Cyber Security Consultant
Company Description
Will be shared during Interview
Role Description
This is a full-time on-site role for a Cyber Security Consultant at Puducherry. The Cyber Security Consultant will be responsible for tasks such as ensuring application security, network security, information security, conducting vulnerability assessments, and implementing cybersecurity measures on various projects.
Qualifications
- Cybersecurity and Information Security skills
- Application Security and Network Security expertise
- Experience in conducting Vulnerability Assessments
- Knowledge of security tools and technologies
- Certifications such as CISSP, CISM, or CEH are a plus
- Bachelor’s degree in Computer Science, Cybersecurity, or related field
URGENT Requirement: Preferably within 7 days
Contact Us:
Whatsapp - +91-9840074009
Cyber Security – Resource Requirements
1. Profile Requirements 1:
Designation: Senior Associate (IT Operations and Information Security Governance Risk & Compliance)
Experience: 8 - 10 Years
Job Location: Puducherry
Duration: Full Time (Contract)
Job Vacancy: 01
Job description
Senior Associate: (IT Operations and Information Security Governance Risk & Compliance)
Cybersecurity is a critical role within the State responsible for overseeing and managing cybersecurity measurements from initiation through completion. This role requires a strong understanding of cybersecurity principles and practices, as well as excellent project management skills. The Senior Associate - Cybersecurity will collaborate with cross-functional Departments to ensure that cybersecurity was on boarded and ensure the Secured environment in all departments and in accordance with security best practices.
Key Responsibility of the Role:
Ø Accountable executive for providing overall direction and oversight of the strategy, development, implementation, and administration of information assurance and security policies, plans, and controls that will protect competitive governance information.
Ø Ensure effective functioning of the Information Security function – Preparing, managing policies & procedures, hardening of infrastructure processes.
Ø Develops and executes security risk, audit and incident management, disaster recovery and business continuity plans.
Ø Manage the Information Security Annual Operating Plan and budget and ensure adequate resources are allocated to support the function
Ø Drive adherence to Advisories, Circulars, Cert-In compliance and audits.
Ø Develop and manage the security incident response plan and ensure it is regularly tested and updated.
Ø Conduct regular risk assessments and vulnerability assessments to identify potential security risks, and develop and execute plans to mitigate these risks.
Ø Collaborates with Departments and Management and other technology teams to develop long term plans and objectives, incorporating security.
Ø Collaborate with other functional areas of the departments, including legal, IT and operations, to ensure that security requirements are integrated into processes
Ø Drives for results-focus and high-performance oriented, including developing metrics/KPIs, SLAs, and continuous improvements programs to deliver transparency and accountability.
Ø Serve as a subject matter expert on information security matters and provide guidance and recommendations to senior management and other stakeholders.
Ø IT Security Implementation, Support, Operations, and Governance.
o Evaluate the IT Infrastructure and collaborate with all Departments to do an in-depth assessment of the risks related to Data, Information Security, and Cyber Security.
o Implement best-in-class Software and Hardware implementations and establish best-in-class processes for the risks related to Data, Information Security, and Cyber Security for the Infrastructure.
o Implement efficient and proactive monitoring mechanism for IT Infrastructure Stability and effective Cybersecurity management.
o Prepare Security Risk Dashboard, and present to the higher management on a monthly basis, track the Risks identified and ensure resolution for the risks.
o Implement effective Monthly reporting for the IT support and IT Infra metrics and activities, and present the report to the Management.
o Responsible for complete IT Infra Life cycle Management, new Technology Acquisition and Technology Refresh as per latest standards
Major Activities expected to perform on the Responsibilities:
a. Collaborate with stakeholders to define project objectives, scope, and requirements.
b. Conduct risk assessments and ensure a clear understanding of cybersecurity goals and constraints.
c. Develop a comprehensive project plan with defined milestones and timelines.
d. Ensure that project deliverables meet security standards and compliance requirements.
e. Coordinate with internal and external cybersecurity experts to address technical challenges.
f. Identify potential risks and vulnerabilities in cybersecurity projects and develop mitigation strategies.
g. Regularly assess the project's security posture and make necessary adjustments to ensure data protection.
h. Implement quality control measures to ensure the effectiveness and reliability of cybersecurity solutions.
i. Stay updated on relevant cybersecurity laws, regulations, and industry standards.
