4,736 Information Security Analyst jobs in India

About the company

Lexitas is a high growth company. The Company is built on a belief that having strong personal relationships with our clients, and providing reliable, accurate and professional services, is the driving force of our success.

Lexitas offers an array of services including local and national court reporting, medical record retrieval, process service, registered agent services and legal talent outsourcing. Our reach is truly national as well as international.

Lexitas is a MNC Company that has set up a subsidiary in Chennai, India – Lexitas India Pvt. Ltd. This Indian company will be the Lexitas Global Capability Center, helping build a world class IT development team, and over time serve as a Shared Services hub for several of the corporate functions.

For More Information -

This is a Full-Time Job located in Chennai, India.

Summary:

This position supports information security, privacy, risk and compliance programs and activities under the direction of the VP of Information Security or designated Information Security Manager. The position assists in developing and maintaining a comprehensive security program for Lexitas. Providing functional and technical support is important to maintain security posture and protection of electronically and physically stored information assets across our systems. Tasks include supporting design, implementation, configuration, documentation, and maintenance to mitigate risk to the business and its computing resources and assets, as well as collaborating with applicable providers, managing and monitoring tools, and facilitating applicable processes and procedures.

Key Roles and Responsibilities :

• Supports IT security, privacy, risk and compliance systems, processes, supporting activities, with the ability to lead activities and programs.
• Monitors computer networks and associated tools and provider services for security, privacy, risk and compliance issues
• Supports the project management, tracking, and documentation of Information, Privacy, Risk, and Compliance programs, processes, and activities
• Investigate security breaches and cybersecurity incidents.
• Documents security breaches and assesses impact.
• Performs and/or supports security tests, risk assessments, and audits to uncover network, application, and process vulnerabilities and provides guidance and training to ensure violations do not persist.
• Tracks and facilitates the mitigation of vulnerabilities to maintain a high security standard.
• Supports best practices for IT security, privacy and compliance.
• Performs and supports 3rd party vulnerability management and penetration testing.
• Research security enhancements and makes recommendations to management.
• Stays current on information technology trends and security standards.
• Prepares reports that detail security, privacy, and compliance risk assessment findings.
• Supports Security Operations Center functions including monitoring and supporting Incident Response activities.
• Supports all related IT Security, Privacy, Risk and Compliance policies and provides guidance to the business.
• Other Information Security, Privacy, Risk, and Compliance duties as required.

Skills and Abilities:

• Experience with computer network and application vulnerability management and penetration testing, and techniques.
• Solid understanding of firewalls, proxies, SIEM, antivirus, and IDPS concepts
• Ability to identify and mitigate network and application vulnerabilities.
• Good understanding of patch management
• Proficient with various OS
• Excellent written and verbal communication skills
• Knowledge of firewalls, antivirus, and intrusion detection system concepts
• Ability to support and document areas of Information Security, Privacy, Risk, and compliance processes and programs.
• Ability to support incident response process.
• Experience directing 3rd Party providers in the areas of Information Security, Privacy, Risk and Compliance
• Support information security controls including physical and data security protecting the confidentiality, integrity and availability of information systems data.
• Preferred KSA’s:
• Strong working knowledge and experience with primary Information Security, Privacy, Risk, and compliance standards and frameworks such as NIST, SOC 2, HIPAA, PCI DSS, GDPR, etc.
• Experience administering information security software and controls.
• Experience supporting process for managing network and application security.
• Network and system administration experience a plus.
• Good understanding of Standard Information Security Baseline Frameworks, Business Continuity, and Disaster Recovery protocols and best practices.
• Exposure to ITIL (Incident/Change Management) – ITIL v3F preferred.
• Learns and monitors the business processes for the areas of primary support responsibility.
• Support annual Security Baseline Audits and execution of recommendations.
• As part of the technology team, performs “Help Desk” day-to-day tasks in support of Information Security, Privacy, Risk, and Compliance.

Education and Experience:

• Bachelor’s degree in computer science or related field strongly preferred.
• IAT Level-2 technical certification strongly preferred (Comp TIA Security+ or CISSP) or ability to obtain within first 90 days of hire.
• 5+ years’ experience performing role of Information Security Analyst or SOC
• Demonstrated experience in responding to, managing, and resolving security incidents.
• Experience with LAN/WAN networking concepts, IP addressing and routing concepts, Windows/Linux/Unix operating systems, Information Security concepts, and best practices.
• Experience with Windows/Linux/Unix operating systems, Information Security concepts, and best practices.
• Experience working with Security Information and Even Management (SIEM) system is a plus.

