Security Intern

at Syfe

DP
Posted by Rohit Kumar
icon
Gurugram, Delhi, Noida, Ghaziabad, Faridabad
icon
0 - 1 yrs
icon
Best in industry
icon
Full time
Skills
Security Information and Event Management (SIEM)
Information security
Cyber Security

About Syfe

 

Syfe is one of the fastest-growing digital wealth platforms in Singapore. We build personalized, diversified portfolios using proprietary algorithms and state-of-the-art technology. Our mission is to enable sophisticated investing at a low cost. 

 

In July 2021, we closed a S$40 million Series B funding round led by  Valar Ventures  , just 9 months after raising Series A. Our existing investors followed on their original investment in a short time frame, which speaks volumes about our rapid growth and our future ahead. Moving forward, we will accelerate our expansion across geographies, launch new products and grow our team. 

 

The Syfe team consists of industry experts from finance, e-commerce, and technology. We come from startups as well as large corporations. Excellence in execution is in our DNA. We aim to become Asia’s largest Digital Wealth Manager by leveraging technology to provide a superior investing experience for our customers. 

 

Syfe was named Best Digital Advisory Solution at DigFin Group Innovation 2021. Find out more about us at  www.syfe.com

 

Who are we:

 While we are a diverse set of people, we value the following core traits: 

  • Fast learning: We often require learning new tools and technologies. We believe in adopting them if they are particularly well suited for our problems, instead of limiting ourselves to what we already know. However, we are always short of time and therefore have to learn fast.
  • Versatility: While each one of us has a core skill, we possess at least one secondary skill as well. Apart from allowing the team to be fluid, it also helps us understand how all pieces (frontend, database, network, servers, etc.) fit together.
  • Madness about quality: Put together, individual lines of code should be robust, scalable, high-performance, fault-tolerant, and most importantly, beautiful software. We also stay up-to-date with the latest in the world of software to make ourselves better.
  • Passion: To try out new ideas and iterate on existing product features, and love experimenting with new technology if it's right for the job. Because not only do we ride the cutting edge, we make it happen.
  • Collaboration: We believe that engineering is a continuous process of learning and improvement and that the best way to learn is by getting help from your fellow engineers. Coding is more fun when you do it together and appreciate the feedback.

We are looking for a Security Intern to work on the security assessment of Syfe's Products.

 Responsibilities:

  • Perform security assessment under the supervision of security engineers
  • Perform penetration test on Web and Mobile application
  • Perform a network penetration test

Requirements:

  • Proven security assessment skills.
  • Understanding of OWASP Top 10, NIST, CIS, and MITRE attacks.
  • Understanding of security assessment tools such as Burpsuite, Nmap, Nessus, Qualys Guard, Metasploit, Wireshark, etc.
  • Excellent written and verbal communication skills.
  • Open to working in security assessment and other security domains within the information security group.

Good to have skills (Not mandatory):

  •  Security certifications such as CEH, OSCP, OSWE are a plus.
  •  Experience with any of the scripting/programming languages (Python, Ruby, Bash, PHP, etc.)
  •  Basic understanding of cloud security and AWS security stacks.
  •  Basic understanding of DevSecOps or Secure SDLC process.

The Syfe Advantages:

  • Annual learning allowance for work-related online courses and books
  • Allowance for home office setup
  • Latest M1 Macbook Pro + as required hardware and software
  • Best of all, our specialty is helping people manage their money. We will help you learn how to manage your own money like a pro
Read more

About Syfe

Founded
2017
Type
Size
Stage
Raised funding
About


Syfe is a digital investment platform with a mission to empower people to grow their money confidently and choose the future they want to live in. Built on the pillars of advice, access, and innovation, we cater to the full spectrum of an individual's wealth needs across diversified proprietary portfolios, cash management solutions, and a state-of-the-art brokerage.

 

The Syfe team combines world-class financial expertise with best-in-class technology talent. Excellence in execution is in our DNA and we offer equity ownership to all employees regardless of seniority and designation.

 

We are regulated by the financial authorities across Singapore, Hong Kong, and Australia. In Singapore alone, where we are headquartered, over 100,000 investors trust Syfe to grow their wealth.

 

Since its founding, Syfe has raised the US $52.4 million from world-class investors. The company has won multiple awards including Wealth Management Fintech of the Year by the Asian Banking and Finance Awards 2022, as well as being recognized as one of the Top LinkedIn Startups in Singapore 2022.

