114 Security Architecture Jobs

At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture, and technology to become the best version of you. And we're counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Understand clients" challenges and industry-related issues and offer solutions in the areas of IT Risk. Participate in go-to-market, create proposals and respond to RFPs, client orals, etc. Identify opportunities for cross-selling to current clients/introduce colleagues from other service lines. Travel to client locations (India and abroad) for meetings, conduct workshops, knowledge-sharing sessions, etc., for existing and new clients. Jointly lead global account relationships along with onshore, manage engagement deliveries, quality, and drive the growth agenda on accounts. Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress, manage risk, and ensure key stakeholders are kept informed about progress and expected outcomes. Manage a team of Seniors and Staffs (across geographies) for the delivery of engagements across clients. Foster an innovative and inclusive team-oriented work environment. Play an active role in counseling and mentoring junior consultants within the firm. Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the client's business. Foster relationships with client personnel to analyze, evaluate, and enhance information systems to develop and improve security at procedural and technology levels. Assist with cultivating and managing business development opportunities. Understand EY and its service lines and actively assess/present ways to serve clients. You will leverage your proven track record of IT Audit experience and strong personal skills to effectively deliver quality results in the assessment, design, and support implementation of controls, security, and IT risk solutions. To qualify for the role, you must have a bachelor's or master's degree and approximately 3-5 years of related work experience. Experience in Internal controls within SAP ECC/S4 Applications and their integrations and a strong understanding of IT application controls, IT general controls, and interface controls. Build or design security around SAP ECC, APO, BW, GRC, HANA, BOBJ, BPC, S/4 & FIORI AND/OR. Strong understanding of Segregation of Duties and User provisioning, experience implementing and supporting SAP GRC - Access Risk Analysis (ARA) and Emergency Access Management (EAM) modules AND/OR. Experience implementing and supporting multiple SAP ECC, S/4 implementations in a Functional role. Have an understanding of configurations, and setups, and security architecture. Excellent communication, documentation, and report writing skills. Excellent leadership and teaming skills, with the ability to train, coach, and mentor. A willingness to travel (India and abroad) for client needs. Professionals with SAP certification preferred, Good to have additional Industry-related certification such as CISA, CISM, etc. EY exists to build a better working world, helping to create long-term value for clients, people, and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform, and operate. Working across assurance, consulting, law, strategy, tax, and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.,

Job Description : Works as part of a 24/7 team working on rotational shifts. Works as part of Platform and Content Engineering handling tunings, stake holder requests, escalations, reporting, trainings. Administers the organization&aposs security tools to gather security logs from environment. Performs lifecycle management of the supported security tools/technologies, Break-fix, Patching, Live update. Adheres to SOPs and notify stake holders on log flow/log format issues. Documents best practices. Identifies opportunities to make automations which will help the incident response team. Performs security incident handling and response from several vectors including End Point Protection and Enterprise Detection and response tools, attack analysis, malware analysis, network forensics, computer forensics, and a broad range of skills in LAN technologies, Windows and Linux O/Ss, and general security infrastructure. Carries out agreed maintenance tasks. Ensures usage of knowledge articles in incident diagnosis and resolution and assist with updating as and when required. Performs defined tasks to monitor service delivery against service level agreements and maintains records of relevant information. Investigates causes of incidents and seeks resolution. Escalates unresolved incidents and follow up until incident is resolved. Provides service recovery, following resolution of incidents. Documents and closes resolved incidents according to agreed procedures. Investigates and identifies root cause of incidents and assist with the implementation of agreed remedies and preventative measures. Maintains knowledge of specific specialisms, provides detailed advice regarding their application. Ensures efficient and comprehensive resolution of incidents, including ensuring that repairs are carried out by coordinating product requests, working with other team members. Logs all such incidents in a timely manner with the required level of detail with all the necessary. Cooperates with all stakeholders including client IT environments, vendors and carriers to expedite diagnosis of errors and problems and to identify a resolution. Knowledge and Attributes: Seasoned working knowledge on implementation and monitoring of any SIEM or security tools/technologies. Seasoned knowledge on security architecture, worked across different security technologies. Customer service orientated and pro-active thinking. Problem solver who is highly driven and self-organized. Great attention to detail. Good analytical and logical thinking. Excellent spoken and written communication skills. Team player with the ability to work well with others and in group with colleagues and stakeholders. Academic Qualifications and Certifications: Bachelor&aposs degree or equivalent in Information Technology or related field. Relevant level of Networking certifications such as CCNA, JNCIA, ACCA, PCNSA, CCSA etc. preferred. Relevant level of Security certifications such as AZ-500, SC-200, Security+, CEH, CISSP, CISM etc. will be added advantage. Required Experience: Seasoned experience in Security technologies like (Firewall, IPS, IDS, Proxy etc.). Seasoned experience in technical support to clients. Seasoned experience in diagnosis and troubleshooting. Seasoned experience providing remote support in Security Technologies. Seasoned experience in SOC/CSIRT Operations. Seasoned experience in handling security incidents end to end. Knowledge on networking, Linux and security concepts. Seasoned experience in configuring/managing security controls such as Firewall, IDS/IPS, EDR, NDR, UTM, Proxy, SOAR, HoneyPots and other security tools. Knowledge on log collection mechanism such as Syslog, Log file, DB API. Knowledge in security architecture. Seasoned experience in Security engineering. Workplace type: On-site Working About NTT DATA NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo. Equal Opportunity Employer NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today. Show more Show less

Job Description The Oracle Cloud Infrastructure (OCI) Security Services organization presents a rare opportunity to contribute to the development of next-generation, AI-driven cybersecurity solutions at cloud scale. This effort centers on ingesting and processing massive volumes of telemetry and security event data across OCI, leveraging advanced techniques including generative AI (GenAI), large language models (LLMs), and machine learning (ML) to build intelligent detection, response, and mitigation systems. The goal is to deliver autonomous, adaptive security capabilities that protect OCI, Oracle, and our global customer base against evolving threat landscapes. Inviting you to build along the high scale, low latency , distributed systems including massive data pipelines and database along with GenAI capabilities. Must-have Skills BS/MS degree or equivalent in related technical field involving coding or equivalent practical experience with 5+ years of overall experience along with exposure to at least 1 cloud service provider (AWS/OCI/Azure/GCP etc.) . Experience in building and designing microservices and/or cloud native applications. Either strong on databases front or on building big data systems (including ETL pipelines) Being a problem solver with strong can-do attitude and ability to think on the go would be critical for success on this role. Strong fundamentals on OS, networks, distributed systems, designing fault tolerant and high available systems. Strong on at least one of the modern programming languages (Java, Kotlin, Python, C#) along with containers experiences (likes of Docker/Kubernetes). Demonstrated ability to adapt to new technologies and learn quickly. Must be detail-oriented (critical and considerate eye for detail), task-driven and have excellent communication skills. Be organized and goal-focused, ability to deliver in a fast-paced environment with minimal supervision. Strong, creative problem-solving skills and ability to abstract and share details to create meaningful articulation. Preferred Skills Or Nice-to-have Skills Experience with Architectural patterns for High Availability, Performance, Scale Out architecture, Disaster Recovery, Security Architecture Knowledge of cloud-based architectures, deployment and operational aspects of cloud set up is a plus. Experience in implementing container monitoring tools like Prometheus/Grafana, CI/CD pipelines (Jenkins, GitLab etc.), using/creating build tools (Gradle, Ant, Maven, or similar) Responsibilities Hands-on and seasoned engineer who can design and drive end to end engineering efforts (incld design, development, test infrastructure, operational excellence) Resolve complex technical issues and make design decisions to meet the critical requirements of this scalable, highly available, secure multi-tenant enablement of services in cloud. Mentor and guide junior members in the team on the technological front. Work closely with all the stakeholders including the Other technical Leads, Director, Engineering manager, architects, product, and program managers to deliver product features on time and with high quality. Proactively identify and resolve risks and issues that may dent the teams ability to execute. Work with various external (application) teams integration with the product and help guide the integration. Understand various Cloud technologies in Oracle to help evolve the cloud provisioning and enablement process on a continuous basis. Qualifications Career Level - IC3 About Us As a world leader in cloud solutions, Oracle uses tomorrows technology to tackle todays challenges. Weve partnered with industry-leaders in almost every sectorand continue to thrive after 40+ years of change by operating with integrity. We know that true innovation starts when everyone is empowered to contribute. Thats why were committed to growing an inclusive workforce that promotes opportunities for all. Oracle careers open the door to global opportunities where work-life balance flourishes. We offer competitive benefits based on parity and consistency and support our people with flexible medical, life insurance, and retirement options. We also encourage employees to give back to their communities through our volunteer programs. Were committed to including people with disabilities at all stages of the employment process. If you require accessibility assistance or accommodation for a disability at any point, let us know by emailing [HIDDEN TEXT] or by calling +1 888 404 2494 in the United States. Oracle is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans status, or any other characteristic protected by law. Oracle will consider for employment qualified applicants with arrest and conviction records pursuant to applicable law. Show more Show less

