359 Pci Dss Jobs

Role Purpose The purpose of this role is to design the organisations computer and network security infrastructure and protect its systems and sensitive information from cyber threats Do 1. Design and develop enterprise cyber security strategy and architecture a. Understand security requirements by evaluating business strategies and conducting system security vulnerability and risk analyses b. Identify risks associated with business processes, operations, information security programs and technology projects c. Identify and communicate current and emerging security threats and design security architecture elements to mitigate threats as they emerge d. Identify security design gaps in existing and proposed architectures and recommend changes or enhancements e. Provide product best fit analysis to ensure end to end security covering different faucets of architecture e.g. Layered security, Zoning, Integration aspects, API, Endpoint security, Data security, Compliance and regulations f. Demonstrate experience in doing security assessment against NIST Frameworks, SANS, CIS, etc. g. Provide support during technical deployment, configuration, integration and administration of security technologies h. Demonstrate experience around ITIL or Key process-oriented domains like incident management, configuration management, change management, problem management etc. i. Provide assistance for disaster recovery in the event of any security breaches, attacks, intrusions and unusual, unauthorized or illegal activity j. Provide solution of RFPs received from clients and ensure overall design assurance i. Develop a direction to manage the portfolio of to-be-solutions including systems, shared infrastructure services, applications, hardware related to cyber risk security in order to better match business outcome objectives ii. Analyse technology environment, enterprise specifics, client requirements to set a collaboration design framework/ architecture iii. Depending on the clients need with particular standards and technology stacks create complete RFPs iv. Provide technical leadership to the design, development and implementation of custom solutions through thoughtful use of modern technology v. Define and understand current state solutions and identify improvements, options & tradeoffs to define target state solutions vi. Clearly articulate and sell architectural targets, recommendations and reusable patterns and accordingly propose investment roadmaps vii. Evaluate and recommend solutions to integrate with overall technology ecosystem viii. Tracks industry and application trends and relates these to planning current and future IT needs 2. Stakeholder coordination & audit assistance a. Liaise with stakeholders in relation to cyber security issues and provide timely support and future recommendations b. Provide assistance in maintaining an information security risk register and help with internal and external audits relating to information security c. Support audit of security best practices and implementation of security principles across the organization, to meet business goals along with customer and regulatory requirements d. Assist with the creation, maintenance and delivery of cyber security awareness training to team members and customers e. Provide training to employees on issues such as spam and unwanted or malicious emails Deliver No PerformanceParameter Measure 1 Customer centricity Timely security breach solutioning to end users, Internal stakeholders & external customers experience, CSAT, educating and suggesting right control to the customers. 2 Support sales team to create wins % of proposals with Quality Index >7, timely support of the proposals, identifying opportunities/ leads to sell services within/ outside account (lead generation), no. of proposals led Mandatory Skills: PKI - Certificate Management. Experience8-10 Years.

Some careers shine brighter than others. If you re looking for a career that will help you stand out, join HSBC, and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further. We are currently seeking an experienced professional to join our team in the role of Lead consultant specialist In this role you will: Hunting for malicious or anomalous activity across the enterprise, using existing tools. Acting in co-ordination with GCO staff to lead the development and implementation of an advanced analysis and search capability focused on identifying potentially sophisticated APT and insider threat activities within the organization. Researching new and existing threat actors and associated tactics, techniques and procedures (TTPs); developing a detailed understanding of their potential impact to the organization, providing recommended solutions for improving our defensive and detective capability. Collaboration with the wider Cybersecurity functions, e.g., Red Team, to develop hypotheses for new attack techniques and evasion methods. Coordinating threat hunting activities, leveraging intelligence from multiple internal and external sources. Reviewing incident and penetration testing reports and corresponding logs, to identify gaps in our detection capability and provide recommendations to improve them. Providing expert analytic investigative support on large scale and complex security incidents. Contributing to the continued evolution of hunting, monitoring, detection, analysis and response capabilities and processes Training, developing, mentoring, and inspiring colleagues across the function in area(s) of specialism, strengthening Cybersecurity Operations capabilities. Represent HSBC Global Cybersecurity Operations at internal awareness and external cybersecurity forums. Collaborate with the wider Cybersecurity (and IT) teams to ensure that the core, underlying technological capabilities that underpin an effective and efficient operational response to current and anticipated threats and trends remain fit for purpose. Identify processes that can be automated and orchestrated to ensure maximum efficiency of Global Cybersecurity Operations resources. Requirements To be successful in this role, you should meet the following requirements: Excellent investigative skills, insatiable curiosity, and an innate drive to win. Instinctive and creative, with an ability to think like the enemy. Strong problem-solving and trouble-shooting skills Deep knowledge of hacker culture Developed external peer network for sharing intelligence. Self-motivated and possessing of a high sense of urgency and personal integrity. Excellent understanding of HSBC cyber security principles, global financial services business models, regional compliance regulations and laws. Excellent understanding and knowledge of common industry cyber security frameworks, standards, and methodologies, including OWASP, ISO2700x series, PCI DSS, GLBA, EU data security and privacy acts, FFIEC guidelines, CIS and NIST standards. Proven experience in identifying and responding to advanced attacker methodologies both within the corporate environment as well as external attack infrastructures, ideally with offensive experience and / or deception environment development (tripwire systems, honeypots, honey-token/accounts, etc.) using open source, vendor purchased and bespoke/in-house developed solutions. Experience in computer forensics, vulnerability analysis, cyber security analysis, penetration testing and/or network engineering. Highest level of technical expertise in information security, including deep familiarity with relevant penetration and intrusion techniques and attack vectors Expert level knowledge of scripting, programming and/or development of bespoke tooling or solutions to solve unique problems. Expert Knowledge and technical experience of 3rd Party Cloud Computing platforms such as AWS, Azure and Google