Information Security Analyst / Specialist

We are looking for a detail-oriented Information Security Analyst/Specialist to join our InfoSec team. The ideal candidate will ensure compliance with industry standards, strengthen security operations, manage risks, and collaborate across teams to safeguard our systems and data.

Responsibilities

• Information Security Governance & Compliance
• Manage compliance with ISO 27001:2022 and SOC 2 Type II frameworks.
• Support ITGC audits in collaboration with Finance.
• Conduct internal audits, gap assessments, and evidence collection for certification and surveillance audits.
• Review and update ISMS policies, procedures, and controls regularly.
• Support customer and prospect audits by providing responses, clarifications, and documentation.
• Risk & Threat Management
• Perform application, infrastructure, and vendor risk assessments.
• Conduct third-party/vendor security assessments and track remediation.
• Monitor and ensure closure of audit findings, vulnerabilities, and identified security gaps.
• Security Operations & Monitoring
• Review AWS logs, IAM, RBAC, firewall rules, and other security configurations.
• Conduct monthly/quarterly user access reviews across systems (SSH, RBAC, DB, SaaS).
• Track patch management, antivirus, and endpoint protection compliance.
• Manage SIEM and SAST tools for continuous monitoring.
• Vulnerability & Incident Management
• Coordinate periodic VAPT (Infra, Web, Mobile) with external agencies and internal teams.
• Support remediation, validation, and closure of vulnerabilities.
• Assist in incident response, root cause analysis, and corrective actions.

Skills & Qualifications

• Strong understanding of ISO 27001:2022, SOC 2 Type II, ITGC audits, ISMS policies.
• 2 to 5 Years of relevant experience. 
• Experience in VAPT coordination, remediation, and vulnerability management.
• Knowledge of AWS security configurations, IAM, RBAC, firewall rules, and cloud security practices.
• Hands-on experience with SIEM, SAST (SonarQube), endpoint protection, and patch management tools.
• Familiarity with Disaster Recovery, BCP, and backup strategies.
• Analytical & Risk Management Skills
• Proficiency in conducting risk assessments and managing risk treatment plans
• Experience with vendor/third-party assessments and compliance documentation.
• Strong troubleshooting and root cause analysis abilities.
• Preferred Qualifications
• Bachelor’s degree in Computer Science, Information Security, or related field. 
• Industry certifications such as ISO 27001 Lead Auditor/Implementer, CISA, CISSP, CISM, CEH, or AWS Security Specialty (preferred but not mandatory).

What will you experience working with our team?

• Career Growth – This role is designed to evolve into a brand leadership position.
• Full Content Lifecycle Exposure – Learn and own the entire journey from content creation to distribution.
• Video & Digital-First Approach – Work in a team that values video storytelling and data-driven narratives.
• Make an Impact – Your content will shape conversations in FMCG distribution and supply chain tech.
• Freedom and Fun - Bizom’s culture is unique, you’ll feel like Schrödinger’s cat, simultaneously immersed in both the thrill of challenges and the excitement of workplace fun.

Why Mobisy?

• We are happy souls, working together and having each other’s back! People, Product, and Profit is our motto.
• Fly beyond your imagination - we believe in giving wings to your passion.
• No Kinder-garden here. We fall, we learn, and we stick together like chewing gum.
• We jam together! Whether it's a code, a pitch or a plan - collaboration is our secret sauce. We win as one.
• Little things add up! We believe in compounding - small efforts every day lead to big, magical outcomes.
• We trust in our association and give free rein to our employees to act, explore, and deliver sustainable results.
• We celebrate success hard - and failures even harder. It’s always a collective win or a collective miss.
• Have buddies, mentors - but be your own boss. It goes hand in hand.
• Know your people. Talk, chat, learn, and share - access anyone in the family, anytime.
• Stay quiet. Stay foolish. We speak up, do the right thing, and always keep our clients and company in mind.
• We roll up our sleeves, get our hands dirty, dream big, and achieve together.

