2543 Information Security Jobs

Walk-in For Freshers - B.Tech (trained Cybersecurity candidates only) Experience Candidates : 2yrs to 5yrs who has worked on the below . Looking for candidates who has done cybersecurity course : Information Security Analyst , Cybersecurity questionnaire , MSA review , Data Protection Agreement, Third-party risk assessment, Vendor risk management , Security compliance , GRC analyst , Contract security review, Security documentation , Risk and compliance analyst Walk-In date: 23rd Jun'25 Designation : IT Contracts Analyst Location : Hyderabad Work mode : Work from office (Hyderabad) Interested candidates We are seeking a detail-oriented, technologically proficient IT Contracts Analyst to join our dynamic Legal and Procurement team, working closely with the Information Security function. In this role, you will be responsible for reviewing, analyzing, and managing a wide range of IT-related contracts, including compliance requirements, service agreements, SaaS/cloud agreements, NDAs, and vendor contracts. This position plays a key role in supporting risk management, legal compliance, and alignment with our internal IT and security policies. Role & responsibilities : Review and analyze IT contracts and SLAs to ensure compliance with internal policies, legal standards, and information security requirements. Collaborate cross-functionally with Legal, IT Security, and Procurement teams to review, negotiate, and finalize contract terms. Identify and highlight any InfoSec-related gaps, non-compliances, or risks in contractual terms. Track and manage the full lifecycle of IT contracts, ensuring timely renewals, amendments, and terminations. Identify key clauses, compliance gaps, risks, and client-specific requirements, aligning them with internal IT and security policies. Maintain a structured repository of all contracts, amendments, and associated documentation using contract management tools. Conduct risk assessments, perform compliance checks, identify critical clauses, and prepare concise contract summaries and reports. Remain current with industry trends, regulatory changes (e.g. data protection laws such as GDPR and CCPA), and best practices in IT contracting. Support the continuous improvement of contract review processes and contribute to internal documentation and policy alignment. Preferred candidate profile Looking for candidates who has worked on Information Security Analyst , Cybersecurity questionnaire , MSA review , Data Protection Agreement, Third-party risk assessment, Vendor risk management , Security compliance , GRC analyst , Contract security review, Security documentation , Risk and compliance analyst Strong analytical skills with a keen eye for detail and the ability to interpret complex legal and technical terms. Technologically proficient, with a solid understanding of IT terminology, particularly relating to SaaS, cloud services, cyber security, and data privacy. Proactive, well-organized, and capable of managing multiple contracts and priorities in a fast-paced environment. Excellent written and verbal communication skills, with experience collaborating across departments. Qualifications: Bachelors degree in Business Law, Information Technology, or a related field (technical certifications are a plus). 2+ years of experience reviewing and managing IT/Technology contracts, ideally within a legal, procurement, or corporate compliance environment. Solid understanding of IT contracting concepts, including SLAs, SaaS agreements, and third-party vendor risk. Working knowledge of data protection regulations (e.g. GDPR, CCPA) and their implications in IT contracting. Familiarity with contract lifecycle management tools (e.g. DocuSign, Icertis, Jira, or AI-based review tools). Proficiency in Microsoft Excel, PowerPoint, and other documentation tools. Ability to work both independently and collaboratively across legal, IT, and procurement functions.

Devops / System/ IT / Infrastrucutre Engineer Job Description We are looking for experienced System/IT/Infrastructure engineer in following areas to join our hands. Specific Skillset: Hands-on with AWS (Amazon Web Services) and/or Azure cloud technologies Managing Microsoft Windows Servers or Linux flavored Systems Administration of servers, desktop computers, Laptops, printers, routers, switches, firewalls, and phones Setting up file servers, VPN gateways, firewalls and directory servers such as LDAP, Active Directory Experience in server/system backup and storage systems Setting up and managing our Gitlab/ Jenkins based CI/CD environment for web and mobile AWS: Good understanding of the AWS environment, including VPC, EC2, EBS, S3, RDS, Load balancer, Autoscalling, Cloud Formation, Lambda and Redshift. DevOps: Experience with DevOps automation - Orchestration/Configuration Management and CI/CD tools (Ansible, Chef, Puppet, Jenkins, etc.). Puppet and Ansible experience a strong plus. Programming: Experience programming with Python, Bash, REST APIs, and JSON encoding. Security: Experience implementing role based security, including AD integration, security policies, and auditing in a Linux/Hadoop/AWS environment. Ability to keep systems running at peak performance, upgrade operating system, patches, and version upgrades as required General Skillset: System design and Capacity Management Deep understanding of basic network protocols and security Hands-on experience in software licensing, installations, hardware and network configurations Strong ability to troubleshoot any issues generated while building, deploying and in production support Experience in Performance tuning, garbage management and memory leaks, networking and information security, IO monitoring and analysis. Proficient in updating internal software, security updates and patches, group deployments. Achieved disaster recovery implementations and participated in 24/7 on-call rotation policy with other team members Job Type: Full Time Job Location: Pune

Cybersecurity Enterprise Sales SIEM Engineering Focus | Careers | Netenrich Were hiring! Cybersecurity Enterprise Sales SIEM Engineering Focus Hyderabad/Bangalore/Mumbai About Netenrich, Inc. Netenrich boosts the effectiveness of organizations security and digital operations so they can avoid disruption and manage risk. Resolution Intelligence CloudTM is our native-cloud data analytics platform for enterprises and services providers that need highly scalable, multitenant security operations and/or digital operations management. Resolution Intelligence Cloud transforms security and operations data into intelligence that organizations can act on before critical issues occur. More than 3,000 customers and managed service providers rely on Netenrich to deliver secure operations at scale. Role Overview: We are seeking a dynamic and results-driven Cybersecurity Enterprise Sales professional to join our team. This role is focused on selling advanced cybersecurity solutions, including SIEM, SOAR , and Adaptive MDR offerings , to mid-to-large enterprises. The ideal candidate will have a strong foundation in cybersecurity operations , particularly SIEM engineering , and a proven track record in enterprise technology sales . Key Responsibilities Develop and execute a strategic sales plan to meet and exceed quarterly and annual sales targets. Identify, qualify, and pursue new business opportunities in enterprise accounts. Conduct engaging product presentations and solution demonstrations to prospective clients. Understand customer security needs and map solutions accordingly, with a focus on SIEM, SOAR, and MDR. Lead contract negotiations and close deals. Build and maintain long-term relationships with key stakeholders and channel partners. Stay current on the latest cybersecurity trends and emerging technologies. Collaborate with internal technical and product teams to align solutions with customer needs. Required Qualifications: Bachelors degree in Business, Computer Science, Information Security, or a related field. 4 8 years of experience in cybersecurity sales , with a focus on enterprise customers . Hands-on understanding of SIEM tools (e.g., Splunk, IBM QRadar, Securonix) and security operations workflows. Proven ability to meet or exceed sales targets in a complex, solution-oriented environment. Excellent communication, presentation, and negotiation skills. Self-starter with the ability to work independently and cross-functionally.

