Security Operations Center (SOC). Analyze vulnerability reports and assist in remediation efforts, ensuring timely patching and risk mitigation. Support the review and approval of firewall rules, configurations, and exceptions to maintain network security. Collaborate with the RISO in monitoring for emerging threats and recommending security improvements based on current trends. Qualifications & Skills: Strong communication and interpersonal skills, with the ability to work effectively with multiple stakeholders across various legal entities. Ability to manage multiple priorities and work under pressure in a fast-paced environment. Strong knowledge of cybersecurity concepts, including vulnerability assessments, incident management, network architecture, firewalls, and cloud security. Expertise in general IT concepts, including Active Directory, Office 365, and modern networking solutions like micro-segmentation, SASE, SD-WAN, etc. Demonstrated ability to assist in the creation and execution of security policies, procedures, and standards. Familiarity with security frameworks such as ISO 2700x, ITIL, and the EU Privacy Directives. Experience in conducting security assessments and working with audit teams during internal or external security reviews. Education & Experience: A bachelors degree in computer science / Equivalent Stream, Information Security, or a related field is preferred. At least 3+ years of experience in cybersecurity, information security, or a related field. Certifications such as CISM, CISSP, or CEH are nice to have. Atypical profiles with experience from bug bounties, open-source projects, or bootcamps are also encouraged to apply if they can demonstrate strong skills and knowledge in the required areas. looking 9+ yrs of overall IT Infra Experience. Key Competencies: A quick learner who is autonomous, adaptable, and detail oriented. Ability to work in large, complex IT environments and be comfortable with ambiguity and fast-changing priorities. A passion for cybersecurity, with strong problem-solving skills and a proactive approach to risk management. Strong English language skills are required, additional language is a plus. How You Will Help: Regularly test legal entities for compliance with security policies and procedures. Assist in conducting vulnerability assessments and implementing remediation measures based on Group standards. Investigate security incidents in collaboration with the SOC and provide technical support during audits. Support the development of Security Key Performance Indicators (KPIs) to monitor and improve the regions security posture. This is an exceptional opportunity for cybersecurity professionals who thrive in dynamic environments and enjoy creating and improving security processes. If you are passionate about cybersecurity and want to play a crucial role in protecting a diverse range of legal entities across Europe, we encourage you to apply.

Experience Required: 10+ Years Job Summary: We are seeking a highly experienced and proactive Level 3 Network Engineer to join our IT Infrastructure team. The ideal candidate will have deep expertise in Cisco switching technologies and Palo Alto firewalls, with a strong background in designing, implementing, troubleshooting, and optimizing enterprise network environments. This role will act as a technical escalation point and will be responsible for maintaining network performance and security at the highest level. Key Responsibilities: Act as the highest level of technical escalation for complex network issues. Manage, configure, and troubleshoot Cisco switches (Catalyst, Nexus, etc.). Administer, configure, and secure Palo Alto firewall appliances (including Panorama). Design and implement enterprise-level LAN/WAN solutions and network security policies. Monitor network performance and ensure system availability and reliability. Handle network changes through established change management protocols. Perform regular security audits, vulnerability assessments, and compliance checks. Assist with network infrastructure upgrades, patch management, and documentation. Provide L3 support and guidance to junior engineers and operations teams. Participate in root cause analysis (RCA) and create post-incident reports. Collaborate with cross-functional teams including server, cloud, and security operations. Required Skills & Qualifications: Education: Bachelors degree in Computer Science, Engineering, or related field. Certifications: CCNP/CCIE (Routing & Switching). PCNSE (Palo Alto Networks Certified Network Security Engineer) preferred. Technical Skills: Strong hands-on experience with Cisco Catalyst and Nexus switches. Deep understanding of Layer 2 and Layer 3 technologies (VLAN, STP, OSPF, BGP, EIGRP, etc.). Expert-level knowledge of Palo Alto Firewalls (NGFW policies, NAT, VPNs, SSL decryption, Threat Prevention). Experience with HA (High Availability) configurations, VRRP/HSRP. Familiarity with tools like SolarWinds, Wireshark, or similar for monitoring and diagnostics. Soft Skills: Strong analytical and troubleshooting skills. Excellent written and verbal communication skills. Ability to lead technical discussions and mentor junior team members. Preferred Skills: Experience with SD-WAN, NAC (ISE or ClearPass), and Zero Trust implementations. Working knowledge of cloud networking (AWS/Azure/GCP). Experience with network automation . Work Environment: On-call rotation for critical incidents. Fast-paced and highly collaborative IT infrastructure environment. Interested candidates are requested to send their CV to career@bennett.edu.in with the Job Title mentioned in the subject line. Also, provide the following details in the email body: Current Organization: Current Designation: Current Salary: Expected Salary: Notice Period: Willingness to work from our Greater Noida campus (Work from Office only): Yes/No

