5,128 Cybersecurity Consultant jobs in India

We are seeking a highly skilled Senior Cybersecurity Expert to spearhead our team in India. The successful candidate will be responsible for delivering high-quality security assessments and penetration testing across various technologies.

The ideal candidate will have 4+ years of experience in Information Security, focusing on penetration testing, and strong technical skills in the areas of web application and web services, infrastructure, and mobile apps penetration testing.

Key Responsibilities:

• Deliver comprehensive security assessments and penetration testing
• Provide expert guidance and recommendations to clients for enhancing their security posture
• Mentor and support junior consultants, helping to augment the team's capabilities

Requirements:

• Strong technical expertise in penetration testing, including web application and web services, infrastructure, and mobile apps
• Familiarity with AI/ML fundamentals, including NLP, transformers, and LLM architecture
• Hands-on knowledge of security tools and tool suites such as Burp Suite Pro, NetSparker, Kali Linux, SQLMap, Nessus, etc
• Programming language skills such as Python, Java, .NET, C or C++ - (nice to have)
• Exceptional communication skills and ability to convey complex security concepts to clients

This is an exceptional opportunity for a motivated and experienced individual to join our team and contribute to delivering top-notch security services to our clients.

Role: Cybersecurity Presales

Location: India

Black Box provides comprehensive, innovative, and full-lifecycle cybersecurity services such as Consulting, Professional Services, and 24/7 Managed Security Services. We believe ‘one size does NOT fit all’, so we provide tailored solutions to address clients’ specific needs. With multiple Security Operation Centers (SOC) and a global team of certified and trained security experts, Cybalt provides solutions & services at the speed of innovation to enable its clients to grow their businesses securely.

Its offering portfolio includes Advisory, Governance, Risk, and Compliance;
Managed Extended Detection and Response (XDR) and SOC-as-a-Service;
Infrastructure and DataSecurity;
Cloud Security;
Identity and Access Management;
Application Security;
and OT & IoT Security. Besides partnering with leading security technologies, Cybalt also leverages a network of next-generation cybersecurity start-ups that are solving some emerging challenges in the industry.

We seek a highly skilled and experienced Cybersecurity Pre Sales candidate to join our global team.

Key Responsibilities:

• Serve as the cybersecurity domain expert, engaging with prospects and existing clients to uncover their cybersecurity challenges and designing tailored solutions that effectively address and mitigate them.
• Assist the sales teams and engage with clients in deep-dive discussions to identify gaps and risk areas from the cybersecurity standpoint. Leading the requirements gathering from prospects, suitable use case creation, and conceptualizing the suitable solution to address clients’ cybersecurity challenges
• Demonstrate a deep understanding of the competitive landscapes surrounding various cybersecurity technologies and their relevance to the emerging cybersecurity threat landscape.
• Analyze and respond to RFPs by crafting tailored, comprehensive security strategies that align with client needs and specifications, leveraging a deep understanding of various security technologies and industry best practices.
• Collaborate closely with security technology providers to co-develop innovative, integrated solutions, addressing clients' unique security challenges through a synergy of expert knowledge and cutting-edge technology.
• Plan and design multi-vendor security solutions to create a cohesive, scalable system that enhances clients' organizational security without compromising operational efficiency or interoperability.
• Coordinate with technology and service partners to seamlessly integrate various components into a cohesive final solution, ensuring technical proficiency and commercial viability align with the client's specific needs.
• Conduct effort sizing and pricing of security solutions, carefully balancing various fixed and variable commercial models to provide cost-effective and efficient solutions tailored to specific client needs.
• Play a pivotal role in the sales closing cycle by presenting the final technical and commercial aspects of the security solutions to clients, effectively communicating the value and alignment of the solution with the client's specific requirements and constraints.
• Articulate and present the company's value propositions in industry events, showcasing expertise and innovative solutions in security to a broader professional audience.
• Provide thought leadership by continuously updating their knowledge of innovative technologies, ensuring they remain at the forefront of industry trends and can apply the latest insights to enhance security solutions.

