544 Fortify Jobs - Page 19

Role Profile Senior Application Security Engineer Department Information Security/ Cybersecurity Reports ToManager / Lead Security Engineer Location :Hyderabad (WFO) Role Summary: The Security Engineer will play a critical role in strengthening the security posture of applications and infrastructure by implementing secure development practices, performing vulnerability assessments, and integrating security into the SDLC. The ideal candidate will have hands-on experience with OWASP ASVS, security testing tools like ZAP, and a solid understanding of Python-based backend systems. Key Responsibilities: Implement and enforce security policies aligned with OWASP ASVS 4.0.3. Conduct Static and Dynamic Application Security Testing (SAST/DAST) using tools such as ZAP, Fortify, Burp Suite, and GitHub security. Collaborate with DevOps teams to embed security in CI/CD pipelines. Perform threat modelling and risk assessments for applications and APIs. Identify and remediate security vulnerabilities in Python-based services. Prepare and support documentation for STQC audits and other compliance processes. Create and maintain secure coding guidelines for developers. Track and manage vulnerabilities using centralized dashboards or ticketing systems. Collaborate with developers and QA teams during SDLC to ensure secure code deployment. Required Qualifications & Skills: 8–10 years of Overall experience in IT . 5–6 years of hands-on experience in Application Security. Strong knowledge of OWASP Top 10 and OWASP ASVS frameworks. Practical experience with ZAP, Fortify, Burp Suite, or similar tools. Good understanding of Python backend services and typical security flaws. Knowledge of CI/CD security integration tools and methodologies. Familiarity with STQC security processes and regulatory compliance documentation. Knowledge of SAST/DAST/IAST methodologies and modern DevSecOps practices. Bachelor’s degree in computer science, Cybersecurity, or related discipline. Soft Skills: Strong analytical and problem-solving abilities. Excellent written and verbal communication skills. Collaboration and team orientation. High attention to detail and documentation. Strong stakeholder management across development, DevOps, and compliance teams. Preferred Qualifications: Certifications such as OSCP, CISSP, CEH, or GWAPT. Exposure to cloud security (AWS/GCP/Azure). Scripting knowledge for automation using Python or Bash. Experience with container and Kubernetes security tools. Key Relationships: InternalDevelopment Teams, DevOps Teams, QA Teams, Compliance Team, Product Owners ExternalAuditors, Regulatory Authorities (e.g., for STQC), Security Vendors Role Dimensions: Team Size: Individual contributor or small security team lead Scope: Application security coverage across all internal and external apps Impact: High – directly impacts risk mitigation, compliance, and secure software delivery Success Measures (KPIs): % of vulnerabilities resolved within SLA Number of applications onboarded to security tools Security issues found in pre-production vs post-deployment Developer adoption rate of secure coding practices STQC and other audit clearance rates Mean time to detect and remediate vulnerabilities Competency Framework Alignment: Technical Expertise Deep understanding of of AppSec tools and practices Results Orientation Works cross-functionally with technical teams Problem Solving Strong in analysing and resolving security issues Communication Explains complex security concepts to non-tech teams Adaptability Takes ownership of vulnerabilities and resolutions

We are looking for: THE SENIOR DEV OPS ENGINEER As Klypup’s Senior DevOps Engineer you will be a champion of our cloud center of excellence, CCOE team and will be responsible for building and operating fast and scalable workflows, and must have the ability to help an architect, design and lead the transformational journey into the AWS Cloud platform of services. This role will support cloud strategy across all Klypup markets, India, Singapore and UAE. Overall responsibility: Incorporate entire application lifecycle in automation, including end-to-end and performance testing, automated remediation of issues, auditable release tracking process Drive significant improvements to business outcomes through simplifying and accelerating software development practice both through technical projects and procedural and technical coaching Deliver implementation of: Revision/Source Control, Configuration Management Maintain tools related to Monitoring, Bug Tracking, Testing Infrastructure as Code/Software Defined Infrastructure Experience with Continuous Integration, Continuous Deployment Lead the implementation of continuous delivery systems and methodologies on AWS Implement software development life cycle to deliver Cloud solutions Deliver the development of automated solutions to monitor and support software development and release processes Lead automation of security controls, governance processes, and compliance validation Lead the deployment of monitoring, metrics, and logging systems on AWS Manage, and maintains tools to automate operational processes Development of various infrastructure components including web stacks, database systems, security tools, and networking/Cloud environment configurations Support development/engineering team to drive, design, implement and maintain end-to-end DevOps automation from build, implement, deploy (code check-in), operate and maintaining the CI/CD deployment pipeline Leverage DevOps Automation Tools to support engineering team in improving the CI/CD deployment pipeline, and to extend the functionality of IT Infrastructure making use of APIs and open source tools with sound knowledge of Python programming, web programming, and designs that scale Manage system automations, writing scripts to extend the functionality of IT Infrastructure making use of various APIs and open source tools with sound knowledge of Python programming, web programming and scaling challenges Leadership Responsibility: Start Up attitude. Hustle is the rhythm of the business. Teamwork is real – there are no silos. We build stuff – but always keeping the customer first. Lead multiple products or work streams simultaneously Guide and coach less experienced peers to become more productive and effective team members Proactively engage with other Service Teams Educate team to design and implement based on DevOps practices Provide hands-on technical coaching to accelerate learning across the Cloud COE Lead DevOps Champions. Develops a community of DevOps Specialists across the Cloud COE Required qualifications: 10+ years experience of working in an Agile/Scrum environment Deep understanding of Cloud computing technologies and workload transition challenges Knowledge of AWS Well Architected Framework and Cloud migration industry standards and best practices Prior programming background in at least ONE language: C++, Java, Python, Ruby etc. Knowledge of development processes and methodologies Deep knowledge of Automation services like - Lambda, API Gateway, CodeBuild, CodeDeploy, CodePipeline, Gitlab, Kubernetes, Prometheus, Grafana Knowledge of DevOps tooling landscape and experience integrating various DevOps tools together to provide end to end application lifecycle management Deep software architecture and programming skills Strong scripting skills, i.e., Powershell, Python, Bash, Ruby, Perl, etc. Strong practical Linux and Windows-based systems administration skills in a Cloud or Virtualized environment Understanding of tagging Deep understanding of Service-Oriented Architectures (SOA and REST) Understanding of application and infrastructure logs Experience with various DevSecOps tools including Qualys, Fortify, or OWASP Experience with Gen AI code transformations and coding assistants like Amazon Q Developer, AWS Transform, Cursor, Co-Pilot etc. Competencies: Ability to work in an Agile/Scrum environment. Ability to deliver in sprints and work as a team Ability to multi-task and prioritize deadlines Ability to operate in cross-functional and multidisciplinary teams Customer focused with an attitude to deliver excellent customer outcomes through technical expertise Ability to think strategically about business, product, and technical challenges Ability to take "ownership" with high sense of urgency and work like an "entrepreneur" Problem solving, analytics and resolution skills Ability to think outside the box Exceptional and effective verbal and written communication skills Demonstrated ability to communicate effectively across teams to a broad range of audiences Ability towards learning new technologies. Continuously strives to learn new technologies and make time for self-development Certifications: Mandatory: AWS Certified Solutions Architect – Associate AWS Certified DevOps Engineer – Associate AWS Certified DevOps Engineer – Professional Good to have: AWS Certified Solutions Architect – Professional AWS Certified SysOps Administrator – Associate Job Location Noida / Delhi (IN) Travel 10% of the time Job Type: Full-time Benefits: Health insurance Paid sick time Paid time off Work Location: In person