Candidate must currently be in Bangalore Must be fluent in Spoken Kannada Conduct routine patrols Monitor surveillance Enforce process and policies Documentation Respond to Emergencies Key Responsibilities: Supervise security guards and third-party vendors. Monitor CCTV and security systems. Conduct regular security audits and risk assessments. Handle visitor management, access control, and emergency response drills. Investigate security breaches or suspicious activities. Requirements: Background in defense/security preferred. Knowledge of fire safety protocols, emergency handling, and local law enforcement coordination. Strong leadership, communication, and observation skills.

Leads IT security projects in terms of design, plan, and implementation of security infrastructure & solutions including d evelopment and management of overall enterprise security approach in terms of Infrastructure, Network, Data, Cloud and Endpoint Security. Analyse business requirements by partnering with key stakeholders across the organization to develop security solutions. Develop and review security-related documents such as SOPs, Process documents, Operational Reports & Metrics Dashboards, etc. Hands on experience with implementation of various security solutions, such as Cloud Security Solutions, Data Security Solutions, Network Security Solutions & Endpoint Security Solutions. Validate use cases and events configured on SIEM in coordination with SOC Manager. Develop & implement strategies for Infra and Application hardening. Prepare plan and strategies to ensure security of the organization including both high and low risk events. Identify & implement security best practices through fine tuning of appliances, solutions and applying audit recommendations. Well-versed and experienced in threat landscape, risk profiling and continuous improvement in security processes. Work with IT service providers and partners to ensure industry standard platform, network, and endpoint security posture is maintained. Lead vulnerability management and penetration testing activities for Infrastructure, improvise them and ensure closure as per the established practices alongwith analysing, reporting, and tracking of all the identified vulnerabilities. Work in collaboration with internal teams and other business units to identify and highlight security issues and ensure timely closure. Should be able to work under pressure and ensure that timelines are met, and projects and other initiatives are delivered in agreed timelines. Leads on the identification of data security and information protection risks across the organisation and works with stakeholders to develop and implement mitigation plans, escalating issues as appropriate. Help to achieve the highest standards of information security across the organisation. Implements measures to protect digital files and information systems against unauthorized access, modification, or destruction. Develops strategies to respond to and recover from a security breach. Coordinate's security activities with relevant vendors. Working alongside the cross-functional teams & stakeholders in conjunction with Cloud Development, Architecture and DevOps teams to provide visibility of cloud security posture including security of Containers & Serverless environments. Day to day management, troubleshooting and housekeeping of security toolsets. Delivering and maintaining security metrics and improvements. Should have experience in presenting the overall Information security status to CISO with all security metrices for defined KPIs. Planning and implementation of automated remediation activities. Ensuring work is completed in such a way to comply with established compliance and other internal standards.

