5028 Information Security Jobs - Page 41

Mandatory Skills: -Programming skills in Dot Net, Java, Go (Any Skill is fine) with Penetration & Security testing is a must. Essential Duties and Responsibilities Provides support to cross-functional teams, with a high attention to detail Researches, analyzes, and documents findings May coach, review, and/or delegate work to other team members Conducts security assessments, threat modeling, and vulnerability reporting and develops security architecture patterns for implementing new solutions and products Performs application security reviews for our products and services to identify and/or validate vulnerabilities and attack chains. Communicates findings, attack paths, and recommendations to technical and executive stakeholders through written reports and verbal presentations Develops and maintains methodologies for penetration testing Assists with decision-making, prioritization, and support throughout the secure software development life cycle (s-SDLC) on a variety of security domains Participates in requirements gathering, secure coding and configuration, software testing, and third-party component management and defect management Serves as point of contact on secure development and security best practices Consults cross-functionally to embed security gates into their existing SDLC, leveraging automation when possible Drives the development of standards, practices, and processes to establish, manage, and report adherence to application security requirements and best practices Attends regular stand-ups and planning meetings to build positive relationships with key stakeholders Serves as the security authority on assigned products, ensuring the security controls are functioning, security requirements are provided before coding begins, and that vulnerabilities are fixed within their SLAs Ensures s-SDLC controls are embedded in assigned product and serves as control owner for a subset of these controls Engages in application and domain-specific threat modeling, as well as attack surface analysis and reduction. Educational/Vocational/Previous Experience Recommendations: Ability to manage projects and processes independently with limited supervision Recognized subject matter expert of applicable work area Ability to situationally adapt and understand new technology/processes as per business requirement Ability to identify application vulnerabilities and advise on appropriate remediation Solid understanding of common languages such as .NET, Python, JavaScript, Go, etc. Strong foundation in core information security principles and concepts (encryption, authentication, etc.) Effective communication skills, with the ability to explain sophisticated security topics in simple terms to technical and non-technical stakeholder Work locations: Pune, Mumbai, Bangalore Hybrid and also complete Remote option available. Work Type: Hybrid and Remote

Consultant/Senior Consultant || SOX || Gurgaon || (Immediate joiners preferred) What are we looking out for: Skilled and detail-oriented SOX Compliance and Internal Audit Consultant who will play a critical role in ensuring compliance with SOX requirements through the design, execution, and assessment of internal controls over financial reporting (ICFR). Job Profile (Non IT SOX): Responsible for executing client-related engagements in the areas of SOX 404 & Clause 49 assistance, Governance, Risk & Compliance (GRC), Internal Audits, Process Reviews, Standard Operating Procedures,. Responsible to discuss with risk owners for identification and assessment of key risks and development of mitigation plans Perform gap assessments by conducting detailed walkthroughs with process owners and identifying opportunities for automation, process transformation Review and assess the design of internal controls to ensure they address key risks and comply with SOX requirements. Develop detailed process narratives, risk control matrices (RCMs), and flowcharts. Information Produced by the Entity (IPE) Testing - Evaluate the reliability of information used in the execution of controls; perform detailed testing to validate the accuracy, completeness, and integrity of IPEs; ensure that data sources and logic align with control objectives. Management Review Controls (MRC) testing Test the design and operating effectiveness of Managements review of financial and operational data; evaluate the documentation, criteria, and frequency of management reviews; assess the quality of evidence and identify any gaps in the review process. Working on SOX readiness Assess the existence, efficiency, and effectiveness of the SOX control environment by directing control/process optimization. Collaborate with cross-functional teams, including accounting, IT, and operations, to ensure control objectives are met. Assist clients in preparation for external audits by addressing auditor inquiries and providing necessary documentation. Inspect companys policies and procedures; perform evaluation of control design; and carry out assessment of the effectiveness of company internal controls concerning business processes and systems. Review of working papers & client folders. Suggest ideas on improving engagement productivity and identify opportunities for improving client service. Create/manage status trackers and report the statuses and/or challenges to the Project Manager/Director, clients and all other stakeholders over status calls. Ensure compliance with engagement plans and internal quality & risk management procedures. Keep abreast of emerging technologies with the IT environment and help in developing audit plans to counter whatever risks that might be associated with the application of such technologies. Assist seniors & managers in developing new methodologies and internal initiatives. Create a positive learning culture, coach, counsel and develop junior team members. Attention to detail and mentor young interns and analysts within the practice. Perform other duties that may be assigned by management. Qualification: Graduate/ Post-Graduates

The key responsibilities are to handle a wide range of legal matters, including money recovery, property possession, criminal cases, financial frauds (cyber cases), and property registrations. Job Description Responsibilities and Accountabilities: Handling of cases like Money Recovery Recovery of Property possession, Handling of Criminal Matters. Financial Frauds (Cyber Cas es) Tools & Resources required: Desktop Mobile Job Specifications Qualification(s): Law degree (LLB) or equivalent qualification Experience Nature of Experience: Proven experience (3-5 years) in handling a diverse range of legal matters including civil, criminal, and property law. Length of Experience: 4-6 years Skill Set & Personality Traits required: Good Liaoning skills in the police station, revenue and other government departments. Good Convincing skills Strong understanding of legal procedures, court rules, and regulations. Ability to work independently and as part of a team. Strong interpersonal skills and the ability to build rapport with clients and government officials. Location: Chennai Age Group: 25-34 years