About Flexmoney: Flexmoney s mission is to Re-imagine Consumer Finance for the mobile-first digital consumer. Our omni-channel digital affordability platform enables merchants, brands and other partners to seamlessly embed contextual affordability options across all customer touchpoints and sales channels to drive the highest conversion and increase customer satisfaction and loyalty. We work with trusted lending partners (Banks, NBFCs, FinTechs) to develop and offer RBI-compliant, digital credit products embedded in consumer journeys. Flexmoney was instrumental in creating and establishing the Cardless EMI payment category enabling lenders to offer a fully-digital transacting EMI instrument to their users without the need for a credit card. Our market-leading Online Digital EMI platform powers affordability for over 68,000 online merchants (including direct integration with marquee merchants Flipkart , Amazon and MakeMyTrip ) across categories such as travel, insurance, home, fashion, sports, electronics, mobiles, health and wellness amongst others. We offer the largest supply of pre-approved digital EMI credit lines (64M+) helping drive best-in-class digital affordability coverage and conversion for our merchants and brand customers. To power the next phase of Flexmoney s growth we have expanded our platform capabilities dramatically. In addition to our market-leading Online Digital EMI platform, InstaCred TM 360, Flexmoney s NEW omni-channel Affordability Suite now enables sales associate-assisted affordability journeys across all channels - in-store, via tele-callers and also for face-to-face agent sales . The InstaCred TM 360 Affordability Suite will enable Flexmoney to deliver omni-channel affordability solutions to merchants for finance-led segments such as Edtech, Travel, Home, Insurance, Mobiles, Home, Health & Wellness etc Job Role: We are looking for smart, passionate, humble Engineer with an independent mindset to join our team and help build, improve & manage the network security infrastructure of the Organization Key Responsibilities: Own the end-to-end process of conducting security audits, obtaining and maintaining various certifications including PCI DSS, ISO 27001 etc. and report to internal board, external partners, and regulators Conduct regular security audits and assessments to identify gaps and provide recommendations for remediation Support the end-to-end client security audits conducted by external stakeholders Contribute to the development and implementation of security policies, procedures, and guidelines Work with internal teams to set up, manage, and operate security platform integrations across different systems and platforms Keep up-to-date with the latest security trends, threats, and vulnerabilities to identify potential security risks, propose measures and rollout to mitigate them Requirements & Qualifications: 3+ years of experience with enhancing the security of infrastructure, application and IT hardware, conducting security audits, and setting up internal processes Prior experience with cloud security and architecture across AWS, GCP or Azure Strong communication skills to effectively interact with technical and non-technical individuals internally as well as our external stakeholders Passion for learning and growing Ability to prioritize and independently manage multiple tasks independently

":" We are seeking an IAM Engineer (4\u20137 yrs experience) who is on the path to becoming a true specialist. You will own key portions of our identity stack\u2014helping to architect, implement, and maintain authentication and authorization platforms and environments, while pairing closely with our Senior IAM Expert. Responsibility : Design and operate PingFederate and Okta-based AuthN/AuthZ solutions. Implement migration of AuthN/AuthZ flows Okta to PingFederate Implement PAT and SSA integrations. Configure and maintain multi-environment IDP instances, manage claim mappings, and secure secrets in vaults. Ensure compliance with FedRAMP controls (FIPS encryption, audit logging). Collaborate with SRE, DevOps, and Automation teams to integrate flows into CI/CD pipelines and smoke-test suites. Develop and maintain end-to-end test cases for authentication, authorization, MFA, and token lifecycle scenarios. Write and update runbooks, architecture diagrams, and developer-onboarding materials. Requirements 4\u20137 years in identity management, IAM engineering, or security engineering roles. Hands-on experience with PingFederate, Okta, or equivalent enterprise IDP platforms. Solid understanding of OAuth2/OIDC protocols, SAML, and token-based authentication. Practical exposure to compliance frameworks such as FedRAMP, SOC2, or PCI-DSS. Proficiency in scripting (Python, Bash) to automate integration tests and routine tasks. Strong verbal and written communication, able to drive technical discussions and documentation. Preferred Familiarity with AWS Cognito, Azure AD B2C, or similar cloud identity services. Experience implementing serverless identity extensions (e.g., Lambda triggers). Working knowledge of directory services and federation protocols. Involvement in disaster-recovery planning for identity systems. Education B.E./B.Tech or M.E./M.Tech in Computer Science, Software Engineering, or a related field (or equivalent practical experience) Benefits Opportunity to work with a dynamic and fast-paced IT organization. Make a real impact on the companys success by shaping a positive and engaging work culture. Work with a talented and collaborative team. Be part of a company that is passionate about making a difference through technology. ","

