3,839 Blockchain Security Specialist jobs in India

Designation - Information Security Specialist

Location - Address: 4th Floor, NCC Windsor, International Airport Road, opposite Flying Club, Yashoda Nagar, Jakkur, Bengaluru, Karnataka

Job Type: Full Time

Job Summary:

We are seeking a skilled and proactive Information Security Specialist to join our Internal IT

team. This role will be pivotal in developing, streamlining, and maintaining the

organisations Information Security Management System (ISMS) and leading the

implementation of ISO 27001 standards and the regulations that the business needs to

comply with, like GDPR, DPDP Act. The ideal candidate will have a strong understanding of

information security frameworks, risk management, and compliance requirements.

Key Responsibilities :

• Lead the development, implementation, and maintenance of the organizations

ISMS in alignment with ISO 27001 standards.

• Conduct gap analysis and risk assessments to identify vulnerabilities and

recommend mitigation strategies.

• Collaborate with cross-functional teams to define and document security policies,

procedures, and controls.

• Drive ISO 27001 certification readiness, including internal audits, corrective actions,

and continuous improvement initiatives.

• Monitor compliance with internal security policies and external regulatory

requirements.

• Provide training and awareness programs to employees on information security

best practices.

• Stay updated with the latest security trends, threats, and technologies to ensure

proactive risk management.

• Support incident response planning and execution, including post-incident analysis

and reporting.

• Maintain documentation and evidence required for audits and certification

processes.

• Develop and maintain a risk register and ensure timely mitigation of identified risks.
• Coordinate with external auditors and consultants during certification and

surveillance audits.

• Evaluate and implement security tools and technologies to enhance the

organizations security posture.

• Perform regular vulnerability assessments and penetration testing coordination.
• Ensure secure configuration and hardening of IT infrastructure and applications.
• Support data classification and data protection initiatives across the organization.
• Assist in business continuity and disaster recovery planning from a security

perspective.

• Track and report key performance indicators (KPIs) and metrics related to

information security.

• Participate in change management processes to assess security impacts of new

projects and technologies.

Desired Profile :

• Bachelors degree in information technology, Cybersecurity, Computer Science, or a

related field.

• Professional certifications such as ISO 27001 Lead Implementer, CISSP, CISM, CISA,

or equivalent.

• Minimum 5 years of experience in information security, with at least 2 years

focused on ISMS and ISO 27001 implementation.

• Strong understanding of security governance, risk management, and compliance

frameworks.

• Experience conducting internal audits and managing external audit processes.
• Familiarity with regulatory requirements such as GDPR, HIPAA, or other relevant

standards.

• Hands-on experience with security tools and technologies (e.g., SIEM, DLP,

vulnerability scanners, endpoint protection). Understanding of firewalls, proxies,

SIEM, antivirus, and IDS/IPS concepts.

Ability to identify and mitigate network vulnerabilities and explain how to avoid

them.

• Knowledge of cloud security principles and controls (Azure, MS Purview, MS

Defender).

• Strong analytical and problem-solving skills.
• Excellent communication, presentation, and documentation abilities.
• Ability to manage multiple projects and priorities in a dynamic environment.
• Experience in developing and delivering security awareness training programs.
• Sound knowledge of identity and access management and deploying tools to

manage single sign-on.

• Sound understanding of IT infrastructure with significant hands-on experience in

cloud platforms.

• Ability to work effectively & guide technical team members. Highly self-motivated;

able to operate autonomously in a dynamic environment

Why Join Us:

• Be part of a fast-paced, customer-focused IT team.
• Gain hands-on experience with leading enterprise SaaS and endpoint management tools.
• Opportunity to grow your skills and advance your career through continuous learning.

About the Company:Ample is a 28 years old organisation. What does it mean for you? We are a stable organisation with with over 28 years of experience in SI / IT - in an environment where companies rarely cross 10.• We have built trusting relationships - with team members, customers and partners, several of them for over a decade, and many over two decades.• We have navigated diverse challenges, disruptions and have navigated them all, and emerged triumphant.