Preferred Skills & Experience Requirements:

• Bachelor's degree in Computer Science, Information Security, or a related field. Advanced degrees or certifications (e.G., CISSP, CISM, CISA) are highly desirable.
• Proven experience of at least 8-10 years in cybersecurity solution architecting, with a demonstrated ability to design complex solutions and provide strategic guidance to clients.
• In-depth knowledge of XDR Technology, SOC Architecture, Infrastructure and Data Security, Advisory and GRC Processes.
• Exceptional communication and presentation skills, enabling you to articulate complex cybersecurity concepts to both technical and non-technical stakeholders.
• Extensive experience in risk assessment, vulnerability management, incident response, security architecture, and developing comprehensive security strategies.
• Proficiency in utilizing industry-standard security tools, technologies, and methodologies.
• Exceptional business acumen, to understand clients' unique business objectives and align cybersecurity strategies accordingly.
• Proven ability to cultivate and maintain strong client relationships, consistently delivering superior solutions and surpassing client expectations.
• Outstanding problem-solving skills and a strategic, analytical mindset, and be able to decipher the complex cybersecurity landscapes.
• Professionalism, integrity, and a commitment to maintaining the highest ethical standards in conducting professional responsibilities.

Company Profile:

3Columns is a specialist cybersecurity firm delivering a wide range of services from Security Assurance, Security Governance, Professional services and Managed Services. Solutions include Managed Security Services, Offensive Security Services, Cyber Security Consulting, and professional services to assist customer deploy all the required controls. The core service delivered by the SOC is Managed Detection & Response and Incident Response.

About the Role:

3Columns is seeking a Senior GRC/ Cybersecurity Consultant to join the team. They will be responsible for delivering outcome-based engagements to a variety of clients, and proactively improving the Governance, Risk & Compliance capabilities within the organizations they are engaged with. The Senior Security Consultant will lead small to large projects to assist clients in developing and implementing cybersecurity risk mitigation strategies to support the business and help drive the success of organizational business strategies. The successful applicant will become an integral part of each client's cybersecurity strategy, developing strong relationships, and becoming a trusted partner within each organization.

Skills and Experience

• Strong understanding of ISO27001, NIST and ASD8
• Ability to apply and audit cybersecurity frameworks such as ISO/IEC 27001,31000, ASD8 and NIST.
• Ability to take organizations on their Cyber security journey
• Good understanding of GDPR and PCI-DSS, ISM, RFFR, SOC2
• Ability to develop and utilize the company’s methodologies to provide effective cybersecurity and risk advice.
• Ability to articulate business implications and accurately calculate risks of findings in relation to the business.
• Ability to develop and deliver training and/or speaking material for public and/or private events.
• Proactively researching emerging security risks and controls.

Business Skills

• Excellent written and verbal skills to clearly explain concepts in non-technical terms.
• Consulting Skills with wide range of audience
• Strong communication and writing skills.
• Ability to translate IT and technical risks into business risk for the C-Level and Board.
• Strong understanding of commercial arrangements for small to large projects and able to demonstrate the value of service offerings to clients.
• Identifying and articulating security advice aimed at employees, managers and executives.

Personal Skills

• Must be forward-thinking in terms of vision for the business and team culture.
• Must have experinece in working with consulting company and with multiple customers and projects at the same time.
• Come up with innovative ideas to deliver services to the customer
• Ability to speak about security and recommend security controls to experienced security professionals and executives confidently and accurately.
• The ability to work as part of the team.
• Flexibility and motivation to work across various types of engagements.
• The ability to multitask and service multiple clients at once.
• Is detail-orientated, self-motivated and can work independently.

Certifications

You will a proven track record in an Information Security, IT Audit, Risk or Compliance field. You will also be a strategic and innovative thinker with strong organizational skills and an understanding of a range of industries and sectors. Candidates will hold or be studying towards one or some of the following certifications or equivalent:

• ISO 27001 Lead Auditor or Lead Implementer.
• CISSP ( Desirable, not mandatory)
• CISA
• CISM ( Desirable, not mandatory)
• CDPSE ( Desirable, not mandatory)
• Associate PCI DSS QSA ( Desirable, not mandatory)

Past Experience

• Previous or current experience working in a client-facing role is highly regarded.
• Understanding of PCI-DSS framework.
• Experience working with, presenting to, liaising with C level and board members
• Your experience & qualifications

Please Note:- Anyone with less than 5 years of experience in GRC consulting space will not be considered for this role.

About Claranet

Founded at the beginning of the dot.Com bubble in 1996, our CEO Charles Nasser had a light bulb moment to develop a truly customer-focused IT business. Since then, Claranet has grown from an Internet Service Provider (ISP) in the UK to being one of the leading business modernisation experts, who deliver solutions across 11+ countries.

