null Jobs

[Full-time] VA PT Tester (Appsec and Network) at Deloitte

2012-01-31 22:37:51

Location: Mumbai
URL: http://www.deloitte.com

Description:

RESPONSIBILITIES:

Sound Knowledge in conducting Network/ Infrastructure Vulnerability Assessment and Penetration Testing, Application security testing, Wireless security testing, Code review with at least 2 year experience in information security.

DESIRED SKILLS:

• Candidate should have B.E/BCA/BCS/MCA/MCS (Computer Science / E&C) with a good hold on the Java, .Net based web technologies.
• Should posses sound understanding in information security fundamentals, systems security and controls such as Vulnerability Assessment and Penetration Testing for Infrastructure / network / web application / databases and Secure Code Review.
• Proven experience of penetration testing for web based application and use of backtrack based tools and other open source / commercial tools.
• Excellent project, time management and prioritization skills
• Interaction with multi-disciplinary teams for timely meeting of key project milestones and checkpoints
• Should posses sound knowledge of hardening, patch management, VA/PT and configuration review.
• Contribute to practice development by creating reusable components and document key project-learning within the consulting practice

QUALIFICATION & EXPERIENCE

• Total Experience: 2 -3 Years
• Certifications: CEH, ISO 27001

Apply to this job

[Full-time] Information Security Admin at Adobe Systems India Pvt. Ltd.

2012-01-25 10:14:42

Location: Noida
URL: http://www.adobe.com

Description:

Looking for candidate having exp. in managing Anti-Virus server, vulnerability management, detecting security incidents via SIEM device, threat management, investigate security incidents, practical knowledge of web application vulnerabilities, sound knowledge of sysinternals to identify 0-day malware.

Exp. Requirement – 3-6y

Desired Certification – Any SANS certification
CEH/CHFI/Security+/CISSP

Thanks,
Sandeep

Apply to this job

[Full-time] ISMS (ISO 27001:2005) Implementer at Network Security Solutions (I) Ltd.

2012-01-20 02:25:47

Location: Noida
URL: http://www.mynetsec.com

Description:

Job Profile:-

Lead member of the team for Implementation of ISO27001:2005 controls in full cycle for corporate clients

Required:-

Three to five years related experience in the ISMS Implementation (Experience of development of framework till ISO certification)

Preferred:-

Experience in implementation of ISMS (ISO 27001) controls (at least three projects handled in full cycle and one as project lead.)

Apply to this job

[Full-time] Senior Consultant / Lead Consultant - Application Security, Code Review at Aujas Netwprks

2012-01-10 22:47:33

Location: Gurgon
URL: http://www.aujas.com

Description:

RESPONSIBILITIES:

• Adhering to best practices, and alignment with the Customer’s security requirements for project execution, documentation, and reporting
• Profiling Information assets, processing change requests, security help desk for external vendor reviews.
• Facilitate CIA rating by business/ IT for new applications/ major CRs on Asset Registers.
• Should review best practice guides for securing and hardening systems and network devices
• Evaluate third party applications & maintain a register/ repository of security evaluations of the third party service provider along with associated documents.
• Assist in formulating the Third Party Security Audit calendar to ensure comprehensive coverage of samples of all types.
• Monitor the closure of gaps identified in the third party security audit and additionally disseminate learning across the segment of Third Parties based on sample audit.
• Acquire and disseminate knowledge of latest security technology developments from tech blogs, Bulletin Boards, sites like NIST, SANS, etc
• Responsible for Project deliverables, team management and Project management.
• Contribute to practice development by creating reusable components and document key project-learning within the consulting practice

DESIRED SKILLS:

• Excellent analytical, communication, documentation and presentation skills.
• Candidate should have B.E, MS (Computer Science / E&C) with a good hold on the Java, .Net, PHP based web technologies or scripting in Perl/Ruby/Php/Python.
• Should posses sound understanding in information security fundamentals, systems security and controls such as ISO 27001
• Proven experience of penetration testing for web based application and use of backtrack based tools and other open source / commercial tools.
• Excellent project, time management and prioritization skills
• Interaction with multi-disciplinary teams for timely meeting of key project milestones and checkpoints
• Understanding of managed services business and the significance of SLAs SOPs, periodic reporting and escalation matrices
• Should posses sound knowledge of hardening, patch management, VA/PT

QUALIFICATION & EXPERIENCE

• Total Experience: 4 -6 Years
• Certifications: CEH, CISSP (Optional)

Apply to this job

[Full-time] Network Security at Network Security Solutions (I) Ltd.

