Vulnerability Assessment Jobs

We are seeking a highly skilled Cyber Security Engineer with 10 to 18 years of experience to join our team in Chennai. The ideal candidate will possess a strong background in protecting networks, systems, and data from cyber threats.**Key Responsibilities:**- **Threat Analysis and Mitigation:** Identify potential security threats and vulnerabilities, assess risks, and implement measures to mitigate them effectively. This ensures that sensitive information remains protected against evolving threats.- **System Monitoring and Maintenance:** Regularly monitor and maintain security systems and tools to ensure they function optimally. This includes updating software and applying security patches to safeguard against new vulnerabilities.- **Incident Response and Recovery:** Act promptly in the event of a security breach, investigating incidents, documenting findings, and implementing recovery plans to restore systems to normal operations.- **Security Policy Development:** Develop and enforce security policies and procedures that align with industry best practices. This helps cultivate a culture of security awareness throughout the organization.- **Training and Awareness Programs:** Conduct training sessions for staff on cybersecurity practices and the importance of maintaining security protocols, enhancing the overall security posture of the organization.**Required Skills and Expectations:**Candidates should have a degree in B.C.A, B.E, or a relevant professional qualification. In-depth knowledge of security protocols, risk assessment tools, and firewalls is essential. Familiarity with compliance requirements and standards such as ISO 27001, NIST, or GDPR is highly desirable. Strong analytical and problem-solving skills, along with excellent communication abilities, are critical for collaborating within teams and educating others on security matters.

We are looking for a proactive and detail-oriented SOC Analyst to join our Security Operations Center. The ideal candidate will be responsible for monitoring, detecting, analyzing, and responding to cybersecurity incidents using advanced tools such as SIEM, EDR, and threat intelligence platforms. This role plays a key part in defending the organizations IT infrastructure from cyber threats.Key Responsibilities:Monitor and analyze security alerts and events from SIEM and security tools.Investigate and respond to real-time threats, including malware, phishing, and intrusion attempts.Perform log analysis, correlate events, and escalate critical incidents.Work closely with the incident response team to contain and remediate security breaches.Maintain incident tickets and documentation of analysis and actions taken.Assist in tuning SIEM rules and maintaining threat detection playbooks.Stay updated with the latest vulnerabilities, TTPs (Tactics, Techniques, and Procedures), and threat intelligence.Required Skills:Experience with SIEM tools (e.g., Splunk, QRadar, Microsoft Sentinel).Understanding of cybersecurity principles, network protocols, and operating systems.Familiarity with tools such as EDR, antivirus, IDS/IPS, and firewalls.Basic scripting knowledge (Python, PowerShell) is a plus.Strong analytical, problem-solving, and documentation skills.Willingness to work in 24x7 shifts or rotational shifts if required.Qualifications:Bachelors degree in Computer Science, Information Security, or related field.13 years of experience in SOC or cybersecurity operations.Preferred certifications: CompTIA Security+, CEH, CySA+, or equivalent.

