Information Security Analyst Job Vacancy in NetCracker Pune, Maharashtra – Updated today

Are you looking for a New Job or Looking for better opportunities?
We got a New Job Opening for

Full Details :
Company Name : NetCracker
Location : Pune, Maharashtra
Position :

Job Description : We are looking for security analysts to join our international Application security team and take leading roles in building of mature and protected solutions for leading telecommunication providers. The primary focus will be at security design and verification of Netcracker solutions in alignment with customer requirements, Netcracker best practices and industry security standards. Working with Netcracker solutions that process personal and other sensitive data in various functional domains like customer self-service portals, CRM, Service Fulfillment, telecom billing and Cloud solutions. A successful candidate will be involved into activities ranging from security design reviews and threat modelling to security hardening and security acceptance.
Responsibilities
Analysis and documentation of security requirements for Netcracker software solutionsPerforming security requirements, threat and vulnerability assessment of Netcracker solutionsReview of business scenarios against security risks and security requirementsParticipate in design and engineering of security related controls within Netcracker solutionsReview of quality and coverage of implemented security controls within the solutionDesign of access control within the solutionPreparation of security acceptance program, including: collection of information about the solution, defining of the security test cases, prioritization of SAST, DAST and manual pen test checksAnalysis of penetration testing and vulnerability assessment reports and prioritization of security vulnerabilities in the solution and 3rd party components accordingly to CVSS v3 and risk assessment methodologies.Preparation of customer-facing security acceptance reportDevelopment of security procedures and instructionsAnalysis of solution’ data model, classification of data processed by solution accordingly to customer’ requirements and international standardsDevelopment of data anonymization designAdaptation and development of product and 3rd party components security hardening guidelines based on CIS benchmarks and vendor recommendationsSecurity documentation development and supportParticipate in improvements of product and project security methodology
Sharing of security knowledge across the organization
Requirements
6+ years of experience in application security3+ years in the role of security or system analyst
Background of Security/ penetration testing preferred
Must have experience in PCI-DSS compliance and auditing
Strong analytical backgroundExcellent verbal and written communication. Strong analytical skills and ability to dive into technicalHigher education in the area of IT, Engineering, Security or MathematicsGreat understanding of essential security concepts including: threat, vulnerability, risk, segregation of duties, need to know principle, CIA, access control policy, cryptography concepts and practical implementationsDetailed understanding of OAauth 2.0 protocol, OpenID standard and SAML standardPractical experience with following specifications and protocols: REST API, SOAP, JSON, XMLUnderstanding and practical experience of RBAC and ABAC access control modelsDeep knowledge of OWASP top-10 vulnerabilities and attacksGood understanding of Linux and Docker security concepts and mechanismsGood understanding of X.509 standardPractical experience in threat modellingKnowledge of security industry standards and laws including: GDPR, PCI-DSS, NIST 800, ISO 27000Practical security engineers, IT, software development or quality assurance experience is a great advantage

This post is listed Under  Technology
Disclaimer : Hugeshout works to publish latest job info only and is no where responsible for any errors. Users must Research on their own before joining any company