3,297 Certified Ethical Hacker jobs in India

The Information Security Specialist will be responsible for monitoring, maintaining, and improving the organization’s security posture. The role involves incident management and response, endpoint security, identity and access management, compliance with ISO 27001:2022, and support in employee awareness programs. The specialist will work closely with cross-functional teams to ensure security standards and policies are adhered to, while supporting Head of IT in day-to-day security operations.

Key Responsibilities

Incident Response & Security Operations

• Incident detection, investigation, containment, response, and recovery.
• Coordinate with teams for patch deployment and lifecycle management.
• Device management, control, and encryption.
• Monitor threats, alerts, suspicious activity, and data leakage attempts.
• Ensure antivirus definitions, compliance, and endpoint encryption.
• Detect and report unmanaged/rogue devices.
• Escalate critical security incidents to the appropriate team.

Vulnerability assessment & Patch Management

• Track and remediate vulnerabilities across endpoints and servers.
• Regular reviews of patch compliance and deployment status.

Identity & Access Management

• Active Directory user and group management.
• Configure and monitor MFA, SSO, and conditional access policies.

Compliance & Governance

• Maintain ISO 27001:2022 documentation (policies, procedures, risk registers, and audit logs).
• Support internal and external audits across departments. Track remediation plans and follow up with relevant stakeholders.
• Conduct periodic InfoSec awareness campaigns and employee training.
• Draft and circulate regular security advisories and reminders.
• Support basic monitoring and access control reviews.
• IT Asset Management throughout its lifecycle, support in procurement.

• Bachelor’s degree in computer science/information technology, or related field with a focus on Information Security.
• Minimum of 3 years of experience in Information Security and Compliance.
• Familiarity with ISO 27001:2022, SOC2, VAPT, GDPR, and DPDP Act.
• Certification like CompTIA A+ ,Network+ and CISM are preferred.
• Strong ability to learn and adapt to emerging technologies and software applications.

About the Company:

Toyo India & Modec Singapore have joined hands to start a joint venture, Global Capability Centre at Bangalore.

Corporate Office, Bangalore

About the Role

Engineer – Information Security in the Quality and Information Security Management Department.

Responsibilities

• Establish, Implement, Maintain and Improve Information Security Management System (ISMS) as per ISO 27001:2022 Standard.
• Plan and Conduct Information Security (IS) Trainings.
• IS Risk Assessment and Treatment.
• Incident Management.
• Plan and Conduct ISMS Internal Audits.
• Root Cause Analysis.
• Implementation of IS Best Practices.
• IS Vendor Audits.
• Plan, Schedule and Monitor IS activities.
• Presentation Skills, Interpersonal Skills, Time Management Skills.

Qualifications

• Education Qualification: B.E / Diploma in Computers / Information Technology / Electronics & Telecommunication / etc. from recognized University / Board.
• Technical Qualification: Certified ISO 27001:2022 Internal Auditor / Lead Auditor.
• Experience: 8-12 Years; Relevant: 4-6 Years.

Required Skills

• Certified Information System Auditor (CISA) / Certified Information Security Manager (CISM).
• Knowledge of ISO 31000 and ISO 27005 Standards.
• Experience in Network and Server Security.
• Knowledge related to Software Development Life Cycle (SDLC) Security.
• Knowledge of National (e.g. IT Act) / International Laws / Regulations (e.g. EUGDPR) / Standards (e.g. NIST) related to Information Security.

Preferred Skills

• Develop, Update and Review ISMS Policies and procedures in accordance with ISO 27001.
• Plan and Conduct IS Awareness Trainings.
• Prepare IS Awareness emailers and posters.
• Perform and Evaluate Risks and review Risk Registers of Stakeholders.
• Management of IS Incidents.
• Plan, Conduct Internal Audits and report findings.
• Coordinate and follow up for Internal / External Audit Reports and its closures.
• Plan, coordinate and follow up with External Auditors / Certification Agency for ISO 27001.
• Review Root Cause Analysis, Correction and Corrective Actions.
• Coordinate with stakeholders to improve IS Controls.
• Support Departments to prepare for External Audits.
• Participate in Management Review Meetings Agenda, Presentation, MOM and follow up.
• Review Bidding / Contracts and determine IS requirements.

Role Summary

As a member of Global Security Operations Center, you will be responsible for driving the operational activities of SOC and lead complex investigations, conduct advanced threat analysis, and initiate incident responses activities across various business units. He/she is also responsible for process improvement activities, mentoring the team through training initiatives.

