348 Fortify Jobs - Page 14

Experience : 7-11 Years Location : Hyderabad only Skills Required Core Core technologies Java J2EE JSP HTML CSS JavaScript Spring MVC Springboot RESTSOAP JMS Publish Subscribe React Angular XML technologies and ORM frameworks Experience working with databases and data architectures RDMS Oracle Postgres NoSQL and Graph databases Experience working in multiple app servers Web logic JBoss Tomcat and web servers Apache Experience in working with clustered and container based app servers architectures Microservices Docker Kubernetes including high availability and scalability Hands on experience designing modern responsive User Interface applications using a framework such as React Angular along with deep knowledge on HTML CSS and JavaScript Strong experience with AWS such as EC2 VPC Route 53 API Gateway S3 RDS Lambda ECS Fargate etc Experience working with the DevOps practices and using tools technologies for software build automation test and delivery such as Source Control git Configuration Management Ansible Ansible Tower Build pipelines CICD GOMaven Jenkins Automated Test Junit Jest for software build automation and delivery Experience in working code security quality familiar with security tools such as SonarQube Fortify Experience in security single sign on IDP SP initiated SAML oAuthOpenID webgate high availability scalability Service OrientedAPI containers including virtualization and Micro services Hands on experience designing Rich User Interface responsive applications using HTML CSS and javascript libraries such as jquery angular js Experience of integration patterns and technologies RESTSOAP Messaging Micro services Strong understanding of Source Control Subversions Build Maven Test Automated Test JUnit and SOAPUI Experience in preparing technical artifacts presenting designs to peers building POCs and evolve to deployable code ability to present designs to peers Skills Mandatory Skills : Integration Architecture, Java, Application Architecture,SOA and Microservices Based Architecture,Cloud Architecture,Data Architecture,Angular,JavaScript,Microservices,React,SpringBoot Good to Have Skills: Angular, React Show more Show less

Job Description Some careers shine brighter than others. If you’re looking for a career that will help you stand out, join HSBC and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further. HSBC is one of the largest banking and financial services organisations in the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realise their ambitions. We are currently seeking an experienced professional to join our team in the role of Vulnerability Assessments – Senior Consultant Specialist In this role, you will: Leading the review of all newly discovered vulnerabilities, to assess if the provided risk score is correctly reflecting the risk to HSBC. Monitoring external threat feeds to identify any newly reported external risks. Managing the review of assigned tickets, determining potential false positive and/ or mitigation on approaches, and providing expert guidance/ advice on remediation. Ensuring all patterns identified for remediation and/ or false positive identification, are clearly documented within the central tools and applied across the HSBC identified threat estate. Identify critical paths of operation and ensure that they are followed to provide the most streamlined and efficient method of operating. Leading and managing thematic reviews in order to drive and maintain systematic uplifts and enhancements to CSAT and wider inter-operational units that help protect the bank. Maintain operational documentation on what reports are available and how to access and utilise existing filters. Conduct holistic reviews of the overall baseline security posture. Clear accountability and ownership of the Vulnerability Assessment and Response key control indicators and key risk indicators. Contribute to and inform requests from Regulators, Internal/ External Audit, and 2LOD challenges/ Papers. Supporting the commentary for routine governance submissions e.g. Cybersecurity Executive Committee Monthly Update, Risk Map, KCIs, KRIs. Supporting Imminent threat review sessions, and deputising for the chair when required. Engaging with the Global Head of Vulnerability Management, and relevant team members to review and gain approval for submissions and ensure information requests are aligned with the group risk appetite providing the expected responses. Adhoc tasks as required, including support to CSAT operational activities, handling escalations and requests from any team or angle. Requirements To be successful in this role, you should meet the following requirements: The ability to understanding, apply, and improve elements of the Vulnerability Management Lifecycle. The ability to use multiple toolsets to convey information, obtain data, and make it meaningful to future plans. Lateral thinking and creative form to deploy expertise in the uplift of people skills, process identifications, and technological adjustments. The ability to recognise threats and risk, and act with insight to deliver a core part of the Cyber Security Operational model in HSBC. Multiple functions will come together to ensure the safety of the bank and the ability to continue business under any circumstances. Ability to produce clear and concise reports for targeted audiences across internal and external stakeholders. Understanding and experience in the practical application and execution of: Vulnerability scanning technologies and their application (e.g. Nessus, SAST/MAST/DAST (Checkmarx, Netsparker, Fortify, IBM AppScan, etc.), OWASP top10 and SANS top25 vulnerabilities and their mitigations Tenable.io, Security Center (or similar Vulnerability Scanning products), risk consolidation platforms). Vulnerability assessments, scoring and ratings and how they are applied. Patch Management. Business and architectural design, including controls analysis, process flows and data flows. Cyber security principles, global financial services business models, regional compliance regulations and laws. Cryptography, SSL/TLS, Encryption. MS Excel to interrogate large data sets. SharePoint, Microsoft Teams and Confluence. Excellent organisational, administrative, analytical, and problem-solving skills with the ability to work accurately and methodically whilst under pressure to meet deadlines. Instinctive and creative, with an ability to create and contribute to bespoke solutions. Flexible approach to shifting or competing priorities. Process orientated, outstanding organizational skills. Proven track record on delivering activities on time to a high standard. High level of integrity and strong ethical values. Pro-active, independent, collaborative team player with a positive attitude. Strong interpersonal skills with the ability to create and maintain relationships - Internal relationships extend to peers across other functions within IT and externally to HSBC global businesses, which include external relationships with vendors, typically audit, legal, and technology where the need arises. Experience of working in roles within Cyber Security Operations, Risk Management, and Governance, within a mid to large enterprise or equivalent organisation. Minimum of 8+ years’ experience in working in IT Security or similar role. Ability to work remotely. You’ll achieve more when you join HSBC. www.hsbc.com/careers HSBC is committed to building a culture where all employees are valued, respected and opinions count. We take pride in providing a workplace that fosters continuous professional development, flexible working and opportunities to grow within an inclusive and diverse environment. Personal data held by the Bank relating to employment applications will be used in accordance with our Privacy Statement, which is available on our website. Issued by – HSBC Software Development India Show more Show less

Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health optimization on a global scale. Join us to start Caring. Connecting. Growing together. Primary Responsibility Comply with the terms and conditions of the employment contract, company policies and procedures, and any and all directives (such as, but not limited to, transfer and/or re-assignment to different work locations, change in teams and/or work shifts, policies in regards to flexibility of work benefits and/or work environment, alternative work arrangements, and other decisions that may arise due to the changing business environment). The Company may adopt, vary or rescind these policies and directives in its absolute discretion and without any limitation (implied or otherwise) on its ability to do so Required Qualifications B.E / MCA / B.Tech / MTECH /MS Graduation (Minimum 16 years of formal education, Correspondence courses are not relevant) 2+ years of experience on Azure database offering like SQL DB, Postgres DB, constructing data pipelines using Azure data factory, design and development of analytics using Azure data bricks and snowpark 2+ years of experience on Cloud based DW: Snowflake, Azure SQL DW 2+ years of experience in data engineering and working on large data warehouse including design and development of ETL / ELT 3+ years of experience in constructing large and complex SQL queries on terabytes of warehouse database system Good Knowledge on Agile practices - Scrum, Kanban Knowledge on Kubernetes, Jenkins, CI / CD Pipelines, SonarQube, Artifactory, GIT, Unit Testing Main tech experience : Dockers, Kubernetes and Kafka Database: Azure SQL databases Knowledge on Apache Kafka and Data Streaming Main tech experience : Terraform and Azure.. Ability to identify system changes and verify that technical system specifications meet the business requirements Solid problem solving, analytical kills, Good communication and presentation skills, Good attitude and self-motivated Solid problem solving, analytical kills Proven good communication and presentation skills Proven good attitude and self-motivated Preferred Qualifications 2+ years of experience on working with cloud native monitoring and logging tool like Log analytics 2+ years of experience in scheduling tools on cloud either using Apache Airflow or logic apps or any native/third party scheduling tool on cloud Exposure on ATDD, Fortify, SonarQube Unix scripting, DW concepts, ETL Frameworks: Scala / Spark, DataStage At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone - of every race, gender, sexuality, age, location and income - deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes - an enterprise priority reflected in our mission. Show more Show less