 

Find out more about us at www.syfe.com.

 

Press links - Bloomberg, Business Times, TechCrunch


Who are we:


While we are a diverse set of people, we value the following core traits:


  • Fast learning: We often require learning new tools and technologies. We believe in adopting them if they are particularly well suited for our problems, instead of limiting ourselves to what we already know. However, we are always short of time and therefore have to learn fast.
  • Versatility: While each one of us has a core skill, we possess at least one secondary skill as well. Apart from allowing the team to be fluid, it also helps us understand how all pieces (frontend, database, network, servers, etc.) fit together.
  • Madness about quality: Put together, individual lines of code should be robust, scalable, high-performance, fault-tolerant, and most importantly, beautiful software. We also stay up-to-date with the latest in the world of software to make ourselves better.
  • Passion: To try out new ideas and iterate on existing product features, and love experimenting with new technology if it's right for the job. Because not only do we ride the cutting edge, we make it happen.
  • Collaboration: We believe that engineering is a continuous process of learning and improvement and that the best way to learn is by getting help from your fellow engineers. Coding is more fun when you do it together and appreciate the feedback.

Read more
Connect with the team
icon
Vikram Khorona
icon
Fauzia Khan
icon
Rohit Kumar
icon
Saurabh Seth
Company social profiles
icon
icon
Why apply to jobs via Cutshort
Personalized job matches
Stop wasting time. Get matched with jobs that meet your skills, aspirations and preferences.
Verified hiring teams
See actual hiring teams, find common social connections or connect with them directly. No 3rd party agencies here.
Move faster with AI
We use AI to get you faster responses, recommendations and unmatched user experience.
2101133
Matches delivered
3712187
Network size
15000
Companies hiring

Similar jobs

A digital cyber security company presence across Globe.
Agency job
via Jobdost by Sathish Kumar
Remote, Hyderabad
8 - 12 yrs
₹35L - ₹50L / yr
Web application security
Network Security
Cyber Security
IT security
Security
+7 more

Job Summary:  

The Incident Response (IR) Lead manages a team of experts with diverse skill setsincluding Security Operations Center (SOC), Forensics, and technical Subject Matter Expert (SME) advisory. The IR Lead is specifically tasked with managing all aspects of an Incident Response engagement to include incident validation, monitoring, containment, log analysis, system forensic analysis, and reporting. The Incident Response Lead is also responsible for building the relationship with the client and client’s counsel and ensuring the engagement’s objectives and expectations are met and executed successfully as documented in the statement of work. You will leverage a solid foundation of technical expertise in Cybersecurity, Incident Response, and Digital Forensics to successfully execute your responsibilities.

 

ROLES AND RESPONSIBILITIES

· Accurately collects information from the client concerning the incident to include but not be limited to the client’s environment, size, technology, and security threats. In addition, the IR Lead is responsible for capturing all client’s expectations and objectives throughout the engagement to ensure successful delivery.

· The main point of contact manages and participates in all communications with the client and the client’s counsel during the engagement. The IR Lead sets the cadence for communications.

· Management and Coordination of all technical efforts for the IR engagement to drive the process forward through; tool deployment, ransomware decryption, restoration, and recovery efforts, system rebuilds, system, application, and network administration tasks.

· Coordinates with the Ransom Specialist when ransom negotiations are needed. Ensures updates regarding ransom status are delivered to the client and counsel in a timely fashion.

· Manages and coordinates the onsite efforts with the Onsite Lead or team ensuring they understand and can execute the objectives for the onsite work. Additional responsibilities with onsite efforts include ensuring communications are frequent and getting the daily onsite update communicating these back to the IR Director and/or IR Ops Associate for their Tiger Team.

· Ensures the Forensic Lead is coordinating the collection of data necessary for the investigation.

· Ensures SentinelOne is deployed on time and adding value.

· Communicates with sales when appropriate for SentinelOne, provide client contact.

· Communicates in tandem with the Forensic Lead pertinent findings to the client during the investigation.

· Follows up with the SOC Lead on SentinelOne alerts and encourages/coordinates client participation with the product.

· Accountable for final report review, ensuring the report is accurate, professional, and meets the objective of client counsel.

· Other duties as assigned.

DISCLAIMER The above statements are intended to describe the general nature and level of work being performed. They are not intended to be an exhaustive list of all responsibilities, duties, and skills required personnel so classified.

