.. that we believe is second to none. What you need to have: in Business Administration (MBA) / equivalent post-graduation certification in Business Administration .. skills – verbal, writing, listening level of proficiency in MS Office, with strong skills in PowerPoint, Word, Excel, Access and SharePoint level of .. read more
Title: Security Consultant- TVA/ VAPT Location: Mumbai/ Bangalore/ Gurugram Work format: Full time work from office role Experience: 3-7 Years Required skill set: As the Security Consultant your skills and qualifications will include: Possess Strong working experience related to information security consulting with sound hands-on experiences on TVA practice areas. Penetration testing domain certifications such as CEH/CREST CPT/CCT Web App/CCT Infrastructure, OSCP/OSCE/OSWE Other information security and audit certifications are preferred but not required, such as CISA/CISM/CRISC/CISSP Experienced in supporting consulting pre-sales work (e.g. writing SoWs, proposals etc.) Be self-motivated and self-disciplined with a demonstrable and successful track record in delivering consultancy projects to all sizes of organizations Must have good presentation skills with the ability to present to audiences of both business and IT stakeholders Must have good written communication and report writing skills Demonstrable experience in the Information Technology Security Industry or relevant experience in similar role within a related environment Experience with security architecture design principles Experience with industry compliance and standards such as ISO 27000, PCI:DSS, NIST, HIPAA or others Specialist experience with security tools and techniques to cover SANS Top 25, OWASP or others Experience working in a multi-team environment across multiple geographies Job Description Summary: Responsible for translating clients’ cybersecurity requirements and customizing and implementing security solutions into specific systems, applications and product designs. Identifies and develops the security solutions for clients using company products, outsourced technology solutions and technical tools. Consults with clients regarding secure product configuration, deployment, and security patches to minimize security vulnerabilities. Provides comprehensive scanning, penetration testing, vulnerability assessments, monitoring services and source code analysis and delivers detailed results to clients. Guides and supports clients in the development and implementation of product security controls. Often project-based and involves working at customer sites. Performance is typically measured by the capture of the consulting engagement, utilization (i.e., billable hours) and/or delivery of agreed solutions within budgeted hours. Develop Security consulting practice in India in line with central OHQ guidelines where resources are to be hired in HUB countries. Potential direct revenue from this team is planned to be 250K with gross margins 25% plus. All 4 resources in the team are billable for Security consulting projects at client place. The plan is approved by Country manager and OHQ consulting lead. Key Roles and Responsibilities: Work on strategic projects that ensure the efficient and effective reaction to security breaches to mitigate immediate and potential threats. Use mitigation, preparedness, response and recovery approaches to minimise business disruptions & commercial consequences. Offer detailed technical support investigation and analysis response activities and evaluate the effectiveness of and improvements to existing practices. Conduct regular threat and vulnerability assessments and determine deviations from acceptable configurations or policies. Participate in the assessment of the level of risk and support the development of appropriate mitigation countermeasures in operational and non-operational situations. Analyse evidence to support network vulnerability mitigation. Support peers in the management and implementation of the information security management system. Participate in the implementation of policies, processes and guidelines to ensure the standardisation of security management throughout the organisation. Apply tactics, techniques, and procedures to a full range of tools and processes related to administrative, criminal, and counterintelligence gathering (e.g., in-depth case analyses, continuous monitoring, malware analysis, clear documentation). Collaborates with stakeholders to guide and functional and security requirements. Proactively search through our critical infrastructure, systems and networks to detect and isolate advanced threats that may cause harm to our organisation. Use both manual approaches and automated tools to identify, analyse, and report events and support the development of countermeasures to proactively protect against these threats in the future. Knowledge, Skills and Attributes: Knowledge and understanding of IT industry environment and business needs Strong understanding of information technology and information security Solid understanding of security risks and preventative controls Excellent understanding of security operational processes and controls Service consulting aptitude, focusing on the business, service and sales aspects Excellent verbal and written communication skills Demonstrate impeccable attention to detail are able to translate internal customer requirements into solutions Maintain up-to-date knowledge of security threats, countermeasures, security tools, and network technologies High level of drive and ability to work under pressure Ability to build and maintain cross-functional relationships with a variety of stakeholders