3,077 Infosec Analyst jobs in India

Job Title: VAPT – Executive

Department: IS & IT

Experience required: 4 to 5 years

Location: Udaipur

Type : Full Time, Work from Office

Required Skills and Qualifications:

• Bachelor’s degree in Computer Science, Information Security, or a related field.
• 4–5 years of relevant experience in VAPT, ethical hacking, or security testing .
• Sound knowledge of network protocols, web technologies, operating systems , and security best practices.
• Relevant certifications preferred: Certified Ethical Hacker (CEH) certification

Key Responsibilities:

• Conduct vulnerability assessments and penetration testing on web applications, mobile apps, and network infrastructure.
• Analyze scan results, identify security gaps, and provide actionable remediation plans.
• Collaborate with development, network, and infrastructure teams to verify and validate fixes .
• Maintain and update VAPT tools and scripts regularly to ensure effective testing.
• Prepare detailed reports with findings, risk ratings, and recommendations following industry standards (OWASP, CVSS, etc.
• Stay updated with the latest vulnerabilities, threats, attack vectors, and security trends .
• Ensure compliance with internal security policies and external regulatory requirements (e.g., ISO 27001, PCI-DSS).
• Assist in red teaming/ethical hacking initiatives and provide support during internal/external security audits.
• Contribute to developing and improving standard operating procedures (SOPs), testing methodologies, and reporting templates.

Please share your resume at

Roles & responsibilities:

• Oversee the information security programs including data protection, risk management, and compliance testing.

• Auditing IT systems to ensure they are secure and compliant with organizational policies and procedures, regulations and industry standards.

• Assisting CISO in identification/ execution of solutions to information security related issues, metric measurements and performance monitoring.

Candidate should have :

(a) Thorough understanding of Networks, networks devices and network Security devices like Firewall, etc.

(b) Knowledge of security tools and devices – VPN, EDR/ XDR, Antivirus, Firewall, DLP, Proxy, Anti-ransomware solution.

(c) Knowledge on managing AD, DMARC, MDM/ MAM solution.

(d) Knowledge of managing and security related aspects of cloud platforms like GCP.

(e) Should be able to assist in conduct of IT and Cyber audits.

(f) Decent command over English language and should be able to express both verbally and in written form

Certifications preferred – CISA/ CISM, ISO27001.

Qualification – Bachelors in relevant field (B.Sc/ BCA/ B.E./ B.Tech)

Experience – Minimum 5 years

About Leegality:

We're India's very first Document Infrastructure Platform. Our mission? To completely transform how businesses handle paperwork, contracts, and getting digital consent.

We make critical paperwork flows faster, way more innovative, and completely compliant for Indian businesses. Over 2,000 companies, from huge players like HDFC and SBI Cards to super fast-growing ones like Razorpay and Cars24, trust us with their document workflows.

Beyond our core platform, we've launched "Deal Collaboration" (making contract negotiation a breeze) and "ConsentIn" (for easy, DPDP-compliant consent collection).

Basically, we're building the go-to execution layer for all modern paperwork. If that sounds exciting, come join us!

Curious about our impact? Check out our customer success stories here:

Our Culture:

At Leegality, we're all about trust, owning our work, transparency, and having a blast while building something meaningful.

These aren't just buzzwords; our team proved it by giving us an amazing 97 on the eNPS survey for FY 2023-24 (that's the highest among over 175 startups!).

We're always working to help our team grow and stay motivated. We offer cool perks like flexible hours, hybrid work, and bi-annual appraisals to make sure everyone has an awesome work environment.

If our culture vibes with you, keep reading the job description below and hit that apply button!

Location: Hybrid

Role Brief

• As Information Security Analyst you will be responsible for managing third party risk management, assisting the Infosec team in implementing ISMS related activities and protecting systems and assets from external and internal threats.

Leegality is an ISO 27001 certified Company.

• At Leegality you will -
• Facilitate assurance-related requirements.
• Have wider-than-usual exposure to regulatory compliance.
• Implement best-in-class security practices.
• Have the opportunity to advance security domain knowledge at a rapid pace.
• Directly report to Information Management and advance your leadership skills

Key Responsibilities:

• Understanding the Leegality product and its features.
• End-to-end ownership of responding to client security assessment questionnaires and Information Security Assurance Requests.
• Keeping the track of security evidence and updating them periodically.
• Collaborate with relevant teams to plan and develop work program timelines, risk assessments and other planning documents
• Performing vendor risk management. Evaluating the security of a product or service provider prior onboarding.
• Assisting Infosec team in maintenance of ISMS.
• Ensure technology and information risks are effectively identified, assessed, controlled, managed, reported, and timely closure of Assurance action
• Assist in deploying proper information systems, resources, and controls to maximize efficiencies and minimize risk
• Demonstrate and apply a thorough understanding of complex information systems, strong project management skills, and use of current technology and tools to enhance the effectiveness of deliverables and services
• Build strong relationships with all stakeholders to drive continuous improvement on Technology Risk/Project governance processes
• Ensure business continuity, disaster recovery and stress testing controls are defined, documented, and conducted regularly
• Assist InfoSec team in managing the organization's Operational Risk Assurance & Controls Testing Plan.
• Assist InfoSec Manager in day-to-day compliance activities to maintain the company’s ISO 27001:2022, ISO 27017, ISO 27018, ISO 22301 certification and SOC 2 Type 2 Compliancy.
• Communication skills to develop clear protocols, inform management about potential risk issues, and relay information about policy changes effectively

