1303 Vulnerability Management Jobs

Required Skills and Experience: Relevant technical accreditation or successful completion of vendor-certified training in at least one of our key technologies (Active Directory, Microsoft Exchange Hybrid, Microsoft Identity Manager) Solid experience in managing AD Forests, Domains, Trusts, OUs, FSMO roles, and GPOs. Strong knowledge of Exchange Online, on-prem Exchange, and hybrid configurations. Ability to conduct AD BC/DR drills and implement post-drill improvements. Solid understanding of authentication protocols like LDAP, Kerberos, NTLM, and SSO. Experience with Azure AD, App Proxy, Backup/Restore, and Azure Site Recovery. Skilled in PowerShell scripting for automation of administrative tasks. Experience in vulnerability management and providing on-call operational support. Excellent customer service attitude, written and verbal communication skills, and ability to communicate effectively with people at all levels. Ability to solve complicated problems in a reasonable time. Participate in the on call rotation and will require after hours work for planned changes and incident resolution, and provide expert level support to the IT Operations team. "Nice To Have" Skills and Experience Experience with Microsoft Intune would be added advantage. Support identity synchronization services including; Forefront Identity Manger or Microsoft Identity Manager and Azure AD Connect.

Could you be the full-time Threat and Vulnerability Management Analyst in Bangalore were looking for? Your future role Take on a new challenge and apply your ethical hacking expertise in a cutting-edge field. Youll work alongside talented, collaborative, and forward-thinking teammates. You'll play a key role in safeguarding our organization's assets and enhancing our security program. Day-to-day, youll work closely with teams across the business (such as infrastructure, application owners, and third-party vendors), analyze threat intelligence reports, and develop remediation plans, among other impactful responsibilities. Youll specifically take care of vulnerability assessments, penetration testing, and implementing Secure SDLC programs, but also contribute to designing and delivering actionable security dashboards. Well look to you for: Tracking new and emerging threats and vulnerabilities, verifying their applicability, and initiating remediation activities as necessary Analyzing assessment reports provided by vendors or third parties and resolving them within defined SLAs Developing remediation plans by collaborating with infrastructure and application owners Providing guidance on patching, configuration settings, and additional security controls Defining the scope of assessment activities across internal and partner organizations Designing and delivering actionable information security dashboards and metrics Creating awareness about good security practices and the benefits of Secure SDLC programs Prioritizing vulnerabilities based on risk and driving them to closure using tools like Qualys, Skybox, and SecOps All about you We value passion and attitude over experience. Thats why we dont expect you to have every single skill. Instead, weve listed some that we think will help you succeed and grow in this role: Bachelors or Masters degree in Engineering, Technology, or a related field 68 years of relevant IT experience Professional certifications such as CISSP, CEH, GPEN, or OSCP Exposure to threat modeling, systems hardening, and Secure SDLC programs Experience in application penetration testing and ethical hacking Proficiency with tools like Qualys, Veracode, Nessus, AppScan, and Skybox Knowledge of TCP/IP stack, OSI layers, application programming interfaces, middleware, and mobile technologies Familiarity with penetration testing methodologies (e.g., OWASP, OSSTMM, PCI DSS) Strong analytical skills and the ability to drive innovation and process improvement Solid understanding of ITIL process frameworks and experience in creating processes in complex multivendor ecosystems Things youll enjoy Join us on a life-long transformative journey the rail industry is here to stay, so you can grow and develop new skills and experiences throughout your career. Youll also: Enjoy stability, challenges, and a long-term career free from boring daily routines Work with new security standards for rail signalling Collaborate with transverse teams and helpful colleagues Contribute to innovative projects Utilize our flexible and inclusive working environment Steer your career in whatever direction you choose across functions and countries Benefit from our investment in your development through award-winning learning Progress towards leadership or specialized roles within cybersecurity Benefit from a fair and dynamic reward package that recognizes your performance and potential, plus comprehensive and competitive social coverage (life, medical, pension)

About this role: Wells Fargo is seeking a Lead Information Security Engineer for the ICS Team. The ICS team is seeking a Lead Information Security Engineer with extensive experience in incident response, network-focused forensics, and threat hunting. The ideal candidate will have a well-rounded background in endpoint/network defenses and security incident response, as well as some offensive security knowledge to allow the ability to think like an adversary. The candidate will also have experience partnering with content development teams to resolve gaps in detection capabilities, as well as experience in conducting technical research and identifying methods to detect evolving Advanced Persistent Threat (APT) Tactics, Techniques, and Procedures (TTPs). This role will serve as an incident responder to assess the risk, impact, and scope of identified security threats, as well as leading the response efforts to include containment, eradication, and recovery. Strong verbal and written communication skills are desired, to ensure thorough and accurate reporting during and concluding a security incident. The candidate will also play a major role in detecting advanced threats that are not detected via traditional security tools and understand how to operationalize cyber threat intelligence. Regular collaboration with multiple teams such as the Cyber Threat Fusion Center, Security Content Development, Cyber Threat Intelligence, and Offensive Security Research teams will be critical to success. In this role, you will: Lead computer security incident response activities for highly complex events Conduct technical investigation of security related incidents and post incident digital forensics to identify causes and recommend future mitigation strategies Provide security consulting on large projects for internal clients to ensure conformity with corporate information, security policy, and standards Design, document, test, maintain, and provide issue resolution recommendations for highly complex security solutions related to networking, cryptography, cloud, authentication and directory services, email, internet, applications, and endpoint security Review and correlate security logs Utilize subject matter knowledge in industry leading security solutions and best practices to implement one or more components of information security such as availability, integrity, confidentiality, risk management, threat identification, modeling, monitoring, incident response, access management, and business continuity Identify security vulnerabilities and issues, perform risk assessments, and evaluate remediation alternatives Collaborate and influence all levels of professionals including managers Lead a team to achieve objectives Required Qualifications: 5+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education Desired Qualifications: Strong years of experience in Information Security Industry. Experience with SIEM tools like Splunk, Arcsight. Incident Response Protocols and Tools experience Information technology applications and systems experience Experience in managing cybercrime detection, investigation, and intelligence strategies DPI (Deep Packet Inspection) experience Knowledge and understanding of banking or financial services industry Strong verbal and written communication skills are desired, in order to ensure thorough and accurate reporting during and concluding a security incident. Ability to execute in a fast paced, high demand, environment while balancing multiple priorities Demonstrate the ability to provide written and verbal communications to management to address real-time issues and incidents, including writing formal incident reports Knowledge of offensive security, with the ability to think like an adversary when performing reverse engineering and responding to incidents Job Expectations: Information security experience including experience in one or more of the following security disciplines: information security monitoring, incident response, vulnerability management, host/network forensics, cyber-crime investigation, penetration testing, business continuity, or cyber threat intelligence Ability to execute in a fast paced, high demand, environment while balancing multiple priorities Highly refined and professional verbal and written communications Knowledge and understanding of banking or financial services industry Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), Global Information Assurance Certification (GIAC), or Web Application Penetration Tester (WAPT) certification

