You know your calling, you have decided on your specialization, and have spent time gaining crucial skills and experience. Now you are yearning for more. Consider applying to join one of our functional practice areas. Our functional practices deliver innovative services to some of the most demanding and discerning clients across the world.

Lead/ Principal Consultant- Cyber Security
Location: Riyadh

Eligibility

  • Lead Consultant:  10+ years & Principal consultant- 20+ yrars of relevant experience with at-least 5 years in a consulting role
  • A 4-year bachelors degree (relevant degrees such as computer engineering, information technology, electronics preferred)
  • Desired certifications – CISSP, CRISC, CISA/CISM, CCNA, CEH, ISO 27001 LI

 Core Competencies

  • Mandatory: Prior experience in managing large scale information security projects for Banking clients.
  • Extensive project based experience across multiple IS domain areas – IS Governance, Risk Management and Controls, IT Infrastructure Security, Compliance, BCM & DR, SOC and IS Incident Management, Threat and Vulnerability management from a process perspective.
  • Prior experience in information security strategy and planning (strategies, roadmaps, maturity assessments, governance organization design, roles and responsibilities), defining KPIs/KRIs and measurement.
  • Prior experience in developing holistic and detailed frameworks for multiple IS domain areas such as cyber security, risk management, data protection, incident management etc.
  • Prior experience in developing IS policies, standards, guidelines, processes and procedures.
  • Prior experience in conducting assessments for and excellent knowledge of ISO 27001, ISO 31000, ISO 22301, NIST SP 800 53, PCI DSS, ISO 20000, ITIL, COBIT, COSO, other standards.
  • Sound understanding of information security non-technical and technical controls.
  • Solid understanding of IT network infrastructure architecture and components.
  • Ability to create high quality deliverables.
  • Excellent project management, client handling and negotiation, decision making and crisis management skills.
  • Prior experience in managing, guiding and mentoring teams.
  • Ability to serve as a cross domain subject matter expert and advisor.
  • Ability to independently manage as well as execute projects.
  • Ability to directly interact and manage CXO level stakeholder expectations.
  • Excellent written and verbal communication in English, clear articulation.
  • Holistic thinking and on-the-fly solution engineering.
Lead Consultant- Web application and Network
Location – Bangalore/Mumbai
Job Description:
  • Adhering to best practices, and alignment with the Customer’s security requirements for project execution, documentation, and reporting
  • Interaction with multi-disciplinary teams for timely meeting of key project milestones and checkpoints
  • Contribute to practice development by creating reusable components and document key project-learning within the consulting practice
  • Build multifaceted skills in technologies
  • Manage Customer relationships at the project delivery level
  • Hands on experience in penetration testing for thick client based application.
  • Understanding of enterprise security and auditing requirements will be advantageous
  • Possess demonstrated skills in Customer-centric selling, and supporting the sales team in closing deals by providing technological support
  • Being a key team member for delivering complete project life cycles – from capturing Customer requirements to delivering timely solutions to Customers
Desired Profile:
  • Should have experience in handling at least 10-15 people team
  • Should have experience in handling multiple projects / clients simultaneously
  • Should have experience in handling projects in multi-geographies (E.g. South Asia, Middle East and USA)
  • Sound understanding of all security related fundamentals
  • Should be well-versed with OSSTMM / OWASP / SANS standards
  • Should have skills in Linux and Linux based tools.
  • Proven experience of penetration testing for web based application and use of backtrack based tools.
  • Rich script development in Perl/Ruby/Php/Python (would be a plus)
  • Excellent time management and prioritization skills
  • CEH would be minimum certification requirement
  • Relevant certifications (OSCP/CSSLP/CISSP) will be an added advantage
  • Hands on experience in penetration testing for financial applications
  • Hands on experience in web, thick and cloud based applications
  • Should be open to travel
Qualification & Experience:
  • Minimum Bachelor Degree

