null Jobs

[Full-time] Security Researcher at Juniper Networks

2013-04-24 01:54:08

Location: Banglore
URL: http://www.juniper.net/us/en/

Description:

SECURITY RESEARCHER

Job responsibility
1. He/she should be able to identify emerging threat mechanisms and should be able to translate in to product requirements.
2. He/she should always be on top of latest vulnerabilities, threats, 0-days, malwares, botnets, APTs etc and should be able to improvise signatures and anomalies.
3. He/she should be required to have very strong knowledge of protocols such as HTTP, SBM, DNS, Tunneling mechanisms, evasions and required to improvise existing protocols decoders.
4. Someone who should liaise with cross functional teams.
Job requirements:

- Having very strong understanding of network security modules at different segment of network such as Perimeter, Datacenter, Client/server side security etc – Latest n/w security protection concepts such as sandboxing, dynamic inspection, DDoS etc and have past experience in translating network security concepts, ideas in to security product/features – Able to research Functional specifications and create effective, innovative security solution, able to provide review comments/feedback on security features implementation in products. – Extensive knowledge of HTTP protocol from RFC point of view and understanding of its misuse in network attacks and very strong knowledge of other network protocols at RFC level – Extensive experience in network security research and add-on Experience in researching and analyzing Vulnerabilities, Malware and writing signatures using Regular expressions – Very strong understanding of TCP/IP protocol stack and basic networking fundamentals, L2/L3 communication, VLAN – Desirable to have prototyping experience in C or PERL, python etc. – Excellent communication skills, both verbal and written

SBU: DPI Group
With more than half a billion dollars in sales, the SBU has the world’s most scalable firewall and some of the most robust IDP technologies available. We were the first to introduce 10Gbps IDP solution to the market and the first to introduce 80 Gbps FW with Integrated solutions routers The DPI Group is responsible for IDS/IPS and DPI technologies on all Juniper Products. We have had major success at Apple, IBM, Lockheed Martin, Charles Schwab, Volvo, Darden Restaurants, NATO, AT&T and Verizon to name a few.

Apply to this job

[Full-time] Consultant / Senior Consultant - SIEM (RSA enVision) at Aujas Networks Pvt Ltd

2013-04-17 23:30:20

Location: Delhi
URL: http://www.aujas.com

Description:

Responsibilities:

• Advanced investigation on security incidents escalated by consultants.
• Coordinate with various operations support teams for investigation & validation
• Prepare guidelines and monitoring procedures for consultant and senior consultant.
• Prepare weekly security operations reports
• Escalate security incidents to SIRT (Security Incident Response Team).
• Participate & provide support for SIRT’s Incident response process.
• Set up standard operating procedures
• Perform validation against case closure
• Provide monitoring & investigation instructions for any updates
• Perform presales activities, such as presales calls, RFP responses, proposals, presentations, effort estimation.
• Manage regional practice development initiatives, including recruitment, service development & definition, white papers, Aujas blog, etc.

Desired Profile:

• 3-7 years of IT experience with a minimum of 3 years in the security domain.
• Ability to lead complex and large scale security projects.
• Should have a strong background in driving strategy, designing project roadmap, solution architecture design, planning the work for security projects.
• In depth understanding of different SIEM tools like RSA envision, Arcsight architectures.
• Good understanding of security best practices and processes such as incident management, vulnerability management, log monitoring etc.
• Strong knowledge of infrastructure security services and security monitoring process.
• Knowledge in ITIL and ISO processes.
• Should have excellent management skills – written & verbal communication, escalations management and expectations management.
• Strong project management and people management skills.
• Should have experience in end to end implementation of RSA Envision.
• Understanding of managed services business and the significance of SLAs, SOPs, periodic reporting and escalation matrices.
• Possess demonstrated skills in customer-centric selling, and supporting the sales team in closing deals by providing technological support.
• Keen market awareness in terms of upcoming technologies, vendor offerings, and competitors is highly desirable.

Qualification:
• Total Experience: 3-7 Years
• Any Graduate
• RSA Envision certified preferred

About Aujas

Aujas is a rapidly growing, global consulting and professional services company focused on executing cutting edge projects in the domain of information security and risk management.
The evolving Internet landscape, emerging paradigms of cloud centric IT, and explosive adoption of mobile technologies has positioned Aujas in an extremely relevant manner in today’s market.
Providing end to end solutions for information security, Aujas’ services offerings include:
1. Identity, Access and SIEM Services
2. Information Risk Advisory Services
3. Secure Development Life-cycle Services
4. Converged Security Services
5. Mobile Security Services
Over the last 5 years, Aujas have executed 500+ projects; working for more than 300 clients in more than 21 countries worldwide; built offices in 4 global regions.

