4421 Information Security Jobs - Page 16

Education and Qualifications B.S./M.S. in Computer Science, Engineering, Statisctics and Mathematics, Information Systems and/or equivalent formal training or work experience. Work Experience 12+ years of industry experience including 3+ years in leadership roles. Budgeting, Planning and Forecasting. Technical / Professional Skills Please provide at least 3 Strong analytical, creative, problem-solving and critical thinking skills. Ability to analyze industry trends and developments both within and beyond telco industry. Champion and drive adoption of innovative and industry defining solutions Lead comprehensive analysis to understand underlying drivers and present a compelling business case for proposed IT solutions. Experience in managing complex products/solutions and capability development projects. Expertise in Google AI services including Dialogflow, AutoML, STT, TTS, Vision AI, Cloud Natural Language, Cloud Translation etc. Extensive knowledge of current and trending data/information technologies such as AI/ML, data lakes, cloud (AWS, Google and Azure), data governance, geospatial data etc. Experience in architecting solutions for optimal extraction, transformation and loading of data from a wide variety of traditional and non-traditional sources such as structured, unstructured, and semi-structured using SQL, NoSQL and data pipelines for real-time, streaming, batch and on-demand workloads. Strong understanding of IT risk, information security fundamentals, defence-in-depth practices, IT risk assessment fundamentals and risk management practices Competent in Agile methodologies

Obtain data from multiple sources, collate, analyse, and triangulate information to develop reliable fact bases Apply a range of quantitative and qualitative analytical techniques to rigorously identify client issues and synthesize analysis into clear, sound recommendations; Structure and prepare draft reports and steering committee presentations that require minimal editing Confidently deliver presentations to internal and external clients Plan, organize and structure own work and that of Analysts to manage time and effort effectively within project budget / profitability expectations Extract intellectual capital from engagement work and actively share tools, methods and best practices across projects Support MasterCard Advisors and local market account teams in client relationship management and business development effort All About You Demonstrable consulting skills or equivalent business management experience and internal consulting experience in a major financial institution bachelors degree or equivalent qualification. Advanced degree or MBA preferred Professional level English language capability/ and local language Strong analytical, interpretive and problem solving skills, including the proven ability to interpret large amounts of data, some of it ambiguous, and translate it into concise rational output that includes recommendations based upon core findings. Strong presence & communication skills - both interpersonal & written Excellent client management & engagement management skills; collaborates we'll across multiple communication channels Proven team player with proven ability to work with all levels in a highly intellectual, collaborative, and fast paced environment Key Words: Key Words: Senior Consultant, Senior Associate, Managing Consultant, Strategy Consultant, Business Strategy, Consultant, And Management Consultancy Corporate Security Responsibility Abide by Mastercard s security policies and practices; Ensure the confidentiality and integrity of the information being accessed; Report any suspected information security violation or breach, and Complete all periodic mandatory security trainings in accordance with Mastercard s guidelines.

About the Role: Grade Level (for internal use): 10 The Team The Customer Experience, a new shared capability within Market Intelligence, partners closely with the Sales organization to deliver a differentiated customer experience. This group enables our sales team and businesses by overseeing customer success, sales operations, and implementation of commercial technology. This includes Salesforce, alignment to targets in strategic growth areas, and empowers accelerated growth and delivery by putting the customer at the core of everything we do driving a full customer experience that differentiates us from our competitors. The Proposal & Customer Assessment Team is part of the broader commercial solutions. An enabling function to assist with due diligence questionnaires, risk assessments, audits, and other customer inquiries. Our goal is to enable new revenue generation via RFX & deliver superior customer satisfaction by providing high-quality proposals & relevant information during pre/post-sales. We serve a vast array of clients across geographies and are committed to the client-first mindset. Responsibilities and Impact This position within the Proposal & Assessment Team is integral to supporting Market Intelligence commercial teams in responding to the growing volume of client audits and inquiries. The person will collaborate closely with product, risk, compliance, legal, and functional teams, to ensure client requirements are met effectively. Responding/Managing client audits and risk assessments from end to end, maintaining awareness of internal controls and audit trends to uphold the efficacy of the audit process. Serving as the primary point of contact for our top customers, assisting them in meeting their vendor management requirements. Cultivating partnerships and closely collaborating with corporate and divisional groups to seek information and influence approaches and outcomes. Developing familiarity with Market Intelligence's audit processes and the company's cyber security policies, standards, processes, and controls. Tracking assessment and audit outcomes, management responses to address findings, and follow-up activities, and producing reports for executives and management. Undertaking additional tasks and responsibilities as directed by the team manager, while continuously enhancing the overall process to align with evolving industry standards. What W ere L ooking F or Bachelor's degree in a related field, or equivalent professional experience in Third-Party Risk Management (TPRM) , Audit, and Risk. 6-7+ years of relevant experience in conducting audits or responding to audits, within a SaaS-related business environment. Demonstrated understanding of client-initiated audits and organizational controls. Familiarity with CISA, ISO Standards, NIST, and SOC standards. Proven track record of building strong relationships resulting in successful outcomes. Ability to collaborate effectively with a global team spanning multiple time zones. Competencies Exceptional communication and interpersonal skills, adept at engaging and influencing stakeholders across all levels. Demonstrated flexibility and negotiation prowess to achieve optimal outcomes. Proficient in efficiently managing multiple concurrent projects, with a keen ability to adapt as priorities evolve. Exhibits creativity and perseverance in devising solutions. Possesses strong analytical and problem-solving capabilities, proficient in assessing complex information and formulating actionable strategies. Fosters robust working relationships with internal colleagues, facilitating collaboration and synergy within teams. About S&P Global Market Intelligence At S&P Global Market Intelligence, a division of S&P Global we understand the importance of accurate, deep and insightful information. Our team of experts delivers unrivaled insights and leading data and technology solutions, partnering with customers to expand their perspective, operate with confidence, andmake decisions with conviction.For more information, visit www.spglobal.com/marketintelligence . Whats In It For You Our Purpose: Progress is not a self-starter. It requires a catalyst to be set in motion. Information, imagination, people, technologythe right combination can unlock possibility and change the world.Our world is in transition and getting more complex by the day. We push past expected observations and seek out new levels of understanding so that we can help companies, governments and individuals make an impact on tomorrow. At S&P Global we transform data into Essential Intelligence, pinpointing risks and opening possibilities. We Accelerate Progress. Our People: Our Values: Integrity, Discovery, Partnership At S&P Global, we focus on Powering Global Markets. Throughout our history, the world's leading organizations have relied on us for the Essential Intelligence they need to make confident decisions about the road ahead. We start with a foundation of integrity in all we do, bring a spirit of discovery to our work, and collaborate in close partnership with each other and our customers to achieve shared goals. Benefits: We take care of you, so you cantake care of business. We care about our people. Thats why we provide everything youand your careerneed to thrive at S&P Global. Health & WellnessHealth care coverage designed for the mind and body. Continuous LearningAccess a wealth of resources to grow your career and learn valuable new skills. Invest in Your FutureSecure your financial future through competitive pay, retirement planning, a continuing education program with a company-matched student loan contribution, and financial wellness programs. Family Friendly PerksIts not just about you. S&P Global has perks for your partners and little ones, too, with some best-in class benefits for families. Beyond the BasicsFrom retail discounts to referral incentive awardssmall perks can make a big difference. For more information on benefits by country visithttps://spgbenefits.com/benefit-summaries Global Hiring and Opportunity at S&P Global: At S&P Global, we are committed to fostering a connected andengaged workplace where all individuals have access to opportunities based on their skills, experience, and contributions. Our hiring practices emphasize fairness, transparency, and merit, ensuring that we attract and retain top talent. By valuing different perspectives and promoting a culture of respect and collaboration, we drive innovation and power global markets. Recruitment Fraud Alert If you receive an email from a spglobalind.com domain or any other regionally based domains, it is a scam and should be reported to reportfraud@spglobal.com. S&P Global never requires any candidate to pay money for job applications, interviews, offer letters, pre-employment training or for equipment/delivery of equipment. Stay informed and protect yourself from recruitment fraud by reviewing our guidelines, fraudulent domains, and how to report suspicious activity here. ---- Equal Opportunity Employer S&P Global is an equal opportunity employer and all qualified candidates will receive consideration for employment without regard to race/ethnicity, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, marital status, military veteran status, unemployment status, or any other status protected by law. Only electronic job submissions will be considered for employment. If you need an accommodation during the application process due to a disability, please send an email to EEO.Compliance@spglobal.com and your request will be forwarded to the appropriate person. US Candidates Only The EEO is the Law Poster http://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf describes discrimination protections under federal law. Pay Transparency Nondiscrimination Provision - https://www.dol.gov/sites/dolgov/files/ofccp/pdf/pay-transp_%20English_formattedESQA508c.pdf ---- 20 - Professional (EEO-2 Job Categories-United States of America), SLSGRP202.1 - Middle Professional Tier I (EEO Job Group)

