7065 Cybersecurity Jobs

The Opportunity As an Engineer of Digital Solutions team, you will be part of Operation Center, India (INOPC-PG), aiming to develop a global value chain, where key business activities, resources and expertise are shared across geographic boundaries in order to optimize value for Hitachi Energy PowerGrid’s customers across markets. How You’ll Make An Impact Support our clients across the globe in optimizing their maintenance policies and enhancing their equipment availability. Handle configuration of Substation models in our State-of-the-art Digital platform and study the system to support with most efficient Reliability based maintenance plans. Act as an interface between the client and the R&D team, continuously work on delivery projects for customers and also support the product releases for the development team. Assist our clients with trouble shooting and perform RCA related to malfunction of equipment and deliver proposals to avoid further deterioration of equipment. Opportunity to work on State-of-the-art Digital platform and study the system to support with most efficient Reliability based maintenance plans. Build up extensive knowledge of modern Digital Solutions provided to Utility customers. Build up knowledge of mission critical customer applications (e.g., Remote monitoring & Reporting systems) Exposure to various in-house certification programs. Stakeholder Management through continuous interaction with employees and senior officials across the globe. Responsible to ensure compliance with applicable external and internal regulations, procedures, and guidelines. Living Hitachi Energy’s core values of safety and integrity, which means taking responsibility for your own actions while caring for your colleagues and the business. Your Background Bachelor’s degree in electrical & electronics engineering with a minimum work experience of 5+ years in operation and maintenance of substations and power plants. Experience in maintaining Substations of 33 KV and above. Hands on experience in routine and preventive maintenance of all primary equipment in AIS and GIS. Good experience in managing TBM, CBM and RCM in Substations. Hands on experience in testing of different make primary equipment. Knowledge of Project scheduling and monitoring tools like MS projects or Primavera. Knowledge of IED configuration and testing, Substation SCADA systems and Cybersecurity requirements Good knowledge of process structuring & process management. Good knowledge of MS Office tools. Proficiency in both spoken & written English language is required. Hitachi Energy is a global technology leader that is advancing a sustainable energy future for all. We serve customers in the utility, industry and infrastructure sectors with innovative solutions and services across the value chain. Together with customers and partners, we pioneer technologies and enable the digital transformation required to accelerate the energy transition towards a carbon-neutral future. We employ around 45,000 people in 90 countries who each day work with purpose and use their different backgrounds to challenge the status quo. We welcome you to apply today and be part of a global team that appreciates a simple truth: Diversity + Collaboration = Great Innovation.

Summary Position Summary Cyber - Defense & Resilience - ASM+MPT -Senior Consultant Attack Surface Management (ASM) Services Overview Are you interested in improving the cyber and organizational risk profiles of leading companies? Do you want to deliver Attack Surface Management (ASM) services, identifying vulnerable IT assets and weak security configurations in real time? If you thrive in dynamic environments and are passionate about cybersecurity, Deloitte’s ASM team could be the place for you. About Deloitte’s ASM Team Focus: Transparency, innovation, collaboration, and sustainability. Mission: Deliver industry-leading services with fresh thinking and a creative approach. Collaboration: Work with teams across Deloitte, leveraging both commercial and public sector expertise. Goal: Be the premier integrated services provider transforming the cybersecurity services marketplace. As a Senior Consultant, you will: Work with global teams of engineers and analysts specializing in cybercriminal tactics, tools, and procedures. Help clients discover vulnerabilities and rogue assets (e.g., shadow IT) in their networks. Enable clients to achieve business growth while managing risk. K ey Responsibilities Conduct vulnerability assessments and manual penetration testing for: Web applications APIs Thick client applications Mobile applications Perform secure code reviews and analyze false positives from industry-standard tools. Respond to ad-hoc reporting and research requests from management and analysts. Develop and implement application security policies and procedures. Identify and prioritize security vulnerabilities. Coordinate with development and operations teams to assist with remediation plans and secure applications. Rapidly understand and deliver on company and client requirements. Participate in regular reporting (daily, weekly, quarterly, yearly) for clients, partners, and internal teams. Adhere to internal operational security and other Deloitte policies. Required Qualifications Education: Bachelor’s degree or higher in Computer Science, or equivalent experience. Experience: 5–9 years of hands-on experience in: Application security Vulnerability assessment Penetration testing Mobile application security Thick client and Web API security assessments Technical Skills: Strong understanding of OWASP Top 10 and other vulnerabilities. Manual assessment and exploitation of vulnerabilities (e.g., Blind SQLi, XXE, SSRF, Insecure Deserialization, HTTP Request Smuggling). Understanding of OAUTHv2/OpenID standards and associated vulnerabilities. Business logic vulnerability identification. Secure code review following OWASP Secure Coding Practices. Proficiency with tools: Burp Suite, Fiddler, Sysinternals, Veracode, DnSpy, OllyDbg, IDA Pro, EchoMirage, Wireshark, Apktool, Jadx-gui, Frida, etc. Manual penetration testing and use of automated tools. Strong technical report writing skills. Knowledge of web application components (frontend, backend, databases, application servers). Understanding of web development technologies (HTML, CSS, JavaScript, PHP, Java, .NET, backend databases). Experience with application security architecture review and threat modeling. Basic concepts of reverse engineering and memory analysis. Understanding of networking protocols (TCP/IP, DNS, HTTP/S). Familiarity with vulnerability classification (CVE/CVSS). Certifications: One or more of the following: CISSP OSCP OSWE BSCP GWAPT Preferred Qualifications Proficiency in web and mobile application security assessments, penetration testing, and secure code review. Relevant publications (blogs, tools, conference presentations, CVEs). Preferred certifications: OSWE, BSCP. Experience with automation and scripting (Python). Outstanding English written and oral communication skills. Strong understanding of web, mobile, and microservices vulnerabilities. Knowledge of malicious code operation and exploitation of technical vulnerabilities. Strong analytical and problem-solving skills. Self-motivated to upskill and learn new attack vectors. Desire to deeply understand the what, why, and how of security vulnerabilities. If you are passionate about cybersecurity and ready to make an impact, Deloitte’s ASM team offers a collaborative and innovative environment to grow your career. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 305700

Summary Position Summary Job Description: Cyber Risk Application Security Consultant Attack Surface Management (ASM) Services Overview Are you interested in improving the cyber and organizational risk profiles of leading companies? Do you want to deliver Attack Surface Management (ASM) services, identifying vulnerable IT assets and weak security configurations in real time? If you thrive in dynamic environments and are passionate about cybersecurity, Deloitte’s ASM team could be the place for you. Deloitte’s ASM business is committed to transparency, innovation, collaboration, and sustainability. We deliver industry-leading services through fresh thinking and creative approaches, collaborating across the organization to support our clients. Our goal is to be the premier integrated services provider transforming the cybersecurity marketplace. Role: Cyber Risk Attack Surface Consultant As a Consultant, you will: Work with global teams to identify vulnerabilities and rogue assets (e.g., shadow IT). Help clients achieve business growth while managing risk. Key Responsibilities Conduct vulnerability assessments and manual penetration testing for web, API, thick client, and mobile applications. Perform secure code reviews and analyze false positives from industry-standard tools. Respond to ad-hoc reporting and research requests. Develop and implement application security policies and procedures. Identify and prioritize security vulnerabilities. Coordinate with development and operations teams on remediation plans. Quickly understand and deliver on company and client requirements. Participate in regular reporting for clients, partners, and internal teams. Adhere to internal operational security and Deloitte policies. Required Qualifications Bachelor’s degree or higher in Computer Science, or equivalent experience. 3–5 years of hands-on experience in: Application security Vulnerability assessment Penetration testing Mobile application security Thick client and Web API security assessments Strong understanding of OWASP Top 10 and related vulnerabilities. Experience in manual assessment and exploitation (e.g., Blind SQLi, XXE, SSRF, Insecure Deserialization, HTTP Request Smuggling). Understanding of OAUTHv2/OpenID standards and business logic vulnerabilities. Experience with secure code review (OWASP Secure Coding Practices). Proficiency with tools: Burp Suite, Fiddler, Sysinternals, Veracode, DnSpy, OllyDbg, IDA Pro, EchoMirage, Wireshark, Apktool, Jadx-gui, Frida, etc. Ability to perform manual penetration testing and use automated tools. Excellent technical report writing skills. Knowledge of web application components (frontend, backend, databases, application servers). Understanding of web development technologies (HTML, CSS, JavaScript, PHP, Java, .NET, backend databases). Experience with application security architecture review and threat modeling. Basic concepts of reverse engineering and memory analysis. Understanding of networking protocols (TCP/IP, DNS, HTTP/S). Familiarity with vulnerability classification (CVE/CVSS). Certifications: CISSP, OSCP, OSWE, BSCP, GWAPT. Preferred Qualifications Proficiency in web and mobile application security assessments, penetration testing, and secure code review. Relevant publications (blogs, tools, conference presentations, CVEs). Preferred certifications: OSWE, BSCP. Experience with automation and scripting (Python). Outstanding English written and oral communication skills. Strong understanding of web, mobile, and microservices vulnerabilities. Knowledge of malicious code operation and exploitation. Strong analytical and problem-solving skills. Self-motivated and eager to learn new attack vectors. Desire to deeply understand the what, why, and how of security vulnerabilities. If you are passionate about cybersecurity and ready to make an impact, Deloitte’s ASM team offers a collaborative and innovative environment to grow your career. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 305698

Key Responsibilities: Partner with the sales team to understand customer requirements and deliver compelling cybersecurity solutions and presentations. Lead the technical aspects of the sales cycle including discovery, solution design, architecture review, PoC (Proof of Concept) support, and technical proposal writing. Analyze client environments and identify security gaps, proposing tailored solutions across areas such as: Network Security (Firewalls, IPS/IDS) Endpoint Protection Cloud Security (AWS, Azure, GCP) Identity & Access Management (IAM) SIEM/SOAR, XDR, MDR Data Loss Prevention (DLP) Collaborate with internal product, engineering, and professional services teams to ensure proposed solutions are deliverable. Develop and deliver product demonstrations, workshops, and technical deep-dives. Stay up-to-date with cybersecurity trends, emerging threats, and vendor technologies. Support RFP/RFI responses, solution costing, and SOW creation.

