2,941 Blockchain Security Specialist jobs in India
Information Security Specialist
Posted today
Job Viewed
Job Description
Entity:
Technology
Job Family Group:
Job Description:
To enable the world to reach net zero, bp are looking for the brightest digital specialists to drive innovation as it transitions from an International Oil Company (IOC) to an International Energy Company (IEC).
Are you passionate about protecting what matters most? We're seeking someone who is passionate about identifying and implementing security solutions that make bp a cyber resilient organisation! Our Business Information Security team partners with the business to help them understand cyber risk and be accountable for cyber security.
We're looking for curious minds who are driven by opportunities to build value and deliver secure products and services to advance bp's strategy.
Role SynopsisIn the digital era, where data breaches and cyber threats are not just possibilities but realities, the role of a Global Information Security Specialist has never been more critical. Working closely with bp's business areas, you will support the protection of IT systems and business data that are important to bp's operations.
You will conduct security assessments, respond to security queries, and provide security expertise. Your expertise will help ensure that business teams can operate with confidence, knowing their systems and processes are secure.
Ready to make a real impact in energy security? Join us in safeguarding the people, processes and systems that power our transition to net zero!
Key AccountabilitiesIn this role you will deliver security activities to support bp's business. This role focuses on hands-on security assessment and advisory activities with the following key accountabilities:
Security Assessments : We need someone that can conduct comprehensive assessments of systems, identifying risks and issues while recommending appropriate remediation measures.
Technical & Non-Technical Risk Advisory : You'll assess and communicate cybersecurity risks. We want our customers to understand potential impacts and mitigation strategies clearly.
Cyber Behaviour Promotion : We strive to build a strong cyber security culture. You'll assist with the development and promoting good cyber behaviours in day-to-day operations.
Incident Management Support : When security incidents happen, we need you to provide specialist security expertise. You'll support incident response activities and improvement recommendations.
Customer Support : We want you to act as the go-to point of contact for information security. You'll provide timely and accurate expertise on security matters affecting their systems or data.
Assess and Evaluate : You'll perform regular security assessments of business systems. We use established methodologies to identify potential risks, weaknesses and security gaps.
Respond and Advise : We require someone who can offer our customers practical and tailored cyber security solutions. These solutions must align with operational requirements.
Analyze and Report : You'll evaluate risks and prepare clear, actionable recommendations, and communicate these with both business and technical audiences.
Support and Collaborate : We work closely with business teams to implement security measures. You'll help maintain robust security posture while aligning with operational needs.
Promote and Educate : We nurture positive cyber security behaviours! You'll work through targeted awareness activities, training support, and expert guidance.
Monitor and Review : We want someone who understands the security landscape affecting bp systems and stay ahead of emerging threats and industry standard methodologies.
Bachelor's degree or equivalent experience in Information or Cyber Security, Computer Science, Engineering.
Working towards professional certifications such as Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC), Certified Information Systems Security Professional (CISSP), or CompTIA Security+.
Knowledge of security frameworks such as ISO 27001/2, NIST, and CIS framework.
Previous track record in information security roles in Finance, HR, Trading, Retail, Supply or Oil and Gas companies.
Ability to explain security concepts to a variety of audiences.
Solid grasp of cyber risk assessment methodologies and the ability to translate technical findings into business impact assessments.
Attention to detail and ability to work independently while balancing multiple activities.
Ability to adapt security recommendations to different operating environments.
Ability to use technology, data, and insights to enable decision making.
Travel Requirement
Relocation Assistance:
Remote Type:
Skills:
Legal Disclaimer:
We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, socioeconomic status, neurodiversity/neurocognitive functioning, veteran status or disability status. Individuals with an accessibility need may request an adjustment/accommodation related to bp’s recruiting process (e.g., accessing the job application, completing required assessments, participating in telephone screenings or interviews, etc.). If you would like to request an adjustment/accommodation related to the recruitment process, please contact us .
If you are selected for a position and depending upon your role, your employment may be contingent upon adherence to local policy. This may include pre-placement drug screening, medical review of physical fitness for the role, and background checks.
