Engineer – IT Security
Professional Services Bangalore, India Bombay, India
Apply
Description
Position at Zones
As a rapidly growing global provider of IT solutions, we’ve expanded from Seattle to Sydney, Dallas to New Delhi and beyond – with reach in over 80 countries around the world. Today’s top brands count on Zones and our world-class partners – Microsoft, Apple, Cisco, Dell, Lenovo, and more – to transform their enterprises. Headquartered in New Delhi and backed by the Zones Global Team, Zones India offers customized IT solutions and professional services to multinational organizations conducting business in the country.
Job description:
Plan, complete, report and manage, programme, follow-up and ad-hoc internal audits for all areas of the business, making recommendations and suggestions to staff, process owners and the board of directors wherever applicable. Create,define and improvise processes and procedures as per industry standard, audit, security and compliance requirements.
Essential Functions:
Network activity/security events (firewalls, IDS/IPS, netflow, vulnerability scanners)
Threat intelligence (internal and external feeds)
Endpoint activity (ETDR, DNS, DHCP, AV, OS logs),
Finally authorization (LDAP, Active directory, VPN, SSO)
Will represent IT for all audits both internal and external audits, ISO, SOC, ISPS etc.,
Supports the execution of internal security compliance activities such as, user access reviews and security activity reviews
Monitors and reports status of security tasks and open remediation items
Supports development of IT security related policies and standards
Responsible for documenting, implementing, and assessing policies, standards, processes, and procedures
Monitors compliance of policies and standards.
Document and maintain incident response plans
Document and maintain Disaster Recovery and Business Continuity plans
Document and maintain Change Management policies, standards, and procedures and monitor system/infrastructure management to ensure compliance
Knowledge of IT and information security best practices
Experience in risk assessment, audit, and IT security assessments
Experience administering information security programs including risk assessments, forensic research, gathering metrics, and reporting status
Sound knowledge on SOC Operations & ISO 27001 IT controls.
Plan and complete ad-hoc audits as required (Vendor Audits)
Understanding Audit criteria and scope ● Updating and record the standard specific clauses and controls covered, post audit
Monitor progress on corrective actions to ensure they are concluded without undue delay
Identify and promote examples of good practice within the business
Assist in the preparation of new documented information as well as updates to current ones
GENERAL EXPERIENCE:
Familiarity with security controls relating to antivirus/antimalware, firewalls, network access control systems, or other similar products/technologies
Continuously monitoring and improving the internal audit process
Lead the preparation of IT Security and Compliance audits.
Able to handle moderate problem resolution with general supervision
Advise team/manager on compliance-related matters
Recommend and coordinate the implementation of technical controls to support and enforce defined security policies.
Handling phishing incidents by utilizing tools and working with end-users who open phishing tickets
Monitors and reports status of security tasks and open remediation items
Supports development of security related policies and standards
Assists in ensuring business units comply with information security standards and applicable regulations
Good communication and convincing skills
Zones offers a comprehensive Benefits package While we’re committed to providing top-tier solutions, we’re just as committed to supporting our own team. Our employees enjoy a variety of comprehensive benefits, including medical/dental/vision coverage, life insurance, a 401(k) plan with matching provision, paid time off, and much more. And as a Minority Business Enterprise, a Corporate Plus member of the Northwest Minority Supplier Development Council, and an Equal Employment Opportunity Employer, our community is just as diverse. At Zones, work is more than a job – it’s an exciting career immersed in an inventive, collaborative culture. If you’re interested in working on the cutting edge of IT innovation, sales, engineering, operations, administration, and more, Zones is the place for you!