11+ Radar Jobs in Bangalore (Bengaluru) | Radar Job openings in Bangalore (Bengaluru)

Information Security Specialist

Notice Period: 45 days / Immediate Joining

Banyan Data Services (BDS) is a US-based data-focused Company that specializes in comprehensive data solutions and services, headquartered in San Jose, California, USA. 

We are looking Information Security Specialist who has the expertise and deep knowledge of Information security regulations, compliance, and SIEM tools, and the ability to develop, describe and implement Security Baselines and Policies.

It's a once-in-a-lifetime opportunity to join our rocket ship startup run by a world-class executive team. We are looking for candidates that aspire to be a part of the cutting-edge solutions and services we offer that address next-gen data evolution challenges. 

Key Qualifications

· Design, deploy, and support Information Security Solutions provided by BDS

· Assist clients to carry out the IT Risk Management assessment on both on-prem and cloud platforms

· Provide subject matter expertise on IT security compliances during the security audits to meet various security governances.

· Research and strategic analysis of existing, and evolving all IT and data security technologies

· Establish baselines to define required security controls for all infrastructure components and application stack

· Follow latest vulnerabilities and threats intelligence updates across a wide range of technologies and make recommendations for improvements in the security baselines.

· Overseeing security event monitoring, understand the impact, and coordinate remediation efforts

· Create and optimize the SIEM rules to adjust the specification of alerts in responding to incident follow up

· Must be able to work a flexible schedule during off-hours

Key Skills & Qualification

· Minimum of 4 years relevant work experience in information/cyber security, audit, and compliance

· Certifications in any of technical security specialty (e.g., CISA, CISSP, CISM)

· Experience in managing SIEM products like Arcsight, Qradar, Sumo Logic, RSA NetWitness Suite, ELK, Splunk

· Exposure of the security audit tools on public cloud platforms

· Solid understanding of the underlying LINUX/UNIX and Windows OS security architecture

· Certified Ethical Hacker would be a plus

· Handling of Security audits is a must

· Proven interpersonal skills while contributing to team effort by accomplishing related results

· Passion for learning new technologies and the ability to do so quickly.

http://www.banyandata.com" target="_blank">www.banyandata.com 

• Driving the cloud Solutioning ( AWS, Azure , Hybrid Cloud) activities for large complex deals which involve multiple service lines and / or technology domains
• Drive the translation of complex business initiatives into innovative business- technology solutions and ensure consistency across traditional solution boundaries
• Work with Internal stakeholders, Customer stakeholders and Project Managers to understand inefficiencies in clients existing business processes and applications and recommend solutions
• Supports the Global Sales Lead in engaging with senior level customers in either first meetings, or early stages to help shape and design early propositions, assisting to build the pipeline
• Ensure that the solution translated from business objectives is fit for purpose and clearly demonstrates value for money. The solution executive should be able to be confidently explain this to CxO level customer
• Lead a bid team, combining on- shore and off- shore solution architects to design an affordable, innovative solution which meets a clients requirements and business needs. This solution should fit within the affordability target set together with the Global Sales Leads
• Define solution value proposition and transformational direction which build on the synergies and benefits across service offers
• Provide expertise on commercially structuring deals to differentiate from the competition
• Excellent understanding of the competitor landscape, providing insight into the sales plan on how to beat competition
• Work alongside Global Sales Leads, generating future pipeline
• Ensure that the proposed solution covers strategy, partners (such as AWS, Azure, Google, Hybrid Cloud), stakeholder management as well as the actual solution covering Business, Application and Infrastructure as well as commercial aspects (in terms of value for money and not commercial costing etc.)
• Consultative approach, strong business acumen and commercial awareness, with the ability to translate business issues into relevant technical solutions and competitive propositions
• Recent experience in working for a Tier 1/2 Technology Services Provider or major Cloud Services provider in a pre- sales solutioning role
• Proficient in the Pre- Sales Solutioning Process lead by 3rd Party Advisors
• Prior experience leading, costing and implementing large complex Infrastructure Technology Outsourcing (ITO) pursuits, preferably 50M TCV with a large technology transformation component i.e. workload migration to Public Cloud, data center consolidations, etc.
• Strong proficiency creating business willing solutions aligned with key market growth areas; Public/Hybrid Cloud, Cyber security
• Demonstrated ability to communicate (written verbal) effectively and to influence at CxO level

Cloud Skills

• Experience and/or Certification: AWS - Solution Architect, Microsoft - MCSA/MCSE would be advantageous
• AWS , AZURE , Google Cloud Hybrid Cloud , Cloud Infrastructure , Private Cloud

Experience:- Overall 10 to 12 years of experience of which atleast 5 to 7 years’ experience should be in Information Security. Mandatory is 5 to 7 years’ experience in Information security and with one full end to end implementation experience.