Information Security Engineering Specialist
Posted today
Job Viewed
Job Description
Entity:
Technology
Job Family Group:
Job Description:
You will work with
This team drives the response and management of cyber incidents, using an intelligence-led approach for identification, mitigation, and rapid response to safeguard bp on a global scale. By applying lessons learned and data analytics, they establish engineering principles and enhance the technology stack to continuously bolster bp's cybersecurity posture.
Let me tell you about the role
We are looking for Information Security Engineering Specialist (Application Security) who will be accountable for supporting the management of large security data sets, developing data-driven solutions and insights, and building data integration solutions and digital automation. We build digital solutions primarily in the cloud using Azure and AWS, so we can adapt quickly, demonstrate the latest technology, and scale our solutions globally.
You will advocate that application development, platform development, and infrastructure teams adhere to secure design and development practices (e.g., threat modeling, technical design review, resilience testing, monitoring & alerting, code review, and documentation)
You will also contribute to standard processes that will help shape bp’s security agenda and create a culture of excellence.
What you will deliver
- Provide technical expertise in support of information security and risk activities specific to the specialism to achieve objectives e.g. designing and developing security solutions to work across bp’s digital environments that are consistent with current policies.
- Maintain and improve the security aspects of the SDLC to help software engineering teams create products secure by design.
- Develop and promote guidelines for secure API and cloud-native applications.
- Maintain systems that are designed to uncover code vulnerabilities and provide remediation insights.
- Integrate security processes, such threat modeling, static/dynamic analyses, and code reviews
- Deliver the implementation and application of relevant operating processes and procedures, and ensure all activities adhere to the relevant standards.
- Evolve the security roadmap to meet anticipated future requirements and needs.
- Create and articulate materials on how to embed and measure security throughout the software and platform development lifecycle.
- Develop and maintain a series of internal and external collaborator relationships, delivering advanced technical knowledge to support project delivery, cooperatively identify key challenges and ensure that security solutions successfully protect bp against cyber risks.
What you will need to be successful (experience and qualifications)
- Experienced security professional with over 5 years of full stack development combined with delivering security engineering services or developing security solutions in complex organizational environments.
- Strong communication abilities, with a comprehensive understanding of both developer and executive experiences
- Should be capable of performing manual code audit, identify and fixing application vulnerabilities.
- Should be proficient in two or more object-oriented programming languages (e.g., Java, JavaScript, Python etc.)
- Should be capable of deploying the application to the cloud native resources.
- Should be capable of securing applications deployed to VMs and Containers.
- Firm foundation of information and cyber security principles and standard processes.
- Solid knowledge in application security concepts (OWASP Top 10, secure coding best practices, common vulnerabilities, etc.)
- Must possess a proven track record as a solution architect.
- Demonstrated practical experience in threat modeling strategies, including at least two of the following approaches: software-centric, attacker-centric, asset-centric, or risk-centric threat modeling.
- Should be able to demonstrate proficiency in both STRIDE and PASTA methodologies.
- Proficient with code scanning tools and should be proficient in fine tuning the result controllers
- Practical Experience in code scanning tools (SAST, DAST, SCA) and integrating multiple vulnerability detection tools provide a unified developer experience.
- To achieve onboarding, false positive detection, reporting and metrics.
- Experience with CI/CD pipelines and DevSecOps tools to automate security checks and integrate them into the development workflow.
- Must demonstrate proficiency in developing secure open-source strategies for the organization.
- Must possess the ability to address open-source risks, including security, licensing, and operational concerns.
- Operational proficiency in frameworks such as CIS CSC, NIST CSF, NIST 800-53, ISO 27001, etc.
- Professional and technical security certifications such as CISSP, CISM, GEVA, CEH, OSCP or equivalent are a plus.
- Usage of AI to secure application is a plus
- Foundational knowledge of security standards, industry laws, and regulations such as Payment Card Industry Data Security Standards (PCI-DSS), General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA) and Sarbanes-Oxley (SOX)
- Continuous learning and improvement approach.
Travel Requirement
Relocation Assistance:
Remote Type:
Skills:
Legal Disclaimer:
We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, socioeconomic status, neurodiversity/neurocognitive functioning, veteran status or disability status. Individuals with an accessibility need may request an adjustment/accommodation related to bp’s recruiting process (e.g., accessing the job application, completing required assessments, participating in telephone screenings or interviews, etc.). If you would like to request an adjustment/accommodation related to the recruitment process, please contact us .
