IT Security Jobs in

Provide onsite support for desktops, laptops, printers, scanners, IP phones, UPS, switches,routers, VC systems, CCTV, and other IT equipment. Perform preventive and predictive maintenance of IT equipment. Troubleshoot hardware and software issues (L1L2 support). Install and configure operating systems, software, and network connectivity. Manage incidents and service requests through helpdesk system and ensure SLA compliance. Handle IMAC activities (Install, Move, Add, Change) for IT infrastructure. Coordinate with ISP and third-party vendors for connectivity and warranty/AMC support. Provide Video Conferencing (VC) support including MS Teams, WebEx, and Google Meet. Maintain IT asset inventory and conduct periodic verification. Submit daily activity reports and escalate critical issues when required.

Job Title: Cyber Security Specialist TRO GRC(ERM).Roles & Responsibilities:Experience, education, skills, licensure, or training required:The Cybersecurity Specialist must be self-motivated, be a great team player who values results,be professional, and be well-rounded technically. Should be able to conduct a guide and conduct an audit acrosscybersecurity frameworks, works ISO 27001, CMMC, CMMI, and FAIR (factor analysis of information risk). Abilityto conduct risk assessments and audits to support the above framework. Work with all areas of businessunits, IT departments, and third parties, guiding areas of process improvement surroundingpolicy, procedures, and standards for the above frameworks. Interface with team members, departments, and outside associates. Can work directly with all levels ofmanagement and other corporate team members in person as needed. Work with all levels of users and management levels, while being able to understand business needsand communicate necessary IT Security and compliance requirements and needs. Have an extensive knowledge of the development of enterprise-level policies, standards, and proceduresand the ability to determine what is needed and communicate it professionally in writing. learn to analyze software, networks, and scan data to identify vulnerabilities to support compliancerequirements. Assist with and implement process improvement to support IT Security, IT, and GRC requirements toSupport Risk and Compliance Audits. Oversee, develop, and provide guidance where needed for compliance requirement programs, RiskAssessments and audits. Prior experience defining risk management framework and leading implementation. Needs to understand common risk management frameworks and risk assessment approaches. Identifies key risks in business units, Sites & actions to mitigate these risks. Identifies operational control weaknesses. Has rolled out risk management across business units periodically Monitored remediation programs, ensuring root causes of operational risk issues Review and develop risk policies in accordancePreferred Experience/Skills:Candidate must have 5-6 years experience managing enterprise-level Security Audit and Complianceand/or Risk Management programs with successful results. This person must communicate well with themanagement and above, both verbally and in writing, while balancing the business needs and securityrequirements. Experience working in the Big Four Auditing Firms or other Risk managementpreferred.Education: Graduate/postgraduate in any discipline. Certification in CISA, Auditor certification inISO27001, CMMI, CMMC;

Role OverviewQuasar CyberTech is hiring a Senior Security Consultant with strong hands-on experience in Vulnerability Assessment and Penetration Testing (Web, API, Mobile, Network). Perform configuration audits for Network and Cloud Infrastructure. You will be leading technical assessments; handle client and stakeholders end to end ensuring quality deliverables.Key Responsibilities Perform detailed manual and automated VAPT for web, mobile, API, network and cloud environments. Perform Network Architecture, Configuration Audits (network devices), Firewall Rule Review, Database Security Analysis Conduct secure code review activity and collaborate with dev and infra teams for remediation support. Identify and validate vulnerabilities, prepare detailed technical and executive summary reports, along with mitigation reports. Manage end-to-end client engagements, including scoping, testing, reporting, and stakeholder communication. Mentor team members and contribute to research and development, and internal security improvement initiatives. Have an ownership attitude to resolve issues on own or with the help of othersTechnical Expertise Tools: Burp Suite, OWASP ZAP, Metasploit, Nmap, Nessus, Wireshark, Aircrack-ng, MobSF, Drozer etc. Frameworks: OWASP Top 10, NIST 800-115, PTES, ISO 27001, WASC Threat Classifications etc. Skill Secure Coding, Python, API & Cloud Security (AWS/Azure/GCP), DevSecOps etc. Advantage: Knowledge of Incident Response, CI/CD and automation pipelinesQualifications & Competencies Bachelors/Masters in Computer Science, Information Security, or related field Minimum 3.5+ years of penetration testing or security consulting experience Excellent communication with ability to clearly articulate thoughts, be convincing and, deliver presentation and training to management, Leadership skills with strong delivery ownership Enthusiastic and committed to the work Must have a valid passport and willingness to travel internationally (Middle East and other client sites)Preferred CertificationsCandidate must have industry-leading certifications like CEH (Practical)/OSCP/ GPEN/ GWAPT/ECSA/ CPENT/ CISSP or CISM LPT, CEPT or equivalent