About the Role: Grade Level (for internal use): 10 The Team Digital Solutions (DS) is an enterprise-shared technology service enabling people, functions, and divisions. We drive S&P Global to Power the Markets of the Future by working as trusted partners delivering secure, scalable, resilient, and innovative services and solutions that enable seamless experiences for our people and customers. The Impact This role rolls up to the Head of Technology Risk and Governance, in the Global Digital Technology Organization . The Head of Technology Risk and Governance drives the Digital Solutions technology risk and governance strategy, partnering with the second line of defense in Information Security, Digital Technology Services, and Corporate Platforms, as well as with Enterprise Risk and Compliance, and Audit. Responsibilities and Impact This role belongs to First Line of Defense. Support in defining a comprehensive risk inventory, focusing on granular-level risks. Support in development of detailed controls inventory for various technology processes based on various industry frameworks (COBIT, ITIL, ISO, NIST) and DS Technology Standards. Perform self- QA over the controls inventory to ensure key risks and controls are covered. Support in implementation of the Governance, Risk, and Compliance (GRC) tool, focusing on the technology aspects. Support in development of Key Risk Indicators (KRIs) and Key Control Indicators (KCIs) Establish and manage thresholds for risk indicators Coordinate with key stakeholders to ensure alignment and effective communication Develop and operationalize risk scorecards to track and report on risk metrics. Aggregate risk data to provide a holistic view of organizational risk Support in p repar ing and deliver ing comprehensive risk reports to measure performance against the organization's Risk Appetite. Prepare presentations for the Management reporting (requires very good PowerPoint presentation skills) Basic Required Qualifications Bachelor's Degree in a relevant field such as Engineering, Business, or Information Technology. 5 + years of experience in technology risk management and internal controls implementation, including both building and operating a function. Proven ability to convey complex risk topics to varied audiences, including executive leadership and technical teams. Successful track record in a global environment, with strong relationship-building and communication skills. Exceptional analytical skills and problem-solving abilities, with experience in high-pressure environments. Additional Preferred Qualifications 5 + years of experience in a large global organization in a technology risk function. Master of Business Administration or equivalent advanced degree preferred but not required . Role Location Gurgaon, Noida, Bangalore Whats In It For You Our Purpose: Progress is not a self-starter. It requires a catalyst to be set in motion. Information, imagination, people, technologythe right combination can unlock possibility and change the world.Our world is in transition and getting more complex by the day. We push past expected observations and seek out new levels of understanding so that we can help companies, governments and individuals make an impact on tomorrow. At S&P Global we transform data into Essential Intelligence, pinpointing risks and opening possibilities. We Accelerate Progress. Our People: Our Values: Integrity, Discovery, Partnership At S&P Global, we focus on Powering Global Markets. Throughout our history, the world's leading organizations have relied on us for the Essential Intelligence they need to make confident decisions about the road ahead. We start with a foundation of integrity in all we do, bring a spirit of discovery to our work, and collaborate in close partnership with each other and our customers to achieve shared goals. Benefits: We take care of you, so you cantake care of business. We care about our people. Thats why we provide everything youand your careerneed to thrive at S&P Global. Health & WellnessHealth care coverage designed for the mind and body. Continuous LearningAccess a wealth of resources to grow your career and learn valuable new skills. Invest in Your FutureSecure your financial future through competitive pay, retirement planning, a continuing education program with a company-matched student loan contribution, and financial wellness programs. Family Friendly PerksIts not just about you. S&P Global has perks for your partners and little ones, too, with some best-in class benefits for families. Beyond the BasicsFrom retail discounts to referral incentive awardssmall perks can make a big difference. For more information on benefits by country visithttps://spgbenefits.com/benefit-summaries Global Hiring and Opportunity at S&P Global: At S&P Global, we are committed to fostering a connected andengaged workplace where all individuals have access to opportunities based on their skills, experience, and contributions. Our hiring practices emphasize fairness, transparency, and merit, ensuring that we attract and retain top talent. By valuing different perspectives and promoting a culture of respect and collaboration, we drive innovation and power global markets. ---- Equal Opportunity Employer S&P Global is an equal opportunity employer and all qualified candidates will receive consideration for employment without regard to race/ethnicity, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, marital status, military veteran status, unemployment status, or any other status protected by law. Only electronic job submissions will be considered for employment. If you need an accommodation during the application process due to a disability, please send an email to EEO.Compliance@spglobal.com and your request will be forwarded to the appropriate person. US Candidates Only The EEO is the Law Poster http://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf describes discrimination protections under federal law. Pay Transparency Nondiscrimination Provision - https://www.dol.gov/sites/dolgov/files/ofccp/pdf/pay-transp_%20English_formattedESQA508c.pdf ---- 202 - Middle Professional (EEO Job Group) (inactive), 20 - Professional (EEO-2 Job Categories-United States of America), RSKMGT202.1 - Middle Professional Tier I (EEO Job Group)