If you are selected for a position and depending upon your role, your employment may be contingent upon adherence to local policy. This may include pre-placement drug screening, medical review of physical fitness for the role, and background checks.
Information Security Analyst
Posted 4 days ago
Job Viewed
Job Description
As a bank with a brain and a soul, Citi creates economic value that is systemically responsible and in our clients' best interests. As a financial institution that touches every region of the world and every sector that shapes your daily life, our **Foundational Services** teams are charged with a mission that rivals any large tech company. Our technology solutions are the foundations of everything we do. We keep the bank safe and provide the technical tools our workers need to be successful. We design our digital architecture and ensure our platforms provide a first-class customer experience. Our operations teams manage risk, resources, and program management. We focus on enterprise resiliency and business continuity. We develop, coordinate, and execute strategic operational plans. Essentially, Foundational Services re-engineers client and partner processes to deliver excellence through secure, reliable, and controlled services.
Trust is part of our DNA at Citi. As such, we take safeguarding our customer data very seriously. The Cloud Technology Services (CTS) is made up of deeply dedicated and talented colleagues who work together to ensure the safety of Citi's and our clients' assets and information. We manage information security as an end-to-end program - one with a clear mandate and accountability. Our mission is to continually execute and enhance a global security program that is fully anchored to modern control and security frameworks, fully aligned with the technology of the firm, threat-focused and data-driven, and deeply integrated across all Citi businesses globally.
Being talent-driven, we are focused on attracting, developing, and retaining diverse and inclusive talent with a high technical skill level. As a member of our team we will provide you with career development opportunities at all stages of your career. Our employees model a passion for protecting Citi and our clients and believe in treating others with dignity and respect.
This is an opportunity to work with Global Secrets Management Platforms team which is part of Citi's Cloud Technology Services. We are responsible for secrets management on-prem and the cloud for several hundred applications across the firm.
Our commitment to diversity includes a workforce that represents the clients we serve globally from all walks of life, backgrounds, and origins. We foster an environment where the best people want to work. We value and demand respect for others, promote individuals based on merit, and ensure opportunities for personal development are widely available to all. Ideal candidates are innovators with well-rounded backgrounds who bring their authentic selves to work and complement our culture of delivering results with pride. If you are a problem solver who seeks passion in your work, come join us. We'll enable growth and progress together.
**Information Security Analyst - PAM specialist**
We are opening our doors for talented individuals who are passionate about Cyber Security, want to be part of innovation by implementing and driving cutting edge technologies within a world class organization.
If you have a background in technology and interested to learn and grow with a world class Cyber Security team, then Citi is a place for you to be.
**Responsibilities:**
+ Provide BAU support for secrets management applications like CyberArk, HashiCorp Vault.
+ Collaborate with various internal and external stakeholders/support teams as required to support the application and business needs.
+ Work with client applications to provide integration/onboarding guidance.
+ Identify security vulnerabilities in the system and implement necessary solutions to remediate the vulnerabilities.
+ Strong Automation experience - Identify manual processes that can be smartly automated.
+ Ensure security best practice is followed and provide solutions to improve existing infrastructure processes in the company.
+ Be involved in the design and subsequent implementation of software and service infrastructure.
+ Provide on-call support in rotation as required.
+ Gather requirements and provide walkthroughs to businesses on usage of various SDKs and API services available for integration with Secrets/Identity and Access Management applications.
**Qualifications:**
+ 5+ Years' experience
+ Bachelor's in Engineering Degree (Computer Science or Equivalent)
+ Any trainings/certifications in Cybersecurity will be considered a plus
**Critical Competencies:**
+ CyberArk, HashiCorp Vault experience will be a big plus.
+ Basic experience working with one or more of these scripting languages - Python, Unix Shell, Perl, Go & PowerShell scripting.
+ Experience with one or more server operating system like Linux, Windows.
+ Experience/basic understanding of CHEF, Ansible, Terraform, CI/CD.
+ Experience with one or more cloud providers such as AWS, GCP, AZURE.
+ Understanding of containers and associated technologies like Kubernetes/OpenShift.