Role Overview:We are looking for a motivated and technically skilled Pre-Sales Engineer to support our sales team. The ideal candidate will assist in preparing technical proposals, solution designs, and commercial quotations, while ensuring customer requirements are fully understood and met.Key Responsibilities: Understand client requirements and provide appropriate technical solutions. Prepare and deliver detailed technical proposals, commercial quotations, and tender submissions. Conduct product presentations and demonstrations to clients. Coordinate with procurement, sales, and project teams to ensure seamless project planning. Analyze RFPs/RFQs and ensure compliance with client specifications and documentation standards. Manage and update pre-sales documentation, solution diagrams, and presentations. Address technical queries and challenges during the proposal phase. Maintain and update sales tracking, forecasting reports, and proposal pipelines. Work closely with vendors and internal teams to ensure accurate solution pricing and timelines. Assist in contract negotiations regarding technical scope and deliverables.Requirements: Bachelor's degree in Engineering (Electronics, Electrical, IT, or related fields). 2+ years of experience in Pre-Sales, Solution Engineering, or Technical Support (preferably in ELV, security systems, IT infrastructure, or automation). Strong understanding of solution design, cost estimation, and tender preparation. Excellent communication, presentation, and documentation skills. Ability to manage multiple projects and meet tight deadlines. Knowledge of AutoCAD, Microsoft Office, and basic project management tools is a plus.Preferred Skills: Experience in commercial proposal writing and contract terms. Hands-on knowledge in preparing BOMs (Bill of Materials), scope of works, and technical datasheets. Good teamwork and client-handling skills.

Responsible for the maintenance, configuration, and reliable operation of computer systems,network servers, and virtualization.Install and upgrade computer components and software, manage virtual servers, and integrateautomation processes.Troubleshoot hardware and software errors by running diagnostics, documenting problems andresolutions, prioritizing problems, and assessing impact of issues.Provide documentation and technical specifications to IT staff for planning and implementingnew or upgrades of IT infrastructure.Lead desktop and helpdesk support efforts, making sure all desktop applications, workstations,and related equipment problems are resolved in a timely manner with limited disruptions.Manage and maintain Windows and Linux servers to ensure optimal performance and uptime.Configure, monitor, and troubleshoot IP networks, DHCP, firewalls, and switches.Oversee IT infrastructure security, including Sophos (EDR & Email Protection) andconfigurations.Manage ZhoEngine Desktop Central for endpoint management and patch management.Manage and configure tools under Zoho One suite (CRM, Campaigns, Desk, Email, Work Drive,etc.).Provide advanced administrative support for Microsoft 365 (Exchange Admin Centre,SharePoint, OneDrive).Handle cloud access points using Meraki Cloud solutions.Monitor and manage cloud services via the Azure Portal.Perform hardware troubleshooting for servers, desktops, laptops, and network devices.Conduct software installation, updates, and troubleshooting across various platforms.Ensure timely application of software and system updates through effective patch management.Maintain and monitor IT inventory, including hardware and software assets.Ensure seamless integration of new IT systems and tools into existing infrastructure.Implement and uphold IT security standards and best practices across the organization.Collaborate with cross-functional teams to troubleshoot and resolve system and network