What Will you get while working with Mobisy?

• Work is Fun - We believe work is fun - and we go the extra mile to make sure you enjoy what you do every single day.
• Design Your Own Role - You don’t just fit into a job - we let you shape it. Take up what excites you, and we’ll back you with trust and responsibility.
• Freedom to Own Your Work - Less rules, more trust. You get the freedom to figure things out your way - with the right support when needed.
• Take Full Ownership - It’s your ship. You steer it. You own it. You make things happen.
• Grow into a Leader - This isn’t just a job - it’s your launchpad to becoming a strong, independent leader.
• People Come First - Always. We back our people through thick and thin. That’s our culture.
• Stay Fit & Feel Good - We care about your health - with fitness activities, sports, and regular wellness sessions to keep you balanced.
• Happy Tummy, Happy You - Enjoy fresh, tasty meals every day at our very own in- house cafeteria. We take food seriously!

What will you not get?

• Punch In, Punch Out Culture – We hate login-logout rules. Du-uh, we’re not in school! We care about outcomes, not clock-watching.
• Spoon-Feeding – No hand-holding here. You’ll get all the support you need - but you’re expected to take charge and carve your own path
• Too Many Rules – We don’t overload you with rigid processes. We offer simple guidelines and a helping hand - ownership is all yours.
• Yes-Mam, No-Mam Culture – We respect ideas, not titles. Speak up, challenge, build - no sir/ma’am culture here.
• Blame Games – We own our wins and our misses - together. We don’t point fingers, we fix things

 If you find the above details interesting; we encourage you to apply. We are building a

 diverse team whose skills balance and complement one another.

Mobisy Technologies is an equal opportunity employer and we value diversity. We do not discriminate on the basis of race, religion, colour, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.

• Monitor security systems and networks for potential threats and vulnerabilities.
• Investigate and respond to security incidents in a timely and effective manner.
• Conduct vulnerability assessments and penetration testing.
• Develop and implement security policies, procedures, and best practices.
• Configure and manage security tools such as firewalls, IDS/IPS, and SIEM.
• Analyze security logs and events to identify malicious activity.
• Provide security awareness training to employees.
• Stay up-to-date with the latest cybersecurity threats and technologies.
• Collaborate with IT teams to ensure security is integrated into all systems.
• Assist in developing and maintaining disaster recovery and business continuity plans.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• 2-4 years of experience in information security or a related IT role.
• Solid understanding of network protocols and security concepts.
• Experience with security monitoring tools and techniques.
• Knowledge of common attack vectors and mitigation strategies.
• Familiarity with security frameworks (e.g., ISO 27001, NIST).
• Strong analytical and problem-solving skills.
• Excellent written and verbal communication skills.
• Ability to work effectively both independently and as part of a team.
• Relevant security certifications (e.g., CompTIA Security+, CEH) are a plus.

• Monitor security systems and networks for potential threats and vulnerabilities.
• Analyze security alerts and investigate security incidents to determine the scope and impact.
• Implement and manage security controls, including firewalls, IDS/IPS, and endpoint protection.
• Conduct regular vulnerability assessments and penetration tests.
• Develop and maintain incident response plans and procedures.
• Assist in security awareness training for employees.
• Ensure compliance with relevant security policies, standards, and regulations.
• Stay updated on the latest cybersecurity threats, trends, and technologies.
• Collaborate with IT teams to implement security best practices and remediation strategies.
• Document security procedures, incidents, and findings.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• 3+ years of experience in information security or cybersecurity roles.
• Strong understanding of network security, system security, and cybersecurity principles.
• Experience with SIEM tools, firewalls, IDS/IPS, and endpoint security solutions.
• Familiarity with vulnerability assessment and penetration testing methodologies.
• Relevant certifications such as CompTIA Security+, CEH, CISSP are a plus.
• Excellent analytical, problem-solving, and critical thinking skills.
• Strong communication and interpersonal skills.
• Ability to work effectively in a team and independently.
• Knowledge of relevant security frameworks (e.g., NIST, ISO 27001).