As a Specialist II, Audit and Advisory at TransUnion, you will have the opportunity to contribute to the cybersecurity and IT practices and controls auditing process within the organization. Your responsibilities will include assisting in the development of risk-based annual audit plans, participating in risk assessment meetings, and coordinating with process owners to conduct controls assessments. You will be involved in analyzing, testing, and evaluating the organization's control environment using a mix of traditional sampling and data analytics/automation methods. Additionally, you will perform detailed assessments of system implementations and cloud migrations, lead engagements when necessary, and communicate audit findings to process owners effectively. Your role will also involve documenting audit procedures, preparing draft audit reports, analyzing information security areas such as governance, risk management, access controls, cybersecurity, and more. You will track and monitor open audit issues for remediation, research security trends and prevention technologies, and participate in departmental initiatives and special projects. To excel in this role, you should have 4-5 years of experience in IT Audit, IT Assessor, or Information Security roles, with a minimum of 2 years in a Public Accounting Firm. A Bachelor's degree in computer science or related field is required, along with a strong understanding of IT and security frameworks such as NIST, CIS, ISO, and COBIT. Industry certifications like CISSP or CISA are also necessary. This hybrid position will require you to perform job responsibilities virtually as well as in-person at a designated TU office location for a minimum of two days a week. If you are a self-driven individual with excellent communication skills, problem-solving abilities, and a strong technical background, we encourage you to apply for the Specialist II, Audit and Advisory role at TransUnion.,

As the Manager of Information Security at our company based in Mumbai (Goregaon (w)), you will play a crucial role in defining the security roadmap for the organization for the next 12 to 24 months. Your responsibilities will include establishing security architecture, standards, technology stack, and frameworks for both internal and external applications and products. It will be your duty to ensure that the security posture of the organization is maintained at a desired level at all times while aligning with business requirements for continuity in case of critical failure points. You will lead complex, large-scale programs aimed at driving a culture change towards security throughout the enterprise. Your expertise will be essential in ensuring that the organization complies with security standards like NIST, SOC2, HIPPA, ISO, and MITRE. Conducting accreditation interviews, risk assessments, and technical analyses to identify areas of risk and non-compliance will also be part of your responsibilities. Applicants based in Mumbai will be given priority for this position. You will be leading the security function within the company and acting as the subject matter expert in managing overall information security. Reporting directly to the Chief Information Security Officer (CISO), you will be responsible for safeguarding the company's digital assets from unauthorized access, both online and on-premises. This includes monitoring and analyzing metrics and data to detect suspicious activity, as well as proactively identifying and mitigating risks to prevent breaches. Your role will involve maintaining up-to-date security systems and documentation, including incident response and disaster recovery plans. Staying informed about the latest security technologies and processes to enhance the overall security infrastructure will be crucial. Your knowledge of enterprise IT security concerns, technologies, and best practices will be essential, including VPNs, network security, encryption, authentication, and various network protocols. To be a suitable candidate for this position, you should hold a minimum of two industry-leading certifications like CISA, CISSP, CGEIT, or ECH. Experience in the finance domain, particularly in broking, insurance, or wealth management, is preferred. You should have a proven track record in managing corporate risk control, security, and compliance, as well as setting up and maintaining security functions. Effective planning, execution, decision-making, and the ability to manage multiple projects and priorities are key competencies required for this role. With 12-15 years of related experience in Information Security, risk, compliance, or a similar position, you should demonstrate hands-on ability, high standards, resilience to failure, and a proactive approach to creating and executing IT network and cyber-security plans. Your commitment to excellence, stability, and full ownership of strategies will be critical in ensuring the security and continuity of our network assets and services.,

Choosing Capgemini means choosing a company where you will be empowered to shape your career in the way you'd like, supported and inspired by a collaborative community of colleagues around the world, and able to reimagine what's possible. Join us and help the world's leading organizations unlock the value of technology and build a more sustainable, more inclusive world. Assess organizational security posture and conduct risk analysis for IT projects and operations. Perform security reviews to identify architectural and policy gaps, and recommend corrective actions. Ensure compliance with security principles across applications, networks, and systems. Develop and test security baselines, build audit environments, and prepare compliance reports. Drive continuous security improvements and guide teams in remediating control gaps. 69 years of experience in network/system security, threat analysis, and risk mitigation. Strong knowledge of security architecture, principles, and compliance frameworks like ISO 27001, PCI-DSS. Proficient in vulnerability assessments, system hardening, and tools such as Qualys, Algosec, or Rapid7. Experienced in reviewing application/system configurations and aligning with OWASP, CIS, and NIST standards. Excellent communication and presentation skills, with a proven ability to engage executive stakeholders. Work on enterprise-scale security architecture, risk mitigation, and compliance using modern tools and frameworks. Collaborate with global teams to assess vulnerabilities, implement hardening guidelines, and ensure secure system/application configurations. Clear career progression paths from engineering roles to architecture and consulting. Be part of mission-critical projects that ensure security, compliance, and operational efficiency for Fortune 500 clients. Capgemini is a global business and technology transformation partner, helping organizations to accelerate their dual transition to a digital and sustainable world, while creating tangible impact for enterprises and society. It is a responsible and diverse group of 340,000 team members in more than 50 countries. With its strong over 55-year heritage, Capgemini is trusted by its clients to unlock the value of technology to address the entire breadth of their business needs. It delivers end-to-end services and solutions leveraging strengths from strategy and design to engineering, all fueled by its market-leading capabilities in AI, generative AI, cloud and data, combined with its deep industry expertise and partner ecosystem.,