Line of Service Advisory Industry/Sector FS X-Sector Specialism Risk Management Level Associate Job Description & Summary We are seeking a highly skilled Sailpoint Developer .If candidate has experience of 2-3 years, he/she must be Sailpoint Certified, above 3 years experience sailpoint certification is not mandatory but good to have. *Why PWC At PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes for our clients and communities. This purpose-led and values-driven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences for each other. Learn more about us . At PwC, we believe in providing equal employment opportunities, without any discrimination on the grounds of gender, ethnic background, age, disability, marital status, sexual orientation, pregnancy, gender identity or expression, religion or other beliefs, perceived differences and status protected by law. We strive to create an environment where each one of our people can bring their true selves and contribute to their personal growth and the firm’s growth. To enable this, we have zero tolerance for any discrimination and harassment based on the above considerations. " Job Description & Summary : We are seeking a highly skilled and experienced Cybersecurity/Risk Consulting Senior Associate to join our Risk Consulting team. As a Cybersecurity Senior Associate, you will be responsible for leading and managing a team of consultants to deliver high-quality cybersecurity and risk management services to our clients. Responsibilities: Good interpersonal skills (written and oral communication) and ability to articulate complex issues Ability to communicate technical information clearly and concisely, commensurate with the audience Conceptual thinking and communication skills — the ability to conceptualize complex business and technical requirements into comprehensible models and templates. Good communicator (written and verbal) and listener. Must be a team player and motivated self-starter with ability to work independently with limited supervision. Must be assertive, methodical and detail oriented Technical Experience: Experience in Web and Mobile Application Security Testing, Vulnerability Assessment and Penetration testing Analyze scan reports and suggest remediation / mitigation plan for security vulnerabilities Should be aware of tools like Qualys, HP Fortify, IBM Appscan , Burpsuite , Kali Linux suite of tools Expertise in mobile apps reverse engineering and in-depth knowledge of Android and iOS ecosystems. Knowledge of industry standard tools for mobile pentest . Thorough understanding of OWASP Top 10 vulnerabilities and their mitigations. Knowledge of Network Security technology in areas of Firewall, IPS, VPN, Gateway security solutions (proxy, web filtering) Conduct penetration test and launch exploits using Nessus, Metaspoilt , kali linux penetration testing distribution tools sets Conduct Vulnerability Assessments of Network Devices using various open source and commercial tools Map out a network, discover ports and services running on the different exposed network and security devices Research and maintain proficiency in computer network exploitation, tools, techniques, countermeasures, and trends in computer network vulnerabilities, data hiding, network security, and encryption. In-depth understanding on Common Vulnerability Exposure (CVE)/ CERT advisory database. Broad background of networks, operating systems (Window, Unix, Linux), firewalls and security engineering concepts. Knowledge of scripting languages (Perl, Python, Shell etc) will be added advantage Knowledge of Open-Source Security Testing Methodology Manual (OSSTMM) Mandatory skill sets: CEH, ECSA, LPT ( any one ) Preferred skill sets: OSCP, OSWE Years of experience required : 2 - 10 Years Education qualification: B.Tech Education (if blank, degree and/or field of study not specified) Degrees/Field of Study required: Bachelor of Technology Degrees/Field of Study preferred: Certifications (if blank, certifications not specified) Required Skills SailPoint IdentityIQ Optional Skills Accepting Feedback, Accepting Feedback, Access Control Models, Access Control System, Access Management, Active Listening, Authorization Compliance, Authorization Management Systems, Azure Active Directory, Cloud Identity and Access Management (IAM), Communication, CyberArk Management, Cybersecurity, Emotional Regulation, Empathy, Encryption Technologies, Federated Identity Management, ForgeRock Identity Platform, Identity and Access Management (IAM), Identity-Based Encryption, Identity Federation, Identity Governance Framework (IGF), Identity Verification, Inclusion, Information Security {+ 17 more} Desired Languages (If blank, desired languages not specified) Travel Requirements Not Specified Available for Work Visa Sponsorship? No Government Clearance Required? No Job Posting End Date Show more Show less

When you join Verizon You want more out of a career. A place to share your ideas freely — even if they’re daring or different. Where the true you can learn, grow, and thrive. At Verizon, we power and empower how people live, work and play by connecting them to what brings them joy. We do what we love — driving innovation, creativity, and impact in the world. Our V Team is a community of people who anticipate, lead, and believe that listening is where learning begins. In crisis and in celebration, we come together — lifting our communities and building trust in how we show up, everywhere & always. Want in? Join the #VTeamLife. What You’ll Be Doing... You'll be part of the "Verizon Global Infrastructure (VGI), Network & Information Security” group working on security and automation tools to protect against cyber threats within the VGS Technology organization. You will work with a team of cybersecurity engineers with network & infrastructure background, threat intelligence analysts and risk management personnel to align common technologies and practices that fortify our applications, systems, IT network and infrastructure. Some Of Your Daily Responsibilities Would Be The Following Develop and implement access management policies and procedures. Implement and maintain asset tracking systems. Conduct regular access reviews and audits. Identify and remediate access control deficiencies. Monitor access logs and alerts for suspicious activity. Ensure compliance with regulatory requirements (e.g., GDPR, HIPAA, PCI DSS). Develop and implement compliance frameworks for infrastructure asset management. Conduct regular audits of asset management processes and documentation. Monitor changes in regulations and standards and update compliance procedures accordingly Investigate and resolve compliance issues and incidents. Maintain accurate records of compliance activities. Collaborate with internal teams and external auditors on compliance matters. Maintain an accurate inventory of all infrastructure assets (hardware, software, licenses) Leverage industry proven tools to identify and reduce Cyber Risks Assist in Crisis Management, Ransomware Recovery and Business Continuity planning. Identify, investigate and resolve global security breaches / incidents Develop and maintain network and infrastructure security reporting dashboards and scorecards used to measure our Cyber Practice. What We’re Looking For... You are passionate about network security and automation as a career. You are self-driven and motivated, with good communication and analytical skills. You’re a sought-after team member that thrives in a dynamic work environment. You will be working with multiple partners from the business groups, so networking and managing effective working relationships should be your top most priority. You have an understanding of industry trends in all areas of Information Security. You'll Need To Have Bachelor’s degree or four or more years of work experience. Four or more years of relevant work experience. Four or more years of experience in network / information security, risk and compliance management. Understanding of network fundamentals, switching, routing protocols, load balancers, web proxies, firewalls and software defined networking solutions. Experience in handling enterprise scale server infrastructure & management Knowledge of Cloud infrastructure and technologies Excellent analytical and problem-solving skills. Ability to manage multiple tasks and priorities in a fast-paced environment Understanding of security fundamentals Confidentiality, Integrity, Availability, access control, Authentication, Authorization, Auditing secure design concepts like Experience working on IT ticketing systems like JIRA, Service Now and ability to partner and collaborate with other teams in the organization Experience with hosting security awareness campaigns, gamification and bug bounty programs will be an added advantage Strong analytical problem solving, communication and interpersonal skills Passion to stay abreast with emerging technologies, network security trends, tools and techniques. Even better if you have one or more of the following: Masters or Bachelor’s degree in Computer Science / Information Technology Engineering Industry relevant security certifications Security+, OSCP, CEH, CISSP, GIAC, etc Strong expertise in at least one operating system Window or Linux. Cloud relevant certifications CCSP, CCSK If Verizon and this role sound like a fit for you, we encourage you to apply even if you don’t meet every “even better” qualification listed above. Where you’ll be working In this hybrid role, you'll have a defined work location that includes work from home and assigned office days set by your manager. Scheduled Weekly Hours 40 Equal Employment Opportunity Verizon is an equal opportunity employer. We evaluate qualified applicants without regard to race, gender, disability or any other legally protected characteristics. Show more Show less

