Company Description UniSense Advisory is a purpose-driven consulting firm located in Greater Delhi Area. Our mission is to contribute to society by making a positive difference by offering sustainable solutions. We assist clients with comprehension of the problem and effective implementation to support sustainable improvements in their modus operandi. We work towards establishing consensus and buy-in from all stakeholders. We seek to deliver quality services and be the long-term trusted assurance partner of our clients. We focus on creating an inclusive world with sustainable opportunities that contribute to constant growth.   Role Description This is a full-time on-site role for the position of Assistant Manager - Information Security and Business Continuity at UniSense Advisory located in Greater Delhi Area. The role implementation of ISO27001:2022 for Information security and ISO22301:2019 for business continuity which involves monitoring, planning, designing, and implementing security measures to protect the organization's sensitive data, assets, and technology infrastructure. The Assistant Manager will coordinate risk assessments, vulnerability tests, business impact analysis, and disaster recovery programs. Additionally, the Assistant Manager will prepare and deliver training modules on information security policies and practices to employees across the organization. The Asst Manager shall also be responsible for risk management and governance for the above responsibilities.         Qualifications

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or relevant field. Master's degree is preferred.
• Minimum of 6-9 years of experience in Information Security and/or Business Continuity related roles.
• Strong understanding of data privacy regulations, security frameworks, and best practices such as ISO 27001, ISO22301 and ISO31000.
• Must have experience in implementation of ISO 27001 and ISO 22301.
• Strong knowledge of disaster recovery and business continuity planning, including designing and implementing the same.
• Excellent communication and analytical skills, ability to work independently or as a team member, strong attention to detail.
• Certifications such as CISSP, CISA, CBCP, or equivalent are preferred.

  Salary Range (CTC): 15 LPA to 17 LPA           UniSense Advisory, founded in 2022, emerges as a leading consulting firm in cybersecurity services. Being a reputable service provider we deliver comprehensive intelligence, fraud investigation, security assessments, business assurance, and risk management solutions. Backed by an interesting set of people from “Gen-Z and Millennials” combined with deep industry knowledge and cutting-edge research methodologies we provide insightful analysis and forward-looking strategies. Our detailed offerings include:  

1. RISK & ASSURANCE

 

• Risk Management
• Compliance Management
• Audit and Evaluation
• Integrity and Ethics.

2. CYBER & RESILIENCE

• Information Security
• Privacy and Data Protection
• Resilience and Continuity

3. BUSINESS ASSURANCE AS A SERVICE (BAAS)

• Managed Service
• Resource Implant

4. EDUCATION & LEARNING

• CyberAware
• Cybersecurity Courses
• Cyber Ranges

  As a leading consulting firm, UniSense focuses on comprehension of the problem for effective implementation results. With our holistic approach to cybersecurity, innovative solutions, and unwavering commitment to client success, UniSense Advisory is your trusted partner in safeguarding your digital assets and securing your business against any kind of potential cyber threats.

About UniSense Advisory UniSense Advisory is a purpose-driven consulting firm located in Greater Delhi Area. Our mission is to contribute to society by making a positive difference by offering sustainable solutions. We assist clients with comprehension of the problem and effective implementation to support sustainable improvements in their modus operandi. We work towards establishing consensus and buy-in from all stakeholders. We seek to deliver quality services and be the long-term trusted assurance partner of our clients. We focus on creating an inclusive world with sustainable opportunities that contribute to constant growth. Job Description We are seeking a highly skilled Senior Cyber Analyst with expertise in offensive security to join our dynamic team. The ideal candidate will possess a strong background in threat hunting, web exploitation, and penetration testing, along with a proven track record of success in identifying and mitigating cybersecurity risks.   Key Responsibilities:

• Conduct advanced threat hunting operations to proactively identify and neutralize potential cyber threats.
• Perform in-depth penetration tests, including network, web application, and social engineering assessments, to identify vulnerabilities and weaknesses in clients' systems.
• Develop and execute comprehensive red team exercises to simulate real-world cyber-attacks and assess clients' defensive capabilities.
• Collaborate with cross-functional teams to develop and implement customized offensive security strategies tailored to clients' specific needs.
• Provide expert guidance and support to junior analysts and team members, fostering a culture of continuous learning and professional development.

