167 Tanium Jobs

#ContractualOpportunity We are seeking a seasoned Service Design leader with a strong grasp of user-centered methods and a working knowledge of UI/UX practices to support a large-scale IT transformation initiative. This role will help shape the vision, strategy, and operating model for Experience Management for EUC (End User Computing) - driving data-informed experience improvements across enterprise IT systems. Key Responsibilities Design & Strategy Leadership Define and evolve end-to-end service experiences across IT operations, with a focus on improving digital employee experience (DEX). Lead discovery and co-creation sessions with cross-functional stakeholders to uncover needs, identify pain points, and shape strategic interventions. Translate service design outputs into actionable roadmaps, operating models, and system-level recommendations. Experience Intelligence & Value Mapping Partner with data and engineering teams to extract insights from existing systems (e.g., ServiceNow, Intune, Tanium, etc.). Drive the design and articulation of experience KPIs, user sentiment insights, and automation opportunities. Identify gaps in data coverage and provide guidance on addressing them to enable more complete experience measurement. Interface Design Oversight Support the conceptualization of intuitive dashboards and visual reporting tools that translate complex data into clear, decision-ready insights. Collaborate with UX team/s to ensure interfaces are aligned with user needs and strategic goals. Tooling Strategy & Future-State Design Contribute to the evaluation of strategic DEX platforms and their alignment with organizational goals (optional, not core skill) Help define the value case for future tools that enable self-healing IT, proactive support, and continuous experience improvement (optional, should be able to weigh in on these conversations with the techno-functional teams) Ideal Candidate Profile About 10 years of experience in service design, digital strategy, or experience-led transformation. Proven ability to work at the intersection of design, technology, and operations within complex enterprise environments. Strong systems thinker with the ability to connect user needs, operational realities, and data signals. Familiarity with digital experience tooling, IT support ecosystems, and enterprise platforms. Confident communicator and facilitator with the ability to influence stakeholders and synthesize insights into clear strategies. Want to know more? Check out our open jobs around the world. https://www.designit.com/ Designit is committed to ensuring that all candidates have an equal opportunity to be considered for employment. Please let us know if you need any reasonable accommodation to participate in the job application or interview process.

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Cyber Managed Service -Threat Detection & Response - Security Orchestration, Automation and Response (Sentinel SOAR) - Senior KEY Capabilities : Excellent teamwork skills, passion and drive to succeed and combat Cyber threats Working with the customer to identify security automation strategies and provide creative integrations and playbooks. Work collaboratively with other team members to find creative and practical solutions to customers’ challenges and needs. Responsible for execution and maintenance of Sentinel SOAR related analytical processes and tasks Management and administration of Sentinel SOAR platform Developing custom scripts and playbooks to automate repetitive tasks and response actions. Experienced developer with at least 2 + yrs of experience using Python programming language, REST API and JSON. Must have basic SQL knowledge. Knowledge on Incident Response and Threat Intelligence tools. Creation of reusable and efficient Python-based Playbooks. Use Splunk SOAR platform to enable automation and orchestration on various tools and technologies by making use of existing or custom integration Partner with security operations teams, threat intelligence groups and incident responders. Should have worked in a security operations center and gained understanding of SIEM solutions like Splunk, Microsoft Sentinel and other log management platforms. Having experience in Splunk content development will be an added advantage Willing to learn new technologies and take up new challenges. Assist in developing high-quality technical content such as automation scripts/tools, reference architectures, and white papers. Good grasp in conceptualizing and/or implementing automation for business process workflows Knowledge in Network monitoring technology platforms such as Fidelis XPS or others Knowledge in endpoint protection tools, techniques and platforms such as Carbon Black, Tanium, Microsoft Defender ATP, Symantec, McAfee or others Should be able to assist, support and mitigate production issues. Should have the capability to work with partners and client stack holders to full fill their asks Ability to Coordinate with Vendor to incident closure on according to the severity Review, assess, benchmark and develop issue remediation action plans for all aspects of an engagement. Qualification & experience: Minimum of 3+ years’ experience in cyber security with a depth of network architecture knowledge that will translate over to deploying and integrating Sentinel SOAR solution in global enterprise environments. Experience working in ServiceNow SOAR is also an added advantage Strong oral, written and listening skills are an essential component to effective consulting. Strong background in network administration. Ability to work at all layers of the OSI models, including being able to explain communication at any level is necessary. Should have strong hands-on experience with scripting technologies like Python, REST, JSON, SOAP, ODBC, XML etc. Must have honours degree in a technical field such as computer science, mathematics, engineering or similar field Minimum 2 years of working in SOAR (Sentinel) Experience in Process Development, Process Improvement, Process Architecture, and Training Quick to apprehend and adapt new applications. Knowledgeable in Cybersecurity and Incident Response Management Certification in any one of the SIEM Solution such as Splunk or SC-200 will be an added advantage Certifications in a core security related discipline will be an added advantage. EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Cyber Managed Service -Threat Detection & Response - Security Orchestration, Automation and Response (Sentinel SOAR) - Senior KEY Capabilities : Excellent teamwork skills, passion and drive to succeed and combat Cyber threats Working with the customer to identify security automation strategies and provide creative integrations and playbooks. Work collaboratively with other team members to find creative and practical solutions to customers’ challenges and needs. Responsible for execution and maintenance of Sentinel SOAR related analytical processes and tasks Management and administration of Sentinel SOAR platform Developing custom scripts and playbooks to automate repetitive tasks and response actions. Experienced developer with at least 2 + yrs of experience using Python programming language, REST API and JSON. Must have basic SQL