Internal Audit:Auditor - Information System INTERNAL USAGE No. of Vacancies Reports to IS Audit Head Is a Team leader? No Team Size Grade Manager Business Corporate Centre Department Internal Audit Sub - Department Location Corporate Office , Worli Mumbai About Department Internal Audit function of the Bank, operates independently under the supervision of the Audit Committee of the Board and is responsible for providing an independent view to the Board of Directors and Senior Management on the quality and efficacy of the internal controls, risk management systems, governance systems and processes in place on an on-going basis. This is provided to primarily ensure that the business and support functions are in compliance with both internal and regulatory guidelines About the Role To conduct Information Systems Audit for the Bank. Key Responsibilities Planning the audit, developing clear and concise risk/control matrices and audit programs, and reporting Demonstrate professionalism, competence and clarity of communication when dealing with the IT stakeholders Demonstrate reasonable knowledge of the industry or sector and be aware of technical issues or audit risks Qualifications Graduates/CAs/MBA with relevant certification such as CISA / CISM / CISSP / CIA 4+ years of work experience with prior experience in Internal or Statutory Audit / Risk Management / Regulatory / Compliance roles in the financial services (Banking, NBFC) industry Role Proficiencies Experience in conducting Information Systems and Security audits, application control reviews and application functionality reviews - Strong knowledge of regulations and circulars released by regulatory bodies (RBI, SEBI etc.) - Practical experience of audit methodology - Good written and oral communication skills - Good logical and reasoning skills - The ability to work effectively in team Technical skill set for Information systems auditor should have Solid base of computer skills in hardware and software Knowledge of various operating systems Knowledge of Databases Hands on experience on Network Architecture Knowledge of other IT infrastructure Application controls and Interfaces Knowledge on Computer Assisted Audit Techniques (CAATs) Knowledge on Information security governance Knowledge on Business Continuity and Disaster Recovery framework Professional Certifications: CISA, CISM, CISSP, CEH, ISO 27001, ISO22301

Our Purpose Title and Summary Senior Data Engineer Overview The Data & Analytics team is looking for a Databricks Platform Engineer to drive our mission to unlock potential of data assets on AWS cloud by consistently innovating, and moving data to our Cloud platforms and making our business engineering team consume it with the set standards and principles. Our Cloud Data Platform (Databricks) is being used by various groups to derive insights, perform Machine Learning and Data Science activities which in turn supports various revenue generating initiatives across the organization. Role - Databricks Platform Engineer Design and develop high quality, secure, scalable software solutions based on technical requirements specifications and design artifacts within expected time and budget Develop and build solutions on cloud data platforms - Databricks - adhering to industry standards. Develop and build Databricks as a platform for the engineering community to use Build governance framework for cloud data storage and usage for enterprise data platforms. Collaborate on cross-functional agile teams - that include Developers, Report/BI Developers and Product Owners Work closely with Product Owners to understand cloud use cases and determine the best way to implement those. Provide technology leadership in the cloud big data space to development and product teams. Provide technology leadership to other leaders in big data and cloud data platform space. Stay abreast of Data Platform technology trends and industry best practices to hone and maintain your talent Participate in architectural discussions , iteration planning, and feature sizing meetings Adhere to Agile processes and participate actively in agile ceremonies Stakeholder management skills All About You 8-12 years of hands on experience with Cloud data platform Hands on experience in Databricks and deep understanding of its architecture Experience managing, developing and supporting data lakes, lakehouses, warehouse on premise and on cloud, ETL solutions and other analytics solutions. Exposure to technology trends like R, Python and similar technology is added advantage. Experience working with development/engineering teams in a global environment In depth practical experience on native cloud services - Azure and/or AWS. Strong understanding of cloud DevOps practices and implementation. Experience in cloud data migration for large sized enterprise data warehouse environments. Understanding of cloud data governance include compute optimization, cost control, user profile management etc. In depth understanding of cloud operations strategy and user management across various cloud providers and cloud platforms. Strong understanding and hands-on on cloud security models, encryption strategy, network layers for on-prem + cloud hybrid model and other related concepts. Experience in establishing new engineering team and working towards taking the team to steady state Understanding of database technologies like Exadata/Oracle/Netezza/SQL server databases Understanding of SDLC and experience in establishing processes, standards and governance to bring efficiency within development team

We are looking for an innovative data engineer who will lead the technical design and development of an Analytic Foundation. The Analytic Foundation is a suite of individually commercialized analytical capabilities (think prediction as a service, matching as a service or forecasting as a service) that also includes a comprehensive data platform. These services will be offered through a series of APIs that deliver data and insights from various points along a central data store. This individual will partner closely with other areas of the business to build and enhance solutions that drive value for our customers. Engineers work in small, flexible teams. Every team member contributes to designing, building, and testing features. The range of work you will encounter varies from building intuitive, responsive UIs to designing backend data models, architecting data flows, and beyond. There are no rigid organizational structures, and each team uses processes that work best for its members and projects. Here are a few examples of products in our space: Portfolio Optimizer (PO) is a solution that leverages Mastercard s data assets and analytics to allow issuers to identify and increase revenue opportunities within their credit and debit portfolios. Ad Insights uses anonymized and aggregated transaction insights to offer targeting segments that have high likelihood to make purchases within a category to allow for more effective campaign planning and activation. Position Responsibilities: As a Data Engineer within DAAI, you will: Play a large role in the implementation of complex features Lead collaboration with data scientists to understand the existing modeling pipeline and identify optimization opportunities. Oversee the integration and management of data from various sources and storage systems, establishing processes and pipelines to produce cohesive datasets for analysis and modeling. Push the boundaries of analytics and powerful, scalable applications Design and develop data pipelines to automate repetitive tasks within data science and data engineering. Demonstrated experience leading cross-functional teams or working across different teams to solve complex problems. Identify patterns and innovative solutions in existing spaces, consistently seeking opportunities to simplify, automate tasks, and build reusable components for multiple use cases and teams. Create data products that are well-modeled, thoroughly documented, and easy to understand and maintain. Drive innovative improvements to team development processes Partner with Product Managers and Customer Experience Designers to develop a deep understanding of users and use cases and apply that knowledge to scoping and building new modules and features Collaborate across teams with exceptional peers who are passionate about what they do Ideal Candidate Qualifications: 10+ years of Engineering experience primarily in Data Engineering in an agile production environment High proficiency in using Python or Scala, Spark, Hadoop platforms & tools (Hive, Impala, Oozie, Airflow, NiFi, Scoop), SQL to build Big Data products & platforms Extensive experience with Spark Processing engine. Proficiency in, at least, one modern programming language such as Python, Java or Scala Strong Computer Science fundamentals in object-oriented design, data structures, algorithm design, problem solving, and complexity analysis. Ability to easily move between business, data management, and technical teams; ability to quickly intuit the business use case and identify technical solutions to enable it Working Knowledge in Software Development engineering Paradigms along with Data Engineering. Relational Databases as well as NoSQL experience Experience in cloud technologies like Databricks/AWS/Azure Basic Shell scripting and knowledge of Linux/Unix systems Experience in designing & developing software at scale Strong written and verbal English communication skills. Motivation, creativity, self-direction, and desire to thrive on small project teams Superior academic record with a degree in Computer Science or related technical field Strong written and verbal English communication skills Mastercard priceless | Experiences make life more meaningful. Exclusive to Mastercard cardholders, priceless.com provides access to unforgettable experiences and everyday value in the cities where you live and travel.