 

 Role Description : Skills & Knowledge

1. Experience leading scoping calls

2. Strong background and practical hands-on experience with Windows or Linux System and Network Administration, Security DevOps, Incident Response and Digital Forensics, or Security Engineering

3. Practical experience performing in a functional role including but not limited to one or more of the following disciplines: computer forensics, Incident Response, data analytics, Security Operations, and Engineering, Digital Investigations

4. Possesses strong verbal and written communication skills

JOB REQUIREMENTS

· Bachelor's degree in Computer Science, Computer Engineering, Information Assurance, Forensic Sciences, or related technical field; Graduate degree preferred

· 10+ years experience leading full-cycle incident response investigations and communicating with the client/counsel/carriers

· Must be eligible to work in the US without sponsorship

WORK ENVIRONMENT While performing the responsibilities of this position, the work environment characteristics listed below are representative of the environment the employee will encounter: Usual office working conditions. Reasonable accommodations may be made to enable people with disabilities to perform the essential functions of this job.

 

PHYSICAL DEMANDS

· No physical exertion is required.

· Travel within or outside of the state.

· Light work: Exerting up to 20 pounds of force occasionally, and/or up-to 10 pounds of force as frequently as needed to move objects.

Read more
DP
Posted by NagendraChamarty
Remote only
2 - 15 yrs
₹2L - ₹20L / yr
Cyber Security
Hi,

We are looking for Cyber Security Specialists who are strong in any Cloud providers like GCP, AWS & Azure.
Strong awareness of security considerations and security tools used to integrate with the build pipelines etc.,
Networking (VPC / VPCSC / VPN) fundamentals
Partner with InfoSec and Security teams to deliver on key information security and IT risk related initiatives.
A wide knowledge of technology and platforms with an understanding of good development practices, SecDevOps and Cloud.
Design and configure perimeter security
Define, configure, and automate firewall configurations and procedures
Verify and validate implementation of firewall configurations and security scripts

This is for a UK client and we need your availability from 2 PM to 8 PM IST weekdays,

Read more
DP
Posted by Satendra Chauhan
Ahmedabad
7 - 15 yrs
₹7L - ₹15L / yr
ISO 27001
Information security
System Administration
Linux/Unix
Application server

Simform is looking for an experienced IT infrastructure and information security leader to head Infra and infosec team and ensure process-oriented Infosec practices for internal company operations.  

 

Responsibilities

  • Manage a small team of system admins and IT manager
  • Make sure the ISO 27001 practices are established and followed
  • Be responsible for authentication and authorization of various assets and endpoints in a highly secure manner
  • Prepare and maintain various reports, and data as per ISO practices. 
  • Carry out a periodic vulnerability assessment, penetration testing, and other threat modeling activities. 
  • Plan and manage the distribution, and maintenance of devices as per policies. 
  • Implement software and tools to effectively manage infosec practices. Ie. The authorization server and password sharing tool. 
  • Manage firewall and office operation servers (Linux and windows). 
  • Manage Office365 administration and policies.   

Requirement: 

  • 7yrs of experience in similar roles. At least 2yrs in a senior manager position.
  • Hands-on experience implementing or maintaining ISO 27001 practices. 
  • Knowledge and hands-on experience with firewall, windows/linux servers, and Office 365.
  • Knowledge and hands-on experience with various information security tools. 
  • Experience in managing high-quality processes and records relating to information security.
Read more
Telecom Domain Company
Agency job
via New Era India by Asha P
Chennai
10 - 15 yrs
₹15L - ₹30L / yr
Solution architecture
Cyber Security

achelor of Engineering or Technology; or any degree on par;

·  12-15 years of Experience in security and similar areas solution/product development, design, etc

·  Minimum 7-8 years of experience in an Enterprise or Cyber Security practice dedicated role

·  Experience in Enterprise deployment of security with in depth knowledge of security, implementing security solutions and working closely with global customer accounts.

·  Proficient with concepts like SOC, OWASP Top 10 etc

·  Understanding of Enterprise Cyber security models like Mitre ATTACK and roadmap modelling.