Role: L2 SOC Location: Hyderabad Shift Timings: Rotational about alliantgroup alliantgroup is a professional services firm that provides tax consulting and compliance services to businesses in the United States. The company was founded in 2002 and is headquartered in Houston, Texas. alliantgroup services are focused on helping businesses claim tax credits and incentives that they are entitled to under various federal and state programs. These credits and incentives are designed to encourage businesses to invest in certain types of activities, such as research and development, energy efficiency, and hiring employees from certain disadvantaged groups. alliantgroup services include helping businesses identify and claim these credits and incentives, as well as providing guidance on compliance with the relevant regulations. alliantgroup is headquartered in Houston, Texas with additional offices located in Austin, Boston, Chicago, Indianapolis, New York, Irvine, Sacramento, Washington, D.C.; and Bristol and London in the U.K. More about our culture and why we love alliantgroup https://youtu.be/nM_9fXXwyrg https://youtu.be/erJobvthqRw alliantgroup India Talent Pvt. Ltd: alliantgroup started its operations in India in the year 2020 with a world-class office in Hyderabad to provide Tax, Advisory, Audit and Accounting services. alliantgroup India Talent comprises a team of skilled professionals who address the most pressing needs of U.S CPA Firms. We work with the best talent and ensure our clients get top quality services they need. We are currently a family of 1000+ employees. Our people and culture set us apart as a firm, and our team includes professionals from a diverse array of fields, including business, engineering, software development, law, and accounting. Alliant Cybersecurity Alliant Cybersecurity created a full-service cybersecurity consultancy for American businesses. We are technology and vendor agnostic and have a customizable security plan that can be made to fit any businesss needs. Our team has seasoned penetration testers, auditors, technologists, and security analysts to help with client’s needs whether it’s a one-time project or permanent outsourced cybersecurity to our Managed Security Operations Center. We are here as an extension of client’s team, offering straightforward solutions to everyday cybersecurity challenges especially in the moments that matter most. Role Overview Alliant Cybersecurity is seeking an experienced Level 2 analyst based in Hyderabad to help expand its Cybersecurity and Risk Advisory practice. This position primarily supports US-based customers and requires flexibility to work during US business hours. What You'll Do: Security Operations & Investigation: Lead deep-dive investigations of escalated L1 incidents Analyze data from multiple security tools and sources Participates to crisis management by providing support to the incident handler and the SOC Level 3 analysts Create reports and visualizations of security attacks Use Case Fine tuning, New Use case creation Tracks trends for metrics and reporting Works on the decrease of false positives Maintain the detection rules database Trending and correlation of monitored events to build new Indicators of Compromise (IOC), attack attribution and helping establish countermeasures increasing cyber resiliency Customer Engagement: Participates to recurring meeting with the customer as the technical referent. Provides recommendations or workarounds to the customer in order to reduce business impact Leads and participates to the continuous improvement of the service (detection level, process, operational procedures, service efficiency, service reporting) Supports the customer for the remediation of incidents Supports the SOC manager for the reporting of the activity. Continuous Improvement: Drive improvement plans and documentation Mentor L1 analysts Work independently on complex analyses Maintain process/procedure documentation Support CISO, CIO, and Head of SOC during incidents Lead continuous service improvement initiatives Coordination with ISMS core team to support ISMS activities and implantation strategies at the company. Education: Bachelor’s degree in computer science, Engineering, or other related discipline. Certifications: Professional Security certifications are a plus (CISSP preferred.) What are we looking for: Minimum 4 years of SOC experience Expert knowledge in: Computer Forensics Reverse Engineering IDS/SIEM/Log Management Threat Intelligence Malware Analysis EDR & Incident Response Vulnerability Management Essential Skills: Rigorous process adherence and attention to detail Strong time management and multitasking abilities Information security mindset Team leadership capabilities Excellent analytical and problem-solving skills Outstanding communication and documentation abilities Autonomous and self-organized Experience in tactical coordination during incidents What we offer: With us, there are always opportunities to break new ground. We empower you to take the organization to the next level with the versatile experience that you bring in. We trust you with responsibility early on and support you in all ways to make this organization as trusted partner to the customers and a great place to work for the employees. Join us and bring your curiosity to life!