The foundation for future growth is on the following foundations: Globally revered brands in partnerships with Ample - in the enterprise and retail industry• You would be representing a brand that the market has revered and valued over two decades• We aspire to grow at a trailblazing pace over the next 5 years, and reach USD 1 Billion . This will need leaders who can take the mantle of responsibility towards this opportunity. • Our current enterprise base of 1500 customers is spread across the country and will become the core of our growth engine

We live our vision and values: Our customers and team members experience this every day, making it a place to be for anyone engaging with us We have an open culture where people are expected to focus on what-is-right instead of who-is-right. Feedback, suggestions and comments are encouraged, and acted upon. Anyone can speak to anyone in the organisation.

Information Security Specialist

Epiroc has an Information Security function that develops and improves the information security within Epiroc. This is a great opportunity to be part of expanding a function and creating new ways of working not just administering existing structures.

Join our team

As an Information Security Specialist, you will be part of the central Information Security organization with the objective of supporting the whole Epiroc organization and to reduce risk and security exposures across the Epiroc Group. You will report to the Head of Information Security.

Your mission

The mission for the role as an Information Security Specialist is to understand the threat landscape, improve the effectiveness of Epiroc's Cyber Security Program and protect business assets.

You also need to help identifying information security risks and required mitigating activities. Other important activities are talking to the business to understand their needs and combine those with our security strategy to give advice to the organization in information security matters. Raising awareness and educating employees and business partners to improve activities related to cyber risk management is also an important part.

As our Information Security Specialist, you will:

• Participate in risk assessments to reduce risk and security exposure for Epiroc
• Participate in the planning of information security risk assessments to examine and verify security capabilities and controls related to Epiroc's information assets
• Communicate risk assessment findings and provide risk remediation guidance to key stakeholders
• Identify opportunities to improve risk posture and give advice for risk mitigation
• Develop and maintain risk management standards, processes and templates.
• Participate in developing the Information Security Management System (ISMS)
• Participate in developing and delivering Security Awareness Training
• Participate in developing and delivering Supply Chain security assessments
• Manage information security projects
• Assist in M&A Activities to evaluate information security requirements
• Participate in improving Information Ownership & Classification
• Assist in developing intellectual property Asset Management
• Supporting the business in creating Business Impact Analyses
• Business Continuity support
• Participate in improving our Threat Intelligence and in monitoring & reporting information security KPIs
• Liaise with the IT Security team

Your profile

For this role we would like to see that you have a Bachelor's Degree in Business Information Systems, Cybersecurity, Computer Science, or a related field. Or if you have equivalent work experience.

You have at least 3-5 years' experience in the field.

High level of both verbal and written English. Additional languages are a plus

Knowledge of regulatory compliance, including information security management frameworks (e.g., ISF Standard of Good Practice, NIST CSF, ISO2700x, SANS Top 20 Critical Security Controls, SOX, COBIT), is preferred.

Security certifications such as CISSP, CISA or CISM is a plus

As for your personal skills we are looking for someone who has great communication and presentation skills. You have the ability to translate technical language into business terms, work independently, establish plans, report status and deliver according to plan. You also have a great business understanding together with analytical skills.

Location and travel

The location for this position is in Bangalore, India.

Global travel may occur.

Life at Epiroc

By joining our team, you can expect an atmosphere of creativity, innovation, and workplace diversity. You will be a part of a group of skilled, dedicated, and helpful colleagues who live by our core values: Collaboration, Commitment, and Innovation. We work in a global environment with over 113 different nationalities

In addition to the fact that we have a culture that is characterized by development combined with having a good balance between work and leisure, there are some things that makes us a little extra proud to work at Epiroc:

• Global career opportunities
• Epiroc University, for your own competence development
• Community involvement
• Benefits package, which amongst other things include flexible working hours and bonus.

Key Responsibilities

Define and oversee the information security strategy, policies, and roadmap aligned with business goals.

Act as a trusted advisor to executive leadership, the board, and stakeholders on cybersecurity risks and business impacts.

Lead risk assessments, security audits, and compliance initiatives (ISO 27001, NIST, HIPAA, GDPR, PCI DSS, etc.).

Develop and manage incident response plans, business continuity, and disaster recovery strategies.

Provide ongoing monitoring and reporting on the effectiveness of the security program.