Aujas is an International Data Group Ventures India company. International Data Group (IDG), the world’s largest IT media company with publications such as CIO, CSO etc. By incorporating the IDG platform – an unparalleled combination of global publishing, and market research (IDC), we have been able to understand our markets better and penetrate them faster than our competition.
“Aujas won IBM’s Best Partner Award for Identity and Access Management”
“Aujas ranked Fastest Growing Company in Deloitte Tech Fast 50 India in 2011 & 2012”
“Aujas ranked No 45 in Deloitte Tech Fast500 Asia Pacific in 2011”
“Aujas is the only Information Risk Management company to be selected for NASSCOM EMERGE Forum 2010 & 2011”

Apply to this job

[Full-time] iOS Mobile Application Security at Kony

2013-04-02 04:13:32

Location: Hyderabad
URL: http://www.kony.com

Description:

Developer is responsible for developing application security product.

No of opening position:- 1

Required skill set:-

*) Experience in Linux OS internals

*) Expertise in C/C++/ObjC

*) Experience in iOS development is an advantage

*) Good knowledge in software security concepts

*) Passion in Hacking and Exploiting software

Min Experience :- 4

Location :- Hyderabad

Apply to this job

[Full-time] Sr. MSS Security Engineer (Firewall) at Symantec Software

2013-03-31 23:43:57

Location: Chennai
URL: http://www.symantec.com

Description:

Relentlessly protect the world’s information. Make a difference at Symantec. Across the globe, we are an ‘essential’ partner to both consumers and businesses of all sizes. We combine our talents, our brains, and our creative energy to reinforce our place as a world-class technical community.

Responsibilities – • Responsible for day-to-day management of Managed Endpoint Protection Service operations in accordance with the Symantec Managed Security Services global mission.
• Install, configure and maintain Security technologies including Symantec Endpoint Protection on customer network.
• Under the guidance of the Manager, accomplish daily Managed Endpoint Protection Service operational tasks to defined standards.
• Work with Symantec MSS customers to triage their requests and take them to completion.
• Coordinate with other global MSS teams to ensure customer environment is protected
• Technical expertise in Symantec Endpoint Protection
• Strong problem solving skills
• Willingness to work in 24×7 shifts and be participate in on-call rotation.

Qualifications –
• Bachelor’s Degree or equivalent experience. 3+ years industry experience or 1 yrs of SOC Experience.
• Hands-on expertise designing and implementing technical security solutions, including firewalls, IDS/IPS and VPNs.
• Should have basic knowledge on IDS and IPS technologies. Should have atleast one IDS/IPS vendor experience.
• Expertise with at least 1 of the following:
• Check Point FW-1/VPN-1
• Cisco Pix & ASA
• Juniper NetScreen Firewall
• Experience with one or more of the following IDS/IPS products:
• Snort IDS
• Sourcefire
• IBM Proventia NIPS
• McAfee IntruShield NIPS
• Juniper IDP
• Working knowledge of Windows 2003/2008
• Knowledge of one or more of following endpoint protection products:
• Symantec Endpoint Protection (SEP)
• Symantec Sygate Enterprise Protection (SSEP)
• Symantec Anti Virus (SAV),
• Symantec Client Security (SCS),
• Sygate Secure Enterprise (SSE),
• Symantec On-Demand Protection (SoD),
• Symantec Network Access Control (SNAC)
• Should have demonstrated ability/experience to solve technical issues with customers and partners.
• Good written and oral communication skills in English.
• Good customer service skills and interpersonal skills.
• Should be flexible with 24×7 shift rotation schedule.
• Uses professional concepts and company policies and procedures to solve a wide range of difficult problems in imaginative and practical ways. Broad application of principles, theories, and concepts in applicable discipline, plus working knowledge of other related fields. Works on problems of diverse scope where analysis of data requires evaluation of identifiable factors.
• Exercises judgment within generally defined practices and policies in selecting methods and techniques for obtaining solutions.
• Responsible for meeting SLA terms and analyzing SLA performance.
• Is responsible for triage of customer issues in complex security network environments.