Summary Position Summary AWS DevSecOps Engineer – CL4 Role Overview : As a DevSecOps Engineer , you will actively engage in your engineering craft, taking a hands-on approach to multiple high-visibility projects. Your expertise will be pivotal in delivering solutions that delight customers and users, while also driving tangible value for Deloitte's business investments. You will leverage your extensive DevSecOps engineering craftsmanship and advanced proficiency across multiple programming languages, DevSecOps tools, and modern frameworks, consistently demonstrating your strong track record in delivering high-quality, outcome-focused CI/CD and automation solutions. The ideal candidate will be a dependable team player, collaborating with cross-functional teams to design, develop, and deploy advanced software solutions. Key Responsibilities : Outcome-Driven Accountability: Embrace and drive a culture of accountability for customer and business outcomes. Develop DevSecOps engineering solutions that solve complex automation problems with valuable outcomes, ensuring high-quality, lean, resilient and secure pipelines with low operating costs, meeting platform/technology KPIs. Technical Leadership and Advocacy: Serve as the technical advocate for DevSecOps modern practices, ensuring integrity, feasibility, and alignment with business and customer goals, NFRs, and applicable automation/integration/security practices—being responsible for designing and maintaining code repos, CI/CD pipelines, integrations (code quality, QE automation, security, etc.) and environments (sandboxes, dev, test, stage, production) through IaC, both for custom and package solutions, including identifying, assessing, and remediating vulnerabilities. Engineering Craftsmanship: Maintain accountability for the integrity and design of DevSecOps pipelines and environments while leading the implementation of deployment techniques like Blue-Green, Canary to minimize down-time and enable A/B testing. Be always hands-on and actively engage with engineers to ensure DevSecOps practices are understood and can be implemented throughout the product development life cycle. Resolve any technical issues from implementation to production operations (e.g., leading triage and troubleshooting production issues). Be self-driven to learn new technologies, experiment with engineers, and inspire the team to learn and drive application of those new technologies. Customer-Centric Engineering: Develop lean, and yet scalable and flexible, DevSecOps automations through rapid, inexpensive experimentation to solve customer needs, enabling version control, security, logging, feedback loops, continuous delivery, etc. Engage with customers and product teams to deliver the right automation, security, and deployment practices. Incremental and Iterative Delivery: Adopt a mindset that favors action and evidence over extensive planning. Utilize a leaning-forward approach to navigate complexity and uncertainty, delivering lean, supportable, and maintainable solutions. Cross-Functional Collaboration and Integration: Work collaboratively with empowered, cross-functional teams including product management, experience, engineering, delivery, infrastructure, and security. Integrate diverse perspectives to make well-informed decisions that balance feasibility, viability, usability, and value. Support a collaborative environment that enhances team synergy and innovation. Advanced Technical Proficiency: Possess intermediary knowledge in modern software engineering practices and principles, including Agile methodologies, DevSecOps, Continuous Integration/Continuous Deployment. Strive to be a role model, leveraging these techniques to optimize solutioning and product delivery, ensuring high-quality outcomes with minimal waste. Demonstrate intermediate level understanding of the product development lifecycle, from conceptualization and design to implementation and scaling, with a focus on continuous improvement and learning. Domain Expertise: Quickly acquire domain-specific knowledge relevant to the business or product. Translate business/user needs into technical requirements and automations. Learn to navigate various enterprise functions such as product, experience, engineering, compliance, and security to drive product value and feasibility. Effective Communication and Influence: Exhibit exceptional communication skills, capable of articulating technical concepts clearly and compellingly. Support teammates and product teams through well-structured arguments and trade-offs supported by evidence, evaluations, and research. Learn to create a coherent narrative that align technical solutions with business objectives. Engagement and Collaborative Co-Creation: Able to engage and collaborate with product engineering teams, including customers as needed. Able to build and maintain constructive relationships, fostering a culture of co-creation and shared momentum towards achieving product goals. Support diverse perspectives and consensus to create feasible solutions. The team : US Deloitte Technology Product Engineering has modernized software and product delivery, creating a scalable, cost-effective model that focuses on value/outcomes by leveraging a progressive and responsive talent structure. As Deloitte’s primary internal development team, Product Engineering delivers innovative digital solutions to businesses, service lines, and internal operations with proven bottom-line results and outcomes. It helps power Deloitte’s success. It is the engine that drives Deloitte, serving many of the world’s largest, most respected companies. We develop and deploy cutting-edge internal and go-to-market solutions that help Deloitte operate effectively and lead in the market. Our reputation is built on a tradition of delivering with excellence. Key Qualifications : A bachelor’s degree in computer science, software engineering, or a related discipline. An advanced degree (e.g., MS) is preferred but not required. Experience is the most relevant factor. Strong software engineering foundation with deep understanding of OOP/OOD, functional programming, data structures and algorithms, software design patterns, code instrumentations, etc. 5+ years proven experience with Python, Bash, PowerShell, JavaScript, C#, and Golang (preferred). 5+ years proven experience with CI/CD tools (Azure DevOps and GitHub Enterprise) and Git (version control, branching, merging, handling pull requests) to automate build, test, and deployment processes. 5+ years of hands-on experience in security tools automation SAST/DAST (SonarQube, Fortify, Mend), monitoring/logging (Prometheus, Grafana, Dynatrace), and other cloud-native tools on AWS, Azure, and GCP. 5+ years of hands-on experience in using Infrastructure as Code (IaC) technologies like Terraform, Puppet, Azure Resource Manager (ARM), AWS Cloud Formation, and Google Cloud Deployment Manager. 2+ years of hands-on experience with cloud native services like Data Lakes, CDN, API Gateways, Managed PaaS, Security, etc. on multiple cloud providers like AWS, Azure and GCP is preferred. Strong understanding of methodologies like, XP, Lean, SAFe to deliver high quality products rapidly. General understanding of cloud providers security practices, database technologies and maintenance (e.g. RDS, DynamoDB, Redshift, Aurora, Azure SQL, Google Cloud SQL) General knowledge of networking, firewalls, and load balancers. Strong preference will be given to candidates with AI/ML and GenAI. Excellent interpersonal and organizational skills, with the ability to handle diverse situations, complex projects, and changing priorities, behaving with passion, empathy, and care. How You will Grow: At Deloitte, our professional development plans focus on helping people at every level of their career to identify and use their strengths to do their best work every day and excel in everything they do. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Benefits At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Professional development From entry-level employees to senior leaders, we believe there’s always room to learn. We offer opportunities to build new skills, take on leadership opportunities and connect and grow through mentorship. From on-the-job learning experiences to formal development programs, our professionals have a variety of opportunities to continue to grow throughout their career. Requisition code: 211454 Show more Show less

Job Title: VAPT From Consult to Associate Director Location: Gurgaon, Mohali Experience: 1 to 10+ years Work Mode: Onsite Role Overview: We are seeking a highly skilled Vulnerability Assessment and Penetration Testing (VAPT) Manager / Senior Manager to lead and manage end-to-end security assessment projects across applications, infrastructure, networks, and cloud environments. This role involves both hands-on technical execution and oversight of team deliverables, with a focus on client delivery, quality assurance, and stakeholder communication. Key Responsibilities: Lead and execute VAPT engagements across web apps, mobile apps, infrastructure, networks, cloud platforms , and source code reviews . Conduct detailed manual and automated vulnerability assessments and penetration testing. Review and validate test reports, ensuring clear and actionable remediation guidance. Mentor and guide junior team members, supporting their technical and professional development. Coordinate with clients, internal teams, and management to deliver secure, compliant, and high-quality solutions. Stay updated with emerging threats, tools, and techniques in the cybersecurity domain. Ensure adherence to industry standards such as OWASP, NIST, ISO 27001, PCI-DSS, and RBI guidelines . Desired Skills & Experience: 1 to 10+ years of experience in VAPT with strong expertise in manual testing beyond automated scanners. Hands-on experience with tools such as Burp Suite, Metasploit, Nessus, Nmap, Wireshark, Fortify, AppScan , etc. Proficiency in secure coding practices and at least one programming language (e.g., Python, Java, JavaScript). Strong report writing, presentation, and communication skills. Familiarity with cloud security (AWS, Azure, GCP) is a plus. OSCP certification is an added advantage, but not mandatory . Experience managing security projects and small teams preferred. Why Join Us? Work on high-impact cybersecurity projects. Opportunity to lead and grow a team of security professionals. Collaborative work environment with cutting-edge tools and training. Competitive salary and benefits. Priority consideration for immediate joiners . Show more Show less

About BNP Paribas India Solutions: Established in 2005, BNP Paribas India Solutions is a wholly owned subsidiary of BNP Paribas SA, European Union’s leading bank with an international reach. With delivery centers located in Bengaluru, Chennai and Mumbai, we are a 24x7 global delivery center. India Solutions services three business lines: Corporate and Institutional Banking, Investment Solutions and Retail Banking for BNP Paribas across the Group. Driving innovation and growth, we are harnessing the potential of over 10000 employees, to provide support and develop best-in-class solutions. About BNP Paribas Group: BNP Paribas is the European Union’s leading bank and key player in international banking. It operates in 65 countries and has nearly 185,000 employees, including more than 145,000 in Europe. The Group has key positions in its three main fields of activity: Commercial, Personal Banking & Services for the Group’s commercial & personal banking and several specialised businesses including BNP Paribas Personal Finance and Arval; Investment & Protection Services for savings, investment, and protection solutions; and Corporate & Institutional Banking, focused on corporate and institutional clients. Based on its strong diversified and integrated model, the Group helps all its clients (individuals, community associations, entrepreneurs, SMEs, corporates and institutional clients) to realize their projects through solutions spanning financing, investment, savings and protection insurance. In Europe, BNP Paribas has four domestic markets: Belgium, France, Italy, and Luxembourg. The Group is rolling out its integrated commercial & personal banking model across several Mediterranean countries, Turkey, and Eastern Europe. As a key player in international banking, the Group has leading platforms and business lines in Europe, a strong presence in the Americas as well as a solid and fast-growing business in Asia-Pacific. BNP Paribas has implemented a Corporate Social Responsibility approach in all its activities, enabling it to contribute to the construction of a sustainable future, while ensuring the Group's performance and stability Commitment to Diversity and Inclusion At BNP Paribas, we passionately embrace diversity and are committed to fostering an inclusive workplace where all employees are valued, respected and can bring their authentic selves to work. We prohibit Discrimination and Harassment of any kind and our policies promote equal employment opportunity for all employees and applicants, irrespective of, but not limited to their gender, gender identity, sex, sexual orientation, ethnicity, race, colour, national origin, age, religion, social status, mental or physical disabilities, veteran status etc. As a global Bank, we truly believe that inclusion and diversity of our teams is key to our success in serving our clients and the communities we operate in. About Business Line/Function: ALMT function is responsible for Asset Liabilities management and treasury activity of BNP Paribas. It also handles Bank’s funding needs and risk management activities. ALMT IT is a Deal Capture & Deal Processing Application catering to IT demands of ALMT functions within the bank. OMR is a back office application used to handle the settlement and associated functionality of local booking within ALMT world in BNP Paribas. OMR IT team supports the functionality through customizations on the vendor product OMR, design and development of interfaces that communicate with other applications as part of the settlement lifecycle and also through a set of Business Objects reports that provide insights and necessary control for the Operations and Business Job Title: Release Manager Date: Department: ALMT IT Location: Mumbai, Chennai Business Line / Function: ALMT IT Reports To: (Direct) Delivery Manager Grade: (if applicable) (Functional) Number Of Direct Reports: NA Directorship / Registration: NA Position Purpose Current position is under ALMT IT Transversal Team scope to contribute in Releases management capacity on supporting both functional & technical test responsibilities for release deliveries (ALMT) application. The individual must be particularly well versed in manual testing of complex systems by following accepted best practices for high availability. The person should be an innovative, highly skilled individual who can add value to the IT community and work with developers, business analysts, project teams, SME , APS and technical architects Responsibilities Responsibilities Direct Responsibilities Ensure Release Management Processes adherence for all the Jiras that are part of the Delivery/release. Optimize Release Management activities & processes Create & Maintain Release Management Documentation & artefacts Conduct Regular Release & retrospective meetings Aid Development team on the Process adherence. Conduct training sessions. Raise alerts on Risks in a timely manner and provide mitigation actions Coordinate with all Application/Project stakeholders for timely and quality documentation. To ensure all activities carried-out and solutions proposed, planned, and delivered are compliant with Organization policy guidelines. Contribute towards DevOps automation, functionally. Contributing Responsibilities Contribute towards innovation, suggest new technical practices (emphasizing on automation) Contribute towards initiatives to improve processes and delivery Contribute towards recruitment efforts - both for the team as well as for the organization Technical & Behavioral Competencies Mandatory: - Strong knowledge on the release management process Excellent communication skills , spoken & written Good people skills to coordinate for various activities including scope closing, test sign offs, documentation and deployments Rigorous, Organized / Methodical Perform Basic Unix operations Basic understanding of technical/application architecture Exposure on DevOps processes and CI/CD pipelines Exposure on DevOps toolchain – Git, Jenkins, Artifactory, etc. Exposure on DevSecOps toolchain – Sonar, Fortify & NexusIQ, etc. Specific Qualifications (if Required) B.E or equivalent Skills Referential Behavioural Skills: (Please select up to 4 skills) Ability to collaborate / Teamwork Ability to deliver / Results driven Communication skills - oral & written Client focused Transversal Skills: (Please select up to 5 skills) Analytical Ability Ability to understand, explain and support change Ability to develop and adapt a process Ability to manage / facilitate a meeting, seminar, committee, training… Choose an item. Education Level: Bachelor Degree or equivalent Experience Level At least 5 years Other/Specific Qualifications (if Required) Exposure to Sql and Linux will be added advantage Department: ALMT IT Location: SP, Chennai Other/Specific Qualifications (if Required) Exposure to Sql and Linux will be added advantage Show more Show less