We are looking for a Senior Security Architect specializing in Information Security to join our team in Gurgaon/Gurugram. In this role, you will be responsible for designing, implementing, and enhancing our enterprise security architecture across on-premises and cloud environments. Your expertise will be crucial in ensuring the security of our IT infrastructure and technology adoption, with a focus on emerging AI/ML technologies. You will play a key role in integrating security best practices across vulnerability management, secure software development, incident management, and security operations. Your responsibilities will include defining and improving the enterprise security architecture strategy, providing guidance on secure IT and cloud architecture, evaluating AI/ML technologies for security risks, recommending security technologies and controls, managing vulnerability and patch management, integrating security principles into the software development lifecycle, enhancing incident management processes, collaborating with cross-functional teams, conducting threat modeling and risk analysis, maintaining architecture documentation, evaluating third-party tools and solutions, staying updated on security trends, and supporting other information security activities as assigned. The ideal candidate will have 7-12 years of experience in information security architecture, expertise in secure architecture design for complex IT environments and multi-cloud platforms, hands-on knowledge of security technologies, familiarity with security frameworks, experience in threat modeling and risk assessment, proficiency in vulnerability management, patch management, application security, secure SDLC, and incident management, as well as excellent communication and collaboration skills. Preferred certifications for this role include ISSAP, CISSP, CCSP, CISM, CISA for Information Security & Architecture, AWS Certified Security - Specialty, Microsoft Certified: Azure Security Engineer Associate, Google Cloud Professional Cloud Security Engineer for Cloud Security, and Certified AI Security Professional, Google Cloud Professional Machine Learning Engineer, Microsoft Certified: Azure AI Engineer Associate for AI/ML Security. Candidates should hold a Bachelors or Masters degree in Computer Science, Cybersecurity, Information Technology, or a related discipline. If you are passionate about information security, have a strong background in security architecture, and possess the necessary skills and qualifications, we encourage you to apply for this position.,

You will be responsible for establishing the right Key Performance Indicators (KPIs) and tracking performance against them. Your role will involve maintaining documentation of Service Level Agreements and reviewing them for accuracy. You will coordinate information sharing with vendors following established procedures and reporting requirements. Additionally, you will be resolving technical and general employee inquiries. A successful candidate will have a proven track record in handling employee inquiries effectively. As part of your corporate security responsibility, you are expected to adhere to Mastercard's security policies and practices. It is crucial to ensure the confidentiality and integrity of the information accessed. Any suspected information security violation or breach must be reported promptly. Furthermore, you are required to complete all periodic mandatory security trainings in accordance with Mastercard's guidelines.,

You could work anywhere, but at Sagent, we offer an inspiring and impactful environment where you can make a difference while enjoying what you do. Our mission is to simplify and secure loans and homeownership for all US consumers, and by joining us, you become an essential part of this journey. As an Information Security (Infosec) Engineering Manager at Sagent, you will lead a team of security professionals dedicated to ensuring the safety of our applications, systems, and infrastructure. Your role will involve overseeing DevSecOps, threat analysis, application security, and BCP/DR functions, aligning them with the organization's objectives. Key Responsibilities: 1. Team Leadership: - Lead, mentor, and manage teams focusing on DevSecOps, threat analysis, application security, and BCP/DR functions. - Cultivate a culture of continuous learning and improvement within the teams. 2. Security Strategy Development: - Create and execute a comprehensive security strategy that aligns with business goals and regulatory requirements. - Promote the adoption of security best practices company-wide. 3. DevSecOps Management: - Supervise the integration of security tools and practices into CI/CD pipelines using tools like Checkmarx, Azure DevOps, and Terraform. - Ensure secure software development practices and compliance during code deployment. 4. Threat Analysis and Incident Management: - Manage threat analysts in identifying and mitigating security threats using tools like Rapid7 and Falcon CrowdStrike. - Respond to security incidents and conduct post-incident analysis for process improvement. 5. Application Security: - Collaborate with developers to incorporate application security solutions and maintain secure coding standards. - Conduct regular security assessments and vulnerability scans. 6. BCP/DR Planning: - Develop and maintain business continuity and disaster recovery plans to ensure operational resilience. - Regularly test BCP/DR plans for effectiveness and process enhancement. 7. Stakeholder Collaboration: - Work closely with engineering, product, and IT teams to embed security practices across all operations. - Effectively communicate complex security topics to non-technical stakeholders. 8. Innovation and Continuous Improvement: - Stay informed on emerging threats, vulnerabilities, and security technologies. - Drive ongoing enhancement of processes and tools to boost the organization's security posture. Qualifications: - Bachelor's or Master's degree in Cybersecurity, Computer Science, or related field. - Minimum 14 years of cybersecurity experience, with at least 3 years in a managerial role. - Proficiency in tools such as Checkmarx, Terraform, Azure, and Rapid7. - Deep knowledge of cloud security, application security, and DevOps practices. - Proven track record in designing and implementing BCP/DR strategies. - Strong leadership, project management, and communication skills. Joining Sagent means being part of a transformative journey in the mortgage servicing industry. We offer a modern customer experience for loan servicing, empowering customers and servicing companies alike. As we grow rapidly, your contribution will be vital in shaping our innovative future. Apply now and be a part of our mission at Sagent!,

