Job Description
• Hands-on experience in IT Security implementation & audit (such as ISO 27001)
• Experience in information technology security is a strong requirement, and person should have experience in at least one or more technology at some time. (Such as firewalls, Security Incident & Event Management, Intrusion Detection etc) Good technical understanding is essential as role requires engaging with customer and service personnel at detailed level at times.
• Experience in security architecture consulting, control establishment & optimization along with auditing security domains such Identity & Access Management, Data Encryption, application security (VA/PT), Firewall auditing, Vulnerability Management & Reporting, Asset Management.
• Knowledgeable about NIST, CIS guidelines, various other IT Security regulations& baseline controls
• Experience in SoX, Information Security, Data Privacy and PCI requirements
• Knowledge of Security and Compliance Testing IT Infrastructure, and exposure to any IT GRC tool such as Archer, Metric Stream etc. will be a plus.
• Experience with SIEM tool and conducting security incident & event investigations etc.
• Preferred Certifications: ISO 27000 LA, CISA, CISSP
• Strong analytics & reporting skills with strong communication & presentation.
• Ability to work with all level of clients & internal resources
Requirements
• Hands-on experience in IT Security implementation & audit (such as ISO 27001)
• Experience in information technology security is a strong requirement, and person should have experience in at least one or more technology at some time. (Such as firewalls, Security Incident & Event Management, Intrusion Detection etc) Good technical understanding is essential as role requires engaging with customer and service personnel at detailed level at times.
• Experience in security architecture consulting, control establishment & optimization along with auditing security domains such Identity & Access Management, Data Encryption, application security (VA/PT), Firewall auditing, Vulnerability Management & Reporting, Asset Management.
• Knowledgeable about NIST, CIS guidelines, various other IT Security regulations& baseline controls
• Experience in SoX, Information Security, Data Privacy and PCI requirements
• Knowledge of Security and Compliance Testing IT Infrastructure, and exposure to any IT GRC tool such as Archer, Metric Stream etc. will be a plus.
• Experience with SIEM tool and conducting security incident & event investigations etc.
• Preferred Certifications: ISO 27000 LA, CISA, CISSP
• Strong analytics & reporting skills with strong communication & presentation.
• Ability to work with all level of clients & internal resources
Skills
CISSP Compliance SOX SIEM
Language Requirements
No language requirements
Education Degree
Bachelor's Degree
Visa Support
Yes