Risk management area serves as a key differentiator to optimize and grow revenue from consumers and small businesses for Mastercard. Consumer Credit Analytics Global Product team is executing on exciting consumer capability initiative delivering against Product roadmap to drive customer value and business impact. This role is for a Senior Analyst who will work across Product. Client Services & Delivery, Data & Engineering and the broader O&T teams to help drive product execution at scale while addressing client pain areas and seamless delivery. This role will report into Vice President of Product Management (Consumer Credit Risk). Key Responsibilities: Participate in bringing solutions to market through Mastercard Studio process through desirability, feasibility, and viability paradigm Own client feedback and issues related to Mastercard s Consumer Credit Risk Analytics (CCA) products Manage inbound inquiries through various channels (email, phone, support ticketing system) and ensure timely and accurate responses. Understand the core features, benefits, and data flows of each CCA product to address customer questions effectively. Collaborate with internal teams (Product, Engineering, Data Science, Central Customer Service Account Management) to escalate and resolve more complex issues. Document and track client issues using Mastercards customer support tools; provide feedback to internal teams on recurring questions or pain points. Support client onboarding and product training by answering how-to questions and reinforcing best practices. Identify and suggest opportunities for process improvements and automation in the customer support workflow Interface with Regional Product & SBL to test concepts and monitor issuer pilots Operationalize for CCA requisite processes relating to market scan assessment and guidance Qualifications: Basic understanding of credit risk concepts and data products. Experience supporting B2B clients, particularly in the banking or fintech sector. Comfort working with cross-functional global teams across time zones. bachelors degree in Business, Finance, Analytics, or a related field. 3+ years of experience in customer support, preferably in a data or analytics product environment. Strong verbal and written communication skills with the ability to explain complex concepts in a clear and concise manner. Demonstrated problem-solving skills and a proactive mindset. Experience with ticketing systems (eg, Salesforce, Zendesk, Jira) is a plus. Familiarity with credit risk, financial services, or data analytics products is highly desirable. Corporate Security Responsibility Abide by Mastercard s security policies and practices; Ensure the confidentiality and integrity of the information being accessed; Report any suspected information security violation or breach, and complete all periodic mandatory security trainings in accordance with Mastercard s guidelines

Ethoca, a Mastercard Company is seeking a Senior Data Engineer to join our team in Pune, India to drive data enablement and explore big data solutions within our technology landscape. The role is visible and critical as part of a high performing team - it will appeal to you if you have an effective combination of domain knowledge, relevant experience and the ability to execute on the details. You will bring cutting edge software and full stack development skills with advanced knowledge of cloud and data lake experience while working with massive data volumes. You will own this - our teams are small, agile and focused on the needs of the high growth fintech marketplace. You will be working across functional teams within Ethoca and Mastercard to deliver on cloud strategy. We are committed in making our systems resilient and responsive yet easily maintainable on cloud. Key Responsibilities Design, develop, and optimize batch and real-time data pipelines using Snowflake, Snowpark, Python, and PySpark. Build data transformation workflows using dbt, with a strong focus on Test-Driven Development (TDD) and modular design. Implement and manage CI/CD pipelines using GitLab and Jenkins, enabling automated testing, deployment, and monitoring of data workflows. Deploy and manage Snowflake objects using Schema Change, ensuring controlled, auditable, and repeatable releases across environments. Administer and optimize the Snowflake platform, handling performance tuning, access management, cost control, and platform scalability. Drive DataOps practices by integrating testing, monitoring, versioning, and collaboration into every phase of the data pipeline lifecycle. Build scalable and reusable data models that support business analytics and dashboarding in Power BI. Develop and support real-time data streaming pipelines (eg, using Kafka, Spark Structured Streaming) for near-instant data availability. Establish and implement data observability practices, including monitoring data quality, freshness, lineage, and anomaly detection across the platform. Plan and own deployments, migrations, and upgrades across data platforms and pipelines to minimize service impacts, including developing and executing mitigation plans. Collaborate with stakeholders to understand data requirements and deliver reliable, high-impact data solutions. Document pipeline architecture, processes, and standards, promoting consistency and transparency across the team. Apply exceptional problem-solving and analytical skills to troubleshoot complex data and system issues. Demonstrate excellent written and verbal communication skills when collaborating across technical and non-technical teams. Required Qualifications Tenured in the fields of Computer Science/Engineering or Software Engineering. Bachelors degree in computer science, or a related technical field including programming. Deep hands-on experience with Snowflake (including administration), Snowpark, and Python. Strong background in PySpark and distributed data processing. Proven track record using dbt for building robust, testable data transformation workflows following TDD. Familiarity with Schema Change for Snowflake object deployment and version control. Good to have familiarity with Java JDK 8 or greater and exposure to Spring & Springboot framework. Good to have understanding and knowledge on Databricks Proficient in CI/CD tooling, especially GitLab and Jenkins, with a focus on automation and DataOps. Experience with real-time data processing and streaming pipelines. Strong grasp of cloud-based database infrastructure (AWS, Azure, or GCP). Skilled in developing insightful dashboards and scalable data models using Power BI. Expert in SQL development and performance optimization. Demonstrated success in building and maintaining data observability tools and frameworks. Proven ability to plan and execute deployments, upgrades, and migrations with minimal disruption to operations. Strong communication, collaboration, and analytical thinking across technical and non-technical stakeholders. Ideally you have experience in banking, e-commerce, credit cards or payment processing and exposure to both SaaS and premises-based architectures. In addition, you have a post-secondary degree in computer science, mathematics, or quantitative science.

As a Software Engineer on the Mastercard Commercial Acceptance (CAS) team, you'll work with modern full-stack development practices & tools to create world-class microservices and web applications. we're building a global business-to-business (B2B) technology platform to help businesses of all sizes streamline how they manage payments when buying or selling products & services. As a global business, you'll join a 2-pizza team for Mastercard to deliver software operating at-scale, and requiring focus on performance, security, and reliability. You will work in our Mastercard technology location Pune, that provides a state-of-the-art environment for technology teams to thrive in our collaborative, Agile engineering culture. You will be a contributor in how Mastercard transforms the B2B space to standardize, automate, and optimize digital payment efficiency for Buyers and Sellers. Role: Contribute to the planning, design and development of microservices on your team. Build and own full-stack applications & services using Angular, Java and PCF. Deliver code with exceptional quality and security that operates at scale. Participate in code reviews, retrospectives, and submit Pull Requests using Git. Collaborate with software engineers, test engineers, TPMs and PM-Ts. Ensure that you use 12-factor app design principles in your development. Ensure that systems you create comply with Mastercard engineering best practices and governance models including security, operations, and Enterprise Architecture requirements. All About You: You have a solid foundation in Computer Science fundamentals. You have experience with web technologies including HTML5, CSS, Javascript, and front-end frameworks such as Angular. You have experience building applications using Java and PCF. You have experience using storage technologies such as such as PostgreSQL or Oracle and delivering solutions that leverage them at massive scale. You have exposure to automated testing and releasing software in a continuous delivery model using Git. You enjoy working in an Agile team focused on continuous improvement. You have a strong desire to learn best practices, modern software architecture and collaborate within a team. You are passionate about the art of delivering the highest quality software to customers. You have excellent communication skills with both technical and non-technical people.