Our Purpose Title and Summary Manager, Full Stack Software Engineering (.Net, React.Js) Overview We are the global technology company behind the world s fastest payments processing network. We are a vehicle for commerce, a connection to financial systems for the previously excluded, a technology innovation lab, and the home of Priceless . We ensure every employee has the opportunity to be a part of something bigger and to change lives. We believe as our company grows, so should you. We believe in connecting everyone to endless, priceless possibilities. Our team within Mastercard - Services within Mastercard: The Data & Services team is a key differentiator for Mastercard, providing the cutting-edge services that are used by some of the worlds largest organizations to make multi-million dollar decisions and grow their businesses. Focused on thinking big and scaling fast around the globe, this agile team is responsible for end-to-end solutions for a diverse global customer base. Centered on data-driven technologies and innovation, these services include payments-focused consulting, loyalty and marketing programs, business Test & Learn experimentation, and data-driven information and risk management services. Advance Analytics Program: Within the D&S Technology Team, the Advance Analytics program is a program that is comprised of a rich set of products that provide accurate perspectives on Credit Risk, Portfolio Optimization, and Ad Insights. Currently, we are enhancing our customer experience with new user interfaces, moving to API-based data publishing to allow for seamless integration in other Mastercard products and externally, utilizing new data sets and algorithms to further analytic capabilities, and generating scalable big data processes. We are looking for an innovative software engineering manager who will lead the team responsible for the design and build of a full stack web application and data pipelines, and thrive in a fast-paced, agile environment. This individual will partner closely with other areas of the business to build and enhance solutions that drive value for our customers. Engineers work in small, flexible teams. Every team member contributes to designing, building, and testing features. The range of work you will encounter varies from building intuitive, responsive UIs to designing backend data models, architecting data flows, and beyond. There are no rigid organizational structures, and each team uses processes that work best for its members and projects. Here are a few examples of products in our space: Portfolio Optimizer (PO) is a solution that leverages Mastercard s data assets and analytics to allow issuers to identify and increase revenue opportunities within their credit and debit portfolios. Audiences uses anonymized and aggregated transaction insights to offer targeting segments that have high likelihood to make purchases within a category to allow for more effective campaign planning and activation. Credit Risk products are a new suite of APIs and tooling to provide lenders real-time access to KPIs and insights serving thousands of clients to make smarter risk decisions using Mastercard data. Help found a new, fast-growing engineering team! Position Responsibilities: As a Manager, Software Engineering, you will: Manage, coach, and develop a cross-functional engineering team Provide strategic technical and product direction for applications, architectures, and software development processes Design and develop new, complex technical products from inception to release Partner with product development on the product roadmap, scoping features, and planning releases Champion technical innovation and high quality within the team Collaborate across teams and business units to solve complex problems Lead goal setting and accountability practices within the engineering team Continuously experiment and innovate to develop a high performing engineering team Be a strong individual contributor to the implementation efforts of product solutions Lead with an agile mindset and pivot fast and often as new information surfaces Keep senior stakeholders informed of progress and incorporate input into technical decisions Identify short term and long-term engineering needs to scale platform solutions to meet customer demand Ideal Candidate Qualifications: 10+ years of full stack engineering experience in an agile production environment Experience leading engineering teams and/or coaching and mentoring junior teammates Experience leading the design and implementation of large, complex features in full-stack applications Experience leading a large technical effort that spans multiple people and teams Proficiency with Java/Spring Boot, .NET/C#, React, Redux, Typescript, and SQL Server or other object-oriented languages, front-end frameworks, and/or relational database technologies Strong technologist with proven track record of learning new technologies and frameworks Customer-centric development approach Passion for analytical / quantitative problem solving Experience identifying and implementing technical improvements to development processes Collaboration skills with experience working with people across roles and geographies Motivation, creativity, self-direction, and desire to thrive on small project teams Superior academic record with a degree in Computer Science or related technical field Strong written and verbal English communication skills

Job Summary: We are seeking an experienced and strategic Chief Information Security Officer (CISO) with expertise in service delivery, solution architecture, and security operations. The ideal candidate will have a strong background in SIEM and SOAR tools, along with a proven track record of designing and implementing robust security solutions. This role will play a critical role in shaping our cybersecurity strategy and ensuring the protection of our digital assets. Key Responsibilities Cybersecurity Strategy: Develop and implement a comprehensive cybersecurity strategy that aligns with business goals and objectives. Service Delivery: Oversee the delivery of security services, ensuring they meet or exceed industry standards and regulatory requirements. Solution Architecture: Lead the design and implementation of security solutions, including SIEM, SOAR tools, and other cutting-edge technologies. Security Operations: Manage and optimize security operations, including incident response, threat hunting, and vulnerability management. Risk Management: Identify, assess, and mitigate cybersecurity risks, working closely with cross-functional teams to implement effective risk mitigation measures. Compliance: Ensure compliance with relevant cybersecurity regulations, standards, and frameworks (e.g., ISO 27001, NIST, GDPR). Team Leadership: Build and lead a high-performing cybersecurity team, fostering a culture of continuous learning and development. Vendor Management: Collaborate with third-party vendors and partners to evaluate, select, and implement security solutions and services. Incident Response: Develop and oversee an effective incident response plan, including tabletop exercises and post-incident analysis. Security Awareness: Promote cybersecurity awareness and education among employees, contractors, and other stakeholders. Budget Management: Manage the cybersecurity budget effectively, ensuring optimal resource allocation. Qualifications: Bachelors degree in Computer Science, Information Security, or a related field (Masters degree preferred). A minimum of [X] years of experience in information security, with a focus on service delivery, solution architecture, and security operations. Proven expertise in SIEM and SOAR tools, with a deep understanding of their implementation and management. Industry certifications such as CISSP, CISM, or CISA preferred. Strong leadership and team management skills. Excellent communication and interpersonal abilities. Ability to collaborate with cross-functional teams and communicate complex technical issues to non-technical stakeholders. In-depth knowledge of cybersecurity regulations, standards, and best practices. Competitive salary and performance-based bonuses. Comprehensive health, dental, and vision insurance. Retirement savings plan with company matching. Professional development and training opportunities. Flexible work arrangements. Employee wellness programs. Exciting opportunities for career advancement.

About Us Our purpose at Avient Corporation is to be an innovator of materials solutions that help our customers succeed, while enabling a sustainable world. Innovation goes far beyond materials science; its powered by the passion, creativity, and diverse expertise of 9,000 professionals worldwide. Whether youre a finance wizard, a tech enthusiast, an operational powerhouse, an HR changemaker, or a trailblazer in materials development, youll find your place at Avient. Join our global team and help shape the future with sustainable solutions that transform possibilities into realities. Your unique perspective could be the key to our next breakthrough! Job Summary The Governance, Risk, Compliance (GRC) and Programs Manager at Avient is responsible for leading a global team monitoring cyber regulations and ensuring compliance. This role involves creating and implementing a comprehensive training and awareness program to educate all users on IT best practices, information classification, and handling requirements. Additionally, the manager will oversee the execution of the cyber transformation portfolio, ensuring timely and high-quality delivery. Essential Functions Establish, implement and lead a comprehensive risk management program aligned with applicable regulations and industry best practices Author policies and standards defining the requirements for procedures that meet cyber and business requirements Drive and demonstrate cyber maturity as measured by the NIST Cybersecurity Framework Engage with internal and external stakeholders to address cybersecurity risk management needs and expectations Assess and recommend solutions to third party and supply chain risks Lead the cyber resilience program Lead the security awareness and training program. Design engaging content for general users, specialized use cases and specific training needs for technical staff and developers Identify and leverage internal communications channels to cultivate a risk-aware, ethical, and continually improving culture Provide program oversight to ensure risks are managed across the cyber transformation portfolio Other leadership duties as assigned Education and Experience Qualifications Bachelor's degree in computer science, information systems or related field or experience 10 + years progressive experience in compliance and technology leadership roles Substantial experience leading large, complex projects Additional Qualifications CISA, CISM, CISSP and GRC certifications preferred Project Management certification Manufacturing and Operational Technology (OT) experience

Skills: ISO 27001, Information Security, Microsoft Tools The Senior Information Security Analyst within the Information Security division is responsible for identifying, analysing, managing risks and providing assurance to Allianz Technology services. The Security analyst will act as a contact person for the Service Managers/Third Party vendors and is working in close collaboration with them. University degree (preferably, in computer science), or equivalent professional experience; 4 to 7 years of experience in Information Security related fields Strong analytical skills and detail orientation, pragmatic approach to solving problems. Excellent self-organization, go-getter, ability to keep an overview of numerous topics at the same time Ability to follow up consequently on open tasks and duties, work independently, self- organized with ability to track and report Team-player who works effectively with colleagues and other business contacts. Good communication and presentation skills At least 1 year of experience in project co-ordination, control review & testing Excellent verbal and written communication skills. Ability to take ownership of an initiative/issue through completion Ability to work on multiple projects and in a collaborative environment