+ Excellent written and verbal communication skills
+ Ability to work across all levels of the organization.
+ Must have good analytical skills.
+ Strong customer and quality-focus.
+ Sound problem resolution, judgment, and decision-making skills .
+ Ability to work well individually and as part of a team.
**About Citi**
Citi, the leading global bank, has approximately 200 million customer accounts and does business in more than 160 countries and jurisdictions. Citi provides consumers, corporations, governments, and institutions with a broad range of financial products and services, including consumer banking and credit, corporate and investment banking, securities brokerage, transaction services, and wealth management.
Additional information may be found at | Twitter: @Citi ( | YouTube: | Blog: | Facebook: | LinkedIn: .
---
**Job Family Group:**
Technology
---
**Job Family:**
Information Security
---
**Time Type:**
Full time
---
**Most Relevant Skills**
Please see the requirements listed above.
---
**Other Relevant Skills**
For complementary skills, please see above and/or contact the recruiter.
---
_Citi is an equal opportunity employer, and qualified candidates will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other characteristic protected by law._
_If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review_ _Accessibility at Citi ( _._
_View Citi's_ _EEO Policy Statement ( _and the_ _Know Your Rights ( _poster._
Citi is an equal opportunity and affirmative action employer.
Minority/Female/Veteran/Individuals with Disabilities/Sexual Orientation/Gender Identity.
Engineer, Information Security
Posted 4 days ago
Job Viewed
Job Description
Are you ready to accelerate your potential and make a real difference within life sciences, diagnostics and biotechnology?
At Pall Corporation, one of Danaher's ( 15+ operating companies, our work saves lives-and we're all united by a shared commitment to innovate for tangible impact.
You'll thrive in a culture of belonging where you and your unique viewpoint matter. And by harnessing Danaher's system of continuous improvement, you help turn ideas into impact - innovating at the speed of life.
As a global leader in high-tech filtration, separation, and purification, Pall Corporation thrives on helping our customers solve their toughest challenges. Our products serve diverse, global customer needs across a wide range of applications to advance health, safety and environmentally responsible technologies. From airplane engines to hydraulic systems, scotch to smartphones, OLED screens to paper-everyday Pall is there, helping protect critical operating assets, improve product quality, minimize emissions and waste, and safeguard health. For the exponentially curious, Pall is a place where you can thrive and amplify your impact on the world. Find what drives you on a team with a more than 75-year history of discovery, determination, and innovation.
Learn about the Danaher Business System ( which makes everything possible.
The Engineer, Information Security is responsible for designing, implementing an organisation's security systems and protocols to protect against security breaches, cyber-attacks, and other malicious activities.
They must develop and implement security tools, providing guidance and training to analysts on security best practices. They must collaborate with external security vendors and partners on the deployment of such tools and the best practices involved in keeping them operating optimally.
This position reports to the Director, Information Security and is part of the Information Technology Department located in Pune, India and will be an on-site role.
In this role, you will have the opportunity to:
+ Design and implement security controls, including access control, network segmentation, intrusion prevention and other tools, to mitigate risks and protect against security threats.
+ Evaluate emerging security technologies and make recommendations for their integration into the security architecture framework.
+ Conduct security reviews and risk assessments of new and existing IT systems, applications, and networks.
+ Create and maintain comprehensive documentation for security systems, procedures, and security incidents.
+ Participate in incident response planning and execute incident response procedures with security analysts in the event of a security breach.
The essential requirements of the job include:
+ Proven experience as a security engineer in a mid-sized organization, with 2+ years of experience in an engineering role.
+ Experience in building and maintaining security systems.
+ Hands-on experience in security systems, including firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, content filtering, etc.
+ Knowledge of security standards, frameworks and regulations such as ISO 27001, NIST, PCI DSS, and GDPR.
+ Exhibit good analytical skills, as well as the ability to work well in a demanding, dynamic environment.
Travel, Motor Vehicle Record & Physical/Environment Requirements:
+ Ability to travel - international travel up to 10% per year.
It would be a plus if you also possess the following:
+ Bachelor's degree in computer science, Information Technology, or related field.
+ Professional certifications such as CISSP, Security+, CASP+, GIAC.