Jefferies is a leading global financial services company that is dedicated to providing cutting-edge information security solutions to protect our organization's digital assets and ensure the security of our clients" data. We are currently looking for a highly skilled and experienced professional to join our team as the Senior Vice President, Head of Security ASIA. In this crucial leadership role, you will report directly to the local Chief Information Officer (CIO) and global Chief Information Security Officer (CISO) and will play a key role in shaping the information security strategy and engineering direction for our organization. As the IT Head of Security ASIA, you will be responsible for overseeing and managing all security aspects for our organization in the region. The ideal candidate must possess strong technical skills and be adaptable to the fast-paced environment of financial services development and delivery. We are seeking an excellent team player with exceptional technical and communication skills, as well as a high level of self-motivation to drive the progress of the security program at Jefferies. Key Responsibilities: In this role, you will lead a team of security personnel across multiple domains, including Security Operations, Global Security Administration, Physical Security, Data Security Analytics, and Network Security Engineering. Your responsibilities will include: - Providing strategic security guidance and direction for multiple high-performing teams - Driving the vision and direction of security solutions through active participation in the information security market - Leading, supervising, and inspiring local teams in various key areas You will also be responsible for: - Conducting technical vendor security reviews - Providing strategic security guidance for technology and delivery - Working closely with application and engineering teams to implement security measures - Proactively identifying and addressing emerging technology threats - Developing and implementing risk mitigation strategies - Conducting information security awareness and training programs - Ensuring alignment of technology risk management practices with industry standards - Participating in global security initiatives Required Background: The ideal candidate should have: - Extensive knowledge of information security principles and best practices - Ability to effectively communicate with senior management and stakeholders on security issues - Expertise in ensuring compliance with cybersecurity regulations and frameworks - Experience in systems, applications, or architecture planning - Experience in driving security awareness programs - Strong verbal, written, and interpersonal communication skills - Knowledge of data governance challenges - Experience with Governance, Risk, and Compliance (GRC) - A degree in information technology - Agile experience - Fundamental knowledge of AWS and/or Azure IaaS/PaaS services About Us: Jefferies Financial Group Inc. is a U.S.-headquartered global full-service, integrated investment banking and securities firm. Our strategy focuses on building out our investment banking effort, enhancing our capital markets businesses, and further developing our Leucadia Asset Management alternative asset management platform. We offer deep sector expertise across a full range of products and services in investment banking, equities, fixed income, asset and wealth management in the Americas, Europe, the Middle East, and Asia. Jefferies believes in fostering diversity and creating a culture that provides opportunities for all employees. We are committed to supporting a workforce that reflects the communities where we work and live, allowing us to leverage our collective insights and intelligence to provide innovative solutions for our clients.,

As a Software Developer, you will be responsible for designing, developing, and deploying high-quality software applications using Angular, Dot Net Core, C#, and SQL Server. You will collaborate with cross-functional teams to identify requirements and develop solutions. Additionally, you will participate in code reviews to provide feedback for improving code quality. In your role, you will also provide technical leadership by leading the development of software applications and offering guidance to junior developers. Mentoring junior developers to enhance their skills and knowledge will be an important aspect of your responsibilities. Collaborating with other teams to ensure alignment with company goals and objectives will also be part of your duties. You will be involved in developing and maintaining CI/CD pipelines to automate development releases. Collaboration with the QA team to ensure software applications meet quality standards and participation in release management to ensure smooth deployment are crucial tasks in this role. Identifying performance bottlenecks in software applications and implementing solutions to enhance performance will be a key focus area. Optimizing database queries, improving data retrieval efficiency, and ensuring that performance optimizations do not introduce new bugs are essential responsibilities. Information security will also be a priority, where you will ensure that software applications comply with information security guidelines and regulations. Collaborating with the security team to identify and mitigate security risks, as well as participating in security audits to enhance security posture, are part of your role. You will utilize GIT and other version control systems to manage code changes and collaborate with team members effectively. Knowledge of caching frameworks like Redis is a plus, and you will work with the team to implement caching solutions to boost application performance. Collaboration with the L2 Support Team to educate them on new patches, troubleshoot production issues, and offer technical guidance will be expected. Additionally, you will manage a team of junior developers, providing technical guidance, mentorship, and ensuring alignment with company goals and objectives. Participating in team meetings and offering feedback to enhance team performance will be essential in this role. Your proficiency in C, SQL Server, and .NET will be valuable assets for successfully fulfilling these responsibilities.,

As a Global IT Service Desk Analyst at Lucy Electric Manufacturing & Technologies Pvt Ltd, you will play a crucial role in providing first-line support to end-users, managing service requests and incidents, and ensuring the smooth on-boarding/off-boarding process for new users across Lucy Group companies. Your dedication to delivering exceptional IT services will contribute to the seamless operation of medium voltage switching and protection solutions for electrical distribution systems worldwide. Your responsibilities will include ensuring timely resolution of assigned incidents, requests, and queries, escalating critical issues, administering core M365 services, managing user accounts and permissions, troubleshooting email and collaboration tools, and adhering to ITIL Service Management best practices. Additionally, you will collaborate with team members to enhance IT services, monitor incidents and alerts, and provide expedited support to VIP users. Key skills for this role include proficiency in M365 Admin Centre, Exchange, Active Directory, and Windows Operating System, familiarity with Microsoft Defender, Intune, and Microsoft Entra, strong communication and problem-solving skills, the ability to multitask in a fast-paced environment, and a commitment to maintaining a positive End-User Experience. Previous experience in IT Service Desk or IT support, ITIL certification, and knowledge of Infrastructure technologies and the Microsoft Eco System are essential qualifications. Desirable skills include knowledge of mobile device management, cloud technology, networking concepts, and relevant certifications such as CompTIA A+, Network+, and AZ-900. A willingness to work in shifts, document issues clearly, and support users across multiple time zones are also valuable assets for this role. If you are an enthusiastic individual with a passion for technology, excellent customer service skills, and a collaborative mindset, we encourage you to apply for this exciting opportunity as a Global IT Service Desk Analyst at Lucy Electric. Join us in shaping the future of electrical distribution systems and making a real impact in the world of IT services. Apply now and be a part of our dynamic team!,