·  Excellent analytical and problem-solving skills to drive product development

·  Excellent communicator, whether writing, speaking or presenting

·  Experience gathering and analysing data to create useful metrics that support positive change

Read more
IT services provider based out of the US
Agency job
via Jobdost by Mamatha A
Bengaluru (Bangalore)
5 - 5 yrs
₹10L - ₹12L / yr
Information security
Network Security
IT security
IT security audit
ITGC
+12 more

Job description – Information Security (Network)

Roles and Responsibilities

Company will provide a professional opportunity to work in a dynamic environment where you will have the ability to develop process and Cyber security based skills

 

Work profile of individual

  • As part of the company cyber security consulting team, individual’s primary role would be to work with ISO 27k projects IT audits, ITGC audits, SSAE, SOC audits, IT Process Audit, Systems Audit, Gap assessment TPRM, GDPR, Infosec, GRC , ISMS , Cyber Security, SOX ITGC on customer engagements
  • Will address all aspects of security like physical, logical, data, access etc and review Information Security policy and suggest / recommend necessary changes to the same on customer engagements
  • Will be an active participant in internal / third party system security reviews and audits on customer engagements
  • Will perform internal audits on all aspects of IT and ensure compliance with the prescribed security norms on customer engagements and will be responsible for tracking the open audit findings and closure of the same
  • Will be responsible for implementation of new projects under Information Security Domain
  • Will be able to manage document tracking and updating - policies, processes, procedures, templates etc.
  • Will assist in development of proposals by owning parts of the proposal document and by giving inputs in solution design based on areas of expertise.
  • Will engage with clients and(or) application development teams for implementation of cyber security & data privacy by design and data protection controls.
  • Will support the clients with ongoing design, implementation and maintenance of the data privacy framework for managing data protection risk including responding to legislation, devising and owning policies and training.
  • Will demonstrate ability to clearly and concisely communicate the privacy implications of technology and implementation.

 

Team work

  • Individual would be responsible for contributing to a strong team environment and promoting a positive working relationship with their colleagues.
  • Individual would predominately work with off-shore engagement teams and relevant  teams on presale and cyber security delivery.
  • Communication, written and verbal, with these teams would be expected.
  • Team members would be required to apply learning from trainings and on the job experience to work requests and support continuous process improvement.
  • Team members would be required to handle multiple tasks at the same time.
  • Detailed focus when performing work and good project management skills when managing workload and maintaining timelines will be necessary.

 

Desired Candidate Profile

  • Bachelors
  • Certifications (ISO 27001/ ISO 31000/ CISA/ CISSP/ CSX or equivalent and other relevant qualification/certification
  • Experience : 3-5 years

Knowledge Required:

  • Strong knowledge of information security concepts, risk and controls concepts. Strong understanding of security principals: audit, policies, guidelines, and compliance.
  • Good understanding of infrastructure (data centre, network end user computing) security / cloud security / managed security services / security operations centre / compliance risk management and ITGC controls
  • Good understanding of technical security like network security, operating system, encryption, use of tools and technologies for various processes like logical access control, network security, security monitoring etc.
  • Sound knowledge of Internal Controls and Compliance. Must be able to recommend controls around people, process, and technology.
  • Sound knowledge on IT controls (especially IT risks). Good experience with control assessment, check the effectiveness of the implemented controls and recommend mitigation / improvements.
  • Good knowledge on Privacy, Governance and reporting
  • Experience with the Microsoft Office suite of products (i.e. Word, Excel, PowerPoint, Visio, etc.),
  • Strong verbal and written communication skills Knowledge / experience in fields of ITGC audits, Internal Audit, External Audit / Statutory Audit projects
  • Candidates should exhibit good client service skill collateral's with a strong focus on building relationships.

 

Additional Responsibilities:

 

  • Ability to assist in value-creating strategies and models that enable clients to innovate, drive growth and increase their business profitability
  • Good knowledge on software configuration management systems and license Management systems
  • Awareness of latest technologies and Industry trends
  • Logical thinking and problem solving skills along with an ability to collaborate
  • Understanding of the financial processes for various types of projects and the various pricing models available
  • Ability to assess the current processes, identify improvement areas and suggest the technology solutions
  • One or two industry domain knowledge
  • Client Interfacing skills
  • Project and Team management
Read more
Bengaluru (Bangalore)
4 - 10 yrs
₹8L - ₹20L / yr
Information security
Splunk
Cyber Security
IT risk management
IT security audit
+9 more

Information Security Specialist

Notice Period: 45 days / Immediate Joining

 

Banyan Data Services (BDS) is a US-based data-focused Company that specializes in comprehensive data solutions and services, headquartered in San Jose, California, USA. 

 

We are looking Information Security Specialist who has the expertise and deep knowledge of Information security regulations, compliance, and SIEM tools, and the ability to develop, describe and implement Security Baselines and Policies.