RESPONSIBILITIES Vulnerability Management and Infrastructure Security (VMIS) is a critical function within Standard Chartered Bank operating under the overall purview of COO Organisation. The VMIS Program team is made up of Product Owners, Delivery Leads, Scrum Masters, QPR/MPR Coordinators and PMO, who are accountable for the governance and execution of all projects within CSS VMIS Portfolio with adherence to Enterprise Change Management (ECM) Project) and Delivery New Ways of Working Standards (DWOWs). As part of the Transformation activities within SCB, new security tooling and controls are being implemented to manage vulnerability management and remediation and reduce the security risk exposure to the bank. An experienced Solution Architect is needed to implement the configuration and system hardening, security patch assurance tooling and remediation orchestration tooling capabilities, that will improve the banks ability to provide the current risk exposure, detect and remediate vulnerabilities and therefore reduce the overall risk exposure. [See Job Description Completion Guide on back cover] This role will be responsible for: Strategy • Proposes and/or designs technical solutions, which include creating prototypes and proofs of concept while maintaining a security mindset • Assures solutions not only are a fit for the specific purpose but also closely align with the standards guidelines of technology solutions. • Communicates the architecture to the stakeholders and collaborates and coordinates with existing domain architects in the formalization and adoption of IT standards and procedures. • Directs the identification and recommendation of appropriate solutions, upgrades, replacements, or decommissioning options incorporating business and technology productivity, usability, and total cost of ownership. • Responsible for assisting in the establishment of an IT Architecture practice, and the adoption of an architecture and standards methodology. • Develops and executes solutions which further reduce the percentage of time spent on reactive work. • Understand Application Security service and tooling needs and gather technical requirements • Influences changes to standards when necessary. • Provides analysis of security protection technologies as necessary. Business • Produce high level designs (HLD) that are aligned with short-term and long-term business needs • Provides Info security architecture & systems engineering consulting to project team and other business teams. Processes • Lead end-to-end integration of security software tools, including definition of integration design, configuration and testing • Directly assists in the development of a solutions architecture program including departmental roadmaps and project portfolios for IT systems architecture • Support the project manager with estimation and planning. • Manages activities that take place during solution ideation, solution design, and solution implementation. • Work with platform teams and produce low level designs (LLD) that would meet the functional and non-functional requirements • Identifying, owning and resolving design related issues through the project lifecycle • Provides authoritative advice and guidance on any aspect of test planning and execution • Assists domain architecture team on solutions management and timing of financial spend for application solutions. People and Talent • As required provide mentoring and knowledge sharing to colleagues on in area of expertise. Risk Management • Conduct work adhering to the Bank’s established Risk Management frameworks. Governance • Assures solutions not only are a fit for the specific purpose but also closely align with the standards guidelines of technology solutions. • Communicates the architecture to the stakeholders and collaborates and coordinates with existing domain architects in the formalization and adoption of IT standards and procedures. • Directs the identification and recommendation of appropriate solutions, upgrades, replacements, or decommissioning options incorporating business and technology productivity, usability, and total cost of ownership. Regulatory & Business Conduct • Display exemplary conduct and live by the Group’s Values and Code of Conduct. • Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct. Key Stakeholders • Security Technology Service domain heads • Application Security Scanning & Remediation Teams • Technology Services Infrastructure Engineering and Operations • Development team leads for various CIO streams

We are seeking a skilled Vulnerability Management Specialist to lead and facilitate end-to-end vulnerability management responsibilities. This role involves collaborating with internal teams and external auditing firms (PCI, SOC, ISO 27001) while ensuring effective vulnerability scanning, remediation, compliance, and continuous process improvement. Key Responsibilities Vulnerability Scanning & Remediation Schedule and conduct weekly vulnerability scans. Ensure results are communicated to Remediation Owners. Track and validate closure of Critical, High, and Medium vulnerabilities within timelines. Audit & Compliance Support Collaborate with internal stakeholders for device inventory analysis and audit readiness. Provide required evidence to external auditors for PCI, SOC, and ISO 27001 audits. Train internal employees on vulnerability scanning and remediation processes aligned with PCI and Security Requirements . Security Analysis & Monitoring Perform security analysis and technical assessments. Monitor and report remediation progress, ensuring compliance with regulatory, contractual, and legal requirements . Conduct penetration testing and segmentation testing for services. Process Improvement & Documentation Identify gaps and recommend improvements in vulnerability management workflows. Create and maintain process documentation and training material. Database & CMDB Integration Lead efforts to integrate DBORs of infrastructure and CPE devices into the CMDB . Ensure automated, recurring hydration of inventory supporting services. Required Skills Strong project management and time management skills. Proficiency in Microsoft PowerPoint, Excel, Outlook, and Word . Excellent verbal and written communication skills. Hands-on experience with: ServiceNow Vulnerability Response Module Tenable SC and Tenable.io Desired Skills Bachelors degree in Computer Science / Information Systems (preferred). 5+ years in IT Operations (with exposure to PCI DSS audits) and 3+ years in IT Security . Relevant certifications preferred: CISSP, CISM, CCSK, CCSP, PMP, CISA .

Job Description for a Presales Engineer specializing in Application Security and Vulnerability Scanning/Testing Tools: Job Title: Presales Engineer Application Security & Vulnerability Management Location: Mumbai Job Type: Full-Time Role Summary As a Presales Engineer focused on Application Security and Vulnerability Testing tools, you will play a pivotal role in driving technical sales engagements. You will work closely with sales teams to understand customer requirements, demonstrate product capabilities, and design solutions that address security challenges across web, mobile, and cloud environments. Key Responsibilities Collaborate with sales teams to understand client needs and propose tailored security solutions Deliver product demos and technical presentations for tools such as: DAST, SAST, SCA, IAST and API scanning tools Lead Proof of Concept (PoC) engagements and pilot deployments Respond to RFPs with detailed technical documentation Map product capabilities to customer use cases and compliance requirements Design end-to-end security testing workflows integrating DAST, SAST, SCA, IAST and API scanning tools Recommend DevSecOps integrations with CI/CD pipelines (e.g., Jenkins, GitLab, Azure DevOps) Lead onboarding and implementation of tools Troubleshoot deployment issues and guide remediation strategies Required Skills & Experience 5+ years of experience in application security, vulnerability management, or technical presales Hands-on knowledge of Application security testing tools like AppScan, Checkmarx and Fortify. etc. Strong understanding of methodologies: DAST, SAST, SCA, IAST, API Security, CSPM, DevSecOps Familiarity with secure software development lifecycle (SSDLC) Understanding of Software applications and IT Infrastructure Knowledge of web technologies (HTTP, REST, JavaScript, HTML, etc.) Knowledge of networking, operating systems and security concepts Understanding of programming languages: Java, .NET, Python, JavaScript, C/C++, etc. Experience with CI/CD tools (Jenkins, GitLab, Azure DevOps) and cloud platforms (AWS, Azure, GCP) Experience with scripting languages (Python, Bash, PowerShell) Lead onboarding and implementation of the tools Troubleshooting skills Excellent communication, presentation, and stakeholder engagement skills Preferred Qualifications Bachelors degree in Computer Science, Cybersecurity, or related field Certifications related to Application Security testing tools Experience with cloud platforms (AWS, Azure, GCP) and container security Experience with secure coding practices Exposure to container security and cloud-native application protection Prior experience in a customer-facing technical role