Some careers shine brighter than others. If you re looking for a career that will help you stand out, join HSBC, and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further. HSBC is one of the largest banking and financial services organizations in the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realize their ambitions. We are currently seeking an experienced professional to join our team in the role of Sr. Associate Director, Service Management In this role you will: Oversee end-to-end health of control environment which could encompass Cyber, Cloud, Architecture & Data, Systems Engineering, and IT Infrastructure globally Instigate & manage initiatives to drive improvements to the Resilience of the Technology control environment Partner with the CIO management team and other IT control owners to create effective design, monitoring, and remediation of control measures. Ensure the appropriate application of policies control standards and procedures. Lead cross-functional resilience governance initiatives, ensuring clear roles, responsibilities, and accountability across IT and business teams. Ensure alignment between resilience, cybersecurity, and operational risk management frameworks to create a unified resilience approach. Demonstrate a high degree of knowledge across the following frameworks and methodologies covering IT Risk (risk assessment, control frameworks and KCI s, Issue/Action management), Software Development Lifecycle (Agile, DevOps, Business Transformation Framework, Project Management), and IT Service Management. Knowledge and experience within Retail, Wealth & Private Banking (products, services, infrastructure) helpful but not required. Understand how IT controls and relate to business risk, and how control remediation mitigates residual risks for Wealth and Personal Banking. Ability to drill down to root cause and write/review clearly articulated risk documentation. Able to analyze complex situations, influence strategies with practical, effective solutions. Understanding of application and technology control design e.g. SOX testing, payments security, PCI etc. Requirements To be successful in this role you should meet the following requirements: Total 14+ years of experience preferably within an IT risk management related role. Relevant working experience in Financial Services industry or IT / Risk Consultancy, or Audit. Strong knowledge of Non-Financial Risk and Information, Technology & Cyber controls. Persistent, resilient, and resourceful; able to adapt to a complex and dynamic organisational environment. Effective use of collaboration tools such as Sharepoint, Confluence, JIRA, and OneNote. Knowledge of HSBC corporate systems used by IT risk management, e.g. HELIOS, ARAMIS, EIM, PLADA COMET, SCOTT would be plus. Degree in information security, computer science or computer engineering qualifications desirable You ll achieve more when you join HSBC. HSBC is committed to building a culture where all employees are valued, respected and opinions count. We take pride in providing a workplace that fosters continuous professional development, flexible working, and opportunities to grow within an inclusive and diverse environment. Personal data held by the Bank relating to employment applications will be used in accordance with our Privacy Statement, which is available on our website.

Evaluate assigned vulnerability reports submitted by hackers to determine the validity, risk and severity to HackerOne customers Collaborate with hackers to address missing information from reports as well as educate the HackerOne community members when reports are invalid Compose a technical summary for each valid report that includes clear and concise details regarding the impact, steps to reproduce and remediation advice Ensure clear and efficient communication between hackers and customers Proactively identify and solve issues, as well as accept and quickly respond to delegated work; as we are distributed, being able to win as a team to solve problems is critical to our success Assess vulnerability findings and determine whether the submission is valid based on program policies, scope and impact. Independently reproduce reported vulnerabilities in a test environment and compose a technical summary for valid findings. Minimum Qualifications Proven experience with vulnerability disclosure and bug bounty (experience managing a bug bounty program is a plus but not required) Hands-on experience doing security testing or ethical hacking on web and mobile applications Strong technical knowledge of OWASP top 10 Comfortable using security testing tools including Burpsuite Excellent written and verbal communication skills Experience using frameworks such as CVSS Self-motivated and able to manage your time and energy output while maintaining a consistent and sustainable operational rhythm This role is based in our Pune office and you must be able to work 4-5 days a week in office You must be open to and flexible around shift work., English fluency

What we offer: Group Summary: Magna is more than one of the world s largest suppliers in the automotive space. We are a mobility technology company built to innovate, with a global, entrepreneurial-minded team. With 65+ years of expertise, our ecosystem of interconnected products combined with our complete vehicle expertise uniquely positions us to advance mobility in an expanded transportation landscape. Job Responsibilities: The IR Analyst, Product Cybersecurity role is a part of Magnas central Information Security Risk & Compliance (ISRC) team. This position will serve as a primary point of contact in matters related to product cybersecurity vulnerability monitoring, management, and reporting. The Product Security IR Analyst will be the primary team member from the ISRC to utilize our global threat intelligence & vulnerability management tool. This role will work closely with leads from each of our unique business units to coordinate continual cybersecurity activities related to our products. Responsibilities Identify potential vulnerabilities in Magnas products by utilizing Magna s cyber threat intelligence and vulnerability management tool. Analyze and verify identified vulnerabilities to determine their applicability and relevance to Magnas products. Assess the risk level of verified vulnerabilities based on known industry frameworks. Collaborate with the product engineering team to facilitate the remediation of vulnerabilities. Track and report status of reported vulnerabilities Create playbooks and best practices for product cybersecurity incident response Stay current with industry best practices and emerging trends in product security to continuously improve Magnas vulnerability management process. Qualifications Bachelors degree or equivalent experience in a related technical field 4+ years of relevant experience in cybersecurity vulnerability monitoring, management, and/or incident response (automotive product preferred) Strong knowledge of product cybersecurity and vulnerability management principles. Proficiency in learning and adapting to new, advanced software tools Expert knowledge of industry standards related to product cybersecurity & incident response (ISO/SAE 21434 preferred) Excellent written and verbal English communication skills Comfortable conveying information effectively and professionally to a wide variety of technical and non-technical audiences Ability to work collaboratively with diverse teams. Enthusiasm for the evolving field of cybersecurity and a desire to continuously learn and improve Attention to detail and ability to prioritize tasks effectively. Awareness, Unity, Empowerment: At Magna, we believe that a diverse workforce is critical to our success. That s why we are proud to be an equal opportunity employer. We hire on the basis of experience and qualifications, and in consideration of job requirements, regardless of, in particular, color, ancestry, religion, gender, origin, sexual orientation, age, citizenship, marital status, disability or gender identity. Magna takes the privacy of your personal information seriously. We discourage you from sending applications via email or traditional mail to comply with GDPR requirements and your local Data Privacy Law. Worker Type: Regular / Permanent Group: Magna Corporate

Global Procurement is a team of professional buyers and negotiators that acquire products and services that TransUnion requires both locally and globally. The Procurement buying teams are organized by category and commodity and are supported by IT Asset Management (ITAM) and Procurement Operations. The team also manages the relationships with vendors that supply TransUnion and also interfaces with other internal functions that oversee third party relationships such as Information Security, Accounts Payable, Finance, Legal, and Third Party Risk functions. The team manages RFI s, RFP s and Predictive Benchmarks to facilitate the bidding process. The two most important objectives in our negotiations is to protect the company and to get the best possible cost of ownership for the products and services being acquired. Performs basic analysis that follows practices and policies within their department. Develops solutions to routine problems of limited scope. Requires knowledge and experience in own discipline; still acquiring higher level knowledge and skills. Impact Youll Make: Ability to effectively communicate across various teams both internally an externally. Purchase Order Requisition creation and submittal Purchase Order fulfillment tracking Software purchases - new, renewals, maintenance, support, price quotes of all software types - Desktop, Server, Saas, Cloud, Enterprise, OpenSource Software catalog management Dispute resolution and compensation for vendor faults Vendor risk management and prioritization This is a hybrid position and involves regular performance of job responsibilities virtually as well as in-person at an assigned TU office location for a minimum of two days a week. TransUnion Job Title Analyst, Procurement

