Unifi Capital - IT Auditor & Infrastructure Specialist (3-15 yrs)

Job Title: IT Auditor & IT Infrastructure Specialist

Job Summary:

We are seeking a skilled IT Auditor & IT Infrastructure Specialist to oversee and evaluate our IT systems, security policies, and infrastructure. This role will be responsible for conducting IT audits, identifying risks, and ensuring compliance with industry standards while also maintaining and optimizing the organization's IT infrastructure.

Key Responsibilities:

IT Audit Responsibilities:

- Conduct IT audits to assess system security, data integrity, and regulatory compliance.

- Identify vulnerabilities and provide recommendations for risk mitigation.

- Collaborate with internal teams to address audit findings and improve security posture.

- Prepare audit reports and present findings to senior management.

IT Infrastructure Responsibilities:

- Oversee the installation, configuration, and maintenance of IT infrastructure, including servers, networks, and cloud environments.

- Monitor system performance, availability, and security to ensure optimal operations.

- Manage firewalls, security tools, and disaster recovery solutions.

- Implement infrastructure upgrades, patches, and performance optimizations.

- Collaborate with cybersecurity teams to enhance system security.

- Provide technical support and troubleshoot infrastructure-related issues.

Documentation:

o Document procedures, configurations, and troubleshooting steps for reference and training purposes.

o Update knowledge base articles as needed.

Security Awareness & Training:

- Conduct cybersecurity awareness programs for employees to prevent social engineering attacks.

- Provide guidance on secure coding practices and software security best practices.

Security Operations & Risk Management:

- Implement and manage security tools such as SIEM, IDS/IPS, EDR, and DLP solutions.

- Perform vulnerability assessments and penetration testing to identify security risks and recommend mitigations.

- Monitor and analyse security alerts, incidents, and logs to detect potential threats.

- Ensure endpoint security by deploying antivirus, encryption, and access controls.

- Conduct risk assessments and develop remediation plans to address vulnerabilities.

Network & Cloud Security:

- Configure and maintain firewalls, VPNs, and intrusion prevention systems.

- Implement network segmentation and security controls to protect sensitive data.

- Secure cloud environments (AWS, Azure) and monitor for potential threats.

Identity & Access Management (IAM):

- Enforce Multi-Factor Authentication (MFA) and manage user access policies.

- Administer Active Directory and Privileged Access Management (PAM/PIM) solutions.

- Conduct periodic user access reviews to prevent unauthorized access.

Compliance & Security Policies:

- Ensure adherence to industry standards such as ISO 27001, PCI-DSS, DPDP Act, SEBI Guidelines, and other Regulatory compliance.

- Assist in security audits, incident investigations, and forensic analysis.

- Develop and update IT security policies, SOPs, and incident response playbooks.

Qualifications & Skills:

- Bachelor's degree in information technology, Computer Science, or a related field.

- 3+ years of experience in IT auditing and IT infrastructure management.

- Strong knowledge of IT security frameworks and compliance standards.

- Hands-on experience with network security, cloud platforms, and system administration.

- Familiarity with IT audit tools and risk assessment methodologies.

- Excellent problem-solving and analytical skills.

- Strong communication and reporting skills.

Compensation: As per industry standards with the potential for significant performance-based upside.