2,719 Security Expert jobs in India
Cyber Security Expert - Application Security & DevSecOps
Hyderabad, Andhra Pradesh
Sanofi Group
Posted 1 day ago
Job Viewed
Job Description
**About Sanofi's Cyber Security and Risks & Compliance Team:**
At Sanofi, our Cyber Security team plays a crucial role in developing trust in our digital activities. We provide cutting-edge security services to mitigate cyber risks that could threaten our customers, employees, shareholders, products, and processes. As one of the key enablers of Sanofi's digital ambition, we're at the forefront of expediting value creation through innovative and optimized computerized capabilities.
Our global Cyber Security organization operates consistently at Sanofi's scale, addressing any cyber challenge or threat against the company across all corporate and business entities. Our reach extends to our external stakeholders, ensuring comprehensive protection in an increasingly interconnected digital landscape.
We're seeking a dynamic and forward-thinking Senior Cyber Security Strategist to join our team. In this pivotal role, you'll have the opportunity to shape the future of cyber security at a leading global biopharmaceutical company.
**Key responsibilities:**
· **Strategic Partnership:** Partner with product teams to provide strategic and subject matter advice across multiple risk domains, ensuring robust security measures are integrated into all aspects of our operations.
· **Innovation Leadership:** Promote and implement NextGen/predictive monitoring and quality intelligence solutions. You'll be at the forefront of removing barriers to innovation, positioning yourself as a Key Opinion Leader (KOL) in the field.
· **Compliance and Control Optimization:** Translate complex compliance requirements into effective controls and optimized processes, balancing security needs with operational efficiency.
· **Culture Development:** Drive a strong Quality & Risk Culture throughout the organization through education, advisory services, automation, and self-service initiatives.
· **Digital Trust Building:** Contribute to developing trust in Sanofi's digital activities by providing and enhancing security services that protect our stakeholders and assets.
· **Cross-functional Collaboration:** Work closely with various teams across Sanofi to ensure cyber security considerations are integrated into all relevant projects and initiatives.
3. The profile of the colleague we'd love to work with
**Ideal candidate profile:**
+ Extensive experience in cyber security, with a strong background in risk management and compliance.
+ Proven track record of partnering with product teams and translating technical concepts for non-technical audiences.
+ Knowledge of NextGen security technologies and predictive monitoring systems.
+ Strong leadership skills with the ability to influence and drive cultural change.
+ Excellent communication skills, both written and verbal.
+ Innovative mindset with a passion for leveraging cutting-edge technologies to solve complex problems.
**Formal Education and Experience Required**
+ University/Master's Degree in Computer Science, preferably in Cybersecurity.
+ Application Security and Penetration testing experience.
+ Computer Programming skills, especially in Python,PowerShell, C#, Symfony and API Platform.
+ 5 to 7 years of professional experience in application development, of which 3 to 5 years is in DevOps or Cybersecurity.
+ Security Certifications like CISSP or CEH (Certified Ethical Hacker) are welcome.
**Expertise and Competencies**
- Expertise as a penetration tester at the application level.
- Expertise in OWASP and MITRE attack framework.
- Large knowledge in IT, development languages and frameworks and DevOps environments (GitHub), AWS and Azure cloud services.
- Scripting skills in Shell, Python, PowerShell are expected.
- Knowledge in containers technologies (RedHat OpenShift and Kubernetes)
- Leadership and strong communication skills with the ability to effectively convey complex security concepts to technical and non-technical stakeholders.
- Strong decision making and, capacity to balance human effort vs application business value.
- Curiosity and appetite for learning new technologies.
- Appetite for challenges
- Ability to translate complex technical stories into non-technical language is necessary.
- Mastery of English is required.
**What is expected:**
**Main missions: **
+ Contribute to develop, improve, and promote the DevSecOps activity and associated processes and tools.
+ Onboard business applications in DevSecOps processes, with a primary focus on application code review.
+ Support the business stakeholders who are developing applications for Sanofi.
+ Make understandable the Cyber risks and core review issues, and how to remediate.
+ Manage and support our Cyber services toolset in the DevOps ecosystem.
+ Build and contribute to deliver the appropriate dashboards to drive our roadmap and business stakeholders' engagement.
+ undefined **Key Role:** Promote the Cyber roadmap and key services.Promote Digital standard related to application development.Think Cyber-as-a-Service model to empower business stakeholders to take ownership of their applications' security.Always contextualize the risk and ensure that it is understood. Strive to make the best decision and maintain the right balance.Do not trust but run checks and controls.Build automation everywhere you can and industrialize our cybersecurity processes.Lead and or contribute to Cyber in-house tools development (end-user web portal, technical services,.). **Digital Environment:** ·Total scope of thousands business applications, written in many different languages. Source code hosted in GitHub.·Strong objective to automate DevSecOps controls and limit cybersecurity human resources effort.·International context and multiple third-party vendors and developers, with variable DevSecOps maturity levels.·Strong partnership with Enterprise Architecture and some highly mature departments to define development practices and technologies evolution.·Growing investments on IA projects, aligned with Data and AI strategy.·Daily interactions with European and Americas-based colleagues.4. What you may expect in terms of development opportunitiesOpportunity to work on global, high-impact projects that directly contribute to Sanofi's digital transformation. Collaborative and innovative work environment that encourages continuous learning and professional growth. Chance to be at the forefront of cyber security in the pharmaceutical industry. Competitive compensation and benefits package. Global exposure and the potential to make a significant impact on healthcare through technology.Join us in our mission to protect and enable Sanofi's digital future. Your expertise will directly contribute to safeguarding breakthrough medicines and vaccines that improve people's lives around the world.5. Pursue progress, discover the extraordinaryBetter is out there. Better medications, better outcomes, better science. But progress doesn't happen without people - people from different backgrounds, in different locations, doing different roles, all united by one thing: a desire to make miracles happen. So, let's be those people.At Sanofi, we provide equal opportunities to all regardless of race, colour, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, or gender identity.Watch our ALL IN video ( and check out our Diversity Equity and Inclusion actions at sanofi.com ( !
**Pursue** **_progress_** **, discover** **_extraordinary_**
Better is out there. Better medications, better outcomes, better science. But progress doesn't happen without people - people from different backgrounds, in different locations, doing different roles, all united by one thing: a desire to make miracles happen. So, let's be those people.
At Sanofi, we provide equal opportunities to all regardless of race, colour, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, ability or gender identity.
Watch our ALL IN video ( and check out our Diversity Equity and Inclusion actions at sanofi.com ( !
Global Terms & Conditions and Data Privacy Statement ( is dedicated to supporting people through their health challenges. We are a global biopharmaceutical company focused on human health. We prevent illness with vaccines, provide innovative treatments to fight pain and ease suffering. We stand by the few who suffer from rare diseases and the millions with long-term chronic conditions.
With more than 100,000 people in 100 countries, Sanofi is transforming scientific innovation into healthcare solutions around the globe. Discover more about us visiting or via our movie We are Sanofi ( an organization, we change the practice of medicine; reinvent the way we work; and enable people to be their best versions in career and life. We are constantly moving and growing, making sure our people grow with us. Our working environment helps us build a dynamic and inclusive workplace operating on trust and respect and allows employees to live the life they want to live.
All in for Diversity, Equity and Inclusion at Sanofi - YouTube (
At Sanofi, our Cyber Security team plays a crucial role in developing trust in our digital activities. We provide cutting-edge security services to mitigate cyber risks that could threaten our customers, employees, shareholders, products, and processes. As one of the key enablers of Sanofi's digital ambition, we're at the forefront of expediting value creation through innovative and optimized computerized capabilities.
Our global Cyber Security organization operates consistently at Sanofi's scale, addressing any cyber challenge or threat against the company across all corporate and business entities. Our reach extends to our external stakeholders, ensuring comprehensive protection in an increasingly interconnected digital landscape.
We're seeking a dynamic and forward-thinking Senior Cyber Security Strategist to join our team. In this pivotal role, you'll have the opportunity to shape the future of cyber security at a leading global biopharmaceutical company.
**Key responsibilities:**
· **Strategic Partnership:** Partner with product teams to provide strategic and subject matter advice across multiple risk domains, ensuring robust security measures are integrated into all aspects of our operations.
· **Innovation Leadership:** Promote and implement NextGen/predictive monitoring and quality intelligence solutions. You'll be at the forefront of removing barriers to innovation, positioning yourself as a Key Opinion Leader (KOL) in the field.
· **Compliance and Control Optimization:** Translate complex compliance requirements into effective controls and optimized processes, balancing security needs with operational efficiency.
