131 Aws Certified Security Specialist jobs in Delhi

Experience:- 8 years to 17 years.

- Location: All (Remote working)

- Experience: 8 to 14 years in the Security Domain

Notice Period:- Immediate Joiner only

Interview Rounds:-

1. Tech 1 round internal

2. Client Round 1

3. Client Round 2

Please find below updated details for Arlo Sr Security Requirement.

Arlo requirements we need to look for candidates with over 10 years of experience in SOC, VAPT, application security, compliance, and documentation.

2. The ideal candidate should be hands-on with L2 and L3 level tasks and have experience managing stakeholders with direct communication. rotating Shift 1 from 8 AM to 4 PM and Shift 2 from 2 PM to 11 PM.

Roles and Responsibilities

Candidate will work as a member of the Corporate Security Team and assist in various day to day operational activities such as:

• Analyze findings from vulnerability scans and penetration tests, work with stakeholders to prioritize and remediate issues.
• Develop and maintain custom testing scripts and tools to simulate real-world attack scenarios.
• Oversee security architecture and implement advanced security controls to mitigate identified threats.
• Conduct email security risk assessments and manage email security solutions (e.g., Proofpoint, Mimecast, Microsoft Defender, Cisco Email Security).
• Monitor, detect, and respond to phishing, spoofing, and email-based attacks.
• Manage and tune SIEM, EDR, DLP, and other security technologies.
• Guide the organization's incident response efforts and participate in forensic investigations.
• Conduct risk assessments and security reviews for infrastructure and applications, both on-prem and in cloud environments.
• Ensure compliance with industry regulations and security standards (e.g., ISO 27001, NIST, PCI-DSS, GDPR).
• Contribute to secure SDLC practices by integrating security into CI/CD pipelines.
• Support vulnerability lifecycle management and recommend remediation strategies to IT and DevOps teams.
• Mentor junior staff and drive security awareness programs organization wide.
• Drive Corporate Security Program based on the NIST CSF – Identify, Detect, Protect, Respond and Recover.
• Develops, publishes, and maintains a comprehensive organization-wide information privacy and security plans, policies, procedures, and guidelines.
• Function as primary liaison with auditors, internal teams and vendors and be the resident expert on systems and services in use for PCI compliance and reporting
• Responsible for managing all aspects of the Vulnerability Risk Management Program including vulnerability identification, analysis, remediation coordination and reporting.
• Lead the development, implementation, and maintenance of security policies, standards, and guidelines.
• Identify and Monitor Corporate Networks to determine if there have been any attacks. Analyze network traffic to identify anomalies and test information security controls for weaknesses.
• Design and implement safeguards to protect the system with the help of network engineers and other members of the Technology Services team.
• Respond to threats by taking mitigating actions to contain the activity and minimize damage. Participate in risk assessments and breach readiness exercises for incident management.
• Facilitate forensics analysis to determine the source of the threat. Document lessons learned as well as identify process improvements.
• Communicate security issues to management via reports, dashboards. Provide weekly metrics on overall security posture.
• Research emerging threats and work with the Security Operations Center (SOC).
• Drive the Third-party vendor security evaluation.
• Participate in the security toll-gates on SSDLC projects.
• Implement innovative solutions to scale the program with emphasis on automation where applicable.

Qualifications

Basic Qualifications:

• Bachelor's Degree in Business, Computer Science or in a STEM major (Science, Technology, Engineering, or Math).
• Minimum of 8 years of experience in Information Security
• Experience in at least one full lifecycle supporting PCI compliance is a must have
• Experience in managing and maintaining a vulnerability management program using Qualys is a must have
• Experience in developing content in Splunk – searches, alerts (including POC and tuning), dashboards, Apps.
• Experience of Security Incident and Event Management (SIEM) tools (Splunk) – ingesting data (Forwarders, HTTP Event Collectors, add-ons), troubleshooting Splunk Installation.
• Experience in Endpoint security (EDR) – Detection and Response. Help create policies and SOP for Response workflow. Experience in Cortex XDR preferred.
• Experience in Security evaluation of third-party tools.
• Experience in Email Security and running phishing campaign
• Experience in Incident Management
• Experience in system and network security.
• Experience in Network Penetration testing.
• Knowledge of software development, computer networks and Internet threat activity.
• Programming experience in python, Perl and HTML/JS
• Previous enterprise or platform/cloud vulnerability management experience and Cloud Security is a plus
• Excellent written and verbal communication skills, including experience engaging with executive and technical audiences.
• Must be able to work in a fast paced, high profile environment.

