5028 Information Security Jobs - Page 20

The Sr- Project Coordination Analyst is responsible for coordinating and tracking information security vulnerability management and remediation activities across the UPS Healthcare portfolio- This role involves close collaboration with IT, business units, and internal audit to ensure compliance with regulatory and corporate security requirements within defined timelines- They will troubleshoot project issues to maintain schedules utilizing established processes and procedures and makes recommendations for preventing recurrences- He/She will be responsible to communicate the Key metrics to Senior Management for timely decision making and reduce the risk for the organization- Responsibilities: Plans, organizes, coordinates, and tracks remediation activities related to information security vulnerability workstreams- Troubleshoots project issues to maintain schedules utilizing established processes and procedures and makes recommendations for preventing recurrences- Facilitates the submissions of deferrals or risk acceptance requests in the event a deadline or remediation mandate cannot be met- Coordinates deployments and implementations and facilitates activities to ensure programs and projects are implemented successfully and meet established deadlines- Bring all Healthcare applications into full compliance with legally driven and internal information security requirements- Work with TEC, SEC, and Internal Audit groups to understand compliance requirements and timelines- Facilitates quick remediation of emerging high prior information security threats- A key responsibility is to ensure that remediation plans are complete, accurate and well communicated to stakeholders- Performs a broad range of complex technical and professional work functions to identify, investigate, analyze and remediate information security events- Flexible to work in different time zones Qualifications: Bachelor s degree in a relevant field (e-g-, Information Technology, Computer Science, Data Science, or related discipline)- Overall, 7 years of experience with 2+ years of experience in IT project management Must be an effective collaborator and communicator Must be well organized Must have Intermediate-level proficiency with Microsoft Excel and Microsoft Office Knowledge of Process Analysis/Continuous Improvement are required Familiarity with Application Development Lifecycles and knowledge of Windows, Linux, Mainframe, Web technologies and Information Security is desired- Familiarity with Information security standards and vulnerability management-

Digitalto and from coreis the DNA of Colruyt Group- We have been pioneering inadapting IT technologies from the advent of IT revolution- As a Data Science Engineer, you will be collaboratingwith multiple stake holders involving Data Scientists, Business, Project Managers, and Software Engineers- You will have an opportunity towork with culturally diversified group of individuals- We are looking for anindividual with Passion, Innovation, out of the box thinking to join our team- Responsibilities: Design data pipelines and machine learning infrastructure,whether its on-premise (on our internal enterprise machine learning platform)or in the cloud (Azure), at scale- Contribute to the development of automation tools andinfrastructure as code (IaC) practices to streamline the deployment andmanagement of machine learning solutions- Industrialize models built by the data scientists andturn them into production ready machine learning systems- Contribute to the development of reusable/internalcomponents, libraries and frameworks- Develop and deploy tools and services (preferably opensource) for internal stakeholders to handle ML training and deployment- Containerize machine learning applications to ensureconsistency, reproducibility, and portability across different cloudenvironments- Stay informed about new software and hardware trendsand innovations to improve performance, maintainability, and reliability of themachine learning solutions- Apply best software engineering practices to build efficientmachine learning pipelines, including CI/CD, scripts to automate repetitivetasks etc- Support the data science solutions with an extraemphasis on versioning, data security, auditability and performance- Contribute to the development and deployment of proofof concepts, quickly- Involved in different phases of a project, includingarchitecture, system design, coding, unit testing, integrations, maintenanceand improvements- Document the solution & solution designefficiently- Profile : Strong fundamentals in software engineering, systemengineering, machine learning concepts and debugging- Experience in working with large-scale data / MLpipelines and their supporting infrastructure- Strong knowledge in Linux Design complex analytical systems/solutions (high-level and low-levelsystem design)- Ability to solve complex problems using efficientalgorithms/software engineering techniques- Strong knowledge of software developmentstages/processes, debuggers, DBMS and source code management tools (git)- Ability to write high quality code with a keenattention to detail- Comfortable with writing complex and efficient SQLqueries- Effective communication and strong interpersonal skills- Proven experience in implementing CI/CD on large-scaleML pipelines- Enjoy solving ambiguous and challenging technicalproblems- Good to have : Exposure to large-language models and deploying LLMbased solutions in production- Experience and familiarity with Kubernetes- Experience with shell scripting- Awareness of application and informationsecurity-

As a Lead Software Engineer, you will focus on building next-generation platform services for Freshworks with your strong background in distributed systems and mentor your team to achieve this- You will have an opportunity to redefine customer experiences by building systems that are milli-second efficient, always available and working at internet scale- If you are the kind of engineer who is passionate about building systems, have a good eye for analysis and a mind that can think outside the box, we want to talk to you- Responsibilities: - Lead teams to deliver scalable, low latency, and cost-efficient solutions to different product teams- - Drive solutions and implementation leveraging different open source distributed systems and deliver a complete product- - Build innovative solutions from scratch and liaise with architects and engineers from other product teams to build solutions and drive adoption- - Elicit quality attributes of the system as well as create criteria metrics for the product to establish the success of achieved metrics - Implement and support compliance of self and team to Freshworks compliance and information security processes- Requirements: - 6 9 years of relevant professional experience - Advanced proficiency in object-oriented programming principles - In-depth understanding of the Software Development Lifecycle (SDLC) - Demonstrated ability to design scalable and high-performance systems - Skilled in conducting peer code reviews - Strong analytical and problem-solving abilities - Extensive hands-on programming experience - Expertise in data structures and algorithms - Solid foundation in system design concepts Qualifications Experience / Desired Skills (but not all required): . Degree in Computer Science or equivalent practical experience . Experience with large.scale systems . Intermediate knowledge of Ruby on Rails . Prior experience with AWS . Experience with open.source projects . Experience troubleshooting in a SaaS environment with an assertive deployment schedule

Perform Web Application PT, Mobile Application PT, Network VAPT, Source code review, Wireless pen-testing- Write detailed reports on VAPT findings- Perform and present research on various attack vectors- Perform red teaming activities- Understand client requirements and provide tailored security solutions to address complex security testing and risk assessment needs- Build and maintain efficient working relationships with clients Certifications: Good to have: OSCP, OSWA, PNPT, eJPT, eCPPTv2, CREST and other relevant certifications Education Qualification : BCA / B-Tech / B-Sc Computer Science / B-Sc - Information Security / Cyber Forensics / M-Sc Information Security/ Cyber Forensics- Experience: - Minimum 5 years of relevant security testing experience in : Web application penetration testing Network VAPT, Active Directory penetration testing- Mobile application penetration testing (Android and iOS) and thick client- - Skilled in manual testing and using Burp Suite Pro, WebInspect, Acunetix - Experience in secure code review (manual and automated)- - Good programming skills in any language- - Proficient with OWASP security standards with a deep understanding of common security vulnerabilities - Experience in red teaming activities is a plus- - Good communication skills, especially presentation and technical writing skills- - Excellent analytical and problem-solving skills- Benefits Competitive salary and benefits Medical Insurance - Self & family Parental Support - Maternity Leave Retirement Benefits - PF Contribution Opportunities for professional growth Collaborative and inclusive work environment

