HiringCafe
Posted 3y ago

IT Security System Administrator I 

@ Mouser Electronics
View All Jobs
Bangalore, Karnataka, India
OnsiteFull Time
Responsibilities:perform VAPT, analyzing reports, remediation planning
Requirements Summary:Assess vulnerabilities, perform VAPT, analyze reports, provide remediation plans, and conduct security testing.
Technical Tools Mentioned:Burp Suite, ZAP, CSRF Tester, Nessus, Qualys, Kali Linux, Metasploit, Acunetix, HP Web Inspect, IBM AppScan, Fortify, Checkmarx, VeraCode, Klocwork, OWASP
Save
Mark Applied
Hide Job
Report & Hide
Job Description

JOB DESCRIPTION
Title: IT Security System Administrator I 
Location: Bengaluru- India

The role of IT Security System Administrator is to assess and uncover vulnerabilities of the systems and determines that the data and resources of the system are protected from possible attack. Also, Security Administrator must ensure that the software systems and applications are free from any threats or risks that can cause a loss to the data or reputation of Mouser Electronics.

ACCOUNTABILITIES & ESSENTIAL FUNCTIONS

•    Ability to perform VAPT on IT Applications using various open source and commercial tools like Burp suite/ZAP/CSRF Tester etc.
•    Provide assessment reports that are easily understandable by the target audiences.
•    Analyze scan reports and suggest remediation / mitigation plan
•    Provide advanced technical analysis on intrusions
•    Keep track of latest vulnerabilities
•    Require deep understanding of IT Application security protocols and its implementation
•    Maintain good verbal communication skills; communicate effectively with technical and non-technical colleagues at all levels in the organization 
•    Attend internal and external training as necessary to keep up to date with the latest technology.
•    A flexible approach to working on a rotational basis and provide necessary cover where needed 
•    Work within the relevant legislation, policies, and procedures 
•    Ability to perform complex troubleshooting of security vulnerabilities

SKILLS & CERTIFICATIONS

•    OSCP, ECSA, LPT Master, GPEN or any other industry accredited security certifications 
•    Exposure to OWASP top 10 Knowledge on SDLC and Application Architecture
•    Knowledge on Network Security
•    Knowledge of scripting languages (Java, dot net, python etc.)
•    Broad background of networks, operating systems (windows, UNIX, Linux), firewalls and security engineering concepts.
•    Analytical thinker willing to “think outside the box” to resolve customer impacting situations on first contact; understand customer risk profile.
•    Knowledge of web Application security testing (Black, white, and grey box) testing
•    Experience in web application penetration testing and web services (API) penetration testing, mobile application security testing
•    Web Application Security Assessment - In-depth knowledge of web application attacks and defense strategies (SQL injection, XSS cross-site scripting, CSRF, logic flaws, etc.)
•    Experienced in vulnerability Assessments using Automated Scanners such as Nessus/Qualys and Manual Security Testing Kali Linux / Metasploit and other infrastructure security testing tools
•    Familiarity with web application vulnerability scanners (Acunetix /HP Web Inspect/IBM AppScan etc. and with source code analysis tools (Fortify/Checkmarx/Vera code/Klocworks)
•    Analyze suspicious mails reported by the users and taking necessary actions on Mail monitoring threat detection tools such as Proofpoint
•    Ability to interact with project teams to understand the security requirements and come up with solutions
•    Understanding of OWASP Top 10 and SANS Top 25 and able to map the vulnerabilities identified against the standards
•    Analyze and closure of Security Incidents.
•    Basic development/programming/scripting knowledge

Requirements

•    Bachelor of Science in Computer Science or a related field.
•    Certifications such as CCNP, GIAC or CISSP is an added advantage
•    Must have 1+ years of experience in Information Security (VAPT).  For internal candidates, experience can be a combination of internal and external experience

 

Category: IT/IS

This is a summary of the primary accountabilities and requirements for this position.  The company reserves the right to modify or amend accountabilities and requirements at anytime at its sole discretion based on business needs. Any part of this job description is subject to possible modification to reasonably accommodate individuals with disabilities.