Base location: - Bengaluru - Must

Requirements: -

1. Mandatory - ISO 27001:2013 lead implementor certified
2. Mandatory - ISO 27001:2013 lead auditor certified (but if it is a good candidate, we can still consider)
3. Good to have – CISA, CISM, Risk management certification, Privacy certifications.
4. Mandatory - Atleast one end to end implementation experience of ISO 27001 standard. The candidate should have a good implementation knowledge of ISO 27001, ISO 27002 standards and is required to implement the ISO requirements and run the ISMS program for multiple countries.
5. This immediate requirement is for implementing the ISMS program for our Canadian office location. The candidate should be willing to work from Bengaluru in EST time zone during this implementation phase whenever required.
6. Good documentation skills.
7. Develop, implement, maintain, review and continually improve Information Security policies.
8. Good understanding and knowledge of applicable legal and regulatory requirements as relevant to information security.
9. Manage and maintain a risk register / risk database along with risk treatment plans.
10. Good understanding of physical and environmental security.
11. Conduct Internal Audits based ISO 27001 standards and Personal Data Protection policies. A good experience in independently conducting Internal and supplier audit with respect to information security.
12. Provide training to the employees on Privacy & Information Security Management System on regular intervals.
13. The greater part of the job involves interacting with people, interviewing them / auditing, Preparing audit reports, discussing / persuading / influencing.
14. Mandatory: Good verbal and written communication skills. Eye for details.
15. Good presentation skills.
16. Since this is a trusted role, candidates must be willing to undergo extensive background checks to verify their identity, character, qualifications, skills and experience.

1.Triage of security alerts that includes but not limited to malware, denial of service, unauthorized access, etc.

2. Conduct incident investigations on SIEM tools.

3. Perform threat hunting on networks to detect and isolate threats.

4. Knowledge of various security methodologies and processes, and technical security solutions (firewall, packet analysis, SIEM and intrusion detection systems)

5. Continuous optimization, tuning and monitoring of SIEM solution

6. Hands on experience around administrating and threat hunting on EDR, XDR, DLP and SIEM tools.

7. Ability to analyze endpoint, network, and application logs

8. Identify false positives, analyse reported spam, phishing, and suspicious emails and understanding of email security concepts: SPF, DMARC, DKIM

9. Immediate Joiners

Job Responsibilities

Primary:

• Responsible for security road map for EPDM application
• Train the CI-CD team on the required technologies security adoptation
• Lead the upskill program within the team
• Support Application architect with right inputs on security processes and tools
• Help setup DevSecOps for EPDM.
• Find Security vulnerability in development process and sealed secretes
• Support in defining the Three-tier architecture.

Secondary:

• Coordination with different IT stakeholders as and when needed
• Suggestion and Implementation of further tool chains towards DevOps and GitOps
• Responsible to train the peer colleagues

Skills:

Mandatory skill:

• Expert knowledge of container solutions. Must have >3 years of experience working with networking & debugging within Docker and Kubernetes.
• Hands-on experience with Kubernetes workload deployments using Kustomize & Helm.
• Good understanding of Bitnami, Hashicorp and other secrete management tools
• SAST/DAST integration in CI/CD pipeline - design, implementation Expert knowledge of Source Control Systems, build & integration tools (e.g., GIT, Jenkins & Maven).
• Hands-on experience with designing the CI/CD architecture & building pipelines (on On-prem, Cloud & Hybrid infrastructure services).
• Experience with Security log management tools (e.g. Splunk ELK/EFK stack, Azure monitor or similar).
• Experience with monitoring tools like Prometheus-Grafana & Dynatrace.
• Experience with Infrastructure as a Service / Cloud computing (preferably Azure).
• Expert in writing automation scripts in Yaml, Unix shell, linux shell.
• Pulumi would be added advantage.