At Claranet, we’re experienced in implementing progressive technology solutions which help our customers solve their epic business challenges. We’re committed to understanding their problems, delivering answers quickly, and making a lasting impact to their business.

We are agile, focused and experienced in business modernisation. Our approach helps customers make genuine, significant shifts in their business strategy, to deliver financial savings, boost innovation, and create a resilient business. We continually invest in our people and the latest technologies, so our customers get peace of mind knowing that they have access to the best talent and services.

In the UK we have over 500 staff working in London, Gloucester, Warrington, Bristol, and Leeds, or as homeworkers.

Working For Claranet

Here at Claranet we pride ourselves on going the extra mile for and with our employees (yes, we really mean it). We offer an extensive benefits package that you can tailor to your needs, inclusive of a matching contribution pension scheme, healthcare, insurance, dental, discounted gyms and app supported benefit access.

But what we think makes us different is ‘Team Claranet,’ our dedicated internal part of the business that supports you with matters close to your heart. We proudly support local charities in each of our office locations, support employees with paid charity leave, organise key charity fundraising event per year and have a dedicated committee responsible for supporting employee’s fundraising efforts.

Claranet are one of the 10 founding members of TC4RE (Technology Community for Racial Equality.) Being a part of a group of leading UK technology organisations, we are dedicated to building a more diverse and inclusive workforce. We are also very proud members of Tech Talent Charter, a government supported, industry-led membership group created to address the UK’s tech talent shortage and diversity gap through collective action.

Our Vision

Our vision is to become the most trusted technology solutions partner;
renowned for being the best and brightest, having lasting impact with our customers and delivering exceptional returns to our stakeholders.

Position Summary

The Sr. Security Consultant has responsibility for everything from client projects to development work and training, dealing with large corporate penetration testing. With a focus on large-scale corporate penetration testing, this role demands both technical excellence and strong client engagement skills. The consultant is passionate about uncovering vulnerabilities and translating findings into actionable improvements, while building strong relationships through clear communication and exceptional customer service.

Our team is growing, and we need inspiring people to join us and help us to continue to build a world leading cyber security operation whilst benefiting from the opportunity to fulfil their potential.

Based in India, this work will lead on penetration testing and have the opportunity to work on projects with worldwide clients, and will form part of our global team of penetration testers who share research, tooling, experience and collaborate freely on projects.

As a respected training provider and the leading provider of training at Black Hat conferences, our penetration testers also have the option of developing training skills and delivering security training, to both private customers, at our own events, and at leading international conferences.

Objectives and Key Results

The Sr. Security Consultant is part of the Consultancy Team and represents a trusted advisor and subject matter expert in cybersecurity.

The key objectives will be to:

• Deliver high-quality penetration testing and security assessments across web, mobile, network, and emerging technologies such as AI/LLM.
• Provide expert guidance and recommendations to clients for improving their security posture.
• Mentor and support junior consultants, helping to grow the team’s overall capabilities.

Essential Duties and Responsibilities

• Work individually or as a part of team delivering security assessments to NotSoSecure clients both remotely and onsite
• Conduct AI/LLM-specific security assessments, including:
• Prompt injection testing and jailbreaks.
• Data poisoning and model inversion attacks.
• Misuse testing for LLM-integrated applications (e.G., chatbots, copilots, RAG pipelines)
• Perform web application penetration testing, infrastructure penetration testing, code reviews and/or mobile application penetration testing
• Exploit vulnerabilities identified in client systems
• Create assessment reports explaining technical and business risk of the vulnerabilities discovered including remediation recommendations for the clients
• Communicate vulnerabilities to clients
• Manage project related tasks as per communicated deadlines
• Keep abreast with latest technology risks and utilise them in projects
• Participate in project conference calls and lead the technical content on those calls

