Team Lead Cybersecurity

Job Description

Cyient is a global engineering and technology solutions company. As a Design, Build, and Maintain partner for leading organizations worldwide, we take solution ownership across the value chain to help clients focus on their core, innovate, and stay ahead of the curve. We leverage digital technologies, advanced analytics capabilities, and our domain knowledge and technical expertise, to solve complex business problems.With over 15,000 employees globally, we partner with clients to operate as part of their extended team in ways that best suit their organization s culture and requirements. Our industry focus includes aerospace and defence, healthcare, telecommunications, rail transportation, semiconductor, geospatial, industrial, and energy.Job DescriptionAbout the Role:The Cybersecurity Lead is a member of the Cybersecurity team and works with the other members of the team to develop and implement a comprehensive security program for the global Organization. Engage and work with IT and Business and work on a broad range of Cybersecurity technologies and Risk Management to ensure Cybersecurity risks are minimized.You Will:

• Have a working knowledge of industry-standard risk, governance and security standard methodologies.
• In-depth understanding of security threats (preferably OWASP Top 10/SANS top 25 vulnerabilities), threat attack methods and the current threat environment.
• Understanding of common attacks (e.g. brute force, SYN flood, session hijack, smurf ) and their SIEM signatures.
• Understanding of network protocols (TCP/IP stack, SSL/TLS, IPSEC, SMTP/IMAP, FTP, HTTP/HTTPS )
• Web Application Security Assessment in-depth knowledge of web application attacks and defence strategies (SQL injection, XSS cross-site scripting, CSRF, logic flaws)
• Understanding of application security guidelines requirements from OWASP, PCI DSS o Demonstrated experience with common reach testing and vulnerability assessment tools (open source and commercial) such as nmap, Wire-shark, Kali Linux OS, Meta sploit, Burp Suite, Open VAS, OWSAP ZAP, QualysGuard, Rapid7, Tenable, o Knowledge of working models of Firewalls, Security appliances like email gateways, Antivirus Software, EDR, Network behavior security tools.
• Review reports to ensure quality and accuracy. o Knowledge of related industry regulations, SW engineering process and its typical life cycle.
• Review asset discovery and vulnerability assessment data.
• You and us conduct reach tests on production systems to validate resiliency and identify areas of weakness to fix.
• You and us build senior management dashboards to provide a clear understanding of team activities and threat landscape.
• Active Cyber Threat Hunting and provide recommendations to improve cyber security based on threat hunting discoveries.
• You and us oversee vulnerability scanning and testing and make tool/solution recommendations to the security team.
• Guide and perform security activities including reach testing and vulnerability analysis and assessments, code review, static and dynamic testing, and ethical hacking. o Implementing code review processes and tooling and being a trusted advisory to the Engineering teams on secure coding practices.
• You and us will work with Vendors who provide Managed Security Services(MSS). o Incident management and remediation methods.

Youll Need:

• Experience of Cyber Security (Data Loss Protection, Vulnerability Management, Threat Intelligence, Access Management, and Consulting)
• Experience in Internal External Reach Testing on Network Infrastructure (including Servers, firewalls, routers, and switches) including conducting a wireless security assessment.
• Experience in different types of reach testing - Black box, Grey box, and White box. Additional skills Linux / Windows, programming/scripting skills (Power Shell or Python)
• Experience diagnosing and preventing cyber-attacks. and accomplish multiple project deadlines and milestones.
• Desirable industry security certifications such as SANS GCIH, Security, CEH, CCSP, CISM, CISA, GSEC, GCIH, ECSA,LPT,CHFI, and OSCP.
• You will need 8 years of experience.
• Qualification: B.Tech

Skills & ExperienceCybersecurity, Ethical Hacking, Forensics, Penetration Testing, Vulnerability AssessmentsCyient is an Equal Opportunity Employer.Cyient recruits, employs, trains, compensates, and promotes regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender, gender identity or expression, veteran status, and other protected status as required by applicable law. We are proud to be a diverse and inclusive company where our people can focus their whole self on solving problems that matter.,

Keyskills :
cyber securityweb applicationrisk managementsecure codingburp suitecode reviewassessment toolspci dssethical hackingsenior managementblack boxkali linuxaccess managementdynamic testing