Project description Are you passionate about leveraging the latest technologies for strategic changeDo you enjoy problem solving in clever waysAre you organized enough to drive change across complex data systemsIf so, you could be the right person for this role. As a DevOps data engineer, you will join an existing team in the EA Team in Group CTO supporting our strategic initiatives across the bank. You'll be working in the Technology Services GCTO EA Team. Technology Services is a group-wide function which provides integrated and secure infrastructure services for organization by offering best fit, easy to leverage, reliable and cost-effective technology services and strategic products which provide functionality, strategic insights and expertise across all business groups globally. Responsibilities Help Group Enterprise Architecture team to develop our Azure based applications and tooling Work in the development team to support the infrastructure automation and deployment of applications and reports Design, implement, and maintain CI/CD pipelines to automate software delivery processes. Manage and configure infrastructure using tools like Serverless Application Model (SAM), Cloud and Terraform. Monitor system performance and troubleshoot issues to ensure optimal uptime and availability. Collaborate with development teams to optimize application performance and reliability. Implement and maintain containerization and orchestration solutions (eg, Docker, Kubernetes). Implement and manage cloud infrastructure on Azure, Ensure security best practices are implemented across all infrastructure components. Continuously evaluate and adopt new technologies to improve efficiency and productivity. Produce clear and commented code Produce clear and comprehensive documentation Play an active role with technology support teams and ensure deliverables are completed or escalated on time Provide support on any related presentations, communications, and trainings Be a team player, working across the organization with skills to indirectly manage and influence Be a self-starter willing to inform and educate others Skills Must have Azure experience is a must Understanding of Microsoft ecosystem Experience with PowerBI and Power Apps 2+ years experience of Terraform 3+ years of DevOps experience in a highly regulated environment Excellent experience designing and building Data Pipelines. Hands on experience working with Kubernetes, Docker and other infrastructure based technologies. Experience with developing collaboration tooling Power Automate knowledge & integration with M365 suite Has strong communication skills 2+ years of experience in a Scrum delivery model In depth experience of Git, JIRA, GitLab Excellent end-to-end SDLC process understanding. Proven track record of delivering complex web apps on tight timelines Understanding of fundamental design principles behind a scalable application and familiarity with RESTful Services. Fluent in English both written and spoken. Passionate about development with focus on web architecture and design Analytical and logical A team player, comfortable working with a lead developer and architects for the program An excellent communicator who is adept in, handling ambiguity and communicating with both technical and non-technical audiences Comfortable with working in cross-functional global teams to effect change Nice to have 2+ years JavaScript, TypeScript experience Knowledge of performance testing frameworks including Fortify, SonarQube, Mocha and Jest Knowledge and experience of Data Science and common tools Knowledge of RDF based Graph Database solutions e.g. GraphDB, Anzo Programming in Python and familiarity with Machine Learning algorithms Familiarity with data retrieval with SQL and Oracle Other Languages EnglishC1 Advanced Seniority Regular

Welcome to Warner Bros. Discovery… the stuff dreams are made of. Who We Are… When we say, “the stuff dreams are made of,” we’re not just referring to the world of wizards, dragons and superheroes, or even to the wonders of Planet Earth. Behind WBD’s vast portfolio of iconic content and beloved brands, are the storytellers bringing our characters to life, the creators bringing them to your living rooms and the dreamers creating what’s next… From brilliant creatives, to technology trailblazers, across the globe, WBD offers career defining opportunities, thoughtfully curated benefits, and the tools to explore and grow into your best selves. Here you are supported, here you are celebrated, here you can thrive. Job Responsibilities Design, deploy, and maintain security measures to safeguard our cloud infrastructures across AWS, GCP, and Azure. Ensure the security of containerized applications through the implementation of Kubernetes and microservices security best practices. Architect secure container environments, including Kubernetes clusters, Docker setups, and orchestration solutions, emphasizing vulnerability reduction and compliance. Develop and enforce security policies, standards, and procedures for cloud environments and containerized workloads. Collaborate with cross-functional teams to integrate security best practices into the software development lifecycle (SDLC) and continuous integration/continuous deployment (CI/CD) pipelines. Automate security operations and workflows using scripting languages like Python. Partner closely with DevOps teams to fortify container orchestration platforms and containerized workloads. Conduct routine security assessments, vulnerability scans, and penetration tests to identify and address potential security weaknesses. Stay abreast of industry developments, emerging threats, and best practices in cloud security, container security, and DevSecOps methodologies. Qualifications & Experiences: Hybrid work environment. Must be based in the WBD’s office, minimum three days/week. Bachelor’s degree in computer science, Information Security, or a related field. 4+ years of experience working as a Cloud Security Engineer or a similar role. In-depth knowledge of cloud computing platforms such as AWS, GCP, and Azure. Proficiency in writing scripts and automation using Python. Strong understanding of DevSecOps principles and practices. Experience with containerization technologies such as Docker and Kubernetes, including securing Kubernetes clusters and containerized workloads. Familiarity with microservices security principles and best practices. Relevant certifications such as AWS, GCP or Azure is desired Excellent communication and collaboration skills. If you: are excited to work in an international, fast-paced, multi-faceted media company. are comfortable ensuring timely escalation, responsiveness and follow through to meet deadlines. are knowledgeable of, and understand, the risk-based business impact approach to cybersecurity. are actively questioning and influencing actions needed to attain goals and targets. are comfortable driving initiatives forward without having direct control of staff. Then help us create the future with one of the world’s largest media & entertainment companies. How We Get Things Done… This last bit is probably the most important! Here at WBD, our guiding principles are the core values by which we operate and are central to how we get things done. You can find them at www.wbd.com/guiding-principles/ along with some insights from the team on what they mean and how they show up in their day to day. We hope they resonate with you and look forward to discussing them during your interview. Championing Inclusion at WBD Warner Bros. Discovery embraces the opportunity to build a workforce that reflects a wide array of perspectives, backgrounds and experiences. Being an equal opportunity employer means that we take seriously our responsibility to consider qualified candidates on the basis of merit, regardless of sex, gender identity, ethnicity, age, sexual orientation, religion or belief, marital status, pregnancy, parenthood, disability or any other category protected by law. If you’re a qualified candidate with a disability and you require adjustments or accommodations during the job application and/or recruitment process, please visit our accessibility page for instructions to submit your request.