· **Culture Development:** Drive a strong Quality & Risk Culture throughout the organization through education, advisory services, automation, and self-service initiatives.
· **Digital Trust Building:** Contribute to developing trust in Sanofi's digital activities by providing and enhancing security services that protect our stakeholders and assets.
· **Cross-functional Collaboration:** Work closely with various teams across Sanofi to ensure cyber security considerations are integrated into all relevant projects and initiatives.
3. The profile of the colleague we'd love to work with
**Ideal candidate profile:**
+ Extensive experience in cyber security, with a strong background in risk management and compliance.
+ Proven track record of partnering with product teams and translating technical concepts for non-technical audiences.
+ Knowledge of NextGen security technologies and predictive monitoring systems.
+ Strong leadership skills with the ability to influence and drive cultural change.
+ Excellent communication skills, both written and verbal.
+ Innovative mindset with a passion for leveraging cutting-edge technologies to solve complex problems.
**Formal Education and Experience Required**
+ University/Master's Degree in Computer Science, preferably in Cybersecurity.
+ Application Security and Penetration testing experience.
+ Computer Programming skills, especially in Python,PowerShell, C#, Symfony and API Platform.
+ 5 to 7 years of professional experience in application development, of which 3 to 5 years is in DevOps or Cybersecurity.
+ Security Certifications like CISSP or CEH (Certified Ethical Hacker) are welcome.
**Expertise and Competencies**
- Expertise as a penetration tester at the application level.
- Expertise in OWASP and MITRE attack framework.
- Large knowledge in IT, development languages and frameworks and DevOps environments (GitHub), AWS and Azure cloud services.
- Scripting skills in Shell, Python, PowerShell are expected.
- Knowledge in containers technologies (RedHat OpenShift and Kubernetes)
- Leadership and strong communication skills with the ability to effectively convey complex security concepts to technical and non-technical stakeholders.
- Strong decision making and, capacity to balance human effort vs application business value.
- Curiosity and appetite for learning new technologies.
- Appetite for challenges
- Ability to translate complex technical stories into non-technical language is necessary.
- Mastery of English is required.
**What is expected:**
**Main missions: **
+ Contribute to develop, improve, and promote the DevSecOps activity and associated processes and tools.
+ Onboard business applications in DevSecOps processes, with a primary focus on application code review.
+ Support the business stakeholders who are developing applications for Sanofi.
+ Make understandable the Cyber risks and core review issues, and how to remediate.
+ Manage and support our Cyber services toolset in the DevOps ecosystem.
+ Build and contribute to deliver the appropriate dashboards to drive our roadmap and business stakeholders' engagement.
+ undefined **Key Role:** Promote the Cyber roadmap and key services.Promote Digital standard related to application development.Think Cyber-as-a-Service model to empower business stakeholders to take ownership of their applications' security.Always contextualize the risk and ensure that it is understood. Strive to make the best decision and maintain the right balance.Do not trust but run checks and controls.Build automation everywhere you can and industrialize our cybersecurity processes.Lead and or contribute to Cyber in-house tools development (end-user web portal, technical services,.). **Digital Environment:** ·Total scope of thousands business applications, written in many different languages. Source code hosted in GitHub.·Strong objective to automate DevSecOps controls and limit cybersecurity human resources effort.·International context and multiple third-party vendors and developers, with variable DevSecOps maturity levels.·Strong partnership with Enterprise Architecture and some highly mature departments to define development practices and technologies evolution.·Growing investments on IA projects, aligned with Data and AI strategy.·Daily interactions with European and Americas-based colleagues.4. What you may expect in terms of development opportunitiesOpportunity to work on global, high-impact projects that directly contribute to Sanofi's digital transformation. Collaborative and innovative work environment that encourages continuous learning and professional growth. Chance to be at the forefront of cyber security in the pharmaceutical industry. Competitive compensation and benefits package. Global exposure and the potential to make a significant impact on healthcare through technology.Join us in our mission to protect and enable Sanofi's digital future. Your expertise will directly contribute to safeguarding breakthrough medicines and vaccines that improve people's lives around the world.5. Pursue progress, discover the extraordinaryBetter is out there. Better medications, better outcomes, better science. But progress doesn't happen without people - people from different backgrounds, in different locations, doing different roles, all united by one thing: a desire to make miracles happen. So, let's be those people.At Sanofi, we provide equal opportunities to all regardless of race, colour, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, or gender identity.Watch our ALL IN video ( and check out our Diversity Equity and Inclusion actions at sanofi.com ( !
**Pursue** **_progress_** **, discover** **_extraordinary_**
Better is out there. Better medications, better outcomes, better science. But progress doesn't happen without people - people from different backgrounds, in different locations, doing different roles, all united by one thing: a desire to make miracles happen. So, let's be those people.
At Sanofi, we provide equal opportunities to all regardless of race, colour, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, ability or gender identity.
Watch our ALL IN video ( and check out our Diversity Equity and Inclusion actions at sanofi.com ( !
Global Terms & Conditions and Data Privacy Statement ( is dedicated to supporting people through their health challenges. We are a global biopharmaceutical company focused on human health. We prevent illness with vaccines, provide innovative treatments to fight pain and ease suffering. We stand by the few who suffer from rare diseases and the millions with long-term chronic conditions.
With more than 100,000 people in 100 countries, Sanofi is transforming scientific innovation into healthcare solutions around the globe. Discover more about us visiting or via our movie We are Sanofi ( an organization, we change the practice of medicine; reinvent the way we work; and enable people to be their best versions in career and life. We are constantly moving and growing, making sure our people grow with us. Our working environment helps us build a dynamic and inclusive workplace operating on trust and respect and allows employees to live the life they want to live.
All in for Diversity, Equity and Inclusion at Sanofi - YouTube (
This advertiser has chosen not to accept applicants from your region.
0
Information Security Consultant
Kochi, Kerala
Soffit Infrastructure Services (P) Ltd
Posted 5 days ago
Job Viewed
Job Description
The Information Security Consultant will be responsible for the implementation, assessment, and management of ISO 27001:2022, ISO 27002, and SOC 2 standards for clients. This role involves working independently or alongside senior consultants to help clients achieve and maintain information security compliance and other best practices. The consultant will focus on assessing and ensuring compliance with key security frameworks and will provide vCISO support to various clients.
Key Responsibilities:
ISO 27001/27002 Compliance:
- Assist clients in achieving ISO 27001 certification by identifying and implementing the appropriate controls within the audit scope.
- Verify compliance with ISO 27001/27002 controls and provide recommendations for improvement.
SOC 2 Compliance:
- Assist clients in achieving SOC 2 compliance by identifying and implementing the appropriate Trust Service Criteria (TSCs).
- Conduct SOC 2 compliance assessments and ensure the proper implementation of required controls.
Risk Assessment and Mitigation:
- Conduct risk assessments of business activities, collaborating with stakeholders to manage risks until closure or acceptance.
- Provide actionable recommendations to mitigate identified risks.
Policy and Procedure Development:
- Define, develop, and review information security policies, procedures, guidelines, forms, and templates in line with best practices.
- Ensure documentation is up-to-date and aligned with industry standards.
Baseline Standards Review:
- Create and review baseline standards for operating systems, databases, web servers, and applications.
- Recommend improvements based on security assessments.
Post-Implementation Audits:
- Support post-implementation audits for ISO 27001:2022 to ensure ongoing compliance.
- Monitor and assess adherence to established information security standards.
Information Security Awareness:
- Create and execute organizational information security awareness programs.
- Conduct training sessions to ensure employees are knowledgeable about security best practices.
Security Standards Compliance:
- Assist clients in ensuring compliance with various security standards (ISO 27001, SOC 2, HIPAA, NIST, CIS, PCI DSS, etc.).
- Recommend strategies to ensure long-term adherence to security best practices.
Incident Response:
- Develop and implement incident response plans to handle security breaches and cyberattacks.
- Ensure that clients have clear, actionable plans to address potential security incidents.
Gap Assessment:
- Conduct gap assessments to identify areas of non-compliance and provide remediation strategies.
vCISO Support:
- Provide virtual Chief Information Security Officer (vCISO) support to clients, advising on information security strategy and governance.
Skills and Qualifications:
Technical Skills:
- Strong background in Information Technology and/or Cybersecurity .
- Proficiency in auditing, policy development, database security, firewall design, risk analysis, identity management, access control, and web security.
- Knowledge of security frameworks including ISO 27001, SOC 2, HIPAA, NIST, CIS, PCI DSS, and other industry best practices.