Contact your Recruiter

Consultant/Senior Consultant- Mobile Application
Location – Mumbai/Gurgaon
Role Description:
  • Conduct Security Code Review, Penetration Testing and Consult Product Development Team to secure Financial and Telecom Applications
  • Conduct penetration testing for thin & thick client based applications
  • Identify and propose work-around for critical defects.
  • Should be able to deal with multiple platforms like Windows, Linux and technologies like Java, .Net
  • Should have experience in Mobile application assessment in Andorid, iOS, Windows and Blackberry platforms
  • Conduct Threat Modeling of Applications
  • Ability to analyze root causes and deliver strategic recommendations during security reviews
  • Being a key team member for delivering complete project life cycles – from capturing Customer requirements to delivering timely solutions to Customers
  • Adhering to best practices, and alignment with the Customer’s security requirements for project execution, documentation, and reporting
  • Interaction with multi-disciplinary teams for timely meeting of key project milestones and checkpoints
  • Manage Customer relationships at the project delivery level
Desired Profile:
  • Candidate should be Graduate / Post Graduate with a strong hold on the Java, .Net, PHP based web technologies
  • Sound understanding of all security related fundamentals
  • Prior Development Experience will be an advantage
  • Should be familiar with OWASP, OSSTMM etc.
  • Hands on Experience on tools like Fortify, IBM AppScan, Checkmarx will be an added advantage.
  • Experience in code review will be an advantage.
  • Understanding of managed services business and the significance of SLAs SOPs, periodic reporting and escalation matrices
  • Relevant certifications (CEH/CSSLP/CISSP) will be an added advantage
  • Keen market awareness in terms of upcoming technologies, vendor offerings, and competitors is highly desirable
  • Experience n scripting and coding language will be an added advantage.
  • Excellent time management and prioritization skills
  • Should posses good Interpersonal & Communication skills

Contact your Recruiter

Consultant/ Senior Consultant- DLP

Location: Delhi/ Bangalore/ Hyderabad

Job Responsibilities:

  • Understand workflow in Symantc/Web Sense and assist in fine tuning of the data leakage prevention rules and automation via workflows
  • Perform incident management for data leakages, this includes incident identification, reporting, escalation and closure
  • Identify the priority of the data leakage incident and risks to the organization
  • Understand Symantc/Web Sense/ McAfee security gateway content and data leakage prevention features and identify gaps
  • Perform trend analysis of identified incidents, prepare reports
  • Learn from incidents and provide suggestions for fine tuning of the rule bases  

Desired Profile:

  • Should have 4-8 years experience in DLP solution.
  • Excellent analytical skills and result oriented
  • Knowledge about DLP, network security concepts and working experience with network security devices
  • Experience in incident management, log management and its correlation

 Contact your Recruiter

Associate consultant/ consultant/ Senior Consultant- DLP

Location: Delhi/Bangalore

Job Responsibilities:

  • Understand workflow in Symantc/Web Sense/ McAfee and assist in fine tuning of the data leakage prevention rules and automation via workflows
  • Perform incident management for data leakages, this includes incident identification, reporting, escalation and closure
  • Identify the priority of the data leakage incident and risks to the organization
  • Understand Symantc/Web Sense/ McAfee security gateway content and data leakage prevention features and identify gaps
  • Perform trend analysis of identified incidents, prepare reports
  • Learn from incidents and provide suggestions for fine tuning of the rule bases  

Desired Profile:

  • Should have 2-8 years experience in DLP solution.
  • Excellent analytical skills and result oriented
  • Knowledge about DLP, network security concepts and working experience with network security devices
  • Experience in incident management, log management and its correlation

Contact your Recruiter

Consultant/ Senior Consultant – Web application and Network security
Location – Bangalore
Job Description:

• 3 years of relevant manual infrastructure and/or application security experience
• Bachelors/Masters in Computer Science or related field is preferred.
• Knowledge of network attacks, post exploitation skills, security bug classification frameworks such as DREAD, OWASP Top 10 etc. and experience applying security bug classification methods in Testing and QA.
• Experience in providing technical oversight to other project team members to maintain engagement quality.
• Experience in handling client queries, providing recommendations & mitigation strategies in order to remediate vulnerabilities.
• Good to have exposure on mobile application security assessments, source code analysis, application security vulnerability research
• Good to have experience with fuzzing & exploit development.
• Good to have skills in programming languages such as C, C++, Python, PHP or other major programming languages.
• Good to have experience in speaking or presenting at national and international security conferences and events.
• Good communication skills

