Job Description: Cybersecurity Specialist - KSMS- TSPL

Position: Cybersecurity Specialist Location: Pune

Reports to: CISO

Work Mode: 9 Hours, 5 Days Work from Office

Overview:

KSMS-TSPL (An IT Arm of Kalyani Group) are seeking a skilled and experienced We are seeking an experienced and highly technical Cybersecurity Specialist to strengthen our security posture. The ideal candidate will have in-depth expertise in cybersecurity domains, hands-on experience with security tools, and a strong understanding of industry best practices.

Key Responsibilities:

1. Endpoint Security:

 Design, implement, and maintain Endpoint Detection and Response (EDR) and Next-Generation Antivirus (NGAV) solutions

 Develop hardening strategies for Windows, macOS, and Linux endpoints following CIS benchmarks.

 Automate endpoint security policies using scripting (PowerShell, Python, or Bash).

2. Cloud & Network Security:

Secure cloud environments by enforcing identity & access management, multi-factor authentication and role-based access control.

 Configure and manage Cloud Security Posture Management (CSPM) and Cloud Workload Protection Platforms (CWPP).

 Implement and maintain Network Access Control (NAC), IDS/IPS, and SIEM / SOAR / SOC solutions

 Deploy Zero Trust Architecture (ZTA) and Software-Defined Perimeter (SDP) solutions.

3. Application Security:

 Perform secure code reviews and static/dynamic application security testing.

 Implement Web Application Firewalls.

 Enforce DevSecOps practices and integrate security into CI/CD pipelines (GitHub Actions, GitLab CI/CD, Jenkins).

4. AI & Emerging Technologies Security:

 Assess security risks in AI/ML models and ensure compliance with AI security frameworks (NIST AI RMF, OWASP Top 10 for LLMs).

 Implement adversarial attack defences for AI models and secure AI/ML data pipelines.

5. OT & IoT Security:

 Secure Industrial Control Systems (ICS) and Supervisory Control and Data Acquisition (SCADA) environments.

 Deploy IoT security solutions, device identity management, and anomaly detection systems.

 Conduct firmware analysis and vulnerability assessments for connected devices.

6. Web & Mail Security:

 Configure and manage Secure Email Gateways.

 Implement Domain-based Message Authentication, Reporting, and Conformance (DMARC), SPF, and DKIM policies.

 Deploy URL filtering, SSL inspection, and Content Security Policies (CSP) for web protection.

7. Penetration Testing & Red Teaming:

 Perform regular Vulnerability Assessment and Penetration Testing

 Conduct Breach Attack Simulations (BAS).

 Develop and execute adversary emulation scenarios and Red Teaming exercises using MITRE ATT&CK framework.

8. Incident Management & Business Continuity Planning (BCP):

 Lead Security Operations Center (SOC) investigations and incident response processes.

 Utilize Digital Forensics and Incident Response

 Develop Disaster Recovery (DR) strategies and maintain cybersecurity-specific Business Continuity Plans (BCP).

9. Monitoring, Detection & Auditing:

 Manage Security monitoring using various tools .

 Conduct security audits based on NIST, ISO 27001, and PCI DSS frameworks.

 Implement Security Orchestration, Automation, and Response solutions to improve incident response efficiency.

Qualifications & Skills:

 Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field.

 More than 5 years of hands-on cybersecurity experience in enterprise environments.

 Proficiency with cybersecurity frameworks such as NIST CSF, ISO 27001, CIS Controls, and MITRE ATT&CK.

 Excellent analytical, troubleshooting, and communication skills for security awareness training.

 Industry-recognized cybersecurity certifications preferred (e.g., CISSP, CISM, CEH, OSCP, GSEC, or AWS Security Specialty).