The primary focus at EITSI is to develop the next generation LIMS (Lab Information Management system), Customer portals, e-commerce solutions, ERP/CRM system, Mobile Apps & other B2B platforms for various Eurofins Laboratories and businesses. Position Title: Senior. Information Security Analyst Team: Regional Security Support Crew (Information security) Reporting Location: Bangalore (B4 / B5) Job Overview: As a Regional Security Support crew, your primary role, will be to assist the Regional Information Security Officers (RISO) in implementing and maintaining cybersecurity strategies for various legal entities Globally. You will be responsible for ensuring compliance with group security policies, managing risks, and supporting the continuous improvement of the regional security posture. This role offers a unique opportunity to be part of a newly established team, providing a dynamic environment where you can help shape security processes from the ground up. Key Responsibilities: Provide direct support to the RISO in managing and implementing security plans for legal entities across the region. Assist in the creation, follow-up, and management of remediation plans for identified security risks and non-compliance issues. Conduct security risk assessments and ensure that security measures are aligned with the Group"™s standards and adapted to each legal entity"™s needs. Support the RISO in reviewing and approving changes to systems, processes, and applications prior to deployment. Perform and prioritize security audits, vulnerability scans, and reviews (including access rights, firewall rules, cloud compliance, etc.). Coordinate and support legal entities during internal and third-party security audits, ensuring compliance with all security policies. Conduct security training and awareness programs customized for regional entities, ensuring all staff are informed and compliant. Maintain accurate inventories of assets, third-party vendors, and local processes for audit and security monitoring purposes. Collaborate with regional and Group IT teams to ensure a "security by design" approach is applied in all regional architectures, applications, and processes. Assist in evaluating third-party vendors to ensure they meet security standards. Support the development of Disaster Recovery (DR) and Business Continuity (BC) plans. Assist the RISO with the development and implementation of policies, procedures, and guidelines that cater to local regulatory requirements and Group standards. Core Responsibilities in Incident Response and Vulnerability Management: Assist the RISO in incident response activities by investigating security breaches and incidents in collaboration with the Security Operations Center (SOC). Analyze vulnerability reports and assist in remediation efforts, ensuring timely patching and risk mitigation. Support the review and approval of firewall rules, configurations, and exceptions to maintain network security. Collaborate with the RISO in monitoring for emerging threats and recommending security improvements based on current trends. Qualifications & Skills: Strong communication and interpersonal skills, with the ability to work effectively with multiple stakeholders across various legal entities. Ability to manage multiple priorities and work under pressure in a fast-paced environment. Strong knowledge of cybersecurity concepts, including vulnerability assessments, incident management, network architecture, firewalls, and cloud security. Expertise in general IT concepts, including Active Directory, Office 365, and modern networking solutions like micro-segmentation, SASE, SD-WAN, etc. Demonstrated ability to assist in the creation and execution of security policies, procedures, and standards. Familiarity with security frameworks such as ISO 2700x, ITIL, and the EU Privacy Directives. Experience in conducting security assessments and working with audit teams during internal or external security reviews. Education & Experience: At least 3+ years of experience in cybersecurity, information security, or a related field. Certifications such as CISM, CISSP, or CEH are nice to have. Atypical profiles with experience from bug bounties, open-source projects, or bootcamps are also encouraged to apply if they can demonstrate strong skills and knowledge in the required areas. Total of 9+ years of experience Key Competencies: A quick learner who is autonomous, adaptable, and detail oriented. Ability to work in large, complex IT environments and be comfortable with ambiguity and fast-changing priorities. A passion for cybersecurity, with strong problem-solving skills and a proactive approach to risk management. Strong English language skills are required, additional language is a plus. How You Will Help: Regularly test legal entities for compliance with security policies and procedures. Assist in conducting vulnerability assessments and implementing remediation measures based on Group standards. Investigate security incidents in collaboration with the SOC and provide technical support during audits. Support the development of Security Key Performance Indicators (KPIs) to monitor and improve the region"™s security posture. This is an exceptional opportunity for cybersecurity professionals who thrive in dynamic environments and enjoy creating and improving security processes. If you are passionate about cybersecurity and want to play a crucial role in protecting a diverse range of legal entities across Europe, we encourage you to apply. Qualifications A bachelor"™s degree in computer science / Equivalent Stream, Information Security, or a related field is preferred.

environmental, pharmaceutical and cosmetic product testing and in AgroScience CRO services. It is also one of the global independent market leaders in certain testing and laboratory services for genomics, discovery pharmacology, forensics, CDMO, advanced material sciences and in the support of clinical studies. The primary focus at EITSI is to develop the next generation LIMS (Lab Information Management system), Customer portals, e-commerce solutions, ERP/CRM system, Mobile Apps & other B2B platforms for various Eurofins Laboratories and businesses. Young and dynamic, we have a rich culture, and we offer fulfilling careers. OPERATIONAL TITLE (ENGLISH): Senior information Security Analyst - Security Policy and Architecture REPORTING LOCATION: Bangalore, IN WORKING LOCATION Bangalore, IN SUMMARY OF POSITION AND OBJECTIVES The Information Security Consultant/Architect plays a pivotal role in safeguarding the technological infrastructure and assets of Eurofins through meticulous evaluation, integration, and enhancement of security measures, evaluation of intricate IT technologies to ensure alignment with stringent security standards before their approval by the Technology Council, and contribution to the formulation and refinement of security policies, ensuring their relevance and effectiveness in the dynamic landscape of cybersecurity. POSITION & OBJECTIVES : GSC Security Policy and Architecture Advisory is part of GSC Security Support Office pilar, combining the Security Policy and Architecture Advisory, Regional Security Support and Security Certifications Support crews. As part of his significant role in safeguarding the IT infrastructure and assets, Information Security Consultant: evaluates complex IT technologies from security standpoint before they are approved by the Technology Council; contributes to newly created and updated security policies; provides consultancy to other IT and business crews regarding the policies and security recommendations; contributes to technical integration scenarios, ensuring security in ongoing and planned projects; engages into strategic initiatives aimed at enhancing Eurofins"™ overall security posture, ensuring resilience against evolving threats and vulnerabilities (Information Security Architect); provides internal consultancies for other crew members (Information Security Architect); QUALIFICATIONS AND EXPERIENCE REQUIRED: Experience: 7-10+ years of experience in information security, preferably in the security architecture area; experience in one or more areas such as: managing complex IT environment utilizing directory services; designing/managing/protecting complex network environments; design and/or management of cloud-based services; identifying the requirements, architecting, deploying, and managing security tools , such as vulnerability management, identity management, PKI, log management, MFA, penetration tests, automate code analysis, antimalware solutions; acting as security SME (Key Word) in IT projects; delivering security policies, standards and guidelines. As we are working in an international environment, Information Security Consultant"™s English needs to be excellent. He/She needs to be an effective communicator (both to technical and non-technical professionals), convincing that his/her concepts are relevant and important for the whole organization. Role requires also skills such as orientation on details, team working, problem solving and independence. Additionally, following trainings or certificates are appreciated: CISPP (*Added Advantage) CCSP (*Added Advantage) CEH AZ-500, AZ-xxx, SC-xxx AWS Security CompTIA Security+ Others, related to security, public cloud, networking, IT infra Qualifications Bachelor"™s degree in computer science, security and similar is appreciated. Knowledge, Skills and Abilities:

The Impact you will have in this role: Qualifications: Minimum of 6 years of related experience Bachelor's degree preferred or equivalent experience Talents Needed for Success:

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : ServiceNow Governance, Risk, and Compliance (GRC) Good to have skills : Security Architecture DesignMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. You will also document the implementation of the cloud security controls and transition to cloud security-managed operations. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work related problems.- Develop and implement security architecture solutions.- Conduct risk assessments and provide recommendations for security enhancements.- Collaborate with cross-functional teams to ensure security best practices are implemented.- Stay updated on the latest security trends and technologies.- Provide guidance and mentorship to junior security professionals. Professional & Technical Skills: - Must To Have Skills: Proficiency in ServiceNow Governance, Risk, and Compliance (GRC).- Strong understanding of cloud security principles.- Experience in implementing security controls in cloud environments.- Knowledge of industry standards and regulations related to cloud security.- Hands-on experience with security tools and technologies. Additional Information:- The candidate should have a minimum of 3 years of experience in ServiceNow Governance, Risk, and Compliance (GRC).- This position is based at our Mumbai office.- A BTECH degree is required. Qualification 15 years full time education

About The Role Project Role : Software Development Lead Project Role Description : Develop and configure software systems either end-to-end or for a specific stage of product lifecycle. Apply knowledge of technologies, applications, methodologies, processes and tools to support a client, project or entity. Must have skills : SAP Governance Risk and Compliance (SAP GRC) Good to have skills : SAP Security Cloud Applications, SAP SecurityMinimum 12 year(s) of experience is required Educational Qualification : 16 years full time education Summary :As a Software Development Lead, you will be responsible for developing and configuring software systems, applying knowledge of technologies, methodologies, and tools to support projects or clients in Mumbai. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Expected to provide solutions to problems that apply across multiple teams.- Lead the team in implementing best practices.- Provide technical guidance and mentorship to team members.- Ensure project milestones are met within the specified timeline. Professional & Technical Skills: - Must To Have Skills: Proficiency in SAP Governance Risk and Compliance (SAP GRC).- Strong understanding of SAP Security.- Experience with SAP Infrastructure Security.- Knowledge of software development lifecycle.- Expertise in project management.- Excellent communication and leadership skills. Additional Information:- The candidate should have a minimum of 12 years of experience in SAP Governance Risk and Compliance (SAP GRC).- This position is based at our Mumbai office.- A 16 years full-time education is required. Qualification 16 years full time education

As a Proactive Security - Lead Security Architect, you will be part of UKGs forward-thinking Global Security team, focused on continuously strengthening our security posture through innovation and collaboration. This global role is dedicated to proactive security identifying gaps before adversaries doleveraging advanced techniques like breach and attack simulation, technical control validation , threat intelligence, and proactive detection strategies to stay ahead of evolving threats. Work cross-functionally to simulate, assess, and harden defenses, enabling secure-by-design principles across our enterprise. Were not just defendingwere redefining what proactive security looks like in the HCM SaaS space. With your analytical mindset and collaborative spirit, youll help us lead the way in building a security-first culture that protects our customers and empowers innovation. Key Responsibilities Proactively Anticipate Threats - Conduct proactive threat hunting and analysis using threat intelligence, tactics, techniques and procedures (TTPs) as per MITRE ATT&CK framework. Also if needed collaborate with Threat Intel teams to emulate MITRE ATT&CK and threat actor behaviors relevant to the organizationbusiness environment. Proactively validate Defenses and Technical Security Controls with Adversary-Informed Testing - Lead and execute Breach and Attack Simulations (BAS) end to end using industry-leading BAS platforms such as SafeBreach, Mandiant Security Validation , AttackIQ, Picus Security, or custom-built scripts to test control efficacy. Map defenses and detections to MITRE ATT&CK to uncover blind spots and improve control resiliency. Integrate BAS outcomes with EDR, SIEM, SOAR, Identity, Cloud layers and security telemetry to validate detection capabilities and security stack effectiveness. Analyze BAS results to identify control gaps and ensure timely mitigation or remediation via required tools. Proactive Remediation via Engineering and Hardening - Further, recommend control enhancements and help harden detection rules, prevention policies, response playbooks, and security configurations. Work Cross functionally and collaborate with teams including SOC, Identity & Access Management, Detection Engineering, Security Architecture, Infrastructure, and Application teams to validate technical controls and enhance detection and response capabilities against simulated threats and draft playbooks. Automate false positive reduction in BAS Tool and evolve detection logic based on real-world threat trends. Provide strategic input in secure architecture controls validation, completeness and incident response planning across cloud, on-prem, and hybrid infrastructure. Lead implementation and optimization of tools across endpoint, network, identity, and cloud security domains basis BAS or purple teaming outcomes. Drive BAS results remediation end to end for identified detection, prevention, and response control gaps. Proactive Security Metrics, Reporting & Communication- Define and track metrics/KPIs (for e.g. - % MITRE ATT&CK techniques validated, detection coverage improvements before and after, control drift remediation rate etc.) and prepare reports to trackattack surface coverage, control completeness, effectiveness, and detection gaps closed. Stay current with emerging threats, vulnerabilities, and industry trends. Required Skills & Qualifications Bachelors degree in Computer Science, Information Security, or a related field. 8+ years of professional experience in cybersecurity, with a focus on: o MITRE ATT&CK Framework and TTPs o Security Operations Center (SOC) o Threat Intelligence, Detection Engineering o Breach and Attack Simulation (BAS) tools, Purple Teaming o Endpoint Detection and Response (EDR) o Security Information and Event Management (SIEM), SOAR o Vulnerability Management o Identity and Access Management (IAM) o Information Security Architecture Experience with threat hunting, log analysis, alert tuning, and BAS tools. In depth knowledge of attack lifecycle, MITRE ATT&CK, cyber kill chain, and modern threat actors. Deep understanding of enterprise security architecture, including cloud (AWS/Azure/GCP) and hybrid environments. Proficiency with tools like Splunk, Sentinel, CrowdStrike, EDR/XDR platforms, Network NDR , Firewall , WAF and security APIs. Excellent verbal and written communication skills, stakeholder management skills with the ability to convey complex technical concepts to diverse audiences across. Share knowledge, mentor others, and help drive a culture of curiosity, technical depth, and continuous improvement. Strong scripting skills in Python, PowerShell, or Bash and Exposure to Agile, CI/CD, or IaC pipelines are a plus. Preferred Certifications (Not Mandatory) CISSP (Certified Information Systems Security Professional) OSCP/OSCE/Red/Purple Team certifications GIAC, CCSP, or other relevant cybersecurity certifications Vendor-specific: Mandiant (MSV) Certified Professional, SafeBreach Certified, MITRE ATT&CK Defender credentials. Why This Role is Different What Youll Gain: Global Impact: Your work will directly harden defenses across a complex, distributed enterprise. Innovation Playground: Youll work with bleeding-edge BAS tools, detection frameworks, and automation platforms. Strategic Visibility: Your threat findings will shape executive decision-making and security investment. Trusted Seat at the Table: Be part of a high-credibility security team that advises architecture, engineering, and leadership.