Line of Service Advisory Industry/Sector FS X-Sector Specialism Risk Management Level Senior Associate Job Description & Summary The SOC Analyst –L3 will be part of existing Ares Global SOC team and will be responsible for day-to-day security operations by responding to and investigating security events of interest and recommending or taking corrective action by working with IT and non-IT team members. They will also respond to security incident and investigation requests in line with established Security Incident Response processes and procedures, within defined service level targets. This position requires shift work in a 24*7*365 environment. Why PWC At PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes for our clients and communities. This purpose-led and values-driven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences for each other. Learn more about us. At PwC, we believe in providing equal employment opportunities, without any discrimination on the grounds of gender, ethnic background, age, disability, marital status, sexual orientation, pregnancy, gender identity or expression, religion or other beliefs, perceived differences and status protected by law. We strive to create an environment where each one of our people can bring their true selves and contribute to their personal growth and the firm’s growth. To enable this, we have zero tolerance for any discrimination and harassment based on the above considerations. " Job Description & Summary: We are seeking a highly skilled and experienced Cybersecurity/Risk Consulting Senior Associate to join our Risk Consulting team. As a Cybersecurity Senior Associate, you will be responsible for leading and managing a team of consultants to deliver high-quality cybersecurity and risk management services to our clients. Responsibilities Key Responsibilities: Good interpersonal skills (written and oral communication) and ability to articulate complex issues Ability to communicate technical information clearly and concisely, commensurate with the audience Conceptual thinking and communication skills — the ability to conceptualize complex business and technical requirements into comprehensible models and templates. Good communicator (written and verbal) and listener. Must be a team player and motivated self-starter with ability to work independently with limited supervision. Must be assertive, methodical and detail oriented Technical Experience Experience in Web and Mobile Application Security Testing, Vulnerability Assessment and Penetration testing Analyze scan reports and suggest remediation / mitigation plan for security vulnerabilities Should be aware of tools like Qualys, HP Fortify, IBM Appscan, Burpsuite, Kali Linux suite of tools Expertise in mobile apps reverse engineering and in-depth knowledge of Android and iOS ecosystems. Knowledge of industry standard tools for mobile pentest. Thorough understanding of OWASP Top 10 vulnerabilities and their mitigations. Knowledge of Network Security technology in areas of Firewall, IPS, VPN, Gateway security solutions (proxy, web filtering) Conduct penetration test and launch exploits using Nessus, Metaspoilt, kali linux penetration testing distribution tools sets Conduct Vulnerability Assessments of Network Devices using various open source and commercial tools Map out a network, discover ports and services running on the different exposed network and security devices Research and maintain proficiency in computer network exploitation, tools, techniques, countermeasures, and trends in computer network vulnerabilities, data hiding, network security, and encryption. In-depth understanding on Common Vulnerability Exposure (CVE)/ CERT advisory database. Broad background of networks, operating systems (Window, Unix, Linux), firewalls and security engineering concepts. Knowledge of scripting languages (Perl, Python, Shell etc) will be added advantage Knowledge of Open-Source Security Testing Methodology Manual (OSSTMM) Mandatory Skill Sets CEH, ECSA, LPT (any one) Preferred Skill Sets OSCP, OSWE Years Of Experience Required 2-10 Years Education Qualification B.Tech ee in Information Technology, Cybersecurity, Computer Science Professional Certifications like CEH, CCSE, CCNA, Security+, etc., will be plus SIEM certifications Education (if blank, degree and/or field of study not specified) Degrees/Field of Study required: Bachelor of Engineering, Master of Business Administration Degrees/Field Of Study Preferred Certifications (if blank, certifications not specified) Required Skills Microsoft Defender, Palo Alto Cortex XSOAR, Splunk Optional Skills SoCs Desired Languages (If blank, desired languages not specified) Travel Requirements Not Specified Available for Work Visa Sponsorship? No Government Clearance Required? No Job Posting End Date Show more Show less

Line of Service Internal Firm Services Industry/Sector Not Applicable Specialism IFS - Human Capital (HC) Management Level Associate Job Description & Summary At PwC, our people in risk and compliance focus on maintaining regulatory compliance and managing risks for clients, providing advice, and solutions. They help organisations navigate complex regulatory landscapes and enhance their internal controls to mitigate risks effectively. Those in governance, risk, controls and compliance at PwC will be responsible for confirming regulatory compliance and managing risks for clients. Your work will involve providing advice and solutions to help organisations navigate complex regulatory landscapes and enhance their internal controls to mitigate risks effectively. *Why PWC At PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes for our clients and communities. This purpose-led and values-driven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences for each other. Learn more about us . At PwC, we believe in providing equal employment opportunities, without any discrimination on the grounds of gender, ethnic background, age, disability, marital status, sexual orientation, pregnancy, gender identity or expression, religion or other beliefs, perceived differences and status protected by law. We strive to create an environment where each one of our people can bring their true selves and contribute to their personal growth and the firm’s growth. To enable this, we have zero tolerance for any discrimination and harassment based on the above considerations. " Job Summary: A career in our Ethics and Business Conduct - Practice Support practice, within Risk and Compliance services, will provide you the opportunity to work with a team that provides clients with extensive risk and controls technical knowledge and sector specific experience. You’ll have the opportunity to develop a holistic approach to risk that protects businesses, facilitates strategic decision making and enhances efficiency by assisting management in the assessment of project risks and controls. Our team helps PwC develop and design effective compliance and ethics initiatives that help us proactively manage our ethics and compliance programmes. You’ll assist through all stages of the compliance and ethics life cycle including compliance programme assessments, development and transformation, risk assessment, and industry regulatory compliance. Job description Become a part of our Compliance team within the Ethics and Business Conduct Function, where you will work alongside various internal departments to fortify the organization's internal controls and compliance measures. Your pivotal role will involve identifying potential risks and assisting relevant departments in creating risk mitigation strategies to safeguard our operations and enhance processes and controls. Your efforts will bolster our strategic decision-making and operational efficiency, ensuring adherence to ethical standards and regulatory compliance. Responsibilities: The role involves working in the following areas: 1. Analyze and assess risks and internal controls, identifying potential areas of vulnerability and recommending mitigation strategies 2. Review and evaluate the effectiveness of internal controls, identifying areas for improvement and recommending enhancements. 3. Conduct comprehensive monitoring and testing of compliance with a wide range of regulations, including but not limited to the Labor laws, EHS, Data privacy regulations, Companies Act, Tax laws, etc. 4. Utilize data analysis tools like Power BI, Alteryx, and Excel to analyze large datasets, identify trends, and generate comprehensive reports for senior management 5. Collaborate with stakeholders across various departments within PwC India, including legal, finance, HR, and operations, to ensure compliance with relevant regulations. 6. Support and lead other functional initiatives (as needed) in areas such as trainings, promoting culture of controls & compliance awareness, etc. Mandatory skill sets: Strong understanding of Indian laws and regulations, particularly those related to labor, environmental, data privacy, secretarial, tax, etc Hands on exposure of monitoring and testing of applicable statutory requirements for large MNCs in service sector or listed entities Preferred skill sets: Internal audit/ exposure in controls compliance/ control testing Years of experience required: 3-5 years Education qualification: CA, MBA, M.Com, CS, LLB (Experience in regulatory compliances monitoring will be an added advantage) Education (if blank, degree and/or field of study not specified) Degrees/Field of Study required: Master of Business Administration, Chartered Accountant Diploma Degrees/Field of Study preferred: Certifications (if blank, certifications not specified) Required Skills Compliance Monitoring Optional Skills Accepting Feedback, Accepting Feedback, Active Listening, Business Decisions, Business Performance Management, C-Level Presentations, Communication, Compliance Frameworks, Compliance Policies, Compliance Program Implementation, Compliance Review, Controls Testing, Corporate Governance, Emotional Regulation, Empathy, External Audit, Finance Target Operating Model, Finance Transformation, Financial Reporting, Fraud Detection, Fraud Prevention, Group Facilitation, Inclusion, Intellectual Curiosity, Internal Audit {+ 12 more} Desired Languages (If blank, desired languages not specified) Travel Requirements Available for Work Visa Sponsorship? Government Clearance Required? Job Posting End Date Show more Show less

Summary Description Summary of This Role Responsible for overseeing Application systems, architecture, design, data workflow, logical processes, and system interfaces. Assure synergy between software and hardware architecture to maximize that relationship. Determine and develop architectural approaches and solutions, conduct business reviews, document current systems, and develop recommendations on how to proceed with the applications. Responsible for ensuring optimal application and system performance. What Part Will You Play? Accountable for ownership of client’s needs and requests. Complete client maintenance as requested, ensuring verification of changes with quality and accuracy. Prepare for and attends established client issues calls. Participate in or facilitate internal and external meetings, assists in research, fact finding and in preparing proper documentation. Prepare for and attends established development meetings. Document and maintain any communication with clients. Able to determine impact across component lines of development, issues or client requests. Facilitates knowledge transfer between ongoing projects and client issues to ensure components are meeting client and TSYS needs. Help determine alternatives to meet client needs or increase revenue opportunities for TSYS. May represent department in various focus groups. Understand and consult on system design, utilization and availability of value added products and is able to offer product alternatives. Understand client’s strategic needs Keep current on system and module enhancements. Serve as authority on all module/client-related issues. Develop high-level client relationships. Document any communication with client. Continue to develop and maintain positive working relationships with various areas within TSYS organization. To solve any client software problems relating to TSYS software, identify bugs using various tools and provide solution Understand and adhere to department practices, procedures, and methodologies. Maintain an extensive knowledge of the industry, transaction processing, and/or financial services businesses. Perform detailed and complex analysis, issue resolution, developmental requests, and change controls to select system components, while maintaining a high level of system data integrity, focusing to ensure overall success. Technical Ownership - Guides team member to finalize solution or best suited work-around Responsible to find required solution for escalated situations and Acts as an escalation point based on allocated client. Participates on internal/external conference call (viz. ECAB) as required, Serves in the role of peer reviewer of technical analysis or solution. Manage multiple team members performing skilled tasks. Provides techno functional support to team to ensure work allocated is completed timely and to expected quality. Evaluates performance and motivate resources to achieve optimum performance. Facilitates meetings for conflict resolution. Maintain the history of team member skill set and feedbacks related to them. Monitor team for their progression to meet career objective through regular meetings and feedback. Set goals and conducts the performance evaluation as per progress made. Keep track of performance metrics for each goals. Facilitate and administer demand-based skill set growth and product knowledge. What Are We Looking For in This Role? Minimum Qualifications Bachelor's Degree in Engineering fields Typically Minimum 6 Years Relevant Exp Four-year college degree and 6+ years professional experience in coding, designing, developing and analyzing data with full life cycle design and development Preferred Qualifications Bachelor’s degree in computer science What Are Our Desired Skills and Capabilities? Desired Skills ASP.Net Core, WEB Restful APIs, JQuery, Microsoft LINQ Or Java, J2EE, Spring Boot, Spring Packages and Frameworks, Java Script. Strong in OOPs concepts Basic database Development skills, specifically in Oracle 12C PL/SQL, Hands-On experience of enterprise systems development Excellent understanding of Application Security Hands-on experience of modernization architecture and tools, such as G5, Liquibase, Git, Jenkins and AWS etc. Good To Have Skills Familiar with Application Security related tools like Fortify on demand, Burp suits, blackduck etc. Good understanding of SAST, DAST and PCI or high interest in application security related work. Previous experience with TSYS/GPN platforms Knowledge in Payment Systems processes and cycles: Issuing, Authorization, Clearing and Settlement Familiar with ISO 8583 message format Show more Show less