Core Responsibilities Assist with technical control design, implementation and monitoring, support incident responses and assist with providing root cause analysis support for incidents. Monitor for attacks, intrusions, and un-usual, unauthorised or illegal activities when the Security Analysts are finding the instance challenging. Keep an eye on the alerts from systems including SEIM solutions and vulnerability monitoring services and check if the Analysts are able to handle the flow appropriately, if not then jump in and investigate if there are any abnormality in the inflow. Monitor identity and access management, including monitoring for abuse of permissions by authorised systems users if the stats are fluctuating or when you see a spike in the alerts. Assist with Information Security Reporting and metrics, providing input into improving information security reporting and metrics. Identify/recommend improvements on internal investigation capabilities via tool and process building/automation. Provide support to recovering from security breaches; participate in investigation and remediation of security incidents, which may include working as part of a team Assist in perform deep-dive incident analysis, determining if critical systems or data sets has been impacted. Assist with the definition and configuration of compliance policies for security technologies. Conduct research on emerging threats in support of security enhancement and development efforts; recommend security improvements, upgrades, and/or purchases. Support the incident response of minor incidents by advising on remediation actions, escalating major incidents to the designated parties. Recording lessons learnt whilst supporting on improving existing processes and procedures. Providing support of new analytic methods for detecting threats. Continuously seeking to identify potential service and process improvements. Participate in the implementation of technologies and platforms supporting the corporate infrastructure. Ensure that you fully understand and comply with the organisation’s Risk Management Policies as they relate to your area of responsibility. Ensure that you fully understand and comply with the organisation’s Data Governance Policies as they relate to your area of responsibility. Maintain the company’s compliance standards and ensure timely completion of all mandatory on-line training modules and attestations. Monitoring technical controls that are in place Addressing quires raised by the Security Analysts during investigation or other BAU. Assist Security Analysts in decision making and help in setting up standards. Will be responsible to suggest new fine tunings in the environment to the vendor or to the technical counterparts. Process review and upgradation recommendation when required. Setting up simplified and effective steps in BAU that in turn improves the quality of the work Implementation of new process based on business requirements and communicating the same with the team Team building and team management activities will be one of the key responsibility.

1.Conduct information security management reviews and information security management system (ISMS) assessments 2.Must have knowledge of various compliances like ISO 27001, SOC 2, PCI DSS, GDPR etc. 3.Ensure technical implementation and business processes are aligned 4.Lead the design, implementation, operation and maintenance security management systems 5.Participate in the creation, review and update of information security policies 6.Provide complex technical advice, recommendations and consultancy on networks, infrastructure, products and services supplied 7.Provide or assist with implementation documentation Ongoing project management 8. Must be ISO 27001 LA certified

Roles & Responsibilities: Be part of Bank’s GRC program and handle regulatory characteristics focused in cybersecurity Identify and Drive improvement initiatives to Enhance Risk posture of the Bank Face off to Various regulators and drive programs for compliance to the Regulatory requirements Be a champion of ITGC initiatives Provide guidance to group companies to ensure consistency in risk governance, cyber risk management and compliance. Be the focal of Group companies for all IRM requirements Collaborate with group companies on IT governance, cybersecurity and control measures across Group’s IT landscape. Present cyber risk posture in quarterly IT Strategy meetings for group companies. Promote a strong risk culture within the bank and group companies fostering awareness of risk management principles. Validate Security Policies and Procedures in conjunction with IT controls Manage internal and external stakeholders Ability to endorse cyber risks through publication of dashboards and drive initiatives to Improve Risk posture Job Requirement: Experience required for the Job15+ years in information technology & security; Engineer / Post Graduate / MBA Strong understanding of IT governance frameworks, risk management practices and regulatory requirements. Industry acknowledged certifications like CISA / CISSP / CRISC Experience in Team handling / management is must Knowledge on Layered Security - Firewalls, Intrusion Detection, OS Hardening, Project Management, Security Training. Experience in handling regulatory matters will be an added advantage Strategic thinking and strong analytical skills Excellent communication and inter personal skills with focus on verbal, written communication & presentation skills