Dear Candidates,Greetings from Rightfit Resources!We are hiring for the following role:**Cloud Engineer****Salary**: 15,000 to 60,000 per month**Qualification**: Fresher / Experienced**Role Responsibilities**:- Design, deploy, and manage cloud infrastructure solutions.- Ensure the security and scalability of cloud systems.- Monitor and optimize cloud performance and cost efficiency.If you are passionate, motivated, and looking to join a dynamic team, we want to hear from you! Apply now and take your career to the next level with Rightfit Resources.**How to Apply**: [Job Apply](https://forms.gle/Z5AttdqEpRC2VCZ6A)For more information, visit our [official website](https://rightfitresources.com).Note: Only shortlisted candidates will be contacted for the interview process.

Security Operations Center Experience. Good knowledge of networking topologies and technologies, including firewalling, routing and switching, Good knowledge of operating systems (Windows, Linux, UNIX,Macos) Solid understanding of current cyber-attack tactics/techniques and mitigation solutions. Knowledge on one or more SIEM tools, such as Splunk, Wazuh, Sentinel. Exposure to handling Security Centre alerts in cloud (Azure or AWS). Good communication skills Capable in working independently

Race2excellence is seeking an IT Executive to manage our digital infrastructure and support oureducational mobile app for the Gems project. The IT Executive will ensure seamless technicalsupport, maintenance, and security of our digital resources.

ServiceDesk L1 & L2: Accept incidents/requests. Log incident/request tickets in IT service desk tool. Tickets to be recorded with correct category, severity, description, and workplace user information as per the predefined matrix. Assign incidents/requests to the appropriate technical resolver group and categorize them into the appropriate severity or priority group. Route incidents to vendors for issues pertaining to DC, Network, security, and application support services. End-user workplace tickets to be managed by Customer's end-user support vendor. Follow up with Customer's technical team for incident/request status and manage notifications, including necessary escalations. Escalate tickets that have breached service levels. Log calls with Customers vendors and coordinate for hardware, firmware, and OEM-related calls for assets listed in Service Baselines (pertaining to DC/DR, network, security, and application support services scope). Vendor coordination, handling functional escalation from helpdesk executives. Remote support to Customers end-users by remote device management.

JD for Information Security and Compliance Specialist:Responsibilities:1. Utilize 3-5 years of direct experience in information security, specializing in risk and compliance management. Proficiently conduct audits and manage audit responses and observations.2. Implement ISMS (Information Security Management System) standards, policies, and conduct access reviews to ensure regulatory compliance. Perform thorough risk assessments and remain updated on relevant regulatory requirements.3. Demonstrate a proficient understanding of identity management standards, Business Continuity Planning (BCP), Disaster Recovery (DR), and Cloud Security.4. Utilize GRC (Governance, Risk, and Compliance) tools and techniques to organize and execute risk and compliance projects. Conduct audits, compile evidence, and coordinate audit responses efficiently.5. Manage risk and vulnerability assessments, along with compliance reviews, to ensure adherence to security standards.6. Maintain and monitor a centralized repository for procedures and documents related to security and compliance.7. Demonstrate proficiency in incident response and change management practices.8. Collaborate with stakeholders to align IT General Controls (ITGC) objectives with organizational goals.9. Support functional teams in achieving ongoing operational compliance.10. Conduct Vulnerability Assessment and Penetration Testing (VAPT) assessments, drive remediation efforts, and ensure the closure of identified vulnerabilities.11. Stay updated on regulatory changes impacting information security and ensure organizational compliance.12. Conduct security awareness training sessions and effectively communicate security policies and best practices to all stakeholders.13. Possess effective written and verbal communication skills to interact with cross-functional teams.14. Demonstrate strong analytical and problem-solving abilities to effectively address security and compliance challenges.