This is a full-time on-site role for an OT Network Engineer located in Chennai. As an OT Network Engineer, your responsibilities will include network administration, network engineering, troubleshooting, network security, and network design. You will manage and maintain firewall configurations, ensure network security, perform network audits, and optimize network performance. Collaboration with the IT team is essential to support and enhance the overall network infrastructure. Your role will involve assessing, auditing, recommending, designing, documenting, and improving security solutions and processes for industrial and manufacturing process and control network environments. Working closely with product development, service teams, and product managers is crucial to achieve positive security outcomes. Collaborating with the OT Manufacturing team will be necessary to develop intrusion and prevention processes, techniques, and solutions. You will be responsible for implementing security architecture, methods, and controls required to meet industry standards, compliance, audit, and regional regulatory requirements. Responding to and resolving or escalating security incidents when appropriate is part of your duties. Developing and maintaining documentation for security systems and operational procedures is essential for this role. To succeed in this position, you should have experience in OT/ICS or industrial environments, understanding the unique challenges encountered within critical infrastructure or OT/ICS environments. Previous roles in system/network administration, engineering, OT security analysis, or operations will be beneficial. A solid understanding of networking and computer systems architecture is required, and you should be capable of conducting technical security assessments. Moreover, familiarity with processes and procedures for deploying/implementing infrastructure projects such as data centers, corporate settings, financial institutions, or industrial environments is essential. Knowledge of Palo Alto Firewalls, IoT Security, Network Vlan, and Routing will be advantageous for this role. Inspace is a technology consulting company managing medium to large-sized enterprises across India, aiming to optimize IT infrastructure and core business applications. The company specializes in offering tailored services to achieve optimal performance and growth through technology while performing technology audits focused on business needs. Inspace collaborates with clients independently of principal companies to ensure unbiased consultancy and works with clients for successful ERP implementation, training vendors to achieve high performance and accelerated business growth. This role offers 5 working days per week in a day shift at Guindy, Chennai.,

Synopsis of the role Looking for a Cyber Security staff with audit experience in consulting/cooperate on ISO 27001, Internal Cyber security reviews of customers and Vendor Infosec Risk assessments. What Youll Do Risk Management: Identify, assess, and mitigate information security risks to the organization&aposs assets, data, and systems. Compliance: Ensure compliance with relevant laws, regulations, and industry standards, such as GDPR, NIST, PCI-DSS, and ISO 27001. Handle Internal and External ISO 27001:2013 Audits. Perform customers (members) security Risk assessments, due Diligence Onboarding & reviews. Manage and coordinate for all regulatory (RBI etc) submissions Security Awareness: Develop and implement security awareness training programs for employees to promote a culture of security. Incident Response: Develop and manage incident response plans to ensure prompt and effective response to security incidents. Vulnerability Management: Implement vulnerability management processes to identify, classify, and remediate vulnerabilities in systems and applications. Security Architecture (Cloud and On Prime) : Design , review and implement secure architectures for systems, networks, and applications. Third-Party Risk Management: Assess and mitigate information security risks associated with third-party vendors and service providers. What Experience You Need Masters or Bachelor&aposs degree in Computer Science or Electronic & telecommunication, Information Security, or related field. Certifications: CPENT, CEH ISO 27001, or CISA certification preferred. Experience: Minimum 4 -5 years of experience in information security. Strong knowledge of information security principles, risk management, and compliance. Excellent communication skills. Experience with cloud security platforms and technologies Soft skills: Time management - Effective time management and prioritizing Collaboration - Ability to work & collaborate with cross functional teams Adaptability: Ability to adapt to changing security landscapes and professional environments. What Could Set You Apart People management skills & Positive attitude Good Communication skill Passion to continuously learn and work to add value to the organization security environment. Show more Show less

As a Security Architect at EY, you will play a crucial role in leading the implementation of security solutions for our clients to help them protect their businesses in a globally connected environment. You will be a part of our highly successful Cyber Security team, collaborating with international specialists to address complex information security needs and contribute to enhancing our clients" business resilience. Your responsibilities will include providing Enterprise and Cyber security architecture services to our global clients, creating reusable solutions for common security challenges, and designing security control libraries that align with industry standards to ensure compliance and effectiveness. To excel in this role, you will need expert-level knowledge in technical IT security domains such as infrastructure, networks, databases, security monitoring, and cloud security. Your experience in assessing solution architectures, practical security vulnerability remediation, and managing multiple stakeholders will be essential. Additionally, you should possess strong technical security skills in assessment, design, implementation, architecture, and project delivery, preferably backed by industry certifications such as CISSP, CISA, or CISM. Your ability to identify security gaps, design practical solutions, and ensure operational excellence will be key to your success in this role. To qualify for this position, you should have 8-10 years of professional experience in cyber security consulting, strong project management and interpersonal skills, and advanced communication abilities. A Bachelor's or postgraduate degree in computer science, information systems, engineering, or a related field will be advantageous. While technical expertise is important, your communication skills, relationship-building abilities, and commitment to delivering exceptional client service will set you apart as a candidate for this role. Working at EY will provide you with opportunities for personal and professional growth, exposure to diverse projects, and a supportive environment that values collaboration and knowledge exchange. You will have the chance to work with a team of professionals dedicated to creating new value for clients and contributing to building a better working world. EY offers support, coaching, and feedback from engaging colleagues, opportunities for skills development and career progression, as well as the freedom to shape your role according to your strengths and preferences. Join EY in shaping the future with confidence and making a positive impact on clients, society, and the planet. Be a part of our dynamic team that is committed to building trust in capital markets and driving positive change through innovative solutions and global collaboration.,

As a candidate, you will be responsible for understanding business requirements through discovery processes. You will analyze and identify technical features in the solution, conduct technical gap and fitment analysis, and select the appropriate LLM model and its variants for optimal performance and expense. Your role will involve creating the overall solution architecture, which covers infrastructure, data, AI, apps, security, and operations. You will be tasked with building feasible, best-fit, and optimally designed innovative techniques in architecture. Collaboration with the customer's enterprise architecture team will be crucial to ensure alignment with their requirements. Additionally, you will need to have expertise in Azure/AWS cloud architecture, security architecture, data architecture, open AI/Bedrock, cognitive services, and serverless technologies such as Azure Function and AWS DynamoDB. Overall, your role will be pivotal in designing and implementing cutting-edge solutions that meet both business and technical requirements.,

The Senior Architect - Cloud Cybersecurity role at United Airlines Business Services Pvt. Ltd involves supporting the maturing of cloud security capabilities for United Airlines. As part of a cross-disciplinary Cyber team, you will be responsible for full stack security architecture, including the creation and maintenance of security documentation. Collaborating with various teams, you will ensure the adoption of security best practices throughout the application lifecycle. Additionally, you will conduct threat modeling, develop cloud security policies, and act as a subject matter expert in various technology domains. Key Responsibilities: - Develop security documentation and partner with teams to ensure the adoption of security best practices - Conduct threat modeling and design cloud security policies for different types of clouds - Act as a subject matter expert in multiple technology domains - Partner with stakeholders to understand business requirements and develop security principles - Develop security architecture strategies and collaborate with cybersecurity teams - Define and implement security standards and frameworks - Train and coach development and engineering teams on integrating security tools - Champion secure infrastructure-as-code for the success of cloud environments - Lead continuous improvement efforts and mentor junior team members Minimum Qualifications: - Bachelor's degree - 6+ years of technical experience related to cloud - Working knowledge of cloud service providers - Proficiency in cloud security frameworks and best practices - Knowledge of security protocols, cryptography, and network architectures - Proficiency in scripting and automation tools - Understanding of IAM, network security, and data encryption - Knowledge of compliance standards - Proficiency in security automation and orchestration - Ability to work independently and excellent communication skills - Legally authorized to work in India without sponsorship - Fluent in English Preferred Qualifications: - Master's degree - Relevant certifications (e.g., CCIE, CISSP) - AWS Solution Architect Pro., Networking, and Security Specializations - Experience in Kubernetes security - 8+ years of technical experience, with 5 years in cloud technology Successful completion of the interview process is necessary for this role. This position does not offer expatriate assignments or sponsorship for employment visas.,

