Security Tech Assessor - AM

• Security Tech Assessor - AM - BLR/Pune/GGN - J48776

Roles & responsibilities

The Security Technical Assessment Analyst will:

• Work collaboratively with internal stakeholders and external 3rd parties to o Perform security technical configuration reviews, o Perform security technical assessments,
• Support the delivery of security testing across the software development lifecycle on technology solutions & services, o Support the completion of Red Team exercises,
• Proactively manage the end to end penetration testing process for technology solutions,
• Review any technical security exception requests, providing recommendations and documenting findings and actions and
• Provide risk-based pragmatic technical security advice and recommendations;
• Maintain good relationships with internal stakeholders and ensure customer satisfaction, by delivering quality service and escalation of issues as necessary;
• Influence colleagues to drive technical remediation in a collaborative manner in line with KPMG risk appetite;
• Identify and drive security technical assessments service improvements, especially using automation.
• Provide advice to security technical assessments service owner on ways to improve control mechanisms, identify, evaluate, and mitigate risks,
• Attend and support internal and external audits from a security technical assessments service perspective;
• Support investigations and resolutions of security problems to find a root cause and find a balanced outcome;
• Provide analysis on trends and proactively highlight issues and areas of concern;
• Create any required documentation to support the security technical assessment conducted;
• Maintain and update service documentation, such as process guides;
• Assist with reporting to leadership and other service stakeholders on service performance (against KPIs) and risk exposure (against KRIs).
• Input to development of security technical assessments standards and security policies;
• Work towards and achieve or extend professional certifications as part of personal development.
• Mandatory technical & functional skills You must have:
• Very good and relevant experience in a similar security technical assessment analyst role;
• Understanding of tooling associated with security technical assessments such as AWS Config, Azure Policy, Static Application Security Testing and Dynamic Application Security Testing;
• Experience and knowledge in security technical assessments of applications and infrastructure within the Cloud, such as AWS and Azure;
• Experience working with external penetration testing vendors;
• Experience of successfully working in a fast paced, customer service environment, delivering high quality information security services;
• It would be advantageous if you can demonstrate some, or all of:
• Experience scoping and overseeing Red Team testing;
• Experience working with external third parties;
• Experience and knowledge of Google Cloud Platform;
• Experience and knowledge of container or serverless platforms;
• Powershell scripting
• Any security or vulnerability management product certification.

Required Candidate profile

• Candidate Experience Should Be

  : 7 To 10 Candidate Degree Should Be : BE-Comp/IT,BE-Other,BTech-Comp/IT,BTech-Other,MBA,MCA