As a Senior Associate Information Security Analyst at NTT DATA, you will play a crucial role in designing and implementing security systems to safeguard the organization's computer networks from cyber-attacks and ensuring compliance with industry standards. Your responsibilities will include monitoring security alerts, investigating potential threats, installing security software, and documenting any security issues or breaches found. You will be actively involved in implementing and monitoring security controls such as firewalls, intrusion detection systems, and access controls. Conducting regular vulnerability assessments, analyzing scan results, and assisting in prioritizing and remediating identified vulnerabilities will be part of your daily tasks. Additionally, you will support the incident response team in investigating security incidents, documenting findings, and participating in remediation efforts. Your role will also involve installing security measures, operating software to protect systems and information infrastructure, documenting security breaches, and assessing the damage they cause. You will collaborate with the security team to perform tests, uncover network vulnerabilities, and maintain a high-security standard by fixing detected vulnerabilities. Furthermore, you will contribute to security awareness initiatives by creating training materials, conducting workshops, and educating employees about best security practices. Staying abreast of information technology trends and security standards, researching security enhancements, and making recommendations to management will also be part of your responsibilities. Key Requirements: - Bachelor's degree or equivalent in information security, cybersecurity, computer science, or related field. - Security certifications such as CompTIA Security+, CISSP, or CISM are advantageous. - Moderate level of demonstrated experience in information security or cybersecurity. - Proficiency in network penetration testing, security assessment, and vulnerability scanning tools. - Familiarity with security frameworks, standards, and regulations. Attributes: - Strong communication skills to convey technical information effectively. - Analytical thinking and problem-solving skills to prevent network hacking. - Ability to identify, evaluate, and mitigate potential risks. - Understanding of firewalls, proxies, SIEM, antivirus, and IDPS concepts. - Proficiency with MAC and OS. - Basic understanding of network and system architecture, security controls, and protocols. NTT DATA is a trusted global innovator in business and technology services, committed to helping clients innovate, optimize, and transform for long-term success. As a Senior Associate Information Security Analyst, you will be part of a diverse and inclusive workplace that fosters growth, belonging, and collaboration. Join us in making a difference and pushing the boundaries of what is possible in the world of information security.,

You will be responsible for designing and implementing user-facing features, developing server-side logic and databases, integrating third-party APIs, conducting testing and debugging, deploying applications, implementing security measures, optimizing performance, and collaborating with cross-functional teams to ensure alignment with project requirements. Design and implement user-facing features to ensure a seamless and responsive user experience across various applications. Develop server-side logic and databases to support front-end functionalities and ensure smooth data processing. Design, implement, and maintain databases to store and manage application data efficiently, ensuring data integrity and scalability. Integrate third-party APIs and web services to enhance application functionality and facilitate seamless data exchange with external systems. Maintain version control systems to manage and collaborate on the codebase, ensuring code quality, consistency, and easy collaboration within development teams. Conduct thorough testing and debugging of application components to ensure reliability, security, and optimal performance across different environments. Deploy applications to production environments and collaborate with DevOps teams to optimize deployment processes and ensure continuous integration and delivery (CI/CD). Collaborate with Information Security teams and implement security best practices and measures (e.g., encryption, authentication, authorization) to protect applications from vulnerabilities and cyber threats. Identify and address performance bottlenecks, optimize application performance, and improve scalability to enhance user experience and accommodate growing user demands. Document codebase, APIs, and technical specifications, and collaborate effectively with cross-functional teams including designers, product owners/managers, and other developers to ensure alignment with project requirements and timelines. Education: Bachelor's degree or equivalent in Computer Science, Electrical / Electronics Engineering, MIS, or related discipline. Experience: Relevant work experience in both front-end and back-end application design and development based on the following number of years: Associate: Prior experience not required, Standard I: Two (2) years, Standard II: Three (3) years, Senior I: Four (4) years, Senior II: Five (5) years. Knowledge, Skills, and Abilities: Fluency in English, Accuracy & Attention to Detail, Analytical Skills, Problem-Solving Skills, Microsoft Office & PC Skills, Numerical Skills. Preferred Qualifications: Not specified. Additional Details: FedEx is an equal opportunity/affirmative action employer committed to a diverse, equitable, and inclusive workforce. All qualified applicants will receive consideration for employment regardless of age, race, color, national origin, genetics, religion, gender, marital status, pregnancy (including childbirth or a related medical condition), physical or mental disability, or any other characteristic protected by applicable laws, regulations, and ordinances. FedEx is one of the world's largest express transportation companies, consistently recognized as one of the top 10 World's Most Admired Companies by "Fortune" magazine. FedEx's People-Service-Profit philosophy governs every decision, policy, or activity, focusing on taking care of employees, delivering impeccable service to customers, and reinvesting profits back into the business and people. FedEx's unique culture and values are key to its success and growth, fostering innovation and quality service delivery.,

As an Intelligence Analyst at Fortinet, you will be part of the Cyber Threat Intelligence (CTI) Collections/Analysis team, a dedicated group of skilled analysts, collectors, and specialists committed to safeguarding customers and their assets from external threats. Leveraging our advanced hybrid intelligence platforms and methodologies, your primary role will involve utilizing your writing and editing abilities to contribute to the generation of actionable intelligence for our client base. This includes assessing existing and emerging threats related to cybercrime and various forms of malicious exploitation. Your responsibilities will include monitoring and analyzing cybersecurity events, incidents, and vulnerability reports sourced from multiple outlets. You will be involved in reviewing and interpreting data from various sources such as OSINT, Darknet, and TECHINT. Collaborating closely with the Internal Research team, you will help identify threats specific to individual customers and create tailored analytical reports based on your findings. Additionally, you will be responsible for producing regular Security Trend reports using information from the internal threat repository and collaborating with customer points of contact to understand their threat landscape and customize service delivery accordingly. Furthermore, you will play a crucial role in monitoring, analyzing, and reporting on cybersecurity events, intrusion events, security incidents, and other indicators of potential threats. Adhering to operational security best practices is essential to safeguard sources and methods effectively. To excel in this role, you should possess strong fundamentals in Information Security, a solid understanding of Cyber Threat Intelligence, and the ability to produce high-quality Security Analysis reports. Your skill set should include the capacity to comprehend and analyze various threat vectors proficiently, along with knowledge of cyber threats, malware, APTs, exploits, etc. Familiarity with the DarkNet, DeepWeb, as well as open-source, social media, and other platforms of cyber-criminal activity is highly beneficial. Strong communication skills in English, along with the ability to engage effectively with diverse clients and articulate technical details clearly and concisely, are essential. A willingness to learn new technologies and skills, adapt to evolving circumstances, and innovate as needed is paramount. Previous experience in a Security Operations Center (SOC) environment or Cyber Crime Research will be advantageous, although not mandatory. Possession of certifications such as CEH, OSCP, or other cybersecurity credentials is a plus, while programming/scripting knowledge would be considered an additional asset. Maintaining the utmost discretion and confidentiality is crucial in this role. Proficiency in languages such as English, Hindi, and any other international languages like Arabic, Russian, Japanese, Chinese, German, or Italian would be advantageous.,

