4,949 Ethical Hackers jobs in India

The Information Security Specialist will be responsible for monitoring, maintaining, and improving the organization’s security posture. The role involves incident management and response, endpoint security, identity and access management, compliance with ISO 27001:2022, and support in employee awareness programs. The specialist will work closely with cross-functional teams to ensure security standards and policies are adhered to, while supporting Head of IT in day-to-day security operations.

Key Responsibilities

Incident Response & Security Operations

• Incident detection, investigation, containment, response, and recovery.
• Coordinate with teams for patch deployment and lifecycle management.
• Device management, control, and encryption.
• Monitor threats, alerts, suspicious activity, and data leakage attempts.
• Ensure antivirus definitions, compliance, and endpoint encryption.
• Detect and report unmanaged/rogue devices.
• Escalate critical security incidents to the appropriate team.

Vulnerability assessment & Patch Management

• Track and remediate vulnerabilities across endpoints and servers.
• Regular reviews of patch compliance and deployment status.

Identity & Access Management

• Active Directory user and group management.
• Configure and monitor MFA, SSO, and conditional access policies.

Compliance & Governance

• Maintain ISO 27001:2022 documentation (policies, procedures, risk registers, and audit logs).
• Support internal and external audits across departments. Track remediation plans and follow up with relevant stakeholders.
• Conduct periodic InfoSec awareness campaigns and employee training.
• Draft and circulate regular security advisories and reminders.
• Support basic monitoring and access control reviews.
• IT Asset Management throughout its lifecycle, support in procurement.

• Bachelor’s degree in computer science/information technology, or related field with a focus on Information Security.
• Minimum of 3 years of experience in Information Security and Compliance.
• Familiarity with ISO 27001:2022, SOC2, VAPT, GDPR, and DPDP Act.
• Certification like CompTIA A+ ,Network+ and CISM are preferred.
• Strong ability to learn and adapt to emerging technologies and software applications.

Role Summary

As a member of Global Security Operations Center, you will be responsible for driving the operational activities of SOC and lead complex investigations, conduct advanced threat analysis, and initiate incident responses activities across various business units. He/she is also responsible for process improvement activities, mentoring the team through training initiatives.

Responsibilities

• Managing shifts / team in the 24X7 SOC Environment.
• Act as a first point of escalation for SOC team and assist with handing out work assignments to the team members.
• Handling escalated security incidents/ issues, Responsible for deep dive analysis of escalated incidents, threat hunting.
• Highlight potential security risks to SOC Manager and concerned SPOCs.
• Maintain and optimize security tools and technologies used within the SOC.
• Support Adhoc investigations on need basis.
• Identify opportunities for continuous improvement in security operations.
• Continuously improve threat detection capabilities, use cases and SOPs.
• Support SOC manager for creating new operational guidelines, processes, and procedures.
• Mentor and provide guidance to L1 analysts and serves as the POC for escalation issues that may arise.
• Support rotational 16x5 operational shifts and on call when needed.

Role Requirements

Experience

At least 7+ years prior experience as a SOC Lead/Lead Analyst in SOC environment with hands-on experience in performing security monitoring and response activities, incident handling, alert tracking, and/or cybersecurity case management.