Jul 21, 2025 Location: Mumbai Designation: Assistant Manager Entity: Deloitte Touche Tohmatsu India LLP Your potential, unleashed. India s impact on the global economy has increased at an exponential rate and Deloitte presents an opportunity to unleash and realize your potential amongst cutting edge leaders, and organizations shaping the future of the region, and indeed, the world beyond. At Deloitte, your whole self to work, every day. Combine that with our drive to propel with purpose and you have the perfect playground to collaborate, innovate, grow, and make an impact that matters. The team Technology & Transformation is about much more than just the numbers. It s about attesting to accomplishments and challenges and helping to assure strong foundations for future aspirations. Deloitte exemplifies what, how, and why of change so you re always ready to act ahead. Learn more about Technology & Transformation Practice Your work profile As a Assistant Manager / Deputy Manager / Manager in our Cyber Team you ll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations: - Frontend teams for ISO 27001 based Information Security Management System implementation and sustenance based projects Experience - 5 to 12 years Guide teams to assess client information security posture, identify the gaps/risks in the existing environment and develop solutions to mitigate the identified gaps/risk Responsible to assist client in review / implement Information Security controls in areas as mentioned, but not limited to: Change management process, Incident management process, Backup process, User identity and access management, Antivirus management, SLA performance and monitoring, Media handling & Exchange of information, Physical and environmental Security, and Media & Information Handling Manages multiple clients vendors risk assessments projects and guides team in providing a holistic view of clients risk exposure due to outsourcing Lead teams to conduct Information Systems audits covering IT infrastructure assets Advice clients on data privacy, data leakage prevention, identity and access management Manages security and privacy projects, guides the team on a day-to-day basis and ensures that assigned tasks and responsibilities are fulfilled in a timely fashion Demonstrates understanding of complex business and information technology management processes Interacts with clients, managers and partners to build and nurture strong relationships Tailors firm tools and methodologies as per client requirements Evaluates, counsels, mentors and provides feedback on performance of others Assist in retention of people and lead training efforts Manages day-to-day client relationships at appropriate senior management levels Contributes to sales process by participating and/or leading proposal development efforts to sell "add-on" work to client Identifies opportunities for cross selling across service lines Play substantive/lead role in engagement planning, economics, and billing Demonstrates a general knowledge of market trends, competitor activities, firm products and service lines Desired qualifications: Subject matter specialist in multiple security and privacy domains Extensive experience in leveraging industry standards and frameworks such as ISO/NIST 800-53, NIST CSF and NIST 800-171, ISO/IEC 27001, COBIT, ITIL, etc. Experience in design, development and roll-out of security and privacy programs, developing IT risk management strategies, compliance programs Experience in building vulnerability management programs for organizations Experience in designing Secure Development Lifecycle for organizations (Strategic roadmap and implementation) Cyber Threat and Risk Assessment - Ability to identify business implications and identifying tactical and strategic recommendations to mitigate the risk. Possesses certifications such as ISO27001 LA/ LI, ISO22301 LA/LI, Prince2, PMP, CISSP, CISA, CISM certification- preferred Ability to define the business & technical scope of a project. Should be able to independently lead delivery teams to deliver projects according to client specifications after such scope is defined B.E / B.Tech (Tier 1/2) in Computer Science, Information Technology or related fields ISO 27001 LA/LI, ISO 31000 LA/LI, ISO 22301 LA/LI, CISA, ITIL, or equivalent certification preferred CISSP, GSEC, GCIH, CEH, LPT, CCSK, eGRC tools like Archer, OpenPages or functional certifications would be preferred Location and way of working Base location: Mumbai This profile involves frequent travelling to client locations. Work Mode - Work from Office Your role as a Assistant Manager / Deputy Manager / Manager We expect our people to embrace and live our purpose by challenging themselves to identify issues that are most important for our clients, our people, and for society. In addition to living our purpose, Manager across our organization must strive to be: Inspiring - Leading with integrity to build inclusion and motivation Committed to creating purpose - Creating a sense of vision and purpose Agile - Achieving high-quality results through collaboration and Team unity Skilled at building diverse capability - Developing diverse capabilities for the future Persuasive / Influencing - Persuading and influencing stakeholders Collaborating - Partnering to build new solutions Delivering value - Showing commercial acumen Committed to expanding business - Leveraging new business opportunities Analytical Acumen - Leveraging data to recommend impactful approach and solutions through the power of analysis and visualization Effective communication Must be well abled to have well-structured and well-articulated conversations to achieve win-win possibilities Engagement Management / Delivery Excellence - Effectively managing engagement(s) to ensure timely and proactive execution as well as course correction for the success of engagement(s) Managing change - Responding to changing environment with resilience Managing Quality & Risk - Delivering high quality results and mitigating risks with utmost integrity and precision Strategic Thinking & Problem Solving - Applying strategic mindset to solve business issues and complex problems Tech Savvy - Leveraging ethical technology practices to deliver high impact for clients and for Deloitte Empathetic leadership and inclusivity - creating a safe and thriving environment where everyones valued for who they are, use empathy to understand others to adapt our behaviours and attitudes to become more inclusive. How you ll grow Connect for impact Our exceptional team of professionals across the globe are solving some of the world s most complex business problems, as well as directly supporting our communities, the planet, and each other. Know more in our Global Impact Repor t a nd our India Impact Repor t . Empower to lead You can be a leader irrespective of your career level. Our colleagues are characterised by their ability to inspire, support, and provide opportunities for people to deliver their best and grow both as professionals and human beings. Know more about Deloitte and our One Young Worl d partnership . Inclusion for all At Deloitte, people are valued and respected for who they are and are trusted to add value to their clients, teams and communities in a way that reflects their own unique capabilities . Know mor e about everyday steps that you can take to be more inclusive . A t Deloitte, we believe in the unique skills, attitude and potential each and every one of us brings to the table to make an impact that matters. Drive your career At Deloitte, you are encouraged to take ownership of your career. We recognise there is no one size fits all career path, and global, cross-business mobility and up / re-skilling are all within the range of possibilities to shape a unique and fulfilling career. Know more about Life at Deloitte . Everyone s welcome entrust your happiness to us Our workspaces and initiatives are geared towards your 360-degree happiness. This includes specific needs you may have in terms of accessibility, flexibility, safety and security, and caregiving. Here s a glimpse of things that are in store for you. Interview tips We want job seekers exploring opportunities at Deloitte to feel prepared, confident and comfortable. To help you with your interview, we suggest that you do your research, know some background about the organisation and the business area you re applying to. Check out recruitin g tips from Deloitte professionals .

Tower Research Capital is looking for Information Security Analyst II to join our dynamic team and embark on a rewarding career journeyDefining, planning, implementing, maintaining, and upgrading security measures, policies, and controls.Assisting with the creation of updates and training programs to secure the network and train the employees.Keeping the security systems up to date.Monitoring security access and maintaining the relevant data.Conducting vulnerability testing and risk analyses to assess security and performing internal and external security audits.Analyzing security breaches to identify the cause and to update incidence responses and disaster recovery plans.