• Monitor network and system activity for security threats and breaches using SIEM tools.
• Conduct vulnerability assessments and penetration testing to identify security weaknesses.
• Respond to and investigate security incidents, providing timely remediation and post-incident analysis.
• Implement and maintain security controls and technologies, such as firewalls, intrusion detection/prevention systems, and antivirus software.
• Develop and update security policies, procedures, and guidelines.
• Provide security awareness training to employees.
• Stay current with the latest cybersecurity threats, vulnerabilities, and industry trends.
• Collaborate with IT teams to ensure security is integrated into system design and deployment.
• Perform security audits and ensure compliance with relevant regulations.
• Manage security documentation and reporting.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Minimum of 3-5 years of experience in information security, network security, or a related role.
• Proficiency in security monitoring tools, SIEM platforms (e.g., Splunk, QRadar), and vulnerability scanning tools.
• Strong understanding of network protocols, operating systems (Windows, Linux), and common attack vectors.
• Experience with incident response procedures and digital forensics is a plus.
• Knowledge of security frameworks (e.g., ISO 27001, NIST).
• Excellent analytical, problem-solving, and critical-thinking skills.
• Strong communication and interpersonal skills.
• Relevant certifications such as CompTIA Security+, CISSP, or CEH are highly desirable.
• Ability to work effectively both independently and as part of a team in Thane, Maharashtra .

• Monitor security alerts and logs from various security tools (SIEM, IDS/IPS, firewalls, etc.).
• Conduct vulnerability assessments and penetration testing to identify potential weaknesses.
• Investigate security incidents, perform root cause analysis, and recommend corrective actions.
• Develop and maintain security policies, procedures, and guidelines.
• Implement and manage security technologies, including endpoint protection, encryption, and access controls.
• Stay up-to-date with the latest security threats, vulnerabilities, and industry trends.
• Assist in the development and delivery of security awareness training for employees.
• Ensure compliance with relevant data protection regulations and industry standards.
• Participate in incident response planning and tabletop exercises.
• Collaborate with IT teams to integrate security into the system development lifecycle.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Minimum of 4 years of experience in information security or a related IT security role.
• Strong knowledge of cybersecurity frameworks (e.g., NIST, ISO 27001).
• Hands-on experience with security tools such as SIEM, vulnerability scanners, and firewalls.
• Understanding of network security, cryptography, and security protocols.
• Excellent analytical and problem-solving skills.
• Strong written and verbal communication skills.
• Ability to work independently and manage time effectively in a remote setting.
• Relevant certifications such as CISSP, CompTIA Security+, or CEH are a strong plus.

• Monitoring security alerts and logs for suspicious activity using SIEM tools.
• Investigating and responding to security incidents in a timely and effective manner.
• Conducting vulnerability scans and penetration tests to identify weaknesses.
• Developing and implementing security policies, procedures, and controls.
• Assisting with security awareness training for employees.
• Maintaining and updating security documentation and incident response plans.
• Collaborating with IT teams to ensure secure system configurations.
• Staying current with the latest security threats, trends, and technologies.
• Performing risk assessments and recommending mitigation strategies.

• Monitor security systems, including firewalls, intrusion detection/prevention systems, and SIEM tools, for suspicious activity.
• Investigate and respond to security incidents, breaches, and cyber-attacks.
• Conduct vulnerability assessments and penetration testing to identify security weaknesses.
• Implement and maintain security controls and technologies to protect organizational assets.
• Develop, update, and enforce information security policies, standards, and procedures.
• Perform regular security audits and risk assessments.
• Provide security awareness training to employees.
• Stay current with emerging cybersecurity threats, vulnerabilities, and technologies.
• Collaborate with IT teams to implement secure system configurations and network designs.
• Manage security-related documentation and incident response plans.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Minimum of 3-5 years of experience in information security, cybersecurity operations, or a related role.
• Strong understanding of cybersecurity principles, protocols, and best practices (e.g., NIST, ISO 27001).
• Experience with security tools such as SIEM, IDS/IPS, vulnerability scanners, and endpoint protection.
• Knowledge of network security, cloud security, and application security.
• Relevant certifications such as CompTIA Security+, CISSP, CEH are highly desirable.
• Excellent analytical, problem-solving, and incident response skills.
• Strong communication and interpersonal skills, with the ability to explain technical concepts to non-technical audiences.
• Ability to work effectively in a team environment and under pressure.