Security Specialist Job Vacancies in Hyderabad

Job Title: Cyber Security Specialist TRO GRC(ERM).Roles & Responsibilities:Experience, education, skills, licensure, or training required:The Cybersecurity Specialist must be self-motivated, be a great team player who values results,be professional, and be well-rounded technically. Should be able to conduct a guide and conduct an audit acrosscybersecurity frameworks, works ISO 27001, CMMC, CMMI, and FAIR (factor analysis of information risk). Abilityto conduct risk assessments and audits to support the above framework. Work with all areas of businessunits, IT departments, and third parties, guiding areas of process improvement surroundingpolicy, procedures, and standards for the above frameworks. Interface with team members, departments, and outside associates. Can work directly with all levels ofmanagement and other corporate team members in person as needed. Work with all levels of users and management levels, while being able to understand business needsand communicate necessary IT Security and compliance requirements and needs. Have an extensive knowledge of the development of enterprise-level policies, standards, and proceduresand the ability to determine what is needed and communicate it professionally in writing. learn to analyze software, networks, and scan data to identify vulnerabilities to support compliancerequirements. Assist with and implement process improvement to support IT Security, IT, and GRC requirements toSupport Risk and Compliance Audits. Oversee, develop, and provide guidance where needed for compliance requirement programs, RiskAssessments and audits. Prior experience defining risk management framework and leading implementation. Needs to understand common risk management frameworks and risk assessment approaches. Identifies key risks in business units, Sites & actions to mitigate these risks. Identifies operational control weaknesses. Has rolled out risk management across business units periodically Monitored remediation programs, ensuring root causes of operational risk issues Review and develop risk policies in accordancePreferred Experience/Skills:Candidate must have 5-6 years experience managing enterprise-level Security Audit and Complianceand/or Risk Management programs with successful results. This person must communicate well with themanagement and above, both verbally and in writing, while balancing the business needs and securityrequirements. Experience working in the Big Four Auditing Firms or other Risk managementpreferred.Education: Graduate/postgraduate in any discipline. Certification in CISA, Auditor certification inISO27001, CMMI, CMMC;

Fulltime role WAF Implementation SpecialistLocation: Fully Remote (India)Experience: 815 YearsSalary Range: 10,00,000 40,00,000 per annumNotice Period: Immediate to 30 daysVacancies: 3Position OverviewWe are seeking a highly skilled WAF Implementation Specialist to join our team in designing and implementing robust Web Application Firewall (WAF) protection across a multi-cloud environment. The ideal candidate will bring hands-on expertise with leading WAF solutions and a deep understanding of cloud security best practices to enhance our security posture.ObjectiveAs a WAF Implementation Specialist, you will augment our internal Efficacy and Security Engineering teams by providing expert consulting services. Your focus will be on tuning and efficacy testing of WAF solutions, including Akamai, F5, and cloud-native WAFs across at least two of the major cloud service providers (AWS, Azure, GCP). This is a professional services role emphasizing hands-on rule tuning, data analysis, false positive reduction, and control efficacy validation in production-like environments, not platform engineering or infrastructure setup.Key ResponsibilitiesPerform hands-on tuning of Akamai and F5 WAF solutions (minimum one project each).Create custom WAF rules and optimize OWASP rule sets, with a focus on F5 configurations.Analyze logs and perform data-driven tuning based on real-world traffic to reduce false positives.Tune and optimize cloud-native WAFs for at least two of AWS, Azure, or GCP environments.Conduct efficacy testing in collaboration with internal teams, recommending adjustments based on findings.Deliver practical, data-backed solutions grounded in real-world experience, avoiding purely theoretical or vendor-trained approaches.Required Skills and Experience815 years of professional experience in cybersecurity, with a focus on WAF implementation and tuning.Proven hands-on experience with Akamai and F5 WAF solutions (minimum one project each).Expertise in custom rule creation, OWASP rule optimization, and false positive mitigation.Strong log analysis skills and experience with data-driven WAF tuning.Familiarity with cloud-native WAFs across at least two of AWS, Azure, or GCP.Ability to collaborate effectively with internal teams to validate and enhance WAF efficacy.Practical, real-world experience in WAF tuning and security engineering, beyond vendor certificationsWork remotely from anywhere in India with a flexible, always-remote setup.Collaborate with a dynamic team at Kiya AI, a leader in innovative AI-driven solutions.Contribute to a high-impact project securing a multi-cloud environment.Competitive salary range of 10,00,00040,00,000, based on experience.How to ApplyIf you are a seasoned WAF Implementation Specialist ready to make an immediate impact, wed love to hear from you! Please submit your resume along with current and expected fulltime salary.ThanksYogi SinghYogisingh@manasthtech.com