As the Head of Technology Infrastructure Security Operations Manager, your primary responsibility is to oversee and lead the security operations team in safeguarding the bank's technology infrastructure. Your key duties include managing the day-to-day operations of the security team, ensuring efficient incident response, and handling security-related incidents and breaches. Collaboration with IT teams to integrate security best practices into the organization's technology infrastructure is crucial. Regular risk assessments and security audits must be conducted to identify potential weaknesses and areas for improvement. Implementing security measures and controls to prevent unauthorized access, data breaches, and cyberattacks is essential. Staying updated with the latest security trends, threats, and technologies is necessary to enhance the organization's security posture continually. Evaluating and selecting security tools, technologies, and vendors that align with the organization's needs and security objectives is part of your role. Managing and monitoring security systems like firewalls, intrusion detection systems, and SIEM tools are vital tasks. Providing leadership, mentorship, and training to the security operations team is necessary to build a strong and capable workforce. Collaboration with other departments and stakeholders ensures security compliance with relevant industry standards and regulations. Reporting security metrics, incidents, and performance to executive management and stakeholders is also part of your responsibilities. Your role is crucial in establishing a robust and proactive security framework to safeguard the organization's technology infrastructure and protect it from potential cyber threats. Skills required for the position of Technology Infrastructure Security Operations Manager include a combination of technical and managerial expertise. You should have a strong understanding of cybersecurity fundamentals, network security, cloud security, operating systems security, vulnerability management, SIEM, incident response, IAM, encryption and cryptography, security auditing and compliance, threat intelligence, security architecture and design, as well as IT governance and risk management.,

As a Solution Architect for MS Dynamics 365 ERP, your primary responsibilities will involve gathering requirements, identifying operational and organizational challenges affecting the business, and optimizing existing business processes. You will categorize business requirements, perform gap fit analyses, and validate requirements throughout the solution lifecycle. Your role will require defining the solution architecture by mapping business requirements to functional components, evaluating build versus buy options, and selecting appropriate solution design patterns. Additionally, you will be responsible for describing and documenting the solution blueprint, including organization structures, implementation timelines, business process catalogs, solution gaps, disaster recovery strategies, integration details, business intelligence components, reporting components, and security roles. In terms of deployment, you will need to select a deployment strategy, deployment model, logical phases for solution development, alternative deployment methodologies, and solution maintenance cadence. You will also define an application lifecycle management (ALM) strategy, code management, data flow strategy, build automation capabilities, and data management strategies. Your responsibilities will extend to determining a security architecture, managing implementations, understanding Lifecycle Services (LCS) tools and methodologies, determining licensing requirements, estimating license needs, defining testing strategies, including regression testing, automated testing, performance testing, and troubleshooting performance issues. Overall, as a Solution Architect for MS Dynamics 365 ERP, you will play a crucial role in defining, designing, and implementing solutions that optimize business processes, enhance operational efficiency, and ensure the successful deployment and management of MS Dynamics 365 ERP systems.,

You will be providing technical expertise and support to clients, IT management, and staff in risk assessment and the implementation of appropriate data security procedures. Utilizing your specific knowledge in a discipline acquired through formal education or equivalent experience, you will guide others as a project manager or consultant. Your responsibilities will include performing information security risk management processes for new and existing third-party business partners of Northern Trust, reviewing master services contracts to identify information security clauses, and collaborating with procurement teams to ensure compliance with information security guidelines. In addition, you will document and report findings from risk management processes, work with internal stakeholders and functional teams to assign and track identified risks, and demonstrate knowledge in various domains such as Information Security Governance, Access Control, Network Security, Application Security, Cryptography, and more. Your ability to interact professionally, build relationships at all levels within Northern Trust, foster a positive and collaborative environment, and work effectively both independently and as part of a team will be essential in this role. Joining Northern Trust means being part of a flexible and collaborative work culture that encourages movement within the organization, accessibility to senior leaders, and a commitment to assisting the communities served. If you are excited about working with one of the world's most admired and sustainable companies, apply today and discuss your flexible working requirements to achieve greater together. Northern Trust is dedicated to working with and providing reasonable accommodations to individuals with disabilities throughout the employment process. Email MyHRHelp@ntrs.com for any accommodation needs.,

Achieving our goals starts with supporting yours. Grow your career, access top-tier health and wellness benefits, build lasting connections with your team and our customers, and travel the world using our extensive route network. Come join us to create whats next. Lets define tomorrow, together. Description United&aposs Digital Technology team is comprised of many talented individuals all working together with cutting-edge technology to build the best airline in the history of aviation. Our team designs, develops and maintains massively scaling technology solutions brought to life with innovative architectures, data analytics, and digital solutions. Job Overview And Responsibilities The Senior Manager - Product Cybersecurity is a technical leader responsible for managing a team of highly innovative cybersecurity engineers responsible for developing and maintaining end-to-end security architecture of Uniteds product(s)/application(s)/service(s).? This person will create and implement a vision for security across all products within the United portfolio.? Define, prioritize, allocate resources, track, and provide status reporting of work assignments, projects, and programs.?Provides overall resource/project management for department, including matching people to projects, obtaining needed resources, etc.? Monitors changes in legislation and compliance standards that affect assigned areas of responsibility and proactively acts to update standards, best practices and architectures based on this information. Manages, coordinates, and evaluates the work of assigned cybersecurity department to ensure the security, confidentiality, integrity & availability of Uniteds systems, products, and services.? Works with cross functional teams to develop, document and implement cybersecurity standards, best practices, and architectures.? Coordinates remediation of non-compliant items to meet applicable compliance standards and best practices.? Manages the development and implementation of cybersecurity strategies.? Maintains relationships with internal and external audit agencies to facilitate execution of audits.? This position is offered on local terms and conditions. Expatriate assignments and sponsorship for employment visas, even on a time-limited visa status, will not be awarded. This position is for United Airlines Business Services Pvt. Ltd - a wholly owned subsidiary of United Airlines Inc. Qualifications Whats needed to succeed (Minimum Qualifications): Bachelor&aposs degree in Computer Science, Engineering or Business Administration 9+ years of IT and business/industry work experience Strong and proven ability to communicate technical concepts to a non-technical audience and stakeholders? Experience with threat modeling or other risk identification techniques, and risk management? Experience managing teams to identify strategic and tactical risk? Experience partnering and influencing cross functional teams to drive security improvements? Experience driving prioritization of security risks/vulnerabilities and ensuring that they are properly understood by the business and fixed and/or mitigated? Strong analytical and quantitative skills with the ability to use data and metrics to back up assumptions and recommendations and drive actions? Excellent oral and written communication skills? Demonstrated ability to convey complex technical subjects in a concise and direct manner? Demonstrated problem solving, critical thinking, logical structuring skills and a willingness to learn and stretch outside of your comfort zone? Demonstrated knowledge on threat landscape, security threat and vulnerability management, and security monitoring and analytics Must be legally authorized to work in India for any employer without sponsorship Must be fluent in English (written and spoken) Successful completion of interview required to meet job qualification Reliable, punctual attendance is an essential function of the position What will help you propel from the pack (Preferred Qualifications): MS in Computer Science, Mathematics, Information Systems, or other related field One or more of the following:? Certified Ethical Hacker (CEH)? GIAC Security Essentials (GSEC)? Certified Information Security Manager (CISM)? Comp TIA Security +? Certified Information Systems Security Professional (CISSP)? Certified Information Systems Auditor (CISA)? Systems Security Certified Practitioner (SSCP)? CompTIA Advanced Security Practitioner (CASP+)? Offensive Security Certified Professional (OSCP)? AWS Solution Architect Pro., Networking, and Security Specializations? Working knowledge and/or hands on experience with as many as possible of the following areas:?? Operating system & platform security?? Networking Security and an understanding of network and web related protocols?? Voice over IP and unified communication security? Strong subject matter expertise in the fields of IT security and risk management? Strong knowledge of IT infrastructure security best practices, procedures, and standards? Experience with cloud native products and in-depth understanding microservice topologies and implementations? Expertise in application development and dev-ops security technologies and integration?? Demonstrated ability to think strategically about business, product, and technical challenges? Experience within the transformation of traditional data center security measures into industry adopted cloud technologies?? Proven ability to work with compliance frameworks and requirements?? Ability to work in a fast-paced and Agile development environment?? Experience providing training and mentorship? Ability to perform manual security code reviews? Ability to interpret dynamic/static analysis tools, and penetration test results? Show more Show less