Experience:- 8 years to 17 years.

- Location: All (Remote working)

- Experience: 8 to 14 years in the Security Domain

Notice Period:- Immediate Joiner only

Interview Rounds:-

1. Tech 1 round internal

2. Client Round 1

3. Client Round 2

Please find below updated details for Arlo Sr Security Requirement.

Arlo requirements we need to look for candidates with over 10 years of experience in SOC, VAPT, application security, compliance, and documentation.

2. The ideal candidate should be hands-on with L2 and L3 level tasks and have experience managing stakeholders with direct communication. rotating Shift 1 from 8 AM to 4 PM and Shift 2 from 2 PM to 11 PM.

Roles and Responsibilities

Candidate will work as a member of the Corporate Security Team and assist in various day to day operational activities such as:

• Analyze findings from vulnerability scans and penetration tests, work with stakeholders to prioritize and remediate issues.
• Develop and maintain custom testing scripts and tools to simulate real-world attack scenarios.
• Oversee security architecture and implement advanced security controls to mitigate identified threats.
• Conduct email security risk assessments and manage email security solutions (e.g., Proofpoint, Mimecast, Microsoft Defender, Cisco Email Security).
• Monitor, detect, and respond to phishing, spoofing, and email-based attacks.
• Manage and tune SIEM, EDR, DLP, and other security technologies.
• Guide the organization's incident response efforts and participate in forensic investigations.
• Conduct risk assessments and security reviews for infrastructure and applications, both on-prem and in cloud environments.
• Ensure compliance with industry regulations and security standards (e.g., ISO 27001, NIST, PCI-DSS, GDPR).
• Contribute to secure SDLC practices by integrating security into CI/CD pipelines.
• Support vulnerability lifecycle management and recommend remediation strategies to IT and DevOps teams.
• Mentor junior staff and drive security awareness programs organization wide.
• Drive Corporate Security Program based on the NIST CSF – Identify, Detect, Protect, Respond and Recover.
• Develops, publishes, and maintains a comprehensive organization-wide information privacy and security plans, policies, procedures, and guidelines.
• Function as primary liaison with auditors, internal teams and vendors and be the resident expert on systems and services in use for PCI compliance and reporting
• Responsible for managing all aspects of the Vulnerability Risk Management Program including vulnerability identification, analysis, remediation coordination and reporting.
• Lead the development, implementation, and maintenance of security policies, standards, and guidelines.
• Identify and Monitor Corporate Networks to determine if there have been any attacks. Analyze network traffic to identify anomalies and test information security controls for weaknesses.
• Design and implement safeguards to protect the system with the help of network engineers and other members of the Technology Services team.
• Respond to threats by taking mitigating actions to contain the activity and minimize damage. Participate in risk assessments and breach readiness exercises for incident management.
• Facilitate forensics analysis to determine the source of the threat. Document lessons learned as well as identify process improvements.
• Communicate security issues to management via reports, dashboards. Provide weekly metrics on overall security posture.
• Research emerging threats and work with the Security Operations Center (SOC).
• Drive the Third-party vendor security evaluation.
• Participate in the security toll-gates on SSDLC projects.
• Implement innovative solutions to scale the program with emphasis on automation where applicable.

Qualifications

Basic Qualifications:

• Bachelor's Degree in Business, Computer Science or in a STEM major (Science, Technology, Engineering, or Math).
• Minimum of 8 years of experience in Information Security
• Experience in at least one full lifecycle supporting PCI compliance is a must have
• Experience in managing and maintaining a vulnerability management program using Qualys is a must have
• Experience in developing content in Splunk – searches, alerts (including POC and tuning), dashboards, Apps.
• Experience of Security Incident and Event Management (SIEM) tools (Splunk) – ingesting data (Forwarders, HTTP Event Collectors, add-ons), troubleshooting Splunk Installation.
• Experience in Endpoint security (EDR) – Detection and Response. Help create policies and SOP for Response workflow. Experience in Cortex XDR preferred.
• Experience in Security evaluation of third-party tools.
• Experience in Email Security and running phishing campaign
• Experience in Incident Management
• Experience in system and network security.
• Experience in Network Penetration testing.
• Knowledge of software development, computer networks and Internet threat activity.
• Programming experience in python, Perl and HTML/JS
• Previous enterprise or platform/cloud vulnerability management experience and Cloud Security is a plus
• Excellent written and verbal communication skills, including experience engaging with executive and technical audiences.
• Must be able to work in a fast paced, high profile environment.