Join a Team That s Passionate About Making Lives Better! At Bill Gosling Outsourcing, we believe that success starts with an amazing team. We are a global leader in outsourcing solutions, we focus on making lives better, one connection at a time. We provide tailored solutions to businesses around the globe, specializing in customer care, sales, and financial services. We re looking for enthusiastic, driven individuals to join our dynamic work environment where fun meets results ! Evaluate & audit conversations / transactions on behalf of assigned client process(es) as per pre-defined guidelines ensuring zero / minimal quality variance while maintaining productivity parameters. Quality consultant is expected to evaluate and audit telephone, email and chat communication / transaction and provide detailed feedback via an evaluation tool to the customer What Youll Do: Consistently ensure that quality variance is well below threshold and internal quality scores are exemplary Write feedback, if applicable, to enthuse performance development at an agent level and per client instructions Regularly participate in client / internal calibration calls to ensure consistency of scoring & knowledge Meet and exceed daily volume and productivity targets Successfully clear the client specific training and ensure all subsequent updates are well understood & implemented Participate in various internal/external training programs to continuously hone required skills and knowledge base. Abide by all HR policies and processes including but not limited to code of conduct, attendance, and floor discipline. What Were Looking For: All Information security responsibilities can be located in The Book of Bill (Global) and The Book of Bill (Global) French. Please note that Information security responsibilities are based on role Why Join Us Growth Opportunities : We believe in promoting from within and providing opportunities for career advancement. Comprehensive Training : We offer extensive paid training to ensure you re equipped for success. Team-Oriented Culture : Work in a collaborative, supportive environment with peers who are passionate about what they do. Diversity & Inclusion: We celebrate the unique perspectives and contributions of all our employees. Fun Workplace: Join a vibrant team that knows how to have fun! From team engagement activities to social events, we foster a lively and inclusive work environment where you ll build strong connections. State-of-the-Art Offices: Work in our modern, well-equipped offices designed to enhance collaboration and productivity. Rewarding Work: Help businesses grow while making a real difference in people s lives! Get to Know Us Better! Follow us to get an insider view of our team in action, our values in motion, and a sneak peek into what makes us an awesome place to work! Twitter & Instagram: bgocareers Facebook: Bill Gosling Outsourcing LinkedIn: Bill Gosling Outsourcing Website https: / / www.billgosling.com / careers By applying to this position, you acknowledge that you have read and understood Bill Gosling Outsourcing s Privacy Policy and consent to the collection, use, and storage of personal information in accordance with the policy. At Bill Gosling Outsourcing, we believe that diversity makes us stronger. We welcome applicants from all backgrounds and are committed to creating an inclusive and supportive workplace where everyone can thrive. Regardless of your race, gender, age, ability status, or any other characteristic, you are valued here. If you require accommodations at any stage of the hiring process, we are happy to work with you to ensure you have the support you need just let us know. Bill Gosling Outsourcing Where your career thrives!

Join a Team That s Passionate About Making Lives Better! At Bill Gosling Outsourcing, we believe that success starts with an amazing team. We are a global leader in outsourcing solutions, we focus on making lives better, one connection at a time. We provide tailored solutions to businesses around the globe, specializing in customer care, sales, and financial services. We re looking for enthusiastic, driven individuals to join our dynamic work environment where fun meets results ! A Desktop Support Engineer provides technical assistance and support to ensure efficient and effective use of desktop computing resources within an organization. They are responsible for diagnosing and resolving hardware, software, and network issues, installing and configuring systems, and maintaining IT infrastructure. The role involves direct interaction with end-users to address their technical concerns, deliver training, and ensure seamless operation of desktop environments. This position requires strong problem-solving skills, excellent communication abilities, and a proactive approach to maintaining the organizations IT systems. The Desktop Support Engineer plays a critical role in maintaining user productivity and satisfaction by ensuring reliable and secure access to desktop resources. What Youll Do: Technical Support Provide first-line support for hardware, software, and network issues. Respond to user inquiries, troubleshoot problems, and provide solutions. Install, configure, and update software and hardware. System Maintenance: Perform routine maintenance on desktop environments, including software updates and hardware upgrades. Ensure all systems are secure and up-to-date with the latest patches and antivirus software. User Assistance: Assist users with technical issues via phone, email, or in-person. Provide training and guidance on new software or hardware. Create and maintain user accounts and permissions. Documentation and Reporting: Document all technical issues and resolutions in a ticketing system. Generate regular reports on system performance, issues, and resolutions. Maintain an inventory of all hardware and software assets. Network Support: Troubleshoot and resolve network connectivity issues. Assist with the setup and maintenance of local area networks (LANs) and wireless networks. Security: Implement and enforce security policies to protect data and systems. Monitor systems for security breaches and respond to any incidents. Project Participation: Assist in IT projects such as rollouts of new hardware or software. Collaborate with other IT team members on larger projects. Customer Service: Provide excellent customer service to ensure user satisfaction. Follow up with users to ensure issues are fully resolved. Continuous Improvement: Stay updated on the latest industry trends and technologies. Recommend improvements to the existing IT infrastructure. What Were Looking For: All Information security responsibilities can be located in The Book of Bill (Global) and The Book of Bill (Global) French. Please note that Information security responsibilities are based on role. Why Join Us Growth Opportunities : We believe in promoting from within and providing opportunities for career advancement. Comprehensive Training : We offer extensive paid training to ensure you re equipped for success. Team-Oriented Culture : Work in a collaborative, supportive environment with peers who are passionate about what they do. Diversity & Inclusion: We celebrate the unique perspectives and contributions of all our employees. Fun Workplace: Join a vibrant team that knows how to have fun! From team engagement activities to social events, we foster a lively and inclusive work environment where you ll build strong connections. State-of-the-Art Offices: Work in our modern, well-equipped offices designed to enhance collaboration and productivity. Rewarding Work: Help businesses grow while making a real difference in people s lives! Get to Know Us Better! Follow us to get an insider view of our team in action, our values in motion, and a sneak peek into what makes us an awesome place to work! Twitter & Instagram: bgocareers Facebook: Bill Gosling Outsourcing LinkedIn: Bill Gosling Outsourcing Website https: / / www.billgosling.com / careers By applying to this position, you acknowledge that you have read and understood Bill Gosling Outsourcing s Privacy Policy and consent to the collection, use, and storage of personal information in accordance with the policy. At Bill Gosling Outsourcing, we believe that diversity makes us stronger. We welcome applicants from all backgrounds and are committed to creating an inclusive and supportive workplace where everyone can thrive. Regardless of your race, gender, age, ability status, or any other characteristic, you are valued here. If you require accommodations at any stage of the hiring process, we are happy to work with you to ensure you have the support you need just let us know. Bill Gosling Outsourcing Where your career thrives!

Grade H - Office/ CoreResponsible for supporting information security and risk activities for the specialism, using sound technical capabilities to review and adjust information security processes, supporting the delivery of security solutions, recommending improvements to security strategies and managing external service providers, as required. Specialisms: Information Security Engineering; Information Security and Risk Management; Operational Security Management; Governance, Risk and Compliance; Forensics and Incident Response Management; Application Information Security. Entity: Technology IT&S Group To enable the world to reach net zero, bp are looking for the brightest digital specialists to drive innovation as it transitions from an International Oil Company (IOC) to an International Energy Company (IEC). Are you passionate about protecting what matters mostWere seeking someone who is passionate about identifying and implementing security solutions that make bp a cyber resilient organisation! Our Business Information Security team partners with the business to help them understand cyber risk and be accountable for cyber security. Were looking for curious minds who are driven by opportunities to build value and deliver secure products and services to advance bps strategy. Role Synopsis In the digital era, where data breaches and cyber threats are not just possibilities but realities, the role of a Global Information Security Specialist has never been more critical. Working closely with the Supply Trading and Shipping (ST&S) business areas, you will support the protection of IT systems and business data that are important to bps energy production capabilities. You will conduct security assessments, respond to security queries, and provide security expertise. Your expertise will help ensure that ST&S teams can operate with confidence, knowing their systems and processes are secure. Ready to make a real impact in energy trading securityJoin us in safeguarding the people, processes and systems that power our transition to net zero! Key Accountabilities In this role you will deliver security activities to support the ST&S business areas. This role focuses on hands-on security assessment and advisory activities with the following key accountabilities: Security Assessments : We need someone that can conduct comprehensive assessments of systems, identify risks and issues while recommending appropriate remediation measures. Technical & Non-Technical Risk Advisory : Youll assess and communicate cybersecurity risks. We want our customers to understand potential impacts and mitigation strategies clearly. Cyber Behaviour Promotion : We strive to build a strong cyber security culture. Youll assist with the development and promoting good cyber behaviours in day-to-day operations. Incident Management Support : When security incidents happen, we need you to provide specialist security expertise. Youll support incident response activities and improvement recommendations. Customer Support : We want you to act as the go-to point of contact for information security. Youll provide timely and accurate expertise on security matters affecting their systems or data. You will: Assess and Evaluate : Youll perform regular security assessments of ST&S systems. We use established methodologies to identify potential risks, weaknesses and security gaps. Respond and Advise : We require someone who can offer our customers practical and tailored cyber security solutions. These solutions must align with operational requirements. Analyse and Report : Youll evaluate risks and prepare clear, actionable recommendations, and communicate these with both business and technical audiences. Support and Collaborate : We work closely with ST&S teams to implement security measures. Youll help maintain a robust security posture while aligning with operational needs. Promote and Educate : We nurture positive cyber security behaviours! Youll work within P&O teams through targeted awareness activities, training support, and expert guidance. Monitor and Review : We want someone who understands the security landscape affecting ST&S systems and stay ahead of emerging threats and industry standard methodologies. Education Bachelors degree or equivalent experience in Information or Cyber Security, Computer Science, Engineering. Working towards professional certifications such as Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP), or CompTIA Security+. Knowledge of security frameworks such as ISO 27001/2, NIST, and CIS framework. Desirable Experience and Capability Previous track record in information security roles, preferably with some exposure to trading technology (OT) or financial regulated environments. Ability to explain security concepts to a variety of audiences in the ST&S domain. Solid grasp of cyber risk assessment methodologies and the ability to translate technical findings into business impact assessments. Attention to detail and ability to work independently while balancing multiple activities. Ability to adapt security recommendations to different operating environments. Ability to use technology, data, and insights to enable decision making. Travel Requirement Up to 10% travel should be expected with this role Relocation Assistance: This role is eligible for relocation within country Remote Type: This position is a hybrid of office/remote working Skills: Automation system digital security, Client Counseling, Conformance review, Digital Forensics, Incident management, incident investigation and response, Information Assurance, Information Security, Information security behaviour change, Intrusion detection and analysis, Legal and regulatory environment and compliance, Risk Management, Secure development, Security administration, Security architecture, Security evaluation and functionality testing, Solution Architecture, Stakeholder Management, Supplier security management, Technical specialism