Job Description Summary We are seeking a Consulting Engineer and technical authority in IEC 61850 and digital substation technologies to lead standards-compliant communication design, configuration, integration strategy, and cross-industry collaboration for next-generation Transmission and Distribution (T&D) systems. The successful candidate will act as design authority to drive internal implementation and oversee solution design to overcome critical barriers to digital substation adoption, including interoperability gaps, tool fragmentation, legacy integration, and cybersecurity threats. This role bridges product development, customer deployment, partnerships and industry engagement, ensuring GE Vernova maintains leadership in standards development, substation digitalization, and interoperability. Job Description Key Responsibilities Own the strategy, lifecycle, and interoperability of System Configuration Tools (SCT) and IED Configuration Tools (ICT), including workflows for SCL file management (ICD, SCD, CID), round-tripping, version control, and compliance with IEC 61850 Editions 2.1/2.2 in multi-vendor, multi-tool environments. Develop and lead the technical strategy for digital substation adoption, addressing industry challenges such as inconsistent IEC 61850 implementation, fragmented tools, and multi-vendor integration across SCL configurations, GOOSE/SV messaging, and secure networking. Define integration solutions for IEC 61850 with legacy and hybrid environments, mitigate cybersecurity risks in IP-based architectures, and ensure long-term maintainability and validation across the utility asset lifecycle. Promote scalable, secure, vendor-agnostic deployments of IEC 61850 through technical strategy, validation methods, and reusable frameworks. Lead GE Vernova’s engagement with IEC 61850 working groups, UCAIug, and utility standards bodies; contribute to technical proposals, test procedures, and profile management. Translate evolving standards into internal roadmaps and customer guidance. Define protocol architecture and integration strategies for IEC 61850 (GOOSE, MMS, SV) and IEC 60870-5 (101/103/104), DNP3, Modbus, ensuring security and reliability. Guide engineering of secure, time-synchronized, and redundant LANs, including PRP/HSR, VLAN, and IEEE 1588 PTP. Support the conversion of system-level requirements into detailed specifications, validation plans, and design best practices. Support utility and OEM clients in interoperability testing, issue resolution, and IEC 61850 configuration validation. Consult on communication design, protocol migrations, and SCL file flows. Lead training, workshops, and knowledge transfer for digital substation design, commissioning, and cybersecurity hardening. Publish and present best practices at industry events such as CIGRÉ, IEEE PSRC, and IEC TC57. Mentor engineering teams on model-driven design, protocol stack development, and substation cybersecurity. Collaborate across teams to embed standards leadership and maintainability into new products. Required Qualifications Bachelor’s degree in electrical, Electronic, or Computer Engineering Minimum of 8 years of experience in substation automation, utility communications, or protection & control systems Desired Characteristics Expert-level understanding of IEC 61850 (all parts) including SCL tools, GOOSE/SV behavior, MMS client-server models, and conformance testing Proficiency with legacy and modern SCADA protocols including IEC 60870-5-101/103/104, DNP3 (serial & TCP), and Modbus (RTU/TCP) Strong knowledge of multi-vendor integration, substation networking, and field commissioning Experience with communications security, including SSH, TLS/SSL, RADIUS, firewalls, secure tunneling, and network hardening Contributions to IEC 61850 or other international standards groups Experience with ICT and SCT as well as industrial tool such as IEDScout, Wireshark, OMICRON Test Universe, RTDS/RSCAD, or Simulink Familiarity with vendor platforms such as GE Multilin, SEL, Siemens, ABB, or Schneider Electric Strong communication and influence skills across utilities, vendors, and regulatory bodies Multilingual ability (especially French, Spanish, and German) is an asset Willingness to travel for customer engagements, conferences, and global collaboration. **For US Based Candidates - The base pay range for this position is 152,400.00 - 190,000.00 USD Annual. The specific pay offered may be influenced by a variety of factors, including the candidate’s experience, education, and skill set. This position is also eligible for a variable incentive bonus annually. This posting is expected to close on 7/28/25. The Company pays a geographic differential of 110%, 120% or 130% of salary in certain areas. Healthcare benefits include medical, dental, vision, and prescription drug coverage; access to a Health Coach, a 24/7 nurse-based resource; and access to the Employee Assistance Program, providing 24/7 confidential assessment, counseling and referral services. Retirement benefits include the GE Retirement Savings Plan, a tax-advantaged 401(k) savings opportunity with company matching contributions and company retirement contributions, as well as access to Fidelity resources and planning consultants. Other benefits include tuition assistance, adoption assistance, paid parental leave, disability insurance, life insurance, and paid time-off for vacation or illness. General Electric Company, Ropcor, Inc., their successors, and in some cases their affiliates, each sponsor certain employee benefit plans or programs (i.e., is a “Sponsor”). Each Sponsor reserves the right to terminate, amend, suspend, replace, or modify its benefit plans and programs at any time and for any reason, in its sole discretion. No individual has a vested right to any benefit under a Sponsor’s welfare benefit plan or program. This document does not create a contract of employment with any individual. Additional Information Relocation Assistance Provided: No #LI-Remote - This is a remote position

Job Description Summary We are seeking a seasoned Cyber Security Consulting Engineer to lead the development and integration of secure architectures for critical Transmission & Distribution (T&D) systems. As a recognized technical authority, you will define cybersecurity strategy across hardware, embedded systems, and software-defined platforms in modern electric grids—spanning protection, control, and energy management technologies. You will embed Security by Design and Cyber-Informed Engineering (CIE) principles throughout the product lifecycle, operating at the intersection of operational technology (OT) and information technology (IT). Your work will help drive regulatory compliance, product security, and support both R&D teams and utility customers in securing mission-critical infrastructure. Job Description Key Responsibilities: Act as the cybersecurity design authority for T&D products, defining end-to-end architectures across hardware, firmware, and cloud-connected systems, advising on secure protocols, cryptography, authentication, and network hardening. Translate and implement global regulatory standards (IEC 62443, IEC 61850, IEC 62351, NERC CIP) into product requirements, and lead technical strategy planning, architecture reviews, and security certification efforts. Guide engineering teams through threat modeling, secure coding, SDLC best practices, and CIE adoption to mitigate cyber-physical risks affecting safety, reliability, or operations. Define and support embedded and software-based security features using C/C++, Python, and modern toolchains, while collaborating on penetration testing, fuzz testing, code reviews, and security simulations. Lead cross-functional initiatives with PSL, product management, compliance, field operations, and R&D to align cybersecurity objectives and ensure systems meet resilience and compliance expectations. Monitor cybersecurity trends, ICS/OT threat landscapes, and emerging technologies, recommending tools and methods to enhance product security posture. Partner with PSL, incident response and product security teams to support vulnerability remediation, post-incident analysis, and contribute to the creation of security documentation, including architecture specs, procedures, and training materials. Represent the company in industry forums, standards bodies, and technical panels, and contribute to white papers, patents, and technical publications supporting innovation and thought leadership. Required Qualifications: Bachelor’s degree in engineering, Computer Science, Cybersecurity, or a related field. Minimum of 8 years of engineering experience, with 5 years focused on cybersecurity for embedded or software-defined systems. Desired Characteristics: Professional certifications such as CISSP, GIAC (GPEN/GXPN), CEH, or ISA/IEC 62443 preferred. Proven ability to secure OT/ICS environments, preferably within the energy or utilities sector. Deep familiarity with industrial protocols (e.g., IEC 61850, DNP3, Modbus, IEEE 2030.5) and relevant cybersecurity standards. Experience in embedded system development (C/C++, RTOS), as well as Linux/Windows platforms. Strong hands-on background in PKI, identity management, network security appliances, and security monitoring. Proficient in threat modeling, risk/vulnerability assessment, and using forensic/security analysis tools.. Excellent communication and stakeholder engagement skills, able to translate technical content for non-technical audiences. Exposure to quality improvement methodologies (e.g., Lean, Six Sigma) is a plus. Recognized as a thought leader through publications, patents, or industry involvement. Willingness to travel for customer engagements, conferences, and global collaboration. **For US Based Candidates - The base pay range for this position is 152,400.00 - 190,000.00 USD Annual. The specific pay offered may be influenced by a variety of factors, including the candidate’s experience, education, and skill set. This position is also eligible for a 15% variable incentive bonus annually. This posting is expected to close on 7/28/25. The Company pays a geographic differential of 110%, 120% or 130% of salary in certain areas. Healthcare benefits include medical, dental, vision, and prescription drug coverage; access to a Health Coach, a 24/7 nurse-based resource; and access to the Employee Assistance Program, providing 24/7 confidential assessment, counseling and referral services. Retirement benefits include the GE Retirement Savings Plan, a tax-advantaged 401(k) savings opportunity with company matching contributions and company retirement contributions, as well as access to Fidelity resources and planning consultants. Other benefits include tuition assistance, adoption assistance, paid parental leave, disability insurance, life insurance, and paid time-off for vacation or illness. General Electric Company, Ropcor, Inc., their successors, and in some cases their affiliates, each sponsor certain employee benefit plans or programs (i.e., is a “Sponsor”). Each Sponsor reserves the right to terminate, amend, suspend, replace, or modify its benefit plans and programs at any time and for any reason, in its sole discretion. No individual has a vested right to any benefit under a Sponsor’s welfare benefit plan or program. This document does not create a contract of employment with any individual. Additional Information Relocation Assistance Provided: No #LI-Remote - This is a remote position