Description We are seeking a skilled SAP Security Consultant with 5-7 years of experience to join our dynamic team. The ideal candidate will be responsible for ensuring the security and integrity of our SAP systems by designing and implementing security measures, conducting audits, and collaborating with cross-functional teams to meet security requirements. The consultant will play a key role in safeguarding our data and ensuring compliance with industry standards. Responsibilities Design and implement SAP security roles and authorizations to ensure compliance with security policies. Conduct security audits and risk assessments to identify vulnerabilities and implement corrective actions. Collaborate with cross-functional teams to define security requirements for SAP applications and systems. Monitor user access and perform periodic reviews to ensure adherence to security protocols. Provide support for SAP security incidents, including investigation and resolution of security breaches. Stay updated with the latest SAP security best practices and regulatory requirements. Skills and Qualifications Bachelor's degree in Computer Science, Information Technology, or a related field. 5-7 years of experience in SAP security and authorization management. Strong knowledge of SAP modules (e.g., SAP ERP, SAP S/4HANA) and their security requirements. Proficiency in SAP GRC (Governance, Risk, and Compliance) solutions. Experience in designing and implementing role-based access control (RBAC) in SAP. Familiarity with SAP security tools such as SU01, PFCG, and ST01. Knowledge of industry standards and regulations related to information security (e.g., ISO 27001, GDPR). Excellent problem-solving skills and attention to detail. Strong communication and interpersonal skills to work effectively in a team environment.

Responsibilities: Ensure that written processes and procedures are available for every operational activity, with periodic revisions as needed. Ensure the Security Team provides guidance and assurance to staff, building a reputation for operational excellence. Manage and enhance the effectiveness and efficiency of support services (visitor management, material management, escorting, access control, alarm response, emergency response, surveillance, etc.), ensuring no undue complaints from customers. Maintain a professional outlook for the entire security team through close monitoring and taking corrective actions. Ensure compliance with the Site Security Activity Planner (SSAP) within the given timeline. Conduct regular briefings, provide coaching, and ensure timely refreshers for all security team members. Ensure no compromise in post manning, prepare the duty roster, and update all with changes as required. Regularly update time & attendance and leave records in the workday application. Ensure minimal overtime without exposing the business to risk. Distribute routine operations reports to all concerned parties and assist in MIS. Keep line managers informed of internal and external issues or events that may potentially impact GIA's operations by maintaining close vigilance. Record all abnormal instances in the LIR format and investigate, recommend corrective actions. Ensure an effective material management process with no undue non-compliances. Ensure an effective visitor management process with no undue non-compliances. Maintain all records according to standards, fulfilling statutory and regulatory requirements. Provide prompt, professional, and effective assistance to all internal and external customers. Assist in performance appraisals by keeping records of all positive and negative instances of each team member. Ensure all team members complete mandatory training on time. Hold all team members accountable for their non-compliances.

The role supports full end to end software development cycle, from initial client engagement, through assessments and road-mapping, to longer term engagement in an advisory capacity. As an Application Security Consultants, the person should leverage the technical expertise of the security competencies, varied product and delivery capabilities Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional expertise Candidate with 8 + years of experience in IT domain with 3+ years on Delina (Thycotic) PAM implementation with Thycotic Certification (Optional). Experience in development and end to end implementation, design and architecture of privileged access solution using Delina Secret Serveries Experience in Installing and upgrading secret server, onboarding secrets, remote password changing, configuring roles & Permissions, configuring folder structure, secret templates, secret policy, launchers, session recording, account discovery, sites, event subscriptions, event pipeline policy and other operational activities for Delina Secret Server Preferred technical and professional experience Knowledge of Web Services (REST/SOAP), Directories (LDAP, AD), etc and PowerShell scripts in PAM solution REST API Automations using PowerShell Scripting (Bulk Upload Utility options, Account Onboarding PowerShell Script, User Deletion using Script PowerShell Script) Good understanding of LDAP concepts and working experience with at least few of the following directories: Oracle Internet Directory/Oracle Virtual Directory, Sun Directory Server, Active Directory, Tivoli Directory Server