2012-01-10 04:40:07

Location: Mumbai
URL: http://www.mynetsec.com

Description:

Job Description:

- Correction and mitigation actions to resolve the security alerts sent by log monitoring team of the network security devices

- Fine tuning and review of firewalls rule base

- Review and risk assessment of network architecture

- Functional knowledge of IPS rules

- CCNA with Work experience of network administration (firewall & IPS) at corporate level is desirable

Job Location: Navi Mumbai

CTC: Approx. 2.5L p.a.

Apply to this job

[Full-time] Vulnerability Researcher Manager at CareerNet Consulting

2012-01-06 02:18:49

Location: Banglore
URL: http://www.careernet.co.in

Description:

Experienced security engineer, assigned to conduct detailed security analysis and provide short term mitigation guidance and longer term technical direction to product engineers. Involved with overall planning and execution of security assurance activities across a range of products or features. Ability to multitask; works on problems of diverse scope where analysis of data requires evaluation of identifiable factors. Demonstrates good judgment in selecting methods and techniques for obtaining solutions. Interacts with senior internal and external personnel. Takes initiative to plan and execute own work assignments. Often acts as a Tech Lead on complex projects and may be a sub-group Lead. Note: This level can serve as a “branch point” from which individuals could move up either a technical, or a management, career path.
Primary Duties / Responsibilities
•Conducts security analysis of complex software components and provides technical direction on needed security assurance activities, including security code review, application level security analysis, security education and training, threat modeling, secure coding standards.
•In addition to hands-on technical development activities, provides guidance in the analysis and conceptual design of proposed projects.
•Participates in determining feasibility of proposed projects and the overall plan for implementation.
•Operates as Subject Matter Expert and/or owner of multiple moderate-complex software modules.
•Responsible for leading the integrity of technical work on significant concurrent projects.
•Acts as technical lead to direct requirements analysis, and writing of security engineering requirement(s) and design specifications for projects of moderate to complex scope.
•Reviews progress and evaluates results of assigned technical projects and process against conformance to plans and specifications making recommendations based on the results. Documents accordingly.
•Networks with key contacts outside own area of expertise and other departments on technical matters.
•Generally provides technical direction, delegation, and project management within a project team with increased leadership of others.
•Recommends and executes continuous quality improvement in meeting internal and external customer requirements (including customer escalation and cross-team support).

Qualifications (Knowledge, Skills, Abilities)

•Detailed understanding of application level security weaknesses and vulnerabilities. Demonstrated ability to perform application level security assessment and produce sound security direction to product engineering teams.
•Expertise in one or more relevant programming languages (e.g. C, C++, Java), operating systems (e.g. Windows, UNIX) and OS concepts.
•Expertise in software engineering process and standard secure development best practices.
•Expertise with more advanced programming environments and concepts (e.g. J2EE, OS internals, network appliances)
•Experienced in software development project estimation, engineering tools, and concepts
Requirements (Education, Certification, Training, Experience)
•BS degree or equivalent in computer science, electrical engineering, or related field is required
•Demonstrated work experience covering core technical security areas.
•Experience mentoring/leading an engineering team through a technical project.
•Strong experience in at least one major OS (e.g. Windows, Linux, Mac)

- Terence Anthony

Apply to this job

[Full-time] Information Security Consultant - VA/PT at Network Security Solutions (I) Ltd

2012-01-05 01:54:54

Location: Pune
URL: http://www.mynetsec.com

Description:

Job Description
————————————————————————-
Candidates applying must be based in Pune currently.

