DevSecops- Information Security Architect

at EZEU (OPC) India Pvt Ltd

DP
Posted by HR Ezeu
icon
Pune, Bengaluru (Bangalore)
icon
10 - 15 yrs
icon
₹20L - ₹45L / yr
icon
Full time
Skills
Information security
Security operations
Penetration testing
Security analysis
Cyber Security
devsecops
Security Architectural solutions, designing, Security Analysis, Infrastructure architecture, Application architecture, DevSecOps and cloud understanding, Threat Modelling, Penetration testing, Governance Risk & Compliance

About EZEU (OPC) India Pvt Ltd

Founded
2020
Type
Services
Size
0-20 employees
Stage
Raised funding
View full company details
Why apply to jobs via Cutshort
Personalized job matches
Stop wasting time. Get matched with jobs that meet your skills, aspirations and preferences.
Verified hiring teams
See actual hiring teams, find common social connections or connect with them directly. No 3rd party agencies here.
Move faster with AI
We use AI to get you faster responses, recommendations and unmatched user experience.
2101133
Matches delivered
3712187
Network size
15000
Companies hiring

Similar jobs

Security Intern

at Syfe

Founded 2017  •  Product  •  100-500 employees  •  Raised funding
Security Information and Event Management (SIEM)
Information security
Cyber Security
icon
Gurugram, Delhi, Noida, Ghaziabad, Faridabad
icon
0 - 1 yrs
icon
Best in industry

About Syfe

 

Syfe is one of the fastest-growing digital wealth platforms in Singapore. We build personalized, diversified portfolios using proprietary algorithms and state-of-the-art technology. Our mission is to enable sophisticated investing at a low cost. 

 

In July 2021, we closed a S$40 million Series B funding round led by https://valar.com/" target="_blank">Valar Ventures , just 9 months after raising Series A. Our existing investors followed on their original investment in a short time frame, which speaks volumes about our rapid growth and our future ahead. Moving forward, we will accelerate our expansion across geographies, launch new products and grow our team. 

 

The Syfe team consists of industry experts from finance, e-commerce, and technology. We come from startups as well as large corporations. Excellence in execution is in our DNA. We aim to become Asia’s largest Digital Wealth Manager by leveraging technology to provide a superior investing experience for our customers. 

 

Syfe was named Best Digital Advisory Solution at DigFin Group Innovation 2021. Find out more about us at http://www.syfe.com/" target="_blank">www.syfe.com

 

Who are we:

 While we are a diverse set of people, we value the following core traits: 

  • Fast learning: We often require learning new tools and technologies. We believe in adopting them if they are particularly well suited for our problems, instead of limiting ourselves to what we already know. However, we are always short of time and therefore have to learn fast.
  • Versatility: While each one of us has a core skill, we possess at least one secondary skill as well. Apart from allowing the team to be fluid, it also helps us understand how all pieces (frontend, database, network, servers, etc.) fit together.
  • Madness about quality: Put together, individual lines of code should be robust, scalable, high-performance, fault-tolerant, and most importantly, beautiful software. We also stay up-to-date with the latest in the world of software to make ourselves better.
  • Passion: To try out new ideas and iterate on existing product features, and love experimenting with new technology if it's right for the job. Because not only do we ride the cutting edge, we make it happen.
  • Collaboration: We believe that engineering is a continuous process of learning and improvement and that the best way to learn is by getting help from your fellow engineers. Coding is more fun when you do it together and appreciate the feedback.

We are looking for a Security Intern to work on the security assessment of Syfe's Products.

 Responsibilities:

  • Perform security assessment under the supervision of security engineers
  • Perform penetration test on Web and Mobile application
  • Perform a network penetration test

Requirements:

  • Proven security assessment skills.
  • Understanding of OWASP Top 10, NIST, CIS, and MITRE attacks.
  • Understanding of security assessment tools such as Burpsuite, Nmap, Nessus, Qualys Guard, Metasploit, Wireshark, etc.
  • Excellent written and verbal communication skills.
  • Open to working in security assessment and other security domains within the information security group.

Good to have skills (Not mandatory):

  •  Security certifications such as CEH, OSCP, OSWE are a plus.
  •  Experience with any of the scripting/programming languages (Python, Ruby, Bash, PHP, etc.)
  •  Basic understanding of cloud security and AWS security stacks.
  •  Basic understanding of DevSecOps or Secure SDLC process.