Pall Corporation, a Danaher operating company, offers a broad array of comprehensive, competitive benefit programs that add value to our lives. Whether it's a health care program or paid time off, our programs contribute to life beyond the job. Check out our benefits at Danaher Benefits Info ( .
At Pall we believe in designing a better, more sustainable workforce. We recognize the benefits of flexible, remote working arrangements for eligible roles and are committed to providing enriching careers, no matter the work arrangement. This position is eligible for a remote work arrangement in which you can work remotely from your home. Additional information about this remote work arrangement will be provided by your interview team. Explore the flexibility and challenge that working for Pall can provide.
Join our winning team today. Together, we'll accelerate the real-life impact of tomorrow's science and technology. We partner with customers across the globe to help them solve their most complex challenges, architecting solutions that bring the power of science to life.
For more information, visit .
Analyst, Information Security
Posted 4 days ago
Job Viewed
Job Description
Are you ready to accelerate your potential and make a real difference within life sciences, diagnostics and biotechnology?
At Pall Corporation, one of Danaher's ( 15+ operating companies, our work saves lives-and we're all united by a shared commitment to innovate for tangible impact.
You'll thrive in a culture of belonging where you and your unique viewpoint matter. And by harnessing Danaher's system of continuous improvement, you help turn ideas into impact - innovating at the speed of life.
As a global leader in high-tech filtration, separation, and purification, Pall Corporation thrives on helping our customers solve their toughest challenges. Our products serve diverse, global customer needs across a wide range of applications to advance health, safety and environmentally responsible technologies. From airplane engines to hydraulic systems, scotch to smartphones, OLED screens to paper-everyday Pall is there, helping protect critical operating assets, improve product quality, minimize emissions and waste, and safeguard health. For the exponentially curious, Pall is a place where you can thrive and amplify your impact on the world. Find what drives you on a team with a more than 75-year history of discovery, determination, and innovation.
Learn about the Danaher Business System ( which makes everything possible.
The role of Analyst, Information Security is a critical function within our organisation, which primarily involves the protection of digital assets and data from cyber threats, by analysing and improving the security measures in place.
The analyst will be responsible for managing the day-to-day operations of our security infrastructure, including monitoring, responding to security incidents, risk management and policy enforcement. They will need to have a strong understanding of security principles, experience with security tools, and the ability to work in a fast-paced, agile environment.
This position reports to the Director, Information Security and is part of the Information Technology Department located in Pune, India and will be an on-site role.
In this role, you will have the opportunity to:
+ Monitor for security events and alerts to detect and respond to incidents in a timely manner, meeting required metrics.
+ Investigate security incidents to determine root cause and impact.
+ Respond to security incidents by implementing appropriate remediation actions.
+ Support and maintain incident response plans.
+ Investigate and resolve security incidents and breaches highlighted by the Security Operations Centre, providing recommendations to prevent future incidents.
+ Manage security tools and technologies, intrusion detection and prevention systems, antivirus software, content filters IDS/IPS & NGFW.
.
The essential requirements of the job include:
+ 2+ years of experience in a security operations role.
+ Hands-on experience with security tools, such as SIEM, IDS/IPS, and vulnerability scanners.
+ Strong knowledge of security principles and best practices.
+ Good analytical and problem-solving skills.
+ Knowledge of security standards and regulations such as ISO 27001, NIST, PCI DSS, and GDPR.
Travel, Motor Vehicle Record & Physical/Environment Requirements:
+ Ability to travel - international travel up to 10% per year.
It would be a plus if you also possess the following:
+ Bachelor's degree in computer science, Information Technology, or related field.
+ Relevant certifications such as Security+, CASP+, GIAC.
Pall Corporation, a Danaher operating company, offers a broad array of comprehensive, competitive benefit programs that add value to our lives. Whether it's a health care program or paid time off, our programs contribute to life beyond the job. Check out our benefits at Danaher Benefits Info ( .
At Pall we believe in designing a better, more sustainable workforce. We recognize the benefits of flexible, remote working arrangements for eligible roles and are committed to providing enriching careers, no matter the work arrangement. This position is eligible for a remote work arrangement in which you can work remotely from your home. Additional information about this remote work arrangement will be provided by your interview team. Explore the flexibility and challenge that working for Pall can provide.