Position Title: Network Security Engineer Reports To: Director of Infrastructure Security The Lead Network Security Engineer is accountable for securing CDK s network connecting thousands of CDK customers, ISVs, and OEMs - including perimeter, corporate, on-premises data center, public cloud, and 3 rd party networks . This individual plays a key technical leadership role in our network security strategy development, implementation, and operations . Key Responsibilities : 1. Leadership & Strategy: Exemplify security principles and culture Contribute to the d evelop ment and implement ation of the long-term network security strategy Effectively partner across security, technology, and business teams Develop effective metrics and use them to drive meaningful improvements 2. Network Security Standards: Contribute to the development and continuous improvement of network security standards and guidelines in Measure and report on CDK s compliance with network security standards Drive adoption of network security standards through close partnership with technology teams, collaborative roadmap alignment, and transparent reporting 3. Network Security Engineering: B uild, implement, and operate firewalls, VPNs, IDS/IPS, and other network security solutions I mplement effective zero trust network segmentation architecture and strategies to reduce security risk In collaboration with cloud technology and security teams, implement an effective cloud network security strategy using a mix of cloud native and 3 rd party solutions Use infrastructure as code and other methods to automate deployment of a consistent and secure network infrastructure Seek out opportunities to automate and standardize technology deployment and operations 4. Network Security Operations: Make firewall and network security configuration changes in accordance with network security standards Collaborate with Security Operations team to assure effective security monitoring and response capabilities for CDK networks Provide 24x7 tier 2/3 support for network security technologies Required Qualifications: Education: Bachelor s degree in computer science, information security, or an equivalent experience Experience: Minimum of 3 years in cybersecurity, with at least 2 years in network security . Strong background in network security architecture, design, and operations preferably in a complex SaaS environment. Experience with Firewalls, routers, switches, IDS/IPS, SASE solutions, cloud networking, infrastructure as code, process automation, wireless networking.

Position Title: Senior Identity Engineer Reports To: Director, Infrastructure Security The Senior Identity Engineer is accountable for securing identities and provisioning the right level of access for our user identities, machine identities, and admin identities. Key Responsibilities : 1. Leadership & Strategy: Exemplify security principles and culture Contribute to and implement a robust identity security strategy Effectively partner across security, technology, and business teams Provide technical and thought leadership for securing customer, user, administrator, and machine identities at CDK global Develop effective Identity security metrics and use them to drive improvements 2. Identity Security Standards: C ontinuously improve Identity and Access Governance and Privileged Access Management security standards and guidelines in alignment with risk and compliance requirements Measure and report on CDK s compliance with the above defined security standards Drive adoption of the security standards through close partnership with technology teams, design and implementation of new technologies , and building new or improving existing processes 3. Identity Security Architecture and Engineering: Architect, design, build, implement, and operate IAM, PAM, IGA, and Secrets Management solutions Architect, design, and consult on secure machine identity and secrets management architectural patterns to be used in modern applications and cloud environments Develop and implement effective privileged access architecture and strategies to reduce security risk Develop and implement an IGA strategy to automatically provision the right level of access to our users, maintain the right level of access through organizational and technology changes, and de-provision accounts at the right time Collaborate with product and technology teams on developing and implementing effective secrets management solutions 4. Identity Security Operations: Develop and operate processes for user account lifecycle management, secrets management, and email/collaboration security. Collaborate with Security Operations team to assure effective security monitoring and response capabilities for CDK identity and end user technologies Provide 24x7 tier 2/3 support for identity and end user security technologies Required Qualifications: Education: Bachelor s degree in Computer Science , Information Security, or a related field; or an equivalent experience Experience: Minimum of 4 years in identity and access management Strong background in privileged access management in hybrid on-premises/cloud environments, preferably in a technology/SaaS organization. Extensive experience in user lifecycle automation and access provisioning/validation automation - using modern IGA tools Experience collaborating with product and platform teams on secrets management to support application development and deployment.

Position Title: Identity Engineer Reports To: Director, Infrastructure Security The Senior Identity Engineer is accountable for securing identities and provisioning the right level of access for our user identities, machine identities, and admin identities. Key Responsibilities : 1. Leadership & Strategy: Exemplify security principles and culture Contribute to and implement a robust identity security strategy Effectively partner across security, technology, and business teams Develop effective Identity security metrics and use them to drive improvements 2. Identity Security Standards: C ontinuously improve Identity and Access Governance and Privileged Access Management security standards and guidelines in alignment with risk and compliance requirements Measure and report on CDK s compliance with the above defined security standards Drive adoption of the security standards through close partnership with technology teams, design and implementation of new technologies , and building new or improving existing processes 3. Identity Security Engineering: B uild, implement, and operate IAM, PAM, IGA, and Secrets Management solutions C onsult on secure machine identity and secrets management architectural patterns to be used in modern applications and cloud environments Develop and implement effective privileged access strategies to reduce security risk Collaborate with product and technology teams on developing and implementing effective secrets management solutions 4. Identity Security Operations: Develop and operate processes for user account lifecycle management, secrets management, and email/collaboration security. Collaborate with Security Operations team to assure effective security monitoring and response capabilities for CDK identity and end user technologies Provide 24x7 tier 2/3 support for identity and end user security technologies Required Qualifications: Education: Bachelor s degree in Computer Science , Information Security, or a related field; or an equivalent experience Experience: Minimum of 2 years in identity and access management Strong background in privileged access management in hybrid on-premises/cloud environments, preferably in a technology/SaaS organization. E xperience in user lifecycle automation and access provisioning/validation automation - using modern IGA tools Experience collaborating with product and platform teams on secrets management to support application development and deployment.