The Syfe Advantages:

  • Annual learning allowance for work-related online courses and books
  • Allowance for home office setup
  • Latest M1 Macbook Pro + as required hardware and software
  • Best of all, our specialty is helping people manage their money. We will help you learn how to manage your own money like a pro
Job posted by
Rohit Kumar

Information Security- Network

at IT services provider based out of the US

Agency job
via Jobdost
Information security
Network Security
IT security
IT security audit
ITGC
Cyber Security
GRC
Risk Management
IT risk
Internal audit
SSAE
SOC
ISMS
IT controls
external audit
statutory audit
cloud security
icon
Bengaluru (Bangalore)
icon
5 - 5 yrs
icon
₹10L - ₹12L / yr

Job description – Information Security (Network)

Roles and Responsibilities

Company will provide a professional opportunity to work in a dynamic environment where you will have the ability to develop process and Cyber security based skills

 

Work profile of individual

  • As part of the company cyber security consulting team, individual’s primary role would be to work with ISO 27k projects IT audits, ITGC audits, SSAE, SOC audits, IT Process Audit, Systems Audit, Gap assessment TPRM, GDPR, Infosec, GRC , ISMS , Cyber Security, SOX ITGC on customer engagements
  • Will address all aspects of security like physical, logical, data, access etc and review Information Security policy and suggest / recommend necessary changes to the same on customer engagements
  • Will be an active participant in internal / third party system security reviews and audits on customer engagements
  • Will perform internal audits on all aspects of IT and ensure compliance with the prescribed security norms on customer engagements and will be responsible for tracking the open audit findings and closure of the same
  • Will be responsible for implementation of new projects under Information Security Domain
  • Will be able to manage document tracking and updating - policies, processes, procedures, templates etc.
  • Will assist in development of proposals by owning parts of the proposal document and by giving inputs in solution design based on areas of expertise.
  • Will engage with clients and(or) application development teams for implementation of cyber security & data privacy by design and data protection controls.
  • Will support the clients with ongoing design, implementation and maintenance of the data privacy framework for managing data protection risk including responding to legislation, devising and owning policies and training.
  • Will demonstrate ability to clearly and concisely communicate the privacy implications of technology and implementation.

 

Team work

  • Individual would be responsible for contributing to a strong team environment and promoting a positive working relationship with their colleagues.
  • Individual would predominately work with off-shore engagement teams and relevant  teams on presale and cyber security delivery.
  • Communication, written and verbal, with these teams would be expected.
  • Team members would be required to apply learning from trainings and on the job experience to work requests and support continuous process improvement.
  • Team members would be required to handle multiple tasks at the same time.
  • Detailed focus when performing work and good project management skills when managing workload and maintaining timelines will be necessary.

 

Desired Candidate Profile

  • Bachelors
  • Certifications (ISO 27001/ ISO 31000/ CISA/ CISSP/ CSX or equivalent and other relevant qualification/certification
  • Experience : 3-5 years

Knowledge Required:

  • Strong knowledge of information security concepts, risk and controls concepts. Strong understanding of security principals: audit, policies, guidelines, and compliance.
  • Good understanding of infrastructure (data centre, network end user computing) security / cloud security / managed security services / security operations centre / compliance risk management and ITGC controls
  • Good understanding of technical security like network security, operating system, encryption, use of tools and technologies for various processes like logical access control, network security, security monitoring etc.
  • Sound knowledge of Internal Controls and Compliance. Must be able to recommend controls around people, process, and technology.
  • Sound knowledge on IT controls (especially IT risks). Good experience with control assessment, check the effectiveness of the implemented controls and recommend mitigation / improvements.
  • Good knowledge on Privacy, Governance and reporting
  • Experience with the Microsoft Office suite of products (i.e. Word, Excel, PowerPoint, Visio, etc.),
  • Strong verbal and written communication skills Knowledge / experience in fields of ITGC audits, Internal Audit, External Audit / Statutory Audit projects
  • Candidates should exhibit good client service skill collateral's with a strong focus on building relationships.

 

Additional Responsibilities:

 

  • Ability to assist in value-creating strategies and models that enable clients to innovate, drive growth and increase their business profitability
  • Good knowledge on software configuration management systems and license Management systems
  • Awareness of latest technologies and Industry trends
  • Logical thinking and problem solving skills along with an ability to collaborate
  • Understanding of the financial processes for various types of projects and the various pricing models available
  • Ability to assess the current processes, identify improvement areas and suggest the technology solutions
  • One or two industry domain knowledge
  • Client Interfacing skills
  • Project and Team management
Job posted by
Mamatha A

Cyber Security Specialist

at Response Informatics

Founded 2018  •  Services  •  employees  •  Bootstrapped
Cyber Security
icon
Remote only
icon
2 - 15 yrs
icon
₹2L - ₹20L / yr
Hi,