Contact your Recruiter

Senior Consultant – Archer
Location – Bangalore/NCR/Mumbai
Job Description

• 5+ years of experience.
• 5 years plus experience and at least 3 years hands on experience (both front end and back end) on Archer GRC suite.
• RSA Archer out-of-the-box application and solution implementation.
• On demand application creation for customized reporting/ views
• Creating customized workspaces using custom object coding , iviews, reports ,notification templates.
• Experience in configuring Data Feed Manager to import data from external sources like HRMS and AD and creating automated business hierarchy,
• Prepare Functional Specification Document for the client
• Hands on implementation experience with multiple Archer Solution packages, atleast 4 of them.

Contact your Recruiter

Lead Consultant – ISIM, ISAM ESSO

Location:  Mumbai/Pune

Desired profile

  • In depth understanding of Identity & Access Management products (ITIM/ISIM, PIM, ISAM eSSO, TDI)
  • Strong knowledge of development environments/languages:  ITIM API, J2EE, Java, JavaScript, TDI Assemblylines
  • Good problem solving skills, out of the box thinking
  • Ability to come up with solutions (with or without customization)
  • Sound experience with development and customization around ISIM, & ISAM eSSO (architecture, data models, databases, encryption, API, webservices, customization, infrastructure setup)
  • Ability to understand clients' business requirements, non stated requirements and convert it into Solution Design (out of the box or custom)
  •  

Required Experience:

  • 6+ years of experience in IAM domain
  • Experience in implementation, design and architecture of the identity and access management solutions.
  • Experience in managing end-to-end implementation lifecycles of Identity/Access Management projects.

Contact your Recruiter

Lead Consultant- Qradar

Location: Bangalore

Required skills and experience:

  • Overall 6+ years of relevant experience in Information Security /SIEM domain. (Primarily QRadar).
  • Strong implementation/governance experience in QRadar SIEM.
  • Ability to develop solution architecture design and implementation for security projects.
  • Familiarity with SIEM usecase management and SOC processes.
  • Skills to Install/configure/build/fine-tune the SIEM tool to setup an effective information security support / operations.
  • Establish KPI, review & manage security logs and provide reports based on KPI and metrics.
  • Hands-on knowledge of Correlation rules creation / Update / Deletion.
  • Ability to develop custom parsers for unsupported devices.
  • Excellent communication and customer interaction skills.
  • Familiarity of ITIL and ISO processes.
  • Willingness to relocate anywhere in India or abroad as per the business requirements.
  • Being flexible to work in 24*7 environment as per the business needs.

Qualification:

  • Any Graduate (preferably Engineer, MCA).
  • QRadar SIEM product certification is desirable.
  • Any of the following certifications Cisco – CCNA, CCNA – Security, CCNP – Intrusion Prevention System, ECSA (Certified Security Analyst), CEH.

 Contact your Recruiter

Security Operation Centre L3

Location: Kuwait

Scope of the project:

  • QRadar hands on implementation experience.
  • QRadar device integration, correlation rules, reports creation.
  • Uecase development and implementation.
  • Ongoing QRadar operations and support.
  • Drive ongoing SOC operations and governance
  • Client/partner handling role.

Required Skills

  • Qradar Implementation, SOC L3 experience is a must
  • Need to have familiarity with at least 2 SIEM tools (one necessarily being QRadar)
  • Proven track record and experience of setting up and running SOC (preferably using QRadar)
  • Responsible for smooth and efficient SOC operation
  • Overall responsibility of ensuring quality service delivery and meeting the defined SLA
  • Reporting, metrics measurement and continuous improvement
  • Manage shifts and roster; SOC team management
  • Review changes to the process / procedures / formats and approve the same
  • Recommending the annual training calendar for all SOC team members
  • Responsible for identifying resource requirements and recommending the same to the IT Security committee
  • Periodic review with steering committee
  • Need to have excellent communication skills and client handling experience to ensure client satisfaction
  • Approximate years of experience: 6+ years and team management experience.