Position Title: Senior Network Security Engineer Reports To: Director of Infrastructure Security The Lead Network Security Engineer is accountable for securing CDK s network connecting thousands of CDK customers, ISVs, and OEMs - including perimeter, corporate, on-premises data center, public cloud, and 3 rd party networks . This individual plays a key technical leadership role in our network security strategy development, implementation, and operations . Key Responsibilities : 1. Leadership & Strategy: Exemplify security principles and culture Contribute to the d evelop ment and implement ation of the long-term network security strategy Effectively partner across security, technology, and business teams Develop effective metrics and use them to drive meaningful improvements 2. Network Security Standards: Contribute to the development and continuous improvement of network security standards and guidelines in Measure and report on CDK s compliance with network security standards Drive adoption of network security standards through close partnership with technology teams, collaborative roadmap alignment, and transparent reporting 3. Network Security Engineering: D esign, build, implement, and operate firewalls, VPNs, IDS/IPS, and other network security solutions Develop and implement effective zero trust network segmentation architecture and strategies to reduce security risk In collaboration with cloud technology and security teams, design and implement an effective cloud network security strategy using a mix of cloud native and 3 rd party solutions Use infrastructure as code and other methods to automate deployment of a consistent and secure network infrastructure Seek out opportunities to automate and standardize technology deployment and operations 4. Network Security Operations: Develop and operate processes for making firewall and network security configuration changes in accordance with network security standards Collaborate with Security Operations team to assure effective security monitoring and response capabilities for CDK networks Provide 24x7 tier 2/3 support for network security technologies Required Qualifications: Education: Bachelor s degree in computer science, information security, or an equivalent experience Experience: Minimum of 5 years in cybersecurity, with at least 3 years in network security . Strong background in network security architecture, design, and operations - preferably in a complex SaaS environment. Experience with Firewalls, routers, switches, IDS/IPS, SASE solutions, cloud networking, infrastructure as code, process automation, wireless networking.

Team Summary The Visa Asia Pacific Ethics and Compliance team manages Visas Compliance program in the Asia Pacific region. Our team provides robust, globally consistent programs and controls framework to manage compliance and regulatory risk and protect Visa s brand around the world. We drive an ethical culture through empowerment and accountability to do the right thing. We empower the business to achieve Visa s objectives legally and with integrity. What an Ethics and Compliance Officer does at Visa: As the E&C Officer youll be a critical partner to the business, providing pragmatic, solutions-oriented advice to ensure that Visa has effective, risk based business decision making, and performing review of key processes to ensure that the activities meet requirements of company policies, international standards and the obligations of regulations and laws of the United States and of those countries across India and South Asia (INSA). This position is based in Mumbai and will report to the Head of Ethics and Compliance for INSA. These activities include the following areas: Anti-Money Laundering (AML), Anti-Terrorist Financing (ATF) and Customer Due Diligence (CDD) Anti-Bribery and Anti-Corruption Data Privacy Information Security Anti-Trust and Competitive Intelligence, and Other specific compliance requirements of regulators who have regulatory authority over Visa operations. In addition, this role also carries responsibility for ensuring the highest standards of business ethics, as set out in Visa s Code of Business Conduct and Ethics. The core responsibilities for this role are as follows: Provide support to the Principal Officer (PO) for managing and complying with Reserve Bank of India and Financial Intelligence Unit India (FIU-IND) obligations including various reporting requirements. Execution of due diligence responsibility requirements of the Anti-Bribery/Anti-Corruption Program, Anti-Money Laundering/Anti-Terrorist Financing & Sanctions Programs, including third party due diligence Support of Visa s Financial Intelligence Analytics activities through additional and enhanced due diligence applied Anti-Money Laundering/Anti-Terrorist Financing & Sanctions cases, including direct communications and requests for information from clients and partners Prepare and support various management reporting requirements including local dashboard and metrics reporting Continually identify opportunities for efficiencies while ensuring sufficient controls are in place, partner with the business to drive process and control improvements Handle queries on the Compliance Program from the business, support functions, other control groups, regulators, clients and partners What you will need: Bachelors degree or other higher education qualifications Minimum 5 years of experience in management of compliance programs and controls within the financial services industry and familiarity in the review and dis

Lead Technical Program Manager (Waterfall methodology, customer service-oriented, stakeholder management, multi-project handling, reporting; good to have infrastructure background.) Overview: Overview Are you a technical program manager who wants to work for a company that offers above and beyond benefits, including paid parental leave, flexible work hours, gift matching, and even volunteer incentivesDo you want to work in an inclusive and nurturing culture that encourages your own professional learning and development At Mastercard, our industry expertise is enhanced by our commitment to being a force of good in the world. We do well by doing good. Our core values of trust, partnership, agility, and thoughtful risk-taking are displayed in everything we do. Our culture of collaboration and inclusion makes our company a place where the best people choose to be. Come join us! We are on a journey to make it trivially easy for companies to establish, manage, and grow their relationship with Mastercard. Providing internal teams and systems a source-of-truth for customer data through a suite of experiences, services, and data. Role We are looking for experienced technical program management professionals to join our team and help us build towards the future. Our Technical Program Managers (TPMs) conceptualize, rationalize, and drive multiple simultaneous projects to deliver engineering work across the portfolio in our scrum execution model. In this role, you get to dive as deep as you want into the tech stack, the integration patterns, the organizational capabilities, and the company-wide assets that can be leveraged to provide technical solutions to customer problems. You will contribute to the strategies, design choices, and even the cloud infrastructure necessary to build comprehensive, believable, and achievable execution plans to deliver high-profile new features and capabilities for our customers. You may drive the execution of a feature through the full stack or may drive a project which spans multiple teams and integrations, reporting meaningful status along the way. All About You Demonstrated ability to operate with independence and autonomy Experience defining and building cloud-native software products as a platform at scale with a deep understanding of those platforms capabilities and underlying technologies Demonstrated experience breaking down problems, organizing work, planning sprints, and delivering technical programs in agile delivery models (Scrum, Kanban, etc.) Experience working on programs to define and build cloud-native software products as a platform at scale Proven track record of data-driven decision-making and applying continuous improvement methodologies across teams Can debate the delivery strategy with business teams, architects, engineers, and designers Can communicate to executives, peers, and staff with impact, eloquence, and authenticity Demonstrated experience building relationships, partnering with and influencing dependent teams while commanding the respect of the individuals you work with across the organization Technical program delivery experience

Job Overview: Are you ready to drive excellence in risk management and assurance at a globally respected technology leaderAt Arm, our ISO Internal Audit team is essential in ensuring compliance, continuous improvement, and the effectiveness of our quality, information security, and environmental management systems. Our audit function not only provides ISO compliance assurance but also contributes to the organization s processes by finding opportunities for improvement. Responsibilities: Deliver assigned audit activities under direction of audit lead. Complete and document internal audits aligned with ISO 9001. Collaborate with audit action owners to ensure audit recommendations are effectively implemented. Prepare detailed audit reports, clearly articulating findings, risks, and corrective actions. Support Arm during external audits and certification processes. Provide guidance to internal teams on ISO compliance requirements and best practices. Stay current with evolving ISO standards and industry regulations, proactively applying this knowledge within the audit process. Evaluate compliance with ISO 27001 and ISO 14001 standards, delivering insights and recommendations for continuous improvement. Required Skills and Experience: Certified ISO 9001 Lead Auditor. Bachelor s degree in Engineering, Science or a related field. 2 - 4 of years of experience conducting internal audits, with significant expertise auditing ISO 9001 management systems. Demonstrated experience within the semiconductor or closely related industries. Clear communicator with strong analytical, communication and interpersonal skills. Ability to work independently and demonstrate a growth mindset, drive collaboration across diverse functions, and actively contribute to shaping Arm s risk and quality culture. Nice To Have Skills and Experience: ISO 27001 and/or ISO 14001 certifications. Familiarity and experience with Institute of Internal Auditors (IIA) methodologies and standards. Proven ability to lead improvement initiatives in a complex technology environment. In Return: Arm is a global organization powered by a diverse community of high-impact collaborators. By enabling a dynamic, inclusive, meritocratic, and open workplace where everyone can grow and succeed, we encourage our people to share their outstanding contributions to Arm s success in the global marketplace. Equal Opportunities at Arm: #LI-PC1 Accommodations at Arm At Arm, we want to build extraordinary teams. . To note, by sending us the requested information, you consent to its use by Arm to arrange for appropriate accommodations. All accommodation or adjustment requests will be treated with confidentiality, and information concerning these requests will only be disclosed as necessary to provide the accommodation. Although this is not an exhaustive list, examples of support include breaks between interviews, having documents read aloud, or office accessibility. Please email us about anything we can do to accommodate you during the recruitment process. Equal Opportunities at Arm