B.E/B.Tech with minimum 7 years of relevant experience CISSP OR CISA mandatory Would report to the Project Director Would be responsible for the information security of the network, and server operating systems Would be conducting periodic audit on the network equipment, and server operating systems foridentifying vulnerabilities. Would be monitoring the security logs generated by IT Components (Network, Servers, OS, Storage,etc. ) on a daily basis Would be checking the OEMs security alerts and cross verify with the current posture of equipmentat DC Would be responsible for conducting the test run of critical security updates and patches meant forthe DC components. Would be responsible for the roll-out of security updates and patches in the DC Would be providing necessary security guidelines to other team members on their respective area Would be reporting and follow-up with OEMs for any security related incidents Would be providing root-cause analysis for information security related incidents Would have at least 7 in Information Security Management

Should have hands on knowledge on Network Security like Firewall, SSL, SSO, Identity and Access Management, Webfiltering, Anti Virus and others.Should have hands on Knowledge on Windows and Linux platform.Should have worked on Active Directory, LDAP and others.Should have knowledge on Products like RSA, Websense, Bluecoat Checkpoint, Cisco and other similar security products.

The major focus will be on Application Penetration testing followed by Network Penetration Testing and Mobile Security assessments, Red Team Assessment, Phishing, IoT, Cloud Pen testing (Azure and AWS, Google Cloud), Cloud Configuration Audit, Architecture Review. The work involves Test Case Creation, Penetration Testing, Source code reviews, Report Creation & presentation to stakeholders along with operation and construction of tools to assist in these tasks. Well versed with OWASP Top Ten and WASC Threat Classifications Expertise in Vulnerability Assessment and Penetration Testing of Web Applications BusinessLogic based application testing Penetration testing of Mobile applications and websites. Exploitation of the issues found and presenting the impact occurred Source Code Reviews Well versed in Java Secure Code Review Well versed in OWASP Code Review concepts & identifiers Familiar with popular tools: Application Proxy: Burp suite, Paros, OWASP ZAP, WireShark, Vulnerability Scanners: IBM AppScan, HP WebInspect, Nessus, NTO Spider. Exploit Toolkits: Metasploit, Exploit DB etc Understanding of the nature and sources of security vulnerabilities, how to identify and exploit Sound Knowledge of TCP/IP protocol Stack, HTTP protocol, encoding standards, encryption technologies and development frameworks. Skills Mandatory: Application Security Testing/Penetration Testing (Web-based, Thick client, web services, Mobile) Network Security Testing/Penetration Testing (Network, OS, Databases etc) Static Code Analysis/ Secure Code Review

The candidate is required to sell internet marketing solutionsHandling International salesThis is entirely a B2B ProcessCandidate is expected to exceed sales targets month on month.Candidate main core profile requires new businesses, appointment scheduling, buildingsolid pipelines and completing the sale.Generating new revenues for business.Candidate should be capable to make a high volume of calls per dayRelationship building.Hardcore SalesOrganizing and prioritizing daily activity For all the selected candidates, product/sales training will be provided.Incentives after the target completion

JOB RESPONSIBILITIES Have a strong conceptual knowledge of IT Security Knowledge of IT Security principles, techniques and technologies (including IDS/IPS, Firewalls, Vulnerability Management, Pen testing) Create and update security threat assessment reports and Mitigation plans. Security patch management Fix known and unknown vulnerabilities Monitor network activities & update network diagrams. Taking offline backup & perform restore Perform Datacentre equipment challenge test Hands on knowledge of wireshark and SIEM tools Hands on knowledge on cisco network (routing and switching) Hands on knowledge on Kaspersky AV & EDR solution Practical knowledge on deception technologyFirewall & VPN- Routing, NAT, ACL, Object-Group- VPNs, MPF, VPN Load Balancing- Zero-down-time-upgrade, Firewall management etc.- Failover Active-Standby & Active-Active- Site-Site VPN, Remote Access VPNWeb Security & Network Management:- Worked on technologies like URL filtering- Bandwidth management, Malware protection- AD integration, Proxy authenticationIDS/IPS:- Worked on technologies like VLAN-pair- Interface-pair, Signature tuning, Monitoring, logs.

