Security Analyst

Location: Mumbai
Specialization: IT- Hardware / Telecom / Technical Staff
Sub Specialization:
Reference: 30058

Responsibilities - o Performs information Security Risk Management o Conducts internal audit & IT security trainings. o Designs, implements and maintains policies, procedures and process related to InfoSec. o Leads Vulnerability Assessment/Penetration Testing for internal and customers facing Systems. o Documents and performs annual BCP and DR activities. o Analyze, troubleshoot, and investigate security-related, information systems’ anomalies based on security platform reporting, network traffic, log files, host-based and automated security alerts o Responds to Info Sec related Due Diligence requests from prospects. o Participates in Due Diligence from customers/prospects o Strong ethics and understanding of ethics in business and information security o Understanding and familiarity with common code review methods and standards o Experience with code scanning tools o Knowledge of OWASP tools and methodologies o Understanding of HTTP and web programming o Knowledge of common security requirements within ASP.NET application o Knowledge of standard SDLC practices Requirements

 Experience in conducting Risk Assessment  Experience in development of Information Security Policies and Procedures  Experience in conducting Internal audits  Excellent communication & documentation, interpersonal skills  Good command over written and spoken English.  Desirable Certifications - ISO 27001:2005 or ISO 27001:2013 Lead Auditor/Lead Implementer.  Ability to exercise judgment within procedures and practices to determine appropriate action.  Sense of urgency and ability to manage and prioritize multiple work requirements to meet deadlines.  Must be self-managed, responsive, and dedicated to customer support.  Ability to work independently and in a team environment.  Proficient English language written and oral communication skills