About BNP Paribas India Solutions: Established in 2005, BNP Paribas India Solutions is a wholly owned subsidiary of BNP Paribas SA, European Union’s leading bank with an international reach. With delivery centers located in Bengaluru, Chennai and Mumbai, we are a 24x7 global delivery center. India Solutions services three business lines: Corporate and Institutional Banking, Investment Solutions and Retail Banking for BNP Paribas across the Group. Driving innovation and growth, we are harnessing the potential of over 10000 employees, to provide support and develop best-in-class solutions. About BNP Paribas Group: BNP Paribas is the European Union’s leading bank and key player in international banking. It operates in 65 countries and has nearly 185,000 employees, including more than 145,000 in Europe. The Group has key positions in its three main fields of activity: Commercial, Personal Banking & Services for the Group’s commercial & personal banking and several specialised businesses including BNP Paribas Personal Finance and Arval; Investment & Protection Services for savings, investment, and protection solutions; and Corporate & Institutional Banking, focused on corporate and institutional clients. Based on its strong diversified and integrated model, the Group helps all its clients (individuals, community associations, entrepreneurs, SMEs, corporates and institutional clients) to realize their projects through solutions spanning financing, investment, savings and protection insurance. In Europe, BNP Paribas has four domestic markets: Belgium, France, Italy, and Luxembourg. The Group is rolling out its integrated commercial & personal banking model across several Mediterranean countries, Turkey, and Eastern Europe. As a key player in international banking, the Group has leading platforms and business lines in Europe, a strong presence in the Americas as well as a solid and fast-growing business in Asia-Pacific. BNP Paribas has implemented a Corporate Social Responsibility approach in all its activities, enabling it to contribute to the construction of a sustainable future, while ensuring the Group's performance and stability. Commitment to Diversity and Inclusion At BNP Paribas, we passionately embrace diversity and are committed to fostering an inclusive workplace where all employees are valued, respected and can bring their authentic selves to work. We prohibit Discrimination and Harassment of any kind and our policies promote equal employment opportunity for all employees and applicants, irrespective of, but not limited to their gender, gender identity, sex, sexual orientation, ethnicity, race, colour, national origin, age, religion, social status, mental or physical disabilities, veteran status etc. As a global Bank, we truly believe that inclusion and diversity of our teams is key to our success in serving our clients and the communities we operate in. About Business Line /Function : At BNP Paribas Deutschland, we are working on the next stage of banking and trading to allow our customers access to our services through modern third-party offerings. APIs enable us to work more closely with partners to create new solutions with added value for our customers. In addition to our existing APIs, we want to develop and implement new ideas, build a platform for developers and continuously work on the developer experience. In this way, we want to extend cooperation with large and small enterprises with the goal to build an ecosystem. Job Title: IT Solution Architect Date: Department: ISPL – PI Germany Location: Chennai Business Line / Function: IT Solution Architecture Reports to: (Direct) Grade: (if applicable) Senior Expert (Functional) Number of Direct Reports: Directorship / Registration: NA POSITION PURPOSE The Solution Architect is responsible for evaluating business needs and determining how IT can support those needs leveraging application architecture, software, hardware, or infrastructure. The Solution Architect Has a global knowledge in one or several business domains and is assigned to one or several products/tribes. Works with project/product teams and sponsors to provide solutions that address specific business problems/needs and ensures solution compliance/alignment with the architecture framework (guidelines, standards principles) Has a deep knowledge of the PI information system and technologies to suggest the most appropriate solution according to the business requirements and provides insights that facilitate decision-making. Works in close collaboration with the other architects and with Subject Matter Experts, in addition to business and IT teams. Solution Architecture tasks Contribute to analyze the business needs and their importance. Contribute to analyze functional and non-functional requirements. Analyze current technologies/services, available at BNP Paribas. Make architectural recommendations. Determine how to use them to design the most appropriate solution. Define solution scenarios and criteria to facilitate decision-making. Define solution evolution stages according to business priorities. Contribute to validate technology assumptions. Contribute to prepare testing requirements and strategy. Maintain Architectural designs/diagrams in the repository tool (EA Sparx). Solution implementation and support Contribute to build solution prototype (PoC, MVP) Support project/product teams to understand the Architecture design Architecture Vision Understand architecture vision and technology trends of BNP Paribas. Explore practical application of existing, new and emerging technologies and solutions in the Industry. Contribute to technology watch studies(PoC / MVP) in the area of expertise for product/project perimeter. Reference Architecture Contribute to reference architecture of the Group. Contribute to architecture framework and maintenance of PI IT & the Group. Evaluate supplier capabilities with respect to third party tools and how they could contribute to the overall solution. Govern and Control Contribute to prepare project architecture documentation (PAD), detailed specifications, etc. Support project manager as part of architecture committees Ensures that solutions satisfy architecture guidelines, standards, and principles. Ensure that architecture specifications fit with service level expectations. Responsibilities DIRECT RESPONSIBILITIES Analyze requirements (functional and non-functional) and create solution architecture Prepare decision paper for different solution scenarios. Responsible for the architecture document in quality of content and completeness (security aspects, risks, diagrams, cloud maturity aspects) Create use case realizations with detailed information for development team Maintain EA Sparx repository regularly and keep it updated CONTRIBUTING RESPONSIBILITIES Support development team regarding questions related to the proposed architecture Review output of development regarding the designed solution Support creation of architecture blueprints. TECHNICAL & BEHAVIORAL COMPETENCIES Has more than 4 years of experience as Solution Architect and minimum 8 years of experience in software development Has a good knowledge in enterprise modelling tool (EA Sparx, ArchiMate, etc.) Experienced in developing Java based Web Applications using frameworks like Spring, SpringBoot, Hibernate, Angular/JSP, Tomcat/Websphere and Database (Oracle/MySQL/PostGres) Has a good knowledge in design principles (DDD, event driven design, REST API design with OpenAPI (swagger), documentation) Has practical experience in architecture concepts like micro services Has a good knowledge in architecture patterns to build secure cloud solutions (IBM cloud, AWS, Azure, Open stack etc.) Is familiar with architecture frameworks (e.g., TOGAF). Expert in modelling methods (e.g., UML, BPMN) Has a good knowledge in data modelling. Knows current technologies about cloud, cyber security, data. Experience in architecture and design of frontend applications (web and mobile) and related technologies Has long experience in software development of complex IT projects. Has good knowledge in CI/CD processes, Gitlab/Github, Ansible, Fortify, NexusIQ and Cloud or virtual environments like OpenShift or similar. Has detailed knowledge about IT authentication and authorization standards like OAuth, SAML, IDPs, LDAP, SSO technologies. Has awareness of International and European standards regarding Cyber Security, financial communication protocols, European accessibility act. Core skill sets: Communication expertise is mandatory, as solution architects need to be able to understand and communicate with business and IT (different roles). Strong presentation skills Works very structured and organized. Has very good analytical skills and able to explain complex issues. Has experience working in agile teams. Is a critical thinker, engaged and responsible. Fluent in English both speaking and writing which is a must. German speaking is an advantage. SPECIFIC QUALIFICATIONS (IF REQUIRED) Skills Referential Behavioural Skills: (Please select up to 4 skills) Ability to collaborate / Teamwork Creativity & Innovation / Problem solving Attention to detail / rigor Ability to deliver / Results driven Transversal Skills: (Please select up to 5 skills) Ability to develop and adapt a process Ability to understand, explain and support change Analytical Ability Ability to anticipate business / strategic evolution Ability to manage / facilitate a meeting, seminar, committee, training… Education Level: Bachelor Degree or equivalent Experience Level At least 10 years Other/Specific Qualifications (if required)

Our software engineers at Fiserv bring an open and creative mindset to a global team developing mobile applications, user interfaces and much more to deliver industry-leading financial services technologies to our clients. Our talented technology team members solve challenging problems quickly and with quality. We're seeking individuals who can create frameworks, leverage developer tools, and mentor and guide other members of the team. Collaboration is key and whether you are an expert in a legacy software system or are fluent in a variety of coding languages you're sure to find an opportunity as a software engineer that will challenge you to perform exceptionally and deliver excellence for our clients. Full-time Entry, Mid, Senior Yes (occasional), Minimal (if any) Responsibilities Requisition ID R-10358465 Date posted 05/15/2025 End Date 06/10/2025 City Pune State/Region Maharashtra Country India Location Type Onsite Calling all innovators – find your future at Fiserv. We’re Fiserv, a global leader in Fintech and payments, and we move money and information in a way that moves the world. We connect financial institutions, corporations, merchants, and consumers to one another millions of times a day – quickly, reliably, and securely. Any time you swipe your credit card, pay through a mobile app, or withdraw money from the bank, we’re involved. If you want to make an impact on a global scale, come make a difference at Fiserv. Job Title Tech Lead, Software Development Engineering Job Posting Title – Sr Java Backend Developer What does an outstanding Developer do at Fiserv? FDPOS Team is looking for talented Java Backend Developer to join our Development team. The ability to think tactically as well as strategically and to articulate your expectations to a mixed team of engineers, senior level developers is critical to the success in this role. In addition to these important skills, it is imperative that you can summarize technical issues relating to software implementation, function, and upgrades and to prepare written and verbal updates to senior level management. This is a hands-on technical role and will resolve all technical issues within lower and upper environments and making recommendation for performance and capacity improvements. Additionally, you will focus using analytical and troubleshooting skills to provide project participation, support continuity, and rotating on-call escalation. Teamwork and creativity are essential to this role. As a go-to point of escalation, you will be challenged with resolving client impacting issues in a fast-paced environment. What you will do: Application Development in Java, Spring, Spring Boot, PL/SQL on Linux platform Build reactive UI based applications based off Angular Build high performance low-latency enterprise grade APIs to enable real-time data processing, with direct impact on revenue generation streams. Active participation in agile (Scrum) deployment team activities Partnering with business and technical SMEs to understand relevant data, analyze and perform necessary deep dive to solve given business problem, summarize and present key findings. Learning and mastering the payment card processing business domain and our systems Participate in all Production Support activities during incidents and outages. Continuously improve our infrastructure to be easy to deploy, scalable, secure and fault tolerant. Participate in capacity planning, tuning systems stability, provisioning, performance, and scaling of the application infrastructure. What you will need to have: Bachelor’s degree required; relevant, equivalent 10+ years of work experience Strong hands-on experience with Java, Spring, Spring Boot, SQL on Linux platform Strong hands-on experience with JPA, Hibernate, Spring Data Good understanding of HTML, CSS Good understanding of Git based workflow and repositories like Gitlab/BitBucket Good understanding of working with OpenAPI 2/3 specifications Good understanding of building secure applications and using tools like Fortify/Sonar Strong technical experience with Linux What would be nice/great to have: Basic understanding of Typescript & Angular Experience with Cloud platforms like AWS and cloud migration Agile development environment Continuous Integration / Continuous Delivery – Gitlab/Harness deployments and pipelines Collaboration platforms such as JIRA, Confluence Thank you for considering employment with Fiserv. Please: Apply using your legal name Complete the step-by-step profile and attach your resume (either is acceptable, both are preferable). Our commitment to Diversity and Inclusion: Fiserv is proud to be an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, gender, gender identity, sexual orientation, age, disability, protected veteran status, or any other category protected by law. Note to agencies: Fiserv does not accept resume submissions from agencies outside of existing agreements. Please do not send resumes to Fiserv associates. Fiserv is not responsible for any fees associated with unsolicited resume submissions. Warning about fake job posts: Please be aware of fraudulent job postings that are not affiliated with Fiserv. Fraudulent job postings may be used by cyber criminals to target your personally identifiable information and/or to steal money or financial information. Any communications from a Fiserv representative will come from a legitimate Fiserv email address.