Job Overview: The Cybersecurity Project Coordinator ensures that cybersecurity projects are planned, executed, and completedwithin scope, time, and budget. This role works closely with cross-functional teams, including IT, riskmanagement, legal, and compliance departments, to implement and enhance security protocols and systems.Key ResponsibilitiesProject Management: Oversee multiple cybersecurity projects from initiation to completion. Develop and maintain project timelines, budgets, and schedules. Coordinate project resources, assign tasks, and monitor progress. Prepare and present regular project status reports to stakeholders.Risk Assessment and Compliance: Ensure all projects adhere to internal and external cybersecurity standards and regulations (e.g., GDPR,HIPAA). Conduct risk assessments and work with teams to mitigate identified threats.Stakeholder Communication: Act as the main point of contact between cybersecurity teams and other departments. Communicate cybersecurity project needs, progress, and outcomes effectively to non-technicalstakeholders.Coordination with Cybersecurity Teams: Work with IT security engineers, analysts, and other specialists to ensure security measures areimplemented as part of the project scope. Track project milestones and identify any barriers to success.Documentation and Reporting: Create detailed documentation for cybersecurity processes, procedures, and incident reports. Maintain project records for future reference and audit purposes.Continuous Improvement: Stay updated with the latest cybersecurity threats, technologies, and best practices. Provide feedback on project successes and areas of improvement to senior leadership.Skills & Qualifications: Educational Background: Bachelors degree in Cybersecurity, Information Technology, or a relatedfield. Experience: Proven experience in project management, preferably in cybersecurity or IT roles. Certifications: PMP (Project Management Professional), CISSP (Certified Information Systems SecurityProfessional, or equivalent, cybersecurity certifications. Skills:o Strong organizational and communication skills.o Familiarity with project management software (e.g., Microsoft Project, Asana, Jira).o Knowledge of cybersecurity principles and risk management frameworks.o Ability to work collaboratively in a team-oriented environment.o Basic understanding of IT infrastructure and security technologies (e.g., firewalls, encryption,intrusion detection systems). Flexible to working second and night shifts. Work location can be remote, WFH/Hybrid mode.Base Location: Hyderabad / Bangalore;

Role OverviewQuasar CyberTech is hiring a Senior Security Consultant with strong hands-on experience in Vulnerability Assessment and Penetration Testing (Web, API, Mobile, Network). Perform configuration audits for Network and Cloud Infrastructure. You will be leading technical assessments; handle client and stakeholders end to end ensuring quality deliverables.Key Responsibilities Perform detailed manual and automated VAPT for web, mobile, API, network and cloud environments. Perform Network Architecture, Configuration Audits (network devices), Firewall Rule Review, Database Security Analysis Conduct secure code review activity and collaborate with dev and infra teams for remediation support. Identify and validate vulnerabilities, prepare detailed technical and executive summary reports, along with mitigation reports. Manage end-to-end client engagements, including scoping, testing, reporting, and stakeholder communication. Mentor team members and contribute to research and development, and internal security improvement initiatives. Have an ownership attitude to resolve issues on own or with the help of othersTechnical Expertise Tools: Burp Suite, OWASP ZAP, Metasploit, Nmap, Nessus, Wireshark, Aircrack-ng, MobSF, Drozer etc. Frameworks: OWASP Top 10, NIST 800-115, PTES, ISO 27001, WASC Threat Classifications etc. Skill Secure Coding, Python, API & Cloud Security (AWS/Azure/GCP), DevSecOps etc. Advantage: Knowledge of Incident Response, CI/CD and automation pipelinesQualifications & Competencies Bachelors/Masters in Computer Science, Information Security, or related field Minimum 3.5+ years of penetration testing or security consulting experience Excellent communication with ability to clearly articulate thoughts, be convincing and, deliver presentation and training to management, Leadership skills with strong delivery ownership Enthusiastic and committed to the work Must have a valid passport and willingness to travel internationally (Middle East and other client sites)Preferred CertificationsCandidate must have industry-leading certifications like CEH (Practical)/OSCP/ GPEN/ GWAPT/ECSA/ CPENT/ CISSP or CISM LPT, CEPT or equivalent