Experience Required:
• 4 to 6 years of experience
• Requires a Bachelors degree (or equivalent) in Computer Science or Electronics.
• Industry recognized certification of relevant subject matter expertise.
• Excellent Verbal and Written Communication Skills. Strong command of English business language.

Apply to this job

[Full-time] Senior Member Technical Staff/Project Lead at Oracle India Private Limited

2013-02-27 06:42:58

Location: Banglore
URL: http://www.oracle.com

Description:

About Us
————
The group is chartered to design and develop software tools to improve software quality for Oracle RDBMS product. Current focus areas of the group are the following : – database security and vulnerability analysis – memory testing – code coverage and measurement – quality management tools – test selection – test generation

We are looking for a smart, creative engineering talent with hacker mentality. The person is preferred to have penetration testing experience and also be familiar with vulnerabilities in various computing environments, from OS, database, networking, to web applications.

Job Requirements
————————
Duties and tasks are varied and complex needing independent judgment. Fully competent in own area of expertise. May have project lead role and or supervise lower level personnel. BS or MS degree or equivalent experience relevant to functional area. 4 years of software engineering or related experience.

Expectations
—————— – BS or MS in Computer Science from a reputed college like IISC, IITs, NITs, BITS, Anna, RVCE etc – Experience with security testing and scanning tools is preferred – Experience with buffer overflow, sql injection, man-in-the-middle attack etc is preferred – Experience with SQL and PLSQL – Experience with Linux

Note: Applications have been closed.

Apply to this job

[Full-time] Consultant - Information Security at KPMG

2013-01-20 04:54:35

Location: Mumbai
URL: http://www.kpmg.com/in/en/pages/default.aspx

Description:

Vulnerability Assessment and Penetration Testing for Infrastructure / network / web application / databases
Web Services Knowledge / Penetration Testing
Secure Code Review of applications.
Demonstration of Proof of concepts for exploits
Wireless and Mobile Penetration Testing & Application Security Review
Security Configuration Review of Database / Servers / Firewalls / Switches / Routers
Knowledge on open source and commercial tools
Good to have Security Products KnowledgeNote: Applications have been closed.

Please DO NOT apply if:

1. You do not fall in the experience range (1-5 years)
2. Interviewed by KPMG in last 6 months
3. Contacted or referred by KPMG in last 6 months.

Note: Applications have been closed.

Apply to this job

[Full-time] Sr. Security Analyst at Code Decode Labs

2013-01-18 23:38:18

Location: Pune
URL: http://www.codedecodelabs.com

Description:

Job Location – Pune

Experience – At least 3 to 6 years of core Security experience.

Security Services & Control

 Manage security tools & implement any agreed changes to security tools, software, computing assets and processes which support the prevention of security exposure in the Equipment, Software under the guidance of client Information Security.
 SIEM tool Management and reporting
 Knowledge on Cryptographic tools & methodologies

Security Incident Management and Reporting

 Worked under SOC environment using SIEM Tools
 Prepare and coordinate risk assessments for proposed changes to the Equipment, Software and related Services on SOC environment.
 Support security incident response processes in the event of a security breach by providing logging and audit information and by providing incident reporting.
 Implement and manage a security incident management process according to the Security Policy.
 Coordinate notification of security incident occurrence with client.
 Provide periodic trending problem reports. Create and maintain a Security Incident log that is also provided to client Information Security to facilitate historical analysis.
 Assist investigators of security incidents involving the client Sites and other locations, document findings, and coordinate resolution.
 Understanding of Active directory infrastructure
 Participates in Change Management, Problem Management & Configuration Management
 Understanding of malware, antivirus & antispam solutions

Vulnerability Management
 Vulnerability Scanning & report analysis
 Identification of false positives
 Understand & share remediation strategies when required (application of remediation patches is out of scope)

Monitoring

 Monitor logs and security events across network infrastructure. Log, monitor, investigate, and report on access violations.
 Provide log analysis to provide views of misuse, fraudulent or malicious activities.
 Provide alerts and reports appropriately.
 Capacity Management
 Performance monitoring & threshold management

Patch Management

 Understanding of patch management process and tools; evaluate the release patch/recommended solution by tools.
 Liaise with client Infrastructure teams for patch deployment.
 Coordinate with vendor for patch Validation .