About KPMG in India KPMG entities in India are professional services firms affiliated with KPMG International Limited. Established in India in August 1993, we leverage the global network of firms to provide services while being well-versed in local laws, regulations, markets, and competition. With offices across India in cities like Ahmedabad, Bengaluru, Chandigarh, Chennai, Gurugram, Hyderabad, Jaipur, Kochi, Kolkata, Mumbai, Noida, Pune, Vadodara, and Vijayawada, we cater to national and international clients across various sectors. Our aim is to offer rapid, performance-based, industry-focused, and technology-enabled services that draw upon our collective knowledge of global and local industries, and our understanding of the Indian business landscape. Equal Employment Opportunity Information QUALIFICATIONS,

As a Vendor Risk Specialist at Tradeweb Markets in Bangalore, India, you will play a crucial role in the Risk Operations team by focusing on the vendor risk management program. Your responsibilities will include providing operational support, conducting vendor risk assessments, and ensuring ongoing vendor risk monitoring. Your efforts will be instrumental in supporting Tradeweb's businesses to meet their objectives and manage associated supply chain/vendor risks effectively. You will collaborate with internal and external stakeholders to complete the end-to-end vendor risk screening and assessment process, working closely with vendors, Procurement, Legal, Information Security, and internal business units. We are looking for a highly motivated individual with excellent interpersonal and writing skills, who can work effectively within a small team environment. The ideal candidate should have a background in the Financial Industry and be capable of communicating complex issues to non-technical team members. Professional training will be provided to help you integrate into the team seamlessly and enhance the firm's Vendor Management Program collaboratively. Your key responsibilities will include managing prospective vendor engagement requests, coordinating with review teams, conducting risk assessments on vendors, monitoring findings, and implementing tools for effective vendor risk management. You will also support vendor risk reporting for management and committees as necessary. To qualify for this role, you should have a BA/BS degree in Risk Management, Finance, Economics, or a relevant field with at least 8 years of experience in vendor/third-party risk management. Strong communication skills, the ability to manage competing deadlines, attention to detail, and the capability to work both independently and as part of a team are essential. Desired skills include training/certification in vendor risk management, experience with vendor management tools, financial risk management expertise, and understanding of global vendor risk management regulations. If you are a proactive and detail-oriented professional with a passion for managing vendor risks in a fast-paced environment, we encourage you to apply for this exciting opportunity at Tradeweb Markets.,

As a highly motivated and talented Symantec DLP Engineer, you will be joining a fast-paced, dynamic, and challenging environment. Your primary responsibility will be to demonstrate a conceptual understanding of Symantec Data Loss Prevention (DLP) and collaborate effectively within a global team setting. You must possess excellent analytical, communication, and presentation skills to excel in this role. Your key responsibilities will include: - Implementing DLP technology across a large enterprise with hands-on experience - Working on DLP security solutions encompassing Symantec DLP Endpoint, Discover, Web & Email - Designing and implementing Symantec DLP solution - Expertise in designing and implementing DLP policies, as well as fine-tuning them to reduce false detection - Administering DLP tools, including policy configuration, upgrading, and patching - Troubleshooting Symantec DLP issues related to Endpoint, email, discovery, web, etc. - Monitoring and responding to alerts generated from DLP systems and other technologies - Following the incident response process through event escalations - Collaborating with Information Security, Legal, Compliance, and IT teams to enhance DLP effectiveness - Conducting regular audits and assessments of DLP configurations and coverage - Providing support and troubleshooting for DLP incidents and system issues - Maintaining documentation of policies, procedures, and configurations - Assisting business groups in identifying, classifying, and securing high-value data - Staying updated on DLP versions, patching, and other system upgradation initiatives - Implementing proactive measures to improve the accuracy and effectiveness of DLP tools - Creating, reviewing, maintaining, and updating documentation, including documenting and publishing fixes in a central knowledge base - Collaborating with global teams to ensure consistent processes and solutions - Demonstrating excellent presentation and written communication skills along with strong interpersonal skills If you are passionate about working with Symantec DLP technology and thrive in a collaborative team environment, this role offers a great opportunity to contribute to the security and effectiveness of data loss prevention measures.,

