Consultant - Cyber Defense - Mumbai, Maharashtra, India
1 day ago
Job description
DescriptionAbout KPMG in India
KPMG entities in India are professional services firm(s). These Indian member firms are affiliated with KPMG International Limited. KPMG was established in India in August 1993. Our professionals leverage the global network of firms, and are conversant with local laws, regulations, markets and competition. KPMG has offices across India in Ahmedabad, Bengaluru, Chandigarh, Chennai, Gurugram, Jaipur, Hyderabad, Jaipur, Kochi, Kolkata, Mumbai, Noida, Pune, Vadodara and Vijayawada.
KPMG entities in India offer services to national and international clients in India across sectors. We strive to provide rapid, performance-based, industry-focused and technology-enabled services, which reflect a shared knowledge of global and local industries and our experience of the Indian business environment.
Preferred Certifications: CEH, ECSA, OSCP, CISSP, CCSK, OCSE, CCSP, AWS Security
· Desired skill set:
Strong understanding of IT security standards and frameworks (OWASP, NIST, CIS)
Strong understanding of security risks in networks and application platforms
Strong understanding of network security, infrastructure security and application security
Strong understanding of OSI, TCP/IP model and network basics
Demonstrate technical penetration testing skills on IT infrastructure, web applications, mobile platforms and Red teaming
Strong technical skills: Information security, network security, Windows security, UNIX/Linux security, web and mobile application security, Cloud platforms
Broad knowledge of security technologies for applications, databases, networks, servers, and desktops
Solid technical skills in both information security architecture and penetration testing and ability to assess testing tools and deploy the right ones.
Scripting and programming experience is beneficial
10. Ability to perform manual penetration testing
11. Experience in Application Security Testing (Web, Mobile & ERP [SAP]), or related functions Vulnerability Assessment, Penetration testing
12. Perform penetration testing of various thick client software, web applications, and communications infrastructure to assist in hardening the cybersecurity posture against malicious actors
13. Conduct security research on the latest emerging advanced persistent threats (APTs), malware, and other security developments to assist in enterprise security efforts. Apply this security research into assessments.
14. Perform technical writing to communicate the preparation, testing, and recommendation phases for various security tests. Work with stakeholders to remediate system vulnerabilities.
15. Train team members and colleagues on the latest cybersecurity tactics, techniques, and procedures (TTPs) to grow the skill of the firm
16. Understanding of various security technologies including end point security, perimeter security, advanced threat protection, malware defense and security management
17. Expertise in the phases of penetration testing. Familiarity with Kali Linux distribution and the associated penetration testing tools suite. Experience in penetration testing simulations like Hack the Box or Capture the Flag exercises considered a plus.
18. Good Understanding of OWASP top 10 and mitigation techniques
19. Experience in performing web application security assessments using hands on techniques for identifying SQL injections, XSS, Security Misconfiguration, CSRF, authentication/ authorization issues
20. Database testing: MySQL, Oracle, NoSQL
21. Understanding of cyber security management, cyber analytics, security intelligence platforms and threat intelligence frameworks
22. Writing business proposals and response to client RFP/ RFIs
23. Identifying business opportunities and lead delivery and program management for large cyber security programs
24. Delivery team and client relationship management
25. Experience on both commercial, open source tools and frameworks but not limited: Burpsuite, Metasploit, Core-Impact, Kali-Linux, AppScan, WebInspect, SSLScan, Soap UI Pro, SonarQube, Qualys, Nikto, Nessus, nmap, sqlmap, OWASP ZAP .
Equal employment opportunity information
KPMG India has a policy of providing equal opportunity for all applicants and employees regardless of their color, caste, religion, age, sex/gender, national origin, citizenship, sexual orientation, gender identity or expression, disability or other legally protected status. KPMG India values diversity and we request you to submit the details below to support us in our endeavor for diversity. Providing the below information is voluntary and refusal to submit such information will not be prejudicial to you.Qualifications
BE/ BTech
Similar jobs
We are seeking a skilled Head of Cyber Defense to lead our cyber defense efforts. The ideal candidate will have strong knowledge of SOC operations, SIEM/SOAR, threat hunting, and incident response. They will also have excellent leadership and stakeholder communication skills. · B ...