- Hands-on experience with ISO 27001:2022 and SOC 2 implementations and assessments.
- Strong understanding of risk management and the ability to assess and mitigate security risks.
Presales and Communication Skills:
- Excellent client-facing communication skills.
- Strong problem-solving abilities and the capacity to work effectively in a team environment.
- Ability to communicate complex technical concepts to both technical and non-technical audiences.
- Demonstrated ability to deliver presentations and conduct training sessions.
This advertiser has chosen not to accept applicants from your region.
1
Security Consultant
Mumbai, Maharashtra
Kyndryl
Posted 2 days ago
Job Viewed
Job Description
**Who We Are**
At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward - always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities.
**The Role**
Are you passionate about cybersecurity and looking for an exciting role where you can make a difference? If so, we have an opportunity for you! As a Security Specialist at Kyndryl, you will play a crucial role in enabling and securing our customer organizations, cultures, and ecosystems.
Your responsibilities will be varied and dynamic, spanning asset classification models, risk assessment reports, information security policies, security solution scenarios, implementation plans, organization models, procedures, security services, security effectiveness evaluation reports, and security awareness workshops. You will be tasked with configuring, monitoring, and managing the performance of networks to maintain the quality of services, while also protecting organizational infrastructure from malicious cyber-attacks.
As a key member of our team, you will assess, predict, prevent, and manage the risk of IT infrastructure and data, helping our customers stay ahead of the curve and ensure their systems are secure. You will develop and implement security policies and procedures, working closely with other departments to ensure that all security measures are in place and operating effectively.
But that is not all - at Kyndryl you will have the opportunity to explore innovation in CyberSecurity data science - taking information that has been gathered and looking for areas to have that "Ah Ha" moment. Drawing conclusions and patterns from the data across single and multiple clients. Creating new ideas in the area of risk management and risk quantification.
In addition to your technical responsibilities, you will also play a key role in raising awareness of potential security threats through technical security training on best practices. This is an exciting opportunity to help shape the culture of our clients' organizations and make a tangible impact on their security posture.
If you have a passion for cybersecurity - governance, risk and compliance, are looking for a challenging and dynamic role, and want to work with a team of like-minded individuals, then we want to hear from you! Join us as a Security Specialist and help us secure the future of our clients' organizations.
Your Future at Kyndryl
Every position at Kyndryl offers a way forward to grow your career. We have opportunities that you won't find anywhere else, including hands-on experience, learning opportunities, and the chance to certify in all four major platforms. Whether you want to broaden your knowledge base or narrow your scope and specialize in a specific sector, you can find your opportunity here.
**Who You Are**
You're good at what you do and possess the required experience to prove it. However, equally as important - you have a growth mindset; keen to drive your own personal and professional development. You are customer-focused - someone who prioritizes customer success in their work. And finally, you're open and borderless - naturally inclusive in how you work with others.
**Primary Domain Skills Area 1** any 2 SIEM Solution as L3/ SME level ( SIEM Platforms (Splunk, QRadar, ArcSight, LogRhythm) :
**Secondary Domain Skills Area 2** **:** Any 2 EDR/XDR (CrowdStrike, Sentinel One, Defender for Endpoint, Trellix
or
NAC ( Cisco ISE , Forescout NAC , Aruba Clear Pass )
**Key Responsibilities:**
+ Siem Configuration/ Management: Configure, manage and Deploy SIEM / EDR Solution including like ( Splunk, ArcSight, CrowdStrike Falcon, Microsoft Defender) Develop, Manage Policy rules.
+ Perform upgrades, patching, and integration with deferent device feeds.
+ SIEM Security Monitoring & Incident Response: Analyse security events and alerts to identify potential threats.
+ Collaborate with different teams to investigate and respond to incidents.
+ Create and maintain incident response playbooks and escalation procedures.
+ Design and Consulting: Provide consulting on security architecture and best practices for SIEM / EDR deployment strategies
+ Design log onboarding strategies for new applications and infrastructure.
+ Conduct log gap analysis, risk assessments and compliance audits (e.g., PCI-DSS, ISO 27001).
+ *Automation and Reporting: Automate alerting and reporting using scripting and orchestration tools.
+ Generate compliance and executive reports for stakeholders.
+ Secondary Skills:
+ Experience with SOAR/ XDR platforms (e.g., Palo Alto XSOAR, Palo Alto Cortex XDR, Microsoft Defender XDR).
+ NAC Configuration & Management
+ Design, configure, and maintain NAC of various OEM ( Cisco or Forescout or Aruba . )
+ Create authentication ,authorization and posture policy for user
+ Create device authentication, authorization policy and shell profiles
+ Good knowledge of TACACS/Radius protocols
+ Expert knowledge of Design and architecture .
+ Deep Knowledge of integration of NAC with other network and other infrastructure components ( ie Switches , wireless controller , firewalls, AD , LDAP )
+ Familiarity with directory services like AD and LADAP
+ Troubleshooting knowledge of NAC ( Cisco ISE, Forescout etc)
Design and Consulting:
Provide expert consulting services on network security design and architecture.
Develop secure network designs tailored to client needs, ensuring compliance with regulatory requirements.
Collaborate with clients to understand their security requirements and provide customized solutions.
Create and maintain detailed network documentation, Network Diagrams and procedures.
Conduct regular security assessments and audits to identify and mitigate vulnerabilities.
Provide the training session to colleague and customer team members.
Incident Handling:
Lead the response to major security incidents, including detection, analysis, containment, eradication, and recovery.
Develop and implement incident response plans and procedures.
Conduct post-incident reviews and provide RCA.
Good understanding on peer device technology like router switch's and how these technology work e,g ARP, MAC , DNS , SNMP, VRRP, Routing.
Excellent troubleshooting skills on wireshark captures / PCAP etc
**Qualifications** **:**
Education:
+ Graduate in Computer Science/IT/Electronics Engineering or equivalent University degree.
Experience:
+ Candidates should have at least -12+ years of experience working in Security Domain ( SOC, Implementation and or Consultancy of Security Solutions .
Certifications:
+ Relevant certifications such as CCIE Security or CCSE or PCNSE equivalent.
**Being You**
Diversity is a whole lot more than what we look like or where we come from, it's how we think and who we are. We welcome people of all cultures, backgrounds, and experiences. But we're not doing it single-handily: Our Kyndryl Inclusion Networks are only one of many ways we create a workplace where all Kyndryls can find and provide support and advice. This dedication to welcoming everyone into our company means that Kyndryl gives you - and everyone next to you - the ability to bring your whole self to work, individually and collectively, and support the activation of our equitable culture. That's the Kyndryl Way.
**What You Can Expect**
With state-of-the-art resources and Fortune 100 clients, every day is an opportunity to innovate, build new capabilities, new relationships, new processes, and new value. Kyndryl cares about your well-being and prides itself on offering benefits that give you choice, reflect the diversity of our employees and support you and your family through the moments that matter - wherever you are in your life journey. Our employee learning programs give you access to the best learning in the industry to receive certifications, including Microsoft, Google, Amazon, Skillsoft, and many more. Through our company-wide volunteering and giving platform, you can donate, start fundraisers, volunteer, and search over 2 million non-profit organizations. At Kyndryl, we invest heavily in you, we want you to succeed so that together, we will all succeed.
**Get Referred!**
If you know someone that works at Kyndryl, when asked 'How Did You Hear About Us' during the application process, select 'Employee Referral' and enter your contact's Kyndryl email address.
Kyndryl is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, pregnancy, disability, age, veteran status, or other characteristics. Kyndryl is also committed to compliance with all fair employment practices regarding citizenship and immigration status.
At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward - always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities.
**The Role**
Are you passionate about cybersecurity and looking for an exciting role where you can make a difference? If so, we have an opportunity for you! As a Security Specialist at Kyndryl, you will play a crucial role in enabling and securing our customer organizations, cultures, and ecosystems.
Your responsibilities will be varied and dynamic, spanning asset classification models, risk assessment reports, information security policies, security solution scenarios, implementation plans, organization models, procedures, security services, security effectiveness evaluation reports, and security awareness workshops. You will be tasked with configuring, monitoring, and managing the performance of networks to maintain the quality of services, while also protecting organizational infrastructure from malicious cyber-attacks.
As a key member of our team, you will assess, predict, prevent, and manage the risk of IT infrastructure and data, helping our customers stay ahead of the curve and ensure their systems are secure. You will develop and implement security policies and procedures, working closely with other departments to ensure that all security measures are in place and operating effectively.