Join our winning team today. Together, we'll accelerate the real-life impact of tomorrow's science and technology. We partner with customers across the globe to help them solve their most complex challenges, architecting solutions that bring the power of science to life.
For more information, visit .
Information Security Manager
Posted 4 days ago
Job Viewed
Job Description
This position is responsible for the leadership of the India Information Security (IS) department as part of the Global Information Security Directorate. Areas of responsibility will include coordination with the other IS Departments to ensure standard enforcement of security polices and controls, interfacing with local India IT teams and business leaders, and mitigating risks to the organization's information assets.
**Responsibilities :**
+ Manage India Information Security team's day to day operations.
+ Support the global Security Operations (SecOps) department to safeguard digital assets by assisting with detecting, investigating, and resolving cybersecurity threats
+ Assist the global Governance, Risk & Compliance (GRC) department with enforcing cybersecurity policies, overseeing cybersecurity risk, facilitating cybersecurity compliance audits, and conducting cybersecurity awareness training.
+ Assist the global Cybersecurity Infrastructure and Design (CID) department with management and maintenance of the cybersecurity systems, platforms, and controls.
+ Implement Secure Software Development Lifecycle (SSDLC) in India office by enforcing the compliance of global policies, processes, procedures and principles.
**Qualifications**
+ Bachelor's degree in Cyber/Information Security or Information Technology, Computer Science, Computer Engineering
+ Professional certifications such as CISSP, CISM, or equivalent multi-domain cybersecurity focused certification.
+ At least 10 years of experience in IT security management, with a proven track record of managing teams in global matrix environment
+ Experience with security technologies: EDR, SIEM, SOAR, CASM, CASB, CSPM, IAM, PAM
+ Excellent communication and interpersonal skills to effectively engage internal stakeholders.
+ Demonstrated ability to analyze complex security issues, devise solutions, and enforce established security controls.
+ Strong leadership skills to drive standardization of processes, procedures, and principles.
This job posting will remain open a minimum of 72 hours and on an ongoing basis until filled.
**Job** Engineering
**Primary Location** India-Maharashtra-Mumbai
**Schedule:** Full-time
**Travel:** No
**Req ID:**
**Job Hire Type** Experienced Not Applicable #BMI N/A
Information Security Officer
Posted 4 days ago
Job Viewed
Job Description
Location
The successful candidate shall be placed at Pune Location. It is a Full-time Job, “No” remote work. Information Security Officer/Associate willing to work on a 12-month contract/full-time may apply.
Experience
Candidates should have experience between 4-6 years
Role Description
We’re Hiring: Information Security Officer/Associate
We are looking for people who are passionate about making data safer, secure, and accessible through appropriate systems, processes, and rules. Information Protection is the key function and additional data security sub-functions (like data discovery, classification, and protection), we would require a specialist like you to support with the below high-level responsibilities, amongst others.
Responsibilities
- Data Discovery and Classification(DDC): Design Data Discovery Processes, Develop comprehensive Data Lifecycle Management processes to identify, classify, and protect sensitive data across the organization.
- Create Standard Operating Procedures (SOPs): Draft and implement templatized SOPs for data analysis, ensuring consistency and focus on risk reduction.
- Automate Processes: Identify and coordinate automation opportunities within Data Discovery to improve efficiency and accuracy.
- Data Protection (DP) – DLP + CASB + Insider Threat Management: Perform detailed analysis of DLP incidents to identify policy violations, insider threats, or data exfiltration attempts. Investigate CASB alerts, Triage and categorize incidents by severity, business impact, and risk
- Reporting: Provide detailed reports to management stakeholders, highlighting the addressed risks, process improvements, and actionable insights
- Work closely with teams like IT Security Team, Cloud Centre of Excellence (CCoE), IT Help Desk, IP Management and IT GRC etc to develop systems & SOPs
Requirements
- Hands-on experience with Sentinel
- Proven experience in Data Security domain
- Training in any of SC 200 / SC 400/ CompTia Security+ / CEH
- Zscaler EDU 220/ Zscaler EDU -22/ Microsoft Ninja for Cloud Apps
- BigID Fundamentals / BigID Security Professional
- Proficiency in general system troubleshooting for Windows and MAC
- Configure advanced auditing and reporting capabilities to monitor compliance adherence.