Job Title: Security Engineer Location: Chennai (5 Days Onsite) Employment Type: Contract Role Overview We are seeking a skilled and detail-oriented Security Engineer to join our team in Chennai on a contract basis. The ideal candidate will have hands-on experience in application security testing, static code analysis, and vulnerability assessments for web and mobile applications. Key Responsibilities Perform Application Security Testing using tools such as Burp Suite, ZAP , and Postman . Conduct OWASP Top 10 assessments and ensure adherence to secure coding practices. Implement and manage Static Application Security Testing (SAST) using tools like SonarQube, Fortify, Checkmarx , and Semgrep . Execute Vulnerability Assessment and Penetration Testing (VAPT) for web and mobile applications. Collaborate with development and DevOps teams to identify and remediate security vulnerabilities. Provide detailed reports and recommendations for security improvements. Required Skills Strong experience in OWASP-based security testing . Proficiency with Burp Suite, ZAP , and API testing tools like Postman . Hands-on experience with SAST tools : SonarQube, Fortify, Checkmarx, Semgrep . Experience in VAPT for web and mobile applications . Good understanding of secure software development lifecycle (SSDLC).

This role has positions based out of Bangalore and Pune; candidates may be considered for either location based on the interview process. Responsibilities:Application Security Testing/Penetration Testing (Web-based, Thick client, web services, Mobile Android & IOS, Network PT)API TestingSecurity defect Tracking and working closely with Developers to fix the issueStrong experience with the following tools – Burp Suite, Wireshark, Nmap, Metasploit, Checkmarx/Fortify, and Nessus.Excellent English communication skills (verbal and written) Requirements:CEH/ OSCP/ OSCE and ISCP certification and 2+ years of work experience in VAPT Benefits of working with us:Benefits of both the worlds - Enthusiasm & Learning Curve of a Start-Up, Deliveries & Performance of an Enterprise Service Provider.The sky's the limit when it comes to learning, growth & and ideas.We do not follow the typical corporate hierarchy ladder.Medical insurance, gratuity, and provident fund.As part of our dedication to an inclusive and diverse workforce, Kratikal is committed to Equal Employment Opportunity without regard for race, color, national origin, ethnicity, gender, protected veteran status, disability, sexual orientation, gender identity, or religion. About Us: Kratikal Tech Private Limited is a leading B2B cybersecurity firm offering cutting-edgecybersecurity solutions and services such as Network Security Audits, Compliance Implementation, IoT Security, and VAPT. Serving over 150+ enterprise customers and 1825+ SMEs across industries including E-commerce, Fintech, BFSI, NBFC, Telecom, Consumer Internet, Cloud Service Platforms, Manufacturing, and Healthcare, Kratikal is dedicated to helping organizations combat cybercriminals using advanced, technology-driven cybersecurity solutions. The company also develops in-house cybersecurity products, including AutoSecT, competing with industry giants, alongside TSAT (Threatcop Security Awareness Training), TDMARC (Threatcop DMARC), and TPIR (Threatcop Phishing Incident Response). These products have received numerous awards and recognitions for their innovationand effectiveness. Kratikal has been honored as the Top Cyber Security Startup at the 12th Top 100 CISO Awards. With a global reach, Kratikal collaborates with renowned organizations to secure their digital landscapes. For more information, visit our websites at www.kratikal.com and www.threatcop.com.