Roles & Responsibilities: Triage alerts and analyze security events/logs for threats such as computer viruses, exploits, and malicious attacks. Use critical thinking to bring together information from multiple sources to determine if a threat is present. Conduct security incident response and investigation. Conduct comprehensive security assessments and risk analysis on existing systems and applications. Analyze web traffic for suspicious patterns and potential security breaches. Perform vulnerability assessments and penetration testing. Prepare and provide security documentation and evidence for internal and external audits, ensuring compliance with regulatory requirements and security standards. Stay abreast of the latest cybersecurity trends, threats, and technologies to proactively address emerging risks. Bachelor s degree in computer science, Information Technology, cybersecurity, or a related field. 3+ years of relevant experience. Proficiency in conducting risk assessments, vulnerability assessments, and penetration testing. Experience deploying and maintaining email security systems including anti-phishing, DLP, and encryption technologies to safeguard sensitive data and mitigate threats. Hands-on experience with security tools and technologies such as IDS/IPS, SIEM, and Penetration testing tools like Qualys/Tenable. Hands-on troubleshooting skills for security alerts related to Firewall (SonicWall & FortiGate), Microsoft Entra ID/O365, Windows and Linux Servers. Strong knowledge of GRC frameworks such as PCI-DSS ISO 27001:2022 & 9001:2015, SOC2 Type II CEH (Certified Ethical Hacker) AZ-500 Microsoft Azure Security Technoligies/Cloud Security Certifications with hands on experience Experience with evidence gathering for any of the compliances like PCI DSS, SOC2, HIPPA and ISO. Good understanding of the IT infrastructure architecture both on-prem and AWS and Azure clouds. Tools: Vulnerability management: Tenable, QualysGuard, Nessus Endpoint protection: Sophos, Bitdefender, Trend Micro, Windows Defender SIEM : Wazuh, DataDog, Splunk, Microsoft Sentinel, Sumo Logic Email Security : Zix email security, Exchange Online Protection, Defender for Office 365 Compliance standards : ISO ISMS, SOC2, PCI DSS, HIPAA Preferred: Any of the Certifications like - AWS Certified Security - Specialty, Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information System Auditor (CISA), GIAC Certifications, or NIST Cybersecurity Framework (CSF)

Security Engineer - IT Services and Software Development company We are looking for a Security Engineer with 1 to 2 years of experience to help protect and secure our IT infrastructure. The role involves monitoring systems, conducting vulnerability assessments, and responding to security incidents. Key Responsibilities Monitor and respond to security threats and incidents. Perform vulnerability assessments and implement security best practices. Manage security tools (e.g., firewalls, SIEM, antivirus). Assist in system hardening and patch management. Help develop and enforce security policies. Collaborate with IT teams on security initiatives. Requirements Bachelor s degree in Computer Science, Information Security, or related field. 1 to 2 years of experience in cybersecurity or related roles. Knowledge of firewalls, VPN, encryption, and security tools. Familiarity with cloud security (AWS, Azure, GCP) and web application security is a plus Basic experience with vulnerability scanning and penetration testing. Strong problem-solving and communication skills. Good communication and collaboration skills. Security certifications (e.g., CompTIA Security+, CEH) are a plus.

Job Title: Associate Project Manager Company: Techdefence Labs Solutions Ltd. Location: Ahmedabad Department: Consulting Job Type: Full Time About Techdefence: Techdefence is a leading cybersecurity solutions provider specializing in offensive and defensive security, AI-powered threat intelligence, and enterprise security frameworks. Our comprehensive services and product portfolio cater to global enterprises, government agencies, and critical infrastructure, ensuring proactive protection against cyber thre ats. With a strong R&D focus, Techdefence delivers cutting-edge security solutions in the areas of cloud security, network security, application security, penetration testing, SOC solutions, and managed security services. Our expertise in cyber resilience, r isk management, and compliance frameworks (ISO 27001, NIST, GDPR, PCI-DSS, etc.) positions us as a trusted partner for organizations worldwide. Role Overview: Techdefence Labs is looking for an Associate Project Manager to support the planning, execution, and delivery of cyber security projects across various domains such as network security, application security, GRC, and SOC implementations. This role will work closely with technical teams, clients, and stakeholders to ensure project milestones are met on time and within scope. Key Responsibilities: Assist in the coordination and management of cyber security projects from initiation to closure Develop and maintain project plans, schedules, and documentation Track progress and performance, and escalate risks or issues to the Project Manager Coordinate with internal technical teams, vendors, and clients to align deliverables Ensure adherence to quality, compliance, and information security standards Support the preparation of status reports, stakeholder presentations, and meeting minutes Maintain project documentation including SOWs, RACI matrices, and timelines Contribute to continuous improvement of project management processes and tools Qualifications & Skills: Bachelors degree in information technology, Computer Science, Cyber Security, or related field 1-3 years of experience in a project coordination/associate PM role, preferably in a technology or cyber security environment Familiarity with cyber security principles, frameworks (e.g., NIST, ISO 27001), and terminology is a plus Working knowledge of project management tools (e.g., MS Project, Jira, Asana) Excellent organizational, communication, and interpersonal skills Ability to manage multiple priorities and meet tight deadlines Soft Skills Strong attention to detail Ability to work independently and meet deadlines Good communication and interpersonal skills

About the Role The Senior DevOps Engineer position, specifically with expertise in design, administration, high availability, operational support, and automation experience with databases, will join a growing and high-energy team supporting internal products and platforms. As a Senior DevOps Engineer, you will be responsible for providing the highest technical expertise for the engineering, planning, design, implementation, upgrade, patching, capacity planning, automation, and day-to-day operations for the various distributed databases (Postgres, Mongo, MySQL, ES, Redis, etc.) that we offer. This role will also provide oversight, mentoring, and leadership opportunities. The successful candidate must be comfortable working on multiple dynamic projects simultaneously, collaborating with database architects, principal engineers, application teams, information security teams, and leadership at all levels of the organization. What You Will Do Develop automation scripts and tools for provisioning, deployment, monitoring, and backup/recovery of databases using infrastructure as code (laC) principles. Implement robust monitoring and alerting systems for database performance metrics. Develop and maintain disaster recovery plans and backup strategies for databases to minimize downtime and data loss in the event of failures. Maintain version-controlled configurations for database servers, ensuring consistency and repeatability across environments via IaC. Automate routine tasks such as database backups, schema migrations, and data archiving to improve operational efficiency. Develop database high availability and replication solutions to meet the requirements of critical applications. Develop standardized operational procedures within the DBaaS framework to ensure the consistent provision of highly available solutions. Participate in an on-call rotation schedule to ensure 24/7 availability and timely response to critical incidents. What You Will Need 5+ years of Experience as a DevOps Engineer with a focus on database management. Hands-on experience with cloud platforms (AWS or GCP). Proficiency in scripting languages such as Go, Shell, and Ruby for automation tasks. Experience with infrastructure as code tools (e.g., Terraform, CloudFormation) for provisioning and managing database resources. In-depth knowledge of database systems such as MySQL, PostgreSQL, MongoDB, etc., including configuration, optimization, and troubleshooting. Strong understanding of CI/CD practices and tools. Experience with disaster recovery strategies (including hands-on backup and recovery experience). Experience in configuration management tools (eg, Ansible) for database patching and maintenance automation. About the Team We are a team dedicated to maintaining crucial database platforms and incorporating new database technologies and systems into the Gojek ecosystem. Working under the DBaaS (Database as a Service) team at a company like Gojek is an exciting and dynamic experience. The team is at the forefront of integrating cutting-edge database technologies to support Gojeks vast and complex ecosystem. Youll collaborate with diverse teams, ensuring that the databases are robust, scalable, and highly reliable, directly impacting millions of users. The fast-paced environment fosters continuous learning and professional growth, with ample opportunities to tackle challenging problems and implement innovative solutions. Gojeks collaborative culture ensures a supportive and inclusive atmosphere, making it an ideal place for those passionate about database technologies to thrive and contribute significantly to the companys success. About GoTo Group GoTo Group is the largest digital ecosystem in Indonesia with its mission to Empower Progress by offering technological infrastructure and solutions for everyone to access and thrive in the digital economy. The GoTo ecosystem consists of on-demand transportation services, food and grocery delivery, logistics and fulfillment, as well as financial and payment services through the Gojek and GoTo Financial platforms.It is the first platform in Southeast Asia that hosts these crucial cases in a single ecosystem, capturing the majority of Indonesia s vast consumer household. About Gojek Gojek is Southeast Asia s leading on-demand platform and pioneer of the multi-service ecosystem with over 2.5 million driver partners across the regions offering a wide range of services such as transportation, food delivery, logistics and more. With its mission to create impact at scale, Gojek is committed to resolving consumer problems and raising standards of living by connecting consumers to the best providers of goods and services in the market. About GoTo Financial GoTo Financial accelerates financial inclusion through its leading financial services and merchants solutions. Its consumer services include GoPay and GoPayLater and serve businesses of all sizes through Midtrans, Moka, GoBiz Plus, GoBiz, and Selly. With its trusted and inclusive ecosystem of products, GoTo Financial is open to new growth opportunities and aims to empower everyone to Make It Happen, Make It Together, Make It Last. GoTo and its business units, including Gojek and GoToFinancial ("GoTo") only post job opportunities on our official channels on our respective company websites and on LinkedIn. GoTo is not liable for any job postings or job offers that did not originate from us. You should conduct your own due diligence to prevent being victims of any fake job scams, if they did not originate from GoTos official recruitment channels. #LI-HYBRID