Job description Our technology teams work closely with HSBC’s global businesses to help design and build digital services that allow our millions of customers around the world, to bank quickly, simply and securely. We also run and manage our IT infrastructure, data centres and core banking systems that power the world’s leading international bank. Our multi-disciplined teams include DevOps engineers, IT architects, front and back-end developers, infrastructure specialists, cyber experts, as well as project and programme managers. Following extensive investment across our Technology and Digital domains and with plans for continued expansion throughout 2025 and beyond, we are currently seeking a QA Testing Lead to lead the development of a central Professional Testing Practise. Business area overview Cybersecurity Technology & Engineering is responsible for fielding solutions that help defend HSBC against a wide range of threats to the business as well as its customers, clients, partners, and staff. The team works in concert, with partner teams across HSBC, to implement novel defensive capabilities that are effective and adaptable against a constantly evolving threat landscape. The function operates under the vision: “Enabling HSBC to be safely successful everywhere the Firm chooses to do business”. What you will be doing The role will report to the Head of Cyber Engineering Enablement and will be responsible for leading the establishment and development of Cyber's Professional Testing Practise, with the objective of driving improvements across all facets of testing across Cyber. The role will involve working closely with a wide range of stakeholders including Cybersecurity project teams, Control Owners and the business. The role will: Establish and lead Cyber's Professional Testing Practice, with the objective of driving improvements across all facets of testing across Cyber and provide mentoring and monotiring of testing services. This will also include a roadmap for adoption across Cyber with the apprropriate funding and resource planning required to support the work. Define and deliver the Testing Strategy and standards across Cyber, including the frameworks, processes, methodologies and tooling that should be used and adopted by the Cyber teams, This will also include driving the adoption of automated test practices across Cyber and assiting teams in determining the correct level of performance and stress testing to be performed, Lead testing related process management, documentation, and continuous improvement initiatives and ensuring that the teams within Cyber adopt the intiatives. Manage a team of QA engineers, delivering testing consultancy to teams across Cyber, and working with Cyber project teams to achieve and maintain Conttol complaince. Identify and raise key issues and risks assocated with testing. This includes defining mitigating actions and providing active oversight for the issue or defect, tracking through its resolution. Ensure appropriate training is provided for the Testing Practice members and QA professionals within the Cyber teams and monitor the adoption and usage of tools within the existing environments. Provide standards and guidance for testing evidence suitable for audit review in our Regulated business environment and ensure that teams are following these guildelines. Establish a Cyber QA community of practice and create relationships with similar communities in other Business lines to ensure adoption of HSBC best practice within Cyber. Requirements 3+ years experience working as a QA Lead within an agile Software Development team; with relevant industry certification, and experience of both automated and manual testing; 3+ years of experience in designing automated and manual testing for Web application and REST API associated with 3rd parties; Direct experience in developing processes for, and conducting, performance testing Experience of defining and driving the adoption of automated and manual testing best practice; Demonstrable experience leading technical teams/colleagues and defining and delivering strategic objectives; Experience of managing stakeholders and developing relationship with other teams; Competency in Microsoft Excel, Visio and PowerPoint in order to conduct data analysis and present raw data in a simplified manner displaying trend analysis and highlighting outliers/exceptions; Familiar with Agile software development and DevSecOps delivery processes (burndown metrics, backlog tracking, velocity, task definition, retrospectives and defect management) and supporting tools, e.g., JIRA, Confluence, GIT, etc. Good verbal and written communication skills in English, including expereince of managing workshops and writing best practice documentation; Able to work in a fast paced, team focused environment with a proven track record of delivering and completing assigned tasks as an individual and as team; Willingness to continuously learn and share learnings with others

Job description Some careers shine brighter than others. If you’re looking for a career that will help you stand out, join HSBC, and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further. HSBC is one of the largest banking and financial services organizations in the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realize their ambitions. We are currently seeking an experienced professional to join our team in the role of Associate Director. In this role, you will: Design and Implement Network segmentation policy and standards for On-prem and cloud (AWS, Azure, GCP) environment. Design and provision network security policies with required zero trust principles. Coordinates activities with other system areas and vendors, and deals with network security systems planning, upgrading, monitoring, testing, and servicing. Troubleshoot complex network environments and providing detailed analysis and remediations. Document High-level and Low-level network designs and procedures. Run product evaluation and proof of concepts on emerging network technologies. Work with product owners to manage the product backlog, ensure it is well defined, prioritized and aligned to team’s objective. Facilitate scrum ceremonies, lead daily standups, sprint planning, Sprint reviews and retrospectives. Ensures meetings are efficient, productive, and focused on project goals. Maintain accurate and up to date documentation related to project planning, execution, and delivery. Assist Cyber network engineering team in removing impediments, enhancing workflows, and improving their practices to deliver high quality network solutions. Mentor team on agile principles and practices, promote continuous improvement and self-organization within the team. Besides ensure transparency and accountability within a team. Communicate updates and reports to stakeholders and senior management. Build and maintain KPI’s for the team and the engineering products. Drive incident resolution - technology or process, across technology teams, stakeholders and management where required. Liaison with vendor on product issues including design, features, and defects. Implement network solutions aligned to organizational standard and meet regulatory requirements. Provides knowledge transfer with teammates through formal team training sessions, brown bags, and mentoring of other team members. Apply technical expertise in implementing efficiencies and creating strategies to better detect and respond to cyber incidents by prioritizing mitigation actions. Requirements Excellent understanding of IT Infrastructure, hands-on technical experience, including: Candidate with 12+ years of experience in design and implementation of zero trust architectures, preferably Network segmentation of infrastructure and microservices. Proficiency in cloud architecture design patterns, serverless computing, containerization (Kubernetes, Docker), and microservices architecture is a MUST. Familiarity with major cloud service providers like Amazon Web Services (AWS), Microsoft Azure, Google Cloud Platform (GCP), and their networking services. Understanding of virtual networks, load balancers, VPN gateways, and network security groups specific to cloud environments Strong hands-on experience of network technologies (Network load balancers, perimeter security, cryptography, PKI, digital certificates/signatures, hashing/ciphers, IPsec, wireless technologies, URL filtering, etc.) Experience with a variety of security technologies and concepts (Network load balancers, perimeter security, cryptography, PKI, digital certificates/signatures, hashing/ciphers, IPsec, wireless technologies, URL filtering, etc.) Have associate/professional level certification on major cloud technologies. CISSP certification will be preferred, but not mandatory. Experience with modern agile software delivery practices such as scrum, version control, continuous integration, and delivery (CI/CD), DevOps Excellent network troubleshooting skills. Must be able to quickly identify and resolve network related issues in smallest possible time. Knowledge and experience in Agile and DevOps development practices Demonstrate leadership abilities with track record of successfully managing and motivating teams. Proven and extensive experience of service management & application production support with knowledge of service recovery, incident, and problem management Excellent communication skills. Ability to work in fast paced environment with and changing priorities. Able to support aggressive delivery timelines without compromising on quality. You’ll achieve more when you join HSBC. www.hsbc.com/careers HSBC is committed to building a culture where all employees are valued, respected and opinions count. We take pride in providing a workplace that fosters continuous professional development, flexible working and opportunities to grow within an inclusive and diverse environment. Personal data held by the Bank relating to employment applications will be used in accordance with our Privacy Statement, which is available on our website. Issued by – HSBC Software Development India

Job Title: Operations Manager Location: Hyderabad (Hybrid), Preferred candidate must be from Hyderabad Full-Time Industry: IT Services and Consulting (Must have worked with US Based or International clients) Shift : PST (Night Shift) Who We Are: Base8 provides technology and business consulting services to companies throughout the US and Canada. We like to work with businesses that are serious about scaling, risk management, and developing mature processes ones that are looking for a modern, sophisticated, trustworthy, friendly, high-quality (yet still affordable) technology and business partner. Who You Are: This position will be Hybrid, but you will be working closely with the teams in the United States and Canada through video chat, instant messaging, e-mail, phone, and our software. It is important that you have excellent communication skills in English, both written and oral. We are a fast-paced company expanding rapidly, and we are seeking team members who will share our vision for the future and work collaboratively to accomplish Base8 goals. We pride ourselves on providing superior service to our clients, which includes attention to detail, following the processes in place, and being able to adapt to various situations. Job Summary: We are seeking an experienced and strategic Operations Manager to oversee and optimize our IT operations for United States. In this role, you will be responsible for leading cross-functional teams, streamlining workflows, and ensuring the delivery of high-quality IT services that align with business objectives. The ideal candidate will have a strong background in IT infrastructure, HR Management, Vendor Management, Team Management, systems management, and operational leadership, with the ability to drive continuous improvement, ensure compliance, and support organizational growth. Operational Strategy & Execution Develop and implement operational strategies aligned with the company's goals. Monitor KPIs and performance metrics to ensure operational excellence. Drive continuous improvement through process optimization and automation. Oversee the end-to-end US payroll process, ensuring accurate and timely payments to employees and contractors. Ensure compliance with federal, state, and local payroll regulations (e.g., FLSA, IRS, DOL). Maintain and update payroll systems and employee records. Team & Resource Management Oversee IT teams, including system administrators, support engineers, DevOps, or project managers. Allocate resources efficiently to meet project deadlines and SLAs. Foster a culture of collaboration, performance, and accountability. Project Management Support Collaborate with project managers to ensure projects are delivered on time, within scope and budget. Address operational risks and resolve project bottlenecks. Align cross-functional team activities with broader business initiatives. Budgeting & Cost Control Prepare and manage operational budgets. Monitor expenses and identify opportunities for cost reduction without compromising quality. Negotiate with vendors and service providers. Process Improvement & Compliance Evaluate and streamline IT processes using frameworks like ITIL, Six Sigma, or Agile. Ensure compliance with relevant laws (HIPAA, GDPR, SOX), internal policies, and cybersecurity standards. Conduct audits and risk assessments. Vendor & Stakeholder Coordination Manage relationships with third-party IT service providers, software vendors, and consultants. Act as a liaison between technical teams and business units. Ensure service level agreements (SLAs) are met or exceeded. Technology & Infrastructure Oversight Support infrastructure management, including networks, servers, cloud services, and data centers. Collaborate on IT upgrades, migrations, and incident response planning. Oversee asset management and procurement. Reporting & Communication Report performance metrics and operational health to senior leadership. Present operational updates, plans, and roadmaps. Communicate effectively across teams and departments. Research & Data Analysis Conduct market research on compensation trends, labor laws, and hiring strategies. Analyze payroll data to identify trends, risks, and cost-saving opportunities. Provide data-driven insights to optimize workforce planning and budget forecasting. Monitor changes in employment legislation that may impact payroll or hiring. Required Qualifications: Bachelor's degree in computer science, Information Technology, or related field (master's degree preferred). 10+ years of experience in US operations in IT industry, with at least 5 years in managerial or leadership roles. Strong understanding of US payroll systems, labor laws, and tax regulations. Strong communication and stakeholder management. Strong knowledge of IT infrastructure, networking, cloud computing (AWS/Azure), and enterprise systems. Must have worked with US Based or International Clients Experience with ITSM tools and frameworks (e.g., ITIL). Excellent problem-solving, analytical, and decision-making skills. Strong communication and interpersonal skills.

