Varutra Consulting Services

Kalyani Nagar, Pune

Varutra is looking for an ambitious and energetic Executive Inside Sales to help us to expand our clientele. You will be the face of the company and will have the dedication to create and apply an effective sales strategy. The goal is to drive sustainable financial growth through boosting sales and creating strong relationships with clients. Roles & Responsibilities: Identifying new sales leads. Develop a growth strategy focused both on financial gain and customer satisfaction. Conduct research to identify new markets and customer needs. Arrange business meetings with prospective clients. Promote the companys products/ services addressing or predicting clients objectives. Prepare contracts ensuring adherence to law established rules and guidelines. Keep records of sales, revenue, invoices etc. Provide trustworthy feedback and after-sales support. Build long-term relationships with new and existing customers. Requirements: Proven working experience as a Business development executive. Experience into selling of IT security consulting/ IT security products. Proven sales track record. Proficiency in MS office. Proficiency in English language. Market knowledge of Information security would be an added advantage. Communication and good negotiation skills. Ability to build rapport with customers. Time management and planning skills.

Roles & Responsibilities: Perform internal audits and ensure compliance with policies and external laws. Maintain the audit calendar & program and provide periodic reports to stakeholders. Improve reporting mechanisms for the audit function. Track remediation of any findings from internal or external assessments. Manage the audit risk assessment program minimize. Contribute to the data risk management program. Support the team in risk management activities organization. Assist with successful implementation and enforcement of security policies and procedures across old & new technologies / systems/ environments. Participate in the implementation of security initiatives. Support team to implement the GRC initiatives with respect to audit programs. Must have working knowledge of GDPR, Implementation, SOC2, ISMS. Mandatory skills: Information Security, Risk, IT GRC, Audit. 7+ years in an Information Security role with progressive experience in the following areas: Audits and assessments - information security, network security, application security, physical security, privacy etc. Information or IT risk management and compliance Knowledge of various standards like ISO 27K, COBIT, PCI-DSS, NIST, IT GRC etc. exposure to regulatory audits will be an added advantage. Understanding of Privacy regimes Application Security concepts from an audit perspective MS Office (Word, Excel, PowerPoint) Excellent organization, communication, and presentation skills with the right attitude Ability to multi-task General professional writing proficiency Experience in the services industry is mandatory. ISO 27001:2022 Certification Mandatory, CISA/CISM preferable but not mandatory. Having exposure on vendor & client management CISO responsibilities: Experience in developing CxO level dashboards , Cybersecurity Knowledge Leadership and Management Risk Management Security Strategy and Planning

Roles & Responsibility: Identifying new sales leads. Develop a growth strategy focused both on financial gain and customer satisfaction. Conduct research to identify new markets and customer needs. Arrange business meetings with prospective clients. Promote the companys products/ services addressing or predicting clients objectives. Prepare contracts ensuring adherence to law established rules and guidelines. Keep records of sales, revenue, invoices etc. Provide trustworthy feedback and after-sales support. Build long-term relationships with new and existing customers.Requirement: Proven working experience as a Business development executive into Cyber security services(Application security,SOC,Audit & Compliance) Experience into selling of IT security consulting/ IT security products. Proven sales track record. Proficiency in MS office. Proficiency in English language. Market knowledge of Information security would be an added advantage. Communication and good negotiation skills. Ability to build rapport with customers. Time management and planning skills.

The major focus will be on Application Penetration testing followed by Network Penetration Testing and Mobile Security assessments, Red Team Assessment, Phishing, IoT, Cloud Pen testing (Azure and AWS, Google Cloud), Cloud Configuration Audit, Architecture Review. The work involves Test Case Creation, Penetration Testing, Source code reviews, Report Creation & presentation to stakeholders along with operation and construction of tools to assist in these tasks. Well versed with OWASP Top Ten and WASC Threat Classifications Expertise in Vulnerability Assessment and Penetration Testing of Web Applications BusinessLogic based application testing Penetration testing of Mobile applications and websites. Exploitation of the issues found and presenting the impact occurred Source Code Reviews Well versed in Java Secure Code Review Well versed in OWASP Code Review concepts & identifiers Familiar with popular tools: Application Proxy: Burp suite, Paros, OWASP ZAP, WireShark, Vulnerability Scanners: IBM AppScan, HP WebInspect, Nessus, NTO Spider. Exploit Toolkits: Metasploit, Exploit DB etc Understanding of the nature and sources of security vulnerabilities, how to identify and exploit Sound Knowledge of TCP/IP protocol Stack, HTTP protocol, encoding standards, encryption technologies and development frameworks. Skills Mandatory: Application Security Testing/Penetration Testing (Web-based, Thick client, web services, Mobile) Network Security Testing/Penetration Testing (Network, OS, Databases etc) Static Code Analysis/ Secure Code Review