Job Description: Role Title : AVP, IS Scrum Master (L10) Company Overview: Synchrony (NYSE: SYF) is a premier consumer financial services company delivering one of the industry s most complete digitally enabled product suites. Our experience, expertise and scale encompass a broad spectrum of industries including digital, health and wellness, retail, telecommunications, home, auto, outdoors, pet and more. We have recently been ranked #2 among India s Best Companies to Work for by Great Place to Work. We were among the Top 50 India s Best Workplaces in Building a Culture of Innovation by All by GPTW and Top 25 among Best Workplaces in BFSI by GPTW. We have also been recognized by Ambition Box Employee Choice Awards among the Top 20 Mid-Sized Companies, ranked #3 among Top Rated Companies for Women, and Top-Rated Financial Services Companies. Synchrony celebrates ~51% women diversity, 105+ people with disabilities, and ~50 veterans and veteran family members. We offer Flexibility and Choice for all employees and provide best-in-class employee benefits and programs that cater to work-life integration and overall well-being. We provide career advancement and upskilling opportunities, focusing on Advancing Diverse Talent to take up leadership roles. Organizational Overview: Synchronys Information Security Agile program s mission is to : Lead Information Security Solution SAFe agile transformation, Engage IS-IAM leadership, Design and execute Solution event cadences and processes, Provide Agile leadership across all agile teams in the Solution Train, Measure and monitor agile teams capacity, Formulate and publish various agile metrics, Deliver on the overall Information Security goal. Role Summary/Purpose: Information Security Scrum Master will be responsible for leading two or more of our agile scrum teams on InfoSec projects and initiatives. This individual will also be responsible for mentoring and coaching teams through agile methodologies. As AVP Scrum Master, you will be responsible for leading agile scrum teams executing the InfoSec Agile roadmap, and facilitating strategic and tactical conversations among a wide range of business and technical stakeholders. This role is responsible for collaborating with Info Sec product managers, product owners, technical leads, clients and other stakeholders in delivering a seamless customer experience in the IS space, and leading the Agile teams to deliver. The ideal candidate will be a strong agile process SME and coach on agile methodologies. The ideal candidate will have a strong project management background with a focus on technology and Agile development, as well as a proven track record of delivering critical initiatives. Key Responsibilities: Lead teams and the organization on how to best use Agile principles/frameworks and effectively leverages appropriate best practices Advocate for autonomous, self-organizing, empowered, and continuously improving teams Act as Scrum Master for assigned Scrum teams, facilitating ceremonies such as, stand-ups, backlog grooming, sprint planning, and retrospectives. Manage Sprints - keeping order, process, delivery, priorities accurate and on time Keep scrum team focused on concrete priorities while keeping outside influences from disrupting the Scrum team and actively identify and remove waste and distractions Collaborate with engineers, product owners, and other stakeholders to understand the expected product functionality and customer requirements. Assist in removing team impediments, and track and maintain metrics. Promote collaboration, transparency, and communicate accurate and timely information to stakeholders. Create, assess, update and maintain agile documentation Generates agile metrics reports indicating velocity, burn-down, etc. Experience working on Releases. Collaborate and coordinate with related teams for Releases and get approvals. Lead projects in Waterfall to Agile methodologies. Support Agile transformation journey Be the Agile learnings lead for the ART Perform other duties and/or special projects as assigned Required Skills/Knowledge: Bachelor s degree in any discipline with 6+ years of work experience, or in lieu of degree 8+ years of work experience Minimum 5+ year of IT experience Minimum 5+ year of experience with Jira, Agile, and other project management tools Minimum 5 years of working in Agile transformation as a SM. Hands-on experience in agile, scrum master, project manager roles SAFe Agilist, SAFE Scrum Master certification. Desired Skills/Knowledge: InfoSec/IAM business and technology experience is a plus Previous working experience with InfoSec technologies and have a firm understanding of Agile principles and frameworks. Previous working experience coaching and transforming technology delivery teams into an Agile framework. Skilled at organizing and communicating complex concepts - must be capable of breaking down complex situations, this applies to both technical issues and process issues. Strong experience managing Agile delivery projects. Organizational and time management skills, and attention to detail a must. Ability to work with teams to gather unrefined business requirements from multiple sources and formulate and deliver a solution in a timely manner. Ability to work under the pressure of multiple projects and deadlines at once. Solid communication skills and must be highly motivated and demonstrate high level of initiative. Must be a self-starter, ability to quickly learn, adapt, shows initiative and thinks outside the box. Eligibility Criteria : Bachelor s degree in any discipline with 6+ years of work experience, or in lieu of degree 8+ years of work experience Work Timings : 3:30pm to 12:30am IST This role qualifies for Enhanced Flexibility and Choice offered in Synchrony India and will require the incumbent to be available between 06:00 AM Eastern Time - 11:30 AM Eastern Time (timings are anchored to US Eastern hours and will adjust twice a year locally). This window is for meetings with India and US teams. The remaining hours will be flexible for the employee to choose. Exceptions may apply periodically due to business needs. Please discuss this with the hiring manager for more details .) For Internal Applicants: Understand the criteria or mandatory skills required for the role, before applying Inform your manager and HRM before applying for any role on Workday Ensure that your professional profile is updated (fields such as education, prior experience, other skills) and it is mandatory to upload your updated resume (Word or PDF format) Must not be any corrective action plan (First Formal/Final Formal, PIP) L8+ Employees who have completed 18 months in the organization and 12 months in current role and level are only eligible. L08+ Employees can apply Garde/Level : 10 Job Family Group: Information Technology Job Family Group: Information Technology

About Zeotap Founded in Berlin in 2014, Zeotap started with a mission to provide high-quality data to marketers. As we evolved, we recognized a greater challenge: helping brands create personalized, multi-channel experiences in a world that demands strict data privacy and compliance. This drive led to the launch of Zeotap s Customer Data Platform (CDP) in 2020 a powerful, AI-native SaaS suite built on Google Cloud that empowers brands to unlock and activate customer data securely. Today, Zeotap is trusted by some of the world s most innovative brands, including Virgin Media O2, Amazon, and Audi, to create engaging, data-driven customer experiences that drive better business outcomes across marketing, sales, and service. With an unique background in high-quality data solutions, Zeotap is a leader in the European CDP market, empowering enterprises with a secure, privacy-first solution to harness the full potential of their customer data. Responsibilities: You design and develop self-serve and dashboard products of Zeotap. You display end to end ownership for UI features including estimation and coordination with UX, product and backend. You are responsible for the Core UI framework - designs, implements and maintains it You stay current with latest tools, technology ideas and methodologies; share knowledge by clearly articulating results and ideas to key decision makers. You should mentor junior team members. You adhere to Zeotap s company, privacy and information security policies and procedures. You complete all the awareness trainings assigned on time Requirements: 2-4 years of strong experience in developing web applications BS/MS in Computer Science or equivalent Strong in problem solving, data structures and algorithm design Strong experience in Object Oriented Design, design patterns and developing highly scalable web applications Proficiency and expertise of JavaScript frameworks with practical experience mainly focused on AngularJS 5 / NgRx / React / Redux and Node.js Experience in building component based UI library Knowledge in authorisation mechanism - JWT, OAUTH, GAUTH is a plus Ability to ramp up on backend technologies using Node or Java based stacks Good working knowledge of DB - MySQL or PostgreSQL is a plus Production troubleshooting, debugging experience Ability to deliver code quickly from given scenarios in fast paced startup environment Added advantage- GitHub, Sketch, AWS, Worked with Agile Development Process What do we offer: Competitive compensation and attractive perks Health Insurance coverage Flexible working support, guidance and training provided by a highly experienced team Fast paced work environment Work with very driven entrepreneurs and a network of global senior investors across telco, data, advertising, and technology Zeotap welcomes all - we are equal employment opportunity & affirmative action employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, or disability status. Interested in joining us We look forward to hearing from you!