The role supports full end to end software development cycle, from initial client engagement, through assessments and road-mapping, to longer term engagement in an advisory capacity. As an Application Security Consultants, the person should leverage the technical expertise of the security competencies, varied product and delivery capabilities Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional expertise Candidate with 8 + years of experience in IT domain with 3+ years on Delina (Thycotic) PAM implementation with Thycotic Certification (Optional). Experience in development and end to end implementation, design and architecture of privileged access solution using Delina Secret Serveries Experience in Installing and upgrading secret server, onboarding secrets, remote password changing, configuring roles & Permissions, configuring folder structure, secret templates, secret policy, launchers, session recording, account discovery, sites, event subscriptions, event pipeline policy and other operational activities for Delina Secret Server Preferred technical and professional experience Knowledge of Web Services (REST/SOAP), Directories (LDAP, AD), etc and PowerShell scripts in PAM solution REST API Automations using PowerShell Scripting (Bulk Upload Utility options, Account Onboarding PowerShell Script, User Deletion using Script PowerShell Script) Good understanding of LDAP concepts and working experience with at least few of the following directories: Oracle Internet Directory/Oracle Virtual Directory, Sun Directory Server, Active Directory, Tivoli Directory Server

Job description Maddisoft has the following immediate opportunity, let us know if you or someone you know would be interested. Send in your resume ASAP. Send in resume along with LinkedIn profile without which applications will not be considered. Role : Network Security Engineer Location : Hyderabad, India We are looking for a Network Engineer with general experience in LAN/WAN network engineering (including network design), installation, configuration, and maintenance of various network equipment (routers, switches and associated technologies). The role of Network Engineer is to interpret a customer request and then transform that request into a successful project. A successful project is one that meets the customers requirements, is delivered on time, and has a positive impact on the business of customer. The Network Engineer is responsible for all connectivity aspects of an Field Communication Services network technologies This includes customer service, solution design, implementation and technical support. This position is responsible for all network equipment used by customer that directly affects communication for field operations. The direct responsibilities include solution design, implementation and technical support. The bespoke nature of the account requires this role to be filled by very high performing individual who can independently work to achieve the customers requirements, perform well in a high-pressure environment, and interact with both junior and senior client staff in a professional manner. Qualifications Basic Qualifications : The primary technology areas covered by the Data Transport Engineer are: LAN, MAN and WAN devices. Cisco Routing and Switching CCNP level knowledge Palo Alto Firewalls QOS for WAN and LAN Voice over IP EIGRP and BGP Routing Protocols VSAT Technologies Responsibilities include: Communicate Customers Product Line IT Requirements with External Customer IT Create LAN design and Patching records for Customer Product Lines Engage with the FCS Network Engineering team on the WAN Architecture / Interconnection Assist FCS Network Engineering team with creating Firewall rules (based on Product Line IT requirements) Liaise with Customer IT and Customer Operations to successfully manage deployment of each Customer Product Line on the Customers Infrastructure Solution Design: Evaluating technology options and presenting those that best suit customer requirements. Produce the technical design in the format specified by standards. This requires excellent technical writing skills and proficiency with office automation tools. Provide detailed and accurate bill of materials and cost estimates. Estimate Resource Requirements with a high degree of accuracy. Ensure Compliance with all Standards for Data and Voice Networks. Communicate the design in both a technical and business style manner, this will normally be done in meeting and require the development of additional presentation material. Assist junior engineers with project costing estimates. Generally, the first to use new solutions provided by Network Technology engineering team. Project Management: Develop a High-level plan at project initialization that will guide the project through the requirements and pre-sales stage. Develop a Detailed project plan that will guide the project through the solution design, procurement, and delivery stages. Hold regular meeting with stakeholders to track progress and communicate issues and delegate tasks. Provide Project reporting as required by Customer’s standards. Update the Resource Plan for any project or task for which effort is forecasted. Implementation: Determining implementation time frames and risks. Coordinating and gaining consensus on change windows with change management and other IT teams and submission and tracking of Change Management tickets for implementation. Coordinating the installation of equipment and connections with Move/Add/Change team. Testing of network connectivity post implementations. Ensuring Compliance of all Changes with standards. Completing the Acceptance into Service (AIS) Process for all projects. General Support: Provide Tier 3 Technical Support during major incidents and troubleshooting assistance for complex long-term issues affecting network performance. Provide Technical consultation as requested by the customer. Assist with internal and external audit requests . Other: Assist in additional assigned roles as required. Preferred Qualifications : Certification(s) (Security+, GSEC, SSCP, CCIE-Security); Minimum Cisco certifications (CCNA, CCNP); Palo Alto – PCNSA/PCNSE