This role is part of NCR Global Information Security team. This team isresponsible for developing and implementing NCRcorporate informationsecurity program. The primary goal of the program is to protect theconfidentiality, integrity, and availability of information resources. Keyinformation security functions and activities include architecture and designfor NCR information security controls, developing and enforcing policies andstandards, security awareness training, risk management, assessment, andtesting, monitoring and metrics, incident management, and threat andvulnerability management. The Information Security Engineer III shall be responsible for theday-to-day activities required to respond for both routine and high severityincidents. The Information Security Engineer III shall work in a collaborativemanner with incident responders, key incident management team members,management, and other stakeholders to ensure security incidents are contained,eradicated, remediated and after-action review is held according to corporatepolicy. The Information Security Engineer III is expected to contributeto weekly status calls and is On-Call which includes working off hours/weekendsand respond to ad-hoc requests as part of this position. The InformationSecurity Engineer III will work with stakeholders and team members to assistwith improving incident response processes that are aligned with the mission ofthe office of the CISO. Key Responsibilities As an active member of the team, monitor and process response for security events on a 24x7 basis. Lead Postmortem exercises post incidents with a focus to identify deficiencies requiring additional attention. Triage, respond to and escalate security incidents. Provide or facilitate the forensics analysis of security events. Leverage automation and orchestration solutions to automate repetitive tasks. Work alongside other security team members to hunt for and identify security issues generated from the network, including third-party relationships. Evaluate SOC policies and procedures/playbooks and recommend updates to management as appropriate. Coordinate incident response activities across multiple independently managed environments and security teams. Leverage knowledge in multiple security disciplines, such as Windows, Unix, Linux, data loss prevention (DLP), endpoint controls, Public Cloud, and networking, to offer global solutions for a complex heterogeneous environment. Utilize multiple security/threat intelligence tools and resources to understand threats. Analyze and respond to minor and major incidents, reported SPAM and Phishing e-mails. Partner with the detection engineering team to improve tool usage and workflow, as we'll as with the advanced threats and assessment team to mature monitoring and response capabilities. Provide leadership in process improvement and automation of incident response activities. Support 24/7 operations Perform other duties as assigned Skills and Qualifications Strong knowledge of network, backend systems, operating systems, applications, and web services in a manner that allows for the interaction of all as it relates to security and services. 5+ Years as a Senior incident responder/leader of incident response Ability to apply analytical expertise and critical thinking to security incidents Ability to assimilate, understand and utilize various security technologies Ability to collaborate within a geographically distributed team of Incident Response Analysts Demonstrated team or functional leadership experience Experience processing and analyzing intelligence in support of management decision making Current Information Security related certification preferred. Current Public cloud related certification preferred. Knowledge of relevant information security and incident response frameworks such as NIST Cyber Security Framework, MITRE ATT&CK Framework. Strong communication skills and ability to work in a collaborative atmosphere Strong attention to detail Ability to deal with ambiguity and translate high level objectives into detailed tasks Ability to prioritize work with multiple, simultaneous work assignments. Ability and willingness to learn new tools and processes. Experience documenting business processes or technical procedures preferred.

Product Management-Technical (PM-T) are technical roles and work closely with Technical Program Managers, Software Design Engineers, User Experience, and internal customers to define the details behind the business requirements, the specifications, and the user experience for platform building blocks they own Our PM-Ts use the Working Backwards process, which is all about is fleshing out the concept and achieving clarity of thought about what will ultimately be built PM-Ts decompose the requirements into user stories, prioritizing the backlog, and defining the acceptance criteria PM-Ts are in it for the long term, looking beyond the current project to become experts in their domain They feed engineering a we'll groomed and backlog of user stories They encourage re-use of their building blocks, continuously innovating on behalf of internal and external customers As new capabilities are required, they will define its place in the platform ecosystem and write / prioritize the user stories to build the new block When commercialization opportunities are identified for their building blocks, they will tee up ideas to the product development teams for further development All About You Like to dive deep into the operational characteristics of the product Demonstrated ability to operate with complete independence and autonomy Proven track record of data driven decision making and applying continuous improvement methodologies across your team Can debate the product merits with business teams, architects, engineers, and designers to make the right trade-off decisions Experience in agile delivery methodologies Can communicate to executives, peers, and staff with impact, eloquence, and authenticity Ensures features, stories, and associated documentation are clear and easily consumable by other engineering teams using techniques like flowcharts Ability to lead team through elaboration sessions and soliciting input for estimation Demonstrated experience building organizational relationships, partnering with and influencing teams while commanding the respect of the individuals on the team Payments expertise, back end transaction systems. Past software development a huge plus BE/MBA in related discipline

Are you passionate about integrating complex software systems and troubleshooting technical issuesDo you want to contribute to the development and evolution of strategic platformsAre you motivated to work in a complex, global environment where ideas are valued, and effort is appreciated We are looking for an Integration Engineer to join our team and help us to: integrate Attribute Based Access Control software with various Credit Suisse (CS) and UBS systems (Active Directory, Entitlement System, Data Catalogue, etc) (35%) troubleshoot software issues at Level 3, collaborating with internal teams, vendors, and other CS/UBS teams (network, cloud, security, IT on business side) (25%) conduct research and hands-on learning with different technologies (DBs, Cloud services, Application Solutions) across on-prem, Azure, and SaaS (25%) prepare and automate upgrades of vendor software on platforms like Azure Kubernetes Services and OpenShift (5%) prepare and automate building software and necessary elements (rpm, msi, ARM/Terraform) for test environments (Azure cloud, Linux/Windows/Citrix servers) (5%) improve and maintain CI/CD pipelines (GitLab, Azure DevOps pipelines, Jenkins) (5%) You will join a dynamic team responsible for integrating and maintaining complex software systems. Our team collaborates with various departments and technical teams worldwide, ensuring seamless integration and high-quality solutions. We work during standard European hours and focus on delivering secure, available, and high-performance solutions. ideally 8+ years of experience in IT, preferably in an enterprise or corporate environment experience with Continuous Integration (CI) and Continuous Deployment CD understanding of information security concepts (Data Protection, DLP, IRM, Identity and Access Management, Cryptography) both on-prem and in the cloud familiarity with Data Protection, Data Scanning, and Data Catalogue products and technologies experience in designing and engineering new IT services at scale experience in global rollout of new enterprise-wide services and integration of vendor products experience working with regulatory requirements (eg, GDPR, FINMA, MAS) security certifications such as CISSP, CISA, CSSLP, CISM, CCSP

Overview The Information Security Engineer will provide technical support and execution on a range of critical security products, serve as a point of contact for all security product deployment, configuration, upgrades, related events, serve as a mentor to IT staff, automate and work to help standardize and improve processes and procedures. Responsibilities Works in support of the Senior Information Security Engineer enhancing the security direction for the organization including systems, networks, user services, and vendor development efforts Installs, configures, manages, and maintains mission-critical enterprise applications such as endpoint, software delivery, patching, log management and other technical controls. Provides technical support for day-to-day security operations, change management and business continuity programs. Troubleshoots security systems and related issues. Assists with complex projects and assumes ongoing support of security operations Conduct network and system tests via simulation or other means to highlight and find any weaknesses that may be exploited Design, implement, support, and evaluate security-focused tools and services including project leadership roles Design, implement, support, and evaluate vulnerably management tools and services Provide security tool integration and automation support Assists in defining security requirements and review of systems to determine if they have been designed to comply with established security standards. Develop new standards as necessary. Design and develop automation scripts and integrations using Python or PowerShell to monitor the health of endpoint security tools and remediate coverage issues proactively. Utilize REST APIs and JSON to automate, integrate, and enrich data across security tools for real-time monitoring and incident response. Apply AI/ML models to use cases that support automated remediation of health and coverage issues in endpoint security tooling Participate in security compliance efforts (e.g., PCI DSS, SOX) Participate in incident handling Other related duties to support the information security function Qualifications Six or more years of experience in the design and implementation of Endpoint Security products such as CrowdStrike, Symantec Endpoint Protection (SEP), and Microsoft Defender for Endpoint Demonstrated effectiveness working across multiple business units to achieve results Significant technical expertise in two or more of the following areas Cloud Security Endpoint security Data Security SIEM