We are seeking a talented and experienced Security Developer. As a Security Developer, you will play a vital role in ensuring the security and integrity of our software systems and applications. You will collaborate with cross-functional teams to identify and address potential security vulnerabilities and implement robust security measures. This is an excellent opportunity to contribute to the protection of our organization's sensitive data and customer information.Responsibilities:Develop secure software applications and systems, following industry best practices and secure coding principles.Conduct security assessments and code reviews to identify vulnerabilities and recommend appropriate remediation measures.Collaborate with software development teams to integrate security controls into the development lifecycle, ensuring secure design, implementation, and deployment.Implement and configure security tools and technologies to enhance the security posture of our systems, including firewalls, intrusion detection/prevention systems, and vulnerability scanning tools.Stay up-to-date with the latest security trends, emerging threats, and industry best practices, and proactively recommend security enhancements based on this knowledge.Conduct security testing, including penetration testing and vulnerability scanning, to identify and address potential weaknesses in our applications and infrastructure.Respond to and investigate security incidents, perform forensic analysis, and implement appropriate remediation measures.Collaborate with cross-functional teams to provide security guidance and support, ensuring that security requirements are met throughout the software development lifecycle.Develop and deliver security training and awareness programs to educate developers and employees on secure coding practices and security protocols.Stay current with relevant laws, regulations, and compliance requirements to ensure adherence and assist in maintaining necessary.

Job Description:Job ResponsibilitiesPresent and report regularly InfoSec dashboard to management and stakeholdersAssist with the development of technical security risk and compliance documentationDocument and Communicate status and compliance effectiveness to management on a regular basisConduct regular internal audits on information security specific to ISO 27001Manage external audits from customers and stakeholderSupport business teams to achieve and maintain their security and compliance posture in accordance with ISO 27001 & Data PrivacyValidate ongoing compliance of policies and process/procedures in support of requirements and ensure that controls are operating effectivelyPrepare responses to client questionnaires and RFPs on information security, compliance and data privacy related areas. Provide support and clarity to customers and users of the information and cyber-security policy framework answering related questions and challenges as they ariseInterface and engage both management and other functions in organization on information security compliance related activities and processesLead the effective publication of policy materials and documents Risk ManagementMaintain and manage ISMS related documents, reports, and artefactsCoordinates the issuance of access control and drive change management activitiesManage vendor and third-party due diligence documentationInternal consultant for IT domain leads, administrators for security infrastructure, and assisting them to implement security devices configuration controls for firewalls, Internet connectivity, IPS and router etc.QualificationsCertification ISO 270013+ years of experience in Compliance, Security, or IT Audit experienceTotal experience of 5-6 yearsAny graduate or masters degree in science, engineering or technologyKnowledge in Project Management, IT Security Architecture DesignPrior experience with managing other security compliance ISO 27001 & SOC1 & SOC2

Requirements:Understand customer requirements and recommend best practices related to QRadar solution.Offer consultative advice in security principles and best practices related to QRadar operations. Developing new QRadar use cases, rules, correlations, dashboards to meet the customer needs. Design and document QRadar architectures to meet the customer needs. Assist customer with QRadar sizing, Architectures, and client technical meetings. Deploy and configure QRadar platforms as per Vendor guidelines and industry Best Practices. Assist client with technical guidance to configure end log sources in-scope to be logged to the QRadar. Verification of data of log sources in the QRadar following the Common Information Model (CIM). Document the build of the QRadar solution. Experience with QRadar SIEM platform. University degree in information security or equivalent work experience. Experience :Minimum 6 years experience in a similar role. Preferred SIEM vendor certification of administrator . Knowledge with the QRadar components. Knowledge familiarity with different security attack vectors and means of protection.