1 year contract (LPE) Work location: Patna (Work from Office) Work Experience: Minimum 10 years of experience in the field of IT/ITeS Experience of handling large IT /e-governance/GRC/ IT Network / AI /Cyber Security/ Surveillance/ Security Operation Centre Certification : CISA/CISM/CISSP/CEH/OSCP/ ISO 27001/ISO 27701/ISO 20000/ISO 22301 /CCNA /CCNP/ OEM certification like Oracle , Microsoft, Red hat/ equivalent

Key deliverables: Conduct client and vendor security assessments and audits Coordinate business continuity and penetration testing initiatives Maintain compliance with InfoSec standards and best practices Support incident response and audit readiness activities Role responsibilities: Review third-party security controls and practices Prepare responses for client InfoSec inquiries Work with GRC platforms to track compliance Ensure alignment with CISSP/CISA frameworks and audit standards

Job Overview: We are seeking a motivated and detail-oriented Junior Security Analyst to join our security team. As a Junior Security Analyst, you will assist in monitoring and defending our network and systems, helping to identify and resolve security vulnerabilities, and ensuring the safety of our organization's data and assets. Key Responsibilities: Monitor Security Systems: Assist in monitoring security alerts and events from various security tools and platforms (e.g., SIEM, firewalls, intrusion detection systems). Incident Response: Support the identification, investigation, and response to security incidents, including potential breaches, malware infections, and system vulnerabilities. Vulnerability Management: Help assess and track vulnerabilities and assist with patch management and remediation efforts. Security Audits: Participate in regular security audits and assessments to evaluate and ensure the security posture of the organization. Threat Intelligence: Stay updated on the latest cybersecurity threats and trends, providing insight into emerging risks and recommended countermeasures. Security Documentation: Maintain accurate documentation for security incidents, vulnerabilities, and remediation steps taken. Collaboration: Work closely with seniors, IT teams, and other departments to improve the overall security posture of the organization. Security Awareness: Assist in developing and promoting security best practices among employees and assist with training on security-related topics. Our Ideal Candidate: Qualifications: Education: Bachelor's degree in computer science, Information Technology, Cybersecurity, or a related field. Alternatively, relevant certifications or work experience in cybersecurity may be considered. Experience: 0-2 years of experience in IT security or a related field. Familiarity with security concepts such as firewalls, intrusion detection systems, malware, encryption, and risk assessments. Technical Skills: Good understanding of network protocols, operating systems, and security tools. Knowledge of security frameworks and standards (e.g., NIST, ISO 27001, CIS). Familiarity with SIEM tools, vulnerability scanners, and endpoint protection technologies is a plus. Certifications: Industry certifications such as CompTIA Security+, Certified Information Systems Security Professional (CISSP), or Certified Ethical Hacker (CEH), eJPT, or any relevant certifications are a plus. Problem-Solving Skills: Ability to analyze security incidents and recommend actionable steps for remediation. Communication Skills: Strong written and verbal communication skills, with the ability to document incidents and work with teams effectively. Attention to Detail: Ability to focus on details while managing multiple tasks in a fast-paced environment. Must have Skills : Familiarity with cloud security (AWS, Azure, Google Cloud). Basic scripting or programming skills (Python, PowerShell, etc.) for automation or analysis. Experience with endpoint protection, antivirus solutions, or web application security. Personal Attributes: Eagerness to learn and adapt to new technologies and security practices. Strong team player with the ability to work independently when needed. A proactive mindset, always thinking ahead to prevent security incidents before they occur. Ability to handle sensitive information with discretion and integrity.