Role Overview: We are seeking a highly skilled Information Security Specialist to join our team. The ideal candidate will have extensive experience in addressing client queries related to product security, AI security, and cloud security (AWS and Azure) . This role requires a proactive approach to identifying and mitigating security risks , as well as excellent communication skills to effectively interact with clients. Key Responsibilities: Good and detailed understanding of Azure and AWS services provisioning, architecture and security recommendations Respond to client queries regarding product security, AI security, and cloud security (AWS and Azure). Develop and implement security policies, protocols, and procedures. Conduct regular security audits and assessments to identify vulnerabilities. Collaborate with the product development team to ensure security best practices are integrated into the product lifecycle. Monitor and analyze security incidents to determine root causes and implement corrective actions. Stay updated with the latest security trends, threats, and technologies. Provide training and guidance to internal teams on security best practices. Co-ordinate with internal InfoSec team for timely deliverables, as required Hands-On experience for Azure and AWS Cloud services and application end -to-end provisioning on Cloud. Key Performance Indicators (KPIs): Client Query Response Time: Ensure all client queries related to security are addressed within 24 hours. Incident Resolution Time: Resolve security incidents within the defined SLA (Service Level Agreement). Security Audit Compliance: Achieve a compliance rate of 95% or higher in all security audits. Client Satisfaction: Maintain a client satisfaction score of 90% or higher for security-related queries and support. Training Effectiveness: Conduct quarterly security training sessions with an average feedback score of 4.5/5. Cloud Architecture: Ensure secure hosting of product at Cloud Environment. Qualifications: Bachelor's degree in computer science, Information Technology, or a related field. Minimum of 10-15 years of experience in information security, with a focus on AI security and cloud security (AWS and Azure). Relevant certifications such as CISSP, CISM, or AWS Certified Security Specialty. Strong understanding of security frameworks and standards (e.g., ISO 27001,NIST). Excellent problem-solving skills and attention to detail. Strong communication and interpersonal skills. Nice to have Exposure to financial research domain Industry recognized certification programs on Data Management/Cloud etc. » Experience with JIRA, Confluence » Understanding of scrum and Agile methodologies » Experience with data visualization tools, such as Grafana, GGplot, etc. Soft skills » Oral and written communication skills » Good problem solving and negotiation skills » Intellectual curiosity to find new and unusual ways of how to solve data management issues. » Passionate about the work and attention to detail

Managing GRC, IT/IS audits, Data Privacy SEBI/RBI Cyber security framework, Data privacy, GDPR NCIIPC guidelines, NIST framework Managing IT/ Technology audit Program management for DPDPA, ISO 27701:2019 compliance SIEM, PAM, DLP, EDR, DAM, AntiAPT

Skill Set : VAPT, OS Hardening, Ethical Hacking, SIEM, DLP, IAM, IRM Experience : 5+ Years Location : India/US Develop and implement strategic plans to achieve organizational goals and objectives. Lead and mentor teams, fostering collaboration, accountability, and high performance. Analyze business operations, identify areas for improvement, and recommend solutions. Oversee budgeting, financial analysis, and resource allocation to optimize operational efficiency. Monitor key performance indicators (KPIs) to ensure alignment with company goals. Build and maintain relationships with key stakeholders, partners, and clients. Ensure compliance with industry standards, regulations, and company policies. Drive innovation and process improvements to maintain competitive advantage.

ACCESS TEAM Act as a member of the Windows Active Directory Domain Administrator Support Team in providing timely and efficient support to assigned operations Troubleshoot Active Directory authentication and LDAP configuration issues Work with other senior staff members to resolve escalated, complex incidents related to AD and VPN. Continually seek opportunities to improve our existing AD. Device Management and security controls through GPO Daily user support for all Access issues Maintaining security, standards and high availability of AD architecture Provide effective and efficient support to our users while logging this information in our Service Desk ticketing tool. Field incoming help requests from end users via telephone, e-mail and ticket logging system in a courteous manner. Ensure that Service Desk policies and procedures and best practices are implemented and adhered to, particularly our change, problem and incident management procedures (based on the ITIL v4 standards). Ensure that all calls and issues are dealt with in a timely and efficient manner. Evaluate documented resolutions and analyse trends for ways to prevent future problems. Identify and learn appropriate software and hardware used and supported by the organisation. Field incoming help requests from end users via telephone, e-mail, portal and ticket logging system in a courteous manner. Escalate calls to the relevant work stream in a timely manner. Report all suspected information security incidents and breaches Understand and adhere to all established CTM and IT policies, standards and procedures, especially Information Security policies and operational procedures. Create new starter profiles within Active Directory, office 365 and all other applications as requested in the request, as part of the New Starter procedure. Change user profiles as part of the Mover procedure. Offboard users as part of the Leaver procedure. Troubleshoot Handoff & access related issues Following the asset management procedure, ensure Assets are correctly logged and accurately maintained. ' Qualifications Bachelors Job Location

Job Title: Information Security Engineer Job Type: Full-Time Position Overview: We are seeking a highly skilled Information Security Engineer to manage Risk Assessment,Compliance, and Clouds Infrastructure Security, with specialized expertise in healthcaresecurity, cybersecurity analytics, and emergency preparedness. The ideal candidate will haveexperience designing secure applications and architectures, conducting SAST/DAST testing,managing cyber emergency preparedness, and ensuring robust security protocols across theenterprise. You will also be responsible for developing security policies and procedures andintegrating cutting- edge security practices to maintain the organization's security posture andcompliance standards. Key Responsibilities: Risk Assessment: Perform internal and third-party risk assessments, conductsecurity audits, and manage vulnerability remediation. Develop mitigation strategiesand report risks to senior management. Clouds Infrastructure Security: Secure cloud environments (AWS, Azure, GCP) and on prem infrastructure, ensuring access controls, encryption, and network securityprotocols are in place. Compliance Management: Oversee compliance with HIPAA, GDPR, DPDPA, and healthcare-specific regulations. Support audit preparation, conduct assessments, andensure alignment with industry and privacy standards. Cybersecurity Analytics: Leverage cybersecurity analytics to monitor, identify, andrespond to threats in real-time, utilizing data-driven insights to enhance overall securityposture. Designing Secure Applications Architectures: Collaborate with development teams todesign and implement secure applications and system architectures, ensuring thatsecurity best practices are incorporated into the software development lifecycle. SAST /DAST: Implement Static and Dynamic Application Security Testing (SAST/DAST) to identify vulnerabilities and ensure secure coding practices throughout the development pipeline. Cyber Emergency Preparedness: Develop and maintain cyber emergency preparednessplans, including incident response, disaster recovery, and business continuity strategies. Electronic Surveillances Corporate Security: Oversee and manage electronic surveillance systems to detect and prevent both physical and cybersecurity threats.Ensure seamless integration between corporate security measures and IT/cybersecurity strategies. Security Policies Procedures: Develop, document, and maintain comprehensive securitypolicies and procedures to ensure regulatory compliance and alignment with riskmanagement frameworks. Incident Response: Lead investigations into security incidents, conduct root cause analysis,and recommend corrective actions to prevent future breaches. Collaboration Training: Partner with IT, development teams, and external vendors tointegrate security best practices into cloud and infrastructure environments. Providetraining and awareness programs to staff on security policies and procedures. Qualifications: 2-5 years of experience in information security, risk management, compliance, and healthcare security. Expertise in cybersecurity analytics, secure application design, andarchitectural security best practices. Strong knowledge of HIPAA, GDPR, DPDPA, and other healthcare-related compliance regulations. Hands-on experience with cloud security (AWS, Azure, GCP) and infrastructure security. Proficiency in SAST/DAST tools and vulnerability management. Experience with cyber emergency preparedness, incident response, anddisaster recovery planning. Knowledge of electronic surveillance systems and corporate security measuresto protect both physical and digital assets. Ability to document and maintain security policies, procedures, and standards. Strong analytical, communication, and problem-solving skills. Certifications (Preferred): CISSP, CISM, CRISC, CEH, AWS Certified Security Specialty, Azure Security Engineer, Certified HIPAA Professional (CHP), Certified Information Privacy Professional(CIPP/US), Certified Business Continuity Professional (CBCP)