Dear Candidates,Greetings from Rightfit Resources!We are hiring for the following role:**Cyber Security Engineer****Salary**: 15,000 to 60,000 per month**Qualification**: Fresher / Experienced**Role Responsibilities**:- Develop and implement security measures to protect networks and systems.- Monitor and respond to security breaches and incidents.- Conduct vulnerability assessments and penetration testing.**Key Skills**:- Proficiency in network security protocols and tools.- Knowledge of cyber security standards and best practices.- Strong analytical and problem-solving abilities.If you are passionate, motivated, and looking to join a dynamic team, we want to hear from you! Apply now and take your career to the next level with Rightfit Resources.**How to Apply**: [Job Apply](https://forms.gle/Z5AttdqEpRC2VCZ6A)For more information, visit our [official website](https://rightfitresources.com).Note: Only shortlisted candidates will be contacted for the interview process.

Job Title: Cybersecurity Sr. Specialist Incident ResponseRole Overview: The Cybersecurity Specialist is responsible for the Incident Response Activity. This role will help develop innovative andEffective procedures for the Security Operations Center to enhance response time, coordination, and incident responseoperations, and built a world-class team of Cyber Security Incident Response. Train staff on security operations concepts,develop incident response management process, write correlations, and integrate intelligence data into monitoring andoperations activities.Roles & Responsibilities:This person will support the Information Security department's goals and objectives by addressing escalations, and theevaluation of technology controls providing key insight and research in new threats, vulnerabilities, and mitigationtechniques. In this role, they will take the lead in proposing solutions to improve or reduce risk exposure from the overallthreat landscape and improve the resilience and readiness of security technologies and processes, which ensure theconfidentiality, integrity, and availability of the organization's assets, information, data, and IT services in an efficientmanner. Develop and execute security incident response plans and cyber forensic investigations to investigate allreported security incidents. Develop comprehensive incident reports and investigation summaries. Develop and collect intelligence to proactively detect and identify high-confidence threats to the brand, serviceinfrastructure, and enterprise users and systems. Responsible for analyzing/validating security control requirements and tuning, defining the mitigation rules,scripting, and performing changes or mitigating attacks, and assisting with troubleshooting support related toany issues that may arise from security detection or protection technologies. Assist with reviewing existing tools, applications, and processes to help strengthen and optimize current securitycapabilities, as well as identifying any gaps or technical solutions to further enhance the team's effectiveness. Communicate problems and solutions verbally and in written form to peers and management. Compliance and governance: help achieve compliance, identify compliance initiatives, and promote appropriatesecurity policies. Lead analysis and review security events for anomalous activity, collaborate with respective peer groups to takeappropriate action to safeguard company information assets against current and foreseen threats. Lead the exploration of practical security solutions to address emerging threats and compliance requirements,including design and implementation of recommended solutions.Preferred Experience/Skills: 6+ years' experience with Incident Response Experience in a 24x7 global enterprise, preferably in the healthcare industry. SANS GIAC certifications Experience managing or maintaining malware analysis sandboxes. Knowledge of malware analysis tools Python and/or PowerShell scripting Knowledge of LogRhythm products or other SIEM tools Excellent communication and interpersonal skillsIncident Response2 Revised: 8/2022 Understanding of the business and the ability to assess and address risk without negatively impacting thebusiness. Ability to identify and analyze malicious code. In-depth understanding of Windows operating systems Ability to evaluate exploit code in relation to existing security controls. Strong knowledge of networking technologies (TCP/IP, HTTP, SMTP, etc.) Strong knowledge of web application vulnerabilities and solutions Strong knowledge of Windows operating systems Strong knowledge of the functions of various security infrastructure, including firewalls,Intrusion Prevention Systems, Proxy Servers, Security Event Managers, VPNs General knowledge of network and systems forensics. In-depth knowledge of incident response processes and procedures. Ability to provide 24-hour on-call support on a rotating basis.Work Location: Bangalore/ Hyderabad;