Careers

Execute client facing consulting projects related to ISMS (ISO27001), PCI DSS, IT Audit/ Assurance, SOC 2, GDPR and other compliance requirements

Perform Information Security related assessments to cover domains like User Access management, Network, OS & Application Security, Encryption, Backup Management, Disaster Recovery, Physical Security, Training & Awareness etc

Perform information security audits for vendors/ suppliers

Perform Gap Assessments for PCI DSS, SOC 1 and SOC 2, GDPR, HIPAA, ISO 27001:2022, RBI Audits and deliver GAP reports with recommendations

Perform Internal audits, risk assessment

Create Policy procedures for Information security and relevant compliance requirements for clients

SSAE-18 SOC 2 and SOC 1 report preparation and review

Draft compliance reports to summarize the compliance objectives, key findings, and work with teams to remediate key findings

Assist in Compliance testing as and when required

Bachelor's/Master’s degree in Technology (Cybersecurity), Information Security, Computer Applications, or related field

2-5yrs of experience in compliance assessments, regulatory audits, risk assessments and developing and implementing Information security frameworks and processes

Strong understanding of PCI DSS, ISO standards, GDPR, HIPAA, SOC, and industry-specific compliance requirements

Familiarity with conducting gap analyses and developing remediation plans

Preferred certifications: CISA, CISM, ISO27001 Lead Auditor/Implementor

Excellent communication skills to convey complex regulatory requirements to stakeholders

Strong analytical and problem-solving skills for effective risk mitigation

Conduct comprehensive security assessments of our systems, networks, and applications through both automated scanning tools and manual testing techniques

Identify and exploit vulnerabilities to assess the effectiveness of existing security controls

Produce detailed reports outlining findings, potential risks, and recommended remediation strategies

Perform in-depth security reviews of web and mobile applications to identify security flaws and weaknesses

Collaborate with development teams to integrate security best practices into the software development lifecycle

Design and implement security controls to mitigate identified risks and enhance the security posture of applications

Plan, coordinate, and execute simulated cyber-attacks to evaluate the resilience of our infrastructure and applications

Mimic real-world threat scenarios to identify weaknesses and gaps in existing security defenses

Work closely with blue teams to enhance incident response capabilities and strengthen overall security posture

Conduct thorough source code reviews to identify security vulnerabilities, design flaws, and coding errors

Analyze codebase for common security pitfalls such as injection vulnerabilities, authentication issues, and insecure configurations

Provide actionable recommendations to developers for improving code security and resilience

Develop and implement device hardening guidelines and standards to secure endpoints, servers, and network devices

Configure and deploy security controls such as firewalls, intrusion detection/prevention systems, and endpoint protection solutions

Monitor and update device configurations to adapt to evolving threats and security requirements

Bachelor's degree in Computer Science, Information Security, or related field (Master's degree preferred)

Certified Information Systems Security Professional (CISSP), Offensive Security Certified Professional (OSCP), or equivalent certifications preferred

2-5yrs of experience in conducting VAPT assessments, application security reviews, and Red Team exercises

Strong understanding of common security vulnerabilities and attack vectors, as well as mitigation strategies

Proficiency in source code review techniques and familiarity with secure coding practices

Excellent communication and interpersonal skills, with the ability to effectively communicate technical concepts to non-technical stakeholders

Strong problem-solving skills and the ability to work independently as well as part of a team

Own & achieve Business Development, Account management & sales targets for the assigned Customer accounts / territory

Develop new customer accounts, Own complete sales cycle including techno-commercial prospecting. relationship management, lobbying, BD, bid preparation/ management & contract / PO signing, cross selling and upselling to existing account (Ownership for both Farming and Hunting accounts)

Should have recently connected with CISOs, CIO’s in the industry

Should have effective communication and interpersonal skills, as well as strong market knowledge of Cyber security domain and should be up-to-date with industry trends

Candidate will be a self-starter and highly motivated to take up the challenging task of generating more business in the allocated account(s)

Direct selling experience with Account & Relationship management skills in one or more domain of Cybersecurity and Information Security, Risk Services, Payment Security (PCI DSS), Data Protection

Should have carried out Sales, Consulting and Pre-sales in one or more of the key domains of Enterprise Security like IT Risk Management, Security Operations / Infrastructure Security, Application / Data Security, Security Analytics, managed security services, PCI DSS, GDPR etc.

Bachelor's/Master’s degree in Business Administration, Marketing, Communications, or related field

2-5yrs of experience in inside sales or business development

Strong understanding of sales processes and lead generation techniques

Familiarity with market analyses and sales strategy development

Excellent communication and interpersonal skills

Strong negotiation and persuasion abilities

Ability to work independently and collaboratively in a fast-paced environment

Preferred experience in B2B sales, especially in the tech or cybersecurity sector