Process and Technology Skills

• Proven experience in handling any of the EDR solution such as Defender or Crowdstrike.
• Configure and optimize EDR settings to enhance security posture and ensure effective threat detection.
• Analyze threat intelligence and security data to identify trends, patterns, and emerging threats
• Capability to recognize different security situations and refine recurring security notifications by finetuning.
• Respond to security incidents promptly, conducting thorough investigations and implementing remediation strategies to mitigate risks.
• Strong background in incident analysis, evidence collection, documentation, communications, reporting and response.
• Ability to manage cloud security controls, including firewalls, intrusion detection systems, and encryption protocols.
• Lead and coordinate incident response efforts for cloud-related security incidents.
• Collaborate with business and development teams to ensure security best practices are integrated into cloud architecture and deployments.
• Proven experience with cloud platforms such as AWS, Azure, or Google Cloud.
• Experience in mentoring and training junior analysts, Provide technical and functional support to L1 Team with analytical feedback.
• Proven experience in any SIEM tools and/or log management solution
• Must have good knowledge in firewalls, IDS/IPS, Anti-Virus, EDR, Proxy, DNS, email, AD, etc.
• Good understanding of mainstream operating systems (Windows, Linux, etc) and security infrastructure
• Good understanding of log parsing and event analysis (Ability to understand and interpret Windows, Linux OS, firewall, web proxy, DNS log events)
• Expertise in creation of reports, dashboards, metrics for SOC operations
• Knowledge in developing use cases for security monitoring, threat management and threat modelling.
• Knowledge of MITRE or similar frameworks and procedures used by adversaries.
• Advanced knowledge of malware operation and indicators
• Good understanding of ITIL processes including Incident Management, Change Management and Problem Management
• Advanced knowledge of networking fundamentals (OSI Layers, TCP/IP, protocols, and services.)
• Sound knowledge in Information Security policies, procedures, standards, best practices, and guidelines
• Involvement in threat intelligence and cybersecurity communities.
• Deep understanding of Cyber Kill Chain and other applicable analytic models
• Optionally, experience in at least one of the following: Python, PowerShell, VBscript.

Other skills

• Knowledge and understanding of project management methodologies, processes, and tools.
• Strong analytical skills and ability to solve complex technical problems with high attention to detail and accuracy.
• Strong team player and ability to work in a challenging and constantly changing environment.
• Ability to multitask and work independently with minimal direction and maximum accountability.
• Proficiency in verbal and written communication skills.
• Proficiency in time management and presentation skills
• Proficiency in decision-making and problem-solving skills

Education and Certification

• Bachelor’s degree in computer information systems or related field or equivalent demonstrated experience & knowledge.
• Professional certification in Information security like Security+, CCSE, CCSP, AZ900 – AZ500 etc., TICSA, MCSE, CISSP, etc. would be advantageous

Designation - Information Security Specialist

Location - Address: 4th Floor, NCC Windsor, International Airport Road, opposite Flying Club, Yashoda Nagar, Jakkur, Bengaluru, Karnataka

Job Type: Full Time

Job Summary:

We are seeking a skilled and proactive Information Security Specialist to join our Internal IT

team. This role will be pivotal in developing, streamlining, and maintaining the

organisations Information Security Management System (ISMS) and leading the

implementation of ISO 27001 standards and the regulations that the business needs to

comply with, like GDPR, DPDP Act. The ideal candidate will have a strong understanding of

information security frameworks, risk management, and compliance requirements.

Key Responsibilities :

• Lead the development, implementation, and maintenance of the organizations

ISMS in alignment with ISO 27001 standards.

• Conduct gap analysis and risk assessments to identify vulnerabilities and

recommend mitigation strategies.

• Collaborate with cross-functional teams to define and document security policies,

procedures, and controls.

• Drive ISO 27001 certification readiness, including internal audits, corrective actions,

and continuous improvement initiatives.

• Monitor compliance with internal security policies and external regulatory

requirements.

• Provide training and awareness programs to employees on information security

best practices.

• Stay updated with the latest security trends, threats, and technologies to ensure

proactive risk management.

• Support incident response planning and execution, including post-incident analysis

and reporting.

• Maintain documentation and evidence required for audits and certification

processes.

• Develop and maintain a risk register and ensure timely mitigation of identified risks.
• Coordinate with external auditors and consultants during certification and

surveillance audits.

• Evaluate and implement security tools and technologies to enhance the

organizations security posture.

• Perform regular vulnerability assessments and penetration testing coordination.
• Ensure secure configuration and hardening of IT infrastructure and applications.
• Support data classification and data protection initiatives across the organization.
• Assist in business continuity and disaster recovery planning from a security

perspective.

