IT Security Job Vacancies in Mumbai

We are urgently looking for an I.T Executive to be based at our head office in Mumbai. We are a well established pharmaceutical formulations manufacturing and marketing company with head office in Mumbai . Please visit our website wwwvardhmanconsultancy.com.for more details. The candidate will be independently responsible for managing the overall I.T infrastructure of the Company. Please refer to the below mentioned detailed job description.Job description 1. Manage information technology and computer systems (software and hardware) of overall HO and factory independently.2. Ensure security of data, network access, backup systems and firewall.3. Procurement of IT infrastructure and applications, evaluating of software suitable for organization, vendor management, negotiation and finalizing of commercials. 4. Monitoring and maintaining ERP, EPBAX and PRI lines; periodic review and maintenance of the same. 5. Ensure all systems are secure and operational.6. Respond to IT-related issues and requests.7. Research and develop new systems and technology solutions to improve operations.8. Establish best practices for IT security.9. Develop and maintain IT policies and procedures.10. Provide technical support and assistance to employees.11. Managing and monitoring of Microsoft Office 365 (Emails solution, MSTeam, and MS SharePoint) and admin portal.12. Monitor Cloud backup and Cloud ERP server.13. Managing SEO and Website.Candidate criteria B.SC/B. Com graduate with minimum 5 years of relevant experience as a system administratorfrom any industry. Basic knowledge and experience in MS Navision/Business Central is preferred. Should have a strong command over written & verbal communication in English. Should be a permanent resident from Mumbai & have accommodation h

Role OverviewQuasar CyberTech is hiring a Senior Security Consultant with strong hands-on experience in Vulnerability Assessment and Penetration Testing (Web, API, Mobile, Network). Perform configuration audits for Network and Cloud Infrastructure. You will be leading technical assessments; handle client and stakeholders end to end ensuring quality deliverables.Key Responsibilities Perform detailed manual and automated VAPT for web, mobile, API, network and cloud environments. Perform Network Architecture, Configuration Audits (network devices), Firewall Rule Review, Database Security Analysis Conduct secure code review activity and collaborate with dev and infra teams for remediation support. Identify and validate vulnerabilities, prepare detailed technical and executive summary reports, along with mitigation reports. Manage end-to-end client engagements, including scoping, testing, reporting, and stakeholder communication. Mentor team members and contribute to research and development, and internal security improvement initiatives. Have an ownership attitude to resolve issues on own or with the help of othersTechnical Expertise Tools: Burp Suite, OWASP ZAP, Metasploit, Nmap, Nessus, Wireshark, Aircrack-ng, MobSF, Drozer etc. Frameworks: OWASP Top 10, NIST 800-115, PTES, ISO 27001, WASC Threat Classifications etc. Skill Secure Coding, Python, API & Cloud Security (AWS/Azure/GCP), DevSecOps etc. Advantage: Knowledge of Incident Response, CI/CD and automation pipelinesQualifications & Competencies Bachelors/Masters in Computer Science, Information Security, or related field Minimum 3.5+ years of penetration testing or security consulting experience Excellent communication with ability to clearly articulate thoughts, be convincing and, deliver presentation and training to management, Leadership skills with strong delivery ownership Enthusiastic and committed to the work Must have a valid passport and willingness to travel internationally (Middle East and other client sites)Preferred CertificationsCandidate must have industry-leading certifications like CEH (Practical)/OSCP/ GPEN/ GWAPT/ECSA/ CPENT/ CISSP or CISM LPT, CEPT or equivalent

We are looking for a proactive and efficient Technician to join our IT Department, who will be trained and responsible for daily IT task and managing internal IT infrastructure. Installing and troubleshooting computer networks and systems locally and remotely including Camera and printers. Website support and maintenance. Managing local and remote Data backup, Data safety and security Maintaining inventory of all IT assets of the company including records for repairs and maintenance. Prepare purchase order for IT / advert requirements as per company process including vendor management. Being updated with IT Act & rules In-house Crewing software, Marlins test system support. Manage things related to advertising on social media, job portals and keep track to monitor the growth and modification strategy.