Key Skills and Requirements

• 4+ years of experience in Information Security focussing on penetration testing
• 2+ years of client facing consulting work experience performing penetration testing
• 2+ years of work experience performing the AI/LLM penetration testing
• Strong technical skills in the areas of web application and web services penetration testing, infrastructure penetration testing and mobile apps penetration testing
• Hands-on knowledge of AI/ML fundamentals, including:
• NLP, transformers, and LLM architecture.
• Prompt engineering techniques (and bypasses).
• Common AI/ML attacks and defenses.
• Experience testing RAG (Retrieval Augmented Generation) and vector databases.
• Familiarity with frameworks like LangChain, LlamaIndex, Hugging Face.
• Experience with AI model hosting platforms (OpenAI, Anthropic, Azure OpenAI, local LLMs).
• Experience with penetration testing tools and tool suites such as Burp Suite Pro, NetSparker, Kali Linux, SQLMap, Nessus, etc
• Programming language skills such as Python, Java, .NET, C or C++ - (nice to have)
• Experience working with at least one scripting languages such as Python, Ruby, Bash, Javascript, etc.
• Operating systems skills such as Windows, Linux etc
• Excellent english language skills and ability communicate complex vulnerabilities to clients
• Spending time practicing skills on platforms such Hack The Box, Pentester Lab, Vulnhub, etc. and participating in CTF competitions
• Demonstrate high ethical standards
• Ability and Desire to travel upto 25% of the time (both nationally and globally)

About the Role

We are seeking a highly motivated and experienced OT Security manager to join our dynamic security team. You will play a pivotal role in protecting our organization’s OT systems from cyber threats by developing, implementing, and maintaining a comprehensive security program. This role requires understanding of OT specific security principles.

Responsibilities

• Design, implement, and manage a holistic OT security program that addresses vulnerabilities and risks across both IT and OT environments.
• Design and implement a secure OT architecture, including network segmentation, firewalls, access controls, and specific OT security measures.
• Design secure system architectures for critical infrastructure, implementing network segmentation, access controls, and intrusion detection systems. Their expertise ensures reliable operations in OT/ICS environments.
• Develop, enforce, and maintain security policies, procedures, and best practices for OT domains.
• Oversee incident response activities for OT, including detection, containment, eradication, and recovery, ensuring business continuity and minimal disruption.
• Stay up to date on the latest OT security threats and trends to maintain a proactive security posture.
• Deliver security awareness training programs to educate OT personnel on best practices and potential threats specific to their domains.
• Design and specification of OT architecture and systems from an OT/cyber security perspective. (SCADA/Automation network design and configuration)
• Acting as the lead/project manager on multidiscipline projects along with the project team in close collaboration with clients.
• Manage and maintain OT security tools and technologies, ensuring optimal performance and effectiveness.
• Collaborate effectively with OT teams to integrate security considerations seamlessly into operational procedures.
• Report on the organization’s overall security posture and key security metrics to senior management.

Qualifications

• Bachelor’s degree in Cybersecurity, Information Technology, Engineering, or a related field (master’s degree a plus).
• Minimum 2 years of experience with a strong understanding of OT security principles.
• Proven track record of developing and implementing successful OT security programs.
• In-depth knowledge of OT security frameworks (e.G., ISA/IEC 62443).
• Experience in conducting security assessments and methodologies for OT systems.
• Excellent communication, collaboration, and interpersonal skills.
• Ability to thrive in a fast-paced environment, manage multiple priorities, and work independently while also leading and motivating a team.
• Strong analytical and problem-solving skills.

Preferred Skills

• Experience in relevant industries (e.G., manufacturing, utilities, energy) a strong plus.
• Certifications in OT security (e.G., IEC 62443 Cybersecurity or GICSP, GSEC, SSCP) highly desirable.
• Working knowledge OT architectures and protocols.
• Experience in incident response and disaster recovery planning for OT environments.
• Understanding/experience on Advance Metering Infrastructure is a plus

Location

• Ahmedabad

Your potential, unleashed.

India’s impact on the global economy has increased at an exponential rate and Deloitte presents an opportunity to unleash and realize your potential amongst cutting edge leaders, and organizations shaping the future of the region, and indeed, the world beyond.

At Deloitte, your whole self to work, every day. Combine that with our drive to propel with purpose and you have the perfect playground to collaborate, innovate, grow, and make an impact that matters.

The team

Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure, vigilant, and resilient—not only by looking at how to prevent and respond to attacks, but at how to manage cyber risk in a way that allows you to unleash new opportunities. Embed cyber risk at the start of strategy development for more effective management of information and technology risks

Your work profile.

