Job Description
Responsibilities
- Act as Uzio SPOC for audits like SOC1/SOC2 or ISO 27001
- Ensure mandatory compliance with SOC1/SOC2 Type II Audit
- Design/Document/Implement various Information Security Policies as and when required.
- Application Security scans for various products under Uzio
- Perform Vulnerability Assessment/Management for various products under Uzio
- Perform Penetration Testing for various products under Uzio
- Perform Risk Assessment for Technical/Non-Technical Infrastructure resources
- Perform periodic Internal Audits to ensure compliance with SOC1/SOC2
- Perform Vulnerability Assessment scans and remediate the same
- Perform Disaster Recovery drills for Technical/Non-Technical Infrastructure resources
- Respond to Questionnaires sent by client w.r.t InfoSec
- Data Classification w.r.t various standards for Privacy and Confidentiality
- Review Security Information and Event Management (SIEM) setup for SOC1/SOC2 Compliance
Skills Required
- Knowledge working with cloud computing; preferably AWS
- Experience with analyzing security risk, vulnerability, alerts, exploits
- Good with running vulnerability scans, analysis
- Knowledge of network and server configuration in accordance to policies and standards
- Experience with auditing systems and networks for compliance with company security policies and standards
- Solid knowledge of network protocols such as TCP/IP, HTTP, NTP, SNMP, information security principles and practices
- Good writing and communication skills
- Thread Detection, Risk Assessment, Vulnerability Assessment, Application Security, Penetration Testing
- Security Frameworks such as NIST, COBIT, FISMA
- Security Controls such as PCI, HIPAA, FIPS
- Disaster Recovery & Business Continuity Plan
- Data Loss Prevention & Data Privacy
Perks and Benefits
Medical Coverage, Work From Home, Flexible Working Hours , Open Culture
Role - Other
Industry Type - IT-Software, Software Services
Functional Area - Other
Employment Type - Full Time, Permanent
Role Category - Other
Education
UG :Graduation Not Required, Any Graduate in Any Specialization
PG :Post Graduation Not Required, Any Postgraduate in Any Specialization
Doctorate :Doctorate Not Required, Any Doctorate in Any Specialization