But that is not all - at Kyndryl you will have the opportunity to explore innovation in CyberSecurity data science - taking information that has been gathered and looking for areas to have that "Ah Ha" moment. Drawing conclusions and patterns from the data across single and multiple clients. Creating new ideas in the area of risk management and risk quantification.
In addition to your technical responsibilities, you will also play a key role in raising awareness of potential security threats through technical security training on best practices. This is an exciting opportunity to help shape the culture of our clients' organizations and make a tangible impact on their security posture.
If you have a passion for cybersecurity - governance, risk and compliance, are looking for a challenging and dynamic role, and want to work with a team of like-minded individuals, then we want to hear from you! Join us as a Security Specialist and help us secure the future of our clients' organizations.
Your Future at Kyndryl
Every position at Kyndryl offers a way forward to grow your career. We have opportunities that you won't find anywhere else, including hands-on experience, learning opportunities, and the chance to certify in all four major platforms. Whether you want to broaden your knowledge base or narrow your scope and specialize in a specific sector, you can find your opportunity here.
**Who You Are**
You're good at what you do and possess the required experience to prove it. However, equally as important - you have a growth mindset; keen to drive your own personal and professional development. You are customer-focused - someone who prioritizes customer success in their work. And finally, you're open and borderless - naturally inclusive in how you work with others.
**Primary Domain Skills Area 1** any 2 SIEM Solution as L3/ SME level ( SIEM Platforms (Splunk, QRadar, ArcSight, LogRhythm) :
**Secondary Domain Skills Area 2** **:** Any 2 EDR/XDR (CrowdStrike, Sentinel One, Defender for Endpoint, Trellix
or
NAC ( Cisco ISE , Forescout NAC , Aruba Clear Pass )
**Key Responsibilities:**
+ Siem Configuration/ Management: Configure, manage and Deploy SIEM / EDR Solution including like ( Splunk, ArcSight, CrowdStrike Falcon, Microsoft Defender) Develop, Manage Policy rules.
+ Perform upgrades, patching, and integration with deferent device feeds.
+ SIEM Security Monitoring & Incident Response: Analyse security events and alerts to identify potential threats.
+ Collaborate with different teams to investigate and respond to incidents.
+ Create and maintain incident response playbooks and escalation procedures.
+ Design and Consulting: Provide consulting on security architecture and best practices for SIEM / EDR deployment strategies
+ Design log onboarding strategies for new applications and infrastructure.
+ Conduct log gap analysis, risk assessments and compliance audits (e.g., PCI-DSS, ISO 27001).
+ *Automation and Reporting: Automate alerting and reporting using scripting and orchestration tools.
+ Generate compliance and executive reports for stakeholders.
+ Secondary Skills:
+ Experience with SOAR/ XDR platforms (e.g., Palo Alto XSOAR, Palo Alto Cortex XDR, Microsoft Defender XDR).
+ NAC Configuration & Management
+ Design, configure, and maintain NAC of various OEM ( Cisco or Forescout or Aruba . )
+ Create authentication ,authorization and posture policy for user
+ Create device authentication, authorization policy and shell profiles
+ Good knowledge of TACACS/Radius protocols
+ Expert knowledge of Design and architecture .
+ Deep Knowledge of integration of NAC with other network and other infrastructure components ( ie Switches , wireless controller , firewalls, AD , LDAP )
+ Familiarity with directory services like AD and LADAP
+ Troubleshooting knowledge of NAC ( Cisco ISE, Forescout etc)
Design and Consulting:
Provide expert consulting services on network security design and architecture.
Develop secure network designs tailored to client needs, ensuring compliance with regulatory requirements.
Collaborate with clients to understand their security requirements and provide customized solutions.
Create and maintain detailed network documentation, Network Diagrams and procedures.
Conduct regular security assessments and audits to identify and mitigate vulnerabilities.
Provide the training session to colleague and customer team members.
Incident Handling:
Lead the response to major security incidents, including detection, analysis, containment, eradication, and recovery.
Develop and implement incident response plans and procedures.
Conduct post-incident reviews and provide RCA.
Good understanding on peer device technology like router switch's and how these technology work e,g ARP, MAC , DNS , SNMP, VRRP, Routing.
Excellent troubleshooting skills on wireshark captures / PCAP etc
**Qualifications** **:**
Education:
+ Graduate in Computer Science/IT/Electronics Engineering or equivalent University degree.
Experience:
+ Candidates should have at least -12+ years of experience working in Security Domain ( SOC, Implementation and or Consultancy of Security Solutions .
Certifications:
+ Relevant certifications such as CCIE Security or CCSE or PCNSE equivalent.
**Being You**
Diversity is a whole lot more than what we look like or where we come from, it's how we think and who we are. We welcome people of all cultures, backgrounds, and experiences. But we're not doing it single-handily: Our Kyndryl Inclusion Networks are only one of many ways we create a workplace where all Kyndryls can find and provide support and advice. This dedication to welcoming everyone into our company means that Kyndryl gives you - and everyone next to you - the ability to bring your whole self to work, individually and collectively, and support the activation of our equitable culture. That's the Kyndryl Way.
**What You Can Expect**
With state-of-the-art resources and Fortune 100 clients, every day is an opportunity to innovate, build new capabilities, new relationships, new processes, and new value. Kyndryl cares about your well-being and prides itself on offering benefits that give you choice, reflect the diversity of our employees and support you and your family through the moments that matter - wherever you are in your life journey. Our employee learning programs give you access to the best learning in the industry to receive certifications, including Microsoft, Google, Amazon, Skillsoft, and many more. Through our company-wide volunteering and giving platform, you can donate, start fundraisers, volunteer, and search over 2 million non-profit organizations. At Kyndryl, we invest heavily in you, we want you to succeed so that together, we will all succeed.
**Get Referred!**
If you know someone that works at Kyndryl, when asked 'How Did You Hear About Us' during the application process, select 'Employee Referral' and enter your contact's Kyndryl email address.
Kyndryl is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, pregnancy, disability, age, veteran status, or other characteristics. Kyndryl is also committed to compliance with all fair employment practices regarding citizenship and immigration status.
This advertiser has chosen not to accept applicants from your region.
2
Security Consultant
Mumbai, Maharashtra
Kyndryl
Posted 2 days ago
Job Viewed
Job Description
**Who We Are**
At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward - always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities.
**The Role**
**Job Description:** The Security Architect/Consultant Engineer will be responsible for designing, implementing, migration and managing advanced security solutions, with primary skills on firewall devices ( check Point, Palo alto, FortiGate, cisco). And secondary skills either on WAF ( F5 ASM , Imperva, Akamai etc) or NAC ( Cisco ISE, Forescout , Aruba etc ) This role involves handling implementation , operations and execute design consulting type assignment
Collaboration will be your forte, as you work closely with clients to understand their unique security requirements and assess their current security posture. Armed with this knowledge, you'll provide expert guidance and recommendations on the best security practices, risk management strategies, and robust security policies that will fortify their defenses.
You won't stop at providing advice; you'll roll up your sleeves and get hands-on. Designing and implementing security controls, policies, and procedures will be your playground. You'll work alongside cross-functional teams to deploy state-of-the-art technologies, including firewalls, intrusion detection/prevention systems, access controls, and encryption technologies, ensuring a comprehensive security framework.
The thrill of uncovering vulnerabilities and risks is what motivates you. Armed with your extensive knowledge, you'll conduct thorough security assessments, leaving no stone unturned in identifying potential security breaches. Your findings will serve as the foundation for meticulous security audits and reviews, ensuring adherence to policies and procedures. Your reports and findings will be the catalyst for management decisions and actions.
In the fast-paced world of cybersecurity, staying ahead of the game is crucial. That's why you'll continuously immerse yourself in the latest security threats, technologies, and best practices. Your recommendations will drive enhancements to the organization's security posture, ensuring it remains at the cutting edge of defense.
Your influence won't be limited to systems alone. You'll lend your expertise to the design and review of IT infrastructure, systems, and applications, ensuring they are secure by design from inception.
Not only will you make an impact within our organization, but you'll also collaborate with customers and vendors on security assessments, audits, and due diligence activities. Your knowledge and experience will be instrumental in shaping secure collaborations and partnerships.
Our consultants are restless for innovation. They are at the edge of technology, changing the way our customers implement business solutions - so, if you're a problem-solver, an innovative thinker, and a self-starter with a passion high impact assignments which align technology to business outcomes, then we want to hear from you! Apply today to join our team that has a host of exciting projects and customers waiting for you to work with them to solve complex transformation puzzles through technology.