We offer a fulfilling work environment that attracts top talent and encourages all associates to do their part in delivering premier service to internal and external customers alike. It s how we re transforming the healthcare industry for the better. We provide career advancement opportunities within the organization with multiple locations in Florida, California, Pennsylvania, Tennessee, Texas, Utah, and India. You might also like to know that NationsBenefits is also recognized as one of the fastest growing companies in America. We re proud of how far we ve come, and a career with us also gives you growth opportunities. Position Overview The Senior Compliance Analyst is responsible for leading the assessment, monitoring, and maintenance of the organization s internal control environment and compliance efforts related to key regulatory and industry standards, including HITRUST, SOC 2, and PCI DSS. This role will serve as a subject matter expert in audit readiness and compliance reporting, working closely with internal stakeholders, auditors, and assessors to ensure successful certification and audit outcomes. The Senior Compliance Analyst will also play a critical role in control testing, evidence gathering, and issue remediation tracking. Key Responsibilities 1. Regulatory and Framework Compliance Oversight Serve as the internal point of contact for all matters related to HITRUST, SOC 2, and PCI DSS compliance. Coordinate and support the execution of external audits and assessments. Monitor ongoing compliance activities across departments to ensure adherence to regulatory requirements and industry frameworks. Maintain up-to-date knowledge of changes in applicable standards and regulations, proactively updating policies and controls. 2. Internal Controls Monitoring and Testing Conduct routine internal control testing to validate design and operational effectiveness. Document findings, track remediation efforts, and escalate issues where necessary. Collaborate with control owners to ensure proper documentation, process alignment, and control maturity. Manage evidence collection and maintenance for audit readiness throughout the year. 3. Audit Readiness and Execution Own end-to-end preparation for compliance audits including control mapping, pre-audit checks, and facilitating walkthroughs. Partner with internal teams and external auditors to manage audit logistics, request responses, and evidence delivery. Lead corrective action plans in response to audit findings. 4. Policy and Procedure Support Assist in the development, review, and maintenance of compliance-related policies, procedures, and standard operating documents. Ensure controls and practices align with documentation and are consistently applied across the organization. 5. Reporting and Risk Tracking Maintain dashboards and reports tracking control health, audit status, and compliance program KPIs. Support the GRC Director with compliance reporting for internal and external stakeholders. Qualifications Education Bachelor s degree in information systems, Cybersecurity, Business Administration, or a related field. Master s degree or equivalent experience preferred. Experience 4-6 years of experience in a compliance, risk, or IT audit role. Hands-on experience supporting HITRUST, SOC 2, or PCI DSS audits. Familiarity with risk assessment, control testing, and remediation tracking processes. Certifications (Preferred) Certified Information Systems Auditor (CISA) HITRUST Certified CSF Practitioner (CCSFP) Certified in Risk and Information Systems Control (CRISC) CompTIA Security+ or similar Skills Strong knowledge of compliance frameworks and internal control principles. Excellent project management and organizational skills. Ability to communicate effectively with both technical and non-technical stakeholders. Comfortable managing multiple priorities in a fast-paced environment. Proficiency with GRC tools and audit management platforms. Key Competencies Attention to Detail : Ability to meticulously validate evidence and control execution. Analytical Skills : Identify compliance gaps and recommend practical solutions. Collaboration : Work cross-functionally to gather evidence and align processes. Accountability : Drive audit preparation and closure of compliance gaps. Adaptability : Stay current with evolving regulatory requirements and apply them effectively

Project Role : Application Designer Project Role Description : Assist in defining requirements and designing applications to meet business process and application requirements. Must have skills : AWS Architecture Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : Should be a Graduate Should be a AWS certified Summary :As an Application Designer with expertise in AWS Architecture, you will be responsible for designing and defining requirements for applications that meet business process and application requirements. Your typical day will involve working with cross-functional teams, analyzing business requirements, and designing scalable and secure AWS architectures. Roles & Responsibilities:- Design and develop scalable and secure AWS architectures for applications, ensuring high availability, fault tolerance, and disaster recovery.- Collaborate with cross-functional teams to analyze business requirements and design applications that meet business process and application requirements.- Develop and maintain technical documentation, including architecture diagrams, design documents, and standard operating procedures.- Provide technical guidance and mentorship to junior team members, ensuring adherence to best practices and standards for AWS architecture design and development.- Stay updated with the latest advancements in AWS architecture and cloud computing, integrating innovative approaches for sustained competitive advantage. Professional & Technical Skills: - Must To Have Skills: Expertise in AWS architecture design and development and Terraform .- Good To Have Skills: Experience with other cloud platforms such as Azure or Google Cloud Platform.- Strong understanding of cloud computing concepts and principles, including Infrastructure as Code (IaC), DevOps, and microservices architecture.- Experience with containerization technologies such as Docker and Kubernetes.- Experience with scripting languages such as Python or Bash.- Solid grasp of networking concepts and protocols, including TCP/IP, DNS, and VPN.- Experience with security and compliance frameworks such as SOC 2, PCI DSS, and HIPAA. Additional Information:- The candidate should have a minimum of 7.5 years of experience in AWS architecture design and development.- The ideal candidate will possess a strong educational background in computer science, information technology, or a related field, along with a proven track record of delivering scalable and secure AWS architectures.- This position is based at our Bengaluru office. Qualification Should be a Graduate Should be a AWS certified