- Ensure secure data governance across on-premises, cloud, and hybrid environments
About Us
Terra TCC is a Technology & Sustainability company offering services in Software, Environmental consulting, and Staff Augmentation to top-notch clients. We continuously strive to help companies find the right technology, the right services and the right talent for their needs. Learn more at
Any information that is shared with us, shall be retained as per company's data privacy policy. In case you wish to revise, modify or delete any of the submitted information, please write back to us. See contact details on
Be The First To Know
About the latest Blockchain security specialist Jobs in India !
Information Security Analyst
Posted 6 days ago
Job Viewed
Job Description
Join Verdantas – A Top #ENR 81 Firm,
We at Verdantas are seeking a highly motivated and detail-oriented Information Security Analyst, to protect our company’s critical systems and sensitive data. You will be an integral part of our security team, responsible for implementing, maintaining, and monitoring our security posture. The ideal candidate will have a strong technical background, a proactive mindset, and a passion for staying ahead of the latest security trends and threats.
Key Responsibilities
Security Operations & Monitoring:
- Monitor security alerts from SIEM, IDS/IPS, firewalls, and other security tools to identify and investigate potential security incidents.
- Perform vulnerability scans and assessments, prioritizing and tracking remediation efforts.
- Manage and configure security tools, including EDR/XDR, antivirus, and email security gateways.
- Conduct log analysis and forensic investigations to determine the root cause of security events.
Incident Response:
- Serve as a key member of the incident response team.
- Respond to and mitigate security incidents in a timely and effective manner.
- Document incidents and develop runbooks for future reference.
Security Architecture & Engineering:
- Design, implement, and maintain security controls and technologies to protect cloud (e.g., AWS, Azure, GCP) and on-premises infrastructure.
- Implement and manage identity and access management (IAM) policies and practices.
- Harden systems, networks, and applications based on industry best practices (e.g., CIS Benchmarks).
- Assist in the development and enforcement of security policies, standards, and procedures.
Governance, Risk, and Compliance (GRC):
- Participate in risk assessments and audits (e.g., SOC 2, ISO 27001, PCI-DSS, HIPAA).
- Assist in third-party security risk assessments.
- Promote security awareness across the organization through training and communication.
Required Qualifications & Skills
- Bachelor’s degree in computer science, Information Security, or a related field, or equivalent experience.
- (8+) years of experience in an information security role.
- Hands-on experience with core security technologies (SIEM, EDR, Firewalls, IDS/IPS, DLP).
- Strong understanding of networking protocols (TCP/IP, DNS, HTTP/S) and network security.
- Knowledge of operating systems (Windows, Linux, macOS) and their security aspects.
- Familiarity with cloud security principles (AWS, Azure, or GCP).
- Understanding of common attack vectors, malware, and threat actor tactics (e.g., MITRE ATT&CK framework).
- Excellent problem-solving and analytical skills.
- Strong written and verbal communication skills.
Preferred Qualifications & Skills
- Relevant industry certifications such as:
- Entry-Level: Security+, GIAC GSEC
- Mid-Level: CISSP, CISM, CEH, CompTIA CySA+
- Cloud-Specific: CCSP, AWS Certified Security - Specialty, Azure Security Engineer Associate
- Experience with scripting languages (e.g., Python, PowerShell, Bash) for automation.
- Knowledge of application security (SAST, DAST) and secure SDLC practices.
- Experience with penetration testing or red teaming tools and methodologies.
- Prior experience in a regulated industry (finance, healthcare, etc.)
Information Security Consultant
Posted 7 days ago
Job Viewed
Job Description
The Information Security Consultant will be responsible for the implementation, assessment, and management of ISO 27001:2022, ISO 27002, and SOC 2 standards for clients. This role involves working independently or alongside senior consultants to help clients achieve and maintain information security compliance and other best practices. The consultant will focus on assessing and ensuring compliance with key security frameworks and will provide vCISO support to various clients.
Key Responsibilities:
ISO 27001/27002 Compliance:
- Assist clients in achieving ISO 27001 certification by identifying and implementing the appropriate controls within the audit scope.