Your Future at Kyndryl
As a Security Consultant at Kyndryl you will join the Kyndryl Consultant Profession, working with other Kyndryl Consultants, Architects, Project Managers, and cross-functional Technical Subject Matter Experts - presenting unlimited opportunities with unmatched support through our investment in your learning, training, and career growth
**Who You Are**
You're good at what you do and possess the required experience to prove it. However, equally as important - you have a growth mindset; keen to drive your own personal and professional development. You are customer-focused - someone who prioritizes customer success in their work. And finally, you're open and borderless - naturally inclusive in how you work with others.
**Primary Domain Skills Area 1** any 2 firewalls as L3/ SME level ( Check Point, Palo Alto, FortiGate, Cisco) : Checkpoint Skills and Palo Alto Skills are preferred . Checkpoint Skills are Mandatory .
**Secondary Domain Skills Area 2** **:** WAF/NAC ( F5 ASM , Radware WAF , Imperva WAF and or Akami WAF ) and ( Cisco ISE , Forescout NAC , Aruba Clear Pass
F5 ASM and Imperva WAF skills are Preferred with F5 ASM /WAF skills being mandatory .
Required Skills and Experience
Firewall Configuration/ Management:
+ Candidates should have at least -12+ years of experience working in Security Domain ( SOC, Implementation and or Consultancy of Security Solutions
+ Design, configure, and maintain firewall policies and rules, Natting.
+ Configuring and Managing User defined categories, Whitelisted / Blacklisted URLs.
+ Configure the Firewall policy for UTA feature to scan AV, IPS, Sandboxing encryption / decryption and know to allow exception from UTM scanning.
+ Configure the Application policy bases on default available list or know to create custom application.
+ Hands-on expert experience on NGFW firewall Checkpoint Cisco, Fortinet and Palto Alto to do failover, HA config, upgrade and L3 level of troubleshooting to packet capture.
+ Monitor firewall performance and security, ensuring optimal operation.
+ Performs security hardware and software maintenance to upgrade / downgrade devices.
+ In depth knowledge and skills of working independently on Firewall management tools like FMC, Panorama, Forti Manager, Analyzer, Algosec.
+ Configure the Context /Vdom/VSX base firewall and work with virtual firewalls.
WAF Configuration & Management
+ Design, configure, and maintain WAF Traffic inspection and Filtering rules and policies
+ Configuring and Managing Whitelisted / Blacklisted URLs.
+ Configuration of Traffic Protection against various attacks ( SQL injection , XSS , Zero day attacks
+ Deep knowledge on Rate limiting and Bot Management policies .
+ Deep Knowledge of HTTS Protocol & SSL/TLS
+ Monitor WAF security logs and alerts to detect and respond to threats.
+ Perform regular security assessments and vulnerability testing on web applications.
+ Conduct incident response and forensic analysis in the event of a security breach.
+ Knowledge of OWASP Top Ten
+ Hands-on experience with one or more WAF platforms (e.g., Imperva, AWS WAF, F5, Azure WAF).
+ Hands-on experience of upgrading WAF ( hardware based WAF)NAC Configuration & Management
+ Design, configure, and maintain NAC of various OEM ( Cisco or Forescout or Aruba . )
+ Create authentication ,authorization and posture policy for user
+ Create device authentication, authorization policy and shell profiles
+ Good knowledge of TACACS/Radius protocols
+ Expert knowledge of Design and architecture .
+ Deep Knowledge of integration of NAC with other network and other infrastructure components ( ie Switches , wireless controller , firewalls, AD , LDAP )
+ Familarity with direcetory services like AD and LADAP
+ Troubleshooting knowledge of NAC ( Cisco ISE, Forsecout etc)
Firewall and WAF or NAC Migration and Implementation:
+ Plan and execute firewall and WAF migrations from different OEM or Same OEM to different hardware, ensuring minimal disruption to network services.
+ Implement new firewall solutions, including Planning to execution with next-generation features.
+ Test and validate firewall configurations with industry best practise before deployment.
+ Hands on experience of execution of firewall & WAF Migration projects/assignment in BFSI and other industry verticals
Design and Consulting:
+ Provide expert consulting services on network security design and architecture.
+ Develop secure network designs tailored to client needs, ensuring compliance with regulatory requirements.
+ Collaborate with clients to understand their security requirements and provide customized solutions.
+ Create and maintain detailed network documentation, Network Diagrams and procedures.
+ Conduct regular security assessments and audits to identify and mitigate vulnerabilities.
+ Provide the training session to colleague and customer team members.
Incident Handling:
+ Lead the response to major security incidents, including detection, analysis, containment, eradication, and recovery.
+ Develop and implement incident response plans and procedures.
+ Conduct post-incident reviews and provide RCA.
+ Good understanding on peer device technology like router switch's and how these technology work e,g ARP, MAC , DNS , SNMP, VRRP, Routing.
+ Excellent troubleshooting skills on wireshark captures / PCAP etc
**Qualifications:**
Education:
+ Graduate in Computer Science/IT/Electronics Engineering or equivalent University degree.
Certifications:
+ Relevant certifications such as CCIE Security or CCSE or PCNSE equivalent.
**Being You**
Diversity is a whole lot more than what we look like or where we come from, it's how we think and who we are. We welcome people of all cultures, backgrounds, and experiences. But we're not doing it single-handily: Our Kyndryl Inclusion Networks are only one of many ways we create a workplace where all Kyndryls can find and provide support and advice. This dedication to welcoming everyone into our company means that Kyndryl gives you - and everyone next to you - the ability to bring your whole self to work, individually and collectively, and support the activation of our equitable culture. That's the Kyndryl Way.
**What You Can Expect**
With state-of-the-art resources and Fortune 100 clients, every day is an opportunity to innovate, build new capabilities, new relationships, new processes, and new value. Kyndryl cares about your well-being and prides itself on offering benefits that give you choice, reflect the diversity of our employees and support you and your family through the moments that matter - wherever you are in your life journey. Our employee learning programs give you access to the best learning in the industry to receive certifications, including Microsoft, Google, Amazon, Skillsoft, and many more. Through our company-wide volunteering and giving platform, you can donate, start fundraisers, volunteer, and search over 2 million non-profit organizations. At Kyndryl, we invest heavily in you, we want you to succeed so that together, we will all succeed.
**Get Referred!**
If you know someone that works at Kyndryl, when asked 'How Did You Hear About Us' during the application process, select 'Employee Referral' and enter your contact's Kyndryl email address.
Kyndryl is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, pregnancy, disability, age, veteran status, or other characteristics. Kyndryl is also committed to compliance with all fair employment practices regarding citizenship and immigration status.
At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward - always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities.
**The Role**
**Job Description:** The Security Architect/Consultant Engineer will be responsible for designing, implementing, migration and managing advanced security solutions, with primary skills on firewall devices ( check Point, Palo alto, FortiGate, cisco). And secondary skills either on WAF ( F5 ASM , Imperva, Akamai etc) or NAC ( Cisco ISE, Forescout , Aruba etc ) This role involves handling implementation , operations and execute design consulting type assignment
Collaboration will be your forte, as you work closely with clients to understand their unique security requirements and assess their current security posture. Armed with this knowledge, you'll provide expert guidance and recommendations on the best security practices, risk management strategies, and robust security policies that will fortify their defenses.
You won't stop at providing advice; you'll roll up your sleeves and get hands-on. Designing and implementing security controls, policies, and procedures will be your playground. You'll work alongside cross-functional teams to deploy state-of-the-art technologies, including firewalls, intrusion detection/prevention systems, access controls, and encryption technologies, ensuring a comprehensive security framework.
The thrill of uncovering vulnerabilities and risks is what motivates you. Armed with your extensive knowledge, you'll conduct thorough security assessments, leaving no stone unturned in identifying potential security breaches. Your findings will serve as the foundation for meticulous security audits and reviews, ensuring adherence to policies and procedures. Your reports and findings will be the catalyst for management decisions and actions.
In the fast-paced world of cybersecurity, staying ahead of the game is crucial. That's why you'll continuously immerse yourself in the latest security threats, technologies, and best practices. Your recommendations will drive enhancements to the organization's security posture, ensuring it remains at the cutting edge of defense.
Your influence won't be limited to systems alone. You'll lend your expertise to the design and review of IT infrastructure, systems, and applications, ensuring they are secure by design from inception.