Overview The Information Security Assessment Lead is responsible for safeguarding PepsiCo's digital assets by assessing the cyber risk and compliance of new and changing systems against information security requirements and managing risks associated with IT and Information Security systems throughout the project lifecycle. The ISA Lead will collaborate with various security teams and businesses to facilitate compliance with Information Security standards, provide technical guidance for key strategic initiatives, and drive the secure delivery of technology solutions within PepsiCo. The role heavily focuses on security risk-based assessments, and data-driven decision-making and automation. Responsibilities Security Design ExpertiseProven track record in assessing security designs, including data flow diagrams, architectural blueprints, low-level designs, networking diagrams, authentication mechanisms, and authorization schemes. Must demonstrate experience in aligning these designs with industry standards such as NIST 800-53, ISO 27002, CIS, and OWASP to ensure robust security postures. Skilled at identifying potential security gaps and implementing best practices to fortify system architectures against emerging threats. Familiarity with the latest security tools and technologies, as well as experience in integrating security measures into complex IT environments, is essential. Compliance AssessmentAssess new and changing application designs and requirements to ensure compliance with PepsiCo information security standards. Risk CommunicationIdentify, quantify, and communicate technology risks impacting the business, recommending resolutions and identifying root causes. Explain scan results (infrastructure, applications, databases) and pen testing results to stakeholders. Threat ModelingUtilize expert knowledge in threat modeling techniques and methodologies to proactively identify, assess, and prioritize security risks, enabling the organization to implement targeted mitigation strategies and maintain a robust information security posture. Project Lifecycle ReviewsReview IT and Information Security systems throughout the project lifecycle, identifying risks and security requirements, and recommending paths to eliminate identified risks and implement compensating controls. Automated Risk AssessmentsConduct risk-based assessments using automated tools and techniques to prioritize and address security risks. Collaboration and EducationCollaborate with various IT and Business teams to ensure they are knowledgeable about Information Security processes and requirements, influencing them to eliminate or reduce risks. ServiceNow UtilizationExperience using ServiceNow to gather necessary information and data, automating security assessment processes to enhance efficiency and effectiveness. Metrics Management and ReportingManage operational metrics related to the ISA and GRC processes, utilizing Power BI for advanced reporting, tracking project progress, and developing corrective action plans. Process Improvement and Proactive SecurityGovern Information Security services from the ISA, tracking process metrics, identifying issues, and driving process improvement initiatives. Stay updated with threat intelligence, leverage Azure and cloud security knowledge, and implement Agile and DevSecOps methodologies to integrate security into the development process. Qualifications A minimum of 8 years of experience in Information Security, IT Risk Management, or a similar role. Mandatory Technical Skills: In-depth technical experience and knowledge of infrastructure technologies, networks, web, computing, cloud services, manufacturing equipment, mobile devices, and information (cyber) security. Strong understanding of information security frameworks, regulations, and standards such as NIST 800-53, CIS, and ISO 27002. Proficient in ServiceNow, with the ability to leverage its modules for information gathering, data analysis, and automation of the ISA service. Experience in threat modeling and applying threat modeling methodologies in previous roles. Proficient in Power BI for developing reports and dashboards to support data-driven decision-making. Strong skills in developing ad hoc reports and managing metrics. Knowledge of Azure and general cloud security principles. Ability to read and explain scan (infrastructure, applications, databases) and pen testing results to technical and non-technical stakeholders, guiding them on risk and vulnerability remediation. Mandatory Non-Technical Skills: Proficient in influencing and educating stakeholders on security best practices and policies, ensuring understanding and adherence to security standards. Established a reputation as a trusted adviser, providing expert guidance on information security matters. Strong presence to represent PepsiCo Information Security in complex situations with business and IT partners. Ability to collaborate with various stakeholders, including business units and product managers.

Overview The Information Security Assessment Lead is responsible for safeguarding PepsiCo's digital assets by assessing the cyber risk and compliance of new and changing systems against information security requirements and managing risks associated with IT and Information Security systems throughout the project lifecycle. The ISA Lead will collaborate with various security teams and businesses to facilitate compliance with Information Security standards, provide technical guidance for key strategic initiatives, and drive the secure delivery of technology solutions within PepsiCo. The role heavily focuses on security risk-based assessments, and data-driven decision-making and automation. Responsibilities Security Design ExpertiseProven track record in assessing security designs, including data flow diagrams, architectural blueprints, low-level designs, networking diagrams, authentication mechanisms, and authorization schemes. Must demonstrate experience in aligning these designs with industry standards such as NIST 800-53, ISO 27002, CIS, and OWASP to ensure robust security postures. Skilled at identifying potential security gaps and implementing best practices to fortify system architectures against emerging threats. Familiarity with the latest security tools and technologies, as well as experience in integrating security measures into complex IT environments, is essential. Compliance AssessmentAssess new and changing application designs and requirements to ensure compliance with PepsiCo information security standards. Risk CommunicationIdentify, quantify, and communicate technology risks impacting the business, recommending resolutions and identifying root causes. Explain scan results (infrastructure, applications, databases) and pen testing results to stakeholders. Threat ModelingUtilize expert knowledge in threat modeling techniques and methodologies to proactively identify, assess, and prioritize security risks, enabling the organization to implement targeted mitigation strategies and maintain a robust information security posture. Project Lifecycle ReviewsReview IT and Information Security systems throughout the project lifecycle, identifying risks and security requirements, and recommending paths to eliminate identified risks and implement compensating controls. Automated Risk AssessmentsConduct risk-based assessments using automated tools and techniques to prioritize and address security risks. Collaboration and EducationCollaborate with various IT and Business teams to ensure they are knowledgeable about Information Security processes and requirements, influencing them to eliminate or reduce risks. ServiceNow UtilizationExperience using ServiceNow to gather necessary information and data, automating security assessment processes to enhance efficiency and effectiveness. Metrics Management and ReportingManage operational metrics related to the ISA and GRC processes, utilizing Power BI for advanced reporting, tracking project progress, and developing corrective action plans. Process Improvement and Proactive SecurityGovern Information Security services from the ISA, tracking process metrics, identifying issues, and driving process improvement initiatives. Stay updated with threat intelligence, leverage Azure and cloud security knowledge, and implement Agile and DevSecOps methodologies to integrate security into the development process. Qualifications A minimum of 8 years of experience in Information Security, IT Risk Management, or a similar role. Mandatory Technical Skills: In-depth technical experience and knowledge of infrastructure technologies, networks, web, computing, cloud services, manufacturing equipment, mobile devices, and information (cyber) security. Strong understanding of information security frameworks, regulations, and standards such as NIST 800-53, CIS, and ISO 27002. Proficient in ServiceNow, with the ability to leverage its modules for information gathering, data analysis, and automation of the ISA service. Experience in threat modeling and applying threat modeling methodologies in previous roles. Proficient in Power BI for developing reports and dashboards to support data-driven decision-making. Strong skills in developing ad hoc reports and managing metrics. Knowledge of Azure and general cloud security principles. Ability to read and explain scan (infrastructure, applications, databases) and pen testing results to technical and non-technical stakeholders, guiding them on risk and vulnerability remediation. Mandatory Non-Technical Skills: Proficient in influencing and educating stakeholders on security best practices and policies, ensuring understanding and adherence to security standards. Established a reputation as a trusted adviser, providing expert guidance on information security matters. Strong presence to represent PepsiCo Information Security in complex situations with business and IT partners. Ability to collaborate with various stakeholders, including business units and product managers.