knowledge. Knowledge on Incident Response and Threat Intelligence tools. Creation of reusable and efficient Python-based Playbooks. Use Splunk SOAR platform to enable automation and orchestration on various tools and technologies by making use of existing or custom integration Partner with security operations teams, threat intelligence groups and incident responders. Should have worked in a security operations center and gained understanding of SIEM solutions like Splunk, Microsoft Sentinel and other log management platforms. Having experience in Splunk content development will be an added advantage Willing to learn new technologies and take up new challenges. Assist in developing high-quality technical content such as automation scripts/tools, reference architectures, and white papers. Good grasp in conceptualizing and/or implementing automation for business process workflows Knowledge in Network monitoring technology platforms such as Fidelis XPS or others Knowledge in endpoint protection tools, techniques and platforms such as Carbon Black, Tanium, Microsoft Defender ATP, Symantec, McAfee or others Should be able to assist, support and mitigate production issues. Should have the capability to work with partners and client stack holders to full fill their asks Ability to Coordinate with Vendor to incident closure on according to the severity Review, assess, benchmark and develop issue remediation action plans for all aspects of an engagement. Qualification & experience: Minimum of 3+ years’ experience in cyber security with a depth of network architecture knowledge that will translate over to deploying and integrating Sentinel SOAR solution in global enterprise environments. Experience working in ServiceNow SOAR is also an added advantage Strong oral, written and listening skills are an essential component to effective consulting. Strong background in network administration. Ability to work at all layers of the OSI models, including being able to explain communication at any level is necessary. Should have strong hands-on experience with scripting technologies like Python, REST, JSON, SOAP, ODBC, XML etc. Must have honours degree in a technical field such as computer science, mathematics, engineering or similar field Minimum 2 years of working in SOAR (Sentinel) Experience in Process Development, Process Improvement, Process Architecture, and Training Quick to apprehend and adapt new applications. Knowledgeable in Cybersecurity and Incident Response Management Certification in any one of the SIEM Solution such as Splunk or SC-200 will be an added advantage Certifications in a core security related discipline will be an added advantage. EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

Country India Working Schedule Full-Time Work Arrangement Hybrid Relocation Assistance Available No Posted Date 21-Jul-2025 Job ID 10271 Description and Requirements Job Responsibilities Responsible for creating and testing Windows software installation packages for automated deployments in an Enterprise environment Experience in creating packaging for server operating system, mostly for Citric end user platform hosting on server platform. Initiates, plans, coordinates, designs, develops, and tests software distribution packages. Work with end customer to perform the UAT testing of the package before distribution of the package in production environment. End-to end support in packaging, testing , distributing in test and production rollout, help operations team in case of any failure in prod deployments Participates in project activities beyond technical tasks, to include collecting data, contributing to designs/decisions, and communicating with customers Research and recommend innovative, and where possible, automated approaches for anything related to software packaging and deployment Generate and maintain operational and other procedural documentation as needed Experience with multi-site, large environment with application package deployments using tools such System Center Configuration Manager, Intune, or equivalent technologies such as Chef Infra , Ansible Experience with producing complex software packages and software deployments Minimum of two years' experience in Config Management, SCCM, Intune or similar product for application packaging and distribution Expertise with Desktop Virtualization - VMWare Workstation, Hyper-V, Azure AVD, Citrix VDI, or equivalent technologies is preferred In-depth knowledge of operating systems (Windows Desktop OS 7/10/11, Windows Server 20XX Server). Ex. (DLL conflicts, Windows registry, environment variables, batch files, and client/ server operations/connectivity Strong knowledge in windows application package creation and installation using Windows installation components and third-party tools such as Admin Studio, InstallShield, Wise Studio, Orca Expertise in Windows automation scripting such as PowerShell, WMI, VBScript, PowerShell App Deployment Toolkit. PowerShell and App Deployment Kit strongly preferred Working knowledge in Microsoft‚ÄØIntune‚ÄØsoftware administration, software packaging and deployment Comprehensive knowledge and experience with Windows installer technologies such as MSI,‚ÄØMSIX, AppX, virtualization, and other installer technologies. Candidate should also have a strong understanding of the following areas as relates to application packaging: MSI patches and transforms MSIX packaging and App Attache MSI merge modules, macros, and custom actions Security modifications within MSI packages Installation impersonation (system, user etc.) Experience with DLL conflicts, Windows registry modifications Environment variables TCP/IP networks, Network Protocols Knowledge, Skills and Abilities Education Bachelor’s degree (Any Stream) or diploma with a minimum of 15 years of education. Experience Minimum Experience of 5 years with at least 3 years of relevant experience Expertise in windows Application packaging via Installadhiled, Experites in windows desktop and server operating systems Expertise in Citrix/Virtualization services Preferred experience in , Chef , Ivanti, Tanium and Ansible Good knowledge in PowerShell Knowledge and skills (general and technical) Application virtualization – Intermediate Citrix App Layering - Intermediate Microsoft Terminal services - Intermediate Good understanding on Citrix/virtualization Environment ITIL Framework knowledge Basic understanding of CRM tools (ServiceNow/Remedy) Should have experience in XenApp. About MetLife Recognized on Fortune magazine's list of the 2025 "World's Most Admired Companies" and Fortune World’s 25 Best Workplaces™ for 2024, MetLife , through its subsidiaries and affiliates, is one of the world’s leading financial services companies; providing insurance, annuities, employee benefits and asset management to individual and institutional customers. With operations in more than 40 markets, we hold leading positions in the United States, Latin America, Asia, Europe, and the Middle East. Our purpose is simple - to help our colleagues, customers, communities, and the world at large create a more confident future. United by purpose and guided by empathy, we’re inspired to transform the next century in financial services. At MetLife, it’s #AllTogetherPossible. Join us!