Not only will you make an impact within our organization, but you'll also collaborate with customers and vendors on security assessments, audits, and due diligence activities. Your knowledge and experience will be instrumental in shaping secure collaborations and partnerships.
Our consultants are restless for innovation. They are at the edge of technology, changing the way our customers implement business solutions - so, if you're a problem-solver, an innovative thinker, and a self-starter with a passion high impact assignments which align technology to business outcomes, then we want to hear from you! Apply today to join our team that has a host of exciting projects and customers waiting for you to work with them to solve complex transformation puzzles through technology.
Your Future at Kyndryl
As a Security Consultant at Kyndryl you will join the Kyndryl Consultant Profession, working with other Kyndryl Consultants, Architects, Project Managers, and cross-functional Technical Subject Matter Experts - presenting unlimited opportunities with unmatched support through our investment in your learning, training, and career growth
**Who You Are**
You're good at what you do and possess the required experience to prove it. However, equally as important - you have a growth mindset; keen to drive your own personal and professional development. You are customer-focused - someone who prioritizes customer success in their work. And finally, you're open and borderless - naturally inclusive in how you work with others.
**Primary Domain Skills Area 1** any 2 firewalls as L3/ SME level ( Check Point, Palo Alto, FortiGate, Cisco) : Checkpoint Skills and Palo Alto Skills are preferred . Checkpoint Skills are Mandatory .
**Secondary Domain Skills Area 2** **:** WAF/NAC ( F5 ASM , Radware WAF , Imperva WAF and or Akami WAF ) and ( Cisco ISE , Forescout NAC , Aruba Clear Pass
F5 ASM and Imperva WAF skills are Preferred with F5 ASM /WAF skills being mandatory .
Required Skills and Experience
Firewall Configuration/ Management:
+ Candidates should have at least -12+ years of experience working in Security Domain ( SOC, Implementation and or Consultancy of Security Solutions
+ Design, configure, and maintain firewall policies and rules, Natting.
+ Configuring and Managing User defined categories, Whitelisted / Blacklisted URLs.
+ Configure the Firewall policy for UTA feature to scan AV, IPS, Sandboxing encryption / decryption and know to allow exception from UTM scanning.
+ Configure the Application policy bases on default available list or know to create custom application.
+ Hands-on expert experience on NGFW firewall Checkpoint Cisco, Fortinet and Palto Alto to do failover, HA config, upgrade and L3 level of troubleshooting to packet capture.
+ Monitor firewall performance and security, ensuring optimal operation.
+ Performs security hardware and software maintenance to upgrade / downgrade devices.
+ In depth knowledge and skills of working independently on Firewall management tools like FMC, Panorama, Forti Manager, Analyzer, Algosec.
+ Configure the Context /Vdom/VSX base firewall and work with virtual firewalls.
WAF Configuration & Management
+ Design, configure, and maintain WAF Traffic inspection and Filtering rules and policies
+ Configuring and Managing Whitelisted / Blacklisted URLs.
+ Configuration of Traffic Protection against various attacks ( SQL injection , XSS , Zero day attacks
+ Deep knowledge on Rate limiting and Bot Management policies .
+ Deep Knowledge of HTTS Protocol & SSL/TLS
+ Monitor WAF security logs and alerts to detect and respond to threats.
+ Perform regular security assessments and vulnerability testing on web applications.
+ Conduct incident response and forensic analysis in the event of a security breach.
+ Knowledge of OWASP Top Ten
+ Hands-on experience with one or more WAF platforms (e.g., Imperva, AWS WAF, F5, Azure WAF).
+ Hands-on experience of upgrading WAF ( hardware based WAF)NAC Configuration & Management
+ Design, configure, and maintain NAC of various OEM ( Cisco or Forescout or Aruba . )
+ Create authentication ,authorization and posture policy for user
+ Create device authentication, authorization policy and shell profiles
+ Good knowledge of TACACS/Radius protocols
+ Expert knowledge of Design and architecture .
+ Deep Knowledge of integration of NAC with other network and other infrastructure components ( ie Switches , wireless controller , firewalls, AD , LDAP )
+ Familarity with direcetory services like AD and LADAP
+ Troubleshooting knowledge of NAC ( Cisco ISE, Forsecout etc)
Firewall and WAF or NAC Migration and Implementation:
+ Plan and execute firewall and WAF migrations from different OEM or Same OEM to different hardware, ensuring minimal disruption to network services.
+ Implement new firewall solutions, including Planning to execution with next-generation features.
+ Test and validate firewall configurations with industry best practise before deployment.
+ Hands on experience of execution of firewall & WAF Migration projects/assignment in BFSI and other industry verticals
Design and Consulting:
+ Provide expert consulting services on network security design and architecture.
+ Develop secure network designs tailored to client needs, ensuring compliance with regulatory requirements.
+ Collaborate with clients to understand their security requirements and provide customized solutions.
+ Create and maintain detailed network documentation, Network Diagrams and procedures.
+ Conduct regular security assessments and audits to identify and mitigate vulnerabilities.
+ Provide the training session to colleague and customer team members.
Incident Handling:
+ Lead the response to major security incidents, including detection, analysis, containment, eradication, and recovery.
+ Develop and implement incident response plans and procedures.
+ Conduct post-incident reviews and provide RCA.
+ Good understanding on peer device technology like router switch's and how these technology work e,g ARP, MAC , DNS , SNMP, VRRP, Routing.
+ Excellent troubleshooting skills on wireshark captures / PCAP etc
**Qualifications:**
Education:
+ Graduate in Computer Science/IT/Electronics Engineering or equivalent University degree.
Certifications:
+ Relevant certifications such as CCIE Security or CCSE or PCNSE equivalent.
**Being You**
Diversity is a whole lot more than what we look like or where we come from, it's how we think and who we are. We welcome people of all cultures, backgrounds, and experiences. But we're not doing it single-handily: Our Kyndryl Inclusion Networks are only one of many ways we create a workplace where all Kyndryls can find and provide support and advice. This dedication to welcoming everyone into our company means that Kyndryl gives you - and everyone next to you - the ability to bring your whole self to work, individually and collectively, and support the activation of our equitable culture. That's the Kyndryl Way.
**What You Can Expect**
With state-of-the-art resources and Fortune 100 clients, every day is an opportunity to innovate, build new capabilities, new relationships, new processes, and new value. Kyndryl cares about your well-being and prides itself on offering benefits that give you choice, reflect the diversity of our employees and support you and your family through the moments that matter - wherever you are in your life journey. Our employee learning programs give you access to the best learning in the industry to receive certifications, including Microsoft, Google, Amazon, Skillsoft, and many more. Through our company-wide volunteering and giving platform, you can donate, start fundraisers, volunteer, and search over 2 million non-profit organizations. At Kyndryl, we invest heavily in you, we want you to succeed so that together, we will all succeed.
**Get Referred!**
If you know someone that works at Kyndryl, when asked 'How Did You Hear About Us' during the application process, select 'Employee Referral' and enter your contact's Kyndryl email address.
Kyndryl is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, pregnancy, disability, age, veteran status, or other characteristics. Kyndryl is also committed to compliance with all fair employment practices regarding citizenship and immigration status.
This advertiser has chosen not to accept applicants from your region.
3
Security Consultant
Pune, Maharashtra
SecureLayer7
Posted 5 days ago
Job Viewed
Job Description
About the Company
At SecureLayer7, we aim at solving challenging cybersecurity problems and hurdles faced by organizations. We bring bright minds together to provide a smooth experience in cybersecurity and achieve our vision by making organizations secure from cyber-attacks. Our skilled pentesters and security engineers work on the project from a cryptocurrency exchange to IoT devices. SecureLayer7 is maker of cybersecurity products namely AuthSafe and BugDazz.
About the Role
This job role is designed specifically for interns to get the opportunity in Cybersecurity. You will be assigned with a skilled mentor to guide you from end to end SecureLayer7 Methodology. Interns work on pentest projects that will push your technical skills to the next level & leave with real-world experience you can apply immediately.
Responsibilities
- Performing VAPT Activities such as Network, Web, Mobile, API & Cloud Penetration Testing Under Sr. Mentor
- Preparing the Detailed Reports on the identified Vulnerabilities
- Preparing the detailed Workaround/Mitigations of the vulnerabilities while reporting to the client
- Joining Discussion with Clients on the vulnerabilities & Mitigations
- Writing Technical Blogs on the latest vulnerabilities or technologies in the market
- Presenting Technical Talks to the internal team on the latest technologies and approach for different applications/networks
- Presenting Webinars on the latest technologies or vulnerabilities
- Research on finding Zero-days on the applications/products.