Description The Security Engineer II develops, enhances, and maintains applications that support automated information security processes, vulnerability management, threat intelligence, and compliance enforcement, with supervision, to advance CMEG information security capabilities. The incumbent should have knowledge of the Java programming language and a basic knowledge of information security tooling and automation. They should have some ability to work independently and as part of a team and also have good written and oral communication skills. Security Engineer II Designs, develops, tests, and maintains Java-based systems supporting security tools and platforms, with supervision. Develops, tests, and maintains integrations with third-party security, collaboration, and ITSM tools such as Qualys, Google Container Analysis, Jira, Archer, Remedy, and Service Now, with supervision. Writes automation supporting vulnerability management and sensitive data remediation workflows, with supervision. Uses best practices when developing solutions. Writes unit tests with minimal supervision. Follows secure coding practices. Principle Accountabilities Improves effectiveness of the vulnerability management program through automation. Ensures timely and accurate execution of automated security tasks. Collaborates with more senior team members to continuously identify automation opportunities and implement solutions. Defines simple problems. Gathers and compares data about problems and documents the details to assist more senior engineers. Exhibits basic proficiency with programming language, can write code and tests with guidance Skills & Software Requirements Java experience (1-3 years) Basic knowledge of Linux environments and shell scripting Familiarity with issue tracking systems ( eq. Jira) Nice to Have Experience with security tooling and automation Familiarity with containerization and cloud platforms Basic knowledge of SQL commands and programming with databases Scripting language experience (Python, Perl, Powershell, 1-3 years) Familiarity with REST and JSON Familiarity with secure coding practices and basic security concepts

Job Title Analyze L7 Security Gateway ITG Environment & SetupExperience 8-10 YearsLocation Bangalore : Analyze L7 Security GatewayITG Environment & Setup Understand existing UID setup Onboard to CP OKTA and modify SAML metadata and config to integration with CP OKTA Testing CP OKTAfor external user Testing WF OKTA for internal user UAT MTP Hypercare Certifications Needed: NA Skills PRIMARY COMPETENCY Information Security PRIMARY Security Design & Integration PRIMARY PERCENTAGE 60 SECONDARY COMPETENCY Information Security SECONDARY Identity & Access Management SECONDARY PERCENTAGE 40

Job Title:IT SOX-Risk Management-Audits & Business Continuity PlanningExperience5-10 YearsLocation:Bangalore : IT SOX, Risk Management, Audits, Business Continuity Planning

We are seeking a skilled and experienced Data Loss Prevention (DLP) professional to join our growing team. In this role, you will be instrumental in designing, implementing, and managing robust DLP strategies for our diverse client base. Location: Bangalore, Mumbai, Gurgaon, Noida, Key Responsibilities: Design, configure, and fine-tune Data Loss Prevention (DLP) policies and rules. Manage DLP incidents from detection through investigation and resolution. Conduct continuous monitoring and analysis of DLP alerts and system performance. Collaborate with clients to understand their data protection needs and implement effective DLP solutions. Provide expertise in DLP technologies and best practices. Develop and maintain documentation related to DLP configurations and procedures. Required Skills & Qualifications: Bachelor's or Master's degree in Computer Science, Information Systems, or a relevant field. Overall Experience: 6-8 years in Information Security, with 4-7 years specifically in Data Security, Privacy, and Information Security roles. DLP Experience: Hands-on experience (2-3 years) in managing privacy and data protection programs or providing consulting services in these areas. Technical Proficiency: Proven hands-on experience with leading DLP tools and technologies such as Symantec DLP, Forcepoint DLP, Microsoft Information Protection, and Microsoft Purview. Policy Management: Expertise in DLP policy configuration, incident monitoring, investigation, and resolution. Regulatory Knowledge: Strong understanding of relevant legal and regulatory requirements, including IT Act 2000, GDPR, BS10012, India's Data Protection Act, DADP Act, and other country-specific data protection acts (especially across Middle East Countries). Communication: Excellent written and verbal communication skills, strong interpersonal and collaborative abilities, and the capacity to articulate privacy, security, and risk concepts to both technical and non-technical audiences. Analytical & Project Management Skills: Exhibit excellent analytical skills, the ability to manage multiple projects under strict timelines, and thrive in a demanding, dynamic environment. Demonstrated project management skills, including scheduling and resource management. Discretion: Ability to handle sensitive information with utmost discretion and professionalism. Certifications: Required: Certified Information Systems Security Professional (CISSP), Certified Information Privacy Professional (CIPP). Good to have: Certified Data Privacy Solutions Engineer (CDPSE), Certified Information Security Manager (CISM), Certified Ethical Hacker (CEH).

Role Overview We are seeking a highly experienced CloudOps & InfoSecurity Lead/Manager to take ownership of our cloud infrastructure, security posture, and compliance initiatives. This role will be responsible for overseeing mission-critical CloudOps functions on AWS, leading InfoSec initiatives including VAPT, DR drills, and ISO27001/SOC 2 compliance, and ensuring smooth and secure technology operations across the organization. The role also involves liaising with Vendors to manage on prem infrastructure such as CCTV, SDWAN, UPS systems, Laptops etc, This is a hands-on leadership role that requires deep expertise in AWS infrastructure, DevOps pipelines, security frameworks, and experience collaborating with engineering, operations, and compliance teams. Key Responsibilities Cloud Operations (AWS) Manage and maintain core AWS services including: EKS (Kubernetes), EC2, RDS, S3, CloudWatch, Glue, Kinesis Own and optimize DevOps pipelines built on GitLab CI/CD. Implement cost-optimized, secure, and highly available cloud architectures. Ensure system monitoring, alerting, scaling, and backup strategies are effective and well-documented. Manage Disaster Recovery (DR) environments and conduct periodic DR drills. Information Security & Compliance Lead Vulnerability Assessment & Penetration Testing (VAPT) cycles and remediation efforts. Drive and maintain ISO27001 and SOC2 compliance: Work with external auditors and internal teams to ensure readiness. Own documentation, policy updates, and evidence collection. Implement and monitor security controls, incident management protocols, and regular access audits. Prepare and share weekly/monthly infosec and infra reports with leadership. Platform & SaaS Administration Oversee GCP Workspace (formerly G Suite) including Gmail, Drive, user provisioning, storage planning, and backup policies. Ensure data retention and security across productivity tools. Team & Vendor Collaboration Work with external vendors (e.g., for security testing, DR hosting, cloud services), Infra services Collaborate with engineering and QA teams for security reviews and infrastructure needs. Support procurement and vendor evaluation for infra and security tooling. Manage Vendors who manage on-prem infrastructure such as CCTV, SDWAN, UPS systems, Laptops etc and governance aspects related to regular reporting, auditing etc of IT infrastructure. Required Skills & Experience 8-10 years of experience in cloud infrastructure and information security domains. Proven expertise in AWS services like EKS, EC2, S3, CloudWatch, RDS, Kinesis, Glue, etc. Hands-on experience with DevOps pipelines (GitLab preferred). Strong understanding of infosec frameworks , compliance processes, and experience managing ISO27001 / SOC2 audits. Experience conducting and managing VAPT assessments and DR drills . Familiarity with Google Workspace (GCP) administration for email, storage, and access management. Strong communication and reporting skills with experience preparing stakeholder-ready documents. Experience managing or working with cross-functional teams and external vendors. Good to Have Certifications such as AWS Certified Solutions Architect , CISSP , CISM , or ISO27001 Lead Auditor . Exposure to container security , SAST/DAST tools , IAM best practices , and cloud cost optimization . Experience in a regulated domain such as Fintech/NBFC is a plus.