At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture, and technology to become the best version of yourself. And EY is counting on your unique voice and perspective to help the organization become even better. Join us and build an exceptional experience for yourself, and contribute to creating a better working world for all. As a CMS-TDR Staff at EY, you will be part of the cyber security team and work as a SOC analyst to assist clients in detecting and responding to security incidents with the support of SIEM, EDR, and NSM solutions. **The Opportunity:** We are seeking a Security Analyst with experience in SIEM, EDR, and NSM solutions. **Your key responsibilities include:** - Providing operational support using SIEM solutions (Splunk, Sentinel, CrowdStrike Falcon LogScale), EDR Solution (Defender, CrowdStrike, Carbon Black), NSM (Fidelis, ExtraHop) for multiple customers. - Performing the first level of monitoring and triaging of security alerts. - Conducting initial data gathering and investigation using SIEM, EDR, NSM solutions. - Providing near real-time analysis, investigation, and reporting of security incidents for customers. **Skills and attributes for success:** - Customer Service oriented with a commitment to meeting customer needs and seeking feedback for improvement. - Hands-on knowledge of SIEM technologies like Splunk, Azure Sentinel, CrowdStrike Falcon LogScale from a Security analyst's perspective. - Exposure to IOT/OT monitoring tools like Claroty, Nozomi Networks is a plus. - Good knowledge and experience in Security Monitoring and Cyber Incident Response. - Familiarity with Network monitoring platforms like Fidelis XPS, ExtraHop and endpoint protection tools such as Carbon Black, Tanium, CrowdStrike, Defender ATP, etc. **To qualify for the role, you must have:** - B. Tech./ B.E. with sound technical skills. - Ability to work in 24x7 shifts. - Strong command of verbal and written English language. - Technical acumen and critical thinking abilities. - Strong interpersonal and presentation skills. - Hands-on experience in SIEM, EDR, and NSM solutions. - Certification in any of the SIEM platforms. - Knowledge of RegEx, Perl scripting, and SQL query language. - Certification such as CEH, ECSA, ECIH, Splunk Power User. **What working at EY offers:** At EY, you will work on inspiring and meaningful projects with a focus on education, coaching, and personal development. You will have opportunities for skill development, career progression, and the freedom to handle your role in a way that suits you best. EY offers support, coaching, and feedback from engaging colleagues, along with an environment that emphasizes high quality and knowledge exchange. EY is dedicated to building a better working world, creating value for clients, people, and society, and building trust in the capital markets. With diverse teams in over 150 countries, EY provides trust through assurance and helps clients grow, transform, and operate across various domains.,

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Cyber Managed Service -Threat Detection & Response - Security Orchestration, Automation and Response (Splunk SOAR) - Senior KEY Capabilities: Excellent teamwork skills, passion and drive to succeed and combat Cyber threats Working with the customer to identify security automation strategies and provide creative integrations and playbooks. Work collaboratively with other team members to find creative and practical solutions to customers’ challenges and needs. Responsible for execution and maintenance of Splunk SOAR related analytical processes and tasks Management and administration of Splunk SOAR platform Developing custom scripts and playbooks to automate repetitive tasks and response actions. Experienced developer with at least 2 + yrs of experience using Python programming language, REST API and JSON. Must have basic SQL knowledge. Knowledge on Incident Response and Threat Intelligence tools. Creation of reusable and efficient Python-based Playbooks. Use Splunk SOAR platform to enable automation and orchestration on various tools and technologies by making use of existing or custom integration Partner with security operations teams, threat intelligence groups and incident responders. Should have worked in a security operations center and gained understanding of SIEM solutions like Splunk, Microsoft Sentinel and other log management platforms. Having experience in Splunk content development will be an added advantage Willing to learn new technologies and take up new challenges. Assist in developing high-quality technical content such as automation scripts/tools, reference architectures, and white papers. Good grasp in conceptualizing and/or implementing automation for business process workflows Knowledge in Network monitoring technology platforms such as Fidelis XPS or others Knowledge in endpoint protection tools, techniques and platforms such as Carbon Black, Tanium, Microsoft Defender ATP, Symantec, McAfee or others Should be able to assist, support and mitigate production issues. Should have the capability to work with partners and client stack holders to full fill their asks Ability to Coordinate with Vendor to incident closure on according to the severity Review, assess, benchmark and develop issue remediation action plans for all aspects of an engagement. Qualification & experience: Minimum of 3+ years’ experience in cyber security with a depth of network architecture knowledge that will translate over to deploying and integrating Splunk SOAR solution in global enterprise environments. Experience working in ServiceNow SOAR is also an added advantage Strong oral, written and listening skills are an essential component to effective consulting. Strong background in network administration. Ability to work at all layers of the OSI models, including being able to explain communication at any level is necessary. Should have strong hands-on experience with scripting technologies like Python, REST, JSON, SOAP, ODBC, XML etc Must have honours degree in a technical field such as computer science, mathematics, engineering or similar field Minimum 2 years of working in SOAR (Splunk) Experience in Process Development, Process Improvement, Process Architecture, and Training Quick to apprehend and adapt new applications. Knowledgeable in Cybersecurity and Incident Response Management Certification in Splunk