Job Title - Sr. Security Analyst Job Location - Baner, Pune, Maharashtra Position Overview As a Sr. Security Analyst, you will play a crucial role in conducting meticulous assessments, orchestrating proactive monitoring, and spearheading strategic enhancements to fortify and advance our identity security offerings. You will be helping our customers strengthen their identity security posture and maintain compliance with industry regulations by analyzing, detecting, and responding to identity-related threats, as well as providing strategic guidance and recommendations to defend against evolving threats and safeguard customers’ critical assets. Responsibilities Leverage our clients Identity SecOps platform to monitor and analyze identity-related threats and incidents, including account compromise, identity theft, and unauthorized access attempts. Lead incident response efforts for identity-related security incidents, coordinating with cross-functional teams - both internal and external - to contain, mitigate, and remediate security breaches on time. Maintain accurate and detailed documentation of security incidents, investigations, and remediation activities, and prepare comprehensive reports for management and stakeholders. Facilitate regular monthly calls with customers to ensure alignment with their security objectives and address any concerns or inquiries. Provide weekly reports on security posture, incident trends, and mitigation efforts. Promptly communicate critical alerts to customers as they occur to maintain transparency and trust in our services. Conduct proactive monitoring of identity-related security events and anomalies. Conduct risk assessments and impact analyses of identity-related security risks, prioritize remediation efforts, and implement controls and safeguards to mitigate identified risks effectively. Promote security awareness and best practices related to identity security among employees, partners, and customers through training sessions, educational materials, and outreach initiatives. Stay abreast of emerging threats and vulnerabilities in the identity security landscape, leveraging threat intelligence sources to enhance detection capabilities and help develop proactive security measures in our product. Collaborate closely with product management, engineering team, and other stakeholders throughout the product development lifecycle. Thrive in a dynamic startup environment, contributing to a culture of innovation and excellence. Requirements At least 8 years of hands-on experience in cybersecurity, with a focus on identity security, authentication, and access management. Strong understanding of identity protocols and standards, such as SAML, OAuth, OpenID Connect, and LDAP. Proficiency in security analysis tools and technologies, including SIEM, SOC, and SOAR solutions, XDR/EDR, intrusion detection/prevention systems, and identity and access management (IAM) platforms. Proficiency in scripting and programming languages (e.g., Python, PowerShell) for automation, data analysis, and scripting purposes, enabling the creation of efficient analysis scripts and automation workflows to enhance security operations and streamline processes. Familiarity with security frameworks and compliance requirements, such as SOC 2, GDPR, HIPAA, and PCI DSS. Excellent attention to detail, analytical and problem-solving skills, with the ability to analyze complex security incidents and recommend effective mitigation strategies. A solid understanding of cybersecurity concepts, principles, and best practices, with experience in security testing methodologies and tools, is a significant advantage. Relevant certifications such as CISSP, CISM, CompTIA Security+, or GIAC certifications (e.g., GCIH, GCIA) are preferred. Strong communication and collaboration skills. Ability to thrive in a fast-paced, dynamic work environment. Master’s or Bachelor's degree in Computer Science, Engineering, or a related field. Show more Show less

Area(s) of responsibility Experience: 3 to 5 Years Tools & Technologies: - Site Reliability Engineering, AWS, PCF, DevOps, Tomcat 9, Nginx Webserver, and Unix OS (Linux), Splunk, New Relic, Load balancer etc.., Putty, WINSCP, Shell Scripting, Stone Branch. Job Responsibilities Diagnose and resolve technical issues with AWS services, applications, and infrastructure, often involving deep dives into logs and system analysis. Resolving technical issues reported by users or detected through monitoring tools. Assist with the deployment and configuring/setup of cloud resources (e.g., EC2, S3, VPC), including virtual machines, storage, and networking, ensuring proper configuration and integration. Monitor cloud infrastructure performance metrics, identify bottlenecks, and recommend solutions for improved performance and cost-efficiency. Develop and implement automation scripts and tools to streamline support processes and automate infrastructure provisioning. Experience in CI/CD pipelines for code deployment using (CloudFormation, Ansible Git, Maven, SonarQube, Gradle, Nexus, Bitbucket, UDeployer, Fortify, DevOps components) with YAML and Classic Editor. Having Pipeline scripting knowledge like Groovy, Shell scripts, Python. Writing shell Scripts and adding to Cron job to automate daily maintenance tasks like log rotation, report transfer, Server Rolling bounce, file system cleanups and alerts etc. Primary Skills That Must Be For The Candidate Good knowledge on Migration tasks, including planning, execution and documentation. Must have experience on cloud technologies like PCF/AWS. Managing and resolving incidents, including escalating issues as needed and Analysing system performance data and logs to identify trends and forecast needs. Setting up a High Availability Environments using external Hardware F5 load balancer, Nginx Web servers, http Session replications and Clustering of Weblogic Server & Services like JDBC, JMS etc. Skills with M/O flag are part of Specialization Capacity Management -PL2 (Functional) Win the Customer -PL2 (Behavioural) One Birlasoft -PL2 (Behavioural) Results Matter -PL2 (Behavioural) Get Future Ready -PL2 (Behavioural) Availability Management -PL3 (Functional) Service Level Management -PL2 (Functional) Incident Management -PL3 (Functional) IT Infrastructure -PL3 (Functional) Help the tribe -PL2 (Behavioural) Think Holistically -PL2 (Behavioural) GCP-Administration - PL3 (Mandatory) GCP-DevOps - PL2 (Optional) GCP-IaC - PL3 (Mandatory) Linux administration - PL2 (Optional) Wintel Administration - PL2 (Optional) Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. The opportunity The objective of our Digital Risk Consulting service is to support clients with the development, implementation, improvement, and modernization of their technology risk and compliance programs to address the constantly changing risk and technology landscape. Our solutions can be used by our clients to build confidence and trust with their customers, the overall market, and when required by regulation or contract. Your Key Responsibilities You will operate as a team leader for engagements to help our clients develop and strengthen their IT risk and compliance programs. You will work directly with clients to review their IT processes and controls, remediate and implement controls, onboard new tools and services into risk and compliance frameworks, and assist with the readiness and adherence for new compliance regulations. Your responsibilities include both in-person and remote oversight and coaching of engagement team members, reporting to both senior engagement team members and client leadership, as well as partnering with our key client contacts to complete the engagement work. What You'll Do Designing and implementing solutions to various data related technical/compliance challenges such as DevSecOps, data strategy, data governance, data risks & relevant controls, data testing, data architecture, data platforms, data solution implementation, data quality and data security to manage and mitigate risk. Leveraging data analytics tools/software to build robust and scalable solutions through data analysis and data visualizations using SQL, Python and visualization tools Design and implement comprehensive data analytics strategies to support business decision-making. Collect, clean, and interpret large datasets from multiple sources, ensuring completeness, accuracy and integrity of data. Integrating and/or piloting next-generation technologies such as cloud platforms, machine learning and Generative AI (GenAI) Developing custom scripts and algorithms to automate data processing and analysis to generate insights Applying business / domain knowledge including regulatory requirements and industry standards to solve complex data related challenges Analyzing data to uncover trends and generate insights that can inform business decisions Build and maintain relationships across Engineering, Product, Operations, Internal Audit, external audit and other external stakeholders to drive effective financial risk management. Work with DevSecOps, Security Assurance, Engineering, and Product teams to improve efficiency of control environments and provide risk management through implementation of automation and process improvement Bridge gaps between IT controls and business controls, including ITGCs and automated business controls. Work with IA to ensure complete control environment is managed Work with emerging products to understand risk profile and ensure an appropriate control environment is established Implement new process and controls in response to changes to the business environment, such as new product introduction, changes in accounting standards, internal process changes or reorganization. What You'll Need Experience in data architecture, data management, data engineering, data science or data analytics Experience in building analytical queries and dashboards using SQL, noSQL, Python etc Proficient in SQL and quantitative analysis, you can deep dive into large amounts of data, draw meaningful insights, dissect business issues and draw actionable conclusions Knowledge of tools in the following areas: Scripting and Programming (e.g., Python, SQL, R, Java, Scala, etc) Big Data Tools (e.g., Hadoop, Hive, Pig, Impala, Mahout, etc) Data Management (e.g., Informatica, Collibra, SAP, Oracle, IBM etc) Predictive Analytics (e.g., Python, IBM SPSS, SAS Enterprise Miner, RPL, Matl, etc) Data Visualization (e.g., Tableau, PowerBI, TIBCO-Spotfire, CliqView, SPSS, etc) Data Mining (e.g., Microsoft SQL Server, etc) Cloud Platforms (e.g., AWS, Azure, or Google Cloud) Ability to analyze complex processes to identify potential financial, operational, systems and compliance risks across major finance cycles Ability to assist management with the integration of security practices in the product development lifecycle (DevSecOps) Experience with homegrown applications in a microservices/dev-ops environment Experience with identifying potential security risks in platform environments and developing strategies to mitigate them Experience with SOX readiness assessments and control implementation Knowledge of DevOps practices, CI/CD pipelines, code management and automation tools (e.g., Jenkins, Git, Phab, Artifactory, SonarQube, Selenium, Fortify, Acunetix, Prisma Cloud) Preferred: Experience in: Managing technical data projects Leveraging data analytics tools/software to develop solutions and scripts Developing statistical model tools and techniques Developing and executing data governance frameworks or operating models Identifying data risks and designing and/or implementing appropriate controls Implementation of data quality process Developing data services and solutions in a cloud environment Designing data architecture Analyzing complex data sets & communicating findings effectively Process management experience, including process redesign and optimization Experience in scripting languages (e.g., Python, Bash) Experience in cloud platforms (e.g., AWS, Azure, GCP) and securing cloud-based applications/services To qualify for the role, you must have A bachelor's or master's degree 1-3 years of experience working as an IT risk consultant or data analytics experience. Bring your experience in applying relevant technical knowledge in at least one of the following engagements: (a) risk consulting, (b) financial statement audits; (c) internal or operational audits, (d) IT compliance; and/or (e) Service Organization Controls Reporting engagements. We would expect for you to be available to travel outside of their assigned office location at least 50% of the time, plus commute within the region (where public transportation often is not available). Successful candidates must work in excess of standard hours when necessary. A valid passport is required. Ideally, you’ll also have A bachelor's or master's degree in business, computer science, information systems, informatics, computer engineering, accounting, or a related discipline CISA, CISSP, CISM, CPA or CA certification is desired; non-certified hires are required to become certified to be eligible for promotion to Manager. EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