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : SailPoint IdentityIQ Good to have skills : SailPoint IdentityNowMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. You will document the implementation of the cloud security controls and transition to cloud security-managed operations. Showcasing creativity and expertise in cloud security solutions. Roles & Responsibilities:- Expected to be an SME, collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Develop and implement security architecture solutions.- Conduct security assessments and provide recommendations.- Lead security projects and initiatives.- Stay updated on the latest security trends and technologies. Professional & Technical Skills: - Must To Have Skills: Proficiency in SailPoint IdentityIQ.- Strong understanding of identity and access management concepts.- Experience in designing and implementing security solutions.- Knowledge of cloud security best practices.- Hands-on experience with SailPoint IdentityNow.- Experience in conducting security assessments and audits. Additional Information:- The candidate should have a minimum of 7.5 years of experience in SailPoint IdentityIQ.- This position is based at our Hyderabad office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : SailPoint IdentityIQ Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : Bachelor or college degree in related field or equivalent work experience Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to document the implementation of cloud security controls and facilitating the transition to cloud security-managed operations, all while ensuring compliance with industry standards and best practices. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Develop and maintain comprehensive documentation of security architecture and frameworks.- Conduct regular assessments and audits to ensure compliance with security policies and standards. Professional & Technical Skills: - Must To Have Skills: Proficiency in SailPoint IdentityIQ.- Strong understanding of cloud security principles and practices.- Experience with identity and access management solutions.- Familiarity with regulatory compliance frameworks such as GDPR, HIPAA, or PCI-DSS.- Ability to analyze and mitigate security risks in cloud environments. Additional Information:- The candidate should have minimum 7.5 years of experience in SailPoint IdentityIQ.- This position is based in Hyderabad.- A Bachelor or college degree in related field or equivalent work experience is required. Qualification Bachelor or college degree in related field or equivalent work experience

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : SailPoint IdentityIQ Good to have skills : SailPoint IdentityNowMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to assess security needs, documenting security controls, and transitioning to cloud security-managed operations. You will engage in discussions to refine security strategies and ensure compliance with industry standards, all while adapting to the evolving landscape of cloud technologies. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work related problems.- Develop and maintain comprehensive documentation of cloud security architecture and controls.- Conduct regular assessments of cloud security measures to ensure effectiveness and compliance. Professional & Technical Skills: - Must To Have Skills: Proficiency in SailPoint IdentityIQ.- Good To Have Skills: Experience with SailPoint IdentityNow.- Strong understanding of cloud security principles and best practices.- Experience with identity and access management solutions.- Familiarity with regulatory compliance frameworks related to cloud security. Additional Information:- The candidate should have minimum 3 years of experience in SailPoint IdentityIQ.- This position is based at our Gurugram office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : ServiceNow Governance, Risk, and Compliance (GRC) Good to have skills : NAMinimum 3 year(s) of experience is required Educational Qualification : BTECH Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. You will also document the implementation of the cloud security controls and transition to cloud security-managed operations. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work related problems.- Develop and implement security architecture solutions.- Conduct risk assessments and provide recommendations for security enhancements.- Collaborate with cross-functional teams to ensure security best practices are implemented.- Stay updated on the latest security trends and technologies.- Provide guidance and mentorship to junior security professionals. Professional & Technical Skills: - Must To Have Skills: Proficiency in ServiceNow Governance, Risk, and Compliance (GRC).- Strong understanding of cloud security principles.- Experience in implementing security controls in cloud environments.- Knowledge of industry standards and regulations related to cloud security.- Hands-on experience with security tools and technologies. Additional Information:- The candidate should have a minimum of 3 years of experience in ServiceNow Governance, Risk, and Compliance (GRC).- This position is based at our Hyderabad office.- A BTECH degree is required. Qualification BTECH

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : ServiceNow Governance, Risk, and Compliance (GRC) Good to have skills : Security Architecture DesignMinimum 2 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Be a key player in ensuring the security of cloud-based systems. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work related problems.- Develop and implement security architecture solutions for cloud environments.- Conduct risk assessments and provide recommendations for security enhancements.- Collaborate with cross-functional teams to ensure security best practices are implemented.- Stay updated on the latest security trends and technologies.- Provide guidance and mentorship to junior security professionals. Professional & Technical Skills: - Must To Have Skills: Proficiency in ServiceNow Governance, Risk, and Compliance (GRC).- Strong understanding of security architecture design.- Experience with security controls implementation in cloud environments.- Knowledge of risk assessment methodologies.- Hands-on experience with cloud security technologies. Additional Information:- The candidate should have a minimum of 2 years of experience in ServiceNow Governance, Risk, and Compliance (GRC).- This position is based at our Nagpur office.- A 15 years full-time education is required. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : SailPoint IdentityIQ Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to assess security needs, documenting the implementation of cloud security controls, and transitioning to cloud security-managed operations. You will engage in discussions to refine security strategies and ensure compliance with industry standards, all while adapting to the evolving landscape of cloud technologies and security threats. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Facilitate training sessions to enhance team knowledge and skills.- Monitor and evaluate the effectiveness of implemented security measures. Professional & Technical Skills: - Must To Have Skills: Proficiency in SailPoint IdentityIQ.- Good To Have Skills: Experience with SailPoint IdentityNow.- Strong understanding of cloud security principles and best practices.- Experience in designing and implementing security frameworks.- Familiarity with compliance standards such as ISO 27001 and NIST. Additional Information:- The candidate should have minimum 5 years of experience in SailPoint IdentityIQ.- This position is based at our Jaipur office.- A 15 years full time education is required. Qualification 15 years full time education

