RiskBerg Consulting
Website:
riskberg.com
Job details:
Company Description
RiskBerg is set-up to help organizations identify and manage Bergs of Risk that may not be evidently visible to business in their transformation journey. The advanced technologies like Robotics Process Automation (RPA), Blockchain, Artificial Intelligence (AI), Internet of Things (IoT) and Cloud Computing need specially crafted lens to converge all associated risk vectors. We, at RiskBerg, help organizations to de-risk their entire business transformation journey.
Our Digital Risk Management Framework helps customers to dramatically accelerate their growth by adopting de-risked, sustainable, robust and high-value generating Digital Transformation journey.
We also enable global organizations to automate their risk management, compliance services, audit and assurance programs using right set of digital assets (e.g. RPA, Blockchain etc.). This helps business groups to focus more on their core solution.
In addition to providing advisory and consulting in digital risk domain, we support organizations with advanced set of risk & controls framework to cater holistic need of Enterprise Risk Management (ERM). This includes, but is not limited to, Business, Financial, Operational, Regulatory, Cyber and Technology Risk.
RiskBerg support global customers in India, North America, Canada and United Kingdom.
Role Description
This is a full-time on-site role for a Cyber Security Consultant at RiskBerg Consulting located in Gurugram. The Cyber Security Consultant will be responsible for tasks such as cybersecurity analysis, application security assessment, network security management, information security implementation, and vulnerability assessment. Here is the detailed description for the role:
- Conduct web application and API security assessments, OWASP implementation and penetration tests assessments
- Mobile App penetration security testing
- Infrastructure and network vulnerability assessment and penetration testing
- Perform security reviews, design top tier security practices, and deliver strategic, innovative cloud based security offerings.
- Propose, design, plan and execute strategic and tactical operational security objectives
- Expertise in using tools like Appscan, checkmarx, Burpsuite, Kali, Nessus, Fiddler, Paros, Sqlmap, OWASP etc. for security testing
- Assess applications for issues surrounding Authentication, Authorization, User management, Session management, Data validation
- Handle end to end security aspects and verification of thick/thin client and mobile based applications
- Should be able to Assess applications for issues surrounding Authentication, Authorization, User management, Session management, Data validation, including all common attacks such as SQL injection, Cross-site scripting, Command injection, Error handling, Auditing and logging.
- Working Knowledge on Computer Network Defence, Cryptography, Identity Management, Information
- Ability to explain basic networking concepts (routing, ACL, load balancers, SSL/TLS, TCP) in order to provide application architecture feedback
Qualifications
- 3 to 6 years of relevant experience in Cybersecurity
- Cybersecurity and Information Security skills
- Application Security expertise
- Network Security knowledge
- Experience in Vulnerability Assessment & Penetration Testing
- Strong analytical and problem-solving skills
- Certifications such as CISSP, OSCP, CRTP or CEH are a plus
- Excellent communication and teamwork abilities
- Bachelor's or Master's degree in Computer Science, Information Technology, or related field
Click on Apply to know more.