Mandatory Skills: -Programming skills in Dot Net, Java, Go (Any Skill is fine) with Penetration & Security testing is a must. Essential Duties and Responsibilities Provides support to cross-functional teams, with a high attention to detail Researches, analyzes, and documents findings May coach, review, and/or delegate work to other team members Conducts security assessments, threat modeling, and vulnerability reporting and develops security architecture patterns for implementing new solutions and products Performs application security reviews for our products and services to identify and/or validate vulnerabilities and attack chains. Communicates findings, attack paths, and recommendations to technical and executive stakeholders through written reports and verbal presentations Develops and maintains methodologies for penetration testing Assists with decision-making, prioritization, and support throughout the secure software development life cycle (s-SDLC) on a variety of security domains Participates in requirements gathering, secure coding and configuration, software testing, and third-party component management and defect management Serves as point of contact on secure development and security best practices Consults cross-functionally to embed security gates into their existing SDLC, leveraging automation when possible Drives the development of standards, practices, and processes to establish, manage, and report adherence to application security requirements and best practices Attends regular stand-ups and planning meetings to build positive relationships with key stakeholders Serves as the security authority on assigned products, ensuring the security controls are functioning, security requirements are provided before coding begins, and that vulnerabilities are fixed within their SLAs Ensures s-SDLC controls are embedded in assigned product and serves as control owner for a subset of these controls Engages in application and domain-specific threat modeling, as well as attack surface analysis and reduction. Educational/Vocational/Previous Experience Recommendations: Ability to manage projects and processes independently with limited supervision Recognized subject matter expert of applicable work area Ability to situationally adapt and understand new technology/processes as per business requirement Ability to identify application vulnerabilities and advise on appropriate remediation Solid understanding of common languages such as .NET, Python, JavaScript, Go, etc. Strong foundation in core information security principles and concepts (encryption, authentication, etc.) Effective communication skills, with the ability to explain sophisticated security topics in simple terms to technical and non-technical stakeholder Work locations: Pune, Mumbai, Bangalore Hybrid and also complete Remote option available. Work Type: Hybrid and Remote

Consultant/Senior Consultant || SOX || Gurgaon || (Immediate joiners preferred) What are we looking out for: Skilled and detail-oriented SOX Compliance and Internal Audit Consultant who will play a critical role in ensuring compliance with SOX requirements through the design, execution, and assessment of internal controls over financial reporting (ICFR). Job Profile (Non IT SOX): Responsible for executing client-related engagements in the areas of SOX 404 & Clause 49 assistance, Governance, Risk & Compliance (GRC), Internal Audits, Process Reviews, Standard Operating Procedures,. Responsible to discuss with risk owners for identification and assessment of key risks and development of mitigation plans Perform gap assessments by conducting detailed walkthroughs with process owners and identifying opportunities for automation, process transformation Review and assess the design of internal controls to ensure they address key risks and comply with SOX requirements. Develop detailed process narratives, risk control matrices (RCMs), and flowcharts. Information Produced by the Entity (IPE) Testing - Evaluate the reliability of information used in the execution of controls; perform detailed testing to validate the accuracy, completeness, and integrity of IPEs; ensure that data sources and logic align with control objectives. Management Review Controls (MRC) testing Test the design and operating effectiveness of Managements review of financial and operational data; evaluate the documentation, criteria, and frequency of management reviews; assess the quality of evidence and identify any gaps in the review process. Working on SOX readiness Assess the existence, efficiency, and effectiveness of the SOX control environment by directing control/process optimization. Collaborate with cross-functional teams, including accounting, IT, and operations, to ensure control objectives are met. Assist clients in preparation for external audits by addressing auditor inquiries and providing necessary documentation. Inspect companys policies and procedures; perform evaluation of control design; and carry out assessment of the effectiveness of company internal controls concerning business processes and systems. Review of working papers & client folders. Suggest ideas on improving engagement productivity and identify opportunities for improving client service. Create/manage status trackers and report the statuses and/or challenges to the Project Manager/Director, clients and all other stakeholders over status calls. Ensure compliance with engagement plans and internal quality & risk management procedures. Keep abreast of emerging technologies with the IT environment and help in developing audit plans to counter whatever risks that might be associated with the application of such technologies. Assist seniors & managers in developing new methodologies and internal initiatives. Create a positive learning culture, coach, counsel and develop junior team members. Attention to detail and mentor young interns and analysts within the practice. Perform other duties that may be assigned by management. Qualification: Graduate/ Post-Graduates

The key responsibilities are to handle a wide range of legal matters, including money recovery, property possession, criminal cases, financial frauds (cyber cases), and property registrations. Job Description Responsibilities and Accountabilities: Handling of cases like Money Recovery Recovery of Property possession, Handling of Criminal Matters. Financial Frauds (Cyber Cas es) Tools & Resources required: Desktop Mobile Job Specifications Qualification(s): Law degree (LLB) or equivalent qualification Experience Nature of Experience: Proven experience (3-5 years) in handling a diverse range of legal matters including civil, criminal, and property law. Length of Experience: 4-6 years Skill Set & Personality Traits required: Good Liaoning skills in the police station, revenue and other government departments. Good Convincing skills Strong understanding of legal procedures, court rules, and regulations. Ability to work independently and as part of a team. Strong interpersonal skills and the ability to build rapport with clients and government officials. Location: Chennai Age Group: 25-34 years