The Opportunity This role will be working on Cloud security issues and the Vulnerability issues on FICO assets which includes user computers, data center systems and Cloud. This position will work with key stakeholders to understand threats unique to each business unit or application. This position will collaborate with technology, security, development and product management groups across the corporation to drive successful execution of the Threat governance Portifolio to ensure an appropriate proactive enterprise security posture. What Youll Contribute Collaborate with FICO Cyber Security Team, Business and IT partners, and clients. Act as an internal subject matter expert with respect to Vulnerability and Compliance scanning and reporting. Implement new and iterate on existing technology to help identify and mitigate security issues. Validate and triage identified vulnerabilities. Contribute to team strategy in managing threats and vulnerabilities. Develop, evangelize, and iterate on threat & vulnerability management practices. Conducting required tasks for the vulnerability scanning program and publishing reported vulnerabilities to impacted teams for remediation. Triage and risk rank vulnerabilities according to severity and exposure. Work with Product and IT teams to risk rank and patch vulnerabilities related to the technology stack. Develop remediation plans for vulnerabilities. Initiate improvement activity to reduce risk, ensure compliance, lower cost, and improve quality within IT processes. Conduct/support periodic risk assessments and develop appropriate mitigation plans in support of deliverables. Continuous review of configuration management and vulnerability management posture inside the company and knowledge of all external developments that could bring new risks, including vendor patches, zero-day exploits, end-of-life systems or deprecated services. Strong thought process to enhance the current capabilities of Cloud asset management , Cloud vulnerability management & cloud patch management What Were Seeking Bachelors Degree and 3+ years of experience in a related field. knowledge of the current threat landscape is a must have. Basic knowledge of malware operation, indicators or threats is required Demonstrates subject-matter expert level understanding in multiple IT, Security and Software disciplines. Ability to understand AWS cloud infrastructure and Cloud security Ability to understand the cause and effect of application vulnerabilities with Operating System Vulnerabilities. Must be able to multi-task and keep track of large amounts of information across disparate systems. Ability to keep making progress and define future strategy/policy with regards to Vulnerability Management. Adherent to continuous monitoring and continuous improvement thought process. Demonstrated technical security expertise in a variety of cloud platforms (AWS is preferred). Ability to effectively translate and present solutions in business or management terms. knowledge on any scripting language is nice to have. Moderate documentation and analytical skills; documenting processes, policies and standards. Moderate ability to provide end to end support to enterprise counterparts, identifying root cause of complex enterprise initiatives.

Develop and maintain processes to collect, analyze, and report security-related data from various sources (e.g., security controls, vulnerability assessments, incident response). Design and implement automated reporting solutions using tools like Microsoft Fabric to monitor key business metrics. Conduct regular risk assessments to identify vulnerabilities and threats in cloud environments. Define and track key performance indicators (KPIs) to evaluate the effectiveness of monitoring programs. Monitor and analyze logs, event data, and alerts to detect anomalies and ensure compliance with security policies. Evaluate vulnerability scans and penetration tests to assess system security posture. Review security documentation, including system security plans and risk assessments. Support internal and external audits by compiling and presenting evidence of compliance. Create and maintain a comprehensive continuous monitoring plan based on NIST SP 800-137 and FedRAMP requirements. Requirement Programming and automation experience with one or more Python, SQL, PowerShell, Bash. Proficiency in data visualization tools Microsoft Fabric, Power BI. Familiarity with cloud platforms Azure, AWS, or Google Cloud. Experience with containerization and infrastructure-as-code tools Docker, Kubernetes, Terraform, GitHub. Understanding of ETL processes and data warehousing. Experience with vulnerability management tools Qualys, ServiceNow. Familiarity with SIEM tools Microsoft Sentinel, Splunk.

Deploy, configure, and optimize Qualys for authenticated/unauthenticated scans. Define and maintain asset groups, tagging, scan schedules, and baselines. Integrate Qualys with Freshservice for automated ticketing and SLA tracking. Required Candidate profile 2-4+ years of experience in vulnerability management or DevSecOps. Hands-on expertise in Qualys (mandatory). Experience integrating vulnerability tools with ServiceNow, JIRA, Freshservice, etc.