Job description

As a Security Engineer - VAPT, you will be responsible for conducting comprehensive security assessments, identifying vulnerabilities, and implementing effective remediation strategies. Leveraging your expertise in penetration testing and ethical hacking, you will play a key role in enhancing the security posture of our clients' systems and networks. This position offers an exciting opportunity to work on challenging projects, collaborate with talented professionals, and contribute to the advancement of cybersecurity practices.

Key Responsibilities:

• Perform end-to-end Vulnerability Assessment and Penetration Testing (VAPT) for clients' IT infrastructure, applications, and networks.
• Conduct thorough security assessments using industry-standard tools and methodologies, including but not limited to, Nmap, Nessus, Metasploit, Burp Suite, and OWASP.
• Identify and exploit security vulnerabilities to assess the potential impact on clients' systems and data.
• Prepare detailed assessment reports outlining findings, risk levels, and recommended remediation measures.
• Collaborate with clients' IT teams to prioritize and address identified security issues in a timely manner.
• Develop and implement custom scripts or tools to enhance testing capabilities and automate repetitive tasks.
• Stay abreast of emerging security threats, vulnerabilities, and industry best practices to continually improve testing methodologies.
• Provide guidance and mentorship to junior security engineers, fostering a culture of knowledge sharing and skill development within the team.

Requirements:

• Bachelor's degree in Computer Science, Information Technology, or related field.
• 2+ years of experience in cybersecurity, with a focus on Vulnerability Assessment and Penetration Testing.
• Proficiency in using tools such as Nmap, Nessus, Metasploit, Burp Suite, and OWASP.
• Hands-on experience with various operating systems, including Windows, Linux, and Unix.
• Strong understanding of network protocols, web application architecture, and common security vulnerabilities.
• Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP), or similar certifications preferred.
• Excellent analytical skills and attention to detail, with the ability to prioritize and manage multiple tasks effectively.
• Effective communication skills, both verbal and written, with the ability to convey technical concepts to non-technical stakeholders.
• Proven track record of delivering high-quality security assessments and actionable recommendations

Location: Hyderabad / Bangalore (Onsite)

Experience: 5+ Years

Key Responsibilities

• Proactively utilize security engineering tools to identify, analyze, and mitigate network & security risks.
• Design, develop, and implement security measures using specialized tools in line with cybersecurity best practices.
• Build and support network segmentation capabilities, including defining the granularity of segmentation from a threat-led perspective (application, environment, and network level).
• Perform attack path mapping and develop effective mitigation strategies.
• Work with Web Gateways, Endpoint Detection & Response (EDR) systems, and SIEM platforms to monitor, detect, and respond to security incidents.
• Continuously research and evaluate emerging cybersecurity threats, tools, and frameworks to improve resilience.

What We Offer

• Opportunity to work on cutting-edge cybersecurity challenges.
• Collaborative work environment with a focus on innovation and problem-solving.
• Competitive compensation and career growth opportunities.

Location: Hyderabad / Bangalore (Onsite)

Experience: 5+ Years

Key Responsibilities

• Proactively utilize security engineering tools to identify, analyze, and mitigate network & security risks.
• Design, develop, and implement security measures using specialized tools in line with cybersecurity best practices.
• Build and support network segmentation capabilities, including defining the granularity of segmentation from a threat-led perspective (application, environment, and network level).
• Perform attack path mapping and develop effective mitigation strategies.
• Work with Web Gateways, Endpoint Detection & Response (EDR) systems, and SIEM platforms to monitor, detect, and respond to security incidents.
• Continuously research and evaluate emerging cybersecurity threats, tools, and frameworks to improve resilience.

What We Offer

• Opportunity to work on cutting-edge cybersecurity challenges.
• Collaborative work environment with a focus on innovation and problem-solving.
• Competitive compensation and career growth opportunities.