About us:We are headquartered in New York, USA committed to provide sustainable and scalable solutionstowardsclinical research and bioinformatics needs. Our team hasa decade worth of experience in medical information management, especiallyincancer research. Good data drives quality researchandwe recognize that todays research will shape the clinical practice guidelines of tomorrow. Our information technology and data management solutions can streamline and integrate research and patient care workflows to collect quality data and achieve research goals.Job Title:Sr. Executive Department: Risk & Compliance Job Location:Navi MumbaiReporting to: ManagerJob Duties / Responsibilities:Performing daily random audits of computer systems to check the effectiveness of IT controlsConduct Compliance Induction for new joiners.Provide developmental training to staff within defined time line based on business needs.Maintain updated centralized master list for all compliance related functions.Periodic review and up gradation of all mandatory, essential, MR/ISM manual, and procedure documentsConduct Risk & Compliance awareness test to employees at 6-month intervalPrepare and publish the Compliance awareness and Medicare assessment reportReview audit checklists to improve effectivenessTo monitor and ensure continual improvement on QMS/ISMS/SOC and other security auditsCoordination with software team/other process owners on any requirements related to Security and QualityCoordinate and guide the stakeholders in reporting and closing Audit observations and incidents.Education and Experience:Any graduate with good communication skillsOverall IT experience of 4 to 8 years, with a minimum of 2 to 4 years in IT Security, Audit, or Compliance roles.Experience in handling SIEM tools, knowledge of ISO 27001 requirements, and Vulnerability assessments are a plusCertifications like ISO 27001, Security+, or any Security certification.

Job descriptionWe are looking for cyber security developers & ethical hackers. who can exploit and identify software bugs for our international clients. willing to work on new project development platforms (system, mobiles...)Exploit Project Development:Mobile PlatformsAndroidIOS (high preference)2 System PlatformsWindowsMacLinuxJob Description:Developers have experience to create zero day exploits in any platforms.Knowledge in web, mobiles, system and network protocols.industrial certifications CEH, OSCP, CISCO or equivalent experience and Knowledge project development filed.Research security enhancements and make recommendations to management.Qualifications:Bachelor Degree or equivalent experience in security field.0-4 years relevant ExperienceNo. of Positions:10Salary Packages:6,00,000 - 10,00,000 (INR) yearsApplication Dead Line:12/5/2023

Job Responsibilities:- Worked on Snypr which is a Big data based Security analytics tool which includes SIEM and UEBA and which detects advanced cyber threats. It combines log management. Worked on SIEM Implementation includes Incident management, SIEMAdministration/Installation/Configuration, Use case management, Threat models and Policy Configurations, Correlation rules, Data source onboarding, Log analysis and events monitoring, Dashboard Designing, Reports and Workflows. Handling Incidents like Phishing, UEBA, Networks, Endpoints, Applications, Banks Proprietary App Malwares, APTs etc. with critical, medium and high severity in Splunk Enterprise Security.Perform weekly Threat Hunting Exercises via Splunk by analyzing the logs (APIs, WAF, f/w, proxy, av, ad, endpoint, etc.) and prepare an executive summary report with all the informations IOCs,MITRE ATTACK TTPs. Setup Secure Syslog (TLS) on the RHEL7 platform. Setup Firewall Rules on RHEL7 platform. Knowledge on WAF. Strong Understanding of Network Security terminologies like DLP, IDS, IPS, CASB application security, endpoint security, data protection. Knowledge on networking concepts, protocols and networking devices. Knowledge on Vulnerability Management Knowledge on Splunk.Certification :-CEH V9 Splunk Enterprise Certified Architect CompTIA security certified

- Configuration and maintains WAF solution- Monitor the web application which added in WAF- Provide ongoing support to existing monitoring capabilities and data collection systems- Create WAF rules/signatures to mitigate threats and implements.- Create the policy for the new on boarding applications- Create advanced alerts/reports to meet the requirements of key stakeholders- Uploading new ASM signature- Share the blocked request details. Based on application team request, tuning WAF policies, applying signatures- Participate all the drill activity and check the traffic and ensure the status.- Worked on the onboarding of new sites stage, prod instances behind WAF.- WAF rule finetuning based on OWASP, new rule addition/deletion for suppressing false positives, coordinating with various teams to fix any security flaw which could not be fixed in application.- WAF rule finetuning based on OWASP top10, new rule addition/deletion for suppressing false positives, coordinating with various teams to fix any security flaw which could not be fixed in application.- CDN fine tuning for better performance, multiple origin configuration , redirects, rewrites, cert issue.