Job Description

JOB DESCRIPTION
Title: IT Security System Administrator III
Location: IndiaThe role of IT Security System Administrator is to assess and uncover vulnerabilities of the systems and determines that the data and resources of the system are protected from possible attack. Also, Security Administrator must ensure that the software systems and applications are free from any threats or risks that can cause a loss to the data or reputation of Mouser Electronics.ACCOUNTABILITIES & ESSENTIAL FUNCTIONS

• Ability to perform VAPT on IT Applications using various open source and commercial tools like Burp suite/ZAP/CSRF Tester etc.
• Provide assessment reports that are easily understandable by the target audiences.
• Analyze scan reports and suggest remediation / mitigation plan
• Provide advanced technical analysis on intrusions
• Keep track of latest vulnerabilities
• Require deep understanding of IT Application security protocols and its implementation
• Maintain good verbal communication skills; communicate effectively with technical and non-technical colleagues at all levels in the organization
• Attend internal and external training as necessary to keep up to date with the latest technology.
• A flexible approach to working on a rotational basis and provide necessary cover where needed
• Work within the relevant legislation, policies, and procedures
• Ability to perform complex troubleshooting of security vulnerabilities

SKILLS & CERTIFICATIONS

• OSCP, ECSA, LPT Master, GPEN or any other industry accredited security certifications
• Exposure to OWASP top 10 Knowledge on SDLC and Application Architecture
• Knowledge on Network Security
• Knowledge of scripting languages (Java, dot net, python etc.)
• Broad background of networks, operating systems (windows, UNIX, Linux), firewalls and security engineering concepts.
• Analytical thinker willing to think outside the box to resolve customer impacting situations on first contact; understand customer risk profile.
• Lead security and risk related projects from initiation through implementation to support clients security needs
• Penetration testing planning, analyzing, remediation recommendations, and dashboarding
• Vulnerability remediation tracking and reporting
• Expertise with web application vulnerability scanners (Acunetix /HP Web Inspect/IBM AppScan etc. and with source code analysis tools (Fortify/Checkmarx/Vera code/Klocworks)
• Provide remediation guidance to identified vulnerabilities.
• Monthly dashboard and periodic reports
• Implementing the DR testing and publishing the remediation and action plan
• Managing the Statutory and Internal Auditors on Application Security
• Report to chief Security office and managing the Risk review meeting
• Assess applicable policy, standards, and controls, indirectly manage security technologies, and direct the establishment and implementation of policies and procedures
• Collaborate and build relationships with firm's Architecture, Business Systems, Operations, Legal and Risk teams
• Collaborate and build relationships with IT Security and Audit colleagues to help define and ensure consistency of security protocols and risk management
• Monitor information security trends and keep technology leadership informed about information security -related issues and activities potentially affecting the organization
• Ensure appropriate business continuity process is followed for infrastructure and applications in accordance with business need, guidelines, policies, and procedures.
• Expertise with Identity and Access Management on the Application

Requirements

• Bachelor of Science in Computer Science or a related field.
• 4+ years in Information Security (VAPT) experience required. For internal candidates, experience can be a combination of internal and external experience.
• General knowledge of OS-level scripting languages (bash, ksh, PowerShell, Python, etc.) a plus
• General knowledge of Active Directory (AD), Intrusion Detection and Cloud Technology (Azure)

Category: IT/ISThis is a summary of the primary accountabilities and requirements for this position. The company reserves the right to modify or amend accountabilities and requirements at anytime at its sole discretion based on business needs. Any part of this job description is subject to possible modification to reasonably accommodate individuals with disabilities.

Mouser Electronics