Desired Skills and Experience:

• Minimum 2 to 3 years of experience in core Information Security domain, preferably in the BFSI or B2B IT sectors
• Certifications like ISO 27001 LA, CISA, CISSP will be an added advantage
• Hands-on experience with multiple External & Client InfoSec Audits.

Our Hiring Process:

• You will be shortlisted based on your profile
• On being shortlisted, you would be contacted for the interview process.
• We further have 2 rounds of interviews.
• Your final CTC would be decided on the basis of your skills, experience and final assessment.

Apply directly through our career page:

For more information about us please visit our:

Our Company and Culture:

Our Website:

Our LinkedIn Page:

Job Title: VAPT – Executive

Department: IS & IT

Experience required: 4 to 5 years

Location: Udaipur

Type: Full Time, Work from Office

Required Skills and Qualifications:

• Bachelor’s degree in Computer Science, Information Security, or a related field.
• 4–5 years of relevant experience in VAPT, ethical hacking, or security testing.
• Sound knowledge of network protocols, web technologies, operating systems, and security best practices.
• Relevant certifications preferred: Certified Ethical Hacker (CEH) certification

Key Responsibilities:

• Conduct vulnerability assessments and penetration testing on web applications, mobile apps, and network infrastructure.
• Analyze scan results, identify security gaps, and provide actionable remediation plans.
• Collaborate with development, network, and infrastructure teams to verify and validate fixes.
• Maintain and update VAPT tools and scripts regularly to ensure effective testing.
• Prepare detailed reports with findings, risk ratings, and recommendations following industry standards (OWASP, CVSS, etc.
• Stay updated with the latest vulnerabilities, threats, attack vectors, and security trends.
• Ensure compliance with internal security policies and external regulatory requirements (e.g., ISO 27001, PCI-DSS).
• Assist in red teaming/ethical hacking initiatives and provide support during internal/external security audits.
• Contribute to developing and improving standard operating procedures (SOPs), testing methodologies, and reporting templates.

Please share your resume at

Roles & responsibilities:

• Oversee the information security programs including data protection, risk management, and compliance testing.

• Auditing IT systems to ensure they are secure and compliant with organizational policies and procedures, regulations and industry standards.

• Assisting CISO in identification/ execution of solutions to information security related issues, metric measurements and performance monitoring.

Candidate should have :

(a) Thorough understanding of Networks, networks devices and network Security devices like Firewall, etc.

(b) Knowledge of security tools and devices – VPN, EDR/ XDR, Antivirus, Firewall, DLP, Proxy, Anti-ransomware solution.

(c) Knowledge on managing AD, DMARC, MDM/ MAM solution.

(d) Knowledge of managing and security related aspects of cloud platforms like GCP.

(e) Should be able to assist in conduct of IT and Cyber audits.

(f) Decent command over English language and should be able to express both verbally and in written form

Certifications preferred – CISA/ CISM, ISO27001.

Qualification – Bachelors in relevant field (B.Sc/ BCA/ B.E./ B.Tech)

Experience – Minimum 5 years

Job Title: VAPT – ExecutiveDepartment: IS & ITExperience required 2 to 5 yearsLocation: UdaipurType: Full Time, Work from OfficeRequired Skills and Qualifications:Bachelor’s degree in Computer Science, Information Security, or a related field.2–5 years of relevant experience in VAPT, ethical hacking, or security testing.Sound knowledge of network protocols, web technologies, operating systems, and security best practices.Relevant certifications preferred: Certified Ethical Hacker (CEH) certificationKey Responsibilities:Conduct vulnerability assessments and penetration testing on web applications, mobile apps, and network infrastructure.Analyze scan results, identify security gaps, and provide actionable remediation plans.Collaborate with development, network, and infrastructure teams to verify and validate fixes.Maintain and update VAPT tools and scripts regularly to ensure effective testing.Prepare detailed reports with findings, risk ratings, and recommendations following industry standards (OWASP, CVSS, etc.Stay updated with the latest vulnerabilities, threats, attack vectors, and security trends.Ensure compliance with internal security policies and external regulatory requirements (e.g., ISO 27001, PCI-DSS).Assist in red teaming/ethical hacking initiatives and provide support during internal/external security audits.Contribute to developing and improving standard operating procedures (SOPs), testing methodologies, and reporting templates.Please share your resume at