Company: Network Security Solutions
Exp: 1 Year
Location:Pune

Job Description:
Vulnerability Assessment
Penetration Testing

Skills:
Knowledge of Networking / TCPIP
Knowledge of VA/PT Tools
Good Verbal and Written Communication Skills

Please send these details with the resume

Current CTC:
Expected CTC:
Notice Period:

Apply to this job

[Full-time] Information Security Consultant at VISTA InfoSec

2012-01-05 00:58:57

Location: Mumbai
URL: http://www.vistainfosec.com

Description:

Department : Security Management Services
Reports to : Sr. Consultant & Sr. Manager

Summary

Information Security Consultant (L1/2 Consultant) having minimum 2 – 3 yrs of field experience. He should have good communication skills and basic knowledge of Networking (Routers, Switches, Firewalls, Modems, Wirelesss Devices, Bluetoooth, VPN, etc.), Operating Systems (Windows, Linux, Unix), Databases (MSSQL, Oracle, MySQL), Applications (IIS, Apache, Tomcat), SAP, Virtualization Softwares (Vmware, Citrix, Hyper-V) etc.

The skill set should not be limited; Vulnerability Assessment, Penetration Testing, Web Application Assessment, Security Audits, Forensics, Configuration Audits, VPN Audits, Virtualization Audits etc.

Essential duties and Responsibilities

Include the following. Other duties may be assigned.

Primary Responsibilities:

Perform Ethical Hacking Activities involving but not limited to Vulnerability Assessment, Penetration Testing, Web Application Assessment, VPN Audits, Wireless Hacking and Virtualization Security Audits etc.
Scanning, Analysis, Testing, Validation, Report Generation, Report Presentation, Fixing of Loop Holes.
Provide client recommendation on Technology Controls and Processes.
Keeping personal knowledge up-to-date on the Information not limited to security news, articles, technology, exploits tools, techniques, methodologies, baselines, standards etc.
Performing Cyber Forensics related activities involving Evidence Collection, Storage, Methodologies, Analysis, Findings, Reporting, and Support.
Conducting Network & Systems Audits, report preparation and Client interactions/report presentation.
Conducting Configuration Assessments, report preparation and Client interactions/report presentation.
Qualifications : Certified Ethical Hacker, CISA, MCSE, CCNA

Education and/or Experience :

Bachelor’s Degree
Approx. 1 – 1.5 yrs of Experience in conducting VA/PT Ethical Hacking, Network/System Audits, Security Audits.
LANGUAGE SKILLS : English, Hindi, Marathi

WORK ENVIRONMENT

Begin a consultant by virtue; it is need by the person to be out travelling visiting client places. Traveling is an important aspect for this job profile. A consultant shall be spending most of his time at client place rather than working in office. At, office all the back-office kind of things are to be done such as Report Preparation, Discussions, Emails, Timesheets, documentation etc.

Apply to this job

[Full-time] Security Analyst at Sumeru Software Solutions

2012-01-02 03:43:45

Location: Banglore
URL: http://www.sumeru.com

Description:

Hands on experience on web application & network pentest for a minimum of 1.5 to 2 years.

Experience in:
1. Conduct vulnerability assessment & penetration testing
2. Conduct Technical Security Audits (OS, DB, Network devices etc.)
3. Prepare detailed reports for the same
4. Continuous upgrade of skills
5. Research on new technologies

Technical skills:
-Well-versed with OWASP and OSSTMM methodologies
-Hands-on with Backtrack Linux 5/4
-Understanding of Database like SQL-Server, MySQL, Oracle etc.
-Understanding of popular Web Application Technologies (PHP, ASP.net etc.)

Other requirements:
-Good communication skills
-Team-player
-Should be open to overseas projects

Security certifications will be an added advantage (CEH along with RHCE/CCNA).

Apply to this job

[Full-time] Information Security Consultant - VA/PT at Network Security Solutions (I) Ltd

2011-12-29 01:58:06

Location: Pune
URL: http://www.mynetsec.com

Description:

Job Description
————————————————————————-
Candidates applying must be based in Pune currently.

Company: Network Security Solutions
Exp: 1 Year
Location:Pune

Job Description:
Vulnerability Assessment
Penetration Testing

Skills:
Knowledge of Networking / TCPIP
Knowledge of VA/PT Tools
Good Verbal and Written Communication Skills

Please send these details with the resume

Current CTC:
Expected CTC:
Notice Period:

Apply to this job