About the role As a Senior Cyber Security Partner; you will transform the security maturity of key product areas and teams. You will be the face of security group for them. Everything you do is in the context of the product; roadmap; its risk acceptance level; the technology stack; and its architecture. You build a comprehensive understanding of the threat landscape and its potential risks to the business. Through effective partnership; you engage the leadership to make well-informed decisions about security and privacy. You will be responsible for Following our Business Code of Conduct and always acting with integrity and due diligence and have these specific risk responsibilities: Provide product and engineering teams with direction and guidance on all security matters. There is a whole security group to back you up; so it is not as scary as it sounds. Engage engineering leadership on security roadmap and oversee security posture of what they build. Co-own the security roadmap; discuss; prioritise; and co-develop plans for remediation for the product areas. Empower security champions to succeed and creating a strong feedback loop for improvements. Represent security in all product and architecture meet-ups. Be part of critical decisions about security. Oversee product security activities; from the early development of security requirements; architecture reviews; and threat modelling; to strengthening application security; mitigating supply-chain risks; securing secrets; pipelines; reviewing vulnerabilities; and infrastructure security. Perform security architecture reviews of third-party services. Identify acceptable risk levels and assist with action plan; policy; and procedural changes for risk mitigation. Adopt a risk-based approach and guide management in identifying business risks and potential impact to Tesco. Continuously seek both tactical and strategic solutions to enhance security. As the security expert for the product area; engage across the security group to strengthen controls across identification; protection; detection; response; and recovery. Oversee assurance activities like security testing; purple testing; assurance; auditing. Reduce security fatigue for engineering and provide faster feedback within existing developer workflows; not adding another tool for them to check. Empower the teams you work with; but also challenge the status-quo. As a senior member of the team; engage across the security group on new ideas and initiatives. Contribute to strengthen organisation standards and policies; develop cookbooks; secure patterns; take part in security research and tool evaluations. You are committed to continuous improvement; seizing opportunities; and inspire change for the team. Mentor others in the team and take part in enhancing their skills and career development. You will need To excel in this position, we expect you to have the following: Possess experience across multiple sectors and have undertaken diverse roles in engineering and security. Demonstratable accomplishments of collaborating with leadership and management on security programmes and initiatives. Good knowledge of various security domains, and solid experience in architecture practices and design patterns the technology might have changed but most of the security challenges have not. Experience in designing security and privacy controls with sound understanding of standards and regulation. Experience in threat modelling, attack trees, vulnerability chaining, applying MITRE ATT&CK framework. Good understanding of web applications, REST APIs, micro services, eventing, modern application frameworks, and mobile apps. Good understanding of software architecture, network topologies, SaaS, PaaS, IaaS (infrastructure as a service). Proficient in applying industry standards such as OWASP ASVS (Application Security Verification Standard), OWASP Top 10, CIS (Centre of Internet Security) controls and benchmarks. Experience with cloud native and hybrid architectures with an emphasis on containerised workloads and Kubernetes. Some development experience is always a plus - Java, cloud, Golang, python. You do not need to be a developer but we need you to understand the implications of security on engineering velocity. Degree in computer science / information systems or engineering field, or equivalent experience. Experience with regulations like GDPR (General Data Protection Regulation), PCI-DSS is desirable. Azure or AWS (Amazon Web Services) cloud security certifications is desirable. Excellent interpersonal skills and leadership skills. Whats in it for you At Tesco, we are committed to providing the best for you. As a result, our colleagues enjoy a unique, differentiated, market- competitive reward package, based on the current industry practices, for all the work they put into serving our customers, communities and planet a little better every day. Our Tesco Rewards framework consists of pillars - Fixed Pay, Incentives, and Benefits. Total Rewards offered at Tesco is determined by four principles -simple, fair, competitive, and sustainable. Salary - Your fixed pay is the guaranteed pay as per your contract of employment. Leave & Time-off - Colleagues are entitled to 30 days of leave (18 days of Earned Leave, 12 days of Casual/Sick Leave) and 10 national and festival holidays, as per the companys policy. Making Retirement Tension-FreeSalary - In addition to Statutory retirement beneets, Tesco enables colleagues to participate in voluntary programmes like NPS and VPF. Health is Wealth - Tesco promotes programmes that support a culture of health and wellness including insurance for colleagues and their family. Our medical insurance provides coverage for dependents including parents or in-laws. Mental Wellbeing - We offer mental health support through self-help tools, community groups, ally networks, face-to-face counselling, and more for both colleagues and dependents. Financial Wellbeing - Through our financial literacy partner, we offer one-to-one financial coaching at discounted rates, as well as salary advances on earned wages upon request. Save As You Earn (SAYE) - Our SAYE programme allows colleagues to transition from being employees to Tesco shareholders through a structured 3-year savings plan. Our green campus promotes physical wellbeing with facilities that include a cricket pitch, football field, badminton and volleyball courts, along with indoor games, encouraging a healthier lifestyle. About Us Tesco in Bengaluru is a multi-disciplinary team serving our customers, communities, and planet a little better every day across markets. Our goal is to create a sustainable competitive advantage for Tesco by standardising processes, delivering cost savings, enabling agility through technological solutions, and empowering our colleagues to do even more for our customers. With cross-functional expertise, a wide network of teams, and strong governance, we reduce complexity, thereby offering high-quality services for our customers. Tesco in Bengaluru, established in 2004 to enable standardisation and build centralised capabilities and competencies, makes the experience better for our millions of customers worldwide and simpler for over 3,30,000 colleagues Tesco Technology Today, our Technology team consists of over 5,000 experts spread across the UK, Poland, Hungary, the Czech Republic, and India. In India, our Technology division includes teams dedicated to Engineering, Product, Programme, Service Desk and Operations, Systems Engineering, Security & Capability, Data Science, and other roles. At Tesco, our retail platform comprises a wide array of capabilities, value propositions, and products, essential for crafting exceptional retail experiences for our customers and colleagues across all channels and markets. This platform encompasses all aspects of our operations from identifying and authenticating customers, managing products, pricing, promoting, enabling customers to discover products, facilitating payment, and ensuring delivery. By developing a comprehensive Retail Platform, we ensure that as customer touchpoints and devices evolve, we can consistently deliver seamless experiences. This adaptability allows us to respond flexibly without the need to overhaul our technology, thanks to the creation of capabilities we have built. Show more Show less