What Youll Do We are seeking a highly experienced Principal, Application Security Engineer to lead and evolve our global application security strategy. This role is critical to ensuring our products and platforms are built securely from the ground up and resilient to an evolving threat landscape. You will partner with engineering, product, DevOps, and Security teams to embed security into our SDLC, drive secure coding practices, and influence stakeholders and leaders across the organization. Responsibilities: Develop application security strategies across the global enterprise. Design and implement secure applications and consistently enhance the software development life cycle (SDLC) process. Conduct thorough security assessments, including static and dynamic application security testing (SAST/DAST), threat modeling, web/mobile application and API penetration testing, and application architecture design reviews. Partner with teams such as security operations, DevOps, development, networking, IT, and product teams to remediate issues and ensure a strong security posture. Contribute to the development and automation of security testing tools and processes. Manage third party penetration testing services. Deliver threat modeling training to development teams to consistently enhance product security and reduce risk. Assist with incident response (IR) activities that may relate to application security. What You May Need to be Successful: 7+ years of experience with some combination of application security engineering, threat modeling, penetration testing, web application/API development (.NET/C#, Java, JavaScript), system administration, networking, and information security. Proficiency with web application/API testing, static code analysis, and web application vulnerability scanners. Relevant industry certifications from organizations such as OffSec, SANS, or isc2. Previous technical security engineering role that involved mentorship or training. Effective communication skills and experience with presenting to a technical audience and executive leadership. Work Location: Mumbai/Bangalore (remote) Joining time needed: not exceeding 30 days

Be part of the solution at Technip Energies and embark on a one-of-a-kind journey. You will be helping to develop cutting-edge solutions to solve real-world energy problems. We are currently seeking Cybersecurity Risk Analyst to join our team based in Noida. The IT Risk Analyst reports directly to the IT Risk Manager and is in charge for Risk identification, assessment, mitigation and follow-up processes for both IT and OT environments. About us: Technip Energies is a global technology and engineering powerhouse. With leadership positions in LNG, hydrogen, ethylene, sustainable chemistry, and CO2 management, we are contributing to the development of critical markets such as energy, energy derivatives, decarbonization, and circularity. Our complementary business segments, Technology, Products and Services (TPS) and Project Delivery, turn innovation into scalable and industrial reality. Through collaboration and excellence in execution, our 17,000+ employees across 34 countries are fully committed to bridging prosperity with sustainability for a world designed to last. Global Business Services India At Technip Energies, we are continually looking for ways to become more efficient, and ways to improve our quality, customer focus and cost competitiveness. The Global Business Services (GBS) organization is key to executing this strategy, by standardizing our processes and centralizing our services. Our Vision : A customer-focused, cost-efficient, innovative, and high performing organization that drives functional excellence. GBS provide streamlined and consistent services to our internal customers in the domain of Finance and Accounting, Human Resources, Business Functional Support, Procurement and Legal. Our services fit our global organization and allow us to focus on business strategy and priorities. GBS also maintains continuous improvement plans to enhance our customer-oriented service culture. Responsibilities: Responsible for Digiteam and cybersecurity risk identification, assessment, mitigation and follow-up Maintains the documentation relating to risk management processes. Responsible for maintaining a Risk Register at group level Responsible for risk management Indicators (KRI) calculation and communication relating to the whole cybersecurity department. Collaborate with Security Operations Center (SOC) teams to analyze incident trends and integrate findings into risk assessments. Support the development and implementation of risk treatment plans, including technical controls and compensating measures About you At least 5 years of experience in IT Risk Management Certifications (preferred but not mandatory): ITIL, CRISC (Certified in Risk and Information Systems Control), CISM (Certified Information Security Manager), ISO 27005 Risk Manager Certification or equivalent on filed experience. Hands-on experience conducting cybersecurity risk assessments in hybrid environments (on-premises and cloud). Experience working with DevSecOps teams to integrate risk management into CI/CD pipelines. Familiarity with incident response processes and post-incident risk re-evaluation. Technical Skills Strong understanding of cyber threat intelligence and its application in risk management. Familiarity with GRC platforms (e.g., SureCloud, ServiceNow GRC) for risk tracking and reporting. Experience with vulnerability management tools (e.g., Tenable, Qualys, Rapid7) and interpreting scan results. Knowledge of cloud security frameworks (e.g., CSA CCM, Azure Security Benchmark, AWS Well-Architected Framework). Understanding secure architecture principles and ability to review system designs for risk exposure. Familiarity with compliance frameworks such as GDPR, SOX, and industry-specific standards (e.g., IEC 62443 for OT). Familiarity with ISO2700x, NIST, CIS frameworks. Your career with us: Working at Technip Energies is an inspiring journey, filled with groundbreaking projects and dynamic collaborations. Surrounded by diverse and talented individuals, you will feel welcomed, respected, and engaged. Enjoy a safe, caring environment where you can spark new ideas, reimagine the future, and lead change. As your career grows, you will benefit from learning opportunities at T.EN University, such as The Future Ready Program, and from the support of your manager through check-in moments like the Mid-Year Development Review, fostering continuous growth and development What s next Once receiving your application, our Talent Acquisition professionals will screen and match your profile against the role requirements. We ask for your patience as the team completes the volume of applications with reasonable timeframe. Check your application progress periodically via personal account from created candidate profile during your application. We invite you to get to know more about our company by visiting and follow us on LinkedIn , Instagram , Facebook , X and YouTube for company updates. #LI-AP1

Team Risk About Navi Navi is one of the fastest-growing financial services companies in India providing Personal Home Loans, UPI, Insurance, Mutual Funds, and Gold. Navis mission is to deliver digital-first financial products that are simple, accessible, and affordable. Drawing on our in-house AI/ML capabilities, technology, and product expertise, Navi is dedicated to building delightful customer experiences. Founders Sachin Bansal Ankit Agarwal Know what makes you a Navi_ite Perseverance, Passion and Commitment Passionate about Navi s mission and vision Demonstrates dedication, perseverance and high ownership Goes above and beyond by taking on additional responsibilities Obsession with high quality results Consistently creates value for the customers and stakeholders through high-quality outcomes Ensuring excellence in all aspects of work Efficiently manages time, prioritizes tasks, and achieves higher standards Resilience and Adaptability Adapts quickly to new roles, responsibilities, and changing circumstances, showing resilience and agility Key responsibilities As Navi operates in the regulatory space, this role requires interpreting and helping implement regulations related to cyber security by Reserve Bank of India, IRDAI and SEBI, as well as any other applicable regulatory guidance related to the service offerings issued by relevant institutions Further to the point above, ensure on-going monitoring and compliance with existing regulatory expectations across these dimensions Ensuring that information security principles, policies, frameworks, standards and controls are defined, implemented and managed effectively. Partner and collaborate extensively with cross-functional teams, such as Engineering, Infrastructure, IT, Legal, and help minimize information security risks Architect and deliberate on the solutions that are compliant with relevant regulatory cybersecurity requirements Conduct and review results of Technology Risk Assessment, recommending mitigation strategies to bring the Risk to appropriate levels Naviis looking for aAssociate Manager Information Security to be part of the information security Ensure readiness of the organization for internal and external audits by keeping all documents, evidences, ready If required, represent Navi in Board and Board Committee meetings, as well as in discussions with regulators Conduct Security awareness programs, train personnel on data security privacy related processes and responsibilities Review / conduct Third Party Risk Assessments Vendor assessments before onboarding Review security solutions / controls implemented by Tech / Engineering teams, controls at data center, cyber / information security incidents, IT BCP and DR drills, cloud security controls Identify and define Security KPIs including weekly, monthly reports and update Security Dashboards Required Skills 4 -7 years of experience working in information security or compliance Prior experience in the Fintech/Startup industry and knowledge of one of the regulatory compliances like PCI DSS, RBI Master Directives, IRDA, SEBI cyber security guideline is required Hands-on approach in solving complex security problems Experience with Cyber Security Risk Management frameworks like ISO27001, NIST SP 800-37, etc Cyber Kill Chain, MITRE ATT&CK, or other relevant frameworks Working knowledge of Cloud environments like AWS, GCP is beneficial Exposure to Agile methodologies, DevOps, Cloud technologies is beneficial Ability to multi-task and meet deadlines, and to prioritize in a highly dynamic workenvironment Ability to balance risk, potential impact, resourcing, business drivers, and timelines Excellent verbal and written communication skills

