Careers

About Us:

The Institute of Information Security (IIS) Also known as CyberExcellence Academy Pvt. Ltd is one of the most trusted sources of hands-on trainings in information security providing excellent unmatched practical training to individuals and corporates around the globe for over a decade. With the backing of our brilliant technical team providing consulting services for the past 17 years under the brand name of Network Intelligence, we are here to train, mentor and support your career in cybersecurity. Our emphasis on hands-on practical training gives our clients and students an edge to grow rapidly and advance professionally in their respective career(s).

Network   Intelligence (I) Pvt. Ltd. (NII), incorporated   in   2001, is   a   committed   and well-recognized provider of services, solutions and products in the cybersecurity space. Our team of nearly 500+ professionals have made a mark for themselves with highly satisfied clients across the globe supported by our offices in New York, Dubai, Mumbai, Delhi and Pune. With a strong focus on research and innovation, we have built extensive capability around Big Data for Security Analytics, Red Team Assessments, Incident Response, and Security Automation.

We have a strong culture of lifelong learning, research and mentoring. We encourage all our employees to constantly explore their boundaries, attend training programs, obtain certifications and participate in the research efforts of the global cybersecurity community

Why IIS ?

Inspiration by Leadership

We are the leaders in market in the cybersecurity space, you get a chance to learn from & work with the experts.    

Growth

We believe in growing along with the people hence we prioritize the personal development of our team members with our processes which provides you a clear visualization of your career path with the help of immense career opportunities within the organization.

People

People are our core competency & hence your care is our priority, we are one of the few companies’ where you will be supported to do what you love & love what you do.

Excellence

We believe in excellence and constantly strive to improve ourselves, our teams, and our services and products to become the best.

Innovation

You have the freedom to be innovative to see the world differently, develop your ideas, and realize your full potential.

Experts to help you at each step

We have mentorship programs to help and assist you in achieving your dream by gaining knowledge through experience & hard work.