• Track and report key performance indicators (KPIs) and metrics related to

information security.

• Participate in change management processes to assess security impacts of new

projects and technologies.

Desired Profile :

• Bachelors degree in information technology, Cybersecurity, Computer Science, or a

related field.

• Professional certifications such as ISO 27001 Lead Implementer, CISSP, CISM, CISA,

or equivalent.

• Minimum 5 years of experience in information security, with at least 2 years

focused on ISMS and ISO 27001 implementation.

• Strong understanding of security governance, risk management, and compliance

frameworks.

• Experience conducting internal audits and managing external audit processes.
• Familiarity with regulatory requirements such as GDPR, HIPAA, or other relevant

standards.

• Hands-on experience with security tools and technologies (e.g., SIEM, DLP,

vulnerability scanners, endpoint protection). Understanding of firewalls, proxies,

SIEM, antivirus, and IDS/IPS concepts.

Ability to identify and mitigate network vulnerabilities and explain how to avoid

them.

• Knowledge of cloud security principles and controls (Azure, MS Purview, MS

Defender).

• Strong analytical and problem-solving skills.
• Excellent communication, presentation, and documentation abilities.
• Ability to manage multiple projects and priorities in a dynamic environment.
• Experience in developing and delivering security awareness training programs.
• Sound knowledge of identity and access management and deploying tools to

manage single sign-on.

• Sound understanding of IT infrastructure with significant hands-on experience in

cloud platforms.

• Ability to work effectively & guide technical team members. Highly self-motivated;

able to operate autonomously in a dynamic environment

Why Join Us:

• Be part of a fast-paced, customer-focused IT team.
• Gain hands-on experience with leading enterprise SaaS and endpoint management tools.
• Opportunity to grow your skills and advance your career through continuous learning.

About the Company:Ample is a 28 years old organisation. What does it mean for you?We are a stable organisation with with over 28 years of experience in SI / IT - in an environment where companies rarely cross 10.• We have built trusting relationships - with team members, customers and partners, several of them for over a decade, and many over two decades.• We have navigated diverse challenges, disruptions and have navigated them all, and emerged triumphant.

The foundation for future growth is on the following foundations:Globally revered brands in partnerships with Ample - in the enterprise and retail industry• You would be representing a brand that the market has revered and valued over two decades• We aspire to grow at a trailblazing pace over the next 5 years, and reach USD 1 Billion . This will need leaders who can take the mantle of responsibility towards this opportunity. • Our current enterprise base of 1500 customers is spread across the country and will become the core of our growth engine

We live our vision and values:Our customers and team members experience this every day, making it a place to be for anyone engaging with us We have an open culture where people are expected to focus on what-is-right instead of who-is-right. Feedback, suggestions and comments are encouraged, and acted upon. Anyone can speak to anyone in the organisation.

Role Summary

As a member of Global Security Operations Center, you will be responsible for driving the operational activities of SOC and lead complex investigations, conduct advanced threat analysis, and initiate incident responses activities across various business units. He/she is also responsible for process improvement activities, mentoring the team through training initiatives.

Responsibilities

• Managing shifts / team in the 24X7 SOC Environment.
• Act as a first point of escalation for SOC team and assist with handing out work assignments to the team members.
• Handling escalated security incidents/ issues, Responsible for deep dive analysis of escalated incidents, threat hunting.
• Highlight potential security risks to SOC Manager and concerned SPOCs.
• Maintain and optimize security tools and technologies used within the SOC.
• Support Adhoc investigations on need basis.
• Identify opportunities for continuous improvement in security operations.
• Continuously improve threat detection capabilities, use cases and SOPs.
• Support SOC manager for creating new operational guidelines, processes, and procedures.
• Mentor and provide guidance to L1 analysts and serves as the POC for escalation issues that may arise.
• Support rotational 16x5 operational shifts and on call when needed.

