F

Technical Services Engineer Expert_Cyber Security_VAPT

Fujitsu · Pune Division, Maharashtra, India

5–12 yrs experiencefull_timePosted 4w ago
Apply now →

Job description

Job description: Mandatory Skills: Vulnerability Assessment, Penetration Testing, Incident Response, Cyber Security, Azure, Vapt, OWASP, Forensic, SOC, Cloud Security Exp:7+years Location: Pune - High proficiency in English grammar, vocabulary. - Fluency in speech - Ability to hold a conversation with ease. - Listening skills - Comprehend what is being said, respond appropriately without interrupting the speaker. - Strong sense of personal accountability regarding decision-making and working with department teams. - Good to have any Information security certifications like CompTIA Security+, CEH, CHFI, CPENT, ISO 27001 etc. - Ability to decide & act in ambiguity. - 6–7+ years in Cybersecurity / Information Security - Experience in SOC operations, incident response, and penetration testing - Prior experience in team handling or technical leadership. **Incident Response & Digital Forensics** - Lead end-to-end incident response lifecycle: - Detection - Containment - Eradication - Recovery - Conduct digital forensic investigations (disk, memory, logs) - Perform root cause analysis (RCA) and publish detailed reports - Ensure proper evidence handling and chain of custody **Penetration Testing & Vulnerability Management** - Perform penetration testing (Network, Web, API) - Conduct vulnerability assessments and risk-based prioritization - Validate findings and eliminate false positives - Work closely with IT/dev teams for remediation tracking - Maintain and enhance security testing methodologies **Threat Detection & Engineering** - Analyze logs from SIEM, EDR, Firewalls, and Proxy systems - Improve threat detection use cases and alert tuning - Investigate advanced threats including: - Malware infections - Data exfiltration - Lateral movement - Support proactive threat hunting activities **Cloud Security Assessment & Governance** - Perform cloud security assessments across platforms such as AWS, Azure. - Review and validate cloud configurations: - Identity & Access Management (IAM) - Storage security (S3, Blob, etc.) - Network security (Security Groups, NSG, VPC) **Stakeholder Management & Reporting** - Present security posture, risks, and trends to leadership - Translate technical findings into business impact - Create executive dashboards and reports - Collaborate with cross-functional teams (IT, Dev, Management) **Technical Skills** - **Security Operations** - SIEM, EDR (e.g., Microsoft Defender, FireEye) - Log analysis (Firewall, Proxy, Endpoint) - **Offensive Security** - **Tools** : Burp Suite, Nmap, Metasploit, SQLMap, OWASP ZAP - Strong understanding of OWASP Top 10 **Vulnerability Management** - Tools: Nessus, Qualys - CVE/CVSS analysis and patch validation **Digital Forensics & Malware Analysis** - Tools: FTK, EnCase, Autopsy, Volatility (basic) - Static/Dynamic malware analysis (IDA, Ghidra – good to have)