Information Security Lead Engineer/analyst Job in Cogneesol

• Experience: 3+ yrs
• Location: Mohali

Technical and Soft Skill sets required:

- Understanding of various security certifications and compliances including ISO27001, HIPAA, HITECH,GDPR, SOCII etc

- Develop and carry out information security plans and policies

- Develop strategies to respond to and recover from a security breach

- Develop or implement open-source/third-party tools to assist in detection, prevention and analysis of security threats

- Implement various data protections across the organisation

- Installation and use of firewalls (Sophos/Fortinet/Checkpoint etc), data encryption and other security products and procedures

- Conduct periodic network scans to find any vulnerability

- Conduct penetration testing, simulating an attack on the system to find exploitable weaknesses

- Monitor networks and systems for security breaches, using software that detects intrusions and anomalous system behavior

- Investigate security breaches

- Lead incident response, including steps to minimize the impact and then conducting a technical and forensic investigation into how the breach happened and the extent of the damage

- Expertise in anti-virus software, intrusion detection, firewalls and content filtering

- Knowledge of risk management/assessment tools, technologies and methods

- Expertise in designing secure networks, systems and application architectures

- Disaster recovery, computer forensic tools, technologies and methods

- Planning, researching and developing security policies, standards and procedures

- System administration, supporting multiple platforms and applications

- Expertise with mobile code, malicious code, and anti-virus software

- The IT security engineer should also have experience with and knowledge of

- Endpoint security solutions, including file integrity monitoring and data loss prevention

- AWS and other cloud platforms knowledge would be a great plus

- Automating security testing tools

- Knowledge of Chef/Puppet/Ansible configuration management tools

- Stay current on IT security trends and news

- Doing awareness training of the workforce on information security standards, policies, and best practices

Qualification requirements:

Bachelors or higher degree in Computer Science or related technical discipline or its equivalent 2+ Years of experience working with in Information Security domain Any relevant security certifications like CISSP,CISA,CEH,CISM etc