Responsibilities As a Lead Information Security Engineer with Principal Global Services, you ll join our Configuration Management Team that is responsible to manage misconfigurations/ CSPM in our public cloud. Your key roles and responsibilities will include: Cloud Security Posture Management Must have Hands-on experience in scripting languages such as Python (required), PowerShell etc. You ll contribute to our CSPM application, adding functionality and debugging issues Must have Hands-on experience in Programming/Scripting competency with Infrastructure-as-Code (IaC) using Terraform and CDK Must have Hands-on experience in AWS (preferred) and Azure (good to have). Understanding of native cloud solutions like EC2 s, Containers, Lambda s, Docker, containers, Kubernetes, VDIs, cloud storage, cloud infrastructure, etc. And other cloud security services like Load Balancer, VPC Flow Logs, EKS, Lambda, and WAFs. Candidate should have AWS Cloud Practioner certification (CCP). AWS Cloud Security Specialty certification is a plus. Good to have Experience in Cloud Security Posture Management (CSPM) - Use tools to discover assets in cloud infrastructure to identify and continuously monitor for security vulnerabilities and misconfigurations Experience in using CSPM tools like Wiz (preferred) Experience with GitHub, as well as Continuous Integration/ Continuous Deployment (CI/CD) processes. Qualifications Qualifications At least 8 Years of Hands-on experience in the must have skillsets listed above

Not Applicable Specialism Risk Management Level Director & Summary At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data. In cloud security at PwC, you will be responsible for designing, implementing and elevating the security posture across our clients cloud environments, covering IaaS, PaaS and SaaS. Your work will involve having a deep technical knowledge of cloud security and you will work with one or more Cloud Service Providers (CSP) to implement security protocols, monitor for potential security breaches, conduct risk assessments and vulnerability testing of cloudbased systems, and stay up to date with the latest security threats and trends in cloud technology. Why PWC & Summary A career within Cybersecurity and Privacy services, will provide you with the opportunity to help our clients implement an effective cybersecurity programme that protects against threats, propels transformation, and drives growth. As companies pivot toward a digital business model, exponentially more data is generated and shared among organisations, partners and customers. We play an integral role in helping our clients ensure they are protected by developing transformation strategies focused on security, efficiently integrate and manage new or existing technology systems to deliver continuous operational improvements and increase their cybersecurity investment, and detect, respond, and remediate threats. s Demonstrate expertise related to cloud service provider platforms including Microsoft Azure, AWS, and Google Cloud Platform and their embedded security, as well as multicloud security management technologies. Assist in the design and development of cloud security solutions based on customer requirements, evaluating business strategies and cloud architecture best practices. Manage and execute cloud security solutions across design, implementation, and operations. Develop Cloud Risk Assessment plans to assess client s cloud security posture and identify risks, provide recommendations for improvement and risk reduction. Ability to work independently and function in a team environment. Mandatory Skill Sets 12+ years of experience in cloud security solution architecture, design and implementation with cloud platforms such as AWS, Google Cloud Platform, Microsoft Azure and M365. Possess cloud certification for Microsoft Azure/AWS/Google Cloud Platform. Scripting Experience with Ansible, Terraform, CloudFormation & ARM, Powershell, Python, Java etc Experience in scripting languages like Python, Java etc desirable. Experience with designing and implementing multicloud security management technologies like CASB, CSPM, CWPP etc. Understanding of Containers, Serverless, Kubernetes, API s etc Knowledge and experience across IT infrastructure with security frameworks and standards such as ISO 27001, NIST, and relevant security best practice frameworks desirable. Excellent written and verbal communication, facilitation, and presentation skills. 10 +years of experience in cloud security solution architecture, design and implementation along with a team handling experience required. Preferred Skill Sets 12+ years of experience in cloud security solution architecture, design and implementation with cloud platforms such as AWS, Google Cloud Platform, Microsoft Azure and M365. Possess cloud certification for Microsoft Azure/AWS/Google Cloud Platform. Scripting Experience with Ansible, Terraform, CloudFormation & ARM, Powershell, Python, Java etc Experience in scripting languages like Python, Java etc desirable. Experience with designing and implementing multicloud security management technologies like CASB, CSPM, CWPP etc. Understanding of Containers, Serverless, Kubernetes, API s etc Knowledge and experience across IT infrastructure with security frameworks and standards such as ISO 27001, NIST, and relevant security best practice frameworks desirable. Excellent written and verbal communication, facilitation, and presentation skills. 10 +years of experience in cloud security solution architecture, design and implementation along with a team handling experience required. Years of Experience 12+ Years Education Qualification Btech/MBA preferred Education Degrees/Field of Study required Bachelor of Engineering, Master of Business Administration Degrees/Field of Study preferred Required Skills Cloud Application Security Accepting Feedback, Accepting Feedback, Active Listening, Analytical Thinking, Cloud Administration, Cloud Engineering, Cloud Infrastructure, Cloud Infrastructure Architecture Design, Cloud Resource Management, Cloud Security, Cloud Security Auditing, Cloud Service Delivery, Cloud Service Level Risk Management, Coaching and Feedback, Communication, Creativity, Cyber Engineering, Embracing Change, Emotional Regulation, Empathy, Forensic Investigation, Incident Investigation, Inclusion, Influence, Information Security {+ 31 more} Travel Requirements Available for Work Visa Sponsorship

Management Level Director & Summary At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data. In threat intelligence and vulnerability management at PwC, you will focus on identifying and analysing potential threats to an organisations security, as well as managing vulnerabilities to prevent cyber attacks. You will play a crucial role in safeguarding sensitive information and enabling the resilience of digital infrastructure. At PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes for our clients and communities. This purposeled and valuesdriven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences for each other. Learn more about us . At PwC, we believe in providing equal employment opportunities, without any discrimination on the grounds of gender, ethnic background, age, disability, marital status, sexual orientation, pregnancy, gender identity or expression, religion or other beliefs, perceived differences and status protected by law. We strive to create an environment where each one of our people can bring their true selves and contribute to their personal growth and the firm s growth. To enable this, we have zero tolerance for any discrimination and harassment based on the above considerations & Summary A career within Cybersecurity and Privacy services, will provide you with the opportunity to help our clients implement an effective cybersecurity programme that protects against threats, propels transformation, and drives growth. As companies pivot toward a digital business model, exponentially more data is generated and shared among organisations, partners and customers. We play an integral role in helping our clients ensure they are protected by developing transformation strategies focused on security, efficiently integrate and manage new or existing technology systems to deliver continuous operational improvements and increase their cybersecurity investment, and detect, respond, and remediate threats. Responsibilities The role requires someone who understands DLP information protection technology from both a managerial/strategic level and hands on technical design and implementation. Architect/engineer Data Leakage Prevention security solutions covering DLP Endpoint, Discover, Web & Email. Provide advice on Data Leakage Policy development. Own and manage tool configuration, ensuring appropriate governance and change control arrangements are operating across the business. Provide support for DLP platform including analysis, continuous configuration, tuning and testing of data loss prevention policies Perform maintenance on the DLP platform including patching, configuration modifications and upgrades/Migrations Integrate with analytics and compliance tooling. Monitor DLP information security alerts though DLP tools to respond, triage, and escalate as needed. Analyze event/alert patterns to properly interpret and prioritize threats with available DLP tools and other data protection devices. Identify trends and drive requirements aimed at improving and enhancing existing data loss prevention detection policies and configurations. Provide technical advice and input for the support of integrated security systems and solutions. Interface with clients in the strategic design process to translate security and business requirements to improve the efficiency of daily tasks, monitoring, and processes with innovative ideas. Create, review, maintain and update documentation including Documenting & Publishing fixes in central knowledge base. Monitor the use of the tools and ensure a consistent process of improvement is in place. Candidate should have hands on experience on 2 of the recognized DLP tool (Forcepoint, Symantec, Netskope, Mcafee or Digital Guardian). Experience 12+ years work experience on a Security Technical Services and/or Support Operations team preferred. Candidate will exhibit a history of reliability and strong decisionmaking skills due the trust imparted in them as a DLP analyst. DLP related monitoring experience desired. Candidate must possess strong analytical skills to identify complex security issues and respond at the same level with a technical understanding of when to escalate impacting security events. Experience working with clients in a support role Must possess requisite oral communication and writing skills Must be selfmotivated and capable of independent work while operating in a geographically and culturally diverse peer group. Mandatory skill sets As above Preferred skill sets As above Years of experience required 12+Years Education qualification B.Tech, preferred Education Degrees/Field of Study required Bachelor of Engineering Degrees/Field of Study preferred Required Skills Data Security Accepting Feedback, Accepting Feedback, Active Listening, Analytical Thinking, Cloud Security, Coaching and Feedback, Communication, Conducting Research, Creativity, Cyber Defense, Cyber Threat Intelligence, Embracing Change, Emotional Regulation, Empathy, Encryption, Inclusion, Influence, Information Security, Innovation, Intellectual Curiosity, Intelligence Analysis, Intelligence Report, Intrusion Detection, Intrusion Detection System (IDS), IT Operations {+ 28 more} Travel Requirements Available for Work Visa Sponsorship