Join us as a Security Analyst We ll look to you to assess, triage, and respond proactively and effectively to security related threats, incidents, requests, and events The work you do will be vital in defending our assets, information, and systems from unauthorised access, use, disclosure, disruption, modification, perusal, inspection, recording, or destruction Collaborating with internal and external stakeholders including third party suppliers, you ll ensure activities relating to incident response, user access, alert monitoring, root cause analysis, and scenario planning are completed in line with standard operating procedures and to a high standard This role is available at associate vice president level What you ll do Working with an array of domains, stakeholders, and specialists, you ll take a proactive role to anticipate and identify security events, incidents, and trends that could adversely impact the bank, our customers, employees, or assets. You ll contribute to security operations including production support, incident response, and on-call rota, and you ll carry out and contribute to root cause analysis on security incidents and events, conduct training and scenario planning to prepare for and anticipate future events. As such, you ll minimise future reoccurrence, and prepare reports and briefings as needed and to a high quality. You ll also develop and maintain response plans, procedures, and playbooks to increase consistency and effectiveness of response capability. As well as this, you ll: Proactively identify and effectively manage risks to deliver key security related customer and compliance outcomes, escalating and driving actions as necessary Actively contribute to security operations such as production support, incident response and on-call rota Maintain the end-to-end security response as directed, and ensure that security related services are delivered in line with expectations and that process change is implemented smoothly Act with pace when responding to customer queries and complaints and when responding to security events, make sure that feedback loops are in place to learn how to improve service and response Interrogate and interpret large volumes of data and analyse and assess data to understand trends and causal factors The skills you ll need We re looking for someone with a passion for cloud security and automation using Agile and DevOps methodologies, as well as promoting shift-left culture, which integrates security analysis into each CI/CD stage. You ll have experience with Azure Cloud and security stack including Defender, Azure Sentinel and Azure Security Centre. You ll also have expertise in automated security assessments and familiarity with third-party security tools integration such as Qualys and Tenable and compliance standards like PCI-DSS. In addition to this, you ll demonstrate: Experience and knowledge of security controls The ability to communicate technical issues in business terms to range of stakeholders Experience in p enetration testing and vulnerability management An understanding of Agile methodologies with experience of working in an Agile team Hours 45 Job Posting Closing Date: 30/06/2025

Job Title: Mid-Level Software Java Developer (Payment Solutions) Department: Reporting To: Chief Technical Innovations Officer Location: Remote Employment Type: Full-time Key Responsibilities Development & Innovation Design, develop, and test Java-based payment solutions (J2EE/J2ME) for new and existing products. Collaborate on system architecture and object-oriented design decisions. Integrate with web services, APIs, and third-party payment systems . Team & Process Actively participate in Scrum ceremonies (stand-ups, sprint planning, retrospectives). Provide technical support for live products, including occasional customer-facing troubleshooting. Compliance & Security Ensure adherence to PCI DSS, P2PE, and EMV standards . Continuously research payment security trends (encryption, tokenization, fraud prevention). Skills & Qualifications Must-Have 3+ years of professional Java development (J2EE/J2ME). 3+ years of experience in with PCI DSS or P2PE compliance Knowledge of payment systems (EMV, card processing, POS integrations). Nice-to-Have Exposure to microservices, cloud platforms (AWS/Azure), or DevOps tools . Experience with C++, .NET, or Kotlin (advantageous). Soft Skills Self-motivated with excellent time management. Clear communicator (able to explain technical issues to non-technical stakeholders). Curious learner with a passion for payment technologies. Practical Details Travel: Must hold a valid passport for occasional travel (UK/global). Holiday: 15 days + public holidays (or days in lieu). Checks: DBS (criminal record) and credit check required.

Permanent opportunity with an RBI-licensed FinTech company for professionals with 2-3 years of experience in GRC, InfoSec, or Compliance.Requires expertise in PCI DSS, ISO 27001, SOC 2, GDPR, RBI guidelines, & experience in audits & risk assessments.

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : SailPoint IdentityNow Good to have skills : NAMinimum 3 year(s) of experience is required Educational Qualification : BE or MCA or MSc with Good Computer Science Background with good academic record. Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. You will also document the implementation of cloud security controls and transition to cloud security-managed operations. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work-related problems.- Develop and implement security architecture solutions.- Conduct security assessments and define security requirements.- Collaborate with cross-functional teams to ensure security measures are integrated.- Stay updated on the latest security trends and technologies.- Provide guidance and mentorship to junior security professionals. Professional & Technical Skills: - Must To Have Skills: Proficiency in SailPoint IdentityNow.- Strong understanding of cloud security principles.- Experience in implementing security controls in cloud environments.- Knowledge of identity and access management concepts.- Hands-on experience with security tools and technologies.- Good To Have Skills: Experience with cloud security certifications. Additional Information:- The candidate should have a minimum of 3 years of experience in SailPoint IdentityNow.- This position is based at our Chennai office.- A BE or MCA or MSc with Good Computer Science Background with good academic record is required. Qualification BE or MCA or MSc with Good Computer Science Background with good academic record.