Cloud Operations Engineer Onit Pune, Maharashtra, India Full time Onit Inc is looking for a Cloud Operations Engineer to join our team in Pune to help manage and maintain a diverse infrastructure across numerous geographical locations. To be successful in this role, great people skills are a must, as well as a passion for technology. The individual we seek is bright, creative and a problem solver. You must be able to multi-task in a fast-paced environment and be a self-starter with the ability to work independently. Responsibilities Monitor performance and capacity of Onit systems. Monitor & Troubleshoot for hardware, software and environmental alerts or malfunctions in the framework of SLA. Monitor security alerts from multiple sources. Triage and troubleshoot problems as they arise, following runbooks and standard operating procedures. Track all issues from start to finish and document in detail all resolutions, across trouble ticketing system and engineering runbooks. Escalate issues too large or complex for quick troubleshooting to on-call second-and third-level engineers and Onit management. Monitor and Troubleshoot AWS Environment alerts. Attend Weekly Meetings with the team for updates on work. Ready to work in shifts. Requirements Bachelor s degree in Computer Science or equivalent experience is required. 2+ years experience with Red Hat Enterprise or CentOS 6.x/7.x required. A solid understanding of the components that make up production systems (memory, cpu, disk space, disk i/o, network i/o, etc.) is required. Some experience with AWS required. Experience with SIEM/event correlation systems like Splunk, ELK, etc. required. Excellent troubleshooting skills required. Excellent written and verbal communication skills required. Information security experience a plus. About Onit : Onit is a global leader of enterprise workflow solutions for legal, compliance, sales, IT, HR, and finance departments. Our solutions transform best practices into smarter workflows, better processes, and operational efficiencies. With a focus on enterprise legal management, matter management, spend management, contract management, and legal holds, we operate globally and help transform the way Fortune 500 companies and billion-dollar legal departments bridge the gap between systems of record and systems of engagement. We help customers find gains in efficiency, reduce costs, and automate transactions faster.

Job Description : Information Security Officer About Open: OPEN is a leading connected finance platform that empowers finance teams to manage their cashflow better by managing all their business finance systems, right from banking to accounting ERP, payments,CRM, HRMS etc. - in one place. OPEN, Indias 100th Unicorn, has been awarded the Best Workplace 2024 by IEEE in 2024. And was recognised by Forbes India and D Globalist s as Top 10 companies among 200 Companies and was featured in IDFC FIRST Private Hurun Indias Top 200 Self-made Entrepreneurs of the Millennia 2023. OPEN was also the recipient of Best Digital Banking Solution from the Global Fintech Fest in 2022 and had won the Most Innovative Neo Bank & the Most Innovative Digital Bank at the Indian Fintech Awards in 2021 & Internet andMobile Association of India (IAMAI) respectively. We are currently home to some of the smartest & brightest 500+ minds in the fintech space. OPEN is a Series D funded startup backed by leading international funds like Temasek, Google, Tiger Global, IIFL Finance Ltd.,SBI Holdings Japan, 3one4 Capital, Speed Invest, Beenext, Tanglin Venture Partner Advisors & Angellist to name a few. And to build and strengthen this superpower, we re on the lookout for an amazing Information Security Officer. Experience : 9+ years Location: Bangalore Responsibilities: Maintain and update information security related compliances such as ISO 27001, GDPR, SOC 2 ,, PCIDSS, RBI SAR on PAPG and DL Conduct periodic risk assessments and internal audits and vendor risk assessments Maintain compliance related documents across all scoped functions; Provide continuous support to the teams in their compliance journey. Perform ongoing refactoring of implemented controls. Liaise closely with the IT and Engineering team to implement best in class information/data security/privacy controls. Identify opportunities to adopt innovative technologies and best practices. Be the information security SPOC for our Regulatory Body ( RBI) external banking clients for cyber security related queries and closure. You should be able to prepare detailed data flow diagrams and documents for both clients and internal Addressed and remediated audit findings through process improvements, policy updates, and technical controls to ensure compliance and reduce risk Build a team of security officers to dedicatedly work for each of our banking clients for maintaining compliance and supporting banks queries. Requirements 9+ years of experience in implementation and maintenance of information security related compliances. Excellent understanding of IT , SDLC ,Devops processes. Develops and delivers security awareness training and conducts phishing simulations to reduce user risk Very good understanding of cloud architecture/technologies like kubernetes,docker, infrastructure as a code etc is a plus. Understanding of cloud platforms like AWS is a must. You should be able to communicate efficiently with devops teams. Should be proficient conducting internal audits. Understanding of security engineering ( VAPT, devsecops etc ) and tools CSPM,DLP,WAF,EDR,SIEM,ASM ) is required. Should be able to lias with security engineering teams, vendors ,incident response teams for smooth implementation of compliances. Why work at Open You will be part of the early tribe that is changing the way business banking rolls. Every atom of your work will impact the way millions of businesses are run. You will work with some of the brightest minds who will celebrate your quirks. You will find growth & fun to be two-way streets - how you thrive and the way you jive, in turn drives Open.

Principal Application Security Engineer-First Advantage (Mumbai/Bangalore) Bangalore, Karnataka, India Play Video Job Info Why First Advantage Apply What Youll Do We are seeking a highly experienced Principal, Application Security Engineer to lead and evolve our global application security strategy. This role is critical to ensuring our products and platforms are built securely from the ground up and resilient to an evolving threat landscape. You will partner with engineering, product, DevOps, and Security teams to embed security into our SDLC, drive secure coding practices, and influence stakeholders and leaders across the organization. Responsibilities: Develop application security strategies across the global enterprise. Design and implement secure applications and consistently enhance the software development life cycle (SDLC) process. Conduct thorough security assessments, including static and dynamic application security testing (SAST/DAST), threat modeling, web/mobile application and API penetration testing, and application architecture design reviews. Partner with teams such as security operations, DevOps, development, networking, IT, and product teams to remediate issues and ensure a strong security posture. Contribute to the development and automation of security testing tools and processes. Manage third party penetration testing services. Deliver threat modeling training to development teams to consistently enhance product security and reduce risk. Assist with incident response (IR) activities that may relate to application security. What You May Need to be Successful: 7+ years of experience with some combination of application security engineering, threat modeling, penetration testing, web application/API development (.NET/C#, Java, JavaScript), system administration, networking, and information security. Proficiency with web application/API testing, static code analysis, and web application vulnerability scanners. Relevant industry certifications from organizations such as OffSec, SANS, or isc2. Previous technical security engineering role that involved mentorship or training. Effective communication skills and experience with presenting to a technical audience and executive leadership. Work Location: Mumbai/Bangalore (remote) Joining time needed: not exceeding 30 days