We are looking for Cyber Security Specialists who are strong in any Cloud providers like GCP, AWS & Azure.
Strong awareness of security considerations and security tools used to integrate with the build pipelines etc.,
Networking (VPC / VPCSC / VPN) fundamentals
Partner with InfoSec and Security teams to deliver on key information security and IT risk related initiatives.
A wide knowledge of technology and platforms with an understanding of good development practices, SecDevOps and Cloud.
Design and configure perimeter security
Define, configure, and automate firewall configurations and procedures
Verify and validate implementation of firewall configurations and security scripts

This is for a UK client and we need your availability from 2 PM to 8 PM IST weekdays,

Job posted by
NagendraChamarty

Sr. Penetration Tester

at Beauto Systems Private Limited

Founded 2017  •  Products & Services  •  20-100 employees  •  Profitable
Penetration testing
Vulnerability assessment
Vulnerability scanning
Cyber Security
icon
Pune
icon
4 - 6 yrs
icon
₹1L - ₹10L / yr

Key Responsibility Areas:

Operate a hands-on role involving penetration testing and vulnerability assessment activities of complex Web applications, operating systems, wired and wireless networks, and mobile applications/devices Delivering targeted and intelligence led security penetration testing through a robust testing methodology and process Craft and develop scripts, frameworks, tools, and the methods required for facilitating and executing sophisticated charges, emulating malicious actor behavior sought at avoiding detection Conduct security assessments on a wide variety of technologies and implementations Develop and maintain security testing plans Maintain and evolve a mature set of security penetration testing and internal Red Team processes covering all areas of technology Automate penetration and other security testing on networks, systems and applications Develop meaningful metrics to reflect the true posture of the environment allowing the organization to make educated decisions based on risk Produce actionable, threat-based, reports on security testing results Act as a source of direction, training, and guidance for less experienced staff Consult with application developers, systems administrators, and management to demonstrate security testing results, explain the threat presented by the results, and consult on remediation Communicate security issues to a wide variety of internal and external “customers” to include technical teams, executives, risk groups, vendors and regulators Foster and maintain relationships with key stakeholders and business partners

Required Skills:

2 to 6 years of experience in information security with web application and network penetration testing experience Fluent in common cyber security domains such as cloud security, access control, encryption, identify management, security operations, application security, penetration tests, endpoint security, vulnerability management, threat intelligence Strong understanding of OWASP top 10.

Experience or knowledge of IT security risk assessments and gap analysis In-depth knowledge of application development processes and at least one programing or scripting language (e.g., Java, Scala, C#, Ruby, Perl, Python, PowerShell) Hands on experience with testing frameworks such as the PTES and OWASP Experience of functional testing, UI/UX testing and manual testing, Load, Performance testing across multiple browsers and devices Hands-on experience in designing and writing test automation scripts using test automation frameworks and knowledge on API Testing Applicable knowledge of Windows client/server, Unix/Linux systems, Mac OS X, VMware/Xen, and cloud technologies such as AWS, Azure, or Google Cloud

Qualification: Masters/Bachelor’s Degree

 

 

Job posted by
Beauto Systems

Information Security Specialist

at Banyan Data Services

Founded 2018  •  Product  •  20-100 employees  •  Bootstrapped
Information security
Splunk
Cyber Security
IT risk management
IT security audit
IT security
Compliance
Data security
Security Information and Event Management (SIEM)
ArcSight
Radar
RSA
Linux/Unix
Internal audit
icon
Bengaluru (Bangalore)
icon
4 - 10 yrs
icon
₹8L - ₹20L / yr

Information Security Specialist

Notice Period: 45 days / Immediate Joining

 

Banyan Data Services (BDS) is a US-based data-focused Company that specializes in comprehensive data solutions and services, headquartered in San Jose, California, USA. 

 

We are looking Information Security Specialist who has the expertise and deep knowledge of Information security regulations, compliance, and SIEM tools, and the ability to develop, describe and implement Security Baselines and Policies.

 

It's a once-in-a-lifetime opportunity to join our rocket ship startup run by a world-class executive team. We are looking for candidates that aspire to be a part of the cutting-edge solutions and services we offer that address next-gen data evolution challenges. 

 

Key Qualifications

 

· Design, deploy, and support Information Security Solutions provided by BDS

 

· Assist clients to carry out the IT Risk Management assessment on both on-prem and cloud platforms

 

· Provide subject matter expertise on IT security compliances during the security audits to meet various security governances.

 

· Research and strategic analysis of existing, and evolving all IT and data security technologies

 

· Establish baselines to define required security controls for all infrastructure components and application stack

 

· Follow latest vulnerabilities and threats intelligence updates across a wide range of technologies and make recommendations for improvements in the security baselines.