Project Role : Security Engineer Project Role Description : Apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Must have skills : SailPoint IdentityIQ Good to have skills : NAMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Engineer, you will apply security skills to design, build, and protect enterprise systems, applications, data, assets, and people. You will provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Be a crucial part of ensuring the security of the organization's digital assets and operations. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work-related problems.- Implement security measures to protect computer systems, networks, and data.- Conduct regular security assessments and audits to identify vulnerabilities and risks.- Develop and implement security policies, protocols, and procedures.- Stay updated on the latest security trends, threats, and technologies.- Collaborate with cross-functional teams to enhance overall security posture. Professional & Technical Skills: - Must To Have Skills: Proficiency in SailPoint IdentityIQ.- Strong understanding of identity and access management principles.- Experience with security tools and technologies such as SIEM, IDS/IPS, and DLP.- Knowledge of regulatory compliance requirements like GDPR, HIPAA, or PCI DSS.- Hands-on experience in incident response and security incident management. Additional Information:- The candidate should have a minimum of 3 years of experience in SailPoint IdentityIQ.- This position is based at our Chennai office.- A 15 years full-time education is required. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : SailPoint IdentityNow Good to have skills : NAMinimum 12 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. You will also document the implementation of the cloud security controls and transition to cloud security-managed operations. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Expected to provide solutions to problems that apply across multiple teams.- Develop and implement security solutions for cloud environments.- Conduct security assessments and audits to identify vulnerabilities.- Provide guidance on security best practices and compliance requirements. Professional & Technical Skills: - Must To Have Skills: Proficiency in SailPoint IdentityNow.- Strong understanding of cloud security principles.- Experience with security architecture design and implementation.- Knowledge of security technologies and tools.- Hands-on experience with security assessments and audits. Additional Information:- The candidate should have a minimum of 12 years of experience in SailPoint IdentityNow.- This position is based at our Pune office.- A 15 years full time education is required. Qualification 15 years full time education

Job Description: Location: Any Location Position Type: Full Time Minimum Experience: 5 + years Position Overview: We are looking for a results-driven Senior Sales Executive with at least 5 years of experience in selling Compliance and Cybersecurity services, including PCI-DSS, ISO Standards, SOC Audits, GDPR, SAR, and related offerings. The candidate will be responsible for generating leads, managing client relationships, and closing deals to drive revenue growth. Key Responsibilities: Drive B2B sales for compliance and cybersecurity services. Pitch and present services like PCI-DSS, ISO, SOC, GDPR, and VAPT. Build and manage a strong sales pipeline. Prepare proposals, negotiate contracts, and close deals. Maintain client relationships and expand existing accounts. Meet sales targets and reporting metrics. Responsible for lead generation, client engagement, and sales administration to support the sales and business development. Identify potential clients through prospecting, outbound calls, and other lead generation activities. Coordinate meetings, manage CRM data, and prepare sales presentations and proposals for the sales team. Identify and qualify potential clients through cold calls, emails, and research. Support the creation of lead lists and outreach strategies based on market analysis. Maintain a pipeline of respective clients, ensure regular follow-ups & sales closures. Prepare sales presentations, proposals, and contracts based on client needs and team input Responsible for organizing and scheduling client meetings, product demos, and webinars. Maintain accurate records in CRM, ensuring all lead activities and client interactions are logged Serve as the initial point of contact for inbound leads, responding to client queries and requests for information. Support sales executives in nurturing relationships with prospects through consistent follow-ups and communications. Assist in responding to RFPs (Request for Proposals) and client-specific requirements. Basic understanding of sales techniques, lead generation, and customer relationship management tools (e.g., Salesforce, HubSpot).Strong organizational skills to manage sales tasks, client communication, and documentation. Proficiency in Microsoft Office, presentation tools, and CRM systems. Requirements: Minimum 5 + years of sales experience in compliance/cybersecurity services. Strong understanding of industry standards (PCI-DSS, ISO, SOC, GDPR, etc.). Excellent communication, negotiation, and client management skills. Experience with CRM tools and target-driven environments. Bachelors degree in business, IT, or related field (preferred).

We are looking for an experienced Senior Compliance Analyst with expertise in SOC 2, ISO 27001, PCI DSS, and GDPR regulations. The ideal candidate will have a deep understanding of global security and privacy standards and will play a pivotal role in assessing, implementing, and maintaining the organizations compliance posture. Key responsibilities:- Ensure compliance with all applicable regulatory requirements, including SOC2, ISO 27001, PCI DSS, GDPR rules and guidelines. Develop and implement compliance policies, procedures, and programs. Conduct regular compliance reviews and audits to identify areas of improvement. Collaborate with other departments to ensure effective implementation of compliance measures. Work with external vendors to ensure compliance adherence Maintain up-to date compliance records and provide them to Sales, Marketing, Internal and External Customers on a need-to-know basis Provide training and education on compliance matters to staff and stakeholders. Monitor market trends and regulatory developments to stay informed of potential risks or issues. Job Requirements:- Strong knowledge of audit and regulatory compliance to ensure the security, privacy, and reliability of SaaS services in a global market. Familiarity with ISO 27001, PCI DSS, GDPR rules and guidelines. Ability to work collaboratively with cross-functional teams. Strong analytical skills and attention to detail. Bachelor's degree in a related field preferred but not required. Experience in Leading Software Project Teams desired but not mandatory.

