Digital Trust Cyber Defense Executive

Description

1. Strong understanding of IT security standards and frameworks (OWASP, NIST, CIS)
2. Strong understanding of security risks in networks and application platforms
3. Strong understanding of network security, infrastructure security and application security
4. Strong understanding of OSI, TCP/IP model and network basics
5. Demonstrate technical penetration testing skills on IT infrastructure, web applications, mobile platforms and Red teaming
6. Strong technical skills: Information security, network security, Windows security, UNIX/Linux security, web and mobile application security, Cloud platforms
7. Broad knowledge of security technologies for applications, databases, networks, servers, and desktops 
8. Solid technical skills in both information security architecture and penetration testing and ability to assess testing tools and deploy the right ones.
9. Scripting and programming experience is beneficial
10. Ability to perform manual penetration testing
11. Experience in Application Security Testing (Web, Mobile & ERP [SAP]), or related functions Vulnerability Assessment, Penetration testing
12. Perform penetration testing of various thick client software, web applications, and communications infrastructure to assist in hardening the cybersecurity posture against malicious actors
13. Conduct security research on the latest emerging advanced persistent threats (APTs), malware, and other security developments to assist in enterprise security efforts. Apply this security research into assessments.
14. Perform technical writing to communicate the preparation, testing, and recommendation phases for various security tests. Work with stakeholders to remediate system vulnerabilities.
15. Train team members and colleagues on the latest cybersecurity tactics, techniques, and procedures (TTPs) to grow the skill of the firm

 

Responsibilities

• Work domains
• Cyber security assessments
• Red Teaming
• Security architecture design
• Infrastructure and application security assessments
• Vulnerability assessment and penetration testing 
• Security reviews of traditional IT and non-IT network environments including Telecom and OT networks
• ICS Security
• IOT Security
• API Security Testing

EOE KI :

KPMG India has a policy of providing equal opportunity for all applicants and employees regardless of their color, caste, religion, age, sex/gender, national origin, citizenship, sexual orientation, gender identity or expression, disability or other legally protected status. KPMG India values diversity and we request you to submit the details below to support us in our endeavor for diversity. Providing the below information is voluntary and refusal to submit such information will not be prejudicial to you.

 

Qualifications

 B.Tech