Role Requirements

Experience

At least 7+ years prior experience as a SOC Lead/Lead Analyst in SOC environment with hands-on experience in performing security monitoring and response activities, incident handling, alert tracking, and/or cybersecurity case management.

Process and Technology Skills

• Proven experience in handling any of the EDR solution such as Defender or Crowdstrike.
• Configure and optimize EDR settings to enhance security posture and ensure effective threat detection.
• Analyze threat intelligence and security data to identify trends, patterns, and emerging threats
• Capability to recognize different security situations and refine recurring security notifications by finetuning.
• Respond to security incidents promptly, conducting thorough investigations and implementing remediation strategies to mitigate risks.
• Strong background in incident analysis, evidence collection, documentation, communications, reporting and response.
• Ability to manage cloud security controls, including firewalls, intrusion detection systems, and encryption protocols.
• Lead and coordinate incident response efforts for cloud-related security incidents.
• Collaborate with business and development teams to ensure security best practices are integrated into cloud architecture and deployments.
• Proven experience with cloud platforms such as AWS, Azure, or Google Cloud.
• Experience in mentoring and training junior analysts, Provide technical and functional support to L1 Team with analytical feedback.
• Proven experience in any SIEM tools and/or log management solution
• Must have good knowledge in firewalls, IDS/IPS, Anti-Virus, EDR, Proxy, DNS, email, AD, etc.
• Good understanding of mainstream operating systems (Windows, Linux, etc) and security infrastructure
• Good understanding of log parsing and event analysis (Ability to understand and interpret Windows, Linux OS, firewall, web proxy, DNS log events)
• Expertise in creation of reports, dashboards, metrics for SOC operations
• Knowledge in developing use cases for security monitoring, threat management and threat modelling.
• Knowledge of MITRE or similar frameworks and procedures used by adversaries.
• Advanced knowledge of malware operation and indicators
• Good understanding of ITIL processes including Incident Management, Change Management and Problem Management
• Advanced knowledge of networking fundamentals (OSI Layers, TCP/IP, protocols, and services.)
• Sound knowledge in Information Security policies, procedures, standards, best practices, and guidelines
• Involvement in threat intelligence and cybersecurity communities.
• Deep understanding of Cyber Kill Chain and other applicable analytic models
• Optionally, experience in at least one of the following: Python, PowerShell, VBscript.

Other skills

• Knowledge and understanding of project management methodologies, processes, and tools.
• Strong analytical skills and ability to solve complex technical problems with high attention to detail and accuracy.
• Strong team player and ability to work in a challenging and constantly changing environment.
• Ability to multitask and work independently with minimal direction and maximum accountability.
• Proficiency in verbal and written communication skills.
• Proficiency in time management and presentation skills
• Proficiency in decision-making and problem-solving skills

Education and Certification

• Bachelor’s degree in computer information systems or related field or equivalent demonstrated experience & knowledge.
• Professional certification in Information security like Security+, CCSE, CCSP, AZ900 – AZ500 etc., TICSA, MCSE, CISSP, etc. would be advantageous

The Information Security Specialist will be responsible for monitoring, maintaining, and improving the organization’s security posture. The role involves incident management and response, endpoint security, identity and access management, compliance with ISO 27001:2022, and support in employee awareness programs. The specialist will work closely with cross-functional teams to ensure security standards and policies are adhered to, while supporting Head of IT in day-to-day security operations.

Key Responsibilities

Incident Response & Security Operations

• Incident detection, investigation, containment, response, and recovery.
• Coordinate with teams for patch deployment and lifecycle management.
• Device management, control, and encryption.
• Monitor threats, alerts, suspicious activity, and data leakage attempts.
• Ensure antivirus definitions, compliance, and endpoint encryption.
• Detect and report unmanaged/rogue devices.
• Escalate critical security incidents to the appropriate team.