will be an added advantage Certifications in a core security related discipline will be an added advantage. EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Cyber Managed Service -Threat Detection & Response - Security Orchestration, Automation and Response (Splunk SOAR) - Senior KEY Capabilities: Excellent teamwork skills, passion and drive to succeed and combat Cyber threats Working with the customer to identify security automation strategies and provide creative integrations and playbooks. Work collaboratively with other team members to find creative and practical solutions to customers’ challenges and needs. Responsible for execution and maintenance of Splunk SOAR related analytical processes and tasks Management and administration of Splunk SOAR platform Developing custom scripts and playbooks to automate repetitive tasks and response actions. Experienced developer with at least 2 + yrs of experience using Python programming language, REST API and JSON. Must have basic SQL knowledge. Knowledge on Incident Response and Threat Intelligence tools. Creation of reusable and efficient Python-based Playbooks. Use Splunk SOAR platform to enable automation and orchestration on various tools and technologies by making use of existing or custom integration Partner with security operations teams, threat intelligence groups and incident responders. Should have worked in a security operations center and gained understanding of SIEM solutions like Splunk, Microsoft Sentinel and other log management platforms. Having experience in Splunk content development will be an added advantage Willing to learn new technologies and take up new challenges. Assist in developing high-quality technical content such as automation scripts/tools, reference architectures, and white papers. Good grasp in conceptualizing and/or implementing automation for business process workflows Knowledge in Network monitoring technology platforms such as Fidelis XPS or others Knowledge in endpoint protection tools, techniques and platforms such as Carbon Black, Tanium, Microsoft Defender ATP, Symantec, McAfee or others Should be able to assist, support and mitigate production issues. Should have the capability to work with partners and client stack holders to full fill their asks Ability to Coordinate with Vendor to incident closure on according to the severity Review, assess, benchmark and develop issue remediation action plans for all aspects of an engagement. Qualification & experience: Minimum of 3+ years’ experience in cyber security with a depth of network architecture knowledge that will translate over to deploying and integrating Splunk SOAR solution in global enterprise environments. Experience working in ServiceNow SOAR is also an added advantage Strong oral, written and listening skills are an essential component to effective consulting. Strong background in network administration. Ability to work at all layers of the OSI models, including being able to explain communication at any level is necessary. Should have strong hands-on experience with scripting technologies like Python, REST, JSON, SOAP, ODBC, XML etc Must have honours degree in a technical field such as computer science, mathematics, engineering or similar field Minimum 2 years of working in SOAR (Splunk) Experience in Process Development, Process Improvement, Process Architecture, and Training Quick to apprehend and adapt new applications. Knowledgeable in Cybersecurity and Incident Response Management Certification in Splunk will be an added advantage Certifications in a core security related discipline will be an added advantage. EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Cyber Managed Service -Threat Detection & Response - Security Orchestration, Automation and Response (Splunk SOAR) - Senior KEY Capabilities: Excellent teamwork skills, passion and drive to succeed and combat Cyber threats Working with the customer to identify security automation strategies and provide creative integrations and playbooks. Work collaboratively with other team members to find creative and practical solutions to customers’ challenges and needs. Responsible for execution and maintenance of Splunk SOAR related analytical processes and tasks Management and administration of Splunk SOAR platform Developing custom scripts and playbooks to automate repetitive tasks and response actions. Experienced developer with at least 2 + yrs of experience using Python programming language, REST API and JSON. Must have basic SQL knowledge. Knowledge on Incident Response and Threat Intelligence tools. Creation of reusable and efficient Python-based Playbooks. Use Splunk SOAR platform to enable automation and orchestration on various tools and technologies by making use of existing or custom integration Partner with security operations teams, threat intelligence groups and incident responders. Should have worked in a security operations center and gained understanding of SIEM solutions like Splunk, Microsoft Sentinel and other log management platforms. Having experience in Splunk content development will be an added advantage Willing to learn new technologies and take up new challenges. Assist in developing high-quality technical content such as automation scripts/tools, reference architectures, and white papers. Good grasp in conceptualizing and/or implementing automation for business process workflows Knowledge in Network monitoring technology platforms such as Fidelis XPS or others Knowledge in endpoint protection tools, techniques and platforms such as Carbon Black, Tanium, Microsoft Defender ATP, Symantec, McAfee or others Should be able to assist, support and mitigate production issues. Should have the capability to work with partners and client stack holders to full fill their asks Ability to Coordinate with Vendor to incident closure on according to the severity Review, assess, benchmark and develop issue remediation action plans for all aspects of an engagement. Qualification & experience: Minimum of 3+ years’ experience in cyber security with a depth of network architecture knowledge that will translate over to deploying and integrating Splunk SOAR solution in global enterprise environments. Experience working in ServiceNow SOAR is also an added advantage Strong oral, written and listening skills are an essential component to effective consulting. Strong background in network