Job Description Why Gainsight? We are ranked #1 on Glassdoor’s 2023 Best Place to Work List. Here’s why. At Gainsight, our mission is to be living proof you can win in business while being human-first. Our industry-leading platform helps companies of all sizes and industries build durable businesses. Gainsight offers a powerful set of customer success, product, and community engagement solutions that enable businesses to scale efficiently, create alignment, and have a holistic view of their customers—all of which help increase product adoption, prevent churn, and grow renewals and expansions. Our software is used by hundreds of companies, including nearly 200 publicly traded organizations and industry leaders such as GE Digital, SAP Concur, and Box. We have offices in the US, UK, Netherlands, Israel, Japan, and India. Gainsight joined the Vista Equity Partners portfolio in 2020. In 2021, we won their Excellence in Engineering award in recognition of our product and engineering advancements. Gainsight has also been named one of the top 100 private cloud companies in the world by Forbes, one of the fastest-growing private companies in America by Inc. Magazine, and one of 20 Great Workplaces in Tech by Fortune Magazine. With diversity and inclusion at the forefront of our values, we promote a culture that celebrates diversity and inclusiveness regardless of, but not limited to, race, gender, sexual orientation, family status, religion, ethnicity, national origin, physical disability, veteran status, or age. Location : Hyderabad Role Overview As an Associate Information Security Engineer at Gainsight, you will play a crucial role in reinforcing the security of our cutting-edge applications across multiple product lines. This position provides a diverse experience, combining thorough security testing with proactive threat management. You'll collaborate closely with our innovative development teams to seamlessly integrate security into the fabric of our product lifecycle. Your mission will be to ensure the highest standards of security are maintained, utilizing advanced technologies and practices to protect our applications against evolving threats. This role offers a unique opportunity to develop your expertise in product and application security, enabling you to make tangible contributions to the safety and resilience of our software offerings. What You’ll Do Conduct security assessments on web, API and mobile applications to identify vulnerabilities and weaknesses, leveraging both manual and automated testing techniques. Collaborate with cross-functional development teams to embed security best practices throughout the software development lifecycle (SDLC), promoting a security-first culture. Assist in the triaging of security issues arising from bug bounty programs and third-party assessments, ensuring effective communication and resolution. Be responsible for identification of vulnerabilities and threats across the perimeter of the applications. Be part of the automation initiatives both in attack and DevSecOps areas. Align and exceed SLA expectations and commitments in all activities that are part of this role. Participate in threat hunting activities and contribute to the ongoing enhancement of our vulnerability management processes. Utilize basic tools and frameworks, including SAST (Static Application Security Testing) and WAF (Web Application Firewall), to fortify our applications against potential threats. Engage in continuous learning and training, keeping up with security trends, technologies, and industry best practices to advance your skills and knowledge. Leverage AI tools and technologies to enhance the effectiveness and efficiency of security testing and threat detection processes. Qualifications 1-3 years of experience in Vulnerability Management, Pentesting, threat hunting and performing scans on applications and cloud Bachelor's degree in computer science or related field A foundational understanding of application security concepts, including common vulnerabilities and secure coding practices (e.g., OWASP Top Ten). Demonstrated expertise in pentesting web, API and/or mobile applications for top vulnerability classes and hunting holes in applications and mobile. Minimum knowledge of cloud platforms such as AWS and GCP is required. Good To Have Skills Strong analytical and problem-solving skills with attention to detail. Excellent communication abilities and willingness to collaborate with development teams and other stakeholders. Familiarity with programming languages (e.g., Python, Java, or JavaScript) and a desire to learn how to apply coding skills in a security context. Experience with security tools (such as SAST tools or vulnerability scanners) is a plus but not mandatory. A proactive attitude, coupled with a desire to learn and adapt to new technologies and security trends, including AI applications in security testing. Relevant certifications such as CEH, OSCP, or eJPT are considered advantageous. At Gainsight, we value collaboration, innovation, and a proactive approach to security. If you're ready to make a meaningful impact in the world of application security while working in an exciting and fast-paced environment, we can't wait to hear from you! Why You’ll Love It Here Your job shouldn’t stand in the way of your happiness—it should be a path to achieve it. At Gainsight, we’re passionate about achieving our goals—at the office and everywhere—and we work every day to create an environment that nurtures our best selves. Gainsters love working here for several reasons. Here are a few: Our Core Values: We are guided by our values on our mission to be living proof you can win in business while being human-first. Learn more here. Our CEO: With a 99% approval rating on Glassdoor, Nick Mehta is one of the most beloved CEOs in Silicon Valley. Our Growth Opportunities: From mentoring to career development opportunities, we’re passionate about helping our Gainsters learn, grow and thrive. Our Teammate Resource Groups: A huge source of pride for Gainsight, these groups are on a mission to put our values into action and make Gainsight a great place to work for all. Our Wellness Priorities: Quarterly Recharge Days that re-energize us. Our Parody Videos: No explanation needed. Just watch them here! Job Description Summary By joining the Gainsight team, you’ll have a unique opportunity to make your mark at a truly human-first company and have loads of fun doing it. Come join us! Show more Show less

Position Overview: Are you enthusiastic about troubleshooting and maintaining IT network infrastructures? Do you possess hands-on experience and comprehensive knowledge of Cisco routing and switching technologies? If so, an exciting opportunity awaits you to join our team as a Network Engineer - L2. Key Responsibilities: Investigate and uphold IT network infrastructures to ensure optimal performance and reliability. Leverage expertise in Cisco routing and switching technologies to devise and execute network solutions. Oversee and configure Cisco FMC/FTD for robust network security. Manage Fortinet firewall to fortify our network infrastructure. Implement and oversee Cisco ISE for network access control. Configure and manage proxy servers to streamline network traffic. Skills Required: Minimum 3 years of hands-on experience in troubleshooting and maintaining IT network infrastructures. Proficiency in Cisco routing and switching technologies. Hands-on expertise with Cisco FMC/FTD, Fortinet firewall, Cisco ISE, and proxy servers. Strong analytical prowess and problem-solving abilities. Exceptional communication and teamwork skills. If you are eager to propel your career to new heights and become part of a dynamic team, we are excited to welcome you aboard! Job Types: Full-time, Permanent Pay: Up to ₹480,000.00 per year Benefits: Health insurance Provident Fund Schedule: Rotational shift Ability to commute/relocate: Bangalore, Karnataka: Reliably commute or planning to relocate before starting work (Preferred) Application Question(s): Can you work in rotational shift? Previous / Current CTC Expected CTC Notice Period Experience: Network engineering: 3 years (Preferred) Work Location: In person

Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health optimization on a global scale. Join us to start Caring. Connecting. Growing together. Primary Responsibilities Provide solid technology leadership and direction to a high-performing engineering team Design and implement complex, scalable systems and key product features with hands-on involvement Collaborate within Agile Scrum teams, contributing to sprint planning, development, and delivery Define and maintain a long-term architectural roadmap for existing and future products Stay ahead of emerging technologies and industry trends, applying innovative solutions as appropriate Establish and promote design patterns, coding standards, and best practices across the team Mentor and guide team members, fostering a culture of continuous learning and technical excellence Act as a liaison between business stakeholders, developers, and project management teams Effectively manage communication across onshore and offshore teams Lead and participate in design reviews, test case evaluations, and production readiness assessments Collaborate closely with business teams, infrastructure, and deployment partners to ensure seamless delivery Comply with the terms and conditions of the employment contract, company policies and procedures, and any and all directives (such as, but not limited to, transfer and/or re-assignment to different work locations, change in teams and/or work shifts, policies in regards to flexibility of work benefits and/or work environment, alternative work arrangements, and other decisions that may arise due to the changing business environment). The Company may adopt, vary or rescind these policies and directives in its absolute discretion and without any limitation (implied or otherwise) on its ability to do so Required Qualifications Bachelor’s or master’s degree in computer science, Engineering, or a related field 11+ years of experience across multiple technology layers and enterprise-scale systems Solid 7+ years of experience in UI related technologies (ReactJS, Angular, JQuery, Smart Components etc.), must have experience in building UI components for an enterprise 7+ years of hands-on experience in front-end technologies (ReactJS, Angular, jQuery, Smart Components) 4+ years of experience with cloud platforms (AWS, Azure, AKS, Docker, Terraform, etc.) 2+ years of experience in multi-tenant cloud applications and microservices architecture Proven experience with application development (e.g., J2EE stack, JBoss/Tomcat, SpringBoot, RESTful APIs) Deep experience in solution design and architecture, with a focus on scalability, performance, and cost-efficiency Experience with CI/CD pipelines and automation tools (e.g., Git, GitHub Actions, Jenkins, SonarQube, New Relic, Splunk) Knowledge of common security vulnerabilities and mitigation strategies Familiarity with security scanning tools (e.g., HP Fortify, WhiteHat, WebInspect) Full-stack development expertise with the ability to implement end-to-end product features that involve Microservices Proficiency in infrastructure-as-code tools like Terraform and container orchestration with Kubernetes Proven solid communication skills—verbal, written, and interpersonal At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone-of every race, gender, sexuality, age, location and income-deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes — an enterprise priority reflected in our mission. Show more Show less

Dear Aspirant , Greetings from TCS ! TCS presents excellent opportunity for Java Springboot Developer Exp: 7 - 17 Years Job Location: Mumbai / Pune Spring Boot and Java Experience Familiarity with software development design patterns: GIT, Swagger, PCF, and Rabbit MQ Expertise in API technologies such as Rest Webservices Previous experience writing unit tests with JUnit, Mockito, or PowerMock Knowledge of markup languages such as JSON and YML Working knowledge of quality and security scan technologies such as Sonar, Fortify, and WebInspect Agile approach Regards, Sai Lokesh S Show more Show less

Will be working on Application security testing Skills. Strategize and plan static and dynamic application security testing (SAST/DAST / SCA) tools. Will be responsible for Secure Coding Practices Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional expertise BE / B Tech in any stream, M.Sc. (Computer Science/IT) / M.C.A, with Minimum 5 plus years of experience. Application Security TestingExperience with static and dynamic application security testing (SAST/DAST/ SCA) tools. Secure Coding PracticesKnowledge of secure coding standards (e.g., OWASP Top Ten) and experience in reviewing code for security vulnerabilities. Threat ModelingAbility to conduct threat modeling sessions to identify and mitigate security risks Preferred technical and professional experience Vulnerability AssessmentExperience in conducting vulnerability assessments and penetration testing Application Security TestingExperience with static and dynamic application security testing (SAST/DAST) tools Security ToolsProficiency in using security tools like Burp Suite, Nessus, or Fortify

Company Description About Sopra Steria Sopra Steria, a major Tech player in Europe with 56,000 employees in nearly 30 countries, is recognized for its consulting, digital services and software development. It helps its clients drive their digital transformation and obtain tangible and sustainable benefits. The Group provides end-to-end solutions to make large companies and organizations more competitive by combining in-depth knowledge of a wide range of business sectors and innovative technologies with a fully collaborative approach. Sopra Steria places people at the heart of everything it does and is committed to putting digital to work for its clients in order to build a positive future for all. In 2023, the Group generated revenues of €5.8 billion. Job Description The world is how we shape it. Position : Java Fullstack Senior Technical Lead Experience: 10+ years Location: Noida/ Chennai Education: B.E./ B.Tech./MCA Skill Requirement: Exposure to all the phases of software lifecycle. One would be involved in design and development of applications. Able to understand the functional requirements, business use cases. Able to perform peer code reviews on best coding practices. Strong analytical, problem solving and troubleshooting abilities. Good experience on J2EE, SQL, Hibernate, Spring Core, Spring MVC, Spring Boot Good experience on Rest Web Services, HTML, CSS, JQuery/Javascript, Ajax Good experience in J2EE & Micro services Design Patterns Good experience and deep knowledge on Angular and working experience other FE technologies like HTML, CSS, NgRx, Electron Good to have experience on Agile methodology. Should have hands on experience of creating high level and low-level technical design documents. Aware of Junit and caching concepts. Aware of code quality tools like Sonar, Fortify. Experience with resolving security vulnerabilities is preferred. Additional Information General Shift At our organization, we are committed to fighting against all forms of discrimination. We foster a work environment that is inclusive and respectful of all differences. All of our positions are open to people with disabilities. Show more Show less

You are passionate about quality and how customers experience the products you test. You have the ability to create, maintain and execute test plans in order to verify requirements. As a Quality Engineer at Equifax, you will be a catalyst in both the development and the testing of high priority initiatives. You will develop and test new products to support technology operations while maintaining exemplary standards. As a collaborative member of the team, you will deliver QA services (code quality, testing services, performance engineering, development collaboration and continuous integration). You will conduct quality control tests in order to ensure full compliance with specified standards and end user requirements. You will execute tests using established plans and scripts; documents problems in an issues log and retest to ensure problems are resolved. You will create test files to thoroughly test program logic and verify system flow. You will identify, recommend and implement changes to enhance effectiveness of QA strategies. What You Will Do Participate in designing and building test automation frameworks and coding automated test suites Work with multiple, cross-functional sprint teams to support our automated test-driven methodology Assist with development of test automation processes and standards to enable consistent, high-quality automated tests, identifying tests ready for automation and automation test peer review, and support testing efforts by creating, maintaining, improving and expanding automation test suites. Support continuous integration development efforts, and the project goal of continuous improvement. Participate in all testing tasks including review of all requirements/acceptance criteria, manual testing, defect tracking, verification and validation support What Experience You Need BS degree in a STEM major or equivalent job experience required Less than 2 years of software development in testing experience Testing technologies: JIRA, Confluence, Office products Cloud Certification Strongly Preferred What Could Set You Apart You have experience with performance engineering and profiling (e.g. Java JVM, Databases) and tools such as Load Runner, JMeter You have some exposure to Application performance monitoring tools like Dynatrace and Splunk You are able to create good acceptance and integration test automation scripts and integrate with Continuous integration (Jenkins) and code coverage tools (Sonar, Clover) to ensure 80% or higher code coverage You have strong development skills and can code with Java and Spring You have experience working in a TDD/BDD environment and can utilize technologies such as JUnit, Rest Assured, Appium, Jbehave/Cucumber frameworks, APIs (REST/SOAP) You understand Continuous Delivery concepts and can use tools including Jenkins/Bamboo and vulnerability tools such as Sonar, Checkmarx/Fortify, etc. An ability to demonstrate successful performance of our Success Profile skills, including: Attention to Detail - Create thorough and accurate documentation of all work including status updates to summarize project highlights; validating that processes operate properly and conform to standards; Organizes own work, following established standards and processes while taking direction from others Automation - Automate defined test cases and test suites per project; Assist in developing test automation standards Collaboration - Collaborate with peers to understand product functionality and specifications; Collaborate with multiple, cross-functional sprint teams to support automated test-driven methodology Execution - Participate in creating and maintaining test automation frameworks and test suites; Participate in all testing tasks including automated and manual testing, testing support; Expand and maintain test automation created from product specifications and test plan; Identify tests cases as "ready" for automation; Record test automation results and defects with details to reproduce the issue in JIRA and Zephyr Quality Control - Create defects as a result of test execution with correct severity and priority; Analyzes discrete sets of information from functional and non-functional test execution; Assist in integrating test automation in the CI environment; Perform verification and validation support Quality Focus - Ensure communications are thorough and accurate for all work documentation including status updates; Peer review created test automation with other SDETs; Review all requirements/acceptance criteria Risk Mitigation - Work with QE team lead to track and determine prioritization of discovered defects Show more Show less