Hiring Fresher IT Support Engineer/ Hardware/ Network Engineer/ Networking/ Fresher!!!5 Days working, Flexible timing, Paid Sick Leaves, Leave encashment, Yearly Appraisal!!!Designation IT Support Engineer/ Hardware/ Network Engineer/ Networking/ FresherJob Location Kolkata, Mumbai, Bangalore, Hyderabad, PuneExperience FresherIT Support Engineer Roles and Responsibilities Installation and configuration of WAN, LAN Take care of Computer, Laptop, Networking Hardware and Software To identify, reproduce & resolve Networking problems of internal users Knowledge of web hosting Install, maintain and troubleshoot network equipment Maintain network routing Fix any hardware or software issues. Installation of Software, printers, outlook, web browsers. Perform regular maintenance checks. Keeping a record of all IT equipment.IT Support Engineer Desired Candidate Profile knowledge of routers, LANs, switches Troubleshooting and other related IT work. The Candidate should be dynamic and ready to accept the responsibility for the field maintenance and installationNote: BE-B-Tech, BCA, Bsc, BBA, B.Com, Diploma.Job Types: Full-time, PermanentSalary Offered: 2.4 LPA to 3.5 LPA

ServiceDesk L1 & L2: Accept incidents/requests. Log incident/request tickets in IT service desk tool. Tickets to be recorded with correct category, severity, description, and workplace user information as per the predefined matrix. Assign incidents/requests to the appropriate technical resolver group and categorize them into the appropriate severity or priority group. Route incidents to vendors for issues pertaining to DC, Network, security, and application support services. End-user workplace tickets to be managed by Customer's end-user support vendor. Follow up with Customer's technical team for incident/request status and manage notifications, including necessary escalations. Escalate tickets that have breached service levels. Log calls with Customers vendors and coordinate for hardware, firmware, and OEM-related calls for assets listed in Service Baselines (pertaining to DC/DR, network, security, and application support services scope). Vendor coordination, handling functional escalation from helpdesk executives. Remote support to Customers end-users by remote device management.

JD for Information Security and Compliance Specialist:Responsibilities:1. Utilize 3-5 years of direct experience in information security, specializing in risk and compliance management. Proficiently conduct audits and manage audit responses and observations.2. Implement ISMS (Information Security Management System) standards, policies, and conduct access reviews to ensure regulatory compliance. Perform thorough risk assessments and remain updated on relevant regulatory requirements.3. Demonstrate a proficient understanding of identity management standards, Business Continuity Planning (BCP), Disaster Recovery (DR), and Cloud Security.4. Utilize GRC (Governance, Risk, and Compliance) tools and techniques to organize and execute risk and compliance projects. Conduct audits, compile evidence, and coordinate audit responses efficiently.5. Manage risk and vulnerability assessments, along with compliance reviews, to ensure adherence to security standards.6. Maintain and monitor a centralized repository for procedures and documents related to security and compliance.7. Demonstrate proficiency in incident response and change management practices.8. Collaborate with stakeholders to align IT General Controls (ITGC) objectives with organizational goals.9. Support functional teams in achieving ongoing operational compliance.10. Conduct Vulnerability Assessment and Penetration Testing (VAPT) assessments, drive remediation efforts, and ensure the closure of identified vulnerabilities.11. Stay updated on regulatory changes impacting information security and ensure organizational compliance.12. Conduct security awareness training sessions and effectively communicate security policies and best practices to all stakeholders.13. Possess effective written and verbal communication skills to interact with cross-functional teams.14. Demonstrate strong analytical and problem-solving abilities to effectively address security and compliance challenges.

JOB RESPONSIBILITIES Have a strong conceptual knowledge of IT Security Knowledge of IT Security principles, techniques and technologies (including IDS/IPS, Firewalls, Vulnerability Management, Pen testing) Create and update security threat assessment reports and Mitigation plans. Security patch management Fix known and unknown vulnerabilities Monitor network activities & update network diagrams. Taking offline backup & perform restore Perform Datacentre equipment challenge test Hands on knowledge of wireshark and SIEM tools Hands on knowledge on cisco network (routing and switching) Hands on knowledge on Kaspersky AV & EDR solution Practical knowledge on deception technologyFirewall & VPN- Routing, NAT, ACL, Object-Group- VPNs, MPF, VPN Load Balancing- Zero-down-time-upgrade, Firewall management etc.- Failover Active-Standby & Active-Active- Site-Site VPN, Remote Access VPNWeb Security & Network Management:- Worked on technologies like URL filtering- Bandwidth management, Malware protection- AD integration, Proxy authenticationIDS/IPS:- Worked on technologies like VLAN-pair- Interface-pair, Signature tuning, Monitoring, logs.