Location: Hyderabad / Bangalore (Onsite)

Experience: 5+ Years

Key Responsibilities

• Proactively utilize security engineering tools to identify, analyze, and mitigate network & security risks.
• Design, develop, and implement security measures using specialized tools in line with cybersecurity best practices.
• Build and support network segmentation capabilities, including defining the granularity of segmentation from a threat-led perspective (application, environment, and network level).
• Perform attack path mapping and develop effective mitigation strategies.
• Work with Web Gateways, Endpoint Detection & Response (EDR) systems, and SIEM platforms to monitor, detect, and respond to security incidents.
• Continuously research and evaluate emerging cybersecurity threats, tools, and frameworks to improve resilience.

What We Offer

• Opportunity to work on cutting-edge cybersecurity challenges.
• Collaborative work environment with a focus on innovation and problem-solving.
• Competitive compensation and career growth opportunities.

Job description

As a Security Engineer - VAPT, you will be responsible for conducting comprehensive security assessments, identifying vulnerabilities, and implementing effective remediation strategies. Leveraging your expertise in penetration testing and ethical hacking, you will play a key role in enhancing the security posture of our clients' systems and networks. This position offers an exciting opportunity to work on challenging projects, collaborate with talented professionals, and contribute to the advancement of cybersecurity practices.

Key Responsibilities:

• Perform end-to-end Vulnerability Assessment and Penetration Testing (VAPT) for clients' IT infrastructure, applications, and networks.
• Conduct thorough security assessments using industry-standard tools and methodologies, including but not limited to, Nmap, Nessus, Metasploit, Burp Suite, and OWASP.
• Identify and exploit security vulnerabilities to assess the potential impact on clients' systems and data.
• Prepare detailed assessment reports outlining findings, risk levels, and recommended remediation measures.
• Collaborate with clients' IT teams to prioritize and address identified security issues in a timely manner.
• Develop and implement custom scripts or tools to enhance testing capabilities and automate repetitive tasks.
• Stay abreast of emerging security threats, vulnerabilities, and industry best practices to continually improve testing methodologies.
• Provide guidance and mentorship to junior security engineers, fostering a culture of knowledge sharing and skill development within the team.

Requirements:

• Bachelor's degree in Computer Science, Information Technology, or related field.
• 2+ years of experience in cybersecurity, with a focus on Vulnerability Assessment and Penetration Testing.
• Proficiency in using tools such as Nmap, Nessus, Metasploit, Burp Suite, and OWASP.
• Hands-on experience with various operating systems, including Windows, Linux, and Unix.
• Strong understanding of network protocols, web application architecture, and common security vulnerabilities.
• Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP), or similar certifications preferred.
• Excellent analytical skills and attention to detail, with the ability to prioritize and manage multiple tasks effectively.
• Effective communication skills, both verbal and written, with the ability to convey technical concepts to non-technical stakeholders.
• Proven track record of delivering high-quality security assessments and actionable recommendations

Job Title: Security Engineer – Email Security Specialist

Location: Remote

Experience Required: 5 to 10 years

Job Summary:

We are seeking a highly skilled and experienced Security Engineer with deep expertise in email security , specifically with Mimecast and Cofense Triage & Vision . The ideal candidate will play a critical role in protecting our organization from email-based threats and enhancing our cybersecurity posture.

Key Responsibilities:

• Design, implement, and manage email security solutions using Mimecast and Cofense.
• Monitor, analyze, and respond to phishing and email-based threats using Cofense Triage & Vision.
• Collaborate with incident response teams to investigate and remediate email security incidents.
• Develop and maintain email security policies, procedures, and best practices.
• Conduct threat hunting and analysis to identify emerging email threats.
• Provide technical guidance and support to internal teams on email security matters.
• Generate reports and metrics to track email threat trends and security posture.

Required Skills & Qualifications:

• 3+ years of hands-on experience with Mimecast email security solutions.
• Proven experience with Cofense Triage & Vision tools.
• Strong understanding of email threat vectors, phishing campaigns, and mitigation strategies.
• Solid foundation in cybersecurity principles and practices.
• Experience with SIEM tools, threat intelligence platforms, and incident response.
• Excellent analytical, problem-solving, and communication skills.
• Relevant certifications (e.g., CEH, CISSP, CISM) are a plus.

Preferred Qualifications:

• Experience working in a global or enterprise environment.
• Familiarity with other email security platforms and threat detection tools.
• Ability to work independently and collaboratively in a fast-paced environment.