ACCESS TEAM Act as a member of the Windows Active Directory Domain Administrator Support Team in providing timely and efficient support to assigned operations Troubleshoot Active Directory authentication and LDAP configuration issues Work with other senior staff members to resolve escalated, complex incidents related to AD and VPN. Continually seek opportunities to improve our existing AD. Device Management and security controls through GPO Daily user support for all Access issues Maintaining security, standards and high availability of AD architecture Provide effective and efficient support to our users while logging this information in our Service Desk ticketing tool. Field incoming help requests from end users via telephone, e-mail and ticket logging system in a courteous manner. Ensure that Service Desk policies and procedures and best practices are implemented and adhered to, particularly our change, problem and incident management procedures (based on the ITIL v4 standards). Ensure that all calls and issues are dealt with in a timely and efficient manner. Evaluate documented resolutions and analyse trends for ways to prevent future problems. Identify and learn appropriate software and hardware used and supported by the organisation. Field incoming help requests from end users via telephone, e-mail, portal and ticket logging system in a courteous manner. Escalate calls to the relevant work stream in a timely manner. Report all suspected information security incidents and breaches Understand and adhere to all established CTM and IT policies, standards and procedures, especially Information Security policies and operational procedures. Create new starter profiles within Active Directory, office 365 and all other applications as requested in the request, as part of the New Starter procedure. Change user profiles as part of the Mover procedure. Offboard users as part of the Leaver procedure. Troubleshoot Handoff & access related issues Following the asset management procedure, ensure Assets are correctly logged and accurately maintained. Qualifications Bachelors

Lead Software Engineer - Full Stack (Java & React/Angular) ? Overview Mastercard is looking for a talented Lead Software Development Engineer to join the Mastercard Foundry New Product development team in our Pune location. In this role you will be part of a highly agile team building exiting and innovative products delivered at scale to global markets. Our team is built on a foundation of exploration and development of new products, mining innovation internally, innovating new product lines with emerging technology, managing new products from inception to market validation to shape the future of commerce with and for our customers. At Mastercard you will help define the future of commerce globally. This team will have a diverse focus both in terms of geography and variety of technology challenges driving hard to bring innovative payment solutions to market. Role This role involves working with a team of talented developers to develop high performance Java based solutions. Responsible for the analysis, design, and development of software solutions Contribute to the requirements for new applications and customizations, adhering to standards, processes, and best practices Ensure quality of one or more application codebases and alignment with development standards Applies technical capabilities within own discipline to coach and develop junior employees Designs highly complex applications, interfaces and integrations Integrates at an enterprise level using third-party middleware or messaging products, or by designing and implementing custom interfaces and mapping for those interfaces Responsible for performance engineering of the enterprise software architecture, and providing functional guidance, advice, and/or training to other application developers Software development, code reviews and day-to-day support duties Group-wide and external public speaking and other communications conveying domain level directions Researching and evaluating tools to support domain-specific needs Skills 8 to 12 years of overall career experience in Technology or a similar field Proficiency with Java JDK 8 or greater. Knowledge of Tomcat, Spring, Spring Boot, NodeJS, Python, Shell Scripting, JSON. Proficiency in Spring Data including analysis and performance tuning of queries. Experience of working with and writing OpenAPI specification 3.0 documentation. Experience of schema first REST API development using Spring boot Experience in UI development using ReactJS, VueJS, AngularJS, ExtJS, HTML. Experience with Docker, Kubernetes or other container orchestration solutions. Expertise in Junit, Spring testing, Selenium, Cypress, Cucumber, Jasmine etc. Knowledge of CI/CD principles and tools such as Jenkins, Gradle, Maven, NPM, SonarQube. Knowledge of security principles OAUTH, SAML, TLS etc. Passionate about software development and comfortable in a fluid environment. Knowledge of Source Control Management and working with code in a multi-developer environment. All About You The ideal candidate for this position should: Loves creating innovative solutions to problems in a collaborative fun environment Advanced knowledge and understanding of modern software engineering concepts and methodologies Passionate about software development and comfortable in a fluid environment Passionate about code quality and coding best practices Show initiative and demonstrate a willingness to take on challenging opportunities Excellent communication (verbal and written) and strong collaboration skills Must be driven, highly motivated and a strong team-player Interested in mentoring and helping grow the skills of the next generation of software developers