Responsibilities

• Managing shifts / team in the 24X7 SOC Environment.
• Act as a first point of escalation for SOC team and assist with handing out work assignments to the team members.
• Handling escalated security incidents/ issues, Responsible for deep dive analysis of escalated incidents, threat hunting.
• Highlight potential security risks to SOC Manager and concerned SPOCs.
• Maintain and optimize security tools and technologies used within the SOC.
• Support Adhoc investigations on need basis.
• Identify opportunities for continuous improvement in security operations.
• Continuously improve threat detection capabilities, use cases and SOPs.
• Support SOC manager for creating new operational guidelines, processes, and procedures.
• Mentor and provide guidance to L1 analysts and serves as the POC for escalation issues that may arise.
• Support rotational 16x5 operational shifts and on call when needed.

Role Requirements

Experience

At least 7+ years prior experience as a SOC Lead/Lead Analyst in SOC environment with hands-on experience in performing security monitoring and response activities, incident handling, alert tracking, and/or cybersecurity case management.

Process and Technology Skills

• Proven experience in handling any of the EDR solution such as Defender or Crowdstrike.
• Configure and optimize EDR settings to enhance security posture and ensure effective threat detection.
• Analyze threat intelligence and security data to identify trends, patterns, and emerging threats
• Capability to recognize different security situations and refine recurring security notifications by finetuning.
• Respond to security incidents promptly, conducting thorough investigations and implementing remediation strategies to mitigate risks.
• Strong background in incident analysis, evidence collection, documentation, communications, reporting and response.
• Ability to manage cloud security controls, including firewalls, intrusion detection systems, and encryption protocols.
• Lead and coordinate incident response efforts for cloud-related security incidents.
• Collaborate with business and development teams to ensure security best practices are integrated into cloud architecture and deployments.
• Proven experience with cloud platforms such as AWS, Azure, or Google Cloud.
• Experience in mentoring and training junior analysts, Provide technical and functional support to L1 Team with analytical feedback.
• Proven experience in any SIEM tools and/or log management solution
• Must have good knowledge in firewalls, IDS/IPS, Anti-Virus, EDR, Proxy, DNS, email, AD, etc.
• Good understanding of mainstream operating systems (Windows, Linux, etc) and security infrastructure
• Good understanding of log parsing and event analysis (Ability to understand and interpret Windows, Linux OS, firewall, web proxy, DNS log events)
• Expertise in creation of reports, dashboards, metrics for SOC operations
• Knowledge in developing use cases for security monitoring, threat management and threat modelling.
• Knowledge of MITRE or similar frameworks and procedures used by adversaries.
• Advanced knowledge of malware operation and indicators
• Good understanding of ITIL processes including Incident Management, Change Management and Problem Management
• Advanced knowledge of networking fundamentals (OSI Layers, TCP/IP, protocols, and services.)
• Sound knowledge in Information Security policies, procedures, standards, best practices, and guidelines
• Involvement in threat intelligence and cybersecurity communities.
• Deep understanding of Cyber Kill Chain and other applicable analytic models
• Optionally, experience in at least one of the following: Python, PowerShell, VBscript.

Other skills

• Knowledge and understanding of project management methodologies, processes, and tools.
• Strong analytical skills and ability to solve complex technical problems with high attention to detail and accuracy.
• Strong team player and ability to work in a challenging and constantly changing environment.
• Ability to multitask and work independently with minimal direction and maximum accountability.
• Proficiency in verbal and written communication skills.
• Proficiency in time management and presentation skills
• Proficiency in decision-making and problem-solving skills

Education and Certification

• Bachelor’s degree in computer information systems or related field or equivalent demonstrated experience & knowledge.
• Professional certification in Information security like Security+, CCSE, CCSP, AZ900 – AZ500 etc., TICSA, MCSE, CISSP, etc. would be advantageous

The Information Security Specialist will be responsible for monitoring, maintaining, and improving the organization’s security posture. The role involves incident management and response, endpoint security, identity and access management, compliance with ISO 27001:2022, and support in employee awareness programs. The specialist will work closely with cross-functional teams to ensure security standards and policies are adhered to, while supporting Head of IT in day-to-day security operations.

Key Responsibilities

Incident Response & Security Operations

• Incident detection, investigation, containment, response, and recovery.
• Coordinate with teams for patch deployment and lifecycle management.
• Device management, control, and encryption.
• Monitor threats, alerts, suspicious activity, and data leakage attempts.
• Ensure antivirus definitions, compliance, and endpoint encryption.
• Detect and report unmanaged/rogue devices.
• Escalate critical security incidents to the appropriate team.

Vulnerability assessment & Patch Management

• Track and remediate vulnerabilities across endpoints and servers.
• Regular reviews of patch compliance and deployment status.

Identity & Access Management

• Active Directory user and group management.
• Configure and monitor MFA, SSO, and conditional access policies.