Job Summary:We are looking for an experienced and highly motivated Cyber Security Engineer to join our IT team. The ideal candidate will be responsible for designing, implementing, and monitoring security measures to protect our systems, networks, and data from cyber threats. You should have a deep understanding of firewalls, SIEM systems, endpoint protection, and best practices in securing IT environments. Strong analytical skills and the ability to respond quickly to incidents are crucial.Key Responsibilities:Security Operations & Monitoring:Monitor, analyze, and respond to security incidents and threats using SIEM tools (e.g., Splunk, QRadar, Sentinel)Investigate and remediate alerts from endpoint protection, email security, and cloud security platformsSystem & Network Security:Design and implement secure network architectures, including segmentation, firewalls, IDS/IPSMaintain and enhance firewall configurations, web filters, DLP, and VPN accessConduct vulnerability assessments and manage patching/remediation processesThreat Management & Incident Response:Lead incident response activities, including investigation, containment, eradication, and reportingDevelop and maintain Incident Response Plans (IRP) and Security PlaybooksAnalyze malware, phishing attempts, and other attack vectorsPenetration Testing & Risk Assessment:Perform regular internal and external penetration testingCoordinate with third-party vendors for security audits and assessmentsEvaluate security posture and identify gaps, risks, or weaknessesGovernance, Risk & Compliance (GRC):Ensure compliance with relevant frameworks: ISO 27001, NIST, GDPR, PCI-DSS, etc.Develop, enforce, and review security policies, standards, and proceduresConduct security awareness training and phishing simulations for staffCloud Security:Secure cloud-based environments (AWS, Azure, Google Cloud) with IAM, encryption, and monitoring toolsConfigure security groups, access control, and ensure cloud compliance standards are metDocumentation & Reporting:Maintain accurate and updated documentation for all security processes and incidentsProvide regular security reports to senior management and support auditsRequired Skills & Qualifications:Education:Bachelors degree in computer science, Cybersecurity, Information Technology, or a related fieldMasters degree (preferred)Certifications (Preferred & Strongly Recommended):CISSP (Certified Information Systems Security Professional)CEH (Certified Ethical Hacker)CISM, CompTIA Security+, OSCP, or equivalentAzure Security Engineer Associate / AWS Security Specialty (for cloud environments)Experience:Minimum 3+ years in cybersecurity, with hands-on experience in:oSecurity architecture designoVulnerability managementoThreat intelligenceoSIEM administrationoCloud and hybrid security modelsTechnical Proficiency:Strong knowledge of network security, endpoint protection, encryption, PKIExperience with tools like Nessus, Burp Suite, Wireshark, MetasploitFamiliarity with Zero Trust models and multi-factor authentication (MFA) systemsSoft Skills:Excellent problem-solving and analytical skillsStrong written and verbal communicationAbility to work independently and lead security initiativesDetail-oriented with a proactive approach to cyber threatsWorking Conditions:May require working off-hours for incident response or critical patchingOn-call availability required in rotation for emergency security incidentsBenefits:Competitive salary + Performance-based incentivesCertification support and training programsHealth insurance and wellness benefitsOpportunity to work with the latest security technologies

EXPEREINCED ATLEAST TO HAVE EACH AND EVERY DETAIL ABOUT CNC AND VMC.ALL IDEA ABOUT MEASUREMENT DEVICES AND HOW TO ASSURE THE FINAL CHECK OF THE PRODUCT.ALSO SHOULD HAVE KNOWLEDGE ABOUT DESIGNS & DATA

Urgent Hiring: Senior Security Consultant(VAPT)Location: South Delhi, New DelhiJob Type: Full-Time, OnsiteExperience: 3-6 YearsJoining:ImmediateRoles and Responsibilities:- Conduct Vulnerability Assessments, Penetration Testing, Device Hardening, Application Security assessments, Log Review, Review of Documents, Network Monitoring and Reporting- Conduct and compile findings on new vulnerabilities, new tools for departmental use-Create project deliverables / reports and assist the immediate supervisor during submissions and client discussions-Abide by the project time lines and maintain project disciplineTechnical Skills Required : Experience in performing Network Security Assessment and vulnerability Assessment.Well versed with basics of TCP/ IP and Networking principles.Good understanding of OWASP top 10 and web Application security audits.Manual Penetration Testing skills and techniques are required besides automated tools and frameworks.Familiar working with Publicly available exploits codes.Hands on knowledge on Tools : Nmap, Kali Linux, Metasploit, Armitage , Maltego, Burp, Paros Proxy Nessus, nexpose, wireshark, sqlmap etc.Qualification:Bachelor or college degree in related field or equivalent work experienceCertified Ethical Hacker (CEH)Certifications such as OSCP (Offensive Security Certified Professional) / CPTC (Certified Penetration Testing Consultant) / License Penetration Tester (LPT) are highly desiredExpertise BurpSuite Pro, Nessus, Coverity, CodeSonar and network vulnerability scanning toolsOther requirements Excellent problem-solving/analytical skillsGood business communication skillsAbility to manage tight time frames and communicate effectively with peersFlexibility to adapt to changing demands and prioritiesHow to Apply: Interested candidates are invited to submit their resume to- v.tamanna@trojanhuntindia.com