About The Role Project Role : Security Delivery Lead Project Role Description : Leads the implementation and delivery of Security Services projects, leveraging our global delivery capability (method, tools, training, assets). Must have skills : Managed Cloud Security Services Good to have skills : Incident Management, Email Security, Security Threat HuntingMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Delivery Lead, you will be responsible for overseeing the implementation and delivery of Security Services projects. Your typical day will involve coordinating with various teams to ensure that projects are executed efficiently, utilizing our global delivery capabilities, including methods, tools, training, and assets. You will engage with stakeholders to align project goals with organizational objectives, ensuring that security measures are effectively integrated into all aspects of service delivery. Your role will also require you to address challenges that arise during project execution, providing guidance and support to your team to achieve successful outcomes. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Facilitate knowledge sharing and best practices among team members to enhance overall performance.- Monitor project progress and ensure adherence to timelines and quality standards. Professional & Technical Skills: - Must To Have Skills: Proficiency in Managed Cloud Security Services.- Good To Have Skills: Experience with Incident Management, Email Security, Security Threat Hunting.- Strong understanding of cloud security frameworks and compliance standards.- Experience in risk assessment and vulnerability management.- Ability to develop and implement security policies and procedures. Additional Information:- The candidate should have minimum 7.5 years of experience in Managed Cloud Security Services.- This position is based at our Bengaluru office.- A 15 years full time education is required. Qualification 15 years full time education

About The Role Project Role : Security Delivery Lead Project Role Description : Leads the implementation and delivery of Security Services projects, leveraging our global delivery capability (method, tools, training, assets). Must have skills : Security Information and Event Management (SIEM) Good to have skills : NAMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Delivery Lead, you will be responsible for overseeing the implementation and delivery of Security Services projects. A typical day involves collaborating with various teams to ensure that projects are executed efficiently, utilizing global delivery capabilities, and ensuring that all security measures are effectively integrated into the project lifecycle. You will engage with stakeholders to align project goals with organizational security objectives, while also providing guidance and support to team members throughout the project duration. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work related problems.- Facilitate communication between project teams and stakeholders to ensure alignment on project objectives.- Monitor project progress and provide regular updates to management and stakeholders. Professional & Technical Skills: - Must To Have Skills: Proficiency in Security Information and Event Management (SIEM).- Strong understanding of security frameworks and compliance standards.- Experience with incident response and threat management processes.- Familiarity with security monitoring tools and technologies.- Ability to analyze security incidents and provide actionable insights. Additional Information:- The candidate should have minimum 3 years of experience in Security Information and Event Management (SIEM).- This position is based at our Bengaluru office.- A 15 years full time education is required. Qualification 15 years full time education

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Application Security Architecture and Design Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :We are looking for a Technical Lead with strong expertise in Application and Infrastructure Security to lead a suite of security services including vulnerability management, application security testing (SAST/DAST), and penetration testing. This role is ideal for someone who can not only execute and review security assessments but also manage tools, provide technical direction to a delivery team, and act as a trusted advisor to the client on security best practices. Roles & Responsibilities:-Lead the delivery of application and infrastructure security services including:-Dynamic Application Security Testing (DAST)-Static Application Security Testing (SAST/SCA)-Web & API Penetration Testing-Mobile Application Security Testing-Infrastructure Vulnerability Management (IVM)-Oversee scan scheduling, execution, validation, and reporting.-Drive the reduction of false positives and enhance detection accuracy.-Ensure timely delivery of security testing activities aligned with client SLAs.-Perform automated and manual security scans for applications and infrastructure.-Validate findings, analyze root causes, and prioritize remediation based on risk.-Provide technical recommendations to development, DevOps, and infrastructure teams.-Align findings with recognized standards (e.g., OWASP Top 10, CVSS, CWE).-Administer and optimize usage of security tools including but not limited to:-WebInspect, Veracode, Burp Suite, Custom Scripting Tools-GitLab, ServiceNow Security Modules-Datadog Security Explorer, OpenShift ACS-Tune and maintain tool configurations, scan profiles, and dashboards.-Track scan volumes, issue lifecycle, and performance KPIs.-Deliver dashboards and executive-level reports on security posture.--Support audit, compliance, and client reporting needs.-Team Collaboration & Stakeholder Management-Provide technical direction and mentorship to the delivery team.-Liaise with client teams, application owners, and platform SMEs.-Ensure effective communication across stakeholders for testing, issue triage, and remediation. Professional & Technical Skills: -Experience in Cybersecurity, with specialization in Application Security and Vulnerability Management.-Strong technical knowledge of SAST/DAST tools (e.g., Veracode, WebInspect).-Hands-on experience in penetration testing of web, mobile, and API-based applications.-Familiarity with infrastructure scanning and vulnerability remediation practices.-Strong understanding of secure SDLC, OWASP Top 10, SANS Top 25, and risk classification models (CVSS, CWE).-Experience working in global delivery teams, preferably in a client-facing role.Preferred Certifications-CEH / OSCP / GWAPT / CISSP / CSSLP,Veracode Certified Specialist or equivalent,Vendor certifications on WebInspect, Burp Suite, GitLab Security-Knowledge of cloud security principles (Azure/AWS/GCP)-Familiarity with container security and DevSecOps tooling-Exposure to automated CI/CD security integrations Additional Information:- The candidate should have minimum 5 years of experience in Application Security Architecture and Design.- This position is based at our Gurugram office.- A 15 years full time education is required. Qualification 15 years full time education