As an Assistant Manager in our Cyber Team, you’ll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations: -

Key Responsibilities:

• Total 3+years of experience in Cyber security
• VAPT- Web Application Security Pentesting, Mobile Application Testing, Infra Testing, Source Code Review, Cloud Configuration Review
• Certification - OSCP, CRTP, CEH, EJPT
• Understanding of basic business and information technology management processes.
• Good knowledge of TCP/ IP and Networks including Firewall, IDS/IPS, Routers, Switches, and network architecture.
• Experience of Web Application Security Testing, Infrastructure VAPT, API testing.
• Experience on Mobile Security Pen-Testing (iOS and Android).
• Experience in conducting config reviews of Windows, Linux, UNIX, Solaris, Databases, etc.
• Experience with Vulnerability Management tools: Kali Linux, Acunetix, AppScan, Nexpose, Qualys Guard, Nessus, Nmap, Metasploit, Fortify etc.
• Experience in basic scripting such as: Shell, Python, PERL, etc.
• Basic knowledge of Technologies such as: IPSEC, SSL, SSH, VPN, Ethernet Token Ring, WAP, SMTP, FTP, Frame Relay, WAN, ATM, FDDI, DSL, ISDN, HP Openview, Sun NetManage, Cisco Works, Radius, Big Brother, F5

Desired qualifications / Education :

· B.Tech /BE /BCA / B.Sc /M.Tech - Full time

· Candidates must possess security certification of CEH, LPT, OSCP.

· Good to have security certification for GPEN, CREST

Your role as Leader

We expect our people to embrace and live our purpose by challenging themselves to identify issues that are most important for our clients, our people, and for society.

In addition to living our purpose, Senior Executive across our organization must strive to be:

• Inspiring - Leading with integrity to build inclusion and motivation
• Committed to creating purpose - Creating a sense of vision and purpose
• Agile - Achieving high-quality results through collaboration and Team unity
• Skilled at building diverse capability - Developing diverse capabilities for the future
• Persuasive / Influencing - Persuading and influencing stakeholders
• Collaborating - Partnering to build new solutions
• Delivering value - Showing commercial acumen
• Committed to expanding business - Leveraging new business opportunities
• Analytical Acumen - Leveraging data to recommend impactful approach and solutions through the power of analysis and visualization
• Effective communication – Must be well abled to have well-structured and well-articulated conversations to achieve win-win possibilities
• Engagement Management / Delivery Excellence - Effectively managing engagement(s) to ensure timely and proactive execution as well as course correction for the success of engagement(s).
• Managing change - Responding to changing environment with resilience
• Managing Quality & Risk - Delivering high quality results and mitigating risks with utmost integrity and precision
• Strategic Thinking & Problem Solving - Applying strategic mindset to solve business issues and complex problems
• Tech Savvy - Leveraging ethical technology practices to deliver high impact for clients and for Deloitte
• Empathetic leadership and inclusivity - creating a safe and thriving environment where everyone's valued for who they are, use empathy to understand others to adapt our behaviors and attitudes to become more inclusive.

How you’ll grow

Connect for impact

Our exceptional team of professionals across the globe are solving some of the world’s most complex business problems, as well as directly supporting our communities, the planet, and each other. Know more in our Global Impact Report and our India Impact Report.

Empower to lead

You can be a leader irrespective of your career level. Our colleagues are characterised by their ability to inspire, support, and provide opportunities for people to deliver their best and grow both as professionals and human beings. Know more about Deloitte and our One Young World partnership.

Inclusion for all

At Deloitte, people are valued and respected for who they are and are trusted to add value to their clients, teams and communities in a way that reflects their own unique capabilities. Know more about everyday steps that you can take to be more inclusive. At Deloitte, we believe in the unique skills, attitude and potential each and every one of us brings to the table to make an impact that matters.

Drive your career

At Deloitte, you are encouraged to take ownership of your career. We recognise there is no one size fits all career path, and global, cross-business mobility and up / re-skilling are all within the range of possibilities to shape a unique and fulfilling career. Know more about Life at Deloitte.

Everyone’s welcome… entrust your happiness to us

Our workspaces and initiatives are geared towards your 360-degree happiness. This includes specific needs you may have in terms of accessibility, flexibility, safety and security, and caregiving. Here’s a glimpse of things that are in store for you.

Interview tips

We want job seekers exploring opportunities at Deloitte to feel prepared, confident and comfortable. To help you with your interview, we suggest that you do your research, know some background about the organisation and the business area you’re applying to. Check out recruiting tips from Deloitte professionals.

*Caution against fraudulent job offers*: We would like to advise career aspirants to exercise caution against fraudulent job offers or unscrupulous practices.