The major focus will be on Application Penetration testing followed by Network Penetration Testing and Mobile Security assessments, Red Team Assessment, Phishing, IoT, Cloud Pen testing (Azure and AWS, Google Cloud), Cloud Configuration Audit, Architecture Review. The work involves Test Case Creation, Penetration Testing, Source code reviews, Report Creation & presentation to stakeholders along with operation and construction of tools to assist in these tasks. Well versed with OWASP Top Ten and WASC Threat Classifications Expertise in Vulnerability Assessment and Penetration Testing of Web Applications BusinessLogic based application testing Penetration testing of Mobile applications and websites. Exploitation of the issues found and presenting the impact occurred Source Code Reviews Well versed in Java Secure Code Review Well versed in OWASP Code Review concepts & identifiers Familiar with popular tools: Application Proxy: Burp suite, Paros, OWASP ZAP, WireShark, Vulnerability Scanners: IBM AppScan, HP WebInspect, Nessus, NTO Spider. Exploit Toolkits: Metasploit, Exploit DB etc Understanding of the nature and sources of security vulnerabilities, how to identify and exploit Sound Knowledge of TCP/IP protocol Stack, HTTP protocol, encoding standards, encryption technologies and development frameworks. Skills Mandatory: Application Security Testing/Penetration Testing (Web-based, Thick client, web services, Mobile) Network Security Testing/Penetration Testing (Network, OS, Databases etc) Static Code Analysis/ Secure Code Review

Job descriptionWe are looking for cyber security developers & ethical hackers. who can exploit and identify software bugs for our international clients. willing to work on new project development platforms (system, mobiles...)Exploit Project Development:Mobile PlatformsAndroidIOS (high preference)2 System PlatformsWindowsMacLinuxJob Description:Developers have experience to create zero day exploits in any platforms.Knowledge in web, mobiles, system and network protocols.industrial certifications CEH, OSCP, CISCO or equivalent experience and Knowledge project development filed.Research security enhancements and make recommendations to management.Qualifications:Bachelor Degree or equivalent experience in security field.0-4 years relevant ExperienceNo. of Positions:10Salary Packages:6,00,000 - 10,00,000 (INR) yearsApplication Dead Line:12/5/2023

skills will be required- Extensive experience with Information security and risk management- Experience with IT (security) Architecture, design and engineering- Practical understanding of, and experience with, Shells IT infrastructure, architecture and technology solutions.- Sound knowledge of IT Governance Risk & Control frameworks, specifically ISO27001, COBIT and risk methodologies (IRAM)- Proven capability in managing IT security infrastructure risks.Knowledge of external Legal, Regulatory and industry best industry requirements, particularly Export Controls, PCI DSS and Data Privacy regulations

. Conduct ISMS audit for clients Develop and maintain audit checklist and documents. Maintain active communication with clients to manage expectations, ensure satisfaction, make sure deadlines are met, and lead change efforts effectively. Maintain and enhance audit work paper templates. Conduct frequent testing of simulated cyber-attacks to look for vulnerabilities in the computer systems and take care of these before an outside cyber-attack. Performing both internal and external security audits. Making an audit Audit Report for ISO 27001, 27701, 22301, PCI DSS, SOC 2 and submission to senior manager. Providing the pre-audit committee with the audit findings. Monitoring the implementation of audit recommendations.

Job Descriptions: Understand or define audit scope & develop audit plan/program Understand IT security and governance review, IS/IT policy and IT general and application inbuilt control audit Identify risks and assess existence, efficiency and effectiveness of IT control environment and processes Manage/ execute audit test procedures including reviewing and analysing evidences Comparison of client organisations processes with best practices for standards and procedures Identify areas of improvements and provide recommendations from assessment Draft high-quality reports and ensures findings are accurate along with presentation skills Ensure timely delivery of status updates and final reports to clients Provide mentorship and coaching to staff; responsible for technical development of staff Keep abreast of emerging technologies with the IT environment and help in developing audit plans to counter whatever risks that might be associated with the application of such technologies Ready to travelKnowledge: Well familiar with basics of Audit standards and frameworks SOX, COSO, COBIT, NIST, ISO 27001 Basic understanding of System operations, Database, Applications, Firewall, Network management, data centre controls Ability to use data analysis tools like ACL, MS Excel, IDEA, Tableau