Advise on the selection and implementation of security tools, technologies, and managed services.

Establish and enforce third-party/vendor risk management frameworks.

Deliver security awareness and training programs for employees and executives.

Ensure that cybersecurity practices are integrated into IT operations, product development, and business processes.

Represent the organization in client, partner, and regulatory discussions related to information security.

Recognized industry certifications (e.g., CISSP, CISM, CISA, CCISO, ISO 27001 Lead Implementer/Lead Auditor).

Hands-on familiarity with security domains: cloud, network, identity & access management, application security, threat intelligence, and SOC operations.

Job ID: R

Full/Part-Time: Full-time

Regular/Temporary: Regular

Listed:

Location: Bangalore

Job Title: Information Security Specialist, AVP

Location: Bangalore/ Pune, India

Role Description

Information Security is responsible for preventing IT-based crime, hacking, intentional or inadvertent modification, disclosure, or destruction to the organization's information systems and IT assets and intellectual property. The focus of the role is to ensure highly professional and productive procedures, policies and processes are in place, and aligned and agreed with relevant stakeholders. Roles within Information Security may cover one or more areas of speciality:

• Identity & Access Management (which may include, for example, authentication; access management & control; recertification etc.)
• Information Security ("IS") Operations (which may for example include, cyber threat operations; cyber forensics, protection against data leakage etc.)
  •IS Technology (which may include IS architecture, IS engineering, cryptographic services etc.).

Work includes:

• Identifying and evaluating potential areas of Information Security threat by assessing the probability and impact, and implementing associated mitigations Monitoring and contributing to the implementation of the Information Security strategy
• Evaluating the adequacy and effectiveness of internal controls relating to Information Security risks
• Ensuring appropriate procedures, policies and processes are in place, and aligned and agreed with relevant stakeholders
• Developing appropriate, pragmatic strategies to deliver effective controls and Information Security management objectives and implementation across the bank
• Managing client relationships and ensuring management focus on the Information Security agenda

What we'll offer you

As part of our flexible scheme, here are just some of the benefits that you'll enjoy

• Best in class leave policy
• Gender neutral parental leaves
• 100% reimbursement under childcare assistance benefit (gender neutral)
• Sponsorship for Industry relevant certifications and education
• Employee Assistance Program for you and your family members
• Comprehensive Hospitalization Insurance for you and your dependents
• Accident and Term life Insurance
• Complementary Health screening for 35 yrs. and above

Your key responsibilities

• Conduct thorough security assessments of existing vendors such as Google, DXC and Kyndryl
• Monitor and manage vendor compliance with security policies and standards and related contractual SLAs
• Identify and mitigate risks associated with third-party vendors.
• Maintain a vendor risk register and track remediation efforts.
• Provide guidance and support to vendors on improving their security posture.
• Stay informed about the latest security threats and trends affecting third-party services.
• Conduct regular reviews and audits of vendor security practices.
• Report on vendor security performance to senior management.
• Partner with the Delivery, Tech operations and infrastructure teams to deliver operational excellence
• Internally assess, evaluate, and make recommendations to management regarding the adequacy of the security controls for the Company's information and technology systems
• Present assessment results and options to the DB stakeholder and discuss steps for resolution
• Support the Audits/resolution as it relates to issues that address information security in their areas' processes and projects.

Your skills and experience

• Proven experience in information security, vendor management, or a similar role.
• Strong knowledge of information security principles, practices, and technologies especially on Mainframe, DB2, AIX, Tandem, AS400
• Experience with security frameworks and standards such as ISO 27001, NIST, and GDPR.
• Excellent problem-solving and analytical skills.
• Relevant certifications such as CISM, or CISA are preferred
• Analytical skills to evaluate risks and control processes
• Strong communication skills both verbal (incl. presentation skills) or written and ability to deal with people at all levels in a global matrix organization

Work Experience

• ~12-15 years' experience in IT Infrastructure support and service delivery
• At least ~5 years of experience in information security on Mainframe, AS400, AIX, Tandem and broader Technology Infrastructure

How we'll support you

• Training and development to help you excel in your career
• Coaching and support from experts in your team
• A culture of continuous learning to aid progression
• A range of flexible benefits that you can tailor to suit your needs

About us and our teams

Please visit our company website for further information:

We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively.