Current Openings

Sr. Cybersecurity Analyst/Analyst - Assessment
Designation: Sr. Cybersecurity Analyst/Analyst
Job Code: HR1005
Location: Mumbai
Experience: 1+ years
Job Description:
  • Conduct vulnerability assessment and penetration testing for network, web applications, mobile applications, and thick client applications.
  • Conduct configuration reviews for OS, DB, Firewall, Routers, Switches, and other infrastructure components.
  • Conduct red-team assessments using social engineering, physical security compromise and other techniques.
  • Be well-versed with internal privilege escalation techniques.
  • Conduct source-code review using automated and manual approaches.
  • Prepare detailed reports as per NII format.
  • Ensure timely delivery of status updates and final reports to clients.
  • Handle client queries
  • Keep oneself updated on the latest IT Security news, exploits, hacks.
  • Contribute technical content – chapter meetings, blogposts.
  • Conduct internal and external trainings on various topics related to security assessment.
Sr. Analyst/Specialist OT/ICS security - Assessment
Designation: Sr. Analyst/Specialist OT/ICS security
Job Code: HR1152
Location: Remote
Experience: 2+ years
Job Description:
  • Good knowledge of control systems, electricals, PLCs, DCSs
  • Direct experience in areas of OT penetration testing, exploitation & vulnerability scanning on SCADA systems & ICS/OT networks
  • Hands on with ICS/SCADA Network Architecture review
  • Hands on with SCADA/PLC/RTU/FRTU configuration review
  • Knowledgeable on industry standards & best practices, especially related to industrial environments in the cybersecurity space i.e., NERC CIP and ISA-62443
  • Well versed and hands-on experience in most phases of ICS cyber kill chain
  • Experience in network/web/mobile penetration testing
  • In depth knowledge of ICS protocols such as MODBUS, Profibus, Profinet, Ethernet-CIP, OPC, DNP, HART, RS-232, RS-485
  • Well versed with ICS MITRE framework
  • Basic knowledge on active directory exploitation
  • Should be able to automate tasks using scripting/programming language (PowerShell, Python, Go, Perl, Ruby, etc.)
  • Knowledge on developing or porting exploits/shellcode.
  • Expertise in problem solving, conflict resolution, team building, client relationship
  • In depth knowledge on OWASP, WASC, NIST, Mobile Security, Source Code analysis, Cloud security
  • Expertise in penetration testing scanners, exploitation tools, technologies, scripting languages
  • Documentation skills, reporting and dashboard creations
Cybersecurity Analyst- MDR
Designation: Cybersecurity Analyst
Job Code: HR1007
Location: Mumbai/ Kolkata
Experience: 1+ years
Job Description:
  • Monitor network traffic and security alerts for potential events/incidents.
  • Conduct initial triage, declare events/incidents, create incident cases, gather evidence, track and update incident status, and identify additional action items. Handle P1 and P2 incidents under the direction of leads and specialists. Follow through to closure P3 and P4 incidents.
  • Detect, document, respond to and escalate events and incidents in accordance with MSS Incident Handling policies and procedures.
  • Demonstrate capabilities and techniques that can be used to mitigate Cyber-attacks and threats.
  • Demonstrate the capability to utilize the Security Tools to investigate and correlate events.
  • Develop reports and/or briefings for events/incidents. Conduct research on emerging security threats.
  • Maintain shift logs for all SOC activities conducted during scheduled hours.
  • Monitor, maintain, and respond to group email and distribution lists.
  • Create tickets for necessary tasks that need to be executed by external teams. Ensure tasks are communicated via email to the respectable team(s), as well as documenting and tracking activities within tickets according to ticketing procedures and annotating in shift logs according to shift report procedures. Conduct systems and tools health checks.
  • Recommend updates to the wiki with relevant content as it becomes known. Ensure that the phones are forwarded to the “On-Call” or appropriate individual when the office is unmanned.
  • Maintain shift logs for all relevant SOC activities.
  • Conduct internal and external trainings on various topics related to SOC.
Sr. Cybersecurity Analyst- MDR
Designation: Sr. Cybersecurity Analyst
Job Code: HR1136
Location: Mumbai/ Kolkata
Experience: 2+ years
Job Description:
  • Monitor network traffic and security alerts for potential events/incidents.
  • Conduct initial triage, declare events/incidents, create incident cases, gather evidence, track and update incident status, and identify additional action items. Handle P1 and P2 incidents under the direction of leads and specialists. Follow through to closure P3 and P4 incidents.
  • Detect, document, respond to and escalate events and incidents in accordance with MSS Incident Handling policies and procedures.
  • Demonstrate capabilities and techniques that can be used to mitigate Cyber-attacks and threats.
  • Demonstrate the capability to utilize the Security Tools to investigate and correlate events.
  • Develop reports and/or briefings for events/incidents. Conduct research on emerging security threats.
  • Maintain shift logs for all SOC activities conducted during scheduled hours.
  • Monitor, maintain, and respond to group email and distribution lists.
  • Create tickets for necessary tasks that need to be executed by external teams. Ensure tasks are communicated via email to the respectable team(s), as well as documenting and tracking activities within tickets according to ticketing procedures and annotating in shift logs according to shift report procedures. Conduct systems and tools health checks.
  • Recommend updates to the wiki with relevant content as it becomes known. Ensure that the phones are forwarded to the “On-Call” or appropriate individual when the office is unmanned.
  • Maintain shift logs for all relevant SOC activities.
  • Conduct internal and external trainings on various topics related to SOC.
Threat Hunter
Designation: Threat Hunter
Job Code: HR1050
Location: Mumbai
Experience: 1+ years
Job Description:
  • Perform Threat hunts on the EDR console and share inputs to operations teams for action
  • Prepare Daily, weekly and Monthly security dashboards
  • Share IOCs and Advisories received from SOC or other industry sources to Administration teams for configuration
  • Review SOC performance and participate in weekly reviews
  • Follow through on open points with SOC
  • Documentation of SOP which would be followed by the resource for his activities for standardization
  • Hunt for and identify threat actor groups and their techniques, tools and processes
  • Participate in "hunt missions" using threat intelligence, analysis of anomalous log data and results of brainstorming sessions to detect and eradicate threat actors on customer’s networks.
  • Provide expert analytic investigative support of large scale and complex security incidents.
  • Develop dashboards and reports to identify potential threats, suspicious/anomalous activity, malware, etc
  • A passion for research, and uncovering the unknown about internet threats and threat actors
  • Validate suspicious events and incidents by using open source and proprietary intelligence sources
  • Document and manage incident cases in our case management system
  • Report incidents to the customer using a ticketing system
  • Interface with customers to resolve issues, provide additional information, and answer questions related to incidents and monitoring
  • Keep up to date with information security news, techniques, and trends
  • Become proficient with third-party threat intelligence tools as required
Cybersecurity Consultant – Compliance and Audit
Designation: Cybersecurity Consultant
Job Code: HR1097
Location: Remote
Experience: 3+ years
Job Description:
  • To deliver PCI DSS, PA DSS consulting services to new and existing clients
  • Performing onsite PCI DSS implementation for various industry verticals
  • Assisting PCI QSAs in PCI DSS validation and deliverable preparation
  • To deliver governance, risk, and compliance consulting services to new and existing clients
  • Team collaboration and where necessary mentoring to other consultants Writing reports to a high standard and provide technical QA for the work of others.
Cybersecurity Analyst – Strategy and Risk Advisory
Designation: Cybersecurity Analyst
Job Code: HR1153
Location: Mumbai
Experience: 1+ years
Job Description:
  • Assist in executing ISMS implementation
  • Assist in conducting gap analysis for PCI DSS and follow up for closure of gaps
  • Conduct ISMS internal audits and reporting
  • Assist in conducting Risk Assessments
  • Development of Policies and procedures
  • Conduct reviews for implementation of policies and procedures
  • Assist in various regulatory audits including but not limited to RBI, IRDA, SEBI, etc.
  • Conduct ISMS awareness trainings
  • Follow up with clients for closure of gaps/issues
  • Coordinate with various teams at client location
  • Development of minimum baseline security standards
  • Understand the organization and conduct various applicable internal audits
  • Conduct audits for vendor risk assessments
  • Conduct basic IT infrastructure security checks
Cybersecurity Analyst – Solutions
Designation: Cybersecurity Analyst
Job Code: HR1168
Location: Mumbai
Experience: 1+ years
Job Description:
  • Console Management
  • FIM and policy content maintenance
  • Tune Change Monitoring. Identifies and excludes any noisy, business-as-usual changes from your monitoring process
  • FIM (File Integrity Monitoring) Content Tuning
  • Construct new rule
  • Verify System Health
  • Verify and promotion of Changes
  • Review Compliance Reporting
  • Verify Successful Backups
  • Dashboard and Reporting
  • Tripwire update and patching (Annually)
  • User Management
  • Tripwire Backup Management
  • Must have understanding about the ransomware and malware.
  • Should have good communication / writing skill.