 

· Overseeing security event monitoring, understand the impact, and coordinate remediation efforts

 

· Create and optimize the SIEM rules to adjust the specification of alerts in responding to incident follow up

 

· Must be able to work a flexible schedule during off-hours

 

Key Skills & Qualification

 

· Minimum of 4 years relevant work experience in information/cyber security, audit, and compliance

 

· Certifications in any of technical security specialty (e.g., CISA, CISSP, CISM)

 

· Experience in managing SIEM products like Arcsight, Qradar, Sumo Logic, RSA NetWitness Suite, ELK, Splunk

 

· Exposure of the security audit tools on public cloud platforms

 

· Solid understanding of the underlying LINUX/UNIX and Windows OS security architecture

 

· Certified Ethical Hacker would be a plus

 

· Handling of Security audits is a must

 

· Proven interpersonal skills while contributing to team effort by accomplishing related results

 

· Passion for learning new technologies and the ability to do so quickly.

http://www.banyandata.com" target="_blank">www.banyandata.com 

Job posted by
Sathish Kumar

Cyber Security Engineer

at WEN

Founded 2018  •  Services  •  employees  •  Bootstrapped
Cyber Security
icon
Surat
icon
6 - 7 yrs
icon
₹1L - ₹6L / yr
The roles and responsibilities of a Cyber Security engineer include:
• Evaluate the organization’s security needs and establish best practices and standards accordingly.
• Designing, implementing, maintaining, overseeing, and upgrading all security measures needed to protect organizations’ data, systems, and networks.
• Responding to all security breaches to the network and associated systems.
• Troubleshooting all network and security issues and incidents.
• Routinely conduct penetration testing.
• Taking appropriate security measures to ensure that the organization's infrastructure and existing data are kept safe.
• Conducting testing and scans to identify any vulnerabilities in the network and system.
• Taking an active role in the change management process.
• Assist in any security breach investigations.
• Handling routine daily administrative tasks such as reporting and keeping open lines of communication with the organization’s appropriate departments.
Job posted by
Kamaljeet Kaur
Amazon Web Services (AWS)
Cyber Security
Penetration testing
Threat modeling
Computer Security
VAPT
icon
Hyderabad
icon
7 - 13 yrs
icon
₹20L - ₹30L / yr

Job Responsibilities:

 

Experience: 8 Yrs to 12 Yrs

 

  1. Hands-on expertise on performing Application pen testing (Mobile(Android, IOS),networking, web application pen testing),
  2. Should worked on IOT,AWS,Application Penetration Testing, Reverse Engineering, source code review, CI/CD Pipeline
  3. have done any submission on Bug crowd or Bug Bounty.
  4. have developed tools or scripts for web pen test on GitHub.
  5. Certified on OSCP
  6. Threat Modeling
  7. Network scan in stealth mode or simple scan using Nmap and Burp suite

 

Implement security measures which monitor and protect sensitive data and systems from infiltration and cyber-attacks.

 

Developing different ways to solve the existing threats and security issues.

 

Configuring and implementing intrusion detection systems and firewalls.

 

Security product development, testing, and implementation.

 

Responsible for security technology research, penetration testing, and vulnerability scanning.

 

Please follow the below inputs.

 

The shift will starts from 03:00 PM to 12 AM (fixed for few months),

 

 

OSCP certification(Not mandatory, preferable)

 

Below are the primary key skills:

 

Total Application Security Experience:

Total Security Architecture Experience:

IOT(optional)

MOBILE

WEB

AWS(Mandatory)

NETWORKING

THREAT MODELS

 

 

Job posted by
Geetanjali Kumari

Chief Information Security Officer- CISO

at Open financial technologies pvt ltd

Founded 2017  •  Product  •  500-1000 employees  •  Raised funding
Information security
ISO/IEC 27001:2005
PCI DSS
ISO 27001
CISO
icon
Bengaluru (Bangalore)
icon
4 - 8 yrs
icon
₹12L - ₹18L / yr

What you’ll be doing:
  • Establish, implement and monitor a strategic, comprehensive enterprise information security and IT risk management program
  • Work directly with the business units to facilitate risk assessment and risk management processes
  • Develop and enhance an information security management framework
  • Understand and interact with related disciplines through committees to ensure the consistent application of policies and standards across all technology projects, systems and services
  • Provide leadership to the enterprise's information security organization
  • Partner with business stakeholders across the company to raise awareness of risk management concerns
  • Assist with the overall business technology planning, providing a current knowledge and future vision of technology and systems
  • Conduct regular internal audits in compliance with applicable legal and contractual requirements, ISO 27001 and PCI DSS requirements and companies internal requirements
  • Conduct regular Management reviews and update the management on information security aspects. The MRMs shall also focus on drawing Management attentions to the key areas for required management actions.
  • CISO is also responsible to ensure customer audits as well as re-certification and surveillance audits and successful.
  • Coordinate with relevant stakeholders to address the NC closures.
  • CISO shall ensure the information incidents are responded and resolved on time to ensure compliance with legal and contractual requirements.