Qualifications
None, we love to work with skilled & passionate people.
Required Skills
- Knowledge of TCP/IP, OSI Layer, IPv4 & IPv6, Network Protocols and Wireless Communication skills preferred
- Knowledge of at least one programming language such as java, c#, c, c++
- Knowledge of at least one scripting language such as python, shell script, javascript and good command to write automated tools & scripts during the Pentesting process.
- Candidate Must be able to write their own tools & scripts as when required
- Advanced knowledge of multiple operating systems (Windows, Linux, BSD, etc)
Preferred Skills
- HacktheBox Profile
- BugBounty Profiles
- Github Link
- Personal Blogs Link
- OSCP, CEH Certificates.
- CTF Player
This advertiser has chosen not to accept applicants from your region.
4
Security Consultant
World Wide Technology
Posted 5 days ago
Job Viewed
Job Description
Job Responsibilities:-
· Be the primary lead in cybersecurity delivery engagements for a wide variety of clients in different industry verticals
· Evaluate and recommend security strategies for networks, systems, operations, cloud, people, process and technologies
· Provide hands-on technical expertise in the High-Level Design, Low Level Design and implementation of security tools and platforms
· Assess cybersecurity challenges within an environment, identify key strategic issues and advise on the best course of action
· Through the application of industry standards and security best practices, develop and recommend plans to structure secure architectures
· Understand the security interplay in the areas of application assurance, data classification, network security, and emerging IT trends and threats.
· Analyze and assess client facing security challenges, identify recommendations for solutions, and define a roadmap to implement such solutions successfully
· Develop, create and write and deliver documentation and technical artifacts in a professional matter that will be given to Clients and others in a professional manner
· Implement & administer network micro segmentation capabilities (Elisity, Illumio or similar) with activities such as maintaining PCE and VENs, Onboarding new applications
Qualifications
Education
· Bachelors degree required; preferred in Cyber Security, Information Assurance, Computer Information Systems (CIS), Information Security and Business
· Masters degree preferred in Information Assurance, Information Security or related discipline
Certifications Preferred
· Certified Information Systems Security Professional (CISSP)
Specialized Knowledge, Skills, and Abilities
· Working knowledge and consulting experience in the majority of the following areas:
o Zero Trust Architectures
o Network Segmentation
o Network Security
o OT Networks
· Ability to perform concurrent tasks in complex environments under adjusting priorities
· Ability to communicate and modify approach, language, and style to different audiences
· Professional writing style and experience with demonstrable technical and business-related artifacts is required
· Networking (Security). Industry-level expertise in any of the following networking (security) aspects
o Network security platforms, including segmentation, ACLs, DPI, DDoS protection. Examples include: Software: iptables, ipsec, VPN, IDS, firewall management platforms, ACL compilers and tooling. Hardware: switch ACLs, stateful firewalls, network segmentation, security zones
o OSI model and debugging network traffic
o Networking protocols (TCP/UDP, BGP, DNS, DHCP)
· Familiarity in firewall solutions in Zero-Trust, Network Admission Control, Micro-segmentation, Macro-segmentation, virtual networks, or Identity Defined Networks
This advertiser has chosen not to accept applicants from your region.
5
Security Consultant-Infrastructure Security
Bangalore, Karnataka
IBM
Posted today
Job Viewed
Job Description
**Introduction**
A career in IBM Consulting is rooted by long-term relationships and close collaboration with clients across the globe.
You'll work with visionaries across multiple industries to improve the hybrid cloud and AI journey for the most innovative and valuable companies in the world. Your ability to accelerate impact and make meaningful change for your clients is enabled by our strategic partner ecosystem and our robust technology platforms across the IBM portfolio; including Software and Red Hat.
Curiosity and a constant quest for knowledge serve as the foundation to success in IBM Consulting. In your role, you'll be encouraged to challenge the norm, investigate ideas outside of your role, and come up with creative solutions resulting in ground breaking impact for a wide network of clients. Our culture of evolution and empathy centers on long-term career growth and development opportunities in an environment that embraces your unique skills and experience
**Your role and responsibilities**
Manage and support enterprise firewall solutions including Fortinet, Check Point, and Palo Alto Networks.
Perform day-to-day firewall rule management, policy configuration, and troubleshooting.
Monitor and respond to security incidents, alerts, and network performance issues.
Implement network segmentation, VPNs, and secure remote access configurations.
Conduct health checks, upgrades, and patching of security devices.
Work on AWS and Azure network security, including NSGs, VPCs, VPNs, and routing.
Collaborate with SOC and Infrastructure teams for incident resolution and change management.
Ensure compliance with security standards and best practices.
Maintain accurate documentation and change records for all activities.
Provide L2 support and escalation handling for complex network security issues.
**Required technical and professional expertise**
Manage and support enterprise firewall solutions including Fortinet, Check Point, and Palo Alto Networks.
Perform day-to-day firewall rule management, policy configuration, and troubleshooting.
Monitor and respond to security incidents, alerts, and network performance issues.
Implement network segmentation, VPNs, and secure remote access configurations.
Conduct health checks, upgrades, and patching of security devices.
Work on AWS and Azure network security, including NSGs, VPCs, VPNs, and routing.
Collaborate with SOC and Infrastructure teams for incident resolution and change management.
Ensure compliance with security standards and best practices.
Maintain accurate documentation and change records for all activities.
Provide L2 support and escalation handling for complex network security issues.
**Preferred technical and professional experience**
Manage and support enterprise firewall solutions including Fortinet, Check Point, and Palo Alto Networks.
Perform day-to-day firewall rule management, policy configuration, and troubleshooting.
Monitor and respond to security incidents, alerts, and network performance issues.
Implement network segmentation, VPNs, and secure remote access configurations.
Conduct health checks, upgrades, and patching of security devices.
Work on AWS and Azure network security, including NSGs, VPCs, VPNs, and routing.
Collaborate with SOC and Infrastructure teams for incident resolution and change management.
Ensure compliance with security standards and best practices.
Maintain accurate documentation and change records for all activities.
Provide L2 support and escalation handling for complex network security issues.
IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.
A career in IBM Consulting is rooted by long-term relationships and close collaboration with clients across the globe.
You'll work with visionaries across multiple industries to improve the hybrid cloud and AI journey for the most innovative and valuable companies in the world. Your ability to accelerate impact and make meaningful change for your clients is enabled by our strategic partner ecosystem and our robust technology platforms across the IBM portfolio; including Software and Red Hat.
Curiosity and a constant quest for knowledge serve as the foundation to success in IBM Consulting. In your role, you'll be encouraged to challenge the norm, investigate ideas outside of your role, and come up with creative solutions resulting in ground breaking impact for a wide network of clients. Our culture of evolution and empathy centers on long-term career growth and development opportunities in an environment that embraces your unique skills and experience
**Your role and responsibilities**
Manage and support enterprise firewall solutions including Fortinet, Check Point, and Palo Alto Networks.
Perform day-to-day firewall rule management, policy configuration, and troubleshooting.
Monitor and respond to security incidents, alerts, and network performance issues.
Implement network segmentation, VPNs, and secure remote access configurations.
Conduct health checks, upgrades, and patching of security devices.
Work on AWS and Azure network security, including NSGs, VPCs, VPNs, and routing.
Collaborate with SOC and Infrastructure teams for incident resolution and change management.
Ensure compliance with security standards and best practices.
Maintain accurate documentation and change records for all activities.
Provide L2 support and escalation handling for complex network security issues.
**Required technical and professional expertise**
Manage and support enterprise firewall solutions including Fortinet, Check Point, and Palo Alto Networks.
Perform day-to-day firewall rule management, policy configuration, and troubleshooting.
Monitor and respond to security incidents, alerts, and network performance issues.
Implement network segmentation, VPNs, and secure remote access configurations.
Conduct health checks, upgrades, and patching of security devices.
Work on AWS and Azure network security, including NSGs, VPCs, VPNs, and routing.
Collaborate with SOC and Infrastructure teams for incident resolution and change management.
Ensure compliance with security standards and best practices.
Maintain accurate documentation and change records for all activities.
Provide L2 support and escalation handling for complex network security issues.
**Preferred technical and professional experience**
Manage and support enterprise firewall solutions including Fortinet, Check Point, and Palo Alto Networks.
Perform day-to-day firewall rule management, policy configuration, and troubleshooting.
Monitor and respond to security incidents, alerts, and network performance issues.
Implement network segmentation, VPNs, and secure remote access configurations.