- Verify compliance with ISO 27001/27002 controls and provide recommendations for improvement.
SOC 2 Compliance:
- Assist clients in achieving SOC 2 compliance by identifying and implementing the appropriate Trust Service Criteria (TSCs).
- Conduct SOC 2 compliance assessments and ensure the proper implementation of required controls.
Risk Assessment and Mitigation:
- Conduct risk assessments of business activities, collaborating with stakeholders to manage risks until closure or acceptance.
- Provide actionable recommendations to mitigate identified risks.
Policy and Procedure Development:
- Define, develop, and review information security policies, procedures, guidelines, forms, and templates in line with best practices.
- Ensure documentation is up-to-date and aligned with industry standards.
Baseline Standards Review:
- Create and review baseline standards for operating systems, databases, web servers, and applications.
- Recommend improvements based on security assessments.
Post-Implementation Audits:
- Support post-implementation audits for ISO 27001:2022 to ensure ongoing compliance.
- Monitor and assess adherence to established information security standards.
Information Security Awareness:
- Create and execute organizational information security awareness programs.
- Conduct training sessions to ensure employees are knowledgeable about security best practices.
Security Standards Compliance:
- Assist clients in ensuring compliance with various security standards (ISO 27001, SOC 2, HIPAA, NIST, CIS, PCI DSS, etc.).
- Recommend strategies to ensure long-term adherence to security best practices.
Incident Response:
- Develop and implement incident response plans to handle security breaches and cyberattacks.
- Ensure that clients have clear, actionable plans to address potential security incidents.
Gap Assessment:
- Conduct gap assessments to identify areas of non-compliance and provide remediation strategies.
vCISO Support:
- Provide virtual Chief Information Security Officer (vCISO) support to clients, advising on information security strategy and governance.
Skills and Qualifications:
Technical Skills:
- Strong background in Information Technology and/or Cybersecurity .
- Proficiency in auditing, policy development, database security, firewall design, risk analysis, identity management, access control, and web security.
- Knowledge of security frameworks including ISO 27001, SOC 2, HIPAA, NIST, CIS, PCI DSS, and other industry best practices.
- Hands-on experience with ISO 27001:2022 and SOC 2 implementations and assessments.
- Strong understanding of risk management and the ability to assess and mitigate security risks.
Presales and Communication Skills:
- Excellent client-facing communication skills.
- Strong problem-solving abilities and the capacity to work effectively in a team environment.
- Ability to communicate complex technical concepts to both technical and non-technical audiences.
- Demonstrated ability to deliver presentations and conduct training sessions.
Information Security Engineer
Posted 7 days ago
Job Viewed
Job Description
Operational security automation is the process of automating some or all aspects of SOC or VOC operations. Replacing manual workflows with automated ones.
A fundamental building block of automation is the security playbook. A playbook defines a workflow by outlining the steps teams will take to handle different types of security alerts or events. By developing playbooks ahead of time, teams avoid having to make a response plan every time an alert or event occurs.
Responsibilities:
- Scripting and workflow development, follow proper engineering and integration lifecycles (design, create, test, document, integrate, monitor, maintain) and are designed to be reusable. Creating and integrating APIs to create orchestrated workflows.
- Autonomously plan security automation daily operations to ensure targets are being met.
- Identify and recommend necessary changes to the operational security teams to ensure automation and orchestration, maximize team talent and reduce routine tasks.
- Ensure operational security automations meet business and technical requirements, are maintainable, scalable and meet performance standards
- Bring external perspective and ideas from relevant sources, keep current with technology and industry best practices of the security industry threat landscape
- Communicate technical and functional requirements using an effective, efficient, and creative approach with a high degree of collaboration and influence.
- Work with in-house teams to identify the right mix of tools, techniques, and procedures to translate our needs and future goals into a plan that will enable secure and effective solutions.
Required Skills:
- 10+years of experience working in Information Security with focus in operational security.
- Experience with agile project management processes and methodologies
- Mandatory 3 years experiences with one of the following SOAR vendor platforms (Tines, Swimlane)
- Being autonomous.
- Advanced research, analytical, and problem-solving skills
- Masters degree in Computer Science, Information Security, or related field