Vulnerability assessment & Patch Management

• Track and remediate vulnerabilities across endpoints and servers.
• Regular reviews of patch compliance and deployment status.

Identity & Access Management

• Active Directory user and group management.
• Configure and monitor MFA, SSO, and conditional access policies.

Compliance & Governance

• Maintain ISO 27001:2022 documentation (policies, procedures, risk registers, and audit logs).
• Support internal and external audits across departments. Track remediation plans and follow up with relevant stakeholders.
• Conduct periodic InfoSec awareness campaigns and employee training.
• Draft and circulate regular security advisories and reminders.
• Support basic monitoring and access control reviews.
• IT Asset Management throughout its lifecycle, support in procurement.

• Bachelor’s degree in computer science/information technology, or related field with a focus on Information Security.
• Minimum of 3 years of experience in Information Security and Compliance.
• Familiarity with ISO 27001:2022, SOC2, VAPT, GDPR, and DPDP Act.
• Certification like CompTIA A+ ,Network+ and CISM are preferred.
• Strong ability to learn and adapt to emerging technologies and software applications.

• Implement and manage security controls across the organization's IT infrastructure.
• Conduct regular security assessments, vulnerability scans, and penetration tests.
• Develop and maintain security policies, standards, and procedures.
• Design and deploy security solutions, including firewalls, VPNs, and intrusion detection systems.
• Monitor security alerts and investigate potential security breaches.
• Respond to security incidents, perform root cause analysis, and implement remediation plans.
• Ensure compliance with relevant data protection regulations and security standards.
• Collaborate with IT teams to integrate security into the system development lifecycle.
• Stay informed about emerging threats and vulnerabilities, and update security measures accordingly.

• Bachelor's or Master's degree in Computer Science, Information Security, or a related technical field.
• Minimum of 4-6 years of experience in information security or cybersecurity roles.
• In-depth knowledge of cybersecurity principles, technologies, and frameworks (e.g., NIST, ISO 27001).
• Experience with network security, endpoint security, and cloud security solutions.
• Proficiency in security assessment tools and techniques.
• Strong analytical and problem-solving skills, with the ability to handle complex security challenges.
• Excellent communication and teamwork abilities.
• Relevant certifications such as CISSP, CISM, or CEH are highly desirable.

• Assist in the implementation and maintenance of security measures.
• Monitor network and system logs for security breaches and intrusions.
• Respond to and investigate security incidents under supervision.
• Conduct basic vulnerability scanning and reporting.
• Support the development and delivery of security awareness training.
• Maintain security documentation and records.
• Ensure compliance with company security policies and procedures.
• Assist in the management of security tools and technologies.
• Collaborate with IT staff to implement security patches and updates.
• Stay informed about emerging security threats and technologies.

• Bachelor's degree in Computer Science, Information Technology, or a related field.
• 1-3 years of experience in an IT or Information Security role.
• Foundational knowledge of cybersecurity principles and practices.
• Familiarity with network security concepts (firewalls, VPNs).
• Basic understanding of operating systems (Windows, Linux).
• Good analytical and problem-solving skills.
• Effective written and verbal communication skills.
• Certifications like CompTIA Security+ are a plus.

Designation - Information Security Specialist

Location - Address: 4th Floor, NCC Windsor, International Airport Road, opposite Flying Club, Yashoda Nagar, Jakkur, Bengaluru, Karnataka

Job Type: Full Time

Job Summary:

We are seeking a skilled and proactive Information Security Specialist to join our Internal IT

team. This role will be pivotal in developing, streamlining, and maintaining the

organisations Information Security Management System (ISMS) and leading the

implementation of ISO 27001 standards and the regulations that the business needs to

comply with, like GDPR, DPDP Act. The ideal candidate will have a strong understanding of

information security frameworks, risk management, and compliance requirements.

Key Responsibilities :

• Lead the development, implementation, and maintenance of the organizations

ISMS in alignment with ISO 27001 standards.