Jun 14, 2025 Location: Mumbai - I-Think Designation: Assistant Manager Entity: Deloitte Touche Tohmatsu India LLP Your potential, unleashed. India s impact on the global economy has increased at an exponential rate and Deloitte presents an opportunity to unleash and realise your potential amongst cutting edge leaders, and organisations shaping the future of the region, and indeed, the world beyond. At Deloitte, your whole self to work, every day. Combine that with our drive to propel with purpose and you have the perfect playground to collaborate, innovate, grow, and make an impact that matters. The team Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure, vigilant, and resilient not only by looking at how to prevent and respond to attacks, but at how to manage cyber risk in a way that allows you to unleash new opportunities. Embed cyber risk at the start of strategy development for more effective management of information and technology risks Your work profile As Assistant Manager in our Cyber Team you ll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations: - We are looking for an experienced Security Operations L3 Engineer to provide advanced-level support in monitoring, detecting, and responding to cybersecurity incidents. The L3 engineer will act as a senior escalation point, performing detailed threat analysis, handling complex incidents, and providing guidance to junior SOC team members. The ideal candidate will have deep expertise in incident response, threat hunting, and security monitoring tools, along with the ability to lead investigations and contribute to process improvements. Technology : QRadar , Demisto/XSOAR , Qualys, MITRE Framework Attack Methodology Skills & Knowledge Sound Cyber Security Principles and well versed in security domains of Endpoint , Network, Database, Cloud Security technologies like IPS, WAF, Firewall, Deception, Cloud Security, AV, EDR, . Conduct senior level log analysis, proactive monitoring, mitigation & response to network & security incidents. Triage security events and carry out incident response steps. Implement & Maintain Extensive Security Operation Policies and procedures documentation including AWS cloud Proactively Hunt & research potential malicious activity using tool like Cortex, Shodan, Qrdar etc. Identify Indicator of Compromise through static & dynamic analysis of commodity and 0-day malware Perform advanced security event detection and threat analysis for complex and/or escalated security events Operational Abilities Lead a team of L1 and L2 engineers in shift. Work balancing of tickets across the shifts. Ensure shift handover. Manage the Quality audits of the L1 and L2 offense analysis. Support the Project Manager with escalations and timely RCA of incidents. Training of L1 and L2 resources on latest attack vectors and log analysis. Work with the SIEM Engineering team to fine tune the use cases and content on the SIEM platform. Bring down the false positives to a manageable level. Manage the work pressure on the project and keep the team alert and manage their work life balance. Ensure timely preparation of daily/weekly/monthly reports. Desired qualifications Bachelor s degree in Computer Science, Cybersecurity, or related field, or equivalent experience. 5+ years of experience in security operations, with at least 2 years in an L3 or senior-level role. Strong hands-on experience in security monitoring, incident response, and threat hunting. Proficiency with SIEM tools (QRadar, Splunk, ArcSight, etc.), EDR solutions, and other security monitoring tools. Expertise in network security, malware analysis, intrusion detection, and digital forensics. Experience working with frameworks such as MITRE ATT&CK, NIST, and SANS Incident Response. Preferred Certifications Bachelors or Masters in a technical discipline Computer SciencebComputer Engineering / any equivalent bachelor s or Masters in Information Security Domain. Minimum of 5 years of relevant experience in SOC, out of which at least 2 years in CDR tool (File upload solution) like OPSWAT, Trendmicro. Advanced Certification in CDR tool. Certification in CEH / CCNA. Location and way of working Base location: Nagpur Professional is required to work from office

Position Title: Security Operations Engineer Reports To: Director of Security Operations Security Operations Engineer is a technical subject matter expert responsible for executing key functions of CDK s Security Monitoring and Response strategy with an automation first mindset . This individual plays a key technical role in our Security Operations organization and enables effective incident response via automated workflow s and efficient threat detection content . Key Responsibilities : 1. Technical Leadership : Exemplify security principles and culture Develop, implement, and tune automation playbooks that enable incident response Effectively partner across security, technology, and business teams Provide technical leadership to the security operations team Develop effective metrics and use them to drive meaningful improvements 2. Automated Detection Response Work with security operations team members to identify response actions which can be automated to drive efficiency throughout response Build automation workflows to contribute to auditable and efficient incident response Drive continuous improvement in CDK s detection capability using automation, threat and anomaly detection, coverage assurance, and external threat intelligence Build threat detection queries based on attacker techniques and threat intelligence Support and tune threat detection content and automation workflows based on metrics and security operations feedback 3. Incident Response: Develop incident response playbooks and drive response playbook automation, regularly test playbook effectiveness and drive improvement Lead response to medium or higher criticality impact security incidents in accordance with the incident response plan, and effectively coordinate with internal and external parties Effectively triage and identify root cause of security alerts and incidents Serve as a technical leader for significant security incidents Assure 24x7x365 incident response coverage and escalation processes Regularly update the list of likely security incident scenarios using external threat intelligence, collaboration with internal technology teams, and other data sources 4. Security Posture Improvement Use offensive security techniques and exercises to identify detection and response gaps and drive remediation Regularly practice incident response plans and procedures in collaboration with internal and external stakeholders Required Qualifications: Education: Bachelor s degree in computer science, information security, or an equivalent experience Experience: Minimum of 6 years in cybersecurity, with at least 3 years in a developer role Expert technical expertise in python, javascript , and powershell Experience building SOAR workflows Experience building and tuning threat detection content Experience leading the response to enterprise security alerts and incidents Strong background in security monitoring, automation, and incident response, preferably in a complex SaaS environment Experience with SIEM tools, process automation, cloud environment monitoring, IDS/IPS, firewalls, EDR solutions, MDR/MSSP providers

Position Title: Security Operations Engineer Reports To: Director of Security Operations Security Operations Engineer is a technical subject matter expert responsible for executing key functions of CDK s Security Monitoring and Response strategy with an automation first mindset . This individual plays a key technical role in our Security Operations organization and enables effective incident response via automated workflow s and efficient threat detection content . Key Responsibilities : 1. Technical Leadership : Exemplify security principles and culture Develop, implement, and tune automation playbooks that enable incident response Effectively partner across security, technology, and business teams Provide technical leadership to the security operations team Develop effective metrics and use them to drive meaningful improvements 2. Automated Detection & Response Work with security operations team members to identify response actions which can be automated to drive efficiency throughout response Build automation workflows to contribute to auditable and efficient incident response Drive continuous improvement in CDK s detection capability using automation, threat and anomaly detection, coverage assurance, and external threat intelligence Build threat detection queries based on attacker techniques and threat intelligence Support and tune threat detection content and automation workflows based on metrics and security operations feedback 3. Incident Response: Develop incident response playbooks and drive response playbook automation, regularly test playbook effectiveness and drive improvement Lead response to medium or higher criticality impact security incidents in accordance with the incident response plan, and effectively coordinate with internal and external parties Effectively triage and identify root cause of security alerts and incidents Serve as a technical leader for significant security incidents Assure 24x7x365 incident response coverage and escalation processes Regularly update the list of likely security incident scenarios using external threat intelligence, collaboration with internal technology teams, and other data sources 4. Security Posture Improvement Use offensive security techniques and exercises to identify detection and response gaps and drive remediation Regularly practice incident response plans and procedures in collaboration with internal and external stakeholders Required Qualifications: Education: Bachelor s degree in computer science, information security, or an equivalent experience Experience: Minimum of 6 years in cybersecurity, with at least 3 years in a developer role Expert technical expertise in python, javascript , and powershell Experience building SOAR workflows Experience building and tuning threat detection content Experience leading the response to enterprise security alerts and incidents Strong background in security monitoring, automation, and incident response, preferably in a complex SaaS environment Experience with SIEM tools, process automation, cloud environment monitoring, IDS/IPS, firewalls, EDR solutions, MDR/MSSP providers