Compliance & Governance

• Maintain ISO 27001:2022 documentation (policies, procedures, risk registers, and audit logs).
• Support internal and external audits across departments. Track remediation plans and follow up with relevant stakeholders.
• Conduct periodic InfoSec awareness campaigns and employee training.
• Draft and circulate regular security advisories and reminders.
• Support basic monitoring and access control reviews.
• IT Asset Management throughout its lifecycle, support in procurement.

• Bachelor’s degree in computer science/information technology, or related field with a focus on Information Security.
• Minimum of 3 years of experience in Information Security and Compliance.
• Familiarity with ISO 27001:2022, SOC2, VAPT, GDPR, and DPDP Act.
• Certification like CompTIA A+ ,Network+ and CISM are preferred.
• Strong ability to learn and adapt to emerging technologies and software applications.

Role Summary

As a member of Global Security Operations Center, you will be responsible for driving the operational activities of SOC and lead complex investigations, conduct advanced threat analysis, and initiate incident responses activities across various business units. He/she is also responsible for process improvement activities, mentoring the team through training initiatives.

Responsibilities

• Managing shifts / team in the 24X7 SOC Environment.
• Act as a first point of escalation for SOC team and assist with handing out work assignments to the team members.
• Handling escalated security incidents/ issues, Responsible for deep dive analysis of escalated incidents, threat hunting.
• Highlight potential security risks to SOC Manager and concerned SPOCs.
• Maintain and optimize security tools and technologies used within the SOC.
• Support Adhoc investigations on need basis.
• Identify opportunities for continuous improvement in security operations.
• Continuously improve threat detection capabilities, use cases and SOPs.
• Support SOC manager for creating new operational guidelines, processes, and procedures.
• Mentor and provide guidance to L1 analysts and serves as the POC for escalation issues that may arise.
• Support rotational 16x5 operational shifts and on call when needed.

Role Requirements

Experience

At least 7+ years prior experience as a SOC Lead/Lead Analyst in SOC environment with hands-on experience in performing security monitoring and response activities, incident handling, alert tracking, and/or cybersecurity case management.

Process and Technology Skills

• Proven experience in handling any of the EDR solution such as Defender or Crowdstrike.
• Configure and optimize EDR settings to enhance security posture and ensure effective threat detection.
• Analyze threat intelligence and security data to identify trends, patterns, and emerging threats
• Capability to recognize different security situations and refine recurring security notifications by finetuning.
• Respond to security incidents promptly, conducting thorough investigations and implementing remediation strategies to mitigate risks.
• Strong background in incident analysis, evidence collection, documentation, communications, reporting and response.
• Ability to manage cloud security controls, including firewalls, intrusion detection systems, and encryption protocols.
• Lead and coordinate incident response efforts for cloud-related security incidents.
• Collaborate with business and development teams to ensure security best practices are integrated into cloud architecture and deployments.
• Proven experience with cloud platforms such as AWS, Azure, or Google Cloud.
• Experience in mentoring and training junior analysts, Provide technical and functional support to L1 Team with analytical feedback.
• Proven experience in any SIEM tools and/or log management solution
• Must have good knowledge in firewalls, IDS/IPS, Anti-Virus, EDR, Proxy, DNS, email, AD, etc.
• Good understanding of mainstream operating systems (Windows, Linux, etc) and security infrastructure
• Good understanding of log parsing and event analysis (Ability to understand and interpret Windows, Linux OS, firewall, web proxy, DNS log events)
• Expertise in creation of reports, dashboards, metrics for SOC operations
• Knowledge in developing use cases for security monitoring, threat management and threat modelling.
• Knowledge of MITRE or similar frameworks and procedures used by adversaries.
• Advanced knowledge of malware operation and indicators
• Good understanding of ITIL processes including Incident Management, Change Management and Problem Management
• Advanced knowledge of networking fundamentals (OSI Layers, TCP/IP, protocols, and services.)
• Sound knowledge in Information Security policies, procedures, standards, best practices, and guidelines
• Involvement in threat intelligence and cybersecurity communities.
• Deep understanding of Cyber Kill Chain and other applicable analytic models
• Optionally, experience in at least one of the following: Python, PowerShell, VBscript.

Other skills

• Knowledge and understanding of project management methodologies, processes, and tools.
• Strong analytical skills and ability to solve complex technical problems with high attention to detail and accuracy.
• Strong team player and ability to work in a challenging and constantly changing environment.
• Ability to multitask and work independently with minimal direction and maximum accountability.
• Proficiency in verbal and written communication skills.
• Proficiency in time management and presentation skills
• Proficiency in decision-making and problem-solving skills

Education and Certification

• Bachelor’s degree in computer information systems or related field or equivalent demonstrated experience & knowledge.
• Professional certification in Information security like Security+, CCSE, CCSP, AZ900 – AZ500 etc., TICSA, MCSE, CISSP, etc. would be advantageous

About the Company:

Toyo India & Modec Singapore have joined hands to start a joint venture, Global Capability Centre at Bangalore.