Together we share and celebrate the successes of our people. Together we are Deutsche Bank Group.

We welcome applications from all people and promote a positive, fair and inclusive work environment.

The Information Security Specialist will be responsible for monitoring, maintaining, and improving the organization's security posture. The role involves incident management and response, endpoint security, identity and access management, compliance with ISO 27001:2022, and support in employee awareness programs. The specialist will work closely with cross-functional teams to ensure security standards and policies are adhered to, while supporting Head of IT in day-to-day security operations.

Key Responsibilities

Incident Response & Security Operations

• Incident detection, investigation, containment, response, and recovery.
• Coordinate with teams for patch deployment and lifecycle management.
• Device management, control, and encryption.
• Monitor threats, alerts, suspicious activity, and data leakage attempts.
• Ensure antivirus definitions, compliance, and endpoint encryption.
• Detect and report unmanaged/rogue devices.
• Escalate critical security incidents to the appropriate team.

Vulnerability assessment & Patch Management

• Track and remediate vulnerabilities across endpoints and servers.
• Regular reviews of patch compliance and deployment status.

Identity & Access Management

• Active Directory user and group management.
• Configure and monitor MFA, SSO, and conditional access policies.

Compliance & Governance

• Maintain ISO 27001:2022 documentation (policies, procedures, risk registers, and audit logs).
• Support internal and external audits across departments. Track remediation plans and follow up with relevant stakeholders.
• Conduct periodic InfoSec awareness campaigns and employee training.
• Draft and circulate regular security advisories and reminders.
• Support basic monitoring and access control reviews.

• IT Asset Management throughout its lifecycle, support in procurement.

• Bachelor's degree in computer science/information technology, or related field with a focus on Information Security.

• Minimum of 3 years of experience in Information Security and Compliance.
• Familiarity with ISO 27001:2022, SOC2, VAPT, GDPR, and DPDP Act.
• Certification like
  CompTIA A+ ,Network+ and CISM are preferred.
• Strong ability to learn and adapt to emerging technologies and software applications.

Make an impact with NTT DATA

Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it's a place where you can grow, belong and thrive.

Your day at NTT DATA

The Information Security Analyst is a seasoned subject matter expert, responsible for protecting the organization's computer networks from cyber-attacks, and to help set and maintain security standards.

This role is required to monitor the organization's computer networks for security issues, install security software, and document any security issues or breaches found.

The Information Security Analyst is responsible for assisting in the planning, implementation, and management of information security measures to safeguard the organization's digital assets and systems and contributes to maintaining a secure and compliant environment.

Key responsibilities:

• Monitors security alerts and events from various sources, investigates potential threats, and escalates incidents as necessary.
• Assists in the implementation and monitoring of security controls, including firewalls, intrusion detection systems, and access controls.
• Performs regular vulnerability assessments, analyses scan results, and assists in prioritizing and remediating identified vulnerabilities.
• Supports the incident response team in investigating security incidents, documenting findings, and participating in remediation efforts.
• Assists in ensuring compliance with industry standards (for example, GDPR, ISO by conducting assessments and implementing necessary controls.
• Installs security measures and operates software to protect systems and information infrastructure, including firewalls and data encryption programs.
• Documents security breaches and assess the damage they cause.
• Works with the security team to perform tests and uncover network vulnerabilities.
• Fixes detected vulnerabilities to maintain a high-security standard.
• Develops organizational best practices for IT security.
• Performs penetration testing and upgrades systems to unable security software.
• Installs and upgrades antivirus software and tests and evaluates new technology.
• Assists with the installation of security software and understands information security management.
• Researches security enhancements and makes recommendations to management.
• Stays abreast of information technology trends and security standards.
• Contributes to security awareness initiatives by creating training materials, conducting workshops, and educating employees about best security practices.
• Maintains accurate records of security incidents, assessments, and actions taken for reporting and audit purposes.
• Assists in the management and maintenance of security tools, including antivirus software, encryption tools, and security information and event management (SIEM) systems.
• Participates in risk assessments to identify potential security threats, vulnerabilities, and associated risks to the organization.
• Collaborates with cross-functional teams, IT, and other teams to ensure security measures are integrated into the organization's processes and projects.
• Performs any other related task as required.

