Amla Commerce is Hiring For Security Consultant, Nagpur

IT Security Specialist

We are seeking an experienced IT Security Specialist to join our team and contribute to the security of our infrastructure and web applications. The ideal candidate will have a strong background in infrastructure security, manual penetration testing, vulnerability assessment, and web application security.

Responsibilities:

• Conduct manual penetration testing of infrastructure systems, networks, and applications to identify security vulnerabilities and potential risks.
• Utilize various penetration testing tools such as Nmap, Nessus, Burp Suite, Owasp Zap, and Metasploit Framework to identify and exploit vulnerabilities.
• Perform vulnerability assessments using both manual approaches and vulnerability assessment and penetration testing (VAPT) tools like Nessus, OpenVAS, and Qualys.
• Collaborate with the development team to enhance the security of web applications by implementing secure coding practices and addressing OWASP Top 10 vulnerabilities.
• Configure and manage web application firewalls (WAF) to protect against common web-based attacks.
• Implement and maintain infrastructure firewalls, ensuring that proper configurations are in place to protect the network and systems from unauthorized access.
• Manage IP access control lists and handle blocking/unblocking requests as per security policies.
• Ensure compliance with SOC (Security Operations Center) standards and participate in audits and assessments.
• Provide end user system security by deploying and managing antivirus solutions, conducting security awareness training, and responding to security incidents.
• Stay up-to-date with the latest security threats, vulnerabilities, and industry best practices to proactively identify potential risks and recommend mitigation strategies.

Requirements:

• Bachelor's degree in Computer Science, Information Technology, or a related field.
• Minimum 3 Years of relevant work experience.
• Relevant certifications such as CEH (Certified Ethical Hacker), OSCP (Offensive Security Certified Professional), CISSP (Certified Information Systems Security Professional), or CompTIA Security+ are preferred.
• Proven experience in infrastructure security, manual penetration testing, vulnerability assessment, and web application security.
• Strong knowledge of penetration testing tools and frameworks, including Burp Suite, Owasp Zap, and Metasploit Framework.
• Familiarity with OWASP Top 10 vulnerabilities and best practices for securing web applications.
• Experience with IDS/IPS tools for monitoring and preventing intrusions.
• Familiarity with wireless/Wi-Fi security protocols, encryption standards, and best practices.
• Knowledge of network and system security protocols, technologies, and best practices.
• Strong problem-solving skills and ability to think strategically about security risks and solutions.
• Excellent communication and interpersonal skills to effectively collaborate with cross-functional teams and stakeholders.
• Join our dynamic team and help ensure the security and integrity of our infrastructure and web applications. Apply now and become a key contributor to our organization's cybersecurity efforts.

Must Have Skills:

• Web application Vulnerability assessment and Penetration testing.
• Infrastructure, network and Servers Vulnerability assessment and Penetration testing.
• Worked on tools like, nmap, Metasploit, Burp Suite, Nessus, etc.
• Knowledge of OWASP Top 10 and SANS Top 25 vulnerabilities.
• Nessus reports analysis to cross verify false positives by doing POC.
• BurpSuite report Analysis to cross verify false positives by doing POC.

Good to Have Skills:

• Experience with IDS/IPS tools for monitoring and preventing intrusions.
• Familiarity with wireless/Wi-Fi security protocols, encryption standards, and best practices.
• Knowledge of network and system security protocols, technologies, and best practices.
• Worked on WAF like Cloudflare, Imperva, etc.
• Implement and maintain infrastructure firewalls, ensuring that proper configurations are in place to protect the network and systems from unauthorized access.
• Relevant certifications such as CEH (Certified Ethical Hacker), OSCP (Offensive Security Certified Professional).

Job Description:

Cloud Infrastructure Administrator

We are seeking a skilled and experienced Cloud Infrastructure Administrator to join our team. As a Cloud Infrastructure Administrator, you will be responsible for managing and maintaining cloud infrastructure, user management, active directory, and access management. Additionally, you should be comfortable working in rotational shifts to ensure continuous system availability. Your expertise in server and laptop hardware troubleshooting, Windows Server OS, Windows OS, SQL Server installation, networking basics (IP address, DNS, FTP, SFTP), website hosting (IIS server), Windows Server roles and feature addition, SSL configuration, Linux OS, Azure storage, virtual machines, cost management, user management, managed services, web application and server architecture, firewall management, DNS, DHCP configuration, and understanding of cloud and on-premise infrastructure will be crucial for success in this role. Additionally, you will be required to handle US clients effectively.

Responsibilities:

• Manage and maintain cloud infrastructure, ensuring high availability and optimal performance.
• Handle user management, active directory, and access management, ensuring proper permissions and security protocols.
• Work comfortably with rotational shifts to provide support around the clock.
• Troubleshoot and resolve server and laptop hardware issues promptly and efficiently.
• Demonstrate a strong knowledge of Windows Server OS and Windows OS, including installation, configuration, and maintenance.
• Install and configure SQL Server to support database operations.
• Possess a good understanding of networking basics, including IP addressing, DNS, FTP, and SFTP.
• Utilize your expertise in website hosting using IIS server.
• Add and configure Windows Server roles and features to meet application and system requirements.
• Have a basic understanding of SSL configuration and setup for secure communication.
• Possess hands-on experience with Linux OS for cross-platform requirements.
• Manage Azure storage, virtual machines, and cost management to optimize resources.
• Handle user management and familiarity with Azure managed services.
• Demonstrate a good understanding of web application and server architecture.
• Be familiar with firewall management for enhanced security.
• Configure and maintain DNS and DHCP services.
• Understand and manage both cloud and on-premise infrastructure effectively.
• Provide excellent support to US clients, ensuring their needs are met and issues are resolved promptly.

Qualifications:

• Bachelor's degree in Computer Science, Information Technology, or a related field (or equivalent work experience).
• Solid understanding of cloud infrastructure, user management, active directory, and access management.
• Strong knowledge of server and laptop hardware troubleshooting.
• Expertise in Windows Server OS and Windows OS installation, configuration, and maintenance.
• Proficiency in SQL Server installation and configuration.
• Good understanding of networking basics, including IP addressing, DNS, FTP, and SFTP.
• Experience with website hosting using IIS server.
• Knowledge of Windows Server roles and feature addition.
• Basic understanding of SSL configuration and setup.
• Hands-on experience with Linux OS.
• Proficiency in Azure storage, virtual machines, cost management, and user management.
• Familiarity with managed services on Azure.
• Experience with web application and server architecture.
• Familiarity with firewall management for enhanced security.
• Knowledge of DNS and DHCP configuration.
• Understanding of both cloud and on-premise infrastructure.
• Excellent communication skills, particularly when dealing with US clients.

Preferred Certification: AZ-900 Microsoft Azure Fundamentals, AZ-104 Microsoft Azure Administrator, AZ-305 Microsoft Certified: Azure Solutions Architect Expert.

Join our team as a Cloud Infrastructure Administrator and be part of a dynamic and innovative environment where your expertise and skills will contribute to the success of our cloud infrastructure and ensure exceptional support for our US clients.

Share resumes on kratika.khangar@amla.io