You are looking to hire an IT Infra and Cybersecurity Lead for a leading Real Estate Developer in Bangalore. As the chosen candidate, you will be entrusted with the crucial task of establishing and maintaining the enterprise vision, strategy, and program to ensure that information assets and technologies are adequately protected. Your role will involve working closely with executive management to define acceptable risk levels for the organization, and you will be spearheading efforts to safeguard the company's information systems and data. Your responsibilities will include overseeing both IT Infrastructure and Cybersecurity domains. Regarding IT Infrastructure, you will lead the planning, deployment, and management of various components such as servers, networks, storage, and cloud services. It will be your responsibility to ensure high availability, performance, and scalability of infrastructure systems, manage vendor relationships and service level agreements, oversee disaster recovery and business continuity planning, monitor system performance, and implement necessary improvements. In the realm of Cybersecurity, you will be expected to develop and enforce cybersecurity policies, standards, and procedures, conduct risk assessments and vulnerability scans, implement mitigation strategies, manage security tools like firewalls, antivirus, SIEM, and endpoint protection, lead incident response and forensic investigations, and ensure compliance with relevant regulations such as GDPR and ISO 27001. In addition to the technical aspects of the role, you will be required to exhibit strong leadership and collaboration skills. This will involve leading and mentoring a team of IT and security professionals, collaborating with cross-functional teams to align IT and security strategies with business goals, and providing regular reports and updates to senior management on infrastructure and security posture. To qualify for this position, you should hold a Bachelor's degree in Computer Science, Information Technology, or a related field, with a Master's degree being preferred. Possession of a professional security management certification such as CISSP, CISM, or CISA is essential. You should have a minimum of 18+ years of experience in a combination of risk management, information security, and IT Infrastructure. Familiarity with common information security management frameworks like ISO/IEC 27001 is necessary. Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to convey security and risk-related concepts to both technical and non-technical audiences are vital. A proven track record in developing information security policies and procedures, executing successful programs in a dynamic environment, strong project management skills, and experience in contract and vendor negotiations and management are also required. Preferred skills for this role include knowledge and experience in developing and documenting security architecture and plans, strong analytical skills to analyze security requirements and apply appropriate security controls, experience in managing a security operations center (SOC), and familiarity with IT Networks and IT Infrastructure management. If you meet these qualifications and possess the necessary skills and experience, we invite you to apply for this challenging and rewarding position as the IT Infra and Cybersecurity Lead for a leading Real Estate Developer in Bangalore.,

As an Associate Security Platform Engineer at NTT DATA, your role will involve being an entry-level subject matter expert focused on facilitating problem resolution and mentoring for the overall team. You will perform operational security tasks such as performance and availability monitoring, log monitoring, security incident detection and response, security event reporting, and content maintenance (tuning). Your responsibilities will include detecting and monitoring escalated threats and suspicious activity affecting the organization's technology domain, which includes servers, networks, appliances, and all infrastructure supporting production applications for the enterprise, as well as development environments. In this role, you will work as part of a 24/7 team on rotational shifts and be involved in Platform and Content Engineering, handling tunings, stakeholder requests, escalations, reporting, and trainings. You will administer the organization's security tools to gather security logs from the environment and be responsible for the lifecycle management of supported security tools/technologies, including break-fix, patching, and live updates. Adhering to SOPs and notifying stakeholders on log flow/log format issues, documenting best practices, identifying opportunities for automation to assist the incident response team, and performing security incident handling and response will also be part of your responsibilities. You will need entry-level knowledge of the implementation and monitoring of any SIEM or security tools/technologies, as well as security architecture and different security technologies. Attributes that will help you succeed in this role include being customer service-oriented, proactive, problem-solving, highly driven, self-organized, detail-oriented, analytically minded, and possessing excellent spoken and written communication skills. You should also be a team player capable of working well with colleagues and stakeholders. Academically, a Bachelor's degree or equivalent in Information Technology or a related field is required. Relevant networking certifications such as CCNA, JNCIA, ACCA, PCNSA, CCSA, etc., are preferred, and relevant security certifications such as AZ-500, SC-200, Security+, CEH, etc., would be an added advantage. Entry-level experience in security technologies like Firewall, IPS, IDS, Proxy, technical support to clients, diagnosis and troubleshooting, providing remote support in security technologies, SOC/CSIRT operations, handling security incidents end to end, and security engineering is required for this position. This is a hybrid working role at NTT DATA, a trusted global innovator of business and technology services, committed to helping clients innovate, optimize, and transform for long-term success. With a focus on investing in R&D to support organizations and society in confidently moving into the digital future, NTT DATA is a Global Top Employer with experts in more than 50 countries and a robust partner ecosystem. Their services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation, and management of applications, infrastructure, and connectivity. NTT DATA is part of the NTT Group and headquartered in Tokyo. NTT DATA is an Equal Opportunity Employer.,

The organization is currently seeking a Chief Information Security Officer (CISO) to spearhead the development, implementation, and management of the enterprise-wide information security strategy. As the CISO, you will play a critical role in safeguarding the organization's data, systems, and infrastructure by identifying potential security risks, ensuring regulatory compliance, and fostering a culture of security throughout the organization. Collaborating closely with senior leadership and stakeholders, you will align security initiatives with business objectives to enhance overall security posture. Your key responsibilities will encompass strategic leadership, risk management, operations, oversight, compliance, governance, team development, and stakeholder collaboration. You will be tasked with developing and implementing an information security strategy, aligning initiatives with business goals, advising the executive team on security matters, identifying and prioritizing security risks, enforcing policies and controls, overseeing disaster recovery and business continuity plans, managing security operations, leading the implementation of security technologies, conducting security audits, ensuring regulatory compliance, developing governance frameworks, preparing security posture reports, building and leading an information security team, providing training programs, mentoring team members, collaborating with various departments to integrate security policies, and establishing relationships with external agencies and security partners. To qualify for this role, you should possess a Bachelor's degree in Information Technology, Cybersecurity, or a related field (Master's degree preferred), along with certifications such as CISSP, CISM, CISA, CEH, or equivalent. Additionally, you should have at least 10 years of experience in information security, including 5 years in a leadership role, a strong understanding of information security frameworks, hands-on experience in security architecture, network security, and cloud security, excellent leadership and communication skills, and the ability to navigate complex regulatory environments while maintaining compliance. Preferred qualifications include experience in industry-specific compliance, a proven track record in managing cybersecurity incidents, and familiarity with emerging technologies like AI, blockchain, or quantum computing in security contexts. This is a full-time position with a day shift schedule and potential performance and yearly bonuses. The work location is in-person.,

