Infosys BPM - Senior Associate Consultant - Cyber Security Engineering

Description:

- 3-4 years of hands-on experience in cybersecurity across multiple domains.

- Strong understanding of security principles, risk management, and threat mitigation.

- Experience implementing security baselines and standards (e.g., CIS, NIST, OWASP).

- Familiarity with security tools such as Tenable, Qualys, CrowdStrike, Splunk, Palo Alto, etc.

- Knowledge of identity and access management (IAM), secure authentication, and least privilege principles.

- Exposure to cloud security (AWS, Azure, GCP) and secure configuration practices.

- Strong analytical and problem-solving skills with attention to detail.- Monitor security tools such as SIEM, endpoint protection, vulnerability scanners, and firewalls to ensure continuous visibility across the environment.

- Ensure all systems, devices, and components within the network are consistently compliant with defined security policies, standards, and configurations.

- Implement and maintain security controls across systems, networks, applications, and cloud environments.

- Apply and enforce security standards and hardening guidelines (e.g., CIS Benchmarks, NIST).

- Conduct regular security assessments, audits, and configuration reviews.

- Collaborate with cross-functional teams (IT, DevOps, Cloud, Application) to embed security into design and operations.

- Support incident response activities and perform root cause analysis for security events.

- Maintain and update documentation for security policies, procedures, and configurations.

- Assist in compliance initiatives by aligning security practices with regulatory and industry standards (e.g., ISO 27001, SOC 2, GDPR).

- Continuously evaluate and improve security posture through gap analysis and remediation planning.

- Proficiency in scripting (Python, Bash, PowerShell) for automation and remediation.

- Exposure to Zero Trust architecture and micro segmentation.

- Certifications such as:

- CompTIA Security+

- Certified Information Systems Security Professional (CISSP)

- Certified Ethical Hacker (CEH)

- Certified Cloud Security Professional (CCSP)

- GIAC Security Essentials (GSEC)

Designation: Senior Associate Consultant