We are looking for a Senior Security Architect specializing in Information Security to join our team in Gurgaon/Gurugram. In this role, you will be responsible for designing, implementing, and enhancing our enterprise security architecture across on-premises and cloud environments. Your expertise will be crucial in ensuring the security of our IT infrastructure and technology adoption, with a focus on emerging AI/ML technologies. You will play a key role in integrating security best practices across vulnerability management, secure software development, incident management, and security operations. Your responsibilities will include defining and improving the enterprise security architecture strategy, providing guidance on secure IT and cloud architecture, evaluating AI/ML technologies for security risks, recommending security technologies and controls, managing vulnerability and patch management, integrating security principles into the software development lifecycle, enhancing incident management processes, collaborating with cross-functional teams, conducting threat modeling and risk analysis, maintaining architecture documentation, evaluating third-party tools and solutions, staying updated on security trends, and supporting other information security activities as assigned. The ideal candidate will have 7-12 years of experience in information security architecture, expertise in secure architecture design for complex IT environments and multi-cloud platforms, hands-on knowledge of security technologies, familiarity with security frameworks, experience in threat modeling and risk assessment, proficiency in vulnerability management, patch management, application security, secure SDLC, and incident management, as well as excellent communication and collaboration skills. Preferred certifications for this role include ISSAP, CISSP, CCSP, CISM, CISA for Information Security & Architecture, AWS Certified Security - Specialty, Microsoft Certified: Azure Security Engineer Associate, Google Cloud Professional Cloud Security Engineer for Cloud Security, and Certified AI Security Professional, Google Cloud Professional Machine Learning Engineer, Microsoft Certified: Azure AI Engineer Associate for AI/ML Security. Candidates should hold a Bachelors or Masters degree in Computer Science, Cybersecurity, Information Technology, or a related discipline. If you are passionate about information security, have a strong background in security architecture, and possess the necessary skills and qualifications, we encourage you to apply for this position.,

You will be responsible for establishing the right Key Performance Indicators (KPIs) and tracking performance against them. Your role will involve maintaining documentation of Service Level Agreements and reviewing them for accuracy. You will coordinate information sharing with vendors following established procedures and reporting requirements. Additionally, you will be resolving technical and general employee inquiries. A successful candidate will have a proven track record in handling employee inquiries effectively. As part of your corporate security responsibility, you are expected to adhere to Mastercard's security policies and practices. It is crucial to ensure the confidentiality and integrity of the information accessed. Any suspected information security violation or breach must be reported promptly. Furthermore, you are required to complete all periodic mandatory security trainings in accordance with Mastercard's guidelines.,

You could work anywhere, but at Sagent, we offer an inspiring and impactful environment where you can make a difference while enjoying what you do. Our mission is to simplify and secure loans and homeownership for all US consumers, and by joining us, you become an essential part of this journey. As an Information Security (Infosec) Engineering Manager at Sagent, you will lead a team of security professionals dedicated to ensuring the safety of our applications, systems, and infrastructure. Your role will involve overseeing DevSecOps, threat analysis, application security, and BCP/DR functions, aligning them with the organization's objectives. Key Responsibilities: 1. Team Leadership: - Lead, mentor, and manage teams focusing on DevSecOps, threat analysis, application security, and BCP/DR functions. - Cultivate a culture of continuous learning and improvement within the teams. 2. Security Strategy Development: - Create and execute a comprehensive security strategy that aligns with business goals and regulatory requirements. - Promote the adoption of security best practices company-wide. 3. DevSecOps Management: - Supervise the integration of security tools and practices into CI/CD pipelines using tools like Checkmarx, Azure DevOps, and Terraform. - Ensure secure software development practices and compliance during code deployment. 4. Threat Analysis and Incident Management: - Manage threat analysts in identifying and mitigating security threats using tools like Rapid7 and Falcon CrowdStrike. - Respond to security incidents and conduct post-incident analysis for process improvement. 5. Application Security: - Collaborate with developers to incorporate application security solutions and maintain secure coding standards. - Conduct regular security assessments and vulnerability scans. 6. BCP/DR Planning: - Develop and maintain business continuity and disaster recovery plans to ensure operational resilience. - Regularly test BCP/DR plans for effectiveness and process enhancement. 7. Stakeholder Collaboration: - Work closely with engineering, product, and IT teams to embed security practices across all operations. - Effectively communicate complex security topics to non-technical stakeholders. 8. Innovation and Continuous Improvement: - Stay informed on emerging threats, vulnerabilities, and security technologies. - Drive ongoing enhancement of processes and tools to boost the organization's security posture. Qualifications: - Bachelor's or Master's degree in Cybersecurity, Computer Science, or related field. - Minimum 14 years of cybersecurity experience, with at least 3 years in a managerial role. - Proficiency in tools such as Checkmarx, Terraform, Azure, and Rapid7. - Deep knowledge of cloud security, application security, and DevOps practices. - Proven track record in designing and implementing BCP/DR strategies. - Strong leadership, project management, and communication skills. Joining Sagent means being part of a transformative journey in the mortgage servicing industry. We offer a modern customer experience for loan servicing, empowering customers and servicing companies alike. As we grow rapidly, your contribution will be vital in shaping our innovative future. Apply now and be a part of our mission at Sagent!,

Jefferies is a leading global financial services company that is dedicated to providing cutting-edge information security solutions to protect our organization's digital assets and ensure the security of our clients" data. We are currently looking for a highly skilled and experienced professional to join our team as the Senior Vice President, Head of Security ASIA. In this crucial leadership role, you will report directly to the local Chief Information Officer (CIO) and global Chief Information Security Officer (CISO) and will play a key role in shaping the information security strategy and engineering direction for our organization. As the IT Head of Security ASIA, you will be responsible for overseeing and managing all security aspects for our organization in the region. The ideal candidate must possess strong technical skills and be adaptable to the fast-paced environment of financial services development and delivery. We are seeking an excellent team player with exceptional technical and communication skills, as well as a high level of self-motivation to drive the progress of the security program at Jefferies. Key Responsibilities: In this role, you will lead a team of security personnel across multiple domains, including Security Operations, Global Security Administration, Physical Security, Data Security Analytics, and Network Security Engineering. Your responsibilities will include: - Providing strategic security guidance and direction for multiple high-performing teams - Driving the vision and direction of security solutions through active participation in the information security market - Leading, supervising, and inspiring local teams in various key areas You will also be responsible for: - Conducting technical vendor security reviews - Providing strategic security guidance for technology and delivery - Working closely with application and engineering teams to implement security measures - Proactively identifying and addressing emerging technology threats - Developing and implementing risk mitigation strategies - Conducting information security awareness and training programs - Ensuring alignment of technology risk management practices with industry standards - Participating in global security initiatives Required Background: The ideal candidate should have: - Extensive knowledge of information security principles and best practices - Ability to effectively communicate with senior management and stakeholders on security issues - Expertise in ensuring compliance with cybersecurity regulations and frameworks - Experience in systems, applications, or architecture planning - Experience in driving security awareness programs - Strong verbal, written, and interpersonal communication skills - Knowledge of data governance challenges - Experience with Governance, Risk, and Compliance (GRC) - A degree in information technology - Agile experience - Fundamental knowledge of AWS and/or Azure IaaS/PaaS services About Us: Jefferies Financial Group Inc. is a U.S.-headquartered global full-service, integrated investment banking and securities firm. Our strategy focuses on building out our investment banking effort, enhancing our capital markets businesses, and further developing our Leucadia Asset Management alternative asset management platform. We offer deep sector expertise across a full range of products and services in investment banking, equities, fixed income, asset and wealth management in the Americas, Europe, the Middle East, and Asia. Jefferies believes in fostering diversity and creating a culture that provides opportunities for all employees. We are committed to supporting a workforce that reflects the communities where we work and live, allowing us to leverage our collective insights and intelligence to provide innovative solutions for our clients.,