The purpose at Avient Corporation is to be an innovator of materials solutions that help customers succeed, while enabling a sustainable world. Innovation is powered by the passion, creativity, and diverse expertise of 9,000 professionals worldwide. Whether you are a finance wizard, a tech enthusiast, an operational powerhouse, an HR changemaker, or a trailblazer in materials development, you will find your place at Avient. Join the global team and help shape the future with sustainable solutions that transform possibilities into realities. Your unique perspective could be the key to the next breakthrough! The Information Security Architecture and Engineering Senior Manager is responsible for defining and driving the overall design, implementation, and operation of security technologies at Avient. This position requires experience leading local and offshore resources, ensuring compliance with relevant regulations, and driving effective solutions that minimize risk. Design and lead the implementation of the security architecture roadmap, achieving business performance targets and cyber maturity protection goals. Ensure security capabilities are properly implemented and tuned to address known and emerging threats. Collaborate across IT and the business to ensure that technology roadmaps and implemented solutions meet risk requirements. Establish and maintain architecture and engineering standards for the organization. Consult on Operational Technology (OT) security requirements, recommend, design, and deliver capabilities to protect these environments. Stay informed of industry trends and relevant threat activity to adapt Avient's capabilities as needed. Perform other leadership duties as assigned. Education and Experience Qualifications: - Bachelor's degree in computer science, information technology, or related experience. Cloud and platform certifications preferred. - 10+ years of experience leading Information Technology teams, with substantial direct experience leading distributed engineering teams. - Strong track record of integrating modern architectures with traditional environments to achieve an effective security posture. - Strong application security knowledge of OWASP TOP 10 and other vulnerability frameworks. - Experience with threat modeling methodologies at an application and enterprise level. - Strong knowledge of NIST Cybersecurity Framework, and related security standards and best practices. Additional Qualifications: - Knowledge of modern authentication and identity infrastructures and cross-platform interoperability is a strong plus. - Cyber Incident Response experience. - Project Management and Quality Management methodologies. At Avient, all global employees are considered leaders, and the six most important behaviors for driving strategy and culture are consistent across all roles. By playing to win, acting customer-centric, driving innovation and profitable growth, collaborating seamlessly across Avient, and motivating and inspiring others and yourself, you will accelerate your ability to achieve Avient's strategic goals, meet customer needs, and accomplish your career goals. Avient stresses equality of opportunity for all qualified individuals in accordance with applicable laws. Decisions on hiring, promotion, development, compensation, or advancement are based solely on a person's qualifications, abilities, experience, and performance.,

As an Enterprise Security Architect, you will be an integral part of a dynamic organization, taking the lead in developing and overseeing a cutting-edge enterprise security program. Your role will involve identifying, defining, and steering the security technology strategy across a wide range of areas including IAM, Cloud, End Point, Network, and Web security, as well as evaluating new identity technologies at an enterprise scale. Being a senior member of the team, you will collaborate with senior leaders throughout the organization, leveraging your vast experience in security technology management, implementation, and architecture, along with exceptional communication skills to shape strategies, influence roadmaps, drive solution adoption, and advocate for security enhancements that enhance capabilities and reduce risks. Your responsibilities will include defining architectural visions and solutions for complex systems, ensuring alignment with enterprise architecture strategies, and outlining non-functional requirements to support new features and opportunities. You will work closely with stakeholders and vendors to evaluate design decisions and drive best practices and standardized templates within defined domains. In addition, you will create reference architectures and design patterns for endpoint/host and workplace productivity security, contribute to the architecture roadmap, and collaborate with Product Managers/Owners to prioritize technology-focused tasks to enable business features and growth opportunities. Furthermore, you will play a key role in interpreting business and technology drivers to develop security roadmaps, establish data security frameworks, and align technical controls with industry best practices. Your expertise in cloud architecture, access management, monitoring, and other security solutions will be crucial in ensuring the security of company data and systems. To excel in this role, we are seeking individuals who excel in collaboration, prioritize client experience, thrive in fast-paced environments, and are dedicated to continuous improvement. The ideal candidate will possess over 10 years of hands-on experience in architecting IAM solutions, in-depth knowledge of authentication/authorization standards, familiarity with various security tools and platforms, and a strong background in cloud security concepts. Moreover, expertise in security frameworks, data loss prevention, Hybrid cloud architectures, DevSecOps processes, and web application technologies will be highly advantageous. Strong communication skills, the ability to lead technical discussions, and experience in managing stakeholder relationships are also essential qualities we are looking for. If you have a Bachelor's degree in Computer Science, Computer Engineering, or a related field, along with a passion for security architecture and a drive for continuous learning and improvement, we encourage you to apply for this exciting opportunity.,

The Director of Information Security will be responsible for developing, implementing, and monitoring a strategic, comprehensive enterprise and IT risk management program. You will provide the vision and leadership necessary to manage the risk to the organization and ensure business alignment, effective governance, system and product availability, integrity, and confidentiality. Your job responsibilities will include providing direction for the organization's data and cybersecurity protection, overseeing technology governance and policies, developing and maintaining security roadmaps and strategies, collaborating with security domain architects, leading the team to develop new security design patterns, providing expertise on infrastructure platform security, driving threat management and other cybersecurity areas, managing risk and compliance governance processes, identifying security deficiencies, collaborating with other security and IT architects, providing risk guidance for IT projects, and acting as a technical leader for managing audit requirements. You should hold a Bachelor's degree from an accredited institution, preferably in Computer Science or Information Technology Systems Security, with a Master's degree being preferred. You are expected to have over 15 years of experience in Technology, with at least 10 plus years of specialized experience in Information Security. Your experience should include hands-on expertise in Cyber Security, Risk Compliance, and Governance, as well as knowledge of ITIL with respect to security administration and information technology governance in a multiplatform environment. Strong emotional intelligence and sustained leadership in a large organization involving multiple stakeholders are desired. The ideal candidate should have proven ability to lead within an enterprise environment, managing cross-divisional projects, and demonstrated ability to communicate effectively with a wide audience of senior business leaders within a matrixed environment.,

Situated in the heart of Singapore's Central Business District, Rakuten Asia Pte. Ltd. is Rakuten's Asia Regional headquarters. Established in August 2012 as part of Rakuten's global expansion strategy, Rakuten Asia comprises various businesses that provide essential value-added services to Rakuten's global ecosystem. Through advertisement product development, product strategy, and data management, among others, Rakuten Asia is strengthening Rakuten Group's core competencies to take the lead in an increasingly digitalized world. Rakuten Group, Inc. is a global leader in internet services that empower individuals, communities, businesses, and society. Founded in Tokyo in 1997 as an online marketplace, Rakuten has expanded to offer services in e-commerce, fintech, digital content, and communications to approximately 1.7 billion members around the world. The Rakuten Group has nearly 32,000 employees and operations in 30 countries and regions. The Group Human Resources Department (GHRD) at Rakuten provides HR services to tens of thousands of employees. As the company continues to grow and diversify, the HR operations are continuously enhanced. The role of Workday Integration and Extend subject matter expert at Rakuten Asia involves serving as the primary resource for complex integration challenges, custom application development, and extending Workday's core functionality. This position plays a crucial role in providing expert-level guidance and support for integration and extension needs, shaping the integration strategy, mentoring team members, and ensuring alignment with business requirements and best practices. **Key Responsibilities:** **Integrations:** - Designing, building, and maintaining integrations between Workday and other systems, including internal and third-party systems. - Managing the full lifecycle of Workday integrations from planning to deployment and support. - Monitoring integration performance, resolving issues, and ensuring data integrity. - Creating and updating technical documentation for integrations. - Ensuring compliance with data security, privacy, and regulatory requirements. - Staying informed on Workday updates and industry best practices for continuous improvement. - Troubleshooting integration errors and suggesting enhancements. - Coordinating testing strategies to ensure integration functionality, data accuracy, and performance. **Extend:** - Developing custom applications using the Workday Extend platform to address specific business needs. - Collaborating with clients and stakeholders to gather and analyze requirements for Extend applications. - Defining and executing the Workday Extend roadmap. - Providing expert guidance on Workday Extend development best practices. - Maintaining existing Workday Extend applications and ensuring data accuracy. - Resolving issues related to Extend applications. **Mandatory Qualifications:** This role requires deep expertise in Workday Integration technologies, the Extend platform, and custom application development practices, along with exceptional analytical, communication, and problem-solving skills. **Integrations:** - Proficiency in Workday integration tools like Workday Studio, Enterprise Interface Builder (EIB), Workday Web Services, Core Connectors, PECI/PICOF, and Report Writer. - Experience with REST/SOAP APIs, XML, XSLT, JSON, SDLC, and SaaS solutions. - Knowledge of data mapping, workflow design, error handling, Workday data models, security architecture, and business process framework. - Strong programming skills in XSLT and XML. - Experience with at least one full life cycle Workday integration. - Workday Integration (Pro) Certification. **Extend:** - Hands-on experience in Workday Extend development. - Understanding of Workday Extend's presentation elements, Advanced Data, and Orchestration Services. - Experience with REST, SOAP, JSON, XML, and proficiency in languages like Java, Python, or JavaScript. - Strong knowledge of application development and integration best practices.,

About KPMG in India KPMG entities in India are professional services firm(s). These Indian member firms are affiliated with KPMG International Limited. KPMG was established in India in August 1993. Our professionals leverage the global network of firms, and are conversant with local laws, regulations, markets and competition. KPMG has offices across India in Ahmedabad, Bengaluru, Chandigarh, Chennai, Gurugram, Hyderabad, Jaipur, Kochi, Kolkata, Mumbai, Noida, Pune, Vadodara and Vijayawada. KPMG entities in India offer services to naonal and international clients in India across sectors. We strive to provide rapid, performance-based, industry-focused and technology-enabled services, which reflect a shared knowledge of global and local industries and our experience of the Indian business environment. Role & responsibilities (1) Experience with cloud platforms, risk assessment tools, identity management, and data encryption. (2) Develop standards, procedures, and guidelines for multiple platforms and diverse environments (e.g., client-server, distributed, mainframe). (3) Knowledge of network security architecture concepts, including topology, protocols, components, and principles (4) Professional certification such as Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM). (5) Plan, study, and design a robust security architecture for various IT projects. (6) Develop prerequisites for networks, firewalls, routers, and other network devices. (7) Perform security testing, and risk analysis. (8) Research and implement updated security standards, systems, and best practices. (9)Create standards for all IT assets, such as routers, firewalls, LANs, WANs, VPNs, and other network devices. (10) Proficient in Python, Terraform, and DevOps pipeline setup (11) Should have setup, deployed and tweaked the product rules and configurations to suit requirements (12) Ability to apply security frameworks such as NIST and compliance standards as per the industry. Experience with security frameworks and standards (e.g., NIST, CIS, ISO 27001) (13) Ability to translate business and functional requirements into structured high-quality implementation using relevant industry standard approaches (14) Ability to understand the Threat Landscape (threats and vulnerabilities) in SaaS platforms. Preferred candidate profile (1) Technical certification on Security (AWS Security, Azure Security, GCP Security certifications) (2) Hands on experience with Terraform and Python (3) Experience on securing network, data, and access. Ability to plan and design a security architecture with correct product placements. (4) Relevant certifications such as CISA, CISSP, CISM, or similar (5) ISO 27001 ,NIST, GCP,AWS , Azure, WIZ, SSPM (Saas Security Posture management). Equal Opportunity Employer KPMG India: KPMG India has a policy of providing equal opportunity for all applicants and employees regardless of their color, caste, religion, age, sex/gender, naonal origin, cizenship, sexual orientaon, gender identy or expression, disability, or other legally protected status. KPMG India values diversity and we request you to submit the details below to support us in our endeavor for diversity. Providing the below informaon is voluntary and refusal to submit such informaon will not be prejudicial to you.

Key Responsibilities : Regulatory Compliance & Certification : Good understanding of design objectives such as DO-178B/C , DO-326A , DO-355 , and DO-356A to support continuous airworthiness of aircraft from safety and security perspectives. Experience in certifying and meeting compliance for embedded products used in aircraft cockpits with certifying authorities like FAA and EASA . Security Architecture & Risk Management : Lead efforts with development teams to manage product risk and apply the appropriate security controls . Drive secure architecture by design , perform security risk assessments , and apply defense-in-depth approach with multilayered security controls. Identify security gaps and define remediation approaches using security controls during risk assessments. Threat Modeling & Communication : Expertise in threat modeling of both embedded products and web applications , effectively communicating security risks to the program teams in advance. Guidance & Best Practices : Provide security architecture guidance and support to a large development organization to promote security by design principles . Drive best-in-class security requirements into product and service offerings. Provide architecture and best practices guidance in building secure Honeywell products. Security Process Activities : Support product security processes such as threat modeling , security requirements , security reviews , threat vulnerability assessments , and risk management for aerospace applications. Secure Development & Cloud Security : Have a background in product architecture and development with Secure Software Development Lifecycle (SDLC) experience. Understand security by design principles and remain up-to-date on emerging security threats and techniques. Experience in developing, securing, and driving security requirements for Embedded & IIoT-based Avionics Products on RTOS platforms such as VxWorks and Deos . Experience with securing Commercial Cloud , Hybrid , and Private cloud-deployed applications , including Containers and VMs , through secure configurations and periodic security reviews. Mentoring & Training : Lead efforts in mentoring and training the engineering development community and facilitate the adoption of shift-left security practices . Lead new initiatives to add value to Secure Software Development Lifecycle (SDL) processes and procedures. You Must Have : Educational Background : Bachelor's degree or equivalent work experience in Cyber Security or Information Technology . Experience : 6+ years of experience in Cyber Security or Information Technology . Interpersonal Skills : Strong interpersonal skills with the ability to facilitate diverse groups , help negotiate priorities , and resolve conflicts among stakeholders. We Value : Methodologies & Practices : Understanding of Agile software development practices . Familiarity with DevSecOps and CI/CD pipelines with specific tooling for security. Certifications : Information Security accreditation (e.g., CISSP , CSSLP , or other security-related certifications). Cloud Security or Solutions Architecture certifications for Azure , AWS , or GCP . Security Tool Knowledge : Experience with widely used security tools such as: SD Elements , BlackDuck Hub , Microsoft Threat Modeling Tool SAST (e.g., Coverity , SonarQube ), DAST (e.g., Burp , ZAP , AppSpider ) Fuzzing , Vulnerability management , and continuous monitoring tools . Cryptography & Encryption : Sound understanding of Cryptography , encryption algorithms , Public Key Infrastructure (PKI) , Secure Boot , and Open-source risk management . Leadership & Team Building : Strong leadership and team-building skills . Ability to manage stakeholders across business verticals and regions. Effective communicator with excellent relationship management skills, and strong analytical , decision-making , and problem-solving skills. Continuous Learning & Development : Must be a firm believer in continuous learning , upskilling the team on new-age skills , and developing the capabilities for new technologies .