Job description- Information Security(Financial)

Roles and Responsibilities

HTC Global Security Delivery Centre will provide a professional opportunity to work in a dynamic environment where you will have the ability to develop process and Cyber security based skills

Work profile of individual

• As part of the companyC Global cyber security consulting team, individual’s primary role would be to be a part of ISO 27k projects IT audits, ITGC audits, SSAE, SOC audits, IT Process Audit, Systems Audit, Gap assessment TPRM, GDPR, Infosec, GRC , ISMS, Cyber Security, SOX ITGC on customer engagements
• Will address all aspects of security like physical, logical, data, access etc and review Information Security policy and suggest / recommend necessary changes to the same on customer engagements
• Will be an active participant in internal / third party system security reviews and audits on customer engagements.
• Will perform internal audits on all aspects of IT and ensure compliance with the prescribed security norms on customer engagements and will be responsible for tracking the open audit findings and closure of the same
• Will be able to manage document tracking and updating - policies, processes, procedures, templates etc.
• Will assist in developing proposals by owning parts of the proposal document and by giving inputs in solution design based on areas of expertise.
• Will demonstrate ability to clearly and concisely communicate the privacy implications of technology and implementation.

Team work

• Individual would be responsible for contributing to a strong team environment and promoting a positive working relationship with their colleagues.
• Individual would predominately work with off-shore engagement teams and relevant HTC Territory teams on presale and cyber security delivery.
• Communication, written and verbal, with these teams would be expected.
• Team members would be required to apply learning from trainings and on the job experience to work requests and support continuous process improvement.
• Team members would be required to handle multiple tasks at the same time.
• Detailed focus when performing work and good project management skills when managing workload and maintaining timelines will be necessary.

Desired Candidate Profile

• Bachelors
• Certifications (ISO 27001/ ISO 31000/ or equivalent and other relevant qualification/certification
• Experience : 3-5 years
  
  

Knowledge Required:

• Strong knowledge of information security concepts, risk and controls concepts. Strong understanding of security principals: audit, policies, guidelines, and compliance.
• Understanding of infrastructure (data centre, network end user computing) security / cloud security / managed security services / security operations centre / compliance risk management and ITGC controls
• Sound knowledge of Internal financial Controls and Compliance. Must be able to recommend controls around people, process, and technology.
• Sound knowledge of General Leger / Balance Sheet / Journal Entry / Budgeting / Financial fraud
• Sound knowledge on business controls and process controls. Good experience with control assessment, check the effectiveness of the implemented controls and recommend mitigation / improvements.
• Experience with the Microsoft Office suite of products (i.e. Word, Excel, PowerPoint, Visio, etc.),
• Strong verbal and written communication skills Knowledge / experience in fields of ITGC audits, Internal Audit, External Audit / Statutory Audit projects
• Candidates should exhibit good client service skill collateral's with a strong focus on building relationships.

Additional Responsibilities:

• Ability to develop value-creating strategies and models that enable clients to innovate, drive growth and increase their business profitability
• Good knowledge on software configuration management systems and license Management systems
• Awareness of latest technologies and Industry trends
• Logical thinking and problem solving skills along with an ability to collaborate
• Understanding of the financial processes for various types of projects and the various pricing models available
• Ability to assess the current processes, identify improvement areas and suggest the technology solutions
• One or two industry domain knowledge
• Client Interfacing skills
• Project and Team management

Job description – Information Security (Network)

Roles and Responsibilities

Company will provide a professional opportunity to work in a dynamic environment where you will have the ability to develop process and Cyber security based skills

Work profile of individual

• As part of the company cyber security consulting team, individual’s primary role would be to work with ISO 27k projects IT audits, ITGC audits, SSAE, SOC audits, IT Process Audit, Systems Audit, Gap assessment TPRM, GDPR, Infosec, GRC , ISMS , Cyber Security, SOX ITGC on customer engagements
• Will address all aspects of security like physical, logical, data, access etc and review Information Security policy and suggest / recommend necessary changes to the same on customer engagements
• Will be an active participant in internal / third party system security reviews and audits on customer engagements
• Will perform internal audits on all aspects of IT and ensure compliance with the prescribed security norms on customer engagements and will be responsible for tracking the open audit findings and closure of the same
• Will be responsible for implementation of new projects under Information Security Domain
• Will be able to manage document tracking and updating - policies, processes, procedures, templates etc.
• Will assist in development of proposals by owning parts of the proposal document and by giving inputs in solution design based on areas of expertise.
• Will engage with clients and(or) application development teams for implementation of cyber security & data privacy by design and data protection controls.
• Will support the clients with ongoing design, implementation and maintenance of the data privacy framework for managing data protection risk including responding to legislation, devising and owning policies and training.
• Will demonstrate ability to clearly and concisely communicate the privacy implications of technology and implementation.

Team work

• Individual would be responsible for contributing to a strong team environment and promoting a positive working relationship with their colleagues.
• Individual would predominately work with off-shore engagement teams and relevant  teams on presale and cyber security delivery.
• Communication, written and verbal, with these teams would be expected.
• Team members would be required to apply learning from trainings and on the job experience to work requests and support continuous process improvement.
• Team members would be required to handle multiple tasks at the same time.
• Detailed focus when performing work and good project management skills when managing workload and maintaining timelines will be necessary.

