Job Description

Dear Candidate,
We have a job opening for one of our client for below mentioned position.

Role : ERS - Application Security
Experience : 3 to 8 Yrs
Location : Mumbai, Maharashtra

Job Title : ERS - Application Security - Consultant / Assistant Manager / Deputy Manager

Description :
Deloitte holds itself to the highest standards of independence, professional objectivity, and technical excellence. Our approach is to understand a client's business, the risks it faces, and its internal controls. Our professionals bring a comprehensive methodology that leverages the firm's extensive professional and technical resources to our clients' financial reporting process, helping them meet the growing demand for enhanced disclosure and accountability.

We offer a broad continuum of services that identify, develop and test internal controls and policies. We help ensure reliable, verifiable and consistently retrievable data across an organization. Our internal control reviews are created and implemented to address management objectives ranging from business process to application and technology infrastructure controls.

Job Purpose :
Lead client engagements in Infrastructure security technology solution implementation, Penetration Testing, and Vulnerability Assessment on client’s IT infrastructure.
Play subject matter specialist role in presenting risk and mitigation controls to the client based on the assessments (Identify potential vulnerabilities based on misconfiguration, policy, or design flaws on the client’s IT infrastructure.)
Project management and quality management of client engagements.

Roles and Responsibilities
Experience in information security and application security controls.
Should have played a lead role in client engagements (global exposure) and should be delivery focused with team management ability.
Exposure to methodologies, such as OWASP preferred.
Exposure to BFSI domain.
Information Security Audit.
Penetration Testing - Network, Host, Applications (Ethical Hacking).
Vulnerability Assessments - Network, Host, Applications.
Security in SDLC (Application Security).
Secure code review - .NET and J2EE technologies.
Enterprise IDS Implementation and Testing.
Operating System and Application Hardening.
Incident Response Training.
Information Security Education.
System security and controls, including.
Firewall design and implementation (NOT Administration).
Encryption technology design and Implementation
Network configuration and administration.
Security auditing techniques.

Person Specification Education
BE or MCA or MBA ( Computers & IT)

Preferred Technical Experience :
Network Infrastructure security, firewall and router configuration, switches, secure network architecture, VPNs, PKI, PMI, Portals, Cisco, PERL, python, C++, XML, HTML.
Technologies like IPSEC, SSL, SSH, VPN, Ethernet Token Ring, WAP, SMTP, FTP, Frame Relay, WAN, ATM, FDDI, DSL, ISDN, HP Openview, Sun Net Manage, Cisco Works, Radius, Big Brother, F5.
Strong experience in designing and deploying Security Incident and Event Management (SIEM) solutions (Archsight)
Experience with content filters, Encryption solutions (RSA).Project plan (MPP).
Vulnerability Management tools: Nessus, NMAP, ISS, AppScan, AppDetective, Qualys Guard.
Strong technical skills and project management skills in handling multiple Vulnerability Management projects.
Should have led subject matter specialist role in Enterprise Security architecture solutions

Certification Desirable: Certifications in Network Infrastructure and/or White Hacker.

Skills & Abilities
Good written and oral communication skills
Team Management skills
Organising Skills (Reporting, timeline management, etc.)
Project Management skills
Should be open to travel.

Department : IT
Industry : Software
Skills : .net, j2ee

Recruiter details
Company name : Deloitte
Company discription : Deloitte Touche Tohmatsu India LLP is one of the DTTL member firms in India, which operates through offices in Ahmedabad, Bengaluru, Chennai, Hyderabad, Kolkata, Mumbai, New Delhi/Gurgaon and Pune.