administration. Ability to work at all layers of the OSI models, including being able to explain communication at any level is necessary. Should have strong hands-on experience with scripting technologies like Python, REST, JSON, SOAP, ODBC, XML etc Must have honours degree in a technical field such as computer science, mathematics, engineering or similar field Minimum 2 years of working in SOAR (Splunk) Experience in Process Development, Process Improvement, Process Architecture, and Training Quick to apprehend and adapt new applications. Knowledgeable in Cybersecurity and Incident Response Management Certification in Splunk will be an added advantage Certifications in a core security related discipline will be an added advantage. EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Cyber Managed Service -Threat Detection & Response - Security Orchestration, Automation and Response (Splunk SOAR) - Senior KEY Capabilities: Excellent teamwork skills, passion and drive to succeed and combat Cyber threats Working with the customer to identify security automation strategies and provide creative integrations and playbooks. Work collaboratively with other team members to find creative and practical solutions to customers’ challenges and needs. Responsible for execution and maintenance of Splunk SOAR related analytical processes and tasks Management and administration of Splunk SOAR platform Developing custom scripts and playbooks to automate repetitive tasks and response actions. Experienced developer with at least 2 + yrs of experience using Python programming language, REST API and JSON. Must have basic SQL knowledge. Knowledge on Incident Response and Threat Intelligence tools. Creation of reusable and efficient Python-based Playbooks. Use Splunk SOAR platform to enable automation and orchestration on various tools and technologies by making use of existing or custom integration Partner with security operations teams, threat intelligence groups and incident responders. Should have worked in a security operations center and gained understanding of SIEM solutions like Splunk, Microsoft Sentinel and other log management platforms. Having experience in Splunk content development will be an added advantage Willing to learn new technologies and take up new challenges. Assist in developing high-quality technical content such as automation scripts/tools, reference architectures, and white papers. Good grasp in conceptualizing and/or implementing automation for business process workflows Knowledge in Network monitoring technology platforms such as Fidelis XPS or others Knowledge in endpoint protection tools, techniques and platforms such as Carbon Black, Tanium, Microsoft Defender ATP, Symantec, McAfee or others Should be able to assist, support and mitigate production issues. Should have the capability to work with partners and client stack holders to full fill their asks Ability to Coordinate with Vendor to incident closure on according to the severity Review, assess, benchmark and develop issue remediation action plans for all aspects of an engagement. Qualification & experience: Minimum of 3+ years’ experience in cyber security with a depth of network architecture knowledge that will translate over to deploying and integrating Splunk SOAR solution in global enterprise environments. Experience working in ServiceNow SOAR is also an added advantage Strong oral, written and listening skills are an essential component to effective consulting. Strong background in network administration. Ability to work at all layers of the OSI models, including being able to explain communication at any level is necessary. Should have strong hands-on experience with scripting technologies like Python, REST, JSON, SOAP, ODBC, XML etc. Must have honours degree in a technical field such as computer science, mathematics, engineering or similar field Minimum 2 years of working in SOAR (Splunk) Experience in Process Development, Process Improvement, Process Architecture, and Training Quick to apprehend and adapt new applications. Knowledgeable in Cybersecurity and Incident Response Management Certification in Splunk will be an added advantage Certifications in a core security related discipline will be an added advantage. EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. CMS-TDR Staff As part of our EY-cyber security team, who shall work as SOC analyst who will assist clients in detecting and responding to security incidents with support of their SIEM, EDR and NSM solutions. The opportunity We’re looking for Security Analyst with experience in SIEM, EDR and NSM solutions. Your key responsibilities Operational support using SIEM solutions (Splunk, Sentinel), EDR Solution (Defender, CrowdStrike, Carbon Black), NSM (Fidelis, ExtraHop) for multiple customers. First level of monitoring and triaging of security alerts Initial data gathering and investigation using SIEM, EDR, NSM solutions. Provide near real-time analysis, investigation and, reporting security incidents for customer Skills and attributes for success Customer Service oriented - Meets commitments to customers; Seeks feedback from customers to identify improvement opportunities. Good knowledge of SIEM technologies such as Splunk, Azure Sentinel from a Security analyst’s point of view Exposure to IOT/OT monitoring (Claroty, Nozomi Networks etc.) is a plus Good knowledge and experience in Security Monitoring Good knowledge and experience in Cyber Incident Response Knowledge in Network monitoring technology platforms such as Fidelis XPS, ExtraHop Knowledge in endpoint protection tools, techniques, and platforms such as Carbon Black, Tanium, CrowdStrike, Defender ATP etc. To qualify for the role, you must have B. Tech./ B.E. with sound technical skills Ability to work in 24x7 shifts Strong command on verbal and written English language. Demonstrate both technical acumen and critical thinking abilities. Strong interpersonal and presentation skills. Hands-on experience in SIEM, EDR and NSM solution Certification in any of the SIEM platforms Knowledge of RegEx, Perl scripting and SQL query language. Certification - CEH, ECSA, ECIH, Splunk Power User What working at EY offers At EY, we’re dedicated to helping our clients, from start–ups to Fortune 500 companies — and the work we do with them is as varied as they are. You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer: Support, coaching