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. The opportunity The objective of our Digital Risk Consulting service is to support clients with the development, implementation, improvement, and modernization of their technology risk and compliance programs to address the constantly changing risk and technology landscape. Our solutions can be used by our clients to build confidence and trust with their customers, the overall market, and when required by regulation or contract. Your Key Responsibilities You will operate as a team leader for engagements to help our clients develop and strengthen their IT risk and compliance programs. You will work directly with clients to review their IT processes and controls, remediate and implement controls, onboard new tools and services into risk and compliance frameworks, and assist with the readiness and adherence for new compliance regulations. Your responsibilities include both in-person and remote oversight and coaching of engagement team members, reporting to both senior engagement team members and client leadership, as well as partnering with our key client contacts to complete the engagement work. What You'll Do Designing and implementing solutions to various data related technical/compliance challenges such as DevSecOps, data strategy, data governance, data risks & relevant controls, data testing, data architecture, data platforms, data solution implementation, data quality and data security to manage and mitigate risk.Leveraging data analytics tools/software to build robust and scalable solutions through data analysis and data visualizations using SQL, Python and visualization toolsDesign and implement comprehensive data analytics strategies to support business decision-making.Collect, clean, and interpret large datasets from multiple sources, ensuring completeness, accuracy and integrity of data.Integrating and/or piloting next-generation technologies such as cloud platforms, machine learning and Generative AI (GenAI)Developing custom scripts and algorithms to automate data processing and analysis to generate insightsApplying business / domain knowledge including regulatory requirements and industry standards to solve complex data related challengesAnalyzing data to uncover trends and generate insights that can inform business decisionsBuild and maintain relationships across Engineering, Product, Operations, Internal Audit, external audit and other external stakeholders to drive effective financial risk management.Work with DevSecOps, Security Assurance, Engineering, and Product teams to improve efficiency of control environments and provide risk management through implementation of automation and process improvementBridge gaps between IT controls and business controls, including ITGCs and automated business controls. Work with IA to ensure complete control environment is managedWork with emerging products to understand risk profile and ensure an appropriate control environment is establishedImplement new process and controls in response to changes to the business environment, such as new product introduction, changes in accounting standards, internal process changes or reorganization. What You'll Need Experience in data architecture, data management, data engineering, data science or data analyticsExperience in building analytical queries and dashboards using SQL, noSQL, Python etc.Proficient in SQL and quantitative analysis, you can deep dive into large amounts of data, draw meaningful insights, dissect business issues and draw actionable conclusionsKnowledge of tools in the following areas:Scripting and Programming (e.g., Python, SQL, R, Java, Scala, etc.)Big Data Tools (e.g., Hadoop, Hive, Pig, Impala, Mahout, etc.)Data Management (e.g., Informatica, Collibra, SAP, Oracle, IBM etc.)Predictive Analytics (e.g., Python, IBM SPSS, SAS Enterprise Miner, RPL, Matl, etc.)Data Visualization (e.g., Tableau, PowerBI, TIBCO-Spotfire, CliqView, SPSS, etc.)Data Mining (e.g., Microsoft SQL Server, etc.)Cloud Platforms (e.g., AWS, Azure, or Google Cloud)Ability to analyze complex processes to identify potential financial, operational, systems and compliance risks across major finance cyclesAbility to assist management with the integration of security practices in the product development lifecycle (DevSecOps)Experience with homegrown applications in a microservices/dev-ops environmentExperience with identifying potential security risks in platform environments and developing strategies to mitigate themExperience with SOX readiness assessments and control implementationKnowledge of DevOps practices, CI/CD pipelines, code management and automation tools (e.g., Jenkins, Git, Phab, Artifactory, SonarQube, Selenium, Fortify, Acunetix, Prisma Cloud) Preferred: Experience in:Managing technical data projectsLeveraging data analytics tools/software to develop solutions and scriptsDeveloping statistical model tools and techniquesDeveloping and executing data governance frameworks or operating modelsIdentifying data risks and designing and/or implementing appropriate controlsImplementation of data quality processDeveloping data services and solutions in a cloud environmentDesigning data architectureAnalyzing complex data sets & communicating findings effectivelyProcess management experience, including process redesign and optimizationExperience in scripting languages (e.g., Python, Bash)Experience in cloud platforms (e.g., AWS, Azure, GCP) and securing cloud-based applications/services To qualify for the role, you must have A bachelor's or master's degree A minimum of 3 years of experience working as an IT risk consultant or data analytics experience. Bring your experience in applying relevant technical knowledge in at least one of the following engagements: (a) risk consulting, (b) financial statement audits; (c) internal or operational audits, (d) IT compliance; and/or (e) Service Organization Controls Reporting engagements.We would expect for you to be available to travel outside of their assigned office location at least 50% of the time, plus commute within the region (where public transportation often is not available). Successful candidates must work in excess of standard hours when necessary. A valid passport is required. Ideally, you’ll also have A bachelor's or master's degree in business, computer science, information systems, informatics, computer engineering, accounting, or a related discipline CISA, CISSP, CISM, CPA or CA certification is desired; non-certified hires are required to become certified to be eligible for promotion to Manager. EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. The opportunity The objective of our Digital Risk Consulting service is to support clients with the development, implementation, improvement, and modernization of their technology risk and compliance programs to address the constantly changing risk and technology landscape. Our solutions can be used by our clients to build confidence and trust with their customers, the overall market, and when required by regulation or contract. Your Key Responsibilities You will operate as a team leader for engagements to help our clients develop and strengthen their IT risk and compliance programs. You will work directly with clients to review their IT processes and controls, remediate and implement controls, onboard new tools and services into risk and compliance frameworks, and assist with the readiness and adherence for new compliance regulations. Your responsibilities include both in-person and remote oversight and coaching of engagement team members, reporting to both senior engagement team members and client leadership, as well as partnering with our key client contacts to complete the engagement work. What You'll Do Designing and implementing solutions to various data related technical/compliance challenges such as DevSecOps, data strategy, data governance, data risks & relevant controls, data testing, data architecture, data platforms, data solution implementation, data quality and data security to manage and mitigate risk.Leveraging data analytics tools/software to build robust and scalable solutions through data analysis and data visualizations using SQL, Python and visualization toolsDesign and implement comprehensive data analytics strategies to support business decision-making.Collect, clean, and interpret large datasets from multiple sources, ensuring completeness, accuracy and integrity of data.Integrating and/or piloting next-generation technologies such as cloud platforms, machine learning and Generative AI (GenAI)Developing custom scripts and algorithms to automate data processing and analysis to generate insightsApplying business / domain knowledge including regulatory requirements and industry standards to solve complex data related challengesAnalyzing data to uncover trends and generate insights that can inform business decisionsBuild and maintain relationships across Engineering, Product, Operations, Internal Audit, external audit and other external stakeholders to drive effective financial risk management.Work with DevSecOps, Security Assurance, Engineering, and Product teams to improve efficiency of control environments and provide risk management through implementation of automation and process improvementBridge gaps between IT controls and business controls, including ITGCs and automated business controls. Work with IA to ensure complete control environment is managedWork with emerging products to understand risk profile and ensure an appropriate control environment is establishedImplement new process and controls in response to changes to the business environment, such as new product introduction, changes in accounting standards, internal process changes or reorganization. What You'll Need Experience in data architecture, data management, data engineering, data science or data analyticsExperience in building analytical queries and dashboards using SQL, noSQL, Python etc.Proficient in SQL and quantitative analysis, you can deep dive into large amounts of data, draw meaningful insights, dissect business issues and draw actionable conclusionsKnowledge of tools in the following areas:Scripting and Programming (e.g., Python, SQL, R, Java, Scala, etc.)Big Data Tools (e.g., Hadoop, Hive, Pig, Impala, Mahout, etc.)Data Management (e.g., Informatica, Collibra, SAP, Oracle, IBM etc.)Predictive Analytics (e.g., Python, IBM SPSS, SAS Enterprise Miner, RPL, Matl, etc.)Data Visualization (e.g., Tableau, PowerBI, TIBCO-Spotfire, CliqView, SPSS, etc.)Data Mining (e.g., Microsoft SQL Server, etc.)Cloud Platforms (e.g., AWS, Azure, or Google Cloud)Ability to analyze complex processes to identify potential financial, operational, systems and compliance risks across major finance cyclesAbility to assist management with the integration of security practices in the product development lifecycle (DevSecOps)Experience with homegrown applications in a microservices/dev-ops environmentExperience with identifying potential security risks in platform environments and developing strategies to mitigate themExperience with SOX readiness assessments and control implementationKnowledge of DevOps practices, CI/CD pipelines, code management and automation tools (e.g., Jenkins, Git, Phab, Artifactory, SonarQube, Selenium, Fortify, Acunetix, Prisma Cloud) Preferred: Experience in:Managing technical data projectsLeveraging data analytics tools/software to develop solutions and scriptsDeveloping statistical model tools and techniquesDeveloping and executing data governance frameworks or operating modelsIdentifying data risks and designing and/or implementing appropriate controlsImplementation of data quality processDeveloping data services and solutions in a cloud environmentDesigning data architectureAnalyzing complex data sets & communicating findings effectivelyProcess management experience, including process redesign and optimizationExperience in scripting languages (e.g., Python, Bash)Experience in cloud platforms (e.g., AWS, Azure, GCP) and securing cloud-based applications/services To qualify for the role, you must have A bachelor's or master's degree A minimum of 3 years of experience working as an IT risk consultant or data analytics experience. Bring your experience in applying relevant technical knowledge in at least one of the following engagements: (a) risk consulting, (b) financial statement audits; (c) internal or operational audits, (d) IT compliance; and/or (e) Service Organization Controls Reporting engagements.We would expect for you to be available to travel outside of their assigned office location at least 50% of the time, plus commute within the region (where public transportation often is not available). Successful candidates must work in excess of standard hours when necessary. A valid passport is required. Ideally, you’ll also have A bachelor's or master's degree in business, computer science, information systems, informatics, computer engineering, accounting, or a related discipline CISA, CISSP, CISM, CPA or CA certification is desired; non-certified hires are required to become certified to be eligible for promotion to Manager. EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

About BNP Paribas India Solutions Established in 2005, BNP Paribas India Solutions is a wholly owned subsidiary of BNP Paribas SA, European Union’s leading bank with an international reach. With delivery centers located in Bengaluru, Chennai and Mumbai, we are a 24x7 global delivery center. India Solutions services three business lines: Corporate and Institutional Banking, Investment Solutions and Retail Banking for BNP Paribas across the Group. Driving innovation and growth, we are harnessing the potential of over 10000 employees, to provide support and develop best-in-class solutions. About BNP Paribas Group BNP Paribas is the European Union’s leading bank and key player in international banking. It operates in 65 countries and has nearly 185,000 employees, including more than 145,000 in Europe. The Group has key positions in its three main fields of activity: Commercial, Personal Banking & Services for the Group’s commercial & personal banking and several specialised businesses including BNP Paribas Personal Finance and Arval; Investment & Protection Services for savings, investment, and protection solutions; and Corporate & Institutional Banking, focused on corporate and institutional clients. Based on its strong diversified and integrated model, the Group helps all its clients (individuals, community associations, entrepreneurs, SMEs, corporates and institutional clients) to realize their projects through solutions spanning financing, investment, savings and protection insurance. In Europe, BNP Paribas has four domestic markets: Belgium, France, Italy, and Luxembourg. The Group is rolling out its integrated commercial & personal banking model across several Mediterranean countries, Turkey, and Eastern Europe. As a key player in international banking, the Group has leading platforms and business lines in Europe, a strong presence in the Americas as well as a solid and fast-growing business in Asia-Pacific. BNP Paribas has implemented a Corporate Social Responsibility approach in all its activities, enabling it to contribute to the construction of a sustainable future, while ensuring the Group's performance and stability. Commitment to Diversity and Inclusion At BNP Paribas, we passionately embrace diversity and are committed to fostering an inclusive workplace where all employees are valued, respected and can bring their authentic selves to work. We prohibit Discrimination and Harassment of any kind and our policies promote equal employment opportunity for all employees and applicants, irrespective of, but not limited to their gender, gender identity, sex, sexual orientation, ethnicity, race, colour, national origin, age, religion, social status, mental or physical disabilities, veteran status etc. As a global Bank, we truly believe that inclusion and diversity of our teams is key to our success in serving our clients and the communities we operate in. About Business Line/Function At PI Germany IT Solutions we provide modern development services and IT products that our consumers can use. This includes Frontend Applications like Web, Mobile or other fat client applications and furthermore, we develop and maintain necessary middleware applications and API products which can be used by internal or external customers. In addition, we integrate and maintain 3rd party components, products into our solutions and providing additional services to business departments to archive the overall business objectives of BNPP PI Germany Job Title Software Development Date 01-Sep-2024 Department PI IT SOL PS DEV-MOB Location: Chennai Business Line / Function PI IT Reports To (Direct) Grade (if applicable) Development Level 5 (Functional) Number Of Direct Reports 0 Directorship / Registration NA Position Purpose The developer helps with the development of Mobile-related information systems, Business Applications and contributes to ensuring its continuity through personal effort as part of a team or to a limited extent within the department to achieve short-term and occasionally medium-term goals. They help in the development and realization of the software architecture as a contribution to high-quality software solutions in accordance with the applicable best practices (maintainable, safe, documented, scalable, testable and in accordance with the needs of the business area). Responsibilities Direct Responsibilities Participating in Mobile activities of BNP Paribas Developing Mobile products in banking, trading and beyond banking Co-designing technical implementation of Mobile strategy. Ensuring the timeliness of documentation, processes, and tool landscape Maintenance and development of the Mobile platform Ensuring continuous delivery processes via automated pipelines Implementing and co-designing architectural specifications. Ensuring software quality, test automation, and integration of tools (e.g., Sonar, Fortify) into development process. To define and to execute 3rd level support tasks for systems and applications in charge. To do necessary bug fix and to execute small enhancement tasks. To take care about prevention of obsolete components and libraries. Analysis und Continuous Improvement: To support optimization of software development processes & methods and possible usage of advanced tools and technologies To maintain and to improve stability and performance of development software solutions To develop prototypes which are based on new technologies by PoCs To improve operational aspects of developed solutions together with IT Production teams Contributing Responsibilities Cooperation within team and company To define necessary infrastructure with configuration for software development activities To support the implementation and testing, acceptance of necessary infrastructure To contribute to system stability of the infrastructure and affected system components To support troubleshooting of urgent software or infrastructure issues. Knowhow And Knowledge To support sharing and transferring Knowhow and Knowledge with others colleagues To continuously support code reviews and pair programming with other colleagues To foster exchange of software development knowledge with internal channel and network, in order to share best practices To ensure necessary training and continuous improvement of knowledge and knowhow To ensure successful participation in mandatory regulatory trainings on-time Technical & Behavioral Competencies Degree in business informatics, computer science, engineering or comparable and several years of professional experience At least 7 years of experience in software development Knowhow of modern software architectures and modern development concepts & processes Deep know how and understanding of respective development domain (Web, Mobile, Middleware, API, Platform, CRM, CMS etc.) Expert knowhow in necessary development tools and programming languages Expert knowhow in software requirement engineering and managing requirements Knowledge in software testing incl. unit test design & execution as well as E2E tests Basic knowledge in IT cyber security and secure software development Basic knowledge of banking economics (banking, trading, investing; products and transactions) Working in an agile environment with Scrum Very good English skills in words and writing Specific Qualifications (if Required) Segment B: Analyst / Developer Level 4 BANA4 IOS Swift & SwiftUI Objective C (nice to have) Android Java / Kotlin Jetpack Compose Skills Referential Experience with Gitlab / Gitlab CI (nice to have) Behavioural Skills: (Please select up to 4 skills) Ability to collaborate / Teamwork Client focused Attention to detail / rigor Ability to deliver / Results driven Transversal Skills: (Please select up to 5 skills) Ability to develop and adapt a process Ability to develop and leverage networks Choose an item. Choose an item. Choose an item. Education Level Bachelor Degree or equivalent Experience Level At least 7 years