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Endpoint Extended Detection and Response Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to document the implementation of cloud security controls and facilitating the transition to cloud security-managed operations. You will engage in discussions to align security strategies with organizational objectives, ensuring that all security measures are effectively integrated into the cloud environment. Your role will also require you to stay updated on the latest security trends and technologies to enhance the overall security posture of the organization. Roles & Responsibilities:--Demonstrated expertise in the endpoint security domain with a minimum of 10 years of overall experience, including at least 5 years of hands-on experience with the CrowdStrike Falcon EDR platform.-Endpoint Security Platform:Detection, Quarantine & response handling, On-Demand Scans (ODS), Sensor and prevention policy configuration & General platform administration and operational tasks.-Device Control:USB policy management and enforcement, Device exception handling and approval processes, Monitoring and reporting of device usage & Device Control administration and troubleshooting.-Firewall Management:Creation and management of firewall policies, Configuration of rule groups and policy sets & Troubleshooting firewall-related issues.-File Vantage Module:Policy creation and management, Implementation of rule suppression processes & Monitoring and alert tuning.-The candidate must have hands-on experience with the ServiceNow ticketing platform and a basic understanding of the JIRA storyboard. Professional & Technical Skills: - Must To Have Skills: Proficiency in Endpoint Extended Detection and Response.- Good To Have Skills: Experience with cloud security frameworks and compliance standards.- Strong understanding of security architecture principles and best practices.- Experience in risk assessment and vulnerability management.- Familiarity with incident response and threat intelligence processes. Additional Information:-The candidate must have a minimum of 5 years of hands-on experience with the CrowdStrike Falcon EDR platform.-This position is based at any ATCI office location.-A minimum of 15 years of full-time education is required. Qualification 15 years full time education

About The Role Project Role : Security Delivery Lead Project Role Description : Leads the implementation and delivery of Security Services projects, leveraging our global delivery capability (method, tools, training, assets). Must have skills : Security Information and Event Management (SIEM) Good to have skills : NAMinimum 15 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Delivery Lead, you will lead the implementation and delivery of Security Services projects, leveraging our global delivery capability. A typical day involves collaborating with various teams to ensure project milestones are met, facilitating discussions to address challenges, and guiding the team in the execution of security strategies. You will also engage with stakeholders to align project objectives with organizational goals, ensuring that security measures are effectively integrated into the overall business framework. Your role will be pivotal in driving the success of security initiatives and enhancing the overall security posture of the organization. Roles & Responsibilities:- Expected to be a Subject Matter Expert with deep knowledge and experience.- Should have influencing and advisory skills.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Expected to provide solutions to problems that apply across multiple teams.- Facilitate training sessions to enhance team capabilities and knowledge sharing.- Monitor project progress and implement corrective actions as necessary. Professional & Technical Skills: - Must To Have Skills: Proficiency in Security Information and Event Management (SIEM).- Strong understanding of security frameworks and compliance standards.- Experience with incident response and threat management.- Ability to analyze security incidents and provide actionable insights.- Familiarity with security tools and technologies used in SIEM. Additional Information:- The candidate should have minimum 15 years of experience in Security Information and Event Management (SIEM).- This position is based at our Bengaluru office.- A 15 years full time education is required. Qualification 15 years full time education

Role & responsibilities 1 1 . Vulnerability Assessment & Management. Coordinate with IT teams to patch systems and applications based on critical vulnerabilities. Assess and mitigate security risks associated with new software, systems, and third-party services. 2. Compliance & Risk Management Ensure compliance with industry standards (ISO 27001, NIST, GDPR, SOC 2) and regulatory requirements. Perform risk assessments to evaluate the effectiveness of existing security controls. Work with internal teams to implement best practices for secure configurations and data protection. 3. Security Architecture & Implementation Assist in designing and implementing secure architectures for cloud, on-premises, and hybrid environments. Evaluate and recommend new cybersecurity tools and technologies. Preferred candidate profile Experience: 4-8 Years Location: Pune / Chennai / Bangalore Employment Type: Permanent Full Time Mandatory Skill: Vulnerability Assessment & Management, Security Architecture & Implementation *** Looking up for candidates who can join in 0-30 Days max **** (Please don't apply if you are NP is more than 30 days) If you are interested in above JD kindly share resume to lakshmi.naidu@citiustech.com with below details: Total Experience: Relevant Experience: Current CTC: Expected CTC: Notice Period: Current Location

Monitor security events, logs, and alerts in real-time. • Perform initial investigation, triage, and assessment of alerts to detect suspicious activities by accessing security solutions consoles. • Log and track cybersecurity incidents

Skills UiPath Orchestrator,UIPath AI Center,troubleshooting Admin Job type Contract to HIRE Roles & Responsibilities : Strong hands-on experience in Ui Path Orchestrator Management of queues Configurations Credentials Passwords etc Deployment of UIPath BOTs in PROD UiPath Licence management, license allocations, license renewals VM allocation management Schedule management on VMs Installation and upgradation of Ui Path to newer versions in Sandbox Dev and PROD Monitoring and Health check for UIPath BOTs Triaging and resolution of platform related issues Good Experience in Windows server administration Experience in remote administration and troubleshooting of Windows servers. Good experience in windows vulnerability management. Knowledge on SOX compliance Knowledge on SSL certificate renewals Experience in troubleshooting Application installation/uninstallation issues Miscellaneous tasks BOT restarts recording BOTs etc., Good hands on with SQL Server DB Good Communication skills good experience in communicating with internal customer third party teams Basic network troubleshooting. Working knowledge on AWS VMs. Must Have : 7 - 9 years of work Experience in IT Industry. 5+ Years of UiPath experience as an Admin. UiPath RPA Admin Certified Hands on UiPath Deployment Architecture and Cloud platforms (AWS) Certified AWS Practitioner Architect Flexibility to work in 24x5 shift model Good To Have : Working knowledge of Power Automate Admin role Previous work experience in 3rd Party Integrations with UiPath like Salesforce, Service Now and/or SharePoint is a plus. UiPath Certified Professionals ( UCP ) preferred.

RESPONSIBILITIES Vulnerability Management and Infrastructure Security (VMIS) is a critical function within Standard Chartered Bank operating under the overall purview of COO Organisation. The VMIS Program team is made up of Product Owners, Delivery Leads, Scrum Masters, QPR/MPR Coordinators and PMO, who are accountable for the governance and execution of all projects within CSS VMIS Portfolio with adherence to Enterprise Change Management (ECM) Project) and Delivery New Ways of Working Standards (DWOWs). As part of the Transformation activities within SCB, new security tooling and controls are being implemented to manage vulnerability management and remediation and reduce the security risk exposure to the bank. An experienced Solution Architect is needed to implement the configuration and system hardening, security patch assurance tooling and remediation orchestration tooling capabilities, that will improve the banks ability to provide the current risk exposure, detect and remediate vulnerabilities and therefore reduce the overall risk