3 weeks ago
The Lead Cyber Defense Center will be part of the Information Security Group (ISG), responsible for managing and leading 24x7 Cyber Security Operations (Commercial SOC). This role encompasses oversight of managed IT infrastructure, implementation of security standards and policie ...
3 weeks ago
The Lead Cyber Defense Center will be part of the Information Security Group (ISG), responsible for managing and leading 24x7 Cyber Security Operations (Commercial SOC). This role encompasses oversight of managed IT infrastructure, implementation of security standards and policie ...
3 weeks ago
The CyberDefenseIncident Responder will be part of the Information Security Group (ISG) within the Risk function, based in Mumbai, Chennai, or Bangalore.This role is responsible for investigating, analyzing, and responding to cyber incidents across the enterprise network. · ...
1 week ago
This is a senior position in Cyber Defense at KPMG in India. · ...
2 weeks ago
Technology Consulting-DT Cyber Defense Assistant Manager
Only for registered members
+ Job summary: KPMG is seeking a passionate Cyber OT (Operational Technologies), Industrial Control Systems (ICS) security and/or IoT expert to join a world leading practice focused on protecting mission critical systems and national critical infrastructures. · + Responsibilities ...
1 month ago
The Head of CDCC will lead Jios centralized cyber defense function, · ...
4 weeks ago
This role is responsible for building and operationalizing threat intelligence programs aligned with global and domestic threat landscapes. · ...
3 weeks ago
Job Purpose: · The TM Cyber Defense role will assist in safeguarding the organization s digital landscape. This position is tasked with executing our cybersecurity initiatives and ensuring a proactive defense against threats. As the cornerstone of our IT security operations, the ...
1 day ago
This job involves conducting cyber threat assessments and developing defense strategies as well as collaborating with IT team on digital forensic investigations. · ...
1 month ago
Gain hands-on experience in various aspects of cyber security operations. · ...
1 month ago
Data Collection & Validation: Gather and consolidate operational, incident, and performance data from SOC tools ensuring accuracy and consistency. · Reporting: Prepare daily, weekly, fortnightly, monthly,and quarterly MIS reports as per Bank requirements; · Dashbaord Creation: De ...
1 month ago
· TO GET TIMELY UPDATES ON JOB OPENINGS, FEEL FREE TO JOIN OUR COMMUNITY @ (4L+ MEMBERS FROM 35+ COUNTRIES) · Job Overview: · As a Cyber Security Intern, you will work closely with our cyber security team to gain hands-on experience in various aspects of cyber security operatio ...
15 hours ago
+Job Type - Full Time · Here they need a candidate who is 80 % into Sales and 20 % in Technical. · +Demonstrate broad range of experiences such as: Strong technical abilities combined with business acumen.Strong marketplace presence industry and alliances relationship at CXO Lev ...
1 week ago
The company seeks a Director-Cyber Security with 12-25 years of experience in cyber security domain across business and technical leadership. · ...
2 days ago
CISO will be responsible for developing, implementing, and overseeing Vastus cybersecurity strategy to protect its assets, data, and reputation. · ...
1 month ago
Perform end-to-end cyber audit processes ensuring timely completion and quality deliverables aligned to both department and professional standards. · ...
2 weeks ago
This is a SOC administrator role that involves developing and managing use-cases in the Cybersecurity field. The ideal candidate will have a Bachelor's degree in Computer Science or a related field and relevant certifications such as CISSP or CCSP. · Bachelor's degree in Computer ...
3 weeks ago
We are looking for a motivated SOC Intern to support our Security Operations Center in monitoring, · detecting, and responding to cybersecurity threats.Monitor security alerts · & events using SIEM tools (e.g., Splunk, · & QRadar) · Assist in identifying, · & analyzing security i ...
1 month ago
This role is for an Assistant Manager/Manager position in Corporate IT at Larsen & Toubro Ltd. · ...
1 month ago