Job Description Summary We are seeking a highly experienced and innovation-driven Software Consulting Engineer to lead the architecture, design, and development of advanced software platforms and configuration tools for Transmission & Distribution (T&D) systems. This strategic leadership role drives the digital transformation of the energy sector by enabling next-generation grid automation, device orchestration, and intelligent engineering workflows. As a senior leader, you will act as the software architecture authority, collaborating with embedded, power systems, and UI/UX teams, and engaging with customers and global product teams to deliver scalable, secure, and future-ready solutions and shape the technical direction of platforms powering protection relays, grid-edge configuration, and digital substation system, integrating advanced standards, enabling AI-assisted engineering, and ensuring cloud-readiness, cybersecurity, and multi-vendor interoperability. Job Description Key Responsibilities Define the architecture and evolution of scalable, modular, and secure software platforms for T&D configuration systems, including tools for device configuration, substation engineering, and grid automation workflows. Define technical strategy and oversee the design cloud-native platforms using modern frameworks (.NET, Java, Python, TypeScript) that support desktop, edge, and cloud deployments, with emphasis on performance, resilience, and maintainability. Drive the integration IEC 61850 engineering workflows (SCL-based ICD, SCD, SSD) into intuitive, automated tooling ecosystems aligned with modern UI/UX, API design, and utility integration requirements. Ensure cross-functional alignment, acting as the authority between firmware, UI/UX, and power systems teams, enabling coherent system design and tight integration between engineering workflows and device behavior. Collaborate with cybersecurity, systems, and hardware architects to deliver secure, compliant solutions for critical infrastructure, incorporating secure development lifecycle (SDLC) and DevSecOps practices. Drive reuse of software components across product lines, fostering platform consistency, reducing duplication, and accelerating development. Oversee development and lifecycle management of configuration and commissioning tools for protection and control devices, ensuring seamless integration with SCADA/DMS/EMS and other utility systems. Conduct software and architecture reviews, ensure compliance with industry standards (IEC 61850, IEC 61968/70, CIM, IEC 62351), and manage the end-to-end software development lifecycle from requirements to deployment and support. Partner with architects, systems engineers, and utility customers to define and deliver customer-centric, technically robust solutions that improve reliability, visibility, and flexibility of grid systems. Monitor emerging technologies (cloud-native services, model-driven engineering, AI/ML) for relevance to the T&D domain and contribute to technology roadmaps, product strategy, and IP generation through patents, whitepapers, and technical forums. Mentor and guide software engineers, promote a culture of technical excellence and innovation, and represent the organization in customer engagements, RFPs, and industry events. Qualifications & Experience Bachelor’s degree in Software Engineering, Computer Science, Electrical Engineering, or a related field. Minimum of 10 years of experience in software engineering, including 5 years in a technical leadership or software architecture role. Desired Characteristics Proven track record designing and delivering software solutions for T&D systems, energy automation, or industrial control domains. Expertise in utility standards and protocols: IEC 61850, CIM, IEC 61968/70, and IEC 62351. Strong skills in modern technologies (.NET, Java, Python, JavaScript/ TypeScript), UI frameworks, backend systems, and containerized/cloud deployments. Knowledge of data modeling, API integration, network communications, and cybersecurity practices. Familiarity with configuration management systems, substation design tools, and integration with SCADA/DMS/EMS platforms is highly desirable. Exceptional leadership and communication skills with the ability to influence across technical and business teams. Experience operating in a matrixed global organization, managing distributed engineering teams. Strong analytical and problem-solving mindset focused on customer value and quality outcomes. Thought leadership through publications, standards participation, or conference speaking. Willingness to travel for key customer engagements, internal collaboration, or industry events. **For US Based Candidates - The base pay range for this position is 152,400.00 - 190,000.00 USD Annual. The specific pay offered may be influenced by a variety of factors, including the candidate’s experience, education, and skill set. This position is also eligible for a 15% variable incentive bonus annually. This posting is expected to close on 7/28/25. The Company pays a geographic differential of 110%, 120% or 130% of salary in certain areas. Healthcare benefits include medical, dental, vision, and prescription drug coverage; access to a Health Coach, a 24/7 nurse-based resource; and access to the Employee Assistance Program, providing 24/7 confidential assessment, counseling and referral services. Retirement benefits include the GE Retirement Savings Plan, a tax-advantaged 401(k) savings opportunity with company matching contributions and company retirement contributions, as well as access to Fidelity resources and planning consultants. Other benefits include tuition assistance, adoption assistance, paid parental leave, disability insurance, life insurance, and paid time-off for vacation or illness. General Electric Company, Ropcor, Inc., their successors, and in some cases their affiliates, each sponsor certain employee benefit plans or programs (i.e., is a “Sponsor”). Each Sponsor reserves the right to terminate, amend, suspend, replace, or modify its benefit plans and programs at any time and for any reason, in its sole discretion. No individual has a vested right to any benefit under a Sponsor’s welfare benefit plan or program. This document does not create a contract of employment with any individual. Additional Information Relocation Assistance Provided: No #LI-Remote - This is a remote position

Job Title: IoT Trainer Job Type: Full-Time, Onsite Location: Hyderabad, Telangana Experience Required: 2+ Years in IoT development or training Job Description: We are seeking a passionate and experienced IoT Trainer to deliver high-impact, hands-on training sessions at our Hyderabad facility. The ideal candidate will have solid experience in IoT development, embedded systems, and cloud platforms, with a strong ability to teach and mentor learners through real-world projects. Key Responsibilities: Design, develop, and deliver in-depth training modules on IoT fundamentals, architecture, protocols, and embedded firmware. Guide learners through practical, project-based sessions involving Arduino, ESP32, Raspberry Pi, and sensor-actuator integration. Train on key protocols like MQTT, CoAP, HTTP and cloud platforms such as AWS IoT, Azure IoT Hub, and GCP IoT. Supervise end-to-end IoT solution development including hardware setup, edge computing, cloud connectivity, and data visualization. Evaluate student performance through assignments and project work; support job-readiness and certifications. Continuously update curriculum with trends like edge AI, industrial IoT, and low-power sensor networks. Collaborate with technical teams to ensure training relevance and effectiveness. Required Skills & Qualifications: Bachelor's degree in Computer Science, ECE, Electronics, or related field. 2+ years of experience in IoT development or instructional roles. Hands-on with C/C++, Python, Arduino, ESP32, Raspberry Pi, and sensor integration. Proficient in IoT communication protocols: MQTT, CoAP, HTTP. Experienced with AWS IoT, Azure IoT, and Google Cloud IoT tools and dashboards. Knowledge of Git, IoT debugging tools, and basic cybersecurity concepts. Strong communication, mentoring, and classroom delivery skills.

JOB DESCRIPTION Join our team to play a pivotal role in mitigating tech risks and upholding operational excellence, driving innovation in risk management. As a Tech Risk & Controls Lead in Cybersecurity & Tech Controls team , you will be responsible for identifying, and mitigating compliance and operational risks in line with the firm's standards. You will also provide subject matter expertise and technical guidance to technology-aligned process owners, ensuring that implemented controls are operating effectively and in compliance with regulatory, legal, and industry standards. By partnering with various stakeholders, including Product Owners, Business Control Managers, and Regulators, you will contribute to the reporting of a comprehensive view of technology risk posture and its impact on the business. Your advanced knowledge of risk management principles, practices, and theories will enable you to drive innovative solutions and effectively manage a diverse team in a dynamic and evolving risk landscape. Job responsibilities Ensure effective identification, quantification, communication, and management of technology risk, focusing on root cause analysis and resolution recommendations Develop and maintain robust relationships, becoming a trusted partner with LOB technologists, assessments teams, and data officers to facilitate cross-functional collaboration and progress toward shared goals Execute reporting and governance of controls, policies, issue management, and measurements, offering senior management insights into control effectiveness and inform governance work Proactively monitor and evaluate control effectiveness, identify gaps, and recommend enhancements to strengthen risk posture and regulatory compliance Required qualifications, capabilities, and skills Formal Training or certification on Tech Risk & Controls and 5+ years applied experience Expertise in technology risk management, information security, or related field, emphasizing risk identification, assessment, and mitigation Experience in risk identification, assessment, and control evaluation, and threat modeling with a strong understanding of industry standard Demonstrated ability to analyze complex issues, develop and implement risk mitigation and threat modeling strategies, and communicate effectively with senior stakeholders Proficient knowledge of risk management frameworks, regulations, threat modeling methodologies and industry best practices Preferred qualifications, capabilities, and skills CISM, CRISC, CISSP, or similar industry-recognized risk and risk certifications are preferred Familiar in Thread modeling initiatives and integrating them in Broader risk management framework ABOUT US JPMorganChase, one of the oldest financial institutions, offers innovative financial solutions to millions of consumers, small businesses and many of the world’s most prominent corporate, institutional and government clients under the J.P. Morgan and Chase brands. Our history spans over 200 years and today we are a leader in investment banking, consumer and small business banking, commercial banking, financial transaction processing and asset management. We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants’ and employees’ religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation. ABOUT THE TEAM Our professionals in our Corporate Functions cover a diverse range of areas from finance and risk to human resources and marketing. Our corporate teams are an essential part of our company, ensuring that we’re setting our businesses, clients, customers and employees up for success.