Qualifications:

• Bachelor's degree in Computer Science, Information Technology, or a related field.
• Offensive Security Experienced Pen tester (OSEP) certification.
• Certified Red Team Professional (CRTP) certification.
• Certified Red Team Expert Pen tester (CRTEP) certification.
• Offensive Security Web Exploit (OSWE) certification.
• Proficiency in common penetration testing tools and frameworks, such as Metasploit, Burp Suite, and Cobalt Strike.
• Strong understanding of network protocols, web application architectures, and common security vulnerabilities.
• Excellent analytical and problem-solving skills, with the ability to think creatively and strategically to beat competitors.
• Effective communication skills, with the ability to convey complex technical concepts to non-technical stakeholders.
• Strong teamwork and collaboration skills, with a demonstrated ability to work effectively in a fast-paced, dynamic environment.

Experience: Minimum of 7-10 years of experience in cybersecurity, with a focus on threat hunting, web exploitation, and penetration testing.   Benefits:

• Competitive salary and benefits package.
• Opportunities for professional growth and advancement.
• Collaborative and innovative work environment.
• Continuous training and development opportunities to stay ahead in the field of cybersecurity.

  How to Apply: If you are a seasoned cyber analyst with a passion for offensive security and a desire to make a difference in the fight against cyber threats, we want to hear from you! Please submit your resume and cover letter outlining your relevant experience and certifications to contact@unisenseadvisory.com.

Job Description: We are seeking an experienced IT Security Analyst to join our team. The ideal candidate will have a strong background in IT security, with hands-on experience in IT Audit, Vulnerability Assessment and Penetration Testing (VAPT), and a solid understanding of security protocols and tools. This role requires a proactive individual who can identify and mitigate security risks and ensure the integrity of our systems. Key Responsibilities:

• Conduct IT/IS Audits: Plan, execute, and manage IT/IS audits to assess the security posture of the organization. Ensure compliance with industry standards and regulatory requirements.
• VAPT Audits: Perform Vulnerability Assessment and Penetration Testing (VAPT) to identify security vulnerabilities. Use industry-standard tools like ZAP, Acunetix, and other open source tools like Nessus, Metasploit etc to perform comprehensive security assessments.
• Security Risk Assessment: Identify, analyze, and prioritize security risks and vulnerabilities. Develop and implement strategies to mitigate identified risks.
• Security Monitoring: Monitor and analyze security alerts and events to detect and respond to potential security incidents. Ensure that security monitoring systems are optimized and functioning effectively.
• Incident Response: Lead and coordinate re sponse efforts for security incidents. Perform root cause analysis and develop strategies to prevent recurrence.
• Security Policy Development: Assist in the development, implementation, and enforcement of security policies, procedures, and guidelines.
• Collaboration: Work closely with IT and other departments to ensure that security controls are integrated into all aspects of the organization’s operations.
• Compliance: Ensure that the organization complies with relevant security standards and regulations, including PCI-DSS, ISO 27001, SOC2 and others as applicable.
• Multi-Task Attitude: Candidate must have eager to learn more and have the passion to work out of his field.

Qualifications:

• Education: Bachelor's degree in Information Technology, Computer Science, or a related field. A Master’s degree is a plus.
• Experience: 5+ years of experience in IT security, with a focus on IT/IS Audit and VAPT.
• Any one of the below certifications is a MUST:
  • Certified Information Systems Auditor (CISA)
  • Certified Information Security Manager (CISM)
  • Certified Information Systems Security Professional (CISSP)
  • Information Security Management System Lead Auditor (ISMS LA)
• Technical Skills:
  • Proficiency in VAPT audit tools like ZAP, Acunetix, Nessus, etc.
  • Experience in red teaming, offensive security, grey and black-box testing, etc.
  • Strong understanding of network security, firewalls, IDS/IPS, and endpoint protection.
  • Knowledge of scripting languages (e.g., Python, PowerShell) for automation of security tasks is a plus.
• Soft Skills:
  • Excellent analytical and problem-solving skills.
  • Strong communication and interpersonal skills.
  • Ability to work independently and as part of a team.
  • Detail-oriented with a strong focus on accuracy and quality.

Preferred Experience:

• Experience with cloud security (AWS, Azure, GCP).
• Familiarity with regulatory requirements and standards such as GDPR, HIPAA, SOX, etc.
• Experience in conducting or participating in red team/blue team exercises.