Job Responsibilities:6+ Years of work experience in the Cyber security domain. (Specifically Application Security/Pen testing).Should have good knowledge of Mobile, Web application pen testing and secure coding practices.Should have experience in leading a penetration testing team.Strong exposure and working knowledge of popular application security standards including OWASP top 10, SANS Top 25, etc.Knowledge of rating standards such as CVSS, DREAD, STRIDE, etc.Should have knowledge of Threat modeling.Good working knowledge of Open Source security solutions.Should be an out-of-the-box thinker and propose solutions to complex security problems.Good with any scripting languages.Should have good communication skills and mentoring skills.Should be a cyber sec enthusiast who will willing to explore areas other than Application security/Pen testingShould have the zeal to explore other areas of cyber security apart from Appsec as and when the opportunity arises.Mandatory Skills: VAPT, Appsec, Threat Modelling, Mobile AppsecAdditional Skils:Should have the zeal to explore other areas of cyber security apart from Appsec as and when the opportunity arises.

In this role, as part of the global Data Protection & Response Team, you will: Responsible for all operational aspects of the GE Healthcare Insider Threat platform. Lead design and deployment of solution, manage data ingestion, implementing new functionality to meet business requirements. Work collaboratively with stakeholders (and the Insider Threat Leader) to support data ingestion, data modelling, playbook/policy design and production deployment for operational teams. Responsible for enabling and maintenance of all data sources and feeds to support the operational requirements of platform and downstream needs. Perform Hybrid work assisting Insider Analytics and associated functions around Data Loss Prevention. Provide technology support, maintenance of application functionality and integrations. Triage production issues, identify root cause and corrective actions. Dive into crisis situations and Production issues, trouble-shoot, engage stakeholders and own problem resolution. Manage service parameters around operational incidents and SLAs in partnership with platform service provider/vendors. Responsible for policy and content development on the platform to support Insider Threat team needs. Implement innovative ways of identifying threats to data using the platform and ensure aligned to industry best practices. Collect, monitor and analyze data produced by the tools to discover and discern trends, threats, and security risks associated with improper use of GE data. Ensure compliance with all regional legal requirements globally. Support tenant, tools, end-point and data migration efforts aligned with business spin-off. Manage stakeholder communication, balance of program/business priorities and communicate progress towards business objectives. Track outcomes and stakeholders satisfaction levels through established metrics against service level. Ensure lessons learned are collected and implemented.

Cyber Security SpecialistLocation: Hyderabad Job Type: Full-timeJob Description:We are seeking a Cyber Security Specialist to join our team. In this role, you will be responsible for designing, implementing, and maintaining security controls to protect the company's information systems from cyber threats. The ideal candidate has a strong understanding of cyber security concepts, excellent communication skills, and a proven track record of successfully implementing security controls.Responsibilities:Develop and implement security policies, procedures, and standardsMonitor and analyze security events and alerts from multiple sourcesIdentify and investigate potential security incidentsRespond to security incidents and follow incident response proceduresCollaborate with other teams to remediate security vulnerabilitiesConduct vulnerability assessments and penetration testingMaintain accurate records of all security events and incidentsIdentify trends and recommend security enhancements to prevent future incidentsQualifications:Bachelor's degree in Computer Science or related fieldAt least 1 years of experience in cyber security or related fieldStrong understanding of cyber security concepts, such as risk management, threat intelligence, and access controlFamiliarity with security frameworks, such as NIST and ISO 27001Excellent communication and interpersonal skillsProven ability to design and implement security controlsRequirements:Ability to work in a fast-paced environment and manage multiple prioritiesKnowledge of scripting and programming languages, such as Python and PowerShell, is a plusFamiliarity with cloud security and DevOps is a plusAbility to work independently and as part of a teamStrong organizational and time management skillsThank you for your interest in joining our team!

