AI.HYR
Location
Hyderabad | India
Job description
We are #hiring a Cyber Security Analyst for our #client BluSapphire
Responsibilities As a Cyber Security Analyst, you will be responsible for conducting in-depth analysis, research, and experimentation to identify vulnerabilities, develop exploits, and enhance defensive strategies. Leveraging your extensive experience and expertise in penetration testing, vulnerability assessment, malware analysis, and incident response, you will lead efforts to proactively identify, analyze, and mitigate security risks. Your responsibilities will include conducting in-depth security assessments, developing, and enhancing security frameworks, and collaborating with cross-functional teams to implement effective security measures. You will play a crucial role in fortifying our organization's security posture and ensuring the integrity of our systems and data. 1. Vulnerability Assessment and Penetration Testing: - Conduct comprehensive vulnerability assessments and penetration tests on the Internet and Intranet-connected systems, web applications, corporate networks, and applications. - Identify security weaknesses, misconfigurations, and potential attack vectors. - Develop and execute exploit techniques to validate vulnerabilities and assess the impact of potential attacks. - Generate comprehensive reports detailing security vulnerabilities and recommendations for remediation. 2. Security Research and Analysis: - Stay abreast of the latest security trends, threats, and attack techniques. - Conduct in-depth research and analysis of emerging vulnerabilities and exploitation methods. - Conduct advanced malware analysis and reverse engineering to identify malicious code and behavior. - Collaborate with cross-functional teams to assess potential risks and develop effective mitigation strategies. - Hunt for potential malicious activity across the network and collaborate with threat intelligence analysts to provide indications and warnings. 3. Incident Response and Forensics: - Lead incident response efforts by triaging security events, conducting detailed forensic analysis, and recommending appropriate actions. - Develop and maintain standard operating procedures for the Security Operations Centre (SOC), ensuring effective incident handling. - Interface with the incident response and investigations teams to support technical analysis of cyber security incidents. 4. Security Assessment and Compliance: - Conduct infrastructure and application penetration tests, physical security reviews, and social engineering tests for global clients. - Evaluate security controls and assess compliance with industry standards (e.g., OWASP Top 10, SANS 25) throughout the software development lifecycle. - Head Proof-of-Concepts for security implementations and provide expertise on security configurations and deployments. 5. Technical Expertise and Collaboration: - Provide technical leadership and mentorship to junior team members, sharing knowledge and best practices. - Collaborate with cross-functional teams to enhance security posture, mitigate risks, and address security requirements. - Interface with multiple departments and stakeholders, leveraging strong communication and customer service skills. Qualifications - Bachelor's degree in Computer Science, Information Security, or related field (or equivalent experience). - Certifications such as OSCP, OCSE, or equivalent are highly desirable. - Demonstrated experience in vulnerability assessment, penetration testing, and exploit development. - 3-5 years of hands-on experience in cyber security operations, including penetration testing, incident response, and malware analysis. - Proficiency in using various security tools and frameworks (e.g., Metasploit, Burp Suite, Nmap, Wireshark). - Strong understanding of network protocols, operating systems, and application security principles. - Excellent problem-solving skills and ability to think creatively to anticipate and mitigate security risks. - Effective communication skills with the ability to convey complex technical concepts to non-technical stakeholders.Job tags
Salary