Corporate Office, Bangalore

About the Role

Engineer – Information Security in the Quality and Information Security Management Department.

Responsibilities

• Establish, Implement, Maintain and Improve Information Security Management System (ISMS) as per ISO 27001:2022 Standard.
• Plan and Conduct Information Security (IS) Trainings.
• IS Risk Assessment and Treatment.
• Incident Management.
• Plan and Conduct ISMS Internal Audits.
• Root Cause Analysis.
• Implementation of IS Best Practices.
• IS Vendor Audits.
• Plan, Schedule and Monitor IS activities.
• Presentation Skills, Interpersonal Skills, Time Management Skills.

Qualifications

• Education Qualification: B.E / Diploma in Computers / Information Technology / Electronics & Telecommunication / etc. from recognized University / Board.
• Technical Qualification: Certified ISO 27001:2022 Internal Auditor / Lead Auditor.
• Experience: 8-12 Years; Relevant: 4-6 Years.

Required Skills

• Certified Information System Auditor (CISA) / Certified Information Security Manager (CISM).
• Knowledge of ISO 31000 and ISO 27005 Standards.
• Experience in Network and Server Security.
• Knowledge related to Software Development Life Cycle (SDLC) Security.
• Knowledge of National (e.g. IT Act) / International Laws / Regulations (e.g. EUGDPR) / Standards (e.g. NIST) related to Information Security.

Preferred Skills

• Develop, Update and Review ISMS Policies and procedures in accordance with ISO 27001.
• Plan and Conduct IS Awareness Trainings.
• Prepare IS Awareness emailers and posters.
• Perform and Evaluate Risks and review Risk Registers of Stakeholders.
• Management of IS Incidents.
• Plan, Conduct Internal Audits and report findings.
• Coordinate and follow up for Internal / External Audit Reports and its closures.
• Plan, coordinate and follow up with External Auditors / Certification Agency for ISO 27001.
• Review Root Cause Analysis, Correction and Corrective Actions.
• Coordinate with stakeholders to improve IS Controls.
• Support Departments to prepare for External Audits.
• Participate in Management Review Meetings Agenda, Presentation, MOM and follow up.
• Review Bidding / Contracts and determine IS requirements.

• Implement and manage security controls across the organization's IT infrastructure.
• Conduct regular security assessments, vulnerability scans, and penetration tests.
• Develop and maintain security policies, standards, and procedures.
• Design and deploy security solutions, including firewalls, VPNs, and intrusion detection systems.
• Monitor security alerts and investigate potential security breaches.
• Respond to security incidents, perform root cause analysis, and implement remediation plans.
• Ensure compliance with relevant data protection regulations and security standards.
• Collaborate with IT teams to integrate security into the system development lifecycle.
• Stay informed about emerging threats and vulnerabilities, and update security measures accordingly.

• Bachelor's or Master's degree in Computer Science, Information Security, or a related technical field.
• Minimum of 4-6 years of experience in information security or cybersecurity roles.
• In-depth knowledge of cybersecurity principles, technologies, and frameworks (e.g., NIST, ISO 27001).
• Experience with network security, endpoint security, and cloud security solutions.
• Proficiency in security assessment tools and techniques.
• Strong analytical and problem-solving skills, with the ability to handle complex security challenges.
• Excellent communication and teamwork abilities.
• Relevant certifications such as CISSP, CISM, or CEH are highly desirable.

• Assist in the implementation and maintenance of security measures.
• Monitor network and system logs for security breaches and intrusions.
• Respond to and investigate security incidents under supervision.
• Conduct basic vulnerability scanning and reporting.
• Support the development and delivery of security awareness training.
• Maintain security documentation and records.
• Ensure compliance with company security policies and procedures.
• Assist in the management of security tools and technologies.
• Collaborate with IT staff to implement security patches and updates.
• Stay informed about emerging security threats and technologies.

• Bachelor's degree in Computer Science, Information Technology, or a related field.
• 1-3 years of experience in an IT or Information Security role.
• Foundational knowledge of cybersecurity principles and practices.
• Familiarity with network security concepts (firewalls, VPNs).
• Basic understanding of operating systems (Windows, Linux).
• Good analytical and problem-solving skills.
• Effective written and verbal communication skills.
• Certifications like CompTIA Security+ are a plus.