Desired Candidate Profile

• Bachelors
• Certifications (ISO 27001/ ISO 31000/ CISA/ CISSP/ CSX or equivalent and other relevant qualification/certification
• Experience : 3-5 years
  
  

Knowledge Required:

• Strong knowledge of information security concepts, risk and controls concepts. Strong understanding of security principals: audit, policies, guidelines, and compliance.
• Good understanding of infrastructure (data centre, network end user computing) security / cloud security / managed security services / security operations centre / compliance risk management and ITGC controls
• Good understanding of technical security like network security, operating system, encryption, use of tools and technologies for various processes like logical access control, network security, security monitoring etc.
• Sound knowledge of Internal Controls and Compliance. Must be able to recommend controls around people, process, and technology.
• Sound knowledge on IT controls (especially IT risks). Good experience with control assessment, check the effectiveness of the implemented controls and recommend mitigation / improvements.
• Good knowledge on Privacy, Governance and reporting
• Experience with the Microsoft Office suite of products (i.e. Word, Excel, PowerPoint, Visio, etc.),
• Strong verbal and written communication skills Knowledge / experience in fields of ITGC audits, Internal Audit, External Audit / Statutory Audit projects
• Candidates should exhibit good client service skill collateral's with a strong focus on building relationships.

Additional Responsibilities:

• Ability to assist in value-creating strategies and models that enable clients to innovate, drive growth and increase their business profitability
• Good knowledge on software configuration management systems and license Management systems
• Awareness of latest technologies and Industry trends
• Logical thinking and problem solving skills along with an ability to collaborate
• Understanding of the financial processes for various types of projects and the various pricing models available
• Ability to assess the current processes, identify improvement areas and suggest the technology solutions
• One or two industry domain knowledge
• Client Interfacing skills
• Project and Team management

Are you a high-performing, collaborative, results-oriented and technologically savvy person who is keen on working in the digital industry, as a Consultant (for 3 months)

Our client is the Health-tech initiative of India's largest business house. Started in 2015, it empowers healthcare providers and consumers in India. All healthcare monitoring services are made available through an app that will help connect doctors, hospitals, pharmacies, laboratories, and consumers, enabling preventive and predictive healthcare.

It helps the care-givers to track the entire patient journey from the initial appointment and maintaining their records, generating lab test reports to providing virtual consultation and home-care solutions. It is expected that this futuristic guide will strengthen the doctor-patient relationship and enhance the in-clinic experience.

As a Technical Writer (Consultant), you will work with teams of engineers to create internal technical documentation. This will include technical architecture diagrams, flow diagrams, API documentation and microservice details.

You will also be responsible for writing knowledge base articles for a technical audience.

What you will do:

• Documenting product architecture, APIs, technical specifications
• Developing and writing high-quality technical documents meeting industry standards
• Communicating with product developers and understanding the product and its interactions
• Maintaining documentation as the product changes occur
• Gathering information from team meetings, product specifications, interviews with subject-matter experts, and direct interaction with systems
• Gathering and addressing feedback from multiple sources
• Working independently and rapidly to meet tight deadlines

What you need to have:

• BA in technical/ professional communication, English, computer science/ engineering, or other related field
• Authoring concepts, designs, technical specifications
• Following organizational and industry standards (such as Microsoft Manual of Style for Technical Publications or similar)
• Proven ability to quickly learn and understand complex topics
• Managing multiple versions of topics
• Using UNIX/ Linux command-line interfaces
• Additionally, should be able to: Write release notes and Write end user documentation, help guides

Responsibilities:

• Provide daily support with resolution of escalated tickets and act as liaison to business and technical leads to ensure issues are resolved in timely manner.
• Incident resolution and supporting production system deployments.
• Suggest fixes to complex issues by doing a thorough analysis of root cause and impact of the defect.

• Support and deliver within Continuous Integration/Continuous Delivery pipelines.

• Prioritise workload, providing timely and accurate resolutions.
• Perform production support activities which involve assignment of issues and issue analysis and resolution within the specified SLAs.
• Understand linux. SSH to linux box, look for web logs etc
• Understand web apps to be able to troubleshoot issues

Requirements:

• Good to have programming experience with Python.
• Java and JavaScript development experience would be an added advantage.
• You should not be afraid to do some development as well as Devops.
• Clear written and oral communication is a must.