What you’ll bring along:

  • Degree in business administration or a technology-related field required.
  • Professional security management certification
  • Minimum of 5 years of experience in a combination of risk management, information security and IT jobs
  • Knowledge of common information security management frameworks, such as ISO/IEC 27001, and PCI DSS.
  • Excellent written and verbal communication skills and high level of personal integrity
  • Innovative thinking and leadership with an ability to lead and motivate cross-functional, interdisciplinary teams
  • Experience with contract and vendor negotiations and management including managed services.
  • Specific experience in Agile (scaled) software development or other best in class development practices.
  • Experience with Cloud computing/Elastic computing across virtualized environments.
Job posted by
Libin OK

EDR Security Expert

at My client is a Big4.

Agency job
via NetAnalytiks
Network Security
Web application security
Cyber Security
icon
Bengaluru (Bangalore)
icon
3 - 7 yrs
icon
₹5L - ₹15L / yr
Description :

We are looking for candidates with the below experience.

- Mandatory experience on any of

a) Cylance Protect and Optics

b) Crowdstrike Falcon Insight

c) Sentinel One ActiveEDR

d) Carbon Black EDR

- Hands-on experience in security incident response lifecycle and its phases

- Should have experience in L1 and L2 in EDR

- Hands-on experience in event and log analysis on Windows endpoints

- Overall experience: 3-7 years, Relevant experience: 2+ years

Please note : Candidate should have experience in the below skills must :

- EDR Experience

- EDR Product Worked on and which level of support they are working on

- Incident Response

- Malware Analysis

- Flexible for shifts
Job posted by
Sateesh Hegde

IT Security Specialist

at Virtual Engineering Services Pvt Ltd

Founded 1997  •  Product  •  20-100 employees  •  Profitable
OWASP
Vulnerability assessment
Web application security
Penetration testing
IT security
Burp suite
Cyber Security
Windows Azure
Web applications
Firewall
cenzic
hailstorm
Appscan
WebInspect
sqlmap
zap
icon
NCR (Delhi | Gurgaon | Noida)
icon
3 - 5 yrs
icon
₹4L - ₹8L / yr

IT Security Specialist

 

 

Roles and Responsibilities

  • Extensive experience of 2-5 years in Vulnerability Assessment and Penetration testing, Web Application security.
  • An Experience in performing web application security assessments using hands on techniques for identifying SQL injections, XSS, CSRF, authentication/authorization, OWASP top 10 issues.
  • Must have working experience in OWASP Top 10 Vulnerabilities Testing in Web applications.
  • Create policy and standards for developers and testers to secure programming in the organization. (secure code review, static application security testing.
  • Experience on both commercial and open source tools Cenzic Hailstorm, Burpsuite, AppScan, WebInspect, Appspider, sqlmap, OWASP ZAP. Assessing cloud security risk (AWS and Azure) and recommending appropriate security controls.
  • Ability to interact with project teams to understand the security requirements and come up with solutions
  • Extensive knowledge of managing Web Application Firewall (Product) including rules management and product administration
  • Strong understanding of networking concept.

 

Desired Candidate Profile

 

  • Excellent knowledge of Microsoft Windows operating environments and with special attention to security and hardening issues.
  • Able to work independently with minimal supervision.
  • Good knowledge of secure software development standard, process, techniques, cloud security policies and tools.
  • Keep stakeholders updated with communications and weekly reporting.
  • Collaborate with Security Platform and Services teams to build and integrate existing security solutions.
  • Excellent communication skills - written, verbal, presentation and interpersonal.
  • Willing to learn new skills and implement new technologies.
  • Should come with bachelor’s degree in engineering, mathematics or master’s in computer application / programing.

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

Job posted by
Abha Sachdeva
Did not find a job you were looking for?
icon
Search for relevant jobs from 10000+ companies such as Google, Amazon & Uber actively hiring on Cutshort.
Get to hear about interesting companies hiring right now
iconFollow Cutshort
Want to apply to this role at EZEU (OPC) India Pvt Ltd?
Why apply via Cutshort?
Connect with actual hiring teams and get their fast response. No spam.
Learn more
Get to hear about interesting companies hiring right now
iconFollow Cutshort