Senior Analyst, Business Transformation and Revenue Operations-2 Overview: Services is Mastercards professional services arm, focused on driving value beyond payment transactions. We harness the power of our transaction data, deep payments expertise and vast network of merchant and FI partners to offer holistic solutions to our customers. Our solutions comprise consulting, data insights, marketing services, loyalty and analytics platforms and more. Discover more at Mastercard Services Insights and Enablement helps improve efficiency and drive smarter decisions for Services business unit, with use of data, technology and operational excellence. About the Role As Senior Analyst - Business Transformation and Revenue Operations, you are expected to: Develop a strong understanding of our business environment Engage with key stakeholders (Sales, Product, Delivery, Compliance, Technology, Finance, etc) and act as an Internal Consulting partner to understand pain-points related to their business model and operational processes Comprehend current state processes via stakeholder conversations, process demos and thorough system understanding Use analytical frameworks and data-driven insights to identify improvements in current process, test hypothesis and roll-out optimized process Drive implementation with desired outcomes and behavioural change Develop appropriate documentation e.g. SOPs, process flows, user journey maps etc Develop success KPIs and institutionalize through robust, high-quality data dashboards Monitor KPIs and drive continuous efficiency improvements All about you Strong understanding of Revenue Operations, preferably in B2B services organizations Experience in driving business transformation preferably for B2B services organizations Experience in business consulting or in dealing with unstructured situations and applying first principles thinking for problem solving Exposure to project management, stakeholder management and excellent communication skills Exposure to any of these domains is preferred though not essential B2B Sales processes, Sales productivity tools (e.g. Salesforce CRM, contract automation), Compliance processes (e.g. KYC); Data visualization and reporting platforms (e.g. Tableau) etc 5-8 years of relevant professional experience, with suitable educational qualifications

Preferred Domain: Banking (Working in IT is preferred) About the Position We are looking for a highly skilled and experienced Senior Software Developer to lead the development of our software applications in Bangalore. The ideal candidate will have a strong background in Angular 14+, Dot Net Core, C#, and SQL Server, with excellent knowledge of GIT, code merge & reviews, performance optimizations, and information security guidelines. The successful candidate will also have experience in mentoring junior developers, and collaborating with cross-functional teams. Duties and Responsibilities 1. Design and Development: Design, develop, and deploy high-quality software applications using Angular, Dot Net Core, C#, and SQL Server. Collaborate with cross-functional teams to identify requirements and develop solutions. Participate in code reviews and provide feedback to improve code quality. 2. Technical Leadership: Lead the development of software applications and provide technical guidance to junior developers. Mentor junior developers to improve their skills and knowledge. Collaborate with other teams to ensure alignment with company goals and objectives. 3. Development Releases: Develop and maintain CI/CD pipelines to automate development releases. Collaborate with the QA team to ensure that software applications meet quality standards. Participate in release management and ensure that software applications are deployed smoothly. 4. Performance Optimizations: Identify performance bottlenecks in software applications and develop solutions to improve performance. Optimize database queries and improve data retrieval efficiency. Collaborate with the QA team to ensure that performance optimizations do not introduce new bugs. 5. Information Security: Ensure that software applications comply with information security guidelines and regulations. Collaborate with the security team to identify and mitigate security risks. Participate in security audits and provide feedback to improve security posture. 6. GIT and Version Control: Use GIT and other version control systems to manage code changes and collaborate with team members. Participate in code reviews and provide feedback to improve code quality. 7. Caching Framework: Knowledge of caching frameworks like Redis is a plus. Collaborate with the team to implement caching solutions to improve application performance. 8. Collaboration with L2 Support Team: Collaborate with the L2 Support Team to educate them on new patches to be released. Troubleshoot any production issues and provide technical guidance to the L2 Support Team. 9. Team Management: Manage a team of junior developers and provide technical guidance and mentorship. Collaborate with other teams to ensure alignment with company goals and objectives. Participate in team meetings and provide feedback to improve team performance. Qualification & Experience 1. Technical Skills: 3-5 years of experience in software development using Angular 14+, Dot Net Core, C#, and SQL Server. Excellent knowledge of GIT and version control systems. Strong understanding of performance optimizations and information security guidelines. Knowledge of caching frameworks like Redis is a plus. 2. Leadership Skills: Experience in managing a team of junior developers. Strong communication and interpersonal skills. Ability to mentor and guide junior developers. 3. Soft Skills: Strong problem-solving skills. Ability to work in a fast-paced environment. Collaborative and team-oriented approach.

Our client is a globally recognized financial services firm operating across more than 30 countries, with strong divisions in Retail, Asset Management, and Wholesale Banking. The firm combines disciplined strategy with innovative solutions to connect Eastern and Western markets. Its Global Cyber Threat Intelligence (CTI) team plays a central role in shaping and executing the organization s security vision. The CTI team drives vulnerability analysis, threat monitoring, and cross-functional coordination, ensuring timely intelligence and robust security coverage across the enterprise. Please note that due to the high number of applications only shortlisted candidates will be contacted. If you do not hear from us in the next 5 business days, we regret to inform you that your application for this position was unsuccessful. Apply for this Job Key responsibilities The candidate will need to have a solid grounding within both Cyber Threat Intelligence and understanding of wider cyber security practices. Led CTI operations to monitor emerging vulnerabilities, manage CVE enrichment, and analyze exploitation trends for informed mitigation. Designed and maintained processes to ingest and prioritize threat data from diverse sources including open-source, commercial, and government feeds. Delivered actionable threat intelligence products, supported executive communication, and collaborated across internal security functions during incident response and strategy briefings. Role requirements Minimum of 8 years in Information Security, including at least 3 years specializing in Cyber Threat Intelligence. Strong expertise in OSINT techniques, dark web monitoring, and application of CTI models such as MITRE ATT & CK, Kill Chain, and Diamond Model. Proven experience in identifying, classifying, and analysing diverse threat landscapes including nation-state actors, cybercrime, and social engineering.