Senior Information Security Risk Analyst

  • Full Time
  • Lalitpur
  • Applications have closed

Website eSewa

JOB OPPORTUNITY

Senior Information Security Risk Analyst

Seats: 1

Job Level: Mid Level

Job Type: Full Time

Category: Engineering

Application Deadline: 2025-02-28

Company Overview

Organization Name: eSewa

Location: Pulchowk, Lalitpur

Website: https://esewa.com.np/

The Senior Information Security Risk Analyst is responsible for safeguarding the organization’s digital assets by identifying, assessing, and mitigating security risks across web infrastructure, cloud environments, and mobile platforms. This position involves conducting advanced penetration testing, vulnerability assessments, and threat analysis to deliver actionable remediation strategies.

Qualification and Experience

  • Bachelor’s in Computer Engineering, Computer Science and Information Technology, Computer Networking and IT Security or related field
  • 5+ years of experience in related field

Job Description

  • Conduct penetration testing and vulnerability assessments for web infrastructure, cloud environments, and mobile platforms (Android/iOS).
  • Identify and exploit security vulnerabilities in applications, networks, and systems.
  • Analyze findings from security assessments to deliver actionable remediation strategies and recommendations.
  • Collaborate with development, IT, and security teams to implement effective risk mitigation measures.
  • Prepare comprehensive technical reports and executive summaries on security assessments, including identified risks and recommended actions.
  • Design, develop, and deploy security monitoring tools to ensure accurate visibility and proactive threat detection within the infrastructure.
  • Stay updated on emerging threats, vulnerabilities, and security trends across diverse platforms.
  • Provide insights and recommendations to address evolving cybersecurity challenges.
  • Work closely with cross-functional teams to enhance the organization’s overall cybersecurity posture.
  • Mentor and guide junior team members on best practices in information security and risk management.

Required Skills

  • Ability to devise and implement penetration testing strategies tailored to the organization’s environment, ensuring comprehensive coverage of security risks.
  • Expertise in utilizing a wide range of penetration testing tools (e.g., Burp Suite, Metasploit, Nmap, Nessus) and advanced techniques to identify and exploit vulnerabilities.
  • Capable of designing custom testing methodologies aligned with organizational goals and compliance requirements.
  • Proficient in conducting VAPT for hosts, web applications, network devices, APIs, and mobile applications to identify and remediate security weaknesses
  • In-depth knowledge of networking protocols, computing technologies, and security frameworks, including cloud computing and secure software development methodologies (e.g., DevSecOps).
  • Familiarity with tools and practices for secure coding, code review, and threat modeling.
  • Strong understanding of diverse computing platforms, including Windows, OSX, Linux, Unix, and cloud platforms (e.g., AWS, Azure, GCP).
  • Experience with securing network infrastructure and endpoints across hybrid environments.
  • Skilled in applying threat intelligence, indicators of compromise (IOCs), and vulnerability analysis to proactively identify and mitigate risks.
  • Experience in source code review to identify security flaws and recommend remediation measures.
  • Hands-on experience in configuring and managing security solutions such as web application firewalls (WAF), network firewalls, and endpoint security tools.
  • Ability to set up, configure, and deploy security monitoring solutions to detect and respond to security events in real-time.

Benefits of Working at eSewa

  • Stellar opportunity to work with the rising company
  • The amazing and passionate young team, beautiful office space
  • Trust of the biggest FinTech company.
  • One-of-a-kind company culture and growth opportunities to accelerate your career progression.

How to apply?

We are always keen to meet energetic and talented professionals who would like to join our team. Click on the button below and submit your application to apply for the post.

Scroll to Top