Technical Skills

• Knowledge on Active directory and patch management ( Microsoft system Interface)
• SIEM Tools (Archsight, Net Forensics, etc)
• Thorough knowledge of TCP/IP and file transfer protocols
• Knowledge on IDS / IPS, Firewall monitoring and change in rule base.
• Fair Knowledge on antimalware, antispam tools, vulnerability management
• Log reviews and security forensic reviews
• Access review of account to support Audit requirement.
• Review security device logs to analyze network traffic for suspicious/malicious activity
• Access Control Management
• Knowledge of offensive security tactics and tools
• Knowledge of cryptographic tools & methodologies
• Certifications like CCNA, MCSE, MCP or CEH would be an advantage.
• Experience with working in Windows as well as Unix/Linux environments

People Skills

• Willingness to work under 24/7 rotating shift basis
• Effective communication skills in both verbal and written English
• Ability to adhere to strict quality, service levels and change management process
• Demonstrated initiative to stay abreast of technology advancements
• Security certification such as CISSP or any other equivalent is desirable

Note: Applications have been closed.

Apply to this job

[Full-time] Information Security professionals - Skills: CISSP Trained/Certified, VAPT, SIEM at One of the top 5 IT companies of India

2013-01-16 20:35:38

Location: Pune
Description:

Dear All,

Greetings!!!

I have a job opening which might be of your interest.

Organization: A world leading IT company

Education:

B.E./B.Tech./MCA/MSc (Comp)/Graduate with additional 1 year experience in IT security.

Technical Skills:

- RSA Envision – Overall 6 years of experience in which 4 years in IT security – Experience in Deep Analysis, Advisory Services and overall design of SOC. – Master in SOC monitoring, Alert tracking, Regular SIEM administration. – Should have experience in SOC administration, Rule base Management, SOC fine tuning. – Good Understanding of Security Technologies like FW,IPS, IDS, VPN, Attacks, SIEM – Compliance adherence, Awareness of Audit process – Aware of VA/PT. – SOC process designing and SOC management. – Ready to work 24*7 rotational shifts.

Soft Skills:

- High Integrity – Problem solving skills and learning attitude – Ownership taking till closure of the ticket. – Good communication, analytical and presentation skills – Team leader – A good manager – Process oriented and Self Motivated

Technical Qualifications:

-CCNA/CCDA/CCSP/CCSA/MCSE, Technical certified on SIEM Solution.
-CISSP Certified / Trained
-ITIL Foundations

If interested kindly share your resume ASAP.

References welcome.

Note: The applications will be sent to Vineet from Damcosoft Pvt Ltd

Note: Applications have been closed.

Apply to this job

[Full-time] Security Test Engineer at Code Decode Labs

2013-01-15 00:46:45

Location: Pune
URL: http://www.codedecodelabs.com

Description:

Job Description: – :: Planning, designing and executing automated and manual web application security tests
:: Responsible for documenting test results and delivering reports and recommendations to application development leads
:: Risk assessment and management

Tools: – HP Web Inspect

Job Qualifications – :: Hand’s on sound experience with Grey Hat & Black Hat security testings
:: Strong technical skills related to a broad range of operating systems and databases
:: Strong presentation skills to assist developers in understanding and re-mediating issues
:: Experience in planning and implementing security test efforts, including manual security testing and developing custom security assessment scripts or programs
:: Common knowledge of operating systems, network protocols, web services and databases
:: Application security and systems development life cycle
:: Data and systems integrity controls
:: Encryption & Decryption technology
:: Network and application security assessment and ethical hacking
:: Experience utilizing open-source and enterprise vulnerability assessment tools
:: Practical knowledge and experience with OWASP top ten issues with an understanding of web-based application vulnerabilities
:: Experience testing both J2EE and .NET web applications
:: Demonstrated leadership and strong interpersonal skills with the ability to work well in a team
:: Self-motivated with ability to work with minimal supervision

Note: Applications have been closed.

Apply to this job

[Full-time] Looking for candidate on "Code Review" / VAPT at iViZ Techno Solutions Pvt. Ltd.

2013-01-09 00:06:32

Location: Banglore
URL: http://www.ivizsecurity.com

Description:

Requirement:
• Experience in the range of 2 to 6 years for Application security
• Development Back ground Java/J2EE preferably
• Architecture review Knowledge – Threat modeling concepts
• Code review using tool Fortify
• Application Penetration Testing
• Experience on both commercial and open source tools like: AppScan, WebInspect, Fortify, Paros, Burp etc.

Key Areas:
• Application Security
• Penetration Testing
• Development Side

For Gurgaon / Bangalore location:

Note: Applications have been closed.

Apply to this job