Qualifications: Mandatory Requirements
Ø M.Tech or B.Tech / B.E./BCA in Computer Science or Information Technology.
Ø Certified Information Systems Security Professional (CISSP)
Ø Candidate with Security & Compliance certification (CISA, CISM, ISO 27001 LA, etc.) will have added advantage.
Ø Total 8 to 12 years of experience as a security professional & last 2-3 years as CISO.
Ø Expert in security technologies, processes, systems and approaches, global industry security standards, such as ISO 27001, ISO 22301, PCI DSS, SSAE16, etc.
Ø In-depth knowledge of best practices and trends of IT.
Ø Sound management skills, strong leadership and motivational skills
Ø Should be strong in building relationships within the organization and across teams.
Ø Strong knowledge of cybersecurity principles, best practices, and emerging threats.
Ø A strong commitment to maintaining data security and confidentiality.
2. Profile Requirement 2:
Designation: Information Security Associate (IT Operations and Information Security Governance Risk & Compliance)
Experience: 3 - 6 Years
Job Location: Puducherry
Duration: Full Time (Contract)
Job Vacancy: 03
Job description
Information Security Associate: (IT Operations and Information Security Governance Risk & Compliance)
Cybersecurity is a critical role within the State responsible for overseeing and managing cybersecurity measurements from initiation through completion. This role requires a strong understanding of cybersecurity principles and practices. The Information Security Associate - Cybersecurity will collaborate with cross-functional Departments and plays a key role in safeguarding the departments, systems, networks, and data. The position is responsible for aiding in the design and build of Information Security capabilities, participate in the management/operations of these capabilities, alongside supporting technologies.
Key Responsibility of the Role:
Ø Understanding of security events and situations.
Ø Identifying potential threats and performing enhancements to existing cyber security measures as per specifications or policy guidelines.
Ø Hands on experience working in 24*7 operations, handling security alerts, Incident triage and investigation.
Ø Good understanding of Cyber security, Phishing analysis etc.
Ø Preparing RCA document and daily/weekly/monthly reports Maintaining and improving Playbooks, use case fine tuning.
Ø Responsibilities include cyber threat analysis support and recommending appropriate remediation and mitigation.
Ø Play a hands-on role in the engineering, implementation, and operations of security measures that protect the computer systems, networks, and information
o Aid in disaster recovery planning and operations and data backups when needed
o Documentation (Administrative & Technical)
o Managing User Issues with Certificates/Key Management Services
o Metrics, Monitoring, and Reporting
o Infrastructure Management
o Provide day-to-day administration and support for infrastructure related to API, application security, firewalls, encryption, intrusion detection systems, secrets management, vulnerability scanning, security monitoring tools, penetration testing, authentication, web filtering, identity management, or access control systems, and associated logs/processes
o Works closely with Senior Associate (Information Security program) to convey technical impacts on timeline and risks
o Work independently in identifying opportunities to improve operational or other performance for Security, Information Technology
o Perform other duties and/or special projects as assigned
Qualifications: Mandatory Requirements
Ø Bachelor's degree in a related field (e.g., Computer Science, Information Technology) with minimum of 3 years in Information Security
Ø 3 – 6 Years proven Technical experience with a focus on cybersecurity.
Ø Strong knowledge of cybersecurity principles, best practices, and emerging threats.
Ø Experience with risk management, vulnerability assessment, and compliance.
Ø A strong commitment to maintaining data security and confidentiality.
Ø Certifications in audit, big data, cloud, cybersecurity, governance, information security, privacy, risk preferred.
Ø Proven ability to organize/manage multiple priorities coupled with the flexibility to quickly adapt to ever-changing business needs
Ø Strong analytical and problem-solving skills with the ability to convert information into practical deliverables. Uses rigorous logic and methods to solve difficult problems.
Ø DevOps, Engineering and/or Operations background
Ø Good understanding of security landscape as a whole
Ø Strong and efficient problem-solving and analytical skills, willingness to learn