Some careers shine brighter than others. If you re looking for a career that will help you stand out, join HSBC, and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further. HSBC is one of the largest banking and financial services organizations in the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realize their ambitions. We are currently seeking an experienced professional to join our team in the role of Associate Director, Service Management Specialist In this role you will: Lead cross-functional resilience governance initiatives, ensuring clear roles, responsibilities, and accountability across IT and business teams. Investigate and manage initiatives to drive improvements to the Technology control environment Partner with the CIO management team and other IT service owners to establish a Resilience-by-Design approach, embedding resilience into architecture, development, and operational processes. Business Service Chain-Based Resilience Reviews, Map end-to-end business service chains to identify critical technology dependencies, failure points, and cascading risks. Ensure compliance with operational resilience regulations such as DORA (Digital Operational Resilience Act), FCA/PRA Operational Resilience, Basel III, NIST, ISO 22301, FFIEC, GDPR. Ensure the appropriate application of policies control standards and procedures. Support internal / external audit activity and internal assurance reviews. Leader and advocate of the desired culture, awareness and behavioural changes across the community required to mature the understanding and management of technology risk controls. Engage the key stakeholders to promote positive behaviour and actively manage business operation resilience. Work closely with Technology for remediation of any Vulnerabilities activities and actions to ensure delivery within acceptable timelines. Focusing on Technology top risks and threats, including new/emerging top risks such as Cloud technology deployment, to ensure they are fully understood and that controls that mitigate these risks (key controls) are effective, efficient and where possible automated. Responsible for embedding risk and control management framework. Requirements To be successful in this role, you should meet the following requirements: Minimum 14+ years of total experience is required and 12 years of relevant experience preferably within an IT risk management related role. Relevant working experience in Financial Services industry or IT / Risk Consultancy, or Audit. Strong knowledge of Non-Financial Risk and Information, Technology & Cyber controls. Interest or proven experience in Operational Resilience. Persistent, resilient, and resourceful; able to adapt to a complex and dynamic organisational environment. Effective use of collaboration tools such as Sharepoint, Confluence, JIRA, and OneNote. Knowledge of HSBC corporate systems used by IT risk management, e.g. HELIOS, ARAMIS, EIM, PLADA COMET, SCOTT would be plus. Planning and project management skills. Ability to work independently with limited supervision. Communication - Ability to present complex issues confidently and concisely to Technology and DBS Senior Executives and other key stakeholders using non-technical easily understood language. Degree in information security, computer science or computer engineering qualifications desirable. You ll achieve more when you join HSBC. HSBC is committed to building a culture where all employees are valued, respected and opinions count. We take pride in providing a workplace that fosters continuous professional development, flexible working, and opportunities to grow within an inclusive and diverse environment. Personal data held by the Bank relating to employment applications will be used in accordance with our Privacy Statement, which is available on our website.

What You'll Do. Avalara, Inc. is the leading provider of cloud-based software that delivers a broad array of compliance solutions related to sales tax and other transactional taxes.. What is it like to work at Avalara?. Come find out! We are committed to the following success traits that embody our culture and how we work together to accomplish great things: Fun. Passion. Adaptability. Urgency. Simplicity. Curiosity. Humility. Ownership. Optimism.. Avalara is looking for Detection Engineer to join the Detection and Response Team. The ideal candidate will have a track record in incident response, demonstrating advanced technical expertise and leadership capabilities. Your role will be of an Incident Response Analyst, you will help protect Avalara. This includes detecting, investigating, and mitigating security incidents. You will also be a key contributor in improving our incident response capabilities.. You will report to Security leadership at Avalara. This is a remote position.. What Your Responsibilities Will Be. You will perform incident response activities and workstreams as the Incident Response Senior Analyst.. You will monitor security systems, including Intrusion Detection Systems (IDS), Endpoint Detection and Response (EDR) platforms, software firewalls, and Security Information and Event Management (SIEM) platforms. Gather and analyze evidence from affected systems, logs, and network traffic.. You will conduct detailed investigations of security incidents to determine the root cause, scope, and impact. Document all aspects of security incidents, including timelines, actions taken, and lessons learned.. Perform forensic analysis of compromised systems to identify the techniques and tactics used by attackers, or as directed by Legal.. Collaborate with cross-functional teams including Engineering, IT, Security Operations, Legal, HR, and Compliance to manage and mitigate incidents.. Strengthen KPIs and metrics for measuring response effectiveness and provide clear and consistent reporting to internal stakeholders.. Participate in rotating On Call shifts that utilize a paging system in case a security event requires attention.. What You’ll Need To Be Successful. 5+ years experience in Security Incident Response.. Experience across the information security domain, including familiarity with endpoint, email, network, cloud security, vulnerability management, incident response, and threat intelligence.. Experience with log analysis, network security, digital forensics, and incident response investigations.. Ability to script / code using Python or an equivalent language.. Bachelor's degree in computer science, information security, or relevant experience.. Certifications related to digital forensics and incident response. How We’ll Take Care Of You. Total Rewards. In addition to a great compensation package, paid time off, and paid parental leave, many Avalara employees are eligible for bonuses.. Health & Wellness. Benefits vary by location but generally include private medical, life, and disability insurance.. Inclusive culture and diversity. Avalara strongly supports diversity, equity, and inclusion, and is committed to integrating them into our business practices and our organizational culture. We also have a total of 8 employee-run resource groups, each with senior leadership and exec sponsorship.. What You Need To Know About Avalara. We’re Avalara. We’re defining the relationship between tax and tech.. We’ve already built an industry-leading cloud compliance platform, processing nearly 40 billion customer API calls and over 5 million tax returns a year, and this year we became a billion-dollar business. Our growth is real, and we’re not slowing down until we’ve achieved our mission to be part of every transaction in the world.. We’re bright, innovative, and disruptive, like the orange we love to wear. It captures our quirky spirit and optimistic mindset. It shows off the culture we’ve designed, that empowers our people to win. Ownership and achievement go hand in hand here. We instill passion in our people through the trust we place in them.. We’ve been different from day one. Join us, and your career will be too.. We’re An Equal Opportunity Employer. Supporting diversity and inclusion is a cornerstone of our company — we don’t want people to fit into our culture, but to enrich it. All qualified candidates will receive consideration for employment without regard to race, color, creed, religion, age, gender, national orientation, disability, sexual orientation, US Veteran status, or any other factor protected by law. If you require any reasonable adjustments during the recruitment process, please let us know.. Show more Show less