• Conduct gap analysis and risk assessments to identify vulnerabilities and

recommend mitigation strategies.

• Collaborate with cross-functional teams to define and document security policies,

procedures, and controls.

• Drive ISO 27001 certification readiness, including internal audits, corrective actions,

and continuous improvement initiatives.

• Monitor compliance with internal security policies and external regulatory

requirements.

• Provide training and awareness programs to employees on information security

best practices.

• Stay updated with the latest security trends, threats, and technologies to ensure

proactive risk management.

• Support incident response planning and execution, including post-incident analysis

and reporting.

• Maintain documentation and evidence required for audits and certification

processes.

• Develop and maintain a risk register and ensure timely mitigation of identified risks.
• Coordinate with external auditors and consultants during certification and

surveillance audits.

• Evaluate and implement security tools and technologies to enhance the

organizations security posture.

• Perform regular vulnerability assessments and penetration testing coordination.
• Ensure secure configuration and hardening of IT infrastructure and applications.
• Support data classification and data protection initiatives across the organization.
• Assist in business continuity and disaster recovery planning from a security

perspective.

• Track and report key performance indicators (KPIs) and metrics related to

information security.

• Participate in change management processes to assess security impacts of new

projects and technologies.

Desired Profile :

• Bachelors degree in information technology, Cybersecurity, Computer Science, or a

related field.

• Professional certifications such as ISO 27001 Lead Implementer, CISSP, CISM, CISA,

or equivalent.

• Minimum 5 years of experience in information security, with at least 2 years

focused on ISMS and ISO 27001 implementation.

• Strong understanding of security governance, risk management, and compliance

frameworks.

• Experience conducting internal audits and managing external audit processes.
• Familiarity with regulatory requirements such as GDPR, HIPAA, or other relevant

standards.

• Hands-on experience with security tools and technologies (e.g., SIEM, DLP,

vulnerability scanners, endpoint protection). Understanding of firewalls, proxies,

SIEM, antivirus, and IDS/IPS concepts.

Ability to identify and mitigate network vulnerabilities and explain how to avoid

them.

• Knowledge of cloud security principles and controls (Azure, MS Purview, MS

Defender).

• Strong analytical and problem-solving skills.
• Excellent communication, presentation, and documentation abilities.
• Ability to manage multiple projects and priorities in a dynamic environment.
• Experience in developing and delivering security awareness training programs.
• Sound knowledge of identity and access management and deploying tools to

manage single sign-on.

• Sound understanding of IT infrastructure with significant hands-on experience in

cloud platforms.

• Ability to work effectively & guide technical team members. Highly self-motivated;

able to operate autonomously in a dynamic environment

Why Join Us:

• Be part of a fast-paced, customer-focused IT team.
• Gain hands-on experience with leading enterprise SaaS and endpoint management tools.
• Opportunity to grow your skills and advance your career through continuous learning.

About the Company:Ample is a 28 years old organisation. What does it mean for you? We are a stable organisation with with over 28 years of experience in SI / IT - in an environment where companies rarely cross 10.• We have built trusting relationships - with team members, customers and partners, several of them for over a decade, and many over two decades.• We have navigated diverse challenges, disruptions and have navigated them all, and emerged triumphant.

The foundation for future growth is on the following foundations: Globally revered brands in partnerships with Ample - in the enterprise and retail industry• You would be representing a brand that the market has revered and valued over two decades• We aspire to grow at a trailblazing pace over the next 5 years, and reach USD 1 Billion . This will need leaders who can take the mantle of responsibility towards this opportunity. • Our current enterprise base of 1500 customers is spread across the country and will become the core of our growth engine

We live our vision and values: Our customers and team members experience this every day, making it a place to be for anyone engaging with us We have an open culture where people are expected to focus on what-is-right instead of who-is-right. Feedback, suggestions and comments are encouraged, and acted upon. Anyone can speak to anyone in the organisation.