Conduct health checks, upgrades, and patching of security devices.
Work on AWS and Azure network security, including NSGs, VPCs, VPNs, and routing.
Collaborate with SOC and Infrastructure teams for incident resolution and change management.
Ensure compliance with security standards and best practices.
Maintain accurate documentation and change records for all activities.
Provide L2 support and escalation handling for complex network security issues.
IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.
This advertiser has chosen not to accept applicants from your region.
Be The First To Know
About the latest Security expert Jobs in India !
6
Security Consultant Data Security
Mumbai, Maharashtra
IBM
Posted 2 days ago
Job Viewed
Job Description
**Introduction**
Information and Data are some of the most important organizational assets in today's businesses. As a Security Consultant, you will be a key advisor for IBM's clients, analyzing business requirements to design and implement the best security solutions for their needs. You will apply your technical skills to find the balance between enabling and securing the client's organization with the cognitive solutions that are making IBM the fastest growing enterprise security business in the world.
**Your role and responsibilities**
* Work closely with the Security Managers, Leadership and other Enterprise IT teams and be the bridge between the various departments.
* Strong Technical Knowledge and Experience in Data Loss Prevention, Data Classification Tool
* Act as the subject matter expert and system lead for Data Security.
* Good Experience in Administration of Technologies/Products mentioned below
* 1) Data Loss Prevention (Symantec / Forcepoint)
* 2) Data Classification Tool (Titus)
* SIEM Event Analysis and manual Co-relation of Events to narrow down the analysis to Threat Vector.
* Coordinate and work along with Threat Intel, Incident Response Team and SOC Analysts
* Service Delivery and Operations Support
* Participate in defining and refining security baselines for our systems.
* Interact with vendors, researchers, and other 3rd parties to collaborate on security issues or processes.
* Work with the Team Manager to develop and maintain security Key Performance Indicators.
* Troubleshoot Endpoint security agent (DLP/DCT) software issues.
* Responsible for tuning various security tools & technologies already in place.
* Review the SOPs & technical runbooks & also create new SOP documents/runbooks for innovative technologies/process.
* Experience/Knowledge in Database Activity Monitoring is plus
**Required technical and professional expertise**
Experience on DLP Products / Hands on experience in Agent implementation for large client
**Preferred technical and professional experience**
Experience on DLP Products / Hands on experience in Agent implementation for Large client with Monitoring Security devices.
IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.
Information and Data are some of the most important organizational assets in today's businesses. As a Security Consultant, you will be a key advisor for IBM's clients, analyzing business requirements to design and implement the best security solutions for their needs. You will apply your technical skills to find the balance between enabling and securing the client's organization with the cognitive solutions that are making IBM the fastest growing enterprise security business in the world.
**Your role and responsibilities**
* Work closely with the Security Managers, Leadership and other Enterprise IT teams and be the bridge between the various departments.
* Strong Technical Knowledge and Experience in Data Loss Prevention, Data Classification Tool
* Act as the subject matter expert and system lead for Data Security.
* Good Experience in Administration of Technologies/Products mentioned below
* 1) Data Loss Prevention (Symantec / Forcepoint)
* 2) Data Classification Tool (Titus)
* SIEM Event Analysis and manual Co-relation of Events to narrow down the analysis to Threat Vector.
* Coordinate and work along with Threat Intel, Incident Response Team and SOC Analysts
* Service Delivery and Operations Support
* Participate in defining and refining security baselines for our systems.
* Interact with vendors, researchers, and other 3rd parties to collaborate on security issues or processes.
* Work with the Team Manager to develop and maintain security Key Performance Indicators.
* Troubleshoot Endpoint security agent (DLP/DCT) software issues.
* Responsible for tuning various security tools & technologies already in place.
* Review the SOPs & technical runbooks & also create new SOP documents/runbooks for innovative technologies/process.
* Experience/Knowledge in Database Activity Monitoring is plus
**Required technical and professional expertise**
Experience on DLP Products / Hands on experience in Agent implementation for large client
**Preferred technical and professional experience**
Experience on DLP Products / Hands on experience in Agent implementation for Large client with Monitoring Security devices.
IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.
This advertiser has chosen not to accept applicants from your region.
7
Security Consultant - Biometrics
Mumbai, Maharashtra
IBM
Posted 2 days ago
Job Viewed
Job Description
**Introduction**
A career in IBM Consulting is rooted by long-term relationships and close collaboration with clients across the globe.You'll work with visionaries across multiple industries to improve the hybrid cloud and AI journey for the most innovative and valuable companies in the world. Your ability to accelerate impact and make meaningful change for your clients is enabled by our strategic partner ecosystem and our robust technology platforms across the IBM portfolio, including Software and Red Hat.
Curiosity and a constant quest for knowledge serve as the foundation to success in IBM Consulting. In your role, you'll be encouraged to challenge the norm, investigate ideas outside of your role, and come up with creative solutions resulting in groundbreaking impact for a wide network of clients. Our culture of evolution and empathy centers on long-term career growth and development opportunities in an environment
**Your role and responsibilities**
* Handle complex issues related to biometric device installation, configuration, and integration.
* Troubleshoot Windows/Linux client OS problems affecting biometric device functionality.
* Perform advanced driver checks, updates, and root-cause analysis for device failures.
* Execute and validate baseline remediation and compliance enforcement.
* Conduct restriction/unrestriction policy checks and apply corrective actions.
* Support L1 engineers with technical guidance and knowledge sharing.
* Document resolutions, create troubleshooting guides, and support periodic audits & patching.
* Coordinate with vendors for escalations when needed.
* Strong hands-on knowledge of Windows client OS and Linux-based environments.
* Deep understanding of device drivers, biometric hardware troubleshooting, and endpoint integration.
* Experience with baseline remediation, compliance standards, and endpoint hardening.
* Familiarity with Active Directory, Group Policies, and endpoint restriction mechanisms.
* Strong analytical and problem-solving skills.
* Good communication and ability to train/mentor L1 team members.
**Required technical and professional expertise**
2 to 4 years of experience
> Hands-on experience with Windows/Linux server environments.
> Strong communication, documentation, and stakeholder coordination skills
**Preferred technical and professional experience**
Understanding of Active Directory (AD), LDAP, SSO, MFA integrations.
Familiarity with databases (SQL, PostgreSQL, or Oracle) for backend support.
Scripting skills (PowerShell, Python, or Shell) for automation & troubleshooting
IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.
A career in IBM Consulting is rooted by long-term relationships and close collaboration with clients across the globe.You'll work with visionaries across multiple industries to improve the hybrid cloud and AI journey for the most innovative and valuable companies in the world. Your ability to accelerate impact and make meaningful change for your clients is enabled by our strategic partner ecosystem and our robust technology platforms across the IBM portfolio, including Software and Red Hat.
Curiosity and a constant quest for knowledge serve as the foundation to success in IBM Consulting. In your role, you'll be encouraged to challenge the norm, investigate ideas outside of your role, and come up with creative solutions resulting in groundbreaking impact for a wide network of clients. Our culture of evolution and empathy centers on long-term career growth and development opportunities in an environment
**Your role and responsibilities**
* Handle complex issues related to biometric device installation, configuration, and integration.
* Troubleshoot Windows/Linux client OS problems affecting biometric device functionality.
* Perform advanced driver checks, updates, and root-cause analysis for device failures.
* Execute and validate baseline remediation and compliance enforcement.
* Conduct restriction/unrestriction policy checks and apply corrective actions.
* Support L1 engineers with technical guidance and knowledge sharing.
* Document resolutions, create troubleshooting guides, and support periodic audits & patching.
* Coordinate with vendors for escalations when needed.
* Strong hands-on knowledge of Windows client OS and Linux-based environments.
* Deep understanding of device drivers, biometric hardware troubleshooting, and endpoint integration.
* Experience with baseline remediation, compliance standards, and endpoint hardening.
* Familiarity with Active Directory, Group Policies, and endpoint restriction mechanisms.
* Strong analytical and problem-solving skills.
* Good communication and ability to train/mentor L1 team members.
**Required technical and professional expertise**
2 to 4 years of experience
> Hands-on experience with Windows/Linux server environments.
> Strong communication, documentation, and stakeholder coordination skills
**Preferred technical and professional experience**
Understanding of Active Directory (AD), LDAP, SSO, MFA integrations.
Familiarity with databases (SQL, PostgreSQL, or Oracle) for backend support.
Scripting skills (PowerShell, Python, or Shell) for automation & troubleshooting
IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.
This advertiser has chosen not to accept applicants from your region.
8