We are looking for a Java SDET: Our Team is looking for a Java SDET who has a passion for building mechanisms fortesting Cloud Native Web Applications. The ideal candidate will own the full lifecycle ofautomated systems testing and reporting, along with taking point on the futuredevelopment of cutting-edge processes and practices that will allow the team toprovide higher quality products to over a million customers.We’re looking for a natural in building and maintaining relationships in financial andtech environments. The ideal candidate will be a driver of process, accountability,customer engagement, and strategy. This will be driven from a proven ability to planand execute scalable testing strategies, superior client management, escalation skills,and the ability to thrive in a fast-paced environment. At our client, your responsibilities will include:? Build test automation for Java-based Cloud Native Web applications? Work as part of a multidisciplinary software engineering team to develop and runtests as well as analyse their output? Independently develop and execute test plans? Design and code test automation solutions for user journeys? Raise process improvement opportunities, define and implement simpleautomation efforts and document automated testing solutions for others on theteam? Perform ad hoc / exploratory testing methodically to ensure system is workingas expected by end user? Comprehend user stories to understand task items per story in the context of alllevels of testing (unit, functional, integration, and regression)? Work in an agile environment, attend daily stand up calls and give daily statusreports and call out any issues or blockers that may delay release delivery.? Coach and mentor junior team members and share knowledge with the teamthrough training, documentation, meetings, etc. What you bring to the table (Core Requirements):? 3-5 years work experience in quality engineering.? Experience of writing test automation for both message processing and RESTAPI applications.? Experience of writing test automation for UI based application using Selenium/Protractor.? Good knowledge of Linux / Unix.? Experience in implementing CI/CD build pipelines with tools like Git/BitBucket,Jenkins and Maven? Experience with software development frameworks such as Scrum, SAFe? Sound knowledge of Java, Spring, JUnit, Databases, APIs (REST), Kafka (orsimilar), Continuous Delivery concepts and tools such as Jenkins/Bamboo,vulnerability tools such as Sonar, Checkmarx/Fortify, etc.? A good understanding of BDD/TDD practices, code review and analysistechniques, and open source agile testing frameworks.? Excellent technical acumen and ability to learn new software quickly? Strong knowledge of traditional testing methodologies and how it appliesexploratory testing in an Agile environment? A high-energy, detail-oriented and proactive approach to your work with the theability to function under pressure in an independent environment.? Considerate, polite, fun-loving, collaborative, curious problem-solver? Possesses strong communication skills -- both verbal and written – and strongrelationship, collaborative skills and organizational skills.? A Bachelor’s/Master’s degree in Computer Science or equivalent practicalexperience.Nice to Have:? Experience of testing services build on cloud platform such as PCF? Experience of testing microservices based applications? Advanced knowledge of Java, Spring, Junit, Databases, APIs (REST/SOAP)? Advanced knowledge of Design Principles and Patterns Mandatory Skill:-Education/qualification: Min Bachelors / Masters in Computer science background or related field -3-5 years work experience in quality engineering-Experience writing test automation for message processing and REST API applications-Experience writing test automation for UI-based applications using Selenium/Protractor-Good knowledge of Linux/Unix-Experience implementing CI/CD build pipelines with tools like Git/BitBucket, Jenkins, and Maven-Sound knowledge of Java, Spring, JUnit, Databases, APIs (REST), Kafka *Candidate should have good experience in Testing tools + Java , should be a Java Engineer who can do Testing If you meet the requirements outlined in the job description and are interested in this opportunity, please email your resume to admin@amrapaliservices.in, mentioning your current CTC, expected CTC, and Notice Period.

Project descriptionYou'll be working in the Technology Services GCTO EA Team. Technology Services is a group-wide function which provides integrated and secure services for organization by offering best fit, easy to leverage, reliable and cost-effective technology services and strategic products which provide functionality, strategic insights and expertise across all business groups globallyAs an experienced full stack, you will join an existing team in the EA Team in Group CTO supporting our strategic initiatives across company. Responsibilities-Help the Enterprise Architecture team to develop our Azure based applications-Work in the development team to support the development of landscape visualisation and data insights-Leverage the power of AI-Produce clear and commented code-Support application build and automation-Produce clear and comprehensive documentation-Play an active role with technology support teams and ensure deliverables are completed or escalated on time-Provide support on any related presentations, communications, and trainings-Be a team player, working across the organization with skills to indirectly manage and influence-Be a self-starter willing to inform and educate othersSkillsMust have-Excellent and demonstratable experience as a Full stack engineer working on entire stack from back to front-3 years of REACT skills-Excellent JavaScript, TypeScript experience-Excellent stakeholder interaction skills-Minimum 2 years experience of Terraform-Experience designing and building Data Pipelines.-A good understanding of Python and Data Science libraries.-Hands on experience working with Kubernetes, Docker and other infrastructure based technologies.-Has strong communication skills-3 years of experience in a Scrum delivery model-Understanding of performance implications when making design decisions to deliver performant and maintainable software.-Solid experience with multi-threaded architectures and optimised UIs-In depth experience of Git, JIRA, GitLab-In depth experience of working in a highly regulated environment-Strong experience in Azure Cloud-Excellent end-to-end SDLC process understanding.-Proven track record of delivering complex web apps on tight timelines-Understanding of fundamental design principles behind a scalable application and familiarity with RESTful Services.-Fluent in English both written and spoken.-Passionate about development with focus on web architecture and design-Analytical and logical (you can solve problems like nobody's business)-A team player, comfortable working with a lead developer and architects for the program-An excellent communicator who is adept in, handling ambiguity and communicating with both technical and non-technical audiences-Comfortable with working in cross-functional global teams to effect change Nice to have-Experience with DevOps and DevOps best practises-Experience in AI-Knowledge of performance testing frameworks including Fortify, SonarQube, Mocha and Jest-Knowledge of visualisation tools, such as Tableau, Power BI, or QlikView-Knowledge of RDF based Graph Database solutions e.g. GraphDB, Anzo-Familiarity with Machine Learning algorithms-Familiarity with data retrieval with SQL

Come work at a place where innovation and teamwork come together to support the most exciting missions in the world! Job Description: We are seeking a skilled Penetration Tester to assess and enhance the security of our cross-platform executable Qualys Cloud Agent. This agent is responsible for system monitoring, data collection, and secure communication with a cloud platform. Operating across Unix, Windows, and macOS environments, the agent plays a critical role in our security and compliance solutions. The ideal candidate will uncover vulnerabilities, simulate attack scenarios, and work with our teams to fortify the system against threats. Key Responsibilities: Cross-Platform Agent Testing: Conduct comprehensive security testing of the executable agent, ensuring robust functionality across Unix/Linux, Windows, and macOS platforms. Identify and exploit vulnerabilities in the agent’s runtime behavior, system interactions, and interprocess communications. Test agent privilege management and evaluate risks of escalation or exploitation. Data Collection and Handling: Analyze the agent’s data collection mechanisms to ensure data privacy and integrity. Validate proper implementation of sensitive data redaction and secure storage practices. Communication Security: Test the agent’s secure communication mechanisms with the cloud server, focusing on: Encryption (TLS/SSL, public key cryptography). Authentication and session management. Mitigation of threats like MITM, replay attacks, and DNS spoofing. Reverse Engineering and Exploitation: Perform binary analysis to identify vulnerabilities in the agent's implementation. Reverse engineer agent components to assess the effectiveness of tamper-proofing mechanisms and embedded security features. Simulate advanced threat scenarios, including code injection and runtime manipulation. System Security Evaluations: Assess the agent’s impact on host system security, ensuring it does not inadvertently introduce risks (e.g., open ports, exploitable configurations). Evaluate installation, update, and self-defense mechanisms for tamper resistance and exploitation risks. Reporting and Remediation: Provide detailed vulnerability reports with proof of concept (PoC), risk impact assessments, and actionable remediation steps. Collaborate with development team to address vulnerabilities and validate fixes Contribute to improving secure development practices and robust agent design. Required Qualifications: Technical Expertise: In-depth knowledge of penetration testing methodologies for executable agents, system processes, and OS-specific security models (Windows, Unix/Linux, macOS). Proficiency in network security and cryptographic protocol testing. Strong background in reverse engineering tools and techniques Tools & Scripting: Scripting skills in Python, Bash, PowerShell, for creating custom tests. Hands on experience with proxy solutions ex Burp or Fiddler Experience: Proven track record of assessing software agents or similar system monitoring tools. Familiarity with common vulnerabilities, including CVEs related to agent-based applications. Experience working with security tools or platforms similar to Qualys Agent. Certifications (Preferred): OSCP, OSWE, CEH, GPEN, or equivalent cybersecurity certifications. Relevant cloud certifications such as AWS Security Specialty, Azure Security Engineer Associate. Preferred Qualifications: Hands-on experience with agent technologies similar to Qualys Cloud Agent. Familiarity with cloud architecture, APIs, and integration points. Knowledge of secure coding practices and defensive programming. Experience with CI/CD pipeline security.