and feedback from some of the most engaging colleagues around Opportunities to develop new skills and progress your career The freedom and flexibility to handle your role in a way that’s right for you EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Cyber Managed Service -Threat Detection and Response - Security Orchestration, Automation and Response - Sentinel SOAR - Senior KEY Capabilities: Excellent teamwork skills, passion and drive to succeed and combat Cyber threats Working with the customer to identify security automation strategies and provide creative integrations and playbooks. Work collaboratively with other team members to find creative and practical solutions to customers’ challenges and needs. Responsible for execution and maintenance of Sentinel SOAR related analytical processes and tasks Management and administration of Sentinel SOAR platform Developing custom scripts and playbooks to automate repetitive tasks and response actions. Experienced developer with at least 2 + yrs of experience using Python programming language, REST API and JSON. Must have basic SQL knowledge. Knowledge on Incident Response and Threat Intelligence tools. Creation of reusable and efficient Python-based Playbooks. Use Splunk SOAR platform to enable automation and orchestration on various tools and technologies by making use of existing or custom integration Partner with security operations teams, threat intelligence groups and incident responders. Should have worked in a security operations center and gained understanding of SIEM solutions like Splunk, Microsoft Sentinel and other log management platforms. Having experience in Splunk content development will be an added advantage Willing to learn new technologies and take up new challenges. Assist in developing high-quality technical content such as automation scripts/tools, reference architectures, and white papers. Good grasp in conceptualizing and/or implementing automation for business process workflows Knowledge in Network monitoring technology platforms such as Fidelis XPS or others Knowledge in endpoint protection tools, techniques and platforms such as Carbon Black, Tanium, Microsoft Defender ATP, Symantec, McAfee or others Should be able to assist, support and mitigate production issues. Should have the capability to work with partners and client stack holders to full fill their asks Ability to Coordinate with Vendor to incident closure on according to the severity Review, assess, benchmark and develop issue remediation action plans for all aspects of an engagement. Qualification and experience: Minimum of 3+ years’ experience in cyber security with a depth of network architecture knowledge that will translate over to deploying and integrating Sentinel SOAR solution in global enterprise environments. Experience working in ServiceNow SOAR is also an added advantage Strong oral, written and listening skills are an essential component to effective consulting. Strong background in network administration. Ability to work at all layers of the OSI models, including being able to explain communication at any level is necessary. Should have strong hands-on experience with scripting technologies like Python, REST, JSON, SOAP, ODBC, XML etc. Must have honours degree in a technical field such as computer science, mathematics, engineering or similar field Minimum 2 years of working in SOAR (Sentinel) Experience in Process Development, Process Improvement, Process Architecture, and Training Quick to apprehend and adapt new applications. Knowledgeable in Cybersecurity and Incident Response Management Certification in any one of the SIEM Solution such as Splunk or SC-200 will be an added advantage Certifications in a core security related discipline will be an added advantage. EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

Do you like working on identifying and preventing potential cybersecurity risks? Are you ready for the next step in your career? Join our Digital Technology Team! Our Digital Technology business provides intelligent, connected technologies to monitor and control our energy extraction assets. We provide customers with the peace of mind needed to reliably and efficiently improve their operations. Our team creates business value through continuous improvement in up-time, resilience, performance, time to market, security and compliance Partner with the best As an Incident Response Analyst you will play a crucial role in safeguarding Baker Hughes information systems by analyzing a wide range of cybersecurity events. Your primary focus will be on identifying, investigating, and interpreting security incidents and trends, and making recommendations on appropriate containment and remediation steps. You will be at the forefront of detecting potential threats and vulnerabilities, providing critical insights that drive our cybersecurity defense strategies. As a Incident Response Analyst you will be Responsible for : Leading technical aspects of digital security incident detection and response, focusing on very unstructured incidents and high-risk events. Specializing in network-centric analysis (NSM), host-centric analysis (live response, digital forensics), malware analysis, and/or log-centric analysis (SIEM) Performing daily response operations with a schedule that may involve nontraditional working hours - act as escalation points for Event Triage Analysts Mentoring and train Event Analysts as required. The best candidates for the role work well with other people and have strong verbal and written communication skills, a sense of diplomacy, and decision making skills to handle the often fast-paced role of an incident handler Fuel your passion Bachelor's Degree in Computer Science or “STEM” Majors (Science, Technology, Engineering and Math). A minimum 4 years of professional experience in STEM related degree, Political Science/Government/International Affairs. The best candidates for the role work well with other people and have strong verbal and written communication skills, a sense of diplomacy, and decision making skills to handle the often fast-paced role of an incident handler Strong verbal and written communication skills Detailed understanding of APT, Cyber Crime and other associated tactics Strong track record of understanding and interest in recognized IT and OT security-related standards and technologies, demonstrated through training, job