Positions:Network Security EngineerTotal Experience: 5 yrs to 6 Yrs.JD Security and Network EngineerWe are looking for a Network and Security Engineer to. You will be part of IT support team that is responsible for installation and maintenance of security and network architectures that meet business objectives and SLAs. Person should able to work with Firewalls, app delivery (ADC/WAF/LB), DLP and end point security solutions. Experienced on Installation, implementation and managing a firewall and network Set key goals and major objectives. experienced on implementation / configuration / troubleshooting of Checkpoint, Juniper, FortiGate, Sophos, SonicWall or Palo Alto Firewall. Responsible for technical documentation (project planning, Preparing POA & project reports) of customer network and updating internal knowledge database. Responsible for the POCs of related security and network products. Closing client issues in time and maintain SLA level. Understand technical issues associated with the project target Troubleshoot highly complex customer network issues (LAN & WAN) and provide corrective actions to restore the customer services. Troubleshoot and resolve highly complex networking related issues in coordination with OEMs and TAC. Good Knowledge/Hands-on experience on troubleshooting of Routing & Switching Protocol, Network Monitoring and remote management tools. Knowledge in MPLS and VPN networks. Designing, updating the WAN & LAN diagrams & documenting the Network details. Creation of MOP/SOP and responsible for change management. Good Knowledge of Monitoring tools (IBM Q radar, Microsoft Arcsight, SolarWinds, whatsapp-gold, PRTG etc.(optional) Knowledge of ADC, WAF, DDOS, MFA, VPN, antivirus and wireless technologies would be an added advantage.

We are looking for a proactive and efficient Trainee / Executive to join our IT Department, who will be trained and responsible for daily IT task and managing internal IT infrastructure. Installing and troubleshooting computer networks and systems locally and remotely. Maintenance & monitoring systems performance. Website support and maintenance. Maintaining Data backup Data Safety / security CCTV installation and maintenance Responding in a timely manner to service issues and requests. Budgeting for equipment and assembly costs Prepare PO for IT requirements, maintain invoice copy and proper documentation. Vendor management Maintain records/logs of repairs and fixes and maintenance schedule. Maintaining inventory of all IT assets of the company. IT Act & rules In-house Crewing software support Marlins Test Setup

Job Responsibilities:- Worked on Snypr which is a Big data based Security analytics tool which includes SIEM and UEBA and which detects advanced cyber threats. It combines log management. Worked on SIEM Implementation includes Incident management, SIEMAdministration/Installation/Configuration, Use case management, Threat models and Policy Configurations, Correlation rules, Data source onboarding, Log analysis and events monitoring, Dashboard Designing, Reports and Workflows. Handling Incidents like Phishing, UEBA, Networks, Endpoints, Applications, Banks Proprietary App Malwares, APTs etc. with critical, medium and high severity in Splunk Enterprise Security.Perform weekly Threat Hunting Exercises via Splunk by analyzing the logs (APIs, WAF, f/w, proxy, av, ad, endpoint, etc.) and prepare an executive summary report with all the informations IOCs,MITRE ATTACK TTPs. Setup Secure Syslog (TLS) on the RHEL7 platform. Setup Firewall Rules on RHEL7 platform. Knowledge on WAF. Strong Understanding of Network Security terminologies like DLP, IDS, IPS, CASB application security, endpoint security, data protection. Knowledge on networking concepts, protocols and networking devices. Knowledge on Vulnerability Management Knowledge on Splunk.Certification :-CEH V9 Splunk Enterprise Certified Architect CompTIA security certified

The position shall be accountable for the delivery, management and performance of the sales for the IT infrastructure sales and services in the assigned accounts/territory, including managing the long-term strategy and day-to-day operations of Company in the accounts/territory. The position reports to the Sales Director for the region in IndiaStrategy for Account ManagementOverall responsibility for strategic planning and New business development in the assigned Accounts/territory.Work closely with Presales and delivery teams to develop new opportunity & to cater existing/new Customers requirement'sIdentify customer segments to approach while communicating the specific value proposition for their business, use case, and workloadsDirectly accountable for sales, profitability and growth of net new business and related technologies in the territorySales PerformanceEnsure growth of Organization Business, in System Integration, in line with assigned budgetsOversee the long term sales growth and strategy in assigned TML accounts along with new business developmentDevelop new opportunities and sources of revenue generation in the assigned territoryDevelop focused Strategic Account Plans for named accountsEnd to end responsibility of managing sales deals and selling at the CXO LevelResponsible for coordinating tender/business proposals and technical presentations as per customer requirementsConsultative sales in the area of System IntegrationCreate mindshare and connects within the key OEM ecosystemImproving market coverage, profitability, customer satisfactionDevelop plans to build opportunities pipeline (to exceed 3 x order-to-go-target by mid-year)Sales Achievement: Achieve delivery of committed sales targets through active participation in reviewing sales opportunities, by networking with potential customers' senior management members and in driving the closure of the deals.