10 Ccsk Jobs

As a Tech Delivery & Op Excellence Practitioner, you understand how to deliver value to clients and apply methods or certifications appropriately. Your attention to detail and deep expertise allow you to see inherent risks or improvement opportunities that others may not. You work directly with client teams to ensure a high standard of delivery and operational excellence is met. Key responsibility: - Risk and Compliance senior Analyst works with the Application service delivery organization and other compliance related functions to help: - Perform audits/reviews to assess risks in Application development and maintenance service environment - Manage risk in Application development and maintenance service to an acceptable level - Increase awareness of and compliance with policy and process-related matters - Support successful completion of various external compliance certification programs and internal compliance assessments - Introduce continual improvement including lessons learned from matters requiring intervention - The successful candidate for this role will be a member of a dedicated team operating a Controls and Compliance function, performing audit-style reviews of Application Development & Maintenance Services outsourcing engagements covering compliance matters and operational service management and service delivery good practice. Must-Have Skills/Qualifications: - Minimum of 1-year experience in Auditing principles and practices (sample qualifications*: CISA, ISO 27001 Lead Auditor) - Minimum of 1-year experience in Application security/audit roles in Application development & maintenance service industry (sample qualifications*: EC-Councils CASE, CEH, Agile Methodology, DevOps Certification, CMMI for Development) - Knowledge of secure SDLC models, secure coding standards, OWASP Top 10, threat modeling, SAST, DAST, single sign-on, Encryption - Minimum of 1-year experience in Operational compliance requirements - Contract Management/Service Reporting (including Service Level Agreements and Operational Level Agreements) - Risk management or assessment (sample qualification*: CRISC) - Knowledge of cloud environment and services (sample qualification*: Microsoft Azure/AWS/Google Certifications) - Team and stakeholder management Nice-to-Have Skills/Qualifications: - Data privacy and protection (sample qualifications*: CIPM, CIPT, CIPP) - CISSP, CISM, CISA, CCSK, CCSP - SOC1 and SOC2 (SSAE16/ISAE3402) awareness - Business Continuity and Disaster Recovery awareness (ISO 22301) Professional Attributes: 1. Good communication 2. Teamwork 3. Problem-solving capabilities 4. Work planning and management 5. Quick learner 6. Eager to take on responsible tasks 7. Dedicated and focused Educational Qualification: 1. MBA-Information Security/IT 2. BE/B-Tech with CS/IT/related domain 3. BSc-IT Additional Information: - Occasional within-country travel - Flexibility in working hours - 15 years full-time education,

As a Senior Security Engineer at Adobe, you will be part of a global architecture and engineering team within Enterprise Security focused on securing access to Adobe data using Zero Trust best practices. Your responsibilities will include implementing a Zero Trust Solution, delivering access controls based on a zero trust strategy, and providing support to critical projects within the Enterprise Security organization. You will play a key role in enhancing the security posture for employees and data by researching, analyzing, troubleshooting, and supporting the delivery of security solutions aligned with team security strategies and key requirements. Your role will involve supporting the development and maturity of security services, policies, and standards to improve security posture. This includes creating clear documentation, proposing architectural standards, and leading programs to achieve security goals. You will collaborate with business units and vendor suppliers across Adobe to enhance their security posture and service architecture, as well as assist in evaluating and selecting security technologies in alignment with business partners and customers. To succeed in this role, you will need a Bachelor's degree in MIS, Computer Science, or Engineering, along with familiarity with Zero Trust solutions, Identity and Access Management technologies, and Public Cloud services. Knowledge of Web Application Security platforms, Single Sign-On, Authentication, Authorization, Federation Technologies, and Python will be beneficial. Excellent communication skills, certifications in Information Security and Cloud Technology, and the ability to work collaboratively and provide leadership within the organization are essential. We are seeking a highly skilled Senior Security Engineer to join our Global Enterprise Security Architecture team at Adobe. The ideal candidate will have extensive experience in leading large-scale security projects, driving Zero Trust initiatives, and advising on infrastructure security best practices. This role is crucial for supporting global enterprise security architecture efforts, enhancing corporate security authentication, and managing high-impact cybersecurity projects. Key Responsibilities include: - Providing leadership within the Enterprise Security Architecture & Engineering team and executing security initiatives across the organization. - Developing and implementing security solutions to address challenges in vendor security, corporate authentication, and cybersecurity risk management. - Advancing the organization's Zero Trust security model, setting standards, and implementing frameworks to secure digital assets. - Overseeing high-impact security projects, collaborating with stakeholders, and serving as a Trusted Advisor on infrastructure security best practices. If you require accommodation to navigate Adobe's website or complete the application process due to a disability or special need, please contact accommodations@adobe.com or call (408) 536-3015.,

Changing the world through digital experiences is what Adobe is all about. We give everyonefrom emerging artists to global brandseverything they need to design and deliver exceptional digital experiences. We are passionate about empowering people to craft beautiful and powerful images, videos, and apps, and transform how companies interact with customers across every screen. We are on a mission to hire the very best and are committed to building exceptional employee experiences where everyone is respected and has access to equal opportunity. We realize that new ideas can come from everywhere in the organization, and we know the next big idea could be yours. As a Senior Security Engineer at Adobe, you will be a part of a global architecture and engineering team within Enterprise Security dedicated to securing access to Adobe data using Zero Trust best practices. This role involves implementing a Zero Trust Solution at Adobe and delivering access controls based on a zero trust strategy. Additionally, you will be supporting other critical projects and services within the Enterprise Security organization focused on securing access and data. Your responsibilities will include researching, analyzing, troubleshooting, and supporting the delivery of security solutions aligned with team security strategies and key security requirements. You will also contribute to the development and enhancement of security services, policies, and standards to improve the security posture for employees and data. Collaborating with business units and vendor suppliers across Adobe, you will assist in improving security posture and service architecture, as well as help in the evaluation and selection of security technologies. To succeed in this role, you will need a Bachelor's degree in MIS, Computer Science, or Engineering, familiarity with Zero Trust solutions, Identity and Access Management technologies, and Public Cloud services. Knowledge of Web Application Security platforms, Single Sign On, Authentication, Authorization, Federation Technologies, and Python will be beneficial. Excellent communication skills, certifications in Information Security and Cloud Technology, strong interpersonal skills, and the ability to work collaboratively and build consensus across the organization are essential. We are seeking a highly skilled Senior Security Engineer to join our Global Enterprise Security Architecture team at Adobe. The ideal candidate will have significant experience leading large-scale security projects, driving Zero Trust initiatives, advising on infrastructure security best practices, and managing cybersecurity projects. This role is crucial for supporting global enterprise security architecture efforts and enhancing corporate security authentication. Key Responsibilities: - Provide leadership within the Enterprise Security Architecture & Engineering team, setting the strategy and executing security initiatives across the organization. - Act as a leader in advancing the organization's Zero Trust security model, setting standards, and implementing frameworks to secure digital assets across diverse environments. - Oversee high-impact, cross-functional security projects that align with the company's objectives, including vendor security management and global risk mitigation. - Serve as a Trusted Advisor on infrastructure security best practices, guiding teams on architecture decisions that align with our security roadmap. If you require an accommodation to navigate our website or complete the application process, please contact accommodations@adobe.com or call (408) 536-3015. Adobe values a free and open marketplace for all employees and has policies in place to ensure fair recruitment practices.,

The Divisional Risk and Control Analyst for TDI Control Testing & Assurance in Pune, India, plays a crucial role in ensuring the effective operation of infrastructure functions within the Infrastructure Chief Operating Office (COO). The primary focus is on driving operational efficiency while supporting the delivery of infrastructure services in alignment with business objectives and control requirements. The role involves overseeing the Infrastructure Divisional Control Office (DCO) and Trade Settlement and Confirmations Operations (TSCO). As part of the Infrastructure COO, the Infrastructure Divisional Control Office (IDCO) serves multiple functions within the infrastructure domain. It is a dedicated risk, control, and regulatory oversight function responsible for managing and proactively mitigating risks across the Technology and Infrastructure organization. The IDCO also provides a centralized view of non-financial risks, ensuring effective standards and policies are consistently implemented. The TDI Control Testing & Assurance team, a part of IDCO, is responsible for identifying, tracking, and reporting control testing and assurance activities. This team conducts independent controls testing on various risk types according to Control Testing Standards, with a focus on regulatory and risk-based assurance requirements. The Divisional Risk and Control Analyst will be part of this team. Key Responsibilities: - Conduct control testing in line with Control Testing methodology/minimum standards. - Identify control deficiencies, escalate potential issues to senior management, and prepare detailed workpapers documenting testing results. - Track and follow up on identified findings, ensuring compliance with regulatory and internal firm policy requirements. - Support controls assurance activities and monitor adherence to Control Testing methodology/minimum standards. - Build strong relationships with key stakeholders across different teams and divisions. Skills and Experience: - University degree in Computer Science, Mathematics, Engineering, or related fields. - Professional certifications such as CISA, CISSP, CISM, CRISC are beneficial. - Experience in Cloud Security audit/testing or related certifications like CCSP, CCSK would be advantageous. - Strong knowledge of IT application controls auditing, IT risk management, and financial regulations. - Excellent communication, organizational, and analytical skills with the ability to work under pressure and prioritize workload effectively. The role offers training, development, coaching, and support to help excel in the career. The culture promotes continuous learning, collaboration, and a range of flexible benefits tailored to individual needs. Deutsche Bank Group fosters a culture of empowerment, responsibility, commercial thinking, and collaboration. The company welcomes applications from diverse backgrounds, promoting a positive and inclusive work environment.,

At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture, and technology to become the best version of you. We're counting on your unique voice and perspective to help EY become even better. Join us and build an exceptional experience for yourself and contribute to creating a better working world for all. As a Manager in Risk Consulting - Protect Tech, specifically focusing on IT Risk Emerging Tech or Cloud, you will have the opportunity to embark on your next adventure. Are you a tech-savvy professional with a risk mindset passionate about leveraging people, technology, and innovation to build a better working world Our dynamic Risk Consulting - Technology Risk team offers an incredible opportunity for you to make a real impact in our rapidly evolving world. You will work in areas such as IT Risk Management, IT SOX, IT Regulatory Compliance, IT Audits, and IT and Digital Transformations, including ERP, Emerging Tech, and Cloud transformations. By enabling technology to better manage risk, you will collaborate with industry leaders to help transform businesses and address complex challenges with our clients. In this client-facing role within a rapidly growing practice, you will build relationships with key stakeholders, including management executives of globally recognized brands. This role provides a platform to deepen your understanding of complex business transactions, recommend solutions to pressing business challenges, and process inefficiencies. You will collaborate with our global professionals in multidisciplinary engagements to assist major global clients in transforming and sustaining business performance. Leveraging emerging technologies like AI and ML, you will develop and enhance new solutions, actively contributing to building multiple tools and assets for efficient and effective client delivery. By connecting with our market-leading global network, you will gain the experience necessary to excel as an IT Risk Advisor. Key responsibilities include supervising delivery, providing technical and project leadership to team members, building client relationships, delivering quality client services, and driving high-value work products within expected timeframes and budgets. You will monitor progress, manage risks, and ensure key stakeholders are informed about progress and expected outcomes. Additionally, you will understand clients" challenges and industry-related issues, participate in go-to-market activities, create proposals, respond to RFPs, and identify opportunities for cross-selling to current clients. You will travel to client locations for meetings, workshops, and knowledge-sharing sessions, jointly lead global account relationships, manage engagement deliveries, ensure quality, and drive the growth agenda on accounts. As a Manager, you will also manage a team of Seniors and Staff across geographies, foster an innovative and inclusive team-oriented work environment, and play an active role in counselling and mentoring junior consultants within the firm. To qualify for this role, you must have a bachelor's or master's degree and approximately 5-7 years of related work experience, with at least 3-4 years of experience in IT Risk Management focusing on Emerging Tech and Cloud. You should possess knowledge of strategic, IT, and business risks, control gaps, IT regulatory compliances, information security frameworks, IT general controls, IT application controls, business process controls, and risks during Digital Transformations and Cloud migrations. Your exposure to working in client-facing roles, collaborating with cross-functional teams, and strong communication, documentation, and report writing skills are essential. Relevant industry certifications such as CISA, CISM, CISSP, or CCSK are desirable. EY is dedicated to building a better working world by creating long-term value for clients, people, and society while fostering trust in the capital markets. Our diverse teams across over 150 countries leverage data and technology to provide trust through assurance, help clients grow, transform, and operate across various service lines. Join us in asking better questions to find new answers for the complex issues facing our world today.,

At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture, and technology to become the best version of you. And we're counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Risk Consulting - Protect Tech Senior - IT Cloud Risk The opportunity: your next adventure awaits. Are you a tech-savvy professional with a risk mindset who is passionate about building a better working world through the power of people, technology, and innovation We have an incredible opportunity for you to join our dynamic Protech Tech team and make a real impact in the rapidly evolving world we live in. Within Risk Consulting, you will focus on areas of IT Risk Management, IT SOX, IT Regulatory Compliance, IT Audits, IT and Digital Transformations (including ERP and Cloud transformations), while enabling technology to better manage risk. As a member of our team, you will have the chance to work with industry leaders and help transform businesses by tackling the most complex challenges with our clients. Key Responsibilities Your key responsibilities will include: - Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress, manage risk, and ensure key stakeholders are kept informed about progress and expected outcomes. - Foster relationships with client personnel to analyze, evaluate, and enhance information systems to develop and improve security at procedural and technology levels. - Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the client's business. - Demonstrate deep technical capabilities and professional knowledge. Demonstrate the ability to quickly assimilate new knowledge. Skills And Attributes For Success You will leverage your proven track record of IT Audit experience and strong personal skills to effectively deliver quality results in the assessment, design, and support implementation of controls, security, and IT risk solutions. To qualify for the role, you must have: - A bachelor's or master's degree and approximately 3-6 years of related work experience - At least 2-4 years of experience in IT Cloud risk - Good technical understanding of cloud platforms such as AWS, Azure, or Google Cloud, etc. - Identification of risks within Cloud transformations and migrations - Design of IT Controls framework, including internal controls such as IT general controls, IT application controls, interface controls - Experience implementing and supporting Cloud infrastructure - Strong exposure working in client-facing roles, collaborate with cross-functional teams including internal audits, IT security, and business stakeholders to assess control effectiveness and facilitate remediation activities - Excellent communication, documentation, and report writing skills - Professionals with Cloud certification such as CCSK, CCAK, etc., are preferred EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people, and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform, and operate. Working across assurance, consulting, law, strategy, tax, and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.,

Open Source COE Security Architect This role has been designed as Onsite with an expectation that you will primarily work from an HPE partner/customer office. Who We Are: Hewlett Packard Enterprise is the global edge-to-cloud company advancing the way people live and work. We help companies connect, protect, analyze, and act on their data and applications wherever they live, from edge to cloud, so they can turn insights into outcomes at the speed required to thrive in todays complex world. Our culture thrives on finding new and better ways to accelerate what’s next. We know varied backgrounds are valued and succeed here. We have the flexibility to manage our work and personal needs. We make bold moves, together, and are a force for good. If you are looking to stretch and grow your career our culture will embrace you. Open up opportunities with HPE. Job Description: HPE Operations is our innovative IT services organization. It provides the expertise to advise, integrate, and accelerate our customers’ outcomes from their digital transformation. Our teams collaborate to transform insight into innovation. In today’s fast paced, hybrid IT world, being at business speed means overcoming IT complexity to match the speed of actions to the speed of opportunities. Deploy the right technology to respond quickly to market possibilities. Join us and redefine what’s next for you. What you will do: Expert in IT/Cyber Security field. Should be CISSP/CISM/CCSP and CCSK and ISO27001 Certification are desired. Should have good knowledge of security assessment against different global Frameworks like NIST, MITRE and cloud security alliance etc. Should have good understanding of Compliance and regulatory requirements. Working with information security and DevSecOps teams in a CI/CD environment as well as comprehensive understanding of cloud security systems. Programming experience in C/C++, Python, JavaScript, Bash & PowerShell Scripting is desired. Hands-on expertise, Linux, Kernel, threads, processes, API etc. is desired. Provide Security Vision & Strategy to the Organization, strategic direction, development, and implementation of information security programs and projects to address risks relevant to the attainment of organizational strategic security goals based on open source tool/framework. Experience in advising leadership team regarding evolving of open source Security Technology landscape, product issues, security mitigations for identified risks and possible improvements Expertise in providing executive roadmaps for continual improvement in teams, technology, and processes, process across various security & DevSecOps teams based on open source tool/framework. Experienced in Information Security Risk Management, gap analysis, Audits. Hands-on Experience in formulating Cyber Security Policies, design and implementation of Security Technologies, DevSecOps. Working Knowledge in implementation of Cyber Security Solution in Open Source, Open Stack environment. Ability to provide strategies to increase the ability to withstand cyber-attacks, as measured by annual sophisticated attack simulations. Experience in upgrading, troubleshooting and tuning of Cyber Security Solutions. Thorough understanding and good knowledge of latest Cyber Security technologies, security Architectures, vulnerabilities, security threats. Ability to setup PoC for latest open source security solutions. Good understanding of Open-Source Technologies, Cloud security technologies. What you need to bring: BE/B.Tech with 10+ years of experience in the IT industry and 6+ years of experience in Information Security / Cyber Security field. Expert-level knowledge in the IT/Cyber Security field, with a thorough understanding of the latest security technologies, architectures, vulnerabilities, and threats. Desired certifications include CISSP, CISM, CCSP, CCSK, or ISO 27001. Strong knowledge of global security assessment frameworks like NIST, MITRE, and the Cloud Security Alliance (CSA). A deep understanding of compliance and various industry regulatory requirements. Proven experience in developing security vision, strategy, and executive roadmaps for an organization based on open-source tools. Hands-on experience in Information Security Risk Management, conducting gap analysis, managing audits, and formulating Cyber Security Policies. Comprehensive understanding of cloud security systems and working with DevSecOps teams in a CI/CD environment. Working knowledge of implementing, upgrading, troubleshooting, and tuning Cyber Security Solutions, particularly in Open Source and OpenStack environments. Desired programming and scripting experience in C/C++, Python, JavaScript, Bash, and PowerShell. Hands-on expertise with the Linux operating system, including its Kernel, threads, processes, and APIs. Experience advising leadership teams regarding the evolving security landscape, product issues, and risk mitigation strategies. Ability to provide strategies to withstand sophisticated cyber-attacks and experience with annual attack simulations. Proven ability to set up Proof of Concepts (PoCs) for new and emerging open-source security solutions. Additional Skills: Accountability, Accountability, Active Learning (Inactive), Active Listening, Bias, Business Growth, Client Expectations Management, Coaching, Creativity, Critical Thinking, Cross-Functional Teamwork, Customer Centric Solutions, Customer Relationship Management (CRM), Design Thinking, Empathy, Follow-Through, Growth Mindset, Information Technology (IT) Infrastructure, Infrastructure as a Service (IaaS), Intellectual Curiosity (Inactive), Long Term Planning, Managing Ambiguity, Process Improvements, Product Services, Relationship Building {+ 5 more} What We Can Offer You: Health & Wellbeing We strive to provide our team members and their loved ones with a comprehensive suite of benefits that supports their physical, financial and emotional wellbeing. Personal & Professional Development We also invest in your career because the better you are, the better we all are. We have specific programs catered to helping you reach any career goals you have — whether you want to become a knowledge expert in your field or apply your skills to another division. Unconditional Inclusion We are unconditionally inclusive in the way we work and celebrate individual uniqueness. We know varied backgrounds are valued and succeed here. We have the flexibility to manage our work and personal needs. We make bold moves, together, and are a force for good. Let's Stay Connected: Follow @HPECareers on Instagram to see the latest on people, culture and tech at HPE. #india #operations Job: Services Job Level: TCP_04 HPE is an Equal Employment Opportunity/ Veterans/Disabled/LGBT employer. We do not discriminate on the basis of race, gender, or any other protected category, and all decisions we make are made on the basis of qualifications, merit, and business need. Our goal is to be one global team that is representative of our customers, in an inclusive environment where we can continue to innovate and grow together. Please click here: Equal Employment Opportunity. Hewlett Packard Enterprise is EEO Protected Veteran/ Individual with Disabilities. HPE will comply with all applicable laws related to employer use of arrest and conviction records, including laws requiring employers to consider for employment qualified applicants with criminal histories.

Position Purpose A primary focus for this position will be to lead audit execution covering end-to-end processes of auditable entities within the IT and Cybersecurity Inspection Generale APAC team. Responsibilities This individual will work closely with audit assignment team members to complete each phase of the audit. This will entail: assessing the sufficiency and suitability of controls to mitigate risks; and testing the operating effectiveness and sustainability of controls; and documenting walk-throughs of in-scope processes; and documenting the investigations conducted and their results; and drafting findings and associated recommendations to address identified gaps in the control environment; and documenting the final report. This individual will have regular interactions with team members, process / control owners, and management of business units. Based on experience, this role will entail contributing to IT audits. Duties: Demonstrates a strong ability to audit procedures and controls accurately, timely, and with minimal supervision. Executes audit work in accordance with BNPP Inspection Generale policies and procedures. Testing the control design and operating effectiveness of in-scope IT controls Contributes to the completion of continuous monitoring activities for assigned auditable entities and escalates matters that may impact the timing of the next audit assignments. Prepares and updates risk assessments for assigned auditable entities for supervisory review. Validates the sufficiency and suitability of business corrective actions to address audit recommendations. May be asked to direct the work of more junior staff members on the audit assignments. Performs other duties as assigned. Technical Behavioral Competencies Deep knowledge of IT audit Requires deep knowledge of banking functions typically obtained through advanced education combined with experience. Exhibits effective written and verbal communication skills with all levels of management (in English) Not less than 10 years of experience in IT external auditing / internal auditing / in the financial services industry. Curiosity, rigor, and precision. Outstanding analytical skills High level of initiative, commitment, and drive Ability to work effectively under pressure and within short deadlines Promotes a constructive, cooperative, and participative teamwork environment Specific Qualifications (if required) Possess a Bachelors / Masters Degree in Information Technology/ Management Information System / Computer Science and related discipline; Professional Qualification/Certification: in IT Audit - CISA (Certified Information System Audit) required other IT certification: Cybersecurity (e.g CISSP, CISM, CCSP/CCSK, CEH), IT Service Management (ITIL foundation). Skills Referential Behavioural Skills : Communication skills - oral written Ability to collaborate / Teamwork Attention to detail / rigor Active listening Adaptability Transversal Skills: Analytical Ability Ability to manage a project Ability to manage / facilitate a meeting, seminar, committee, training Ability to understand, explain and support change Ability to anticipate business / strategic evolution Education Level: Master Degree or equivalent Experience Level At least 10 years

Some of your daily responsibilities would be the following: Analyze current asset management workflows and identify areas for automation. Develop and implement automation scripts and tools using programming languages (e.g., Python, PowerShell). Integrate asset management systems with other enterprise applications. Design and develop automation scripts and tools for identity provisioning, de-provisioning, and access management. Integrate identity management systems with other network infrastructure and applications. Create and maintain documentation for automation processes and scripts. Implement security best practices in automation processes. Ensure compliance with regulatory requirements and internal policies Implement automated discovery and inventory processes. Collaborate with internal teams and external auditors on compliance matters. Leverage industry proven tools to identify and reduce Cyber Risks Assist in Crisis Management, Ransomware Recovery and Business Continuity planning. Identify, investigate and resolve global security breaches / incidents Develop and maintain network and infrastructure security reporting dashboards and scorecards used to measure our Cyber Practice. What were looking for... You are passionate about network security and automation as a career. You are self-driven and motivated, with good communication and analytical skills. Youre a sought-after team member that thrives in a dynamic work environment. You will be working with multiple partners from the business groups, so networking and managing effective working relationships should be your top most priority. You have an understanding of industry trends in all areas of Information Security. You'll need to have some of the skills listed below: Bachelors degree or four or more years of work experience. Four or more years of relevant work experience. Four or more years of experience in network / information security, risk and compliance management. Understanding of network fundamentals, switching, routing protocols, load balancers, web proxies, firewalls and software defined networking solutions. Experience in handling enterprise scale server infrastructure & management Knowledge of Cloud infrastructure and technologies Proficiency in scripting languages (e.g., Python, Bash, PowerShell). Experience with network management tools and protocols (e.g., SNMP, Netconf). Knowledge of database management systems (e.g., SQL, NoSQL). Familiarity with API integrations and web services (REST, SOAP). Excellent analytical and problem-solving skills. Ability to manage multiple tasks and priorities in a fast-paced environment Understanding of security fundamentals Confidentiality, Integrity, Availability, access control, Authentication, Authorization, Auditing secure design concepts like Experience working on IT ticketing systems like JIRA, Service Now and ability to partner and collaborate with other teams in the organization Experience with hosting security awareness campaigns, gamification and bug bounty programs will be an added advantage Strong analytical problem solving, communication and interpersonal skills Passion to stay abreast with emerging technologies, network security trends, tools and techniques. Even better if you have one or more of the following: Masters degree in Computer Science / Information Technology Engineering Industry relevant security certifications Security+, OSCP, CEH, CISSP, GIAC, etc Strong expertise in at least one operating system Window or Linux. Cloud relevant certifications CCSP, CCSK

We are looking for a self-motivated Senior Cybersecurity Analyst to join the R1 Cybersecurity Operations Team. We have a relentless focus on driving results for our customers and enabling them to invest more into patient care; in turn, this allows us to continue to grow our company and your career. The successful candidate must be well-versed in security operations, cyber security tools, intrusion detection, and secured networks. They will serve as an expert and be responsible for providing network and security operations technical analysis, assessment, and recommendations in the areas of real-time security situational awareness, operational network system and applications systems security monitoring. Responsibilities: Monitor various security tools to identify potential incidents, network intrusions, and malware events, etc., to ensure the confidentiality, integrity, and availability of R1s architecture and information systems are protected. Generate trouble tickets and perform initial validation and triage to determine whether incidents are security events using open-source intelligence (OSINT). Review and analyze log files to report any unusual or suspect activities. Utilize incident response use-case workflows to follow established and repeatable processes for triaging and escalating. Follow established incident response procedures to ensure proper escalation, analysis, and resolution of security incidents. Analyze and correlate incident event data to develop preliminary root cause and corresponding remediation strategy. Provide technical support for new detection capabilities, recommendations to improve upon existing tools/capabilities to protect R1s network, and assessments for High Value Assets. Research Threat Intelligence sources on the latest malware, trends, patches to keep the Security Program up to date. Document and maintain SOPs/Runbooks related to investigating security incidents. Perform case management throughout the incident lifecycle for moderately complex security incidents. Understand and assist with compliance and enterprise change management policies and procedures. Attend and participate in cybersecurity projects and the change management process. This includes interacting with business units and technical teams to understand what is coming and how their projects can be more secure from the beginning. Maintain metrics & reports on the status of the R1 cybersecurity operations program. Required Qualifications: A bachelors degree in a technical discipline (e.g., Computer Science, Business Analyst, etc.) A minimum of 3-5 years of professional experience in an IT-related field. Intermediate knowledge of security, monitoring, and networking technologies, tools, protocols, and standards. Intermediate or advanced security, networking, or audit certification or equivalent professional experience in security operations. Knowledge of security policy, programs, process, and metrics. Understanding/Experience on Network Security, Firewall Security, and Web Security (including web application firewalls and proxies). Experience on SIEM, PIM, Content Filtering, and Firewalls. Experience on Change Management Review and Security Audits/Reviews. Understanding/Experience on Linux and pen testing tools. Experience on Investigating, documenting, and reporting on any information security (InfoSec) issues as well as emerging trends. Experience administering Security Tools. Experience Threat Hunting and searching for malicious activity. Strong drive and passion to deliver distinctive end-products, a quick learner with a strong attention to detail and quality. Excellent interpersonal and communication skills. Self-driven, with attention to detail and the ability to think outside the box for solutions to issues. Knowledge of IT Industry standards such as ISO 27001, HIPAA, SOX. Good knowledge of security programs, process, and metrics. Good knowledge of IT Security Infrastructure and related applications and toolsets. Examples include firewalls & Network, Active Directory, DNS. Desired Qualifications: Certification (or ability to obtain certification) in at least one of the following areas: General Security (CISSP), Cloud Security (GCLD, Cloud+, CCSK), and Ethical Hacking (CEH). Experience with advanced cybersecurity tools, network topologies, intrusion detection, and secured networks. In-depth understanding of NIST SP 800-61,?SOC 2 AICPA controls, and frameworks. Recent experience with static and/or dynamic code review process. Experience with forensic data analysis. Leadership experience and qualities.