Dear Candidate, We are hiring a Penetration Tester to simulate attacks and discover security vulnerabilities in critical systems. Perfect for professionals skilled in offensive security techniques. Key Responsibilities: Conduct penetration tests on web, mobile, and network systems Document vulnerabilities and remediation recommendations Develop exploits and custom testing tools Collaborate with developers to address findings Required Skills & Qualifications: Proficiency with penetration testing tools (Burp Suite, Metasploit, Nmap) Strong understanding of application and network security Experience writing exploit scripts (Python, Bash) Bonus: OSCP, OSWE, or CEH certification Soft Skills: Strong troubleshooting and problem-solving skills. Ability to work independently and in a team. Excellent communication and documentation skills. Note: If interested, please share your updated resume and preferred time for a discussion. If shortlisted, our HR team will contact you. Kandi Srinivasa Reddy Delivery Manager Integra Technologies

Dear Candidate, We are hiring an Application Security Developer to integrate security into software development. Ideal for developers who understand both coding and security risks. Key Responsibilities: Perform secure code reviews and static analysis Implement security features in web and mobile applications Collaborate with DevOps to automate security in CI/CD Conduct developer training on secure coding Required Skills & Qualifications: Experience with static/dynamic analysis tools (SonarQube, Checkmarx) Knowledge of web security standards (OWASP, CWE) Strong programming skills (Java, Python, JavaScript) Bonus: Familiarity with DevSecOps practices Soft Skills: Strong troubleshooting and problem-solving skills. Ability to work independently and in a team. Excellent communication and documentation skills. Note: If interested, please share your updated resume and preferred time for a discussion. If shortlisted, our HR team will contact you. Srinivasa Reddy Kandi Delivery Manager Integra Technologies

Job Title - Senior Security AnalystJob Location - Baner, Pune Position OverviewAs a Sr. Security Analyst, you will play a crucial role in conducting meticulous assessments, orchestrating proactive monitoring, and spearheading strategic enhancements to fortify and advance our identity security offerings. You will be helping our customers strengthen their identity security posture and maintain compliance with industry regulations by analyzing, detecting, and responding to identity-related threats, as well as providing strategic guidance and recommendations to defend against evolving threats and safeguard customers’ critical assets. ResponsibilitiesLeverage the companies Identity SecOps platform to monitor and analyze identity-related threats and incidents, including account compromise, identity theft, and unauthorized access attempts.Lead incident response efforts for identity-related security incidents, coordinating with cross-functional teams - both internal and external - to contain, mitigate, and remediate security breaches on time.Maintain accurate and detailed documentation of security incidents, investigations, and remediation activities, and prepare comprehensive reports for management and stakeholders.Facilitate regular monthly calls with customers to ensure alignment with their security objectives and address any concerns or inquiries. Provide weekly reports on security posture, incident trends, and mitigation efforts. Promptly communicate critical alerts to customers as they occur to maintain transparency and trust in our services.Conduct proactive monitoring of identity-related security events and anomalies by leveraging the companies Identity SecOps platform.Conduct risk assessments and impact analyses of identity-related security risks, prioritize remediation efforts, and implement controls and safeguards to mitigate identified risks effectively.Promote security awareness and best practices related to identity security among employees, partners, and customers through training sessions, educational materials, and outreach initiatives.Stay abreast of emerging threats and vulnerabilities in the identity security landscape, leveraging threat intelligence sources to enhance detection capabilities and help develop proactive security measures in our product.Collaborate closely with product management, engineering team, and other stakeholders throughout the product development lifecycle.Thrive in a dynamic startup environment, contributing to a culture of innovation and excellence. RequirementsAt least 8 years of hands-on experience in cybersecurity, with a focus on identity security, authentication, and access management.Strong understanding of identity protocols and standards, such as SAML, OAuth, OpenID Connect, and LDAP.Proficiency in security analysis tools and technologies, including SIEM, SOC, and SOAR solutions, XDR/EDR, intrusion detection/prevention systems, and identity and access management (IAM) platforms.Proficiency in scripting and programming languages (e.g., Python, PowerShell) for automation, data analysis, and scripting purposes, enabling the creation of efficient analysis scripts and automation workflows to enhance security operations and streamline processes.Familiarity with security frameworks and compliance requirements, such as SOC 2, GDPR, HIPAA, and PCI DSS.Excellent attention to detail, analytical and problem-solving skills, with the ability to analyze complex security incidents and recommend effective mitigation strategies.A solid understanding of cybersecurity concepts, principles, and best practices, with experience in security testing methodologies and tools, is a significant advantage.Relevant certifications such as CISSP, CISM, CompTIA Security+, or GIAC certifications (e.g., GCIH, GCIA) are preferred.Strong communication and collaboration skills.Ability to thrive in a fast-paced, dynamic work environment.Master’s or Bachelor's degree in Computer Science, Engineering, or a related field.

Project Description:You'll be working in the Technology Services GCTO EA Team. Technology Services is a group-wide function which provides integrated and secure services for organization by offering best fit, easy to leverage, reliable and cost-effective technology services and strategic products which provide functionality, strategic insights and expertise across all business groups globally As an experienced full stack, you will join an existing team in the EA Team in Group CTO supporting our strategic initiatives across company Responsibilities• Help the Enterprise Architecture team to develop our Azure based applications• Work in the development team to support the development of landscape visualisation and data insights• Leverage the power of AI• Produce clear and commented code• Support application build and automation• Produce clear and comprehensive documentation• Play an active role with technology support teams and ensure deliverables are completed or escalated on time• Provide support on any related presentations, communications, and trainings• Be a team player, working across the organization with skills to indirectly manage and influence• Be a self-starter willing to inform and educate others Mandatory Skills:• Excellent and demonstratable experience as a Full stack engineer working on entire stack from back to front• 3 years of REACT skills• Excellent JavaScript, TypeScript experience• Excellent stakeholder interaction skills• Minimum 2 years experience of Terraform• Experience designing and building Data Pipelines.• A good understanding of Python and Data Science libraries.• Hands on experience working with Kubernetes, Docker and other infrastructure based technologies.• Has strong communication skills• 3 years of experience in a Scrum delivery model• Understanding of performance implications when making design decisions to deliver performant and maintainable software.• Solid experience with multi-threaded architectures and optimised UIs• In depth experience of Git, JIRA, GitLab• In depth experience of working in a highly regulated environment• Strong experience in Azure Cloud• Excellent end-to-end SDLC process understanding.• Proven track record of delivering complex web apps on tight timelines• Understanding of fundamental design principles behind a scalable application and familiarity with RESTful Services.• Fluent in English both written and spoken.• Passionate about development with focus on web architecture and design• Analytical and logical (you can solve problems like nobody's business)• A team player, comfortable working with a lead developer and architects for the program• An excellent communicator who is adept in, handling ambiguity and communicating with both technical and non-technical audiences• Comfortable with working in cross-functional global teams to effect change Nice-to-Have Skills:Experience with DevOps and DevOps best practises• Experience in AI• Knowledge of performance testing frameworks including Fortify, SonarQube, Mocha and Jest• Knowledge of visualisation tools, such as Tableau, Power BI, or QlikView• Knowledge of RDF based Graph Database solutions e.g. GraphDB, Anzo• Familiarity with Machine Learning algorithms• Familiarity with data retrieval with SQL

When you join Verizon You want more out of a career. A place to share your ideas freely — even if they’re daring or different. Where the true you can learn, grow, and thrive. At Verizon, we power and empower how people live, work and play by connecting them to what brings them joy. We do what we love — driving innovation, creativity, and impact in the world. Our V Team is a community of people who anticipate, lead, and believe that listening is where learning begins. In crisis and in celebration, we come together — lifting our communities and building trust in how we show up, everywhere & always. Want in? Join the #VTeamLife. What You’ll Be Doing... The work you'll be doing is to support mission and business-critical applications within Verizon. You will be enhancing the customer experience and building a world class solutions. Under the mentorship of a technical lead who would be supporting you on delivery, you will also work as a team member on various projects and mentor junior resources. You will help develop, implement and maintain this important application. Designing, developing and maintaining applications and databases by evaluating client needs, analyzing requirements and developing software systems.Testing and coordinating all user interfaces changes of Responsive Web Design.Executing full software development life cycle (SDLC) – concept, design, build, deploy, test, release and support.Ensuring application development sprint cycle is on track and adjusting the plan to meet release timelines.Acting independently, at the same time displaying excellent collaboration within and between various teams.Understanding the domain knowledge and adapting to an agile environment.Building reusable code and libraries for future use in front end and back end technologies.Mentoring junior developers in the team and leading them to deliver on projects. What We’re Looking For... You are curious about new technologies and the possibilities they create. You enjoy the challenge of supporting applications while exploring ways to improve upon the technology. You are driven and motivated, with good communication and analytical skills. You’re a sought-after team member that thrives in a dynamic work environment. You have a thirst for working on cutting edge technology with the drive to change the status quo. You'll Need To Have Bachelor’s degree or four or more years of work experience.Four or more years of relevant work experience.Four or more years of experience on Frontend/Web technologies and backend services.Knowledge of SDLC and Agile Development.Knowledge of cloud-native application development.Effective code review, quality, performance tuning experience. Even better if you have one or more of the following: Experience with a high-performance, high-availability environment.Strong analytical, debugging skills.Good communication and presentation skills.Relevant certifications.Experience with UI framework.Experience with OWASP rules and mitigate security vulnerabilities using security tools like Fortify, Sonarcube, Blackduck etc.Experience with Unit testing framework like JUnit, Mokito.Experience monitoring tools like NewRelic.Ability to understand Agile and DevOps tools and technologies.Strong problem solving and debugging skills. If Verizon and this role sound like a fit for you, we encourage you to apply even if you don’t meet every “even better” qualification listed above. Why Verizon? Verizon is committed to maintaining a Total Rewards package which is competitive, valued by our employees, and differentiates us as an Employer of Choice. We are a ‘pay for performance’ company and your contribution is rewarded through competitive salaries, performance-based incentives and an employee Stock Program. We create an opportunity for us all to share in the success of Verizon and the value we help to create through this broad-based discretionary equity award program.Your benefits are market competitive and delivered by some of the best providers.You are provided with a full spectrum of health and wellbeing resources, including a first in-class Employee Assistance Program, to empower you to make positive health decisions.We offer generous paid time off benefits to help you manage your work life balance and opportunities for flexible working arrangements*.Verizon provides training and development for all levels, to help you enhance your skills and develop your career, from funding towards education assistance, award-winning training, online development tools and access to industry research.You will be able to take part in volunteering opportunities as part of our environmental, community and sustainability commitment. Your benefits package will vary depending on the country in which you work. subject to business approval Where you’ll be working In this hybrid role, you'll have a defined work location that includes work from home and assigned office days set by your manager. Scheduled Weekly Hours 40 Equal Employment Opportunity Verizon is an equal opportunity employer. We evaluate qualified applicants without regard to race, gender, disability or any other legally protected characteristics.

Ideally, looking for a combination of Development and Application Security experience. Job Summary: We are seeking a skilled Application Security Engineer to join our Information Security team. The ideal candidate will have a minimum of 8-12 years of experience in application security and a strong background in software development , particularly in .NET, C#, Angular, and React . This role is crucial in ensuring the security of our applications by working closely with development, DevOps, and security teams to identify, remediate, and prevent security vulnerabilities throughout the software development lifecycle (SDLC). Key Responsibilities: Conduct application security assessments, including code reviews, penetration testing, and threat modeling to identify vulnerabilities. Work closely with developers to integrate secure coding practices and provide guidance on remediating security issues. Implement and manage Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) tools. Develop and enforce security policies, procedures, and best practices for application security. Assist in the design and review of security architecture for new and existing applications. Collaborate with DevOps teams to integrate security into CI/CD pipelines using DevSecOps principles . Research emerging threats, vulnerabilities, and security trends to proactively mitigate risks. Support incident response efforts related to application security breaches. Provide security training and awareness to development teams. Document security findings, mitigation plans, and security controls. Minimum Requirements (Must-Have) 8-12 years of experience in application security with a focus on secure software development. Strong background in software development , with hands-on experience in .NET, C#, Angular, and React . Hands-on experience with SAST, DAST, Software Composition Analysis (SCA), and penetration testing tools (e.g., Burp Suite, Checkmarx, Veracode, Fortify, SonarQube ). Solid understanding of OWASP Top 10, SANS 25, and secure coding practices . Experience with threat modeling, risk assessment, and vulnerability management . Knowledge of API security, authentication, and authorization mechanisms (OAuth, JWT, SAML, etc.). Familiarity with container security, Kubernetes security, and cloud security best practices (AWS, Azure, GCP). Experience working in Agile and DevSecOps environments , integrating security into CI/CD pipelines. Strong analytical and problem-solving skills. Excellent communication skills, with the ability to work collaboratively across teams.

Summary Position Summary DevSecOps Engineer – CL4 Role Overview : As a DevSecOps Engineer , you will actively engage in your engineering craft, taking a hands-on approach to multiple high-visibility projects. Your expertise will be pivotal in delivering solutions that delight customers and users, while also driving tangible value for Deloitte's business investments. You will leverage your extensive DevSecOps engineering craftsmanship and advanced proficiency across multiple programming languages, DevSecOps tools, and modern frameworks, consistently demonstrating your strong track record in delivering high-quality, outcome-focused CI/CD and automation solutions. The ideal candidate will be a dependable team player, collaborating with cross-functional teams to design, develop, and deploy advanced software solutions. Key Responsibilities : Outcome-Driven Accountability: Embrace and drive a culture of accountability for customer and business outcomes. Develop DevSecOps engineering solutions that solve complex automation problems with valuable outcomes, ensuring high-quality, lean, resilient and secure pipelines with low operating costs, meeting platform/technology KPIs. Technical Leadership and Advocacy: Serve as the technical advocate for DevSecOps modern practices, ensuring integrity, feasibility, and alignment with business and customer goals, NFRs, and applicable automation/integration/security practices—being responsible for designing and maintaining code repos, CI/CD pipelines, integrations (code quality, QE automation, security, etc.) and environments (sandboxes, dev, test, stage, production) through IaC, both for custom and package solutions, including identifying, assessing, and remediating vulnerabilities. Engineering Craftsmanship: Maintain accountability for the integrity and design of DevSecOps pipelines and environments while leading the implementation of deployment techniques like Blue-Green, Canary to minimize down-time and enable A/B testing. Be always hands-on and actively engage with engineers to ensure DevSecOps practices are understood and can be implemented throughout the product development life cycle. Resolve any technical issues from implementation to production operations (e.g., leading triage and troubleshooting production issues). Be self-driven to learn new technologies, experiment with engineers, and inspire the team to learn and drive application of those new technologies. Customer-Centric Engineering: Develop lean, and yet scalable and flexible, DevSecOps automations through rapid, inexpensive experimentation to solve customer needs, enabling version control, security, logging, feedback loops, continuous delivery, etc. Engage with customers and product teams to deliver the right automation, security, and deployment practices. Incremental and Iterative Delivery: Adopt a mindset that favors action and evidence over extensive planning. Utilize a leaning-forward approach to navigate complexity and uncertainty, delivering lean, supportable, and maintainable solutions. Cross-Functional Collaboration and Integration: Work collaboratively with empowered, cross-functional teams including product management, experience, engineering, delivery, infrastructure, and security. Integrate diverse perspectives to make well-informed decisions that balance feasibility, viability, usability, and value. Support a collaborative environment that enhances team synergy and innovation. Advanced Technical Proficiency: Possess intermediary knowledge in modern software engineering practices and principles, including Agile methodologies, DevSecOps, Continuous Integration/Continuous Deployment. Strive to be a role model, leveraging these techniques to optimize solutioning and product delivery, ensuring high-quality outcomes with minimal waste. Demonstrate intermediate level understanding of the product development lifecycle, from conceptualization and design to implementation and scaling, with a focus on continuous improvement and learning. Domain Expertise: Quickly acquire domain-specific knowledge relevant to the business or product. Translate business/user needs into technical requirements and automations. Learn to navigate various enterprise functions such as product, experience, engineering, compliance, and security to drive product value and feasibility. Effective Communication and Influence: Exhibit exceptional communication skills, capable of articulating technical concepts clearly and compellingly. Support teammates and product teams through well-structured arguments and trade-offs supported by evidence, evaluations, and research. Learn to create a coherent narrative that align technical solutions with business objectives. Engagement and Collaborative Co-Creation: Able to engage and collaborate with product engineering teams, including customers as needed. Able to build and maintain constructive relationships, fostering a culture of co-creation and shared momentum towards achieving product goals. Support diverse perspectives and consensus to create feasible solutions. The team : US Deloitte Technology Product Engineering has modernized software and product delivery, creating a scalable, cost-effective model that focuses on value/outcomes by leveraging a progressive and responsive talent structure. As Deloitte’s primary internal development team, Product Engineering delivers innovative digital solutions to businesses, service lines, and internal operations with proven bottom-line results and outcomes. It helps power Deloitte’s success. It is the engine that drives Deloitte, serving many of the world’s largest, most respected companies. We develop and deploy cutting-edge internal and go-to-market solutions that help Deloitte operate effectively and lead in the market. Our reputation is built on a tradition of delivering with excellence. Key Qualifications : A bachelor’s degree in computer science, software engineering, or a related discipline. An advanced degree (e.g., MS) is preferred but not required. Experience is the most relevant factor.Strong software engineering foundation with deep understanding of OOP/OOD, functional programming, data structures and algorithms, software design patterns, code instrumentations, etc.5+ years proven experience with Python, Bash, PowerShell, JavaScript, C#, and Golang (preferred).5+ years proven experience with CI/CD tools (Azure DevOps and GitHub Enterprise) and Git (version control, branching, merging, handling pull requests) to automate build, test, and deployment processes.5+ years of hands-on experience in security tools automation SAST/DAST (SonarQube, Fortify, Mend), monitoring/logging (Prometheus, Grafana, Dynatrace), and other cloud-native tools on AWS, Azure, and GCP.5+ years of hands-on experience in using Infrastructure as Code (IaC) technologies like Terraform, Puppet, Azure Resource Manager (ARM), AWS Cloud Formation, and Google Cloud Deployment Manager.2+ years of hands-on experience with cloud native services like Data Lakes, CDN, API Gateways, Managed PaaS, Security, etc. on multiple cloud providers like AWS, Azure and GCP is preferred.Strong understanding of methodologies like, XP, Lean, SAFe to deliver high quality products rapidly.General understanding of cloud providers security practices, database technologies and maintenance (e.g. RDS, DynamoDB, Redshift, Aurora, Azure SQL, Google Cloud SQL)General knowledge of networking, firewalls, and load balancers.Strong preference will be given to candidates with AI/ML and GenAI.Excellent interpersonal and organizational skills, with the ability to handle diverse situations, complex projects, and changing priorities, behaving with passion, empathy, and care. How You will Grow: At Deloitte, our professional development plans focus on helping people at every level of their career to identify and use their strengths to do their best work every day and excel in everything they do. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Benefits At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Professional development From entry-level employees to senior leaders, we believe there’s always room to learn. We offer opportunities to build new skills, take on leadership opportunities and connect and grow through mentorship. From on-the-job learning experiences to formal development programs, our professionals have a variety of opportunities to continue to grow throughout their career. Requisition code: 214698