Job Summary:

Seeking a highly skilled and experienced Information Security Consultant to join our dynamic security team. 

The successful candidate will be responsible for conducting comprehensive security risk assessments and performing in-depth Vulnerability Assessment and Penetration Testing (VAPT) on critical network infrastructure components specific to our ISP environment. 

This includes, but is not limited to, Optical Network Units (ONUs), Optical Line Terminals (OLTs), core and edge routers, firewalls, and other associated network systems. 

Your expertise will be crucial in identifying vulnerabilities, assessing risks, and recommending mitigation strategies to protect our network and ensure the security and reliability of our services for millions of customers.

Key Responsibilities:

• Security Risk Assessment: Conduct thorough security risk assessments of ISP network infrastructure components (OLTs, ONUs, routers, switches, firewalls, BNGs, etc.), identifying potential threats, vulnerabilities, and impacts.
• Vulnerability Assessment & Penetration Testing (VAPT): Plan, coordinate, and execute comprehensive VAPT engagements targeting ISP network hardware, software, and configurations. This includes network scanning, vulnerability exploitation, and post-exploitation analysis.
• Device Security Analysis: Perform deep-dive security analysis of specific network devices (e.g., various models of ONUs/ONTs, OLTs, routers, firewalls) commonly deployed in ISP networks, understanding their architecture, protocols (e.g., GPON, TR-069, BGP, OSPF), and potential attack vectors.
• Reporting & Remediation: Develop detailed technical reports outlining findings, identified vulnerabilities (with severity ratings), potential impact, and actionable remediation recommendations. Collaborate with network engineering and operations teams to prioritize and track remediation efforts.
• Security Architecture Review: Participate in the review of network architecture designs and proposed changes, providing security-focused input and ensuring adherence to security best practices.
• Threat Intelligence: Stay abreast of the latest threats, vulnerabilities, and attack techniques targeting ISP infrastructure and telecommunications networks.
• Tooling & Methodology: Utilize a variety of commercial and open-source security assessment tools (e.g., Nessus, Qualys, Nmap, Metasploit, Burp Suite, Wireshark) and develop custom scripts or tools as needed. Refine testing methodologies specific to ISP environments.
• Compliance & Standards: Ensure assessments align with relevant industry standards and compliance requirements (e.g., ISO 27001, NIST frameworks, DoT regulations).

Required Qualifications & Skills:

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. Equivalent practical experience will also be considered.
• Experience: Minimum of 5+ years of hands-on experience in information security, with a strong focus on network security, VAPT, and risk assessment.

Technical Expertise:

• Proven experience performing VAPT on network infrastructure (routers, switches, firewalls).
• Strong understanding of networking protocols (TCP/IP, BGP, OSPF, MPLS, DNS, DHCP) and network architecture concepts.
• Familiarity with telecommunications access technologies (e.g., GPON, EPON, DOCSIS) and associated management protocols (e.g., TR-069, SNMP).
• Experience with security assessment tools (vulnerability scanners, penetration testing frameworks, network analyzers).
• Knowledge of common operating systems (Linux, Cisco IOS/NX-OS, Junos) and their security hardening.
• Understanding of common web application vulnerabilities (OWASP Top 10) if relevant to device management interfaces.
• Certifications: Relevant security certifications such as CEH (Certified Ethical Hacker), OSCP (Offensive Security Certified Professional), CISSP (Certified Information Systems Security Professional), GCIH/GPEN, or equivalent are highly desirable.
• Analytical Skills: Strong analytical and problem-solving skills with the ability to identify complex security issues and devise effective solutions.
• Communication: Excellent written and verbal communication skills, with the ability to clearly articulate technical findings and recommendations to both technical and non-technical audiences.

Preferred Qualifications:

• Prior experience working within an ISP or Telecommunications environment.
• Specific experience testing OLT, ONU/ONT devices.
• Experience with scripting languages (Python, Bash) for automation and tool development.
• Knowledge of Data Centre security principles (if applicable to network management systems).
• Master's degree in a relevant field.

PLEASE NOTE THIS ROLE IS FOR A CLIENT.