Apart from the specific skills/responsibilities listed above, it is preferable to have following skills:

  • Network security, experience working with IPS/IDS
  • Patch management skills
  • Antivirus management and malware detection skills
  • Well versed working with at least 2 Operating systems (e.g. Windows, Linux)

  Contact your Recruiter

Consultant/ Senior consultant- Cloud Audit+ ISO 27001 Third party Audit

Location: Bangalore

Responsibilities:

  • Assist the Global Risk Assessment team in the formulation and execution of third party management strategies to optimize cost and performance, and build strong stakeholders partnerships.
  • Ensure consistency with the overall third party management strategy and ensure timely completion of projects and deliverables.
  • Provide guidance and enforce the standardization of third party strategies, policies, procedures, guidelines, and reporting.
  • Oversee the SLAs, reports and processes established for each business unit supported by SISC TPRM program for Sony globally.
  • Create risk assessment and scorecard tools to enable business unit managers to consistently assess and report their third party risks.
  • Develop and execute a robust communications strategy to advise key stakeholders of the program status.
  • Recommend and implements tactical procedures to improve operational effectiveness and enhancements to third party risk assessment program.
  • Establish metrics and develop reporting on information security risks, remediation progress, and outcomes and reporting for the Executive Management of the business units.

Required Experience:

  • Should have 5+ years of experience in information security.
  • Cloud Security Risk assessment experience is a must.
  • Oversee and individually manage central third party management team and provide clear direction for direct reports and cross-functional teams, including roles and responsibilities, performance evaluation, processes and standards, and coordination of resources

Contact your Recruiter

Associate Consultant/ Consultant- Tivoli Identity Manager

Location: Bangalore, Mumbai/Pune

Role Description:

  • Work independently or as part of geographically spread teams to design and deploy identity management solutions using ITIM / ISIM and other products
  • Prepare solution design documents and requirement specifications
  • Understand the solution specifications and setup workflows, user interfaces, policies and reports as per solution requirements
  • Deploy ITIM / ISIM in various environments and configurations including high availability and failover
  • Interface with client teams for requirement formalization and deployment planning
  • Identify requirements and deliver custom development as and when needed
  • Build custom adapters using various methods
  • Work with principle vendor support teams to resolve product bugs and obtain product enhancements
  • Setup and execute proof of concept demonstrations
  • Assist in presales – understanding requirements, building approach notes, solution proposals, effort estimates
  • Additional responsibilities will include team mentoring, adherence to Aujas project monitoring/management methodology

Desired qualities:

  • Excellent communication skills; written and spoken
  • Experience with other products like Sun, Oracle, CA, or other Tivoli products etc shall be appreciated, but excellent understanding of ITIM / ISIM is essential including understanding of policies, workflows, reconciliation, recertification and reports.
  • Sound understanding of all components in the IBM Tivoli / IBM Security IDM suite – Websphere Application Server, Message Queues, DB2, Tivoli Directory Integrator, Tivoli Directory Server, Adapter development tool
  • Proven hands on experience of designing and deploying identity solutions using IBM Tivoli’s stack
  • Custom code development in Java / Javascript for augmenting out of the box features
  • Good skills in programming and writing custom programs and scripts
  • Creating and modifying workflows for implementing business flows
  • Creating custom adapters and interfaces, utilizing APIs from IBM Tivoli / IBM Security
  • Experience of integrating a variety of user repositories, including databases, LDAP servers, Microsoft Active Directory and Exchange, UNIX, and enterprise services such as HR systems, Application Servers, CRM, etc.
  • Comfort with databases, operating systems and computer networks
  • Relevant certifications will be a plus
  • Travel will be needed. It can be both short term and long term.

Qualification & Experience:

  • Total experience: 2 - 7 years
  • Bachelor or Masters degree in Computer Science and Engineering or equivalent
  • Preferred Certifications – ITIM / ISIM Certified

 Contact your Recruiter