We are hiring here Anzen Technologies Private Limited for the position of Information Security Consultant.Job Title: Infosec Consultant. Level: L2Job Type: Full-Time Location: Mumbai.Key Roles & Responsibilities:Handling various security solutions listed below. Web Application Firewall. Cloud WAF. Cloud Security. Application Security Assessment. Mobile Application Security Testing. API Security Assessment.. Vulnerability Assessment and Penetration testingQualifications: A Bachelor's/ Masters degree in Computer science, Information Security, or a related field.Skills & ExperienceExperience: Minimum of 2 years' experience in Information security domain.Skills Required:Consultant must have hands-on experience in various areas;Web Application Security Assessment.Mobile Application Security Assessments.Secure Code Review.Threat Modelling.Secure Architecture Review.Configuration Audit.Firewall Rule Review.Network Vulnerability Assessments & Penetration Testing.Contact Person- Arpita Singh

. Conduct ISMS audit for clients Develop and maintain audit checklist and documents. Maintain active communication with clients to manage expectations, ensure satisfaction, make sure deadlines are met, and lead change efforts effectively. Maintain and enhance audit work paper templates. Conduct frequent testing of simulated cyber-attacks to look for vulnerabilities in the computer systems and take care of these before an outside cyber-attack. Performing both internal and external security audits. Making an audit Audit Report for ISO 27001, 27701, 22301, PCI DSS, SOC 2 and submission to senior manager. Providing the pre-audit committee with the audit findings. Monitoring the implementation of audit recommendations.

Good understanding of, and experience with Information Risk Management, IT Security and Compliance and Security Controls and AuditAdvanced understanding of internal and external IT security standards, SOX, PCI, SOC2/1, ISO27001 standards and relevant legal compliance aspects.Robust understanding of, and solid experiences with the impact of Security on application development and operations as well as the IT Infrastructure.Ability to promote high performance teams, working with inclusiveness and cultural diversity, across organizational boundaries.Good understanding of cloud security requirements and third-party control assurance.Ability to interface with different groups (Third parties, Business and IT) internal and external to IT (security) and to network globally across Group businesses, as well as with external groups.Technical knowledge & relevant experience in security domains /technologies related to:Infrastructure/Network securityIdentity and Access ManagementBusiness Impact AssessmentApplication securityData Leakage PreventionEnd-Point ProtectionWeb filtering technologies, Proxies and firewalls.Vulnerability Assessment / Penetration TestingKnowledge of Data Security Standards, Privacy PrinciplesDriving Platform / Application security and complianceAbility to foresee and identify mitigation strategies for RisksCandidate must also:Display excellent communicating and influencing skillsDisplay analytical and problem-solving skillsBe pro-active and self-motivatedDisplay strong interpersonal and negotiating skills with all levels of staff.Display Ability and eagerness to quickly learn new technologies.QualificationsA qualification in CISSP, CISA, CRISC or CISM

Security AnalystLocation- Chennai ( no work from home)0-2 years experience in Web Application testing & mobile Application testingGood communication skillsPreffered immediate joining

Professional experience developing and implementing new security systems, security programmes, protocols, and system maintenance- Strong written and oral communication skills, as well as the ability to communicate technical information to a non-technical audience, are required.- Extensive knowledge of data communications, as well as network experience with operating systems and tools.- Understanding of a wide range of current and emerging technologiesKnowledge of information security solutions, such as data loss prevention, intrusion detection and prevention, network security monitoring, and vulnerability management- Knowledge of Vulnerability Assessments And Penetration Testing For Web And NetworkKnowledge about Nessus, Nmap, Burp Suite, Advance IP etc Tools.- Good Understanding Of Owasp Top 10 And Application Security Audits- Understanding of security monitoring and identification concepts- Good Knowledge of Networking Concepts and Network Infra Audit- Good analytical, interpersonal skill- Cyber Security related certifications will add-on