Job title : IT Security / Information Security
Job Location : Thrissur/Kochi
Experience : 3–7 years of experience Hands-on experience supporting IT security audits VAPT Tools and application Security
Education : B Tech, or Any Graduate with certifications
Job Responsibilities :
- Support internal, external, and regulatory audits (ISO 27001, SOC, internal audits, etc.)
- Act as the primary point of contact for auditors on IT security-related matters
- Collect, validate, and present audit evidence (logs, reports, policies, configurations)
- Track audit observations, corrective action plans, and remediation until closure
- Ensure all audit responses comply with defined security and data-sharing policies
- Monitor and review user access, authentication activities, and security events
- Review security controls such as MFA, Conditional Access, endpoint compliance, and logging
- Assist in security incident investigation and provide audit-ready documentation
- Support periodic access reviews and risk assessments
- Develop, review, and update information security policies, standards, and procedures
- Develop and maintain security testing reports, risk assessments, and executive summaries.
- Monitor emerging threats, vulnerabilities, and security best practices.
- Support incident investigations related to application security issues.
- Perform Vulnerability Assessment and Penetration Testing (VAPT) for web applications, mobile applications, APIs, and network infrastructure.
- Conduct secure application security assessments throughout the Software Development Life Cycle (SDLC).
- Identify, validate, prioritize, and track security vulnerabilities to closure.
- Use industry-standard security tools to perform vulnerability scanning and penetration testing. Endpoint and infrastructure security controls
Job Requirements :
- 3+ years’ experience, with an IT Security focused role supporting IT security audits
- Experience executing in a cloud first technology organization
- Experience with Endpoint Security, Mobile Device Management (MDM), Email Security, Security Incident and Event Management (SIEM), Web Application Firewall (WAF), Intrusion Detection/Prevention (IDS/IPS), Vulnerability Management, Data Backup and Restoration, Data Loss Prevention (DLP), Antivirus, patch management etc.
- Working experience on Active directory, Windows Servers, Azure, AWS, GCP platforms etc.
- Proven experience within Incident Response situations and demonstrated ability to handle and maintain confidential information in a professional manner
- Must possess strong written and verbal communication skills, and be capable of understanding, documenting, communicating, and presenting technical issues in a non-technical manner to audiences with varying degrees of technical expertise
- Be a team player and enjoy collaborating on cross-functional teams
- Familiarity with audit frameworks such as ISO 27001, SOC, NIST, CIS
- Certifications such as CISA, ISO 27001 LA/LI, CEH, CISSP, or Security+
Key Skills
Ranked by relevance
Related Jobs
3 roles aligned with this opportunity
Lead Cyber Security Engineer
2026-07-08
Information Security Specialist
2026-07-09
Senior Cybersecurity Analyst - SOC
2026-07-07
- Posted
- Jul 07, 2026
- Type
- Full-time
- Level
- Associate
- Location
- Kochi
- Company
- Joyalukkas
Industries
Categories
Related Jobs
3 roles aligned with this opportunity
Lead Cyber Security Engineer
2026-07-08
Information Security Specialist
2026-07-09
Senior Cybersecurity Analyst - SOC
2026-07-07