experience and/or industry Knowledge of and/or working on Baker Hughes OT products Professional experience with Cyber Security, Operations Security, Product Security, Industrial Control Systems (ICS), Information Assurance, and Information Technology Experience with host based detection and prevention suites (Microsoft Defender, OSSEC, Yara, MIR, Carbon Black, Tanium, etc.) Experience with host-centric tools for forensic collection and analysis (Microsoft Defender, Sleuth Kit, Volatility Framework, FTK, Encase, etc.) Experience with Network Forensics and/or Network Security Monitoring (NSM) tools (Snort, Bro-IDS, PCAP, tcpdump, etc.) and analysis techniques (alert, flow/session and PCAP analysis) Experience with malware and reverse engineering (Dynamic and static analysis) Strong IT infrastructure background including familiarity with the following: Networking (TCP/IP, UDP, Routing) Applications (HTTP, SMTP, DNS, FTP, SSH, etc.) Encryption (DES, AES, RSA) and hashing algorithms (MD5, SHA-1, etc.) System/Application vulnerabilities and exploitation Operating systems (Windows, *Nix, and Mac) Cloud technology (SaaS, IaaS, PaaS) and associated digital forensics and incident response techniques CISSP, CISM or related SANs certifications preferred Active US government security clearance Working knowledge of secure communication methods, including Secure Shell, S/MIME and PGP/GPG Work in a way that works for you We recognize that everyone is different and that the way in which people want to work and deliver at their best is different for everyone too. In this role, we can offer the following flexible working patterns: Working flexible hours - flexing the times when you work in the day to help you fit everything in and work when you are the most productive. Occasionally working remotely from home or any other work location Working with us Our people are at the heart of what we do at Baker Hughes. We know we are better when all of our people are developed, engaged and able to bring their whole authentic selves to work. We invest in the health and well-being of our workforce, train and reward talent and develop leaders at all levels to bring out the best in each other. Working for you Our inventions have revolutionized energy for over a century. But to keep going forward tomorrow, we know we have to push the boundaries today. We prioritize rewarding those who embrace change with a package that reflects how much we value their input. Join us, and you can expect: Contemporary work-life balance policies and wellbeing activities Comprehensive private medical care options Safety net of life insurance and disability programs Tailored financial programs Additional elected or voluntary benefits About Us: We are an energy technology company that provides solutions to energy and industrial customers worldwide. Built on a century of experience and conducting business in over 120 countries, our innovative technologies and services are taking energy forward – making it safer, cleaner and more efficient for people and the planet. Join Us: Are you seeking an opportunity to make a real difference in a company that values innovation and progress? Join us and become part of a team of people who will challenge and inspire you! Let’s come together and take energy forward. Baker Hughes Company is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law. R147718

Do you like working on identifying and preventing potential cybersecurity risks? Are you ready for the next step in your career? Join our Digital Technology Team! Our Digital Technology business provides intelligent, connected technologies to monitor and control our energy extraction assets. We provide customers with the peace of mind needed to reliably and efficiently improve their operations. Our team creates business value through continuous improvement in up-time, resilience, performance, time to market, security and compliance Partner with the best As an Incident Response Analyst you will play a crucial role in safeguarding Baker Hughes information systems by analyzing a wide range of cybersecurity events. Your primary focus will be on identifying, investigating, and interpreting security incidents and trends, and making recommendations on appropriate containment and remediation steps. You will be at the forefront of detecting potential threats and vulnerabilities, providing critical insights that drive our cybersecurity defense strategies. As a Incident Response Analyst you will be Responsible for : Leading technical aspects of digital security incident detection and response, focusing on very unstructured incidents and high-risk events. Specializing in network-centric analysis (NSM), host-centric analysis (live response, digital forensics), malware analysis, and/or log-centric analysis (SIEM) Performing daily response operations with a schedule that may involve nontraditional working hours - act as escalation points for Event Triage Analysts Mentoring and train Event Analysts as required. The best candidates for the role work well with other people and have strong verbal and written communication skills, a sense of diplomacy, and decision making skills to handle the often fast-paced role of an incident handler Fuel your passion Bachelor's Degree in Computer Science or “STEM” Majors (Science, Technology, Engineering and Math). A minimum 4 years of professional experience in STEM related degree, Political Science/Government/International Affairs. The best candidates for the role work well with other people and have strong verbal and written communication skills, a sense of diplomacy, and decision making skills to handle the often fast-paced role of an incident handler Strong verbal and written communication skills Detailed understanding of APT, Cyber Crime and other associated tactics Strong track record of understanding and interest in recognized IT and OT security-related standards and technologies, demonstrated through training, job experience and/or industry Knowledge of and/or working on Baker Hughes OT products Professional experience with Cyber Security, Operations Security, Product Security, Industrial Control Systems (ICS), Information Assurance, and Information Technology Experience with host based detection and prevention suites (Microsoft Defender, OSSEC, Yara, MIR, Carbon Black, Tanium, etc.) Experience with host-centric tools for forensic collection