IT Security/Compliance Analyst - VAPT Tool

4 - 6 years

0 Lacs

Posted:5 days ago| Platform: Linkedin logo

Apply

Work Mode

On-site

Job Type

Full Time

Job Description

Job Title :

SOC Information Security.

Location :

Noida.

Experience :

4-6 Years.

Job Type :

Full-Time.

Job Overview

We are seeking a detail-oriented and technically proficient IT Security & Compliance Analyst with strong experience in Vulnerability Assessment & Penetration Testing (VAPT), security audits, and IT controls.The ideal candidate will be responsible for evaluating IT systems, identifying gaps in compliance, performing security assessments, and ensuring alignment with regulatory and organizational security frameworks such as ISO 27001 and SEBI guidelines.

Key Responsibilities

Evaluate the adequacy and effectiveness of IT controls related to :
  • Compliance & regulatory requirements.
  • Change management processes.
  • Information security policies.
  • System backup and recovery.
  • Business continuity and disaster recovery (BCP/DR).
  • Monitor and assess control deficiencies, and provide recommendations to improve existing policies, documentation, and review processes.
  • Work closely with external auditors to ensure alignment on in-scope systems and controls, and coordinate testing activities as required.
  • Execute and manage multiple tasks efficiently, adhering to project timelines and allocated budgets.
  • Conduct regular security audits and compliance assessments using frameworks such as : ISO 27001 :2013, SEBI cybersecurity guidelines, OWASP Top 10, WASC TCv2, SANS Top 25, CWE 25.
  • Perform manual security assessments using tools like : Burp Suite, Qualys, Netsparker, Nessus, NTO Spider or other industry-standard VAPT tools.
  • Provide insights on security system optimization and tuning based on alerts and real-time observations.
  • Strong involvement in security incident response, malware handling, and vulnerability management.
  • Work with SIEM tools for log correlation and threat detection.

Required Skills & Experience

  • Hands-on experience in VAPT (focus on manual testing).
  • Deep understanding of information security principles.
  • Knowledge of data loss prevention (DLP), encryption, patch management, PGP, and anti-virus systems.
  • Proficiency in SIEM platforms and correlating security logs.
  • Strong documentation and communication skills.
  • Familiarity with security audit lifecycle and reporting.

Preferred Certifications (Optional)

  • CEH, CISA, ISO 27001 Lead Auditor, or related certifications.
(ref:hirist.tech)

Mock Interview

Practice Video Interview with JobPe AI

Start Job-Specific Interview
cta

Start Your Job Search Today

Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.

Job Application AI Bot

Job Application AI Bot

Apply to 20+ Portals in one click

Download Now

Download the Mobile App

Instantly access job listings, apply easily, and track applications.

coding practice

Enhance Your Skills

Practice coding challenges to boost your skills

Start Practicing Now

RecommendedJobs for You