 

It's a once-in-a-lifetime opportunity to join our rocket ship startup run by a world-class executive team. We are looking for candidates that aspire to be a part of the cutting-edge solutions and services we offer that address next-gen data evolution challenges. 

 

Key Qualifications

 

· Design, deploy, and support Information Security Solutions provided by BDS

 

· Assist clients to carry out the IT Risk Management assessment on both on-prem and cloud platforms

 

· Provide subject matter expertise on IT security compliances during the security audits to meet various security governances.

 

· Research and strategic analysis of existing, and evolving all IT and data security technologies

 

· Establish baselines to define required security controls for all infrastructure components and application stack

 

· Follow latest vulnerabilities and threats intelligence updates across a wide range of technologies and make recommendations for improvements in the security baselines.

 

· Overseeing security event monitoring, understand the impact, and coordinate remediation efforts

 

· Create and optimize the SIEM rules to adjust the specification of alerts in responding to incident follow up

 

· Must be able to work a flexible schedule during off-hours

 

Key Skills & Qualification

 

· Minimum of 4 years relevant work experience in information/cyber security, audit, and compliance

 

· Certifications in any of technical security specialty (e.g., CISA, CISSP, CISM)

 

· Experience in managing SIEM products like Arcsight, Qradar, Sumo Logic, RSA NetWitness Suite, ELK, Splunk

 

· Exposure of the security audit tools on public cloud platforms

 

· Solid understanding of the underlying LINUX/UNIX and Windows OS security architecture

 

· Certified Ethical Hacker would be a plus

 

· Handling of Security audits is a must

 

· Proven interpersonal skills while contributing to team effort by accomplishing related results

 

· Passion for learning new technologies and the ability to do so quickly.

www.banyandata.com  

Read more
at WEN
DP
Posted by Kamaljeet Kaur
Surat
6 - 7 yrs
₹1L - ₹6L / yr
Cyber Security
The roles and responsibilities of a Cyber Security engineer include:
• Evaluate the organization’s security needs and establish best practices and standards accordingly.
• Designing, implementing, maintaining, overseeing, and upgrading all security measures needed to protect organizations’ data, systems, and networks.
• Responding to all security breaches to the network and associated systems.
• Troubleshooting all network and security issues and incidents.
• Routinely conduct penetration testing.
• Taking appropriate security measures to ensure that the organization's infrastructure and existing data are kept safe.
• Conducting testing and scans to identify any vulnerabilities in the network and system.
• Taking an active role in the change management process.
• Assist in any security breach investigations.
• Handling routine daily administrative tasks such as reporting and keeping open lines of communication with the organization’s appropriate departments.
Read more
DP
Posted by Piyush Agarwal
Noida, NCR (Delhi | Gurgaon | Noida)
2 - 10 yrs
₹9L - ₹20L / yr
Cyber Security
Python
Demsito
Playbooks
  • Must have good exposure working in SOAR (Security, Orchestration, Automation, Response)
  • Strong knowledge in End user/ point security.
  • Good hands on Cyber security like SIEM, IAM, PAM.
  • Sound Knowledge into automated incident management using Demisto (or similar technology)
  • Hands on creating playbooks in Python Scripting.
Read more
Bengaluru (Bangalore)
10 - 14 yrs
₹20L - ₹40L / yr
Information security
security
Network monitoring
DLP
Security Information and Event Management (SIEM)
+3 more
Expert in Information security architecture, implementation, Security Solutions design and deployment SIEM, IDAM, Network monitoring, VAPT, DLP and Endpoint Security, Encryption, Audit controls and applying security measures (ISO, PCI etc.)
Read more
Pune, Bengaluru (Bangalore)
10 - 15 yrs
₹20L - ₹45L / yr
Information security
Security operations
Penetration testing
Security analysis
Cyber Security
+1 more
Security Architectural solutions, designing, Security Analysis, Infrastructure architecture, Application architecture, DevSecOps and cloud understanding, Threat Modelling, Penetration testing, Governance Risk & Compliance
Read more
Did not find a job you were looking for?
icon
Search for relevant jobs from 10000+ companies such as Google, Amazon & Uber actively hiring on Cutshort.
Get to hear about interesting companies hiring right now
iconFollow Cutshort
Want to apply to this role at Syfe?
Why apply via Cutshort?
Connect with actual hiring teams and get their fast response. No spam.
Learn more
Get to hear about interesting companies hiring right now
iconFollow Cutshort