and analysis (Microsoft Defender, Sleuth Kit, Volatility Framework, FTK, Encase, etc.) Experience with Network Forensics and/or Network Security Monitoring (NSM) tools (Snort, Bro-IDS, PCAP, tcpdump, etc.) and analysis techniques (alert, flow/session and PCAP analysis) Experience with malware and reverse engineering (Dynamic and static analysis) Strong IT infrastructure background including familiarity with the following: Networking (TCP/IP, UDP, Routing) Applications (HTTP, SMTP, DNS, FTP, SSH, etc.) Encryption (DES, AES, RSA) and hashing algorithms (MD5, SHA-1, etc.) System/Application vulnerabilities and exploitation Operating systems (Windows, *Nix, and Mac) Cloud technology (SaaS, IaaS, PaaS) and associated digital forensics and incident response techniques CISSP, CISM or related SANs certifications preferred Active US government security clearance Working knowledge of secure communication methods, including Secure Shell, S/MIME and PGP/GPG Work in a way that works for you We recognize that everyone is different and that the way in which people want to work and deliver at their best is different for everyone too. In this role, we can offer the following flexible working patterns: Working flexible hours - flexing the times when you work in the day to help you fit everything in and work when you are the most productive. Occasionally working remotely from home or any other work location Working with us Our people are at the heart of what we do at Baker Hughes. We know we are better when all of our people are developed, engaged and able to bring their whole authentic selves to work. We invest in the health and well-being of our workforce, train and reward talent and develop leaders at all levels to bring out the best in each other. Working for you Our inventions have revolutionized energy for over a century. But to keep going forward tomorrow, we know we have to push the boundaries today. We prioritize rewarding those who embrace change with a package that reflects how much we value their input. Join us, and you can expect: Contemporary work-life balance policies and wellbeing activities Comprehensive private medical care options Safety net of life insurance and disability programs Tailored financial programs Additional elected or voluntary benefits About Us: We are an energy technology company that provides solutions to energy and industrial customers worldwide. Built on a century of experience and conducting business in over 120 countries, our innovative technologies and services are taking energy forward – making it safer, cleaner and more efficient for people and the planet. Join Us: Are you seeking an opportunity to make a real difference in a company that values innovation and progress? Join us and become part of a team of people who will challenge and inspire you! Let’s come together and take energy forward. Baker Hughes Company is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law. R147718

Do you like working on identifying and preventing potential cybersecurity risks? Are you ready for the next step in your career? Join our Digital Technology Team! Our Digital Technology business provides intelligent, connected technologies to monitor and control our energy extraction assets. We provide customers with the peace of mind needed to reliably and efficiently improve their operations. Our team creates business value through continuous improvement in up-time, resilience, performance, time to market, security and compliance Partner with the best As an Incident Response Analyst you will play a crucial role in safeguarding Baker Hughes information systems by analyzing a wide range of cybersecurity events. Your primary focus will be on identifying, investigating, and interpreting security incidents and trends, and making recommendations on appropriate containment and remediation steps. You will be at the forefront of detecting potential threats and vulnerabilities, providing critical insights that drive our cybersecurity defense strategies. As a Incident Response Analyst you will be Responsible for : Leading technical aspects of digital security incident detection and response, focusing on very unstructured incidents and high-risk events. Specializing in network-centric analysis (NSM), host-centric analysis (live response, digital forensics), malware analysis, and/or log-centric analysis (SIEM) Performing daily response operations with a schedule that may involve nontraditional working hours - act as escalation points for Event Triage Analysts Mentoring and train Event Analysts as required. The best candidates for the role work well with other people and have strong verbal and written communication skills, a sense of diplomacy, and decision making skills to handle the often fast-paced role of an incident handler Fuel your passion Bachelor's Degree in Computer Science or “STEM” Majors (Science, Technology, Engineering and Math). A minimum 4 years of professional experience in STEM related degree, Political Science/Government/International Affairs. The best candidates for the role work well with other people and have strong verbal and written communication skills, a sense of diplomacy, and decision making skills to handle the often fast-paced role of an incident handler Strong verbal and written communication skills Detailed understanding of APT, Cyber Crime and other associated tactics Strong track record of understanding and interest in recognized IT and OT security-related standards and technologies, demonstrated through training, job experience and/or industry Knowledge of and/or working on Baker Hughes OT products Professional experience with Cyber Security, Operations Security, Product Security, Industrial Control Systems (ICS), Information Assurance, and Information Technology Experience with host based detection and prevention suites (Microsoft Defender, OSSEC, Yara, MIR, Carbon Black, Tanium, etc.) Experience with host-centric tools for forensic collection and analysis (Microsoft Defender, Sleuth Kit, Volatility Framework, FTK, Encase, etc.) Experience with Network Forensics and/or Network Security Monitoring (NSM) tools (Snort, Bro-IDS, PCAP, tcpdump, etc.) and analysis techniques (alert, flow/session and PCAP analysis) Experience with malware and reverse engineering (Dynamic and static analysis) Strong IT infrastructure background including familiarity with the following: Networking (TCP/IP, