876 Cloud Security Jobs

About the Role: Grade Level (for internal use): 12 Key Responsibilities: Lead the implementation and maintenance of security best practices to protect sensitive data across our systems. Collaborate with development teams to integrate security into the software development lifecycle (SDLC) and drive security initiatives. Automate deployment processes and manage infrastructure as code using tools such as Terraform or CloudFormation. Monitor system performance and security, responding to incidents and vulnerabilities promptly and effectively. Develop and maintain CI/CD pipelines to ensure efficient and secure software delivery. Conduct security assessments, audits, and penetration testing to identify and mitigate risks. Mentor and guide junior engineers, fostering a culture of continuous learning and best practices in DevSecOps. Collaborate with cross-functional teams to ensure compliance with industry standards and regulations. Qualifications: Proficient in scripting languages and familiar with Java. Strong understanding of cloud security practices and AWS services. Extensive experience with DevOps tools. Knowledge of data security frameworks and compliance standards. Strong leadership, problem-solving skills, and ability to communicate effectively with team members. Why Join Us: Opportunity to lead and work on dynamic and innovative projects. Collaborate with a talented team of engineers and industry experts. Contribute to the growth and security of our organization. About S&P Global Market Intelligence At S&P Global Market Intelligence, a division of S&P Global we understand the importance of accurate, deep and insightful information. Our team of experts delivers unrivaled insights and leading data and technology solutions, partnering with customers to expand their perspective, operate with confidence, andmake decisions with conviction.For more information, visit www.spglobal.com/marketintelligence . Whats In It For You Our Purpose: Progress is not a self-starter. It requires a catalyst to be set in motion. Information, imagination, people, technologythe right combination can unlock possibility and change the world.Our world is in transition and getting more complex by the day. We push past expected observations and seek out new levels of understanding so that we can help companies, governments and individuals make an impact on tomorrow. At S&P Global we transform data into Essential Intelligence, pinpointing risks and opening possibilities. We Accelerate Progress. Our People: Our Values: Integrity, Discovery, Partnership At S&P Global, we focus on Powering Global Markets. Throughout our history, the world's leading organizations have relied on us for the Essential Intelligence they need to make confident decisions about the road ahead. We start with a foundation of integrity in all we do, bring a spirit of discovery to our work, and collaborate in close partnership with each other and our customers to achieve shared goals. Benefits: We take care of you, so you cantake care of business. We care about our people. Thats why we provide everything youand your careerneed to thrive at S&P Global. Health & WellnessHealth care coverage designed for the mind and body. Continuous LearningAccess a wealth of resources to grow your career and learn valuable new skills. Invest in Your FutureSecure your financial future through competitive pay, retirement planning, a continuing education program with a company-matched student loan contribution, and financial wellness programs. Family Friendly PerksIts not just about you. S&P Global has perks for your partners and little ones, too, with some best-in class benefits for families. Beyond the BasicsFrom retail discounts to referral incentive awardssmall perks can make a big difference. For more information on benefits by country visithttps://spgbenefits.com/benefit-summaries Global Hiring and Opportunity at S&P Global: At S&P Global, we are committed to fostering a connected andengaged workplace where all individuals have access to opportunities based on their skills, experience, and contributions. Our hiring practices emphasize fairness, transparency, and merit, ensuring that we attract and retain top talent. By valuing different perspectives and promoting a culture of respect and collaboration, we drive innovation and power global markets. Recruitment Fraud Alert If you receive an email from a spglobalind.com domain or any other regionally based domains, it is a scam and should be reported to reportfraud@spglobal.com. S&P Global never requires any candidate to pay money for job applications, interviews, offer letters, pre-employment training or for equipment/delivery of equipment. Stay informed and protect yourself from recruitment fraud by reviewing our guidelines, fraudulent domains, and how to report suspicious activity here. ----------------------------------------------------------- Equal Opportunity Employer S&P Global is an equal opportunity employer and all qualified candidates will receive consideration for employment without regard to race/ethnicity, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, marital status, military veteran status, unemployment status, or any other status protected by law. Only electronic job submissions will be considered for employment. If you need an accommodation during the application process due to a disability, please send an email to EEO.Compliance@spglobal.com and your request will be forwarded to the appropriate person. US Candidates Only The EEO is the Law Poster http://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf describes discrimination protections under federal law. Pay Transparency Nondiscrimination Provision - https://www.dol.gov/sites/dolgov/files/ofccp/pdf/pay-transp_%20English_formattedESQA508c.pdf ----------------------------------------------------------- 20 - Professional (EEO-2 Job Categories-United States of America), IFTECH202.2 - Middle Professional Tier II (EEO Job Group), SWP Priority Ratings - (Strategic Workforce Planning)

Provides technical expertise, to include addressing and resolving complex technical issues. Demonstrable experience assessing application workloads and technology landscape for Cloud suitability, develop case and Cloud adoption roadmap Expertise on data ingestion, data loading, Data Lake, bulk processing, transformation using Azure services and migrating on-premises services to various Azure environments. Good experience of a range services from the Microsoft Azure Cloud Platform including Infrastructure and Security related services such as Azure AD, IaaS, Containers, Storage, Networking and Azure Security. Good experience of enterprise solution shaping and Microsoft Azure Cloud architecture development including excellent documentation skills. Good understanding of Azure and AWS cloud service offering covering Compute, Storage, Network, WebApp, Functions, Gateway, Clustering, Key Vault, AD. Design and Develop high performance, scalable and secure cloud native applications on Microsoft Azure along with Azure best practices/recommendations. Design, implement and improve possible automations for cloud environments using native or 3rd party tools like Terraform, Salt, Chef, puppet, Databricks, etc. Creating business cases for transformation and modernization, including analysis of both total cost of ownership and potential cost and revenue impacts of the transformation Advise and engage with the customer executives on their Azure and AWS cloud strategy roadmap, improvements, alignment by bringing in industry best practice/trends and work on further improvements with required business case analysis and required presentations Providing Microsoft Azure architecture collaboration with other technical teams Documentation of solutions (e.g. architecture, configuration and setup). Working within a project management/agile delivery methodology in a leading role as part of a wider team. Provide effective knowledge transfer and upskilling to relevant customer personnel to ensure an appropriate level of future self-sufficiency. Assist in transition of projects to Enterprise Services teams. Skills Required: Strong knowledge of Cloud security standards and principles including Identity and Access management in Azure. essential tohave strong, in-depth and demonstrable hands-on experience with the following technologies: Microsoft Azure and its relevant build, deployment, automation, networking and security technologies in cloud and hybrid environments. Azure stack hub , Azure stack HCI/Hyper-V clusters. Microsoft Azure IaaS , Platform As A Service ( PaaS ) products such as Azure SQL, AppServices, Logic Apps, Functions and other Serverless services Understanding of Microsoft Identity and Access Management products such including Azure AD or AD B2C Microsoft Azure Operational and Monitoring tools, including Azure Monitor, App Insights and Log Analytics Microsoft Windows server, System Centr, Hyper-V and storage spaces Knowledge of PowerShell, Git, ARM templates and deployment automation. Hands-on experience on Azure and AWS Cloud native automation framework to perform automation along with experience on Python, Azure services like Databricks, Data factory, Azure functions, Streamsets etc. Hands-on experience with IAC (Infrastructure as Code), Containers, Kubernetes (AKS), Ansible, Terraform, Docker, Linux Sys Admin (RHEL/Ubuntu/Alpine), Jenkins, building CI/CD pipelines in Azure Devops. Ability to define and design the technical architecture with best suited Azure components ensuring seamless end-end workflow from Data source to Power BI/Portal/Dashboards/UI. Skills Good to Have: Experience in building big data solutions using Azure and AWS services like analysis services, DevOps / Databases like SQL server, CosmosDB, Dynamo DB, Mongo DB and web service integration Possession of either the Developing Microsoft Azure Solutions and Architecting Microsoft Azure certifications.

We are seeking a highly experienced Cybersecurity Solutions Specialist to drive technical engagements and solution design for enterprise clients. This role combines strategic presales leadership with hands-on cybersecurity expertise, including L3 support, SOC operations, and threat intelligence. You will act as a trusted advisor to clients, guiding them through complex security challenges and aligning solutions with business needs. Lead technical discovery sessions and design tailored cybersecurity solutions. Deliver product presentations, demos, and Proof of Concepts (PoCs). Respond to RFPs/RFIs and develop comprehensive technical proposals. Evaluate new technologies, tools, and processes for inclusion in solution offerings. Manage and operate security tools including SIEM, IDS/IPS, EDR, DLP, and firewalls. Implement and maintain SOC and ISMS frameworks aligned with ISO 27001. Conduct threat intelligence analysis and stay updated on emerging threats. Perform vulnerability assessments, penetration testing, and system hardening. Analyze and respond to software/hardware vulnerabilities and security log data. Conduct security audits and document incident response procedures. Hands-on experience with EDR, Anti-Virus, Vulnerability Management, Forensics, and Encryption. Experience in cybersecurity presales, solution architecture, or consulting. Strong knowledge of security domains including: Network Security (Firewalls, IPS/IDS) Endpoint Security (EPP, EDR, XDR) Cloud Security (Azure, AWS, GCP) Identity & Access Management (IAM, PAM) Data Protection (DLP, encryption) Security Operations (SIEM, SOAR) Strong scripting skills (Python, PowerShell, Bash) for automation and analysis. Familiarity with MITRE ATT&CK framework and threat intelligence platforms. Experience in cybersecurity, including L3 support and presales roles. Advanced certifications preferred: CISSP, CISM, CEH, OSCP, GCIA, GCIH, CASP, CompTIA Security+ or vendor-specific certifications (e.g., Palo Alto, Fortinet, Microsoft Security). Strong understanding of cyber-attacks, threat vectors, risk management, and incident response. Flexible to work in 24x7 operations and rotational shifts.

SOC Analyst Exciting opportunity at hashtag#Corrohealth Infotech Private Limited in Chennai! We are seeking a SOC Analyst with a minimum of 3 years of experience in SOC. Immediate joiners preferred. Eligibility Criteria: - Minimum 3 years in SOC - Any Degree -WFO(Flexibility shift) Certifications: - Cloud Security (Microsoft) - CEH - CompTIA Security+ (any of these) Required Skills: - Work Experience in security tools like SIEM, Vulnerability and Assessment tools, EDR, Data loss prevention, Threat hunting tools - In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management, etc. - Proficient in Incident Management and Response - Expertise in cyber security, firewalls, network security, application security, cloud security - Knowledge in SOC, HITRUST, ISO certifications, and HIPAA, NIST frameworks How to Apply : Interested candidates can contact : Nikita (HR) Phone: +91 7548867557 Email: Hannah.Nikita@corrohealth.com

FICO (NYSEFICO) is a leading global analytics software company, helping businesses in 100+ countries make better decisions. Join our world-class team today and fulfill your career potential! The Opportunity "As a part of FICOs highly modern and innovative analytics and decision platform, the Senior Software Security Engineer will help shape the next generation security for FICOs Platform. You will address cutting edge security challenges in a highly automated, complex, cloud & microservices driven environments inclusive of design challenges and continuous delivery of security functionality and features to the FICO platform as well as the AI/ML capabilities used on top of the FICO platform" VP of Engineering. What Youll Contribute Secure the design of next next-generation FICO Platform, its capabilities, and services. Provide full-stack security architecture design from cloud infrastructure to application features for FICO customers. Work closely with product managers, architects, and developers on implementing the security controls within products. Develop and maintain Kyverno policies for enforcing security controls in Kubernetes environments. Collaborate with platform, DevOps, and application teams to define and implement policy-as-code best practices. Contribute to automation efforts for policy deployment, validation, and reporting. Stay current with emerging threats, Kubernetes security features, and cloud-native security tools. Define required controls and capabilities for the protection of FICO products and environments. Build & validate declarative threat models in a continuous and automated manner. Prepare the product for compliance attestations and ensure adherence to best security practices. What Were Seeking 10+ years of experience in architecture, security reviews, and requirement definition for complex product environments. Strong knowledge and hands-on experience with Kyverno and OPA/Gatekeeper (optional but a plus). Familiarity with industry regulations, frameworks, and practices. For example, PCI, ISO 27001, NIST, etc. Experience in threat modeling, code reviews, security testing, vulnerability detection, attacker exploit techniques, and methods for their remediation. Hands-on experience with programming languages, such as Java, Python, etc. Experience in deploying services and securing cloud environments, preferably AWS. Experience deploying and securing containers, container orchestration, and mesh technologies (such as EKS, K8S, ISTIO). Experience with Crossplane to manage cloud infrastructure declaratively via Kubernetes. Certifications in Kubernetes or cloud security (e.g., CKA, CKAD, CISSP) are desirable. Proficiency with CI/CD tools (e.g., GitHub Actions, GitLab CI, Jenkins, Crossplane). Independently drive transformational security projects across teams and organizations. Experience with securing event streaming platforms like Kafka or Pulsar. Experience with ML/AI model security and adversarial techniques within the analytics domains. Hands-on experience with IaC (Such as Terraform, Cloudformation, Helm) and with CI/CD pipelines (such as Github, Jenkins, JFrog). Our Offer to You An inclusive culture strongly reflecting our core valuesAct Like an Owner, Delight Our Customers and Earn the Respect of Others. The opportunity to make an impact and develop professionally by leveraging your unique strengths and participating in valuable learning experiences. Highly competitive compensation, benefits and rewards programs that encourage you to bring your best every day and be recognized for doing so. An engaging, people-first work environment offering work/life balance, employee resource groups, and social events to promote interaction and camaraderie. Why Make a Move to FICO At FICO, you can develop your career with a leading organization in one of the fastest-growing fields in technology today Big Data analytics. Youll play a part in our commitment to help businesses use data to improve every choice they make, using advances in artificial intelligence, machine learning, optimization, and much more. FICO makes a real difference in the way businesses operate worldwide Credit Scoring FICO Scores are used by 90 of the top 100 US lenders. Fraud Detection and Security 4 billion payment cards globally are protected by FICO fraud systems. Lending 3/4 of US mortgages are approved using the FICO Score. Global trends toward digital transformation have created tremendous demand for FICOs solutions, placing us among the worlds top 100 software companies by revenue. We help many of the worlds largest banks, insurers, retailers, telecommunications providers and other firms reach a new level of success. Our success is dependent on really talented people just like you who thrive on the collaboration and innovation thats nurtured by a diverse and inclusive environment. Well provide the support you need, while ensuring you have the freedom to develop your skills and grow your career. Join FICO and help change the way business thinks! Learn more about how you can fulfil your potential at www.fico.com/Careers FICO promotes a culture of inclusion and seeks to attract a diverse set of candidates for each job opportunity. We are an equal employment opportunity employer and were proud to offer employment and advancement opportunities to all candidates without regard to race, color, ancestry, religion, sex, national origin, pregnancy, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. Research has shown that women and candidates from underrepresented communities may not apply for an opportunity if they dont meet all stated qualifications. While our qualifications are clearly related to role success, each candidates profile is unique and strengths in certain skill and/or experience areas can be equally effective. If you believe you have many, but not necessarily all, of the stated qualifications we encourage you to apply. Information submitted with your application is subject to theFICO Privacy policy at https://www.fico.com/en/privacy-policy

FICO (NYSEFICO) is a leading global analytics software company, helping businesses in 100+ countries make better decisions. Join our world-class team today and fulfill your career potential! The Opportunity "As a part of FICOs highly modern and innovative analytics and decision platform, the Senior Software Security Engineer will help shape the next generation security for FICOs Platform. You will address cutting edge security challenges in a highly automated, complex, cloud & microservices driven environments inclusive of design challenges and continuous delivery of security functionality and features to the FICO platform as well as the AI/ML capabilities used on top of the FICO platform" VP of Engineering. What Youll Contribute Secure the design of next next-generation FICO Platform, its capabilities, and services. Provide full-stack security architecture design from cloud infrastructure to application features for FICO customers. Work closely with product managers, architects, and developers on implementing the security controls within products. Develop and maintain Kyverno policies for enforcing security controls in Kubernetes environments. Collaborate with platform, DevOps, and application teams to define and implement policy-as-code best practices. Contribute to automation efforts for policy deployment, validation, and reporting. Stay current with emerging threats, Kubernetes security features, and cloud-native security tools. Define required controls and capabilities for the protection of FICO products and environments. Build & validate declarative threat models in a continuous and automated manner. Prepare the product for compliance attestations and ensure adherence to best security practices. What Were Seeking 10+ years of experience in architecture, security reviews, and requirement definition for complex product environments. Strong knowledge and hands-on experience with Kyverno and OPA/Gatekeeper (optional but a plus). Familiarity with industry regulations, frameworks, and practices. For example, PCI, ISO 27001, NIST, etc. Experience in threat modeling, code reviews, security testing, vulnerability detection, attacker exploit techniques, and methods for their remediation. Hands-on experience with programming languages, such as Java, Python, etc. Experience in deploying services and securing cloud environments, preferably AWS Experience deploying and securing containers, container orchestration, and mesh technologies (such as EKS, K8S, ISTIO). Experience with Crossplane to manage cloud infrastructure declaratively via Kubernetes. Certifications in Kubernetes or cloud security (e.g., CKA, CKAD, CISSP) are desirable Proficiency with CI/CD tools (e.g., GitHub Actions, GitLab CI, Jenkins, Crossplane, ). Independently drive transformational security projects across teams and organizations. Experience with securing event streaming platforms like Kafka or Pulsar. Experience with ML/AI model security and adversarial techniques within the analytics domains. Hands-on experience with IaC (Such as Terraform, Cloudformation, Helm) and with CI/CD pipelines (such as Github, Jenkins, JFrog). Our Offer to You An inclusive culture strongly reflecting our core valuesAct Like an Owner, Delight Our Customers and Earn the Respect of Others. The opportunity to make an impact and develop professionally by leveraging your unique strengths and participating in valuable learning experiences. Highly competitive compensation, benefits and rewards programs that encourage you to bring your best every day and be recognized for doing so. An engaging, people-first work environment offering work/life balance, employee resource groups, and social events to promote interaction and camaraderie. Why Make a Move to FICO At FICO, you can develop your career with a leading organization in one of the fastest-growing fields in technology today Big Data analytics. Youll play a part in our commitment to help businesses use data to improve every choice they make, using advances in artificial intelligence, machine learning, optimization, and much more. FICO makes a real difference in the way businesses operate worldwide Credit Scoring FICO Scores are used by 90 of the top 100 US lenders. Fraud Detection and Security 4 billion payment cards globally are protected by FICO fraud systems. Lending 3/4 of US mortgages are approved using the FICO Score. Global trends toward digital transformation have created tremendous demand for FICOs solutions, placing us among the worlds top 100 software companies by revenue. We help many of the worlds largest banks, insurers, retailers, telecommunications providers and other firms reach a new level of success. Our success is dependent on really talented people just like you who thrive on the collaboration and innovation thats nurtured by a diverse and inclusive environment. Well provide the support you need, while ensuring you have the freedom to develop your skills and grow your career. Join FICO and help change the way business thinks! Learn more about how you can fulfil your potential at www.fico.com/Careers FICO promotes a culture of inclusion and seeks to attract a diverse set of candidates for each job opportunity. We are an equal employment opportunity employer and were proud to offer employment and advancement opportunities to all candidates without regard to race, color, ancestry, religion, sex, national origin, pregnancy, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. Research has shown that women and candidates from underrepresented communities may not apply for an opportunity if they dont meet all stated qualifications. While our qualifications are clearly related to role success, each candidates profile is unique and strengths in certain skill and/or experience areas can be equally effective. If you believe you have many, but not necessarily all, of the stated qualifications we encourage you to apply. Information submitted with your application is subject to theFICO Privacy policy at https://www.fico.com/en/privacy-policy

Company Overview With 80,000 customers across 150 countries, UKG is the largest U.S.-based private software company in the world. And we're only getting started. Ready to bring your bold ideas and collaborative mindset to an organization that still has so much more to build and achieveRead on. Here, we know that you're more than your work. That's why our benefits help you thrive personally and professionally, from wellness programs and tuition reimbursement to U Choose "” a customizable expense reimbursement program that can be used for more than 200+ needs that best suit you and your family, from student loan repayment, to childcare, to pet insurance. Our inclusive culture, active and engaged employee resource groups, and caring leaders value every voice and support you in doing the best work of your career. If you're passionate about our purpose "” people "”then we can't wait to support whatever gives you purpose. We're united by purpose, inspired by you. Demonstrate and promote Cloud Security for serverless architecture including AWS Lambda, Google Cloud Functions, and Azure Functions Ensure secure configuration of cloud networking components (VPCs, subnets, gateways, etc.), enforcing the principle of least privilege in cloud environments. Securing container technology such as Kubernetes and Docker Harden compute resources (VMs, containers, etc.) and establish secure runtime environments. Automation DDoS Mitigation & Web Application Firewall (WAF) Management Provide security expertise and guidance to development and engineering teams Define technical control requirements, evaluate existing tool effectiveness, and propose solutions to enhance the company's cloud security posture Acts as a consultant on best practices to internal customers to ensure processes are embedded to ensure compliance to security standards 3-5 years of combined experience as a Software Engineer, Security Engineer or a Cloud Security Engineer At least 3 years of experience building and architecting on Cloud-based Platforms In-depth knowledge of cloud security principles, cloud-native security tools (e.g., AWS IAM, Security Hub, Azure Sentinel), and practices like encryption, IAM, and micro-segmentation. Detailed understanding of Cloud Security fundamentals Professional experience architecting/operating solutions and security frameworks built on AWS, Azure, or Google Cloud and virtualization technologies, such as Kubernetes, Docker and OpenStack The ability to design, install and maintain security controls over multi-cloud platforms 3-5 years of relevant experience working with technologies such as Ansible, Terraform, RegEx, Chef Comfortable working with at least one scripting Languages such as Python, Bash, PowerShell, batch scripts. Experience managing and provisioning infrastructure using Infrastructure as Code tools. Experience with Cloud Security Posture Management tools. Experience providing security threat assessments and technical guidance for network architecture design and security considerations. Experience communicating effectively across internal and external organizations, for complex mission-critical solutions. Outstanding written and verbal communication skills Bachelor's degree or Master's degree in Information Systems, Information Security, or related fields; preferred but not required. Certification in any of the following a plusGoogle Professional Cloud Security Engineer; AWS Cloud Architect; Azure Security Engineer Associate; CISSP Where we're going UKG is on the cusp of something truly special. Worldwide, we already hold the #1 market share position for workforce management and the #2 position for human capital management. Tens of millions of frontline workers start and end their days with our software, with billions of shifts managed annually through UKG solutions today. Yet it's our AI-powered product portfolio designed to support customers of all sizes, industries, and geographies that will propel us into an even brighter tomorrow! Disability Accommodation UKGCareers@ukg.com

Were looking for a hands-on architect to design, deploy, and manage Kubernetes clusters, ensuring high availability and performance. Youll lead the full lifecycle management of databasesautomating installs, upgrades, backups, and decommissionswhile actively contributing to open-source communities. This role involves driving security excellence by analyzing and remediating vulnerabilities (CVEs), conducting in-depth assessments using tools like Burp Suite and Anchore, and ensuring compliance with industry standards. Youll optimize workloads for resilience, troubleshoot complex issues across OS, containers, and databases, and deliver production-ready solutions. Strong debugging, observability, and collaboration skills are essential. You have: Bachelor's or Master's Engineering degree or equivalent with Over 12 years of experience in databases and Kubernetes with deep expertise in architecture, automation, and secure deployments; expert in MariaDB, Cassandra, and Redis, including tuning and troubleshooting in production. Strong programming skills in Python for automation and tooling, with hands-on experience in containerized environments using Docker, Kubernetes, Helm charts, and custom Operators. Proven track record in Microservices architecture, container orchestration, virtualization, and DevOps practices, including CI/CD pipeline development and deployment automation. Advanced knowledge of security protocols (TLS, SSH), encryption standards, and secure design principles, with experience in threat modeling, system hardening, and security-by-design methodologies. Skilled in security assessments and tooling, including vulnerability scanning, penetration testing, and robustness/DoS analysis using tools such as Anchore, Tenable, Netsparker, Codenomicon, and Nmap; familiarity with SBOM generation and integration in CI/CD workflows. It would be nice if you also had: Working knowledge of Infrastructure as Code tools like Terraform or Pulumi, along with GitOps workflows Familiarity with Prometheus, Grafana, ELK/EFK stacks, or OpenTelemetry for end-to-end observability, especially for performance tuning and incident response in distributed systems Design, deploy, and manage scalable, highly available MariaDB, Cassandra, and Redis databases within Kubernetes clusters, while continuously optimizing performance and reliability. Automate end-to-end lifecycle management workflowsincluding install, upgrade, backup, recovery, and decommissionwhile contributing technical improvements to open-source communities. Lead the response to security vulnerabilities across database stacks, collaborating with security and engineering teams to analyze, prioritize, and remediate CVEs. Conduct in-depth security assessments using tools like Burp Suite, Anchore, and Codenomicon, and map findings to risk levels to ensure compliance with security standards. Collaborate with cross-functional teams and customers to deliver secure, production-ready database solutions, troubleshoot complex issues across the stack, and stay current with trends in Kubernetes, OSS, and cloud security.

6-8 Years experience on creating Design documents, Implementation/ Change Management Plans or Optimization of reports (beyond day-to-day routine operations) is a must. Expertise in Implement &/or design (design is must) of one of the following - Priority is Firewall and good if candidates have hands on exp on Identity solutions, Email Security, Web Security/Proxy, Cloud Security. Cisco ISE is a plus

You will be part of MantaRay SON (Self-Organizing Networks) which has been ranked as #1 for the last 9 consecutive years. You will be unlocking your innovation in Cloud Native Software through your deep understanding of microservices, containers, Kubernetes, cloud platforms, cloud security and DevOps practices (e.g., RedHat OpenShift AWS, Azure, Google Cloud). You will be responsible for building scalable, high-performance and resilience solutions leveraging modern cloud architectures and tools. You have: B.E/B.Tech/M.E/M.Tech/MCA with 58 years of hands-on experience in cloud native development. Experience in designing and developing applications using Python/Java. Experience on Linux, Linux Containers, Linux Namespaces, Linux CGroups and large-scale production systems. Hands-on containerization using Docker, Kubernetes and Mesos. Experience with Container Management, Component Life Cycle Management, Elastic Stack, Logstash, ETCD, KeyCloak, Kafka Messaging. It would be nice if you also had: Exposure to cloud native architecture, cloud security and cloud patterns. Experience with Minikube, HELM, Swagger and API Gateway. Exposure to Cassandra/MariaDB/Mongo D. You will be part of a development team that is responsible for developing and delivering cloud-native applications. Responsible for requirement gathering and development as per the component design based on cloud native principles. Design and implement cloud native microservices architecture in varying cloud environments. Research, learn new methodologies and technologies and implement them in the project to continuously improve and optimize the design, code, build, deploy, test lifecycle. Responsible for the supporting efforts that improve operational performance and availability of cloud-native applications. Provide technical support for the day-to-day operations of critical Cloud Services & applications. You will be able to learn the Telecom domain especially Radio domain.

You will be part of MantaRay SON (Self-Organizing Networks) which has been ranked as #1 for the last 9 consecutive years. You will be unlocking your innovation in Cloud Native Software through your deep understanding of microservices, containers, Kubernetes, cloud platforms, cloud security and DevOps practices (e.g., RedHat OpenShift AWS, Azure, Google Cloud). You will be responsible for building scalable, high-performance and resilience solutions leveraging modern cloud architectures and tools. You have: B.E/B.Tech/M.E/M.Tech/MCA with 5+ years of hands-on experience in cloud native development. Experience in designing and developing applications using Python/Java. Experience on Linux, Linux Containers, Linux Namespaces, Linux CGroups and large-scale production systems. Hands-on containerization using Docker, Kubernetes and Mesos. Experience with Container Management, Component Life Cycle Management, Elastic Stack, Logstash, ETCD, KeyCloak, Kafka Messaging. It would be nice if you also had: Exposure to cloud native architecture, cloud security and cloud patterns. Experience with Minikube, HELM, Swagger and API Gateway. Exposure to Cassandra/MariaDB/Mongo D. You will be part of a development team that is responsible for developing and delivering cloud-native applications. Responsible for requirement gathering and development as per the component design based on cloud native principles. Design and implement cloud native microservices architecture in varying cloud environments. Research, learn new methodologies and technologies and implement them in the project to continuously improve and optimize the design, code, build, deploy, test lifecycle. Responsible for the supporting efforts that improve operational performance and availability of cloud-native applications. Provide technical support for the day-to-day operations of critical Cloud Services & applications. You will be able to learn the Telecom domain especially Radio domain.

The Applied R&D Engineer conducts target-oriented research to directly apply findings to the specification, design, further development, and incremental improvement of products, services, systems, tools, processes, etc. Integrates, verifies, tests, and modifies SW / HW / system components and capitalises on innovative solutions to meet particular requirements and specifications. You have: Bachelor's or Masters degree in Electronics, Computer Science, Electrical Engineering, or a related field with 8+ years of work experience. Experience in cloud-native architecture, cloud security, and cloud design patterns. Expertise in container orchestration using Kubernetes, Helm, and OpenShift. Experience with API Gateway, Kafka Messaging, and Component Life Cycle Management. Expertise in Linux platform, including Linux Containers, Namespaces, and CGroups. Experience in scripting languages Perl / Python and CI/CD tools Jenkins, Git, Helm, and Ansible. It would be nice if you also had: Familiarity with open-source PaaS environments like OpenShift. Knowledge of Elastic Stack, Keycloak authentication, and security best practices. You will design and develop software components based on cloud-native principles and leading PaaS platforms. You will implement scalable, secure, and resilient microservices and cloud-based applications. You will develop APIs and integrate with API gateways, message brokers (Kafka), and containerized environments. You will apply design patterns, domain-driven design (DDD), component-based architecture, and evolutionary architecture principles. You will lead the end-to-end development of features and EPICs, ensuring high performance and scalability. You will define and implement container management strategies, leveraging Kubernetes, OpenShift, and Helm

Job Summary: We are looking for an experienced Security Engineer to lead and manage the end-to-end security posture of our hybrid infrastructure, which includes AWS cloud , on-premise servers (Windows & Ubuntu) , Cloudflare edge services , ELK and SQL databases , and Sophos hardware firewall . The ideal candidate will proactively build, monitor, and optimize security frameworks across infrastructure, applications, and data layers. Key Responsibilities: Design and enforce security controls across cloud (AWS) and on-premise environments. Configure and manage Sophos hardware firewalls for network protection and segmentation. Secure and monitor web traffic, APIs, and DNS via Cloudflare WAF, rate limiting, and bot management . Implement and maintain IAM policies , S3 encryption , VPC configurations , and MFA in AWS. Harden servers running Windows and Ubuntu , applying regular patches and security baselines. Conduct security reviews for ELK and SQL databases , focusing on access control, backups, and encryption. Develop and automate audit logging, intrusion detection , and real-time alerting across systems. Integrate security into CI/CD pipelines using GitHub Actions, Terraform, etc. Work closely with DevOps and engineering teams to conduct threat modeling and risk assessments. Respond to security incidents , perform root cause analysis, and lead remediation efforts . Ensure compliance with ISO 27001 , GDPR , and internal data protection policies. Required Skills & Tools: Strong hands-on experience with AWS Security best practices (IAM, KMS, CloudTrail, GuardDuty). Knowledge of Cloudflare features like WAF, DNSSEC, SSL, Zero Trust, and traffic routing. Proficiency in managing Windows Server and Linux (Ubuntu) security configurations. Practical knowledge of Sophos firewall policies, VPNs, and IPS. Experience with ELK Stack security (user authentication, RBAC, log masking) and SQL database hardening . Familiarity with log aggregation, SIEM tools , and endpoint security solutions . Ability to automate tasks with Python, Bash , or PowerShell. Good understanding of network protocols, port scanning , and packet inspection . Experience in penetration and brute force testing , with ability to guide teams. Preferred Qualifications: Certifications: AWS Security Specialty, CEH, CISSP, CISM, OSCP . Experience working with hybrid environments (cloud + on-premise). Exposure to compliance standards like SOC 2, GDPR, ISO 27001. Familiarity with DevSecOps pipelines , vulnerability scanning, and configuration drift detection .

Position Specification Global Information Security Architect Johnson Controls, Inc. Private and Confidential Johnson Controls Johnson Controls, Inc. (NYSE: JCI) is a global diversified industrial leader employing 170,000 employees serving customers in more than 150 countries with products, services and solutions on a B2B basis to a wide range of market segments. The company operates across three major business units: Automotive Experience; Power Solutions; and Building Efficiency. Automotive Experience generates approximately $20bn of revenue annually and designs and produces automotive seating and interiors systems that help make the driving experience more comfortable, safe and enjoyable. Building Efficiency provides products and services which enhance the comfort, safety and energy efficiency of buildings. Through its Power Solutions business, Johnson Controls is the worlds leading supplier of batteries used in automobiles, including conventional cars and trucks. In fiscal 2014, Johnson Controls generated $42 billion in revenues. The Role Hosted in Pune, India, Senior Cyber Security Engineer is a position, part of a global team, reporting into the Cyber Security Engineering Manager with responsibility of assisting in development of Processes, Standards, and Designs of JCIs Cyber Security Infrastructure Working closely with Project Managers, Global Operations and Technology groups, Business Unit IT delivery organizations, the identity management, and other infrastructure architecture members when creating and implementing Cyber Security Infrastructure. Ensures compliance with established architecture direction and standards. Works with Service Management and stakeholders to collect functional requirements and ensure the most effective solution is used. Maintains an understanding of relevant industry standards and directions to ensure key vendors, suppliers and service partners development plans include support for same. Primary Responsibilities The responsibilities of the Information Security Global Architecture Senior Manager include, but are not limited to: Provide team support with validating security controls Ensures that third party solutions used within Cyber Security follow all Johnson Controls standards. Acts as an internal consultant to business units and Infrastructure IT. Provides management with accurate and complete status information. Provide technical input into security related standards, technology roadmaps, support requirements and management of infrastructure designs Stay abreast of current and evolving technologies in Cyber Security. Adheres to all current changes and problem management policies and procedures. Candidate Profile The successful candidate will be a passionate information security professional with the ability to communicate to different business and Project managers. The candidate will be able to execute the Cyber Security Engineering management strategy defined by leaders. The candidate will demonstrate drive, intelligence, maturity, and energy and will be a proven team leader and security strategist. A minimum bachelors degree in computer engineering, computer security or computer science discipline or equivalent experience 10 years of Cyber Security related experience working with teams in security operations, incident analysis, developing applications, and security applications. Experience with validation security tools. Experience with Security features, assessments, and validation of security controls for both Linux and Windows based systems Familiarity with network security methodologies, tactics, techniques, and procedures. Experience performing security/vulnerability reviews of network environments. Experience of network security architecture, understanding of the TCP/IP protocol, and remote access security techniques/products. Experience with enterprise anti-virus/malware solutions, virus outbreak management, and the ability to differentiate virus activity from directed attack patterns. Candidate must be able to react quickly, decisively, and deliberately in high stress situations. Strong verbal/written communication and interpersonal skills are required to document and communicate findings, escalate critical incidents, to technical and non-technical audiences at different seniority levels and interact with customers. Highly motivated individual with the ability to self-start, prioritize, multi-task and work in a global team setting. Ability to create and maintain good business relationships with counter parts, customers, and external entities to achieve the security operations management goals Ability to maintain a high level of discretion and personal integrity in the exercise of duties, including the ability to professionally address confidential matters Familiarity of regulatory compliance requirements (PCI-DSS, HIPAA, FISMA, SOX, etc.) Required Certifications 10+ years Certification Information Systems Security Professional (CISSP) At least 5+ years Certification (or similar) in one of: Certified Information Security Manager (CISM) Information Systems Security Architecture Professional (ISSAP) Certified Ethical Hacker (CEH) Cisco Certified Network Associate Security (CCNA Security) Certificate of Cloud Security Knowledge (CCSK) Certified Cloud Security Professional (CCSP) This job description indicates the general nature and level of work expected of the incumbent. It is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities required of the incumbent. Incumbent may be required to perform other related duties.

Key Responsibilities: Perform in-depth penetration testing, vulnerability assessments, and security reviews of applications, infrastructure, and networks. Identify, exploit, and document security vulnerabilities across systems and provide remediation recommendations. Simulate sophisticated attacks to test the strength of security controls and identify potential areas of compromise. Collaborate with development, infra, and DevOps teams to integrate security into the development lifecycle and Infrastructure-as-Code (IaC) security. Develop comprehensive security test plans, methodologies, and tools to ensure effective assessment of systems. Create detailed reports that outline vulnerabilities, risks, and recommended mitigations. Perform threat modeling and risk assessments to prioritize testing efforts. Monitor network traffic for threats and respond to security incidents. Ensure security best practices in Cloud environments, security controls for cloud workloads, IAM policies, and network security. Monitor and respond to cloud security incidents using SIEM and cloud-native security tools. Integrate and automate security testing and compliance checks into CI/CD pipelines using tools like SAST, DAST, and IAST . Experience Range: 3 - 5 years Educational Qualifications: -B.Tech/B.E in Computers , -B.Tech/B.E in IT Job Responsibilities: Required Skills & Qualifications: Bachelor's degree in Computer Science, Cybersecurity, or related field . 2-3 years of experience in cybersecurity with a focus on Penetration testing or Ethical Hacking , Application Security, Cloud Security, and DevSecOps . Experience with security tools such as Burp Suite, Metasploit, Nessus, Wireshark, SonarQube, AWS WAF, Google WAF, Kali Linux, and other vulnerability scanning tools, etc. Knowledge of SIEM , EDR , NIST, CIS, and OWASP security frameworks. Proficiency in scripting (Python, Bash, PowerShell) for security automation. Industry certifications like CEH, Security+, AWS/GCP Security, or any DevSecOps-related certification (preferred but not mandatory). Excellent written and verbal communication skills to effectively report vulnerabilities and collaborate with stakeholders.Qualifications: Bachelors degree in computer science . Skills Required: DevOps , Linux , PHP , Python

: Job Title- ITAO - Directory Services, VP Location- Pune, India Role Description You will be working in the Chief Security Office Identity & Authentication Services with a focus on Directory Service-related products for Deutsche Bank globally. Directory Services own the workforce Identity Providers that consist of Active Directory, Entra Identity and Google Cloud Identity. Although the existing team have coding skills and are deploying a CICD pipeline, our journey to SRE is far from complete, you will bring your experience in this field to help shape our teams SRE future. Security and stability are our core focus on the solutions we provide. What well offer you 100% reimbursement under childcare assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Accident and Term life Insurance Your key responsibilities Analyse, Automate, deploy, and maintain Entra Identity related components within our E5 estate. Private Preview investigation and MS product group interactions to shape their final releases to cover DBs business requirements. Perform SRE function(s) - availability, latency, performance, efficiency, change management, monitoring, emergency response, and capacity planning of Entra service(s) CICD Pipelines, workflows, Action, and enhancements (Application integration pipeline for example) Identify and manage the risks and issues associated with the IDP(s) and escalate appropriately. Document associated solutions. Help up-skill existing team re code\SRE. Support internal audits and investigation associated with the IDPs Design & Own solutions from inception to release, including associated documentation. 3rd line support for operational incidents (rare) Your skills and experience Expert knowledge of Entra Identity Expert knowledge of SRE (Site Reliability Engineering) GitHub Workflows Actions CICD pipelines Active Directory experience is very advantageous. Bachelors degree in computer science or comparable and at least more than 3 years hands-on experience working with AAD\EID Experience in cloud security. Advanced\Expert in IaC (infrastructure As Code) Advanced\Expert GitHub PowerShell/Graph/YAML Terraform/Stanzer/HCL MS Power Platform (App-Automate-Logic) experience (would be an advantage) You have experience working in dynamic, structured teams Experience\knowledge in Audit and Regulatory Internal Compliance Experience\knowledge in Infrastructure and Product Logistics Disaster Recovery. Technology Road Map Compliance. Migration and decommission. Infrastructure Configuration and Design. Knowledge of SDLC and Process Management Incident- and Problem Management, Unplanned maintenance. Operational Readiness. Knowledge in Vendor Management Scheduling regular catch-up meeting with vendor Knowledge in Data & Records Management GDPR CCSP, CISSP or other related industry qualifications are advantageous.Language skillsExcellent spoken and written communication skills in English, German language skills welcome. How well support you

: Job Title - Regional Head of Engineering (Divisional) Location - Bangalore or Pune Role Description The TDI Engineering Platforms and Practice group own the governance standards for SDLC across the entire firm. Our tools and platforms are used by every single development team. Our mission is to provide a frictionless software delivery experience whilst safeguarding the integrity of the software supply chain. That means we both define governance and tooling to make it easy for teams todemonstratecompliance to those standards. We are excited to be embarking on a journey of transformation, providing a new governance landscape for our customers and require a Regional Head of Engineering (India) to help achieve our goals. We are hiring a Regional Head of Engineering in India to oversee all application development in region and development teams. Our development teams are focused on building out our committed target state strategy and existing BAU commitments. We require a senior developer and engineering manager to coordinate and oversee these activities to ensure individual teams are aligned and look for architectural reuse opportunities. A key member of the global leadership team, thesuccessfulcandidate will work directly with the group CIO and Chief Engineer to co-design key elements of our target state as well as manage the teams to ensure delivery, ensuring the leadership team have visibility. What well offer you 100% reimbursement under childcare assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Accident and Term life Insurance Your key responsibilities Regional accountability for design, development and delivery and operation of our application development portfolio, oversight of multiple engineering teams Architectural design and execution input into our target state as well as existing product suite Broad and deep understanding of our products and coordinating several teams and applications to deliver a consistent (developer) experience to our customers Driving engineering standards, improvements and best practice throughout the 60+ application engineering group Driving large scale recruitment to attract and retain world class developers Driving cultural change towards the generative culture across the department (160+) and firm more broadly (36k+ people) Pastoral care and ensuring personal development needs are met for engineers Coordinating training and objective setting ensuring alignment to the groupsstrategies Your skills and experience Demonstrable experience leading multiple development teams Hands on polyglot software development experience (Java/Kotlin/Scala or similar) String architectural and design skills including relevant experience with cloud technologies, agile and DevOps practices, database technologies and platforms Proven track record applying modern standards and rigor to engineering teams, coaching and mentoring towards measurable results. Familiarity of DORA, SPACE and related research a plus Strong communicator and strategist, able to work at senior level and at the deep technical level Strong organization skills, project and programme management experience How well support you

Cloud Solutions Architect Location: Bengaluru, Job Type: Full-Time About the Job The Cloud Solutions Architect will play a pivotal role in designing, implementing, and optimizing cloud-based solutions for diverse business needs. This role emphasizes expertise in Microsoft Azure services while leveraging capabilities in AWS and OpenStack to deliver robust and scalable cloud solutions. As a key technical consultant, the architect will ensure that solutions meet client objectives, integrate with existing infrastructure, and adhere to best practices in security and cost optimization. This position is based on-site in Bengaluru. Role Description The Cloud Solutions Architect will: - Collaborate with sales, Product and core engineering teams to understand client requirements and recommend tailored cloud solutions. - Design and implement cloud architectures leveraging Microsoft Azure as the primary platform , with additional focus on AWS and OpenStack for hybrid or multi-cloud scenarios. - Lead cloud migration projects, ensuring seamless integration with on-premises systems or private cloud environments. - Conduct proofs of concept (POC) to validate solutions and address client-specific use cases. - Act as a trusted advisor to clients, explaining the benefits of cloud services and ensuring alignment with their technical and business goals. - Ensure all cloud solutions adhere to robust security standards and best practices. - Monitor and optimize cloud deployments to enhance performance, scalability, and cost efficiency. Responsibilities - Assess customer needs and design solutions emphasizing Azure services. - Provide expert guidance on cloud migration strategies, including hybrid and multi-cloud deployments. - Develop secure and scalable cloud architectures aligned with best practices. - Collaborate with internal teams and clients to ensure solutions align with business objectives. - Stay updated on emerging trends in Azure , AWS , and OpenStack to provide cutting-edge solutions. - Support compliance and governance by integrating industry standards into cloud solutions. Must-Have Skills Cloud Technology Experience - Microsoft Azure Expertise: Proven experience designing and implementing solutions using Azure services (e.g., Azure App Services, Azure Functions, Azure Kubernetes Service). - Architecture Design: Proficiency in creating scalable, secure, and cost-effective cloud architectures. - Cloud Security: In-depth knowledge of cloud security principles and best practices. - Cost Optimization: Expertise in designing cost-efficient cloud architectures. - Migration Expertise: Hands-on experience with cloud migration and hybrid environments. Good-to-Have Skills - AWS Knowledge: Familiarity with AWS core services like EC2, S3, and RDS for multi-cloud solutions. - OpenStack Experience: Understanding of OpenStack for private cloud deployment and hybrid integration. - DevOps Knowledge: Familiarity with CI/CD pipelines, containerization, and related tools. - Scripting and Automation: Proficiency in Python, Bash, or PowerShell. - Infrastructure as Code (IaC): Hands-on experience with tools like Terraform or ARM templates. - Compliance and Governance: Knowledge of regulatory frameworks such as GDPR, HIPAA, or ISO standards. - Application Architecture: Mastery in modern application architectures such as multi-tenancy and microservices.. Qualifications Experience: - Cloud Technology: 3+ years of hands-on experience in cloud technologies, with a focus on Azure , AWS , and OpenStack. - Full-Stack : 4+ years of experience in designing and developing modern applications with multi-tenancy and microservices architecture including back-end, front-end, and integration with cloud-based platforms.

Skills required: Bachelor's degree or higher in computer science, engineering, or related field 12+ years of professional experience in IT, with a focus on DevOps, infrastructure, Public Cloud, and software development. 5+ years of people management experience. 5+ years of hands-on experience in cloud platforms (AWS/Azure required). Certification is a plus. Proven experience in leading and managing DevOps teams. Hands-on experience with Cloud (Public & Private) cost optimization. Experience operating complex multi-datacenter, multi-cluster environment and a strong understanding of multi-tenancy and security. Experience in implementing Disaster Recovery and Business Continuity. Advanced experience with enterprise-level software delivery and release management practices. Delivery experience in solutioning, implementing or migrating enterprise workloads to Public Cloud. Knowledge of emerging technologies, various platforms, tools and products and their respective applications. KNOWLEDGE & SKILLS Strong analytical and problem-solving skills Strong technical leadership, leading by example, exhibiting patience and determination. Strong knowledge of SDLC, DevOps principles, practices, and methodologies. Ability to create structure and drive progress with an action-orientation/drive must thrive in an ambiguous/dynamic environment. Deep understanding expertise of major public cloud platforms (AWS, Azure, GCP), architecture, and engineering at scale Strong experience with DevOps technologies, cloud-based provisioning, monitoring, and troubleshooting in AWS/Azure. Expertise in containerization and orchestration tools (e.g., Docker, Kubernetes). Proficiency in Config Management, IaaC and scripting using Chef/Ansible, Terraform, Shell, PowerShell, and/or Python. Solid understanding of networking concepts (Routing, DNS, Load Balancing, Firewall), including CDN. Ability to manage large Cloud infrastructure operations including inventory and Cloud cost management. Expert in Capacity Planning Design, Cost optimization, and Effort estimations. Knowledge of latest security best practices (OWASP, CBE, NIST, etc.), and good understanding of security protocols (TLS, OAuth, etc.). Expertise in designing HA, DR, Backup, and retention architectures on cloud platforms. Primary responsibilities: Strategizing, designing, and implementing highly secure, performant & efficient solutions on Azure Cloud. Understand and recommend the right Cloud services (IaaS, PaaS, or SaaS) for the business applications. Security Hardening of cloud infrastructure application/web server against known/unknown vulnerabilities. Leverage CI best practices and tooling of Azure Cloud. High Availability & Reliability: Design and implement fault-tolerant systems with a focus on MTTR, MTBF, and HA/DR principles. Infrastructure as Code (IaC): Drive automation using Terraform, Ansible, PowerShell, or other IaC tools to deploy and manage infrastructure. Cloud Monitoring & Observability: Architect and implement end-to-end monitoring and logging solutions (e.g., Azure Monitor, Zabbix, Grafana). CI/CD Enablement: Champion DevOps best practices including automation of build, test, and deployment processes using modern CI/CD tooling. Build, train, and develop a team of DevOps engineers, providing cultural, technical, and hands-on leadership. Establish Cloud onboarding to ensure project is onboarded into proper landing zone within the cloud. Enable Cloud architecture and engineering to validate architectural patterns. Cloud Governance & Compliance: Collaborate with security and compliance teams to ensure environments align with internal and external regulatory requirements Enable Agility in code velocity and supportability (CI/CD pipelines). Enable efficiency in SDLC processes, by adopting best in class tools and practices. Establish a wholistic governance strategy to balance ownership and autonomy against reliability. Develop, motivate, empower, and evaluate individual contributors and grow their professional, leadership, and technical skills. Enhance and develop a culture of trust and commitment to impact how we run internal business systems and services.

Work Location: Mumbai/Bangalore/Chennai Experience: 6+yrs Security Assessment & Audits Conduct Regular security assessments and audits of GCP environments. Identify and document security vulnerabilities and misconfigurations. Perform Security reviews of new and existing projects Incident Response Assist in the investigation and response to security incidents. Contribute to the development and maintenance of incident response plans. Security Monitoring & Logging Monitor security logs and alerts for suspicious activity Monitor Security Command center dashboard Vulnerability Management Track and remediate vulnerabilities identified through security assessments and scans. Compliance Assist with compliance efforts related to relevant security standards. Collaboration and Communication Communicate security risks and recommendations effectively to technical and non-technical audiences. Thanks & Regards Suganya R suganya@spstaffing.in

We are seeking a highly skilled and experienced Contract Security Auditor to join our team for a 1-year engagement. This critical role will be instrumental in enhancing our organization's security posture. The ideal candidate will be an unbiased expert, capable of meticulously assessing our current security controls against various global standards. If you thrive in an environment where you can make a significant impact and demonstrate exceptional performance, this contract offers a unique pathway to a permanent position within our core security team. Responsibilities: As our Contract Security Auditor, you will be responsible for: Comprehensive Security Assessments: Conducting in-depth security audits of our current systems, processes, and controls against established frameworks and regulations including, but not limited to, ISO 27001, SOC 2, HIPAA, and GDPR. Gap Analysis & Risk Identification: Identifying gaps, vulnerabilities, and non-compliance issues within our information security management system (ISMS) and operational procedures. Corrective Action Planning: Developing detailed, actionable recommendations for corrective actions and control improvements, collaborating with relevant teams to ensure practical and effective solutions. Implementation Oversight & Verification: Monitoring and confirming the successful implementation of corrective actions, ensuring that identified deficiencies are fully remediated and bring the organization into compliance. Documentation & Reporting: Creating clear, concise, and comprehensive audit reports, detailing findings, recommendations, and evidence of compliance or non-compliance. Preparation: Assisting in the preparation of documentation, evidence, and personnel for future internal and third party audits Stakeholder Communication: Effectively communicating audit findings, risks, and progress directly to senior management Policy & Procedure Review: Reviewing and providing input on the adequacy and effectiveness of existing security policies, standards, and procedures. Continuous Improvement: Contributing to the continuous improvement of the organization's overall security program and compliance efforts. Qualifications: Experience: Minimum of 7 years of dedicated experience in information security auditing, compliance, or risk management. Demonstrable experience leading and executing audits against multiple frameworks, specifically ISO 27001, SOC 2, HIPAA, and GDPR. Proven track record of successfully identifying control deficiencies and recommending effective remediation strategies. Technical Skills: Strong understanding of information security principles, technologies, and best practices (e.g., access control, network security, data encryption, incident response). Familiarity with common enterprise IT environments, cloud services, and BPO operational models. In depth understanding of US security best practices and requirements Certifications (Highly Preferred): Relevant industry certifications such as CISA, CISSP, CRISC, Lead Auditor certifications (ISO 27001, SOC 2), or similar. Soft Skills: Unbiased & Objective: Proven ability to conduct audits impartially and provide objective assessments. Analytical & Problem-Solving: Exceptional analytical skills with the ability to interpret complex data, identify root causes, and propose practical solutions. Communication: Excellent written and verbal communication skills, with the ability to articulate complex security concepts to both technical and non-technical audiences. Interpersonal: Strong interpersonal skills to build rapport and collaborate effectively with diverse teams. Project Management: Ability to manage multiple audit engagements concurrently, prioritize tasks, and meet deadlines. Contract Details: Term: 1-year contract with potential for conversion to a permanent full-time position. Location: Remote Start Date: Immediate availability preferred. Why Join Us? This is an exciting opportunity to play a pivotal role in strengthening the security foundation of a dynamic US based BPO. You will have the autonomy to drive significant change and see the direct impact of your work. For a high-performing individual, this contract serves as a direct pipeline to a long-term career with our growing security team, offering stability and continued professional development. Application Process: To apply, please submit your resume and a cover letter detailing your relevant experience along with your self-introduction video at Navnita.chakravarty@ardem.com About ARDEM Data Services ARDEM is a leading Business Process Outsourcing and Business Process Automation Service provider. For over twenty years ARDEM has successfully delivered business process outsourcing and business process automation services to our clients in USA and Canada. We are growing rapidly. We are constantly innovating to become a better service provider for our customers. We continuously strive for excellence to become the Best Business Process Outsourcing and Business Process Automation company.

Role Purpose The purpose of the role is to support process delivery by ensuring daily performance of the Production Specialists, resolve technical escalations and develop technical capability within the Production Specialists. Do Oversee and support process by reviewing daily transactions on performance parameters Review performance dashboard and the scores for the team Support the team in improving performance parameters by providing technical support and process guidance Record, track, and document all queries received, problem-solving steps taken and total successful and unsuccessful resolutions Ensure standard processes and procedures are followed to resolve all client queries Resolve client queries as per the SLAs defined in the contract Develop understanding of process/ product for the team members to facilitate better client interaction and troubleshooting Document and analyze call logs to spot most occurring trends to prevent future problems Identify red flags and escalate serious client issues to Team leader in cases of untimely resolution Ensure all product information and disclosures are given to clients before and after the call/email requests Avoids legal challenges by monitoring compliance with service agreements Handle technical escalations through effective diagnosis and troubleshooting of client queries Manage and resolve technical roadblocks/ escalations as per SLA and quality requirements If unable to resolve the issues, timely escalate the issues to TA & SES Provide product support and resolution to clients by performing a question diagnosis while guiding users through step-by-step solutions Troubleshoot all client queries in a user-friendly, courteous and professional manner Offer alternative solutions to clients (where appropriate) with the objective of retaining customers and clients business Organize ideas and effectively communicate oral messages appropriate to listeners and situations Follow up and make scheduled call backs to customers to record feedback and ensure compliance to contract SLAs Build people capability to ensure operational excellence and maintain superior customer service levels of the existing account/client Mentor and guide Production Specialists on improving technical knowledge Collate trainings to be conducted as triage to bridge the skill gaps identified through interviews with the Production Specialist Develop and conduct trainings (Triages) within products for production specialist as per target Inform client about the triages being conducted Undertake product trainings to stay current with product features, changes and updates Enroll in product specific and any other trainings per client requirements/recommendations Identify and document most common problems and recommend appropriate resolutions to the team Update job knowledge by participating in self learning opportunities and maintaining personal networks Deliver NoPerformance ParameterMeasure1ProcessNo. of cases resolved per day, compliance to process and quality standards, meeting process level SLAs, Pulse score, Customer feedback, NSAT/ ESAT2Team ManagementProductivity, efficiency, absenteeism3Capability developmentTriages completed, Technical Test performance Mandatory Skills: Cloud Security Engineering. Experience5-8 Years.

Role Purpose The purpose of this role is to design the organisations computer and network security infrastructure and protect its systems and sensitive information from cyber threats Do 1. Design and develop enterprise cyber security strategy and architecture a. Understand security requirements by evaluating business strategies and conducting system security vulnerability and risk analyses b. Identify risks associated with business processes, operations, information security programs and technology projects c. Identify and communicate current and emerging security threats and design security architecture elements to mitigate threats as they emerge d. Identify security design gaps in existing and proposed architectures and recommend changes or enhancements e. Provide product best fit analysis to ensure end to end security covering different faucets of architecture e.g. Layered security, Zoning, Integration aspects, API, Endpoint security, Data security, Compliance and regulations f. Demonstrate experience in doing security assessment against NIST Frameworks, SANS, CIS, etc. g. Provide support during technical deployment, configuration, integration and administration of security technologies h. Demonstrate experience around ITIL or Key process-oriented domains like incident management, configuration management, change management, problem management etc. i. Provide assistance for disaster recovery in the event of any security breaches, attacks, intrusions and unusual, unauthorized or illegal activity j. Provide solution of RFPs received from clients and ensure overall design assurance i. Develop a direction to manage the portfolio of to-be-solutions including systems, shared infrastructure services, applications, hardware related to cyber risk security in order to better match business outcome objectives ii. Analyse technology environment, enterprise specifics, client requirements to set a collaboration design framework/ architecture iii. Depending on the clients need with particular standards and technology stacks create complete RFPs iv. Provide technical leadership to the design, development and implementation of custom solutions through thoughtful use of modern technology v. Define and understand current state solutions and identify improvements, options & tradeoffs to define target state solutions vi. Clearly articulate and sell architectural targets, recommendations and reusable patterns and accordingly propose investment roadmaps vii. Evaluate and recommend solutions to integrate with overall technology ecosystem viii. Tracks industry and application trends and relates these to planning current and future IT needs 2. Stakeholder coordination & audit assistance a. Liaise with stakeholders in relation to cyber security issues and provide timely support and future recommendations b. Provide assistance in maintaining an information security risk register and help with internal and external audits relating to information security c. Support audit of security best practices and implementation of security principles across the organization, to meet business goals along with customer and regulatory requirements d. Assist with the creation, maintenance and delivery of cyber security awareness training to team members and customers e. Provide training to employees on issues such as spam and unwanted or malicious emails Deliver No PerformanceParameter Measure 1 Customer centricity Timely security breach solutioning to end users, Internal stakeholders & external customers experience, CSAT, educating and suggesting right control to the customers. 2 Support sales team to create wins % of proposals with Quality Index >7, timely support of the proposals, identifying opportunities/ leads to sell services within/ outside account (lead generation), no. of proposals led Mandatory Skills: Cloud Security Posture Management. Experience>10 YEARS.

Role Purpose The purpose of this role is to design the organisations computer and network security infrastructure and protect its systems and sensitive information from cyber threats Do 1. Design and develop enterprise cyber security strategy and architecture a. Understand security requirements by evaluating business strategies and conducting system security vulnerability and risk analyses b. Identify risks associated with business processes, operations, information security programs and technology projects c. Identify and communicate current and emerging security threats and design security architecture elements to mitigate threats as they emerge d. Identify security design gaps in existing and proposed architectures and recommend changes or enhancements e. Provide product best fit analysis to ensure end to end security covering different faucets of architecture e.g. Layered security, Zoning, Integration aspects, API, Endpoint security, Data security, Compliance and regulations f. Demonstrate experience in doing security assessment against NIST Frameworks, SANS, CIS, etc. g. Provide support during technical deployment, configuration, integration and administration of security technologies h. Demonstrate experience around ITIL or Key process-oriented domains like incident management, configuration management, change management, problem management etc. i. Provide assistance for disaster recovery in the event of any security breaches, attacks, intrusions and unusual, unauthorized or illegal activity j. Provide solution of RFPs received from clients and ensure overall design assurance i. Develop a direction to manage the portfolio of to-be-solutions including systems, shared infrastructure services, applications, hardware related to cyber risk security in order to better match business outcome objectives ii. Analyse technology environment, enterprise specifics, client requirements to set a collaboration design framework/ architecture iii. Depending on the clients need with particular standards and technology stacks create complete RFPs iv. Provide technical leadership to the design, development and implementation of custom solutions through thoughtful use of modern technology v. Define and understand current state solutions and identify improvements, options & tradeoffs to define target state solutions vi. Clearly articulate and sell architectural targets, recommendations and reusable patterns and accordingly propose investment roadmaps vii. Evaluate and recommend solutions to integrate with overall technology ecosystem viii. Tracks industry and application trends and relates these to planning current and future IT needs 2. Stakeholder coordination & audit assistance a. Liaise with stakeholders in relation to cyber security issues and provide timely support and future recommendations b. Provide assistance in maintaining an information security risk register and help with internal and external audits relating to information security c. Support audit of security best practices and implementation of security principles across the organization, to meet business goals along with customer and regulatory requirements d. Assist with the creation, maintenance and delivery of cyber security awareness training to team members and customers e. Provide training to employees on issues such as spam and unwanted or malicious emails Deliver No PerformanceParameter Measure 1 Customer centricity Timely security breach solutioning to end users, Internal stakeholders & external customers experience, CSAT, educating and suggesting right control to the customers. 2 Support sales team to create wins % of proposals with Quality Index >7, timely support of the proposals, identifying opportunities/ leads to sell services within/ outside account (lead generation), no. of proposals led Mandatory Skills: Cloud Security Posture Management. Experience8-10 Years.

Job Summary Seeking a WAF Management and Governance Lead to oversee the security, operational integrity, and compliance of Web Application Firewall (WAF) systems. The ideal candidate will be responsible for ensuring robust protection against web-based threats, optimizing security policies, and governing WAF implementations across enterprise environments. WAF Administration Lead the deployment, configuration, and ongoing management of Web Application Firewall solutions. Security Policy Development Define, implement, and refine WAF rulesets to mitigate risks such as SQL injection, cross-site scripting (XSS), and other web threats. Governance & Compliance Ensure WAF policies align with regulatory and industry security frameworks (e.g., OWASP, PCI-DSS, GDPR). Threat Monitoring & Mitigation Collaborate with cybersecurity and internal teams to analyse threat patterns and adjust WAF settings for optimal protection. Performance Optimization Evaluate WAF impact on application performance and optimize configurations without compromising security. Incident Response Support investigation and response to security incidents related to web applications. Stakeholder Collaboration Work with IT, security, and application development teams to integrate WAF security seamlessly. Reporting & Metrics Establish key security performance indicators and provide regular governance reports. Experience 9+ years in web security, including WAF deployment and governance. Technical Expertise Hands-on experience with leading WAF platforms (e.g., AWS WAF, F5, Cloudflare WAF, Akamai Kona Security). Security Knowledge Strong understanding of OWASP top 10 threats, secure coding practices, and web security protocols. Knowledge of DevSecOps practices and security automation. Compliance Awareness Familiarity with regulatory requirements impacting web security governance. Communication Ability to convey security risks and technical details to non-security stakeholders effectively. Certifications such as CISSP, CEH, CCSP, AWS Security Specialty or equivalent. Experience in DevSecOps, automation, and integrating WAF into CI/CD pipelines. Knowledge of cloud security architectures and API security governance. Reinvent your world.We are building a modern Wipro. We are an end-to-end digital transformation partner with the boldest ambitions. To realize them, we need people inspired by reinvention. Of yourself, your career, and your skills. We want to see the constant evolution of our business and our industry. It has always been in our DNA - as the world around us changes, so do we. Join a business powered by purpose and a place that empowers you to design your own reinvention. Come to Wipro. Realize your ambitions. Applications from people with disabilities are explicitly welcome.