Cybersecurity Incident Manager is responsible for managing and mitigating enterprise-level cybersecurity incidents leading the coordination and communication of incident response efforts. The main priorities are ensuring timely detection, containment, eradication, and recovery from cyber threats while minimizing operational disruptions. Key Responsibilities Monitor, detect, and respond to security incidents using various security tools and technologies. Execute containment, eradication, and recovery procedures during incidents to minimize impact and restore normal operations. Develop and maintain incident response playbooks and escalation procedures to ensure a consistent and efficient response to incidents. Collaborate with other IT and security teams to remediate vulnerabilities and improve the overall security posture. Prepare detailed and accurate incident reports and documentation for internal use and for external stakeholders, if necessary. Stay current with the latest threats, vulnerabilities, and security technologies to ensure effective detection and response capabilities. Serve as the primary coordinator during cybersecurity incidents, aligning efforts across technical and business teams. Conduct real-time analysis and correlation of security events from multiple sources including SIEM, IDS/IPS, firewalls, and endpoint security solutions. Perform in-depth investigation and analysis of security incidents, including malware analysis, forensic investigations, and reverse engineering. Participate in threat hunting activities to proactively identify and mitigate potential security risks. Stay informed about new threats and trends in cybersecurity to enhance response skills. Ensure compliance with the organization's incident response framework and regulatory requirements. Coordinate with Enterprise Risk Management, SOC, Legal, IT, Data Privacy, and other functions for a unified response. Collaborate with third-party vendors and MSSPs as needed. Act as the primary contact for incident updates to executive leadership and stakeholders. Generate comprehensive reports during and after incidents, including root cause analysis and mitigation strategies. Supervise the creation of post-incident reports and ensure that lessons learned are integrated into future planning strategies. Propose security improvements to prevent the reoccurrence of incidents. Perform regular tabletop exercises and simulations to train and prepare teams. Qualifications Bachelors degree in Computer Science, Information Security, or a related field, or equivalent work experience. At least 12+8 years of experience in a SOC or similar security-focused environment. Experience in managing large-scale cybersecurity incidents. Understanding of regulatory requirements and industry standards (e.g. GDPR, HIPAA, PCI-DSS). Proficient written and verbal communication skills. Strong hands-on experience with SIEM platforms (e.g. Palo Alto XSIAM, Splunk, QRadar), IDS/IPS systems, firewalls, endpoint security tools and service management tools (e.g. ServiceNow) Proficiency in conducting forensic investigations and malware analysis. Experience with scripting and automation tools (e.g., Python, PowerShell) to streamline incident response tasks. Deep understanding of network protocols, operating systems, and common attack vectors. Relevant certifications such as CISSP, CISA, CISM, CEH, or GIAC are highly desirable. Excellent problem-solving skills and the ability to work under pressure in a fast-paced environment. Reinvent your world.We are building a modern Wipro. We are an end-to-end digital transformation partner with the boldest ambitions. To realize them, we need people inspired by reinvention. Of yourself, your career, and your skills. We want to see the constant evolution of our business and our industry. It has always been in our DNA - as the world around us changes, so do we. Join a business powered by purpose and a place that empowers you to design your own reinvention. Come to Wipro. Realize your ambitions. Applications from people with disabilities are explicitly welcome.

SYX Services Pvt ltd SYX Services Private Limited is a subsidiary of a US based company called Company (NYSE: GIC). We are registered under the Companies Act, 1956, and provide information technology services solely to Company and its subsidiaries located in the United States and Canada. Our operations started in July, 2011 and we are now a 70-member team comprised of Java developers, SAP professionals, .net developers, Oracle developers, a creative team and a Web Chat team. For over 70 years Company through its operating subsidiaries has been an industry leader providing private label and brand name industrial equipment and supplies to businesses throughout North America Key Responsibilities Work with the IA manager to plan IT audits and develop work programs, timelines, risk assessments, and other planning documents. Work with IT leadership to document the IT processes and identify and test controls. Participate in recurring SOX testing activities and Internal Audit programs. Serve as a fieldwork leader by directing daily progress of IT fieldwork, informing the Management of audit status and issues. Demonstrate and apply a thorough understanding of complex information systems. Use knowledge of the current IT environment and IT risks, identifying potential audit issues and communicating this information to management through written correspondence and verbal presentations. Maintain through a continuing commitment to personal development, including an understanding of technology trends as well as statutory and legislative changes impacting IT throughout North America and Europe. To demonstrate and apply strong project management skills, collaborate with other audit team members, and use current technology and tools to enhance the effectiveness of deliverables. Competencies and skills Audit / risk experience in a $1B+ business. Experience with PCI-DSS Proficiency with ERP controls and security preferably SAP Knowledge and experience of COBIT and Sarbanes-Oxley One or more of the following certifications: CPA, CA, CISA, CISSP, CISM, CBCP, CIA or CFE Qualifications A degree in business, accounting, finance, computer science, information systems, engineering, or a related discipline. Two to five years experience working as an auditor or risk adviser for a public accounting firm, professional services firm or within industry. Strong understanding of IT processes, risks, technologies and controls. Strong presentation abilities underpinned by effective verbal communication and report writing skills. Solid project management, teamwork and relationship skills. Important Facts Job Segment: Systems Engineer, Engineer, Engineering