Databuzz is Hiring for DevSecOps Engineer-4+yrs-PAN India-Hybrid Please mail your profile to haritha.jaddu@databuzzltd.com with the below details, If you are Interested. About DatabuzzLTD: Databuzz is One stop shop for data analytics specialized in Data Science, Big Data, Data Engineering, AI & ML, Cloud Infrastructure and Devops. We are an MNC based in both UK and INDIA. We are a ISO 27001 & GDPR complaint company. CTC - ECTC - Notice Period/LWD - (Candidate serving notice period will be preferred) Position: DevSecOps Engineer Location: PAN India(Hybrid) Exp -4+ yrs Mandatory skills : A security expert who can write code as needed and knows the difference between Object vs Class vs Function programming Strong passion and thorough understanding of what it takes to build and operate secure reliable systems at scale Strong passion and technical expertise to automate security functions via code Strong technical expertise with Application Cloud Data and Network Security best practices Strong technical expertise with multicloud environments including containerserverless and other microservice architectures Strong technical expertise with older technology stacks including mainframes and monolithic architectures Strong technical expertise with SDLC CICD tools and Deployment Automation Strong technical expertise with operating security for Windows Server and Linux Server systems Strong technical expertise with configuration management version control and DevOps operational support Strong experience with implementing security measures for both applications and data with an understanding of the unique security requirements of data warehouse technologies such as Snowflake Regards, Haritha Talent Acquisition specialist haritha.jaddu@databuzzltd.com

Responsibilities: • Design, implement, and maintain secure CI/CD pipelines using Jenkins, GitHub Actions, and other automation tools. • Integrate DevSecOps best practices into the software development process, focusing on secure code delivery and deployment. • Implement and manage security tools such as SonarQube, Fortify, Prisma Cloud, or similar for static and dynamic code analysis. • Administer artifact repositories like Nexus or JFrog Artifactory to manage build dependencies and artifacts. • Collaborate with development, security, and operations teams to streamline secure software delivery processes. • Develop custom integrations between CI/CD tools and security scanning tools, ensuring compliance with enterprise security policies. • Leverage AWS services (EC2, S3, IAM, Lambda, CloudFormation, etc.) to support infrastructure automation and deployment. • Monitor pipeline health and automate feedback loops to improve quality, security, and efficiency. • Champion infrastructure-as-code and configuration management using tools like Terraform, Ansible, or CloudFormation. • Act as a key contributor within the Enterprise CI/CD Engineering team, contributing to platform evolution, best practices, and governance. ⸻ Required Skills: • strong experience in a DevOps/DevSecOps engineering role. • Strong expertise with Jenkins, GitHub, SonarQube, Nexus/JFrog, and CI/CD pipeline automation. • Hands-on experience with AWS cloud services and infrastructure as code (IaC). • Proficiency with integrating and managing security tools like Fortify, Prisma Cloud, Snyk, or similar. • Experience creating custom scripts and integrations using Python, Bash, Groovy, or equivalent languages. • Solid understanding of containerization and orchestration tools (Docker, Kubernetes is a plus). • Strong problem-solving skills and experience in troubleshooting complex CI/CD or security integration issues. • Prior experience working in or supporting an Enterprise CI/CD Engineering team is highly desirable. Show more Show less

Company Description RevGroMD enables growth in healthcare practice by providing expert revenue solutions. We navigate the complexities of provider enrollment, revenue cycle, and market dynamics so that you can focus on providing exceptional care. Our trio of essential services includes Insurance Credentialing, Revenue Cycle Management, and targeted Marketing Services to fortify your healthcare practice or facility. Role Description This is a full-time role for a Provider Credentialing Specialist based in Mohali. The Provider Credentialing Specialist will be responsible for managing the provider enrollment process, ensuring accurate and timely completion of credentialing applications, and maintaining credentialing files. They will also collaborate with internal teams and insurance companies to resolve any credentialing issues and ensure compliance with Medicare and other regulatory requirements. Qualifications ✔Excellent organizational and communication skills. ✔ Review and authenticate credentials, qualifications, licenses, certifications, and other relevant documents submitted by individuals or organizations. ✔Follow Up with the insurance on provider enrollment ✔Taking care of the provider's CAQH account, PECOS (Medicare Account), & application enrollment with Medicare & Medicaid. ✔Ability to work independently Show more Show less

Position: Security Test Manager Location: Yerwada Pune Experience: 7-10 yrs Work Mode : Hybrid What will be your responsibility: • Lead and perform advanced application security testing (SAST, DAST, IAST) for web, mobile, and cloud-native applications. • Design security test strategies, perform vulnerability assessments, and report findings with risk prioritization and remediation recommendations. • Collaborate with development, QA, and DevOps teams to integrate security testing into CI/CD workflows. • Conduct threat modelling sessions and define security requirements early in the project lifecycle. • Simulate real-world attacks (ethical hacking, red teaming) and ensure application hardening against OWASP Top 10 and CWE vulnerabilities. • Review code, architecture, and infrastructure for security compliance and weaknesses. • Stay updated on evolving security threats, tools, and best practices. • Mentor junior analysts and contribute to the security knowledge base. What is needed from you: • Bachelor’s or Master’s degree in Computer Science, Cybersecurity, or a related discipline. • 7 to 10 years of experience in security testing, application security, or security engineering. • Proficiency in tools such as Burp Suite, OWASP ZAP, Fortify, Checkmarx, Veracode, Metasploit, Kali Linux. • In-depth understanding of threat modelling, risk assessment methodologies, and secure development practices. • Strong knowledge of OWASP Top 10, SANS CWE Top 25, and secure coding practices. • Experience with scripting languages such as Python, Bash, or PowerShell. • Hands-on experience integrating security into DevOps/DevSecOps pipelines (e.g., GitHub Actions, Jenkins, GitLab CI). • Familiarity with cloud platforms (AWS, Azure, GCP) and their security controls. • Certifications like OSCP, CEH, GWAPT, CISSP, or SANS GIAC are highly desirable. What will you get: • Opportunity to work in Product Development and excellent learning opportunities • Healthy work environment, peer to peer collaborative work culture • Individual growth and encouraging opportunities with highly motivated team • Work-Life Balance and utmost effort and environment where you enjoy your work Show more Show less

Job Title: Sales Director – Salesforce Experience: 10+ years Skills: Cloud Salesforce, Consulting, MuleSoft, Service Cloud, Marketing Cloud Location: Hyderabad/Mumbai, India Coforge is seeking a dynamic Salesforce and MuleSoft Sales Lead to drive new growth, fortify the partnership with Salesforce India and spearhead the GTM strategy for the region. The role necessitates profound expertise in the Salesforce and MuleSoft business, a proven track record of driving revenue growth and a robust capability to scale the Salesforce business. Requirement: Bachelor’s degree in Business, IT, or related fields; an MBA is preferred 10+ years of experience in enterprise sales Proven track record of meeting or exceeding sales targets in the IT services industry. Deep understanding of enterprise IT solutions, especially Salesforce & MuleSoft, Strong network and relationships with key stakeholders across enterprise accounts in India. Exceptional communication, negotiation, and presentation skills. Strategic mindset with the ability to drive growth and navigate complex sales cycles. Entrepreneurial spirit and ability to thrive in a fast-paced, results-driven environment. Job Description: Sales Strategy & Leadership: Develop and execute the sales strategy to achieve revenue targets for the IMEA market. Market Expansion : Identify new business opportunities, penetrate untapped markets, and drive growth across industries Client Engagement : Build strong relationships with CXOs and decision-makers at enterprise accounts to understand their needs and position Coforge as the preferred IT solutions partner Team Management: Recruit, mentor, and lead a high-performing sales team, fostering a culture of accountability, innovation, and excellence Revenue Growth: Drive consistent revenue growth by creating a robust sales pipeline, closing large enterprise deals, and ensuring long-term account retention Collaboration : Work closely with delivery, pre-sales, and marketing teams to design and deliver value-driven solutions for clients Market Intelligence: Stay ahead of market trends, competitor activities, and emerging technologies to ensure Coforge remains competitive and innovative Partner Relationship: Regular contact and relationship build with Salesforce & MuleSoft teams in IMEA. Show more Show less

Introduction In this role, you'll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers), where we deliver deep technical and industry expertise to a wide range of public and private sector clients around the world. Our delivery centers offer our clients locally based skills and technical expertise to drive innovation and adoption of new technology Your Role And Responsibilities Will be working on Application security testing Skills. Strategize and plan static and dynamic application security testing (SAST/DAST / SCA) tools. Will be responsible for Secure Coding Practices Preferred Education Master's Degree Required Technical And Professional Expertise BE / B Tech in any stream, M.Sc. (Computer Science/IT) / M.C.A, with Minimum 5 plus years of experience Application Security Testing: Experience with static and dynamic application security testing (SAST/DAST/ SCA) tools. Secure Coding Practices: Knowledge of secure coding standards (e.g., OWASP Top Ten) and experience in reviewing code for security vulnerabilities. Threat Modeling: Ability to conduct threat modeling sessions to identify and mitigate security risks Preferred Technical And Professional Experience Vulnerability Assessment: Experience in conducting vulnerability assessments and penetration testing Application Security Testing: Experience with static and dynamic application security testing (SAST/DAST) tools. Security Tools: Proficiency in using security tools like Burp Suite, Nessus, or Fortify Show more Show less