At Deloitte, ethics and integrity are fundamental and not negotiable. We do not charge any fee or seek any deposits, advance, or money from any career aspirant in relation to our recruitment process. We have not authorized any party or person to collect any money from career aspirants in any form whatsoever for promises of getting jobs in Deloitte or for being considered against roles in Deloitte. We follow a professional recruitment process, provide a fair opportunity to eligible applicants and consider candidates only on merit. No one other than an authorized official of Deloitte is permitted to offer or confirm any job offer from Deloitte. We advise career aspirants to exercise caution.

In this regard, you may refer to a more detailed advisory given on our website at:

Job Title: Consultant - Cloud Security-AWS

Location – Pune/ Hyderabad/Bangalore/Indore

Total Experience – 4-6 Years

How do you grow and be successful

At YASH, we will offer all support to grow in your career. At the very beginning you will receive a deep knowledge on the current SOPs once you are fully onboarded into our Cloud Security team. You will be measured on the positive contribution in delivering the Cloud Security services to our customers. Fluency will be measured on the goals such as improvement of cyber posture of customers through our vulnerability management services.

Our employees will have global exposure from day-1. We offer to learn multiple security domains through our mentored on the-job training program. Aspiring candidates will reach to highest positions and make a global career.

Preferred Skills:

1. A strong understanding of cloud computing technologies, including Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and So ware as a Service (SaaS).
2. Knowledge of security frameworks such as ISO 27001, NIST Cybersecurity Framework, and CIS Controls.
3. Familiarity with cloud security platforms like Microsoft Azure, Amazon Web Services, and Google Cloud Platform.
4. Understanding in all aspects of cloud Security including identity and access management, organizational structure and policies, technologies to provide data protection, network security defenses, security logs, and incident response processes.
5. Good understanding of security concepts (Zero Trust Network, CASB, Cloud computing, SIEM, SOAR, PKI, DevSecOps, IAM and PAM)
6. Experience with other Cloud Platforms like AWS and Google Cloud is nice-to-have
7. Familiarity with Linux and Windows opera ng systems and scrip ng languages like Powershell, Python, .Net
8. Designing security services in cloud-based programs based on pre-defined architecture frameworks
9. Maintain and improve the security posture of the Azure platform
10. Overlook the process of identifying and remeding vulnerabilities
11. Define security controls and policies, access to data, and monitor alerts to ensure that data, apps, containers, infrastructure, and networks are protected.
12. Design access configurations within a cloud solution environment using the defense -in-depth principle
13. Design network security including in a hybrid context with traditional network centric controls
14. Implement and use cloud native tools like Log Analytics, Azure Monitor, Azure Security Center and Azure Sentinel Working knowledge
15. Passion for Cyber Security, being the basic ingredient of success.
16. Necessary so -skills set to successfully understand, challenge and translate the business needs and communicate to the relevant par es with a structured and methodical approach to problem solving
17. You are a team player with good communication skills, proactive and highly motivated individual with a serious handson work ethic

Qualifications:

1. A bachelor's or master's degree in computer science, information technology

• Provide cybersecurity consulting services to various clients of Crossbow Labs.

• Conduct interviews with clients, review client documents for compliance, write compliance reports, and prepare and deliver briefings.

• Travel to client locations to assess and validate physical and technical controls necessary to maintain compliance.

• Review network architecture, hardening of multiple operating systems, malware protection, IDS/IPS, IT controls, network and system monitoring, and protection methods.

• Work closely with clients to assess their IT security posture, identify weaknesses and vulnerabilities in relation to the PCI-DSS security framework, ISO, and other compliance standards.

• Develop compliance procedures and documentation for the PCI program.

• Conduct training sessions for clients and internal teams on PCI DSS and other cybersecurity standards and regulations.

• Strong technical understanding of networks, servers, workstations, and applications.

• Proficiency in the PCI DSS v3.2.1 and PCI DSS v4.0 security standard.

• Good comprehension of the ISO 27001 standard.

• Ability to conduct Risk Management, Business Continuity Planning (BCP), and Disaster Recovery (DR) reviews.

• Capability to perform network architecture reviews.

• Capability to perform system configuration reviews for operating systems (Windows & Linux), servers, databases, routers/switches, and firewalls.

• Ability to conduct firewall/network rules reviews.

• Ability to conduct application architecture reviews, review application security controls, and perform application code reviews.

• Familiarity with cloud-based hosting solutions such as Microsoft Azure and AWS.

• Strong team collaboration skills and client relationship management.

• Excellent oral and written communication skills.

• Ability to work both independently and in collaborative environments to meet delivery obligations.

• Commitment to continuous learning and staying updated with current news and trends in the cybersecurity space.