Join our team to innovate in risk mitigation, leveraging your skills in a fast-paced, impactful environment. As a Tech Risk & Controls Analyst in Cybersecurity & Tech Controls team , you will be responsible for identifying, and mitigating compliance and operational risks in line with the firm's standards. You will also provide subject matter expertise and technical guidance to technology-aligned process owners, ensuring that implemented controls are operating effectively and in compliance with regulatory, legal, and industry standards. By partnering with various stakeholders, including Product Owners, Business Control Managers, and Regulators, you will contribute to the reporting of a comprehensive view of technology risk posture and its impact on the business. Your advanced knowledge of risk management principles, practices, and theories will enable you to drive innovative solutions and effectively manage a diverse team in a dynamic and evolving risk landscape. Job responsibilities Ensure effective identification, quantification, communication, and management of technology risk, focusing on root cause analysis and resolution recommendations Develop and maintain robust relationships, becoming a trusted partner with LOB technologists, assessments teams, and data officers to facilitate cross-functional collaboration and progress toward shared goals Execute reporting and governance of controls, policies, issue management, and measurements, offering senior management insights into control effectiveness and inform governance work Proactively monitor and evaluate control effectiveness, identify gaps, and recommend enhancements to strengthen risk posture and regulatory compliance Required qualifications, capabilities, and skills Formal Training or certification on Tech Risk & Controls and 1+ years applied experience Expertise in technology risk management, information security, or related field, emphasizing risk identification, assessment, and mitigation Experience in risk identification, assessment, and control evaluation, and threat modeling with a strong understanding of industry standard Demonstrated ability to analyze complex issues, develop and implement risk mitigation and threat modeling strategies, and communicate effectively with senior stakeholders Proficient knowledge of risk management frameworks, regulations, threat modeling methodologies and industry best practices Preferred qualifications, capabilities, and skills CISM, CRISC, CISSP, or similar industry-recognized risk and risk certifications are preferred Familiar in Thread modeling initiatives and integrating them in Broader risk management framework

JOB DESCRIPTION Join our team to play a pivotal role in mitigating tech risks and upholding operational excellence, driving innovation in risk management. As a Tech Risk & Controls Associate in Cybersecurity & Tech Controls team , you will be responsible for identifying, and mitigating compliance and operational risks in line with the firm's standards. You will also provide subject matter expertise and technical guidance to technology-aligned process owners, ensuring that implemented controls are operating effectively and in compliance with regulatory, legal, and industry standards. By partnering with various stakeholders, including Product Owners, Business Control Managers, and Regulators, you will contribute to the reporting of a comprehensive view of technology risk posture and its impact on the business. Your advanced knowledge of risk management principles, practices, and theories will enable you to drive innovative solutions and effectively manage a diverse team in a dynamic and evolving risk landscape. Job responsibilities Ensure effective identification, quantification, communication, and management of technology risk, focusing on root cause analysis and resolution recommendations Develop and maintain robust relationships, becoming a trusted partner with LOB technologists, assessments teams, and data officers to facilitate cross-functional collaboration and progress toward shared goals Execute reporting and governance of controls, policies, issue management, and measurements, offering senior management insights into control effectiveness and inform governance work Proactively monitor and evaluate control effectiveness, identify gaps, and recommend enhancements to strengthen risk posture and regulatory compliance Required qualifications, capabilities, and skills Formal Training or certification on Tech Risk & Controls and 2+ years applied experience Expertise in technology risk management, information security, or related field, emphasizing risk identification, assessment, and mitigation Experience in risk identification, assessment, and control evaluation, and threat modeling with a strong understanding of industry standard Demonstrated ability to analyze complex issues, develop and implement risk mitigation and threat modeling strategies, and communicate effectively with senior stakeholders Proficient knowledge of risk management frameworks, regulations, threat modeling methodologies and industry best practices Preferred qualifications, capabilities, and skills CISM, CRISC, CISSP, or similar industry-recognized risk and risk certifications are preferred Familiar in Thread modeling initiatives and integrating them in Broader risk management framework ABOUT US JPMorganChase, one of the oldest financial institutions, offers innovative financial solutions to millions of consumers, small businesses and many of the world’s most prominent corporate, institutional and government clients under the J.P. Morgan and Chase brands. Our history spans over 200 years and today we are a leader in investment banking, consumer and small business banking, commercial banking, financial transaction processing and asset management. We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants’ and employees’ religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation. ABOUT THE TEAM Our professionals in our Corporate Functions cover a diverse range of areas from finance and risk to human resources and marketing. Our corporate teams are an essential part of our company, ensuring that we’re setting our businesses, clients, customers and employees up for success.

JOB DESCRIPTION Join our team to innovate in risk mitigation, leveraging your skills in a fast-paced, impactful environment. As a Tech Risk & Controls Analyst in Cybersecurity & Tech Controls team , you will be responsible for identifying, and mitigating compliance and operational risks in line with the firm's standards. You will also provide subject matter expertise and technical guidance to technology-aligned process owners, ensuring that implemented controls are operating effectively and in compliance with regulatory, legal, and industry standards. By partnering with various stakeholders, including Product Owners, Business Control Managers, and Regulators, you will contribute to the reporting of a comprehensive view of technology risk posture and its impact on the business. Your advanced knowledge of risk management principles, practices, and theories will enable you to drive innovative solutions and effectively manage a diverse team in a dynamic and evolving risk landscape. Job responsibilities Ensure effective identification, quantification, communication, and management of technology risk, focusing on root cause analysis and resolution recommendations Develop and maintain robust relationships, becoming a trusted partner with LOB technologists, assessments teams, and data officers to facilitate cross-functional collaboration and progress toward shared goals Execute reporting and governance of controls, policies, issue management, and measurements, offering senior management insights into control effectiveness and inform governance work Proactively monitor and evaluate control effectiveness, identify gaps, and recommend enhancements to strengthen risk posture and regulatory compliance Required qualifications, capabilities, and skills Formal Training or certification on Tech Risk & Controls and 1+ years applied experience Expertise in technology risk management, information security, or related field, emphasizing risk identification, assessment, and mitigation Experience in risk identification, assessment, and control evaluation, and threat modeling with a strong understanding of industry standard Demonstrated ability to analyze complex issues, develop and implement risk mitigation and threat modeling strategies, and communicate effectively with senior stakeholders Proficient knowledge of risk management frameworks, regulations, threat modeling methodologies and industry best practices Preferred qualifications, capabilities, and skills CISM, CRISC, CISSP, or similar industry-recognized risk and risk certifications are preferred Familiar in Thread modeling initiatives and integrating them in Broader risk management framework ABOUT US JPMorganChase, one of the oldest financial institutions, offers innovative financial solutions to millions of consumers, small businesses and many of the world’s most prominent corporate, institutional and government clients under the J.P. Morgan and Chase brands. Our history spans over 200 years and today we are a leader in investment banking, consumer and small business banking, commercial banking, financial transaction processing and asset management. We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants’ and employees’ religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation. ABOUT THE TEAM Our professionals in our Corporate Functions cover a diverse range of areas from finance and risk to human resources and marketing. Our corporate teams are an essential part of our company, ensuring that we’re setting our businesses, clients, customers and employees up for success.

Job Title: HR Generalist & Admin Location: Kondapur, Hyderabad (Work from Office) Working Hours: 6:00 PM to 3:00 AM IST | US Shift About Netcom Learning: Netcom Learning is a leading provider of IT and Business training solutions, empowering organizations and individuals to achieve their learning and business goals. With over two decades of industry experience, we offer customized learning programs in Cloud, AI, Networking, Cybersecurity, Business Applications, and more. Our mission is to promote lifelong learning and help build a smarter workforce through world-class training solutions, strong partnerships, and dedicated support. Role Overview We are looking for a proactive and dependable HR Generalist & Admin who can seamlessly blend core HR functions with admin operations. This role supports the entire employee lifecycle, fosters engagement, and ensures smooth day-to-day office management Key Responsibilities HR Operations & Employee Lifecycle Manage end-to-end onboarding, confirmations, and exit processes Facilitate induction, welcome kits, system setup, and milestone tracking (30-60-90-day reviews) Coordinate appraisal cycles and HRMS updates Address employee queries, resolve grievances, and support performance improvement plans Employee Engagement & Experience Plan team-building activities, celebrations, and employee recognition events Conduct feedback surveys, analyze responses, and support follow-up action plans Office Operations Coordinate employee transportation and shift logistics Manage office admin like vendor coordination, etc Partner with external service providers for background verification, etc Documentation & Compliance Maintain accurate employee data and records in the HRMS Generate reports for audits and leadership review Ensure adherence to internal policies and statutory compliance What You’ll Bring Excellent communication and interpersonal skills Strong multitasking and coordination abilities Experience with HR tools and general office administration High level of ownership, discretion, and problem-solving ability A people-first approach with a focus on both structure and service

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Global Managed Service – Privileged Identity and access Management – Senior The Senior CyberArk Operations Support Analyst is a key member of the CyberArk Privileged Access Management (PAM) team, responsible for the advanced support and management of the CyberArk infrastructure. This role requires a deep understanding of PAM principles, CyberArk architecture, and cybersecurity best practices. The Senior Analyst will lead initiatives to enhance security, streamline processes, and ensure the stability and integrity of privileged account management systems Key Requirements / Responsibilities: Lead the administration and advanced support of the CyberArk PAM solution, including complex troubleshooting, policy management, and platform optimization. Design and implement enhancements to the CyberArk infrastructure to improve security, efficiency, and compliance with industry standards. Oversee the onboarding of new accounts, platforms, and integrations into the CyberArk environment, ensuring adherence to strict security guidelines. Conduct regular system audits to identify potential vulnerabilities and recommend remediation strategies. Mentor junior analysts and provide guidance on best practices and technical challenges. Develop and maintain comprehensive documentation for system configurations, procedures, and service records. Coordinate with cross-functional teams to support enterprise-wide cybersecurity initiatives and projects. Manage the response to critical incidents involving privileged accounts, including root cause analysis and preventive measures. Stay abreast of emerging threats and technologies in the PAM space and evaluate their impact on the organization. Lead the planning and execution of system upgrades, patches, and maintenance activities, minimizing disruption to business operations. Support compliance and regulatory activities by providing expertise and documentation as needed. Develop and maintain a comprehensive disaster recovery and business continuity plan for the CyberArk infrastructure, ensuring minimal downtime and quick restoration of services in the event of an outage. Collaborate with the cybersecurity architecture team to design and implement a robust privileged access management strategy that aligns with the organization's overall security posture. Lead security incident investigations related to privileged accounts, including forensic analysis, and collaborate with the incident response team to develop a coordinated response plan. Proactively monitor the CyberArk environment for unusual activities and potential threats using advanced security tools and techniques. Serve as the subject matter expert for CyberArk within the organization, providing insights and recommendations to senior management on PAM-related matters. Participate in vendor management, including evaluating potential software solutions, negotiating contracts, and managing relationships with CyberArk and other security vendors. Drive continuous improvement initiatives by regularly reviewing and updating CyberArk policies and procedures to reflect the evolving threat landscape and business needs. Facilitate cross-training and knowledge sharing sessions within the team to ensure redundancy in critical skill sets and promote a culture of continuous learning. Engage with the broader cybersecurity community to stay informed about new vulnerabilities, attack vectors, and defense mechanisms related to privileged access management. Influence and enforce security policies and procedures across the organization, ensuring that privileged access is managed in accordance with best practices and regulatory requirements. Assist in budget planning and management for the CyberArk operations team, including forecasting future needs for resources, tools, and training. Preferred Skills: Advanced knowledge of CyberArk PAM solutions, with relevant certifications such as CyberArk Certified Delivery Engineer (CDE), Defender, or Sentry. Proven experience in managing complex CyberArk environments, including components such as EPV, CPM, PSM, and AIM. Strong understanding of network security, identity and access management (IAM), and related technologies (e.g., SIEM, firewalls, multi-factor authentication). Expertise in scripting and automation to streamline operations and incident response. Excellent analytical, problem-solving, and decision-making skills. Leadership qualities and experience in mentoring or managing junior staff. Strong communication and presentation skills, with the ability to convey technical information to non-technical stakeholders Education: Bachelor’s degree in computer science, Information Technology, Cybersecurity, or a related field. Work Requirements: Willingness to travel as required Willingness to be on call support engineer and work occasional overtime as required Willingness to work in shifts as required EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. FS TR- ITC – Tech Risk As Risk consultant, you’ll contribute technically to Risk Consulting client engagements and internal projects. An important part of your role will be to actively establish, maintain and strengthen internal and external relationships. You’ll also identify potential business opportunities for EY within existing engagements and escalate these as appropriate. Similarly, you’ll anticipate and identify risks within engagements and share any issues with senior members of the team. In line with EY’s commitment to quality, you’ll confirm that work is of high quality and is reviewed by the next-level reviewer. As an influential member of the team, you’ll help to create a positive learning culture, coach and counsel junior team members and help them to develop. The opportunity We’re looking for Seniors Consultants to join the leadership group of our EY-Consulting Technology Risk Team. This is a fantastic opportunity to be part of a leading firm whilst being instrumental in the growth of a new service offering. Your Key Responsibilities Understanding on Control frameworks such as COSO, internal control principal and related regulations including SOX and J-SOX. Common IT governance and Assurance standards including NIST, COBIT, Risk IT, ITIL and third-party reporting standards as SSAE16. Understanding on independent and risk based operational audits such as Software Development Life Cycle (SDLC), Business Resilience, Cybersecurity audits, Data privacy and data protection audits, Network security audit. Understanding and hands-on experience on data analysis tool such as Tableau, Power Bi, python etc. Conduct performance reviews and contribute to performance feedback for staff. Adhere to the Code of Conduct. The Code of Conduct sets the standards of behaviour, actions, sand decisions we expect from our people. Participate in IT Risk and Assurance engagements. Work effectively as a team member, sharing responsibility, providing support, maintaining communication, and updating senior team members on progress. Help prepare reports and schedules that will be delivered to clients and other parties. Develop and maintain productive working relationships with client personnel. Responsible for managing reporting on assurance findings and ensure control owners take remediation action as required. Identify, lead, and manage the continuous improvement of Internal Controls through implementation of continuous control monitoring and automation. Obtain and review evidence of compliance for adherence to standards. Key domains of compliance controls, including change management, access to system, network and Data, computer operations and system development. Stay current with and promote awareness of applicable regulatory standards, upstream risk, and industry best practices across the enterprise. Skills And Attributes For Success Experience in application controls and Information security experience. Understanding of risk management systems and processes Ability to build relationships with key stakeholders across different levels of seniority. Strong written and verbal communication skills To qualify for the role, you must have. Preferably bachelor’s degree in (Finance/Accounting, Electronics, Electronics & Telecommunications, Comp. Science)/MBA/M.Sc./CA Minimum of 3-4 years of experience in internal controls and Internal Audit Enterprise risk services with specific focus on IT and related industry standards IT Risk Assurance framework Control frameworks such as COSO, internal control principles and related regulations including SOX and J-SOX Preferred security skills related to a broad range of operating systems, databases or security tools, e.g., UNIX, Linux, Windows 2000 and NT, firewalls and IDS systems. Familiarity with IT analysis, delivery, and operations methods, including SDLC and CM Familiarity with security and risk standards such as ISO 27001-2, PCI DSS, NIST, ITIL, COBIT Experience of security testing methods and techniques including network, operating and application system configuration review Application controls and security experience: sensitive access and SOD testing controls testing Knowledge of data analysis tools like MS Excel, MS Access, MS SQL Server, ACL, Monarch, etc. Preferred Certifications: CISA What We Look For We believe that you should own and shape your career. But we’ll provide the support and opportunities to develop the skills, knowledge and experience to succeed. The strength of our global network, combined with local empowerment and a relentless focus on winning in specific markets, means you’ll interact and team with individuals from various geographies and sectors. So, whenever you join, however long you stay, the exceptional EY experience lasts a lifetime. What Working At EY Offers At EY, we’re dedicated to helping our clients, from startups to Fortune 500 companies — and the work we do with them is as varied as they are. You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees, and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer: Support, coaching and feedback from some of the most engaging colleagues around Opportunities to develop new skills and progress your career. The freedom and flexibility to handle your role in a way that’s right for you. EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

Position: Security Analyst – Client Services & Team Leadership Location: Kochi, Kerala Experience : 3-8 years Team Size to Manage: 2–5 Junior Analysts Industry Type: IT Services & Consulting / Cybersecurity Functional Area: ISM/TVM/GRC/Threat Intelligence Budget : As per Industry Urgency : 15-30 days Job Description We are seeking a Security Analyst with strong technical skills, client-facing experience, and a passion for mentoring junior resources. This role is ideal for professionals looking to lead cybersecurity services, build teams, and deliver impactful security solutions to clients across industries. Key Responsibilities Lead end-to-end cybersecurity services for assigned clients, including incident response, threat analysis, and vulnerability management Conduct risk assessments , prepare technical reports , and advise clients on improving their security posture Mentor and train junior analysts; create training programs , SOPs, and knowledge-sharing sessions Monitor SIEM , EDR, IDS/IPS tools to detect, analyze, and respond to threats Develop and maintain use cases, detection rules, and incident escalation protocols Coordinate with internal and external stakeholders to meet SLA targets Document incident timelines, root cause analysis (RCA), and ensure compliance with security frameworks like ISO 27001 , NIST , or MITRE ATT&CK Requirements Education : Bachelor’s degree in computer science / Cybersecurity / Information Technology Experience : 3-7 years in cybersecurity operations 2+ years in a client-facing or leadership/mentoring role Technical Skills : Hands-on experience with SIEM tools (e.g., Splunk, QRadar) Working knowledge of Vulnerability Scanners (e.g., Nessus, Qualys) Proficiency in Incident Detection , Threat Hunting , EDR Tools Scripting skills (Python/PowerShell) is a plus Key Competencies Strong leadership and team-building skills Excellent verbal and written communication Analytical mindset and proactive problem solver Ability to manage clients, priorities, and incidents efficiently Job Type: Full-time Pay: From ₹300,000.00 per year Schedule: Day shift Education: Bachelor's (Required) Experience: Cyber Security analyst: 3 years (Required) Language: English (Required) Work Location: In person Expected Start Date: 01/07/2025

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. About EY GDS Global Delivery Services (GDS) is a dynamic and truly global delivery network. Across our six locations, we work with teams from all EY service lines, geographies and sectors, and play a vital role in the delivery of the EY growth strategy. We operate from six countries and sixteen cities: Argentina (Buenos Aires) China (Dalian) India (Bangalore, Chennai, Gurgaon, Hyderabad, Kochi, Kolkata, Mumbai, Noida, Trivandrum) Philippines (Manila) Poland (Warsaw and Wroclaw) UK (Manchester, Liverpool) Careers in EY Global Delivery Services Join a team of over 50,000 people, working across borders, to provide innovative and strategic business solutions to EY member firms around the world. Join one of our dynamic teams From accountants to coders, we offer a wide variety of fulfilling career opportunities that span all business disciplines Our Consulting practice provides differentiated focus on the key business themes to help our clients solve better questions around technology. Our vision is to be recognized as a leading provider of differentiated technology consulting services, harnessing new disruptive technology, alliances and attracting talented people to solve our clients' issues. It's an exciting time to join us and grow your career as a technology professional. A technology career is about far more than leading-edge innovations. It’s about the application of these technologies in the real world to make a real, meaningful impact. We are looking for highly motivated, articulate individuals who have the skills to the technology lifecycle and are passionate about designing innovative solutions to solve complex business problems. Your career in Consulting can span across these technology areas/ services lines: Digital Technologies: We are a globally integrated digital architecture and engineering team. Our mission is to deliver tailored, custom-built end to end solutions to our customers that are Digital, Cloud Native and Open Source. Our skills include Experience design, UI development, Design Thinking, Architecture & Design, Full stack development (.Net/ Java/ SharePoint/ Power Platform), Emerging Technologies like Block Chain, IoT, AR\VR, Drones, Cloud and DevSecOps. We use industrialized techniques, built on top of agile methods utilizing our global teams to deliver end to end solutions at best unit cost proposition. Testing Services: We are the yardstick of quality software product. We break something to make the product stronger and successful. We provide entire gamut of testing services including Busines / User acceptance testing. Hence this is a team with all round skills such as functional, technical and process. Data & Analytics: Data and Analytics is amongst the largest and most versatile practices within EY. Our sector and domain expertise combined with technical skills in data, cloud, advanced analytics and artificial intelligence differentiates us in the industry. Our talented team possesses cross-sector and cross-domain expertise and a wide array of skills in Information Management (IM), Business Intelligence (BI), Advance Analytics (AA) and Artificial Intelligence (AI) Oracle: We provide one-stop solution for end-to-end project implementation enabled by Oracle and IBM Products. We use proven methodologies, tools and accelerators to jumpstart and support large Risk and Finance Transformation. We develop solutions using various languages such as SQL or PL/ SQL, Java, Java Script, Python, IBM Maximo and other Oracle Utilities. We also provide consulting services for streamlining the current reporting process using various Enterprise Performance Management tools. SAP: By building on SAP’s S/4HANA digital core and cloud services, EY and SAP are working to help organizations leverage industry-leading technologies to improve operational performance. This collaboration helps drive digital transformation for our clients across areas including finance, human resources, supply chain and procurement. Our goal is to support clients as they initiate or undergo major transformation. Our capabilities span end-to-end solution implementation services from strategy and architecture to production deployment. EY supports clients in three main areas, Technology implementation support, Enterprise and Industry application implementation, Governance Risk Compliance (GRC) Technology. Banking and Capital Market Services: Banking and Capital Market Services companies are transforming their complex tax and finance functions with technologies such as AI and ML. With the right blend of core competencies, tax and finance personnel will shift to data, process and technology skills to service global clients on their Core Banking Platforms and support their business / digital transformation like Deposit system replacements, lending / leasing modernization, Cloud–native architecture (Containerization) etc. Wealth and Asset Management: We help our clients thrive in a transformative age by providing innovative services to global and domestic asset management clients to increase efficiency, effectiveness and manage the overall impact on bottom line profitability by leveraging the technology, data and digital teams. We do many operational efficiency programs and Technology Enabled Transformation to re-platform their front and Back offices with emerging technologies like AI, ML, Blockchain etc. Insurance Transformation: The current changing Macroeconomic trends continue to challenge Insurers globally. However, with disruptive technologies – including IoT, autonomous vehicles, Blockchain etc, we help companies through these challenges and create innovative strategies to transform their business through technology enabled transformation programs. We provide end to end services to Global P&C (General), Life and Health Insurers, Reinsurers and Insurance brokers. Cyber Security: The ever-increasing risk and complexity surrounding cybersecurity and privacy has put cybersecurity at the top of the agenda for senior management, the Board of Directors, and regulators. We help our clients to understand and quantify their cyber risk, prioritize investments, and embed security, privacy and resilience into every digitally-enabled initiative – from day one. Technology Risk: A practice that is a unique, industry-focused business unit that provides a broad range of integrated services where you’ll contribute technically to IT Risk and Assurance client engagements and internal projects. An important part of your role will be to actively establish, maintain and strengthen internal and external relationships. You’ll also identify potential business opportunities for EY within existing engagements and escalate these as appropriate. Similarly, you’ll anticipate and identify risks within engagements and share any issues with senior members of the team. Behavioral Competencies: Adaptive to team and fosters collaborative approach Innovative approach to the project, when required Shows passion and curiosity, desire to learn and can think digital Agile mindset and ability to multi-task Must have an eye for detail Skills needed: Should have understanding and/or experience of software development best practices and software development life cycle Understanding of one/more programming languages such as Java/ .Net/ Python, data analytics or databases such as SQL/ Oracle/ Teradata etc. Internship in a relevant technology domain will be an added advantage Qualification : BE - B. Tech / (IT/ Computer Science/ Circuit branches) Should have secured 60% and above No active Backlogs EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

Work Flexibility: Hybrid Who we want: Passionate & Goal-oriented Engineers: Passion for excellence in technology. Keeping the customer and requirements squarely in focus, people who deliver safe and robust solutions. Analytical problem solvers: Â People who go beyond just fixing to identify root causes, evaluate optimal solutions, and recommend comprehensive upgrades to prevent future issues. Dedicated achievers: Â People who thrive in a fast-paced environment and will stop at nothing to ensure a project is complete and meets regulations and expectations. Self-Driven Curious learners: Â People who take initiative and hold themselves accountable. People who seek out for cutting-edge research and information to expand and enhance their ability to develop new ideas into reality. Effective communicators: People who can interpret information clearly and accurately to concisely communicate results and recommendations to stakeholders, senior management, and their teams. What you will do: You will be responsible for Embedded Application Software Development, enhancements, and testing. You will be focusing on embedded software development and testing independently and supporting others. You will Participate in different stages of software development using defined SDLC and development models for the projects. Â Minimum Qualifications (Required): 8+ years of work experience in Embedded Software Application and Middleware Development and Testing. Excellent C++, OOPS programming skills with hands on experience in Modern C++ (C++11/ 14) Preferred Qualifications (Strongly desired): Good experience in architecting and designing applications using modern design patterns. Good experience in building development and cross compilations environments. Experience with build/config systems including U-BOOT, Yocto, CMake, Makefiles and Embedded Linux patch management including Cybersecurity releases. Solid experience in TDD, unit test frame works Parasoft, Gmock/test and continuous integration. Good to Have Good to have experience on lower-level interfaces and exposure to BSP/driver development for DDRx, SDHC, LVDS, PCIexpress, SPI, I2S, UART, I2C, USB, eMMC, PMIC, Ethernet. Good to have experience in board bring up, Hardware-Software debugging. Familiarity with ARM processors. Knowledge of Linux, VxWorks and QNX operating systems / RTOS is preferred. Knowledge of basic communication protocols like serial and wireless. Experience on products like hospital monitors (ECG, SPO2, CO2), defibrillators is a big plus. Familiarity with software configuration and defect management tools, and requirement management tools. Experience with a regulated software development processes or familiarity with FDA and ISO standards like IEC 62304 is a plus. Travel Percentage: 10%

Ready to shape the future of work? At Genpact, we don’t just adapt to change—we drive it. AI and digital innovation are redefining industries, and we’re leading the charge. Genpact’s AI Gigafactory , our industry-first accelerator, is an example of how we’re scaling advanced technology solutions to help global enterprises work smarter, grow faster, and transform at scale. From large-scale models to agentic AI , our breakthrough solutions tackle companies’ most complex challenges. If you thrive in a fast-moving, tech-driven environment, love solving real-world problems, and want to be part of a team that’s shaping the future, this is your moment. Genpact (NYSE: G) is an advanced technology services and solutions company that delivers lasting value for leading enterprises globally. Through our deep business knowledge, operational excellence, and cutting-edge solutions – we help companies across industries get ahead and stay ahead. Powered by curiosity, courage, and innovation , our teams implement data, technology, and AI to create tomorrow, today. Get to know us at genpact.com and on LinkedIn , X , YouTube , and Facebook . Inviting applications for the role of Senior Manager - Threat Modelling Analyst We are looking for a Threat Modeling Sr.Analyst/Architect to join our Global Information Security Team at Genpact. In this role, the candidate will be provided with an opportunity to research, analyse, design threat models and report on the emerging applicable cyber threats. In addition, this position seeks the candidate to notify the stakeholders with ontime, accurate findings on the targeted/sophisticated cyber threats and guide the leadership with practical approaches to thwart such attacks. The Threat Modeling Sr.Analyst/Architect is expected to work independently and produce effective mitigation strategies so that the organisation stays a step ahead of the ever-evolving cyber threats. The Threat Modeling Sr.Analyst/Architect needs to collect, analyse, and generate finished Threat Intelligence products and further leverage it to design and deliver relevant Threat Models to support Genpact LLC, its subsidiaries and additional lines of businesses. Responsibilities: The Threat Modelling Sr.Analyst/Architect role will require significant expertise from attack and/or intelligence domains. The successful candidate should be highly technical and will likely come from an attack background (red team, pen testing etc) or intelligence background (if also having hands-on network/systems experience). Candidates with threat modelling experience in tandem with previous attack/intelligence experience will be considered, as will candidates who do not have a threat modelling background and are presently working in attack/intelligence capacity & interested in transitioning to more of a hybrid role with threat modelling and controls responsibilities. The responsibilities for this position include, but are not limited to: developing threat modeling processes that analyze the firm’s ability to mitigate cyber-attacks across business and technology environments; developing cyber threat scenarios to enable risk management and the secure deployment of key organizational initiative; identifying areas for potential attacks and systemic security issues as they relate to threats and vulnerabilities, including recommendations for enhancements or remediation; preparing and delivering written and verbal briefings to message threat modeling findings across all levels of the enterprise; and monitoring the cyber threat environment to incorporate trends in potential attack activity.Maintain awareness of the cyber threat landscape and provide key/relevant updates to the leadership and InfoSec teams Qualifications we seek in you! Minimum Qualifications Bachelor’s degree or equivalent experience. Excellent command of cybersecurity organization practices, operations risk management processes, principles, architectural requirements, engineering threats and vulnerabilities, including incident response methodologies. Ability to identify network attacks and systemic security issues as they relate to threats and vulnerabilities, with a focus on recommendations for enhancements or remediation. Strong knowledge of: cloud computing, computer network defense, external organizations and academic institutions dealing with cybersecurity issues, financial authorities and regulations, identity management, incident management, information assurance, information management, information systems and network security and infrastructure design. Strong knowledge of cybersecurity activities associated with: requirements analysis, risk analytics and modeling, risk management; emerging issues, risks, vulnerabilities and technologies; and vulnerability assessment. Demonstrated attack experience in previous positions in functions such as red team operator or penetration testing. In lieu of attack experience, threat intelligence experience in conjunction with hands on systems/network experience will be considered. The candidate should have a technical background Preferred Qualifications/ Skills Strong understanding of the following: networking fundamentals (all OSI layers, protocols), Windows/Linux/Unix/Mac operating systems, OS and software vulnerably and exploitation techniques, commercial or open-source offensive security tools for reconnaissance, scanning, exploitation and post exploitation (e.g. Cobalt Strike, Metasploit, Nmap, Nessus, Burp Suite), and familiarity with interpreting log output from networking devices, operating systems, and infrastructure services. Understanding of national and international laws, regulations, policies and ethics related to financial industry cybersecurity. Foundational knowledge of: computer forensics; legal, government and jurisprudence as they relate to cybersecurity; operating systems; and methods for intelligence gathering and sharing. Nice to have: experience or working knowledge with threat modeling methodologies such as Stride, Pasta, or comparable experience visually representing data and process flows in an enterprise environment, and/or leveraging the MITRE ATT&CK Framework. Why join Genpact? Be a transformation leader – Work at the cutting edge of AI, automation, and digital innovation Make an impact – Drive change for global enterprises and solve business challenges that matter Accelerate your career – Get hands-on experience, mentorship, and continuous learning opportunities Work with the best – Join 140,000+ bold thinkers and problem-solvers who push boundaries every day Thrive in a values-driven culture – Our courage, curiosity, and incisiveness - built on a foundation of integrity and inclusion - allow your ideas to fuel progress Come join the tech shapers and growth makers at Genpact and take your career in the only direction that matters: Up. Let’s build tomorrow together. Genpact is an Equal Opportunity Employer and considers applicants for all positions without regard to race, color, religion or belief, sex, age, national origin, citizenship status, marital status, military/veteran status, genetic information, sexual orientation, gender identity, physical or mental disability or any other characteristic protected by applicable laws. Genpact is committed to creating a dynamic work environment that values respect and integrity, customer focus, and innovation. Furthermore, please do note that Genpact does not charge fees to process job applications and applicants are not required to pay to participate in our hiring process in any other way. Examples of such scams include purchasing a 'starter kit,' paying to apply, or purchasing equipment or training. Job Senior Manager Primary Location India-Gurugram Education Level Bachelor's / Graduation / Equivalent Job Posting Jun 25, 2025, 9:12:23 AM Unposting Date Ongoing Master Skills List Operations Job Category Full Time

Ready to shape the future of work? At Genpact, we don’t just adapt to change—we drive it. AI and digital innovation are redefining industries, and we’re leading the charge. Genpact’s AI Gigafactory , our industry-first accelerator, is an example of how we’re scaling advanced technology solutions to help global enterprises work smarter, grow faster, and transform at scale. From large-scale models to agentic AI , our breakthrough solutions tackle companies’ most complex challenges. If you thrive in a fast-moving, tech-driven environment, love solving real-world problems, and want to be part of a team that’s shaping the future, this is your moment. Genpact (NYSE: G) is an advanced technology services and solutions company that delivers lasting value for leading enterprises globally. Through our deep business knowledge, operational excellence, and cutting-edge solutions – we help companies across industries get ahead and stay ahead. Powered by curiosity, courage, and innovation , our teams implement data, technology, and AI to create tomorrow, today. Get to know us at genpact.com and on LinkedIn , X , YouTube , and Facebook . Inviting applications for the role of Senior Manager - Threat Modelling Analyst We are looking for a Threat Modeling Sr.Analyst/Architect to join our Global Information Security Team at Genpact. In this role, the candidate will be provided with an opportunity to research, analyse, design threat models and report on the emerging applicable cyber threats. In addition, this position seeks the candidate to notify the stakeholders with ontime, accurate findings on the targeted/sophisticated cyber threats and guide the leadership with practical approaches to thwart such attacks. The Threat Modeling Sr.Analyst/Architect is expected to work independently and produce effective mitigation strategies so that the organisation stays a step ahead of the ever-evolving cyber threats. The Threat Modeling Sr.Analyst/Architect needs to collect, analyse, and generate finished Threat Intelligence products and further leverage it to design and deliver relevant Threat Models to support Genpact LLC, its subsidiaries and additional lines of businesses. Responsibilities: The Threat Modelling Sr.Analyst/Architect role will require significant expertise from attack and/or intelligence domains. The successful candidate should be highly technical and will likely come from an attack background (red team, pen testing etc) or intelligence background (if also having hands-on network/systems experience). Candidates with threat modelling experience in tandem with previous attack/intelligence experience will be considered, as will candidates who do not have a threat modelling background and are presently working in attack/intelligence capacity & interested in transitioning to more of a hybrid role with threat modelling and controls responsibilities. The responsibilities for this position include, but are not limited to: developing threat modeling processes that analyze the firm’s ability to mitigate cyber-attacks across business and technology environments; developing cyber threat scenarios to enable risk management and the secure deployment of key organizational initiative; identifying areas for potential attacks and systemic security issues as they relate to threats and vulnerabilities, including recommendations for enhancements or remediation; preparing and delivering written and verbal briefings to message threat modeling findings across all levels of the enterprise; and monitoring the cyber threat environment to incorporate trends in potential attack activity.Maintain awareness of the cyber threat landscape and provide key/relevant updates to the leadership and InfoSec teams Qualifications we seek in you! Minimum Qualifications Bachelor’s degree or equivalent experience. Excellent command of cybersecurity organization practices, operations risk management processes, principles, architectural requirements, engineering threats and vulnerabilities, including incident response methodologies. Ability to identify network attacks and systemic security issues as they relate to threats and vulnerabilities, with a focus on recommendations for enhancements or remediation. Strong knowledge of: cloud computing, computer network defense, external organizations and academic institutions dealing with cybersecurity issues, financial authorities and regulations, identity management, incident management, information assurance, information management, information systems and network security and infrastructure design. Strong knowledge of cybersecurity activities associated with: requirements analysis, risk analytics and modeling, risk management; emerging issues, risks, vulnerabilities and technologies; and vulnerability assessment. Demonstrated attack experience in previous positions in functions such as red team operator or penetration testing. In lieu of attack experience, threat intelligence experience in conjunction with hands on systems/network experience will be considered. The candidate should have a technical background Preferred Qualifications/ Skills Strong understanding of the following: networking fundamentals (all OSI layers, protocols), Windows/Linux/Unix/Mac operating systems, OS and software vulnerably and exploitation techniques, commercial or open-source offensive security tools for reconnaissance, scanning, exploitation and post exploitation (e.g. Cobalt Strike, Metasploit, Nmap, Nessus, Burp Suite), and familiarity with interpreting log output from networking devices, operating systems, and infrastructure services. Understanding of national and international laws, regulations, policies and ethics related to financial industry cybersecurity. Foundational knowledge of: computer forensics; legal, government and jurisprudence as they relate to cybersecurity; operating systems; and methods for intelligence gathering and sharing. Nice to have: experience or working knowledge with threat modeling methodologies such as Stride, Pasta, or comparable experience visually representing data and process flows in an enterprise environment, and/or leveraging the MITRE ATT&CK Framework. Why join Genpact? Be a transformation leader – Work at the cutting edge of AI, automation, and digital innovation Make an impact – Drive change for global enterprises and solve business challenges that matter Accelerate your career – Get hands-on experience, mentorship, and continuous learning opportunities Work with the best – Join 140,000+ bold thinkers and problem-solvers who push boundaries every day Thrive in a values-driven culture – Our courage, curiosity, and incisiveness - built on a foundation of integrity and inclusion - allow your ideas to fuel progress Come join the tech shapers and growth makers at Genpact and take your career in the only direction that matters: Up. Let’s build tomorrow together. Genpact is an Equal Opportunity Employer and considers applicants for all positions without regard to race, color, religion or belief, sex, age, national origin, citizenship status, marital status, military/veteran status, genetic information, sexual orientation, gender identity, physical or mental disability or any other characteristic protected by applicable laws. Genpact is committed to creating a dynamic work environment that values respect and integrity, customer focus, and innovation. Furthermore, please do note that Genpact does not charge fees to process job applications and applicants are not required to pay to participate in our hiring process in any other way. Examples of such scams include purchasing a 'starter kit,' paying to apply, or purchasing equipment or training. Job Senior Manager Primary Location India-Gurugram Education Level Bachelor's / Graduation / Equivalent Job Posting Jun 25, 2025, 8:59:09 AM Unposting Date Ongoing Master Skills List Operations Job Category Full Time

Job Title: Cybersecurity Intern Location: Kolkata, Bangalore Duration: 3 months Company: Indian Cyber Security Solutions About Us: Indian Cyber Security Solutions is a leading cybersecurity service provider committed to securing digital assets and infrastructures. We specialize in ethical hacking, penetration testing, SOC services, and training. Join us to gain real-world experience in offensive security and make a measurable impact. Position Summary: We are looking for a passionate and motivated Cybersecurity Intern with foundational knowledge and practical experience in Web Application Penetration Testing (WAPT) . The intern will assist our VAPT team in identifying, analyzing, and reporting vulnerabilities in live web applications and gain valuable hands-on experience in real-time security engagements. Key Responsibilities: Assist in performing WAPT assessments on client-facing web applications. Use tools like Burp Suite, OWASP ZAP, Nmap, Nikto, and SQLmap for testing and scanning. Perform manual testing techniques to identify OWASP Top 10 vulnerabilities. Collect and document evidence of vulnerabilities and exploits found. Prepare structured vulnerability assessment and penetration testing reports. Coordinate with senior cybersecurity analysts for remediation steps and validation testing. Stay updated with the latest CVEs, exploits, and vulnerability trends. Participate in internal red team/blue team exercises if applicable. Required Skills & Knowledge: Basic understanding of OWASP Top 10 vulnerabilities (e.g., SQLi, XSS, CSRF, IDOR, etc.). Familiarity with WAPT tools : Burp Suite, OWASP ZAP, Nikto, etc. Knowledge of HTTP/HTTPS protocols, cookies, sessions, headers, and request/response cycles . Exposure to HTML, JavaScript, PHP, or other web technologies . Understanding of how web applications work and how to exploit weaknesses . Good analytical and documentation skills. Preferred Qualifications: Pursuing or completed a degree in Cybersecurity, Computer Science, or related fields . Completion of any course or certification related to Ethical Hacking or WAPT (CEH, eJPT, OSCP - a plus). Prior participation in CTFs, bug bounty programs , or security projects is a strong advantage. What You’ll Gain: Hands-on experience in professional penetration testing engagements . Exposure to real-world web vulnerabilities and enterprise security environments. Mentorship from industry experts. Certificate of internship completion. Potential for placement offer based on performance .

Qualification: Ph.D. in Computer Science / CSE / IT with strong academic record M.Tech/M.E. with First Class; GATE/NET score is a plus Minimum 8 years total experience in teaching/research/industry At least 3 years post-Ph.D. with good publication record Key Responsibilities: Teach advanced-level courses such as Artificial Intelligence, Machine Learning, Cloud Computing, Cybersecurity, Data Analytics, or Full Stack Development. Supervise M.Tech dissertations and Ph.D. research, helping students publish in journals/conferences. Secure minor/major research projects (e.g., AICTE, DST, UGC) and participate in interdisciplinary research. Mentor junior faculty and assist in onboarding and academic development. Contribute to curriculum restructuring, industry advisory board coordination, and BoS (Board of Studies) work. Guide departmental initiatives like MOOCs development, digital learning, or innovation cell activities. Review research proposals, academic papers, and student theses. Maintain active engagement with industry experts, alumni, and recruiters. Job Type: Full-time Pay: ₹70,000.00 - ₹150,000.00 per month Benefits: Health insurance Leave encashment Paid time off Provident Fund Schedule: Day shift Work Location: In person