To thrive in this role, you need to have:

• Excellent communication skills to effectively convey technical information to non-technical stakeholders.
• Excellent analytical thinking and problem-solving skills to prevent hacking on a network.
• Ability to identify and evaluate potential risks and to develop solutions.
• Ability to identify and mitigate network vulnerabilities and explain how to avoid them.
• Seasoned proficiency in understanding of firewalls, proxies, SIEM, antivirus, and IDPS concepts.
• Seasoned proficiency in understanding of patch management with the ability to deploy patches in a timely manner whilst understanding business impact.
• Seasoned proficiency with MAC and OS.
• Seasoned familiarity with security frameworks, standards, and regulations (for example, NIST, CIS, GDPR).
• Seasoned proficiency of understanding in network and system architecture, protocols, and security controls.
• Strong analytical skills to analyze security incidents and assess potential risks.
• Ability to work both independently and collaboratively in a fast-paced environment.

Academic qualifications and certifications:

• Bachelor's degree or equivalent in information security, cybersecurity, computer science, or related.
• Security certifications such as CompTIA Security+, Certified Information Systems Security Professional (CISSP), or Certified Information Security Manager (CISM) are advantageous.

Required experience:

• Seasoned demonstrated experience in information security or cybersecurity, or related roles.
• Seasoned demonstrated experience working in a global IT organization.
• Seasoned demonstrated experience with computer network penetration testing and techniques.
• Seasoned demonstrated experience with security assessment and vulnerability scanning tools.

Workplace type:

Hybrid Working

About NTT DATA

NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo.

Equal Opportunity Employer

NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.

Third parties fraudulently posing as NTT DATA recruiters

NTT DATA recruiters will never ask job seekers or candidates for payment or banking information during the recruitment process, for any reason. Please remain vigilant of third parties who may attempt to impersonate NTT DATA recruiters—whether in writing or by phone—in order to deceptively obtain personal data or money from you. All email communications from an NTT DATA recruiter will come from an email address. If you suspect any fraudulent activity, please contact us .

• Design, implement, and manage comprehensive information security programs and controls.
• Conduct regular risk assessments and develop mitigation strategies for identified vulnerabilities.
• Develop and enforce security policies, standards, and procedures across the organization.
• Monitor security infrastructure for threats and anomalies, responding effectively to security incidents.
• Perform security audits and compliance checks against relevant regulations and frameworks.
• Lead incident response efforts, including investigation, containment, eradication, and recovery.
• Evaluate and recommend new security technologies and solutions.
• Provide expert guidance on information security best practices to IT staff and business units.
• Develop and deliver security awareness training programs to employees.
• Stay abreast of the latest cybersecurity threats, trends, and regulatory changes.

• Bachelor's or Master's degree in Computer Science, Information Security, Cybersecurity, or a related discipline.
• Minimum of 5 years of progressive experience in information security.
• In-depth knowledge of security principles, network security, cryptography, and threat modeling.
• Proven experience with security tools such as firewalls, IDS/IPS, SIEM, DLP, and endpoint security solutions.
• Strong understanding of relevant security compliance standards (e.g., GDPR, ISO 27001, HIPAA).
• Excellent analytical, problem-solving, and decision-making capabilities.
• Superior communication, presentation, and interpersonal skills.
• Relevant professional certifications (e.g., CISSP, CISM, GIAC) are highly desirable.
• Ability to manage multiple projects and prioritize tasks effectively.
• Demonstrated leadership potential and the ability to mentor junior security personnel.

Description

Information Security is responsible for preventing IT-based crime, hacking, intentional or inadvertent modification, disclosure, or destruction to the organization's information systems and IT assets and intellectual property. The focus of the role is to ensure highly professional and productive procedures, policies and processes are in place, and aligned and agreed with relevant stakeholders. Roles within Information Security may cover one or more areas of speciality:

Work includes:

What we’ll offer you

As part of our flexible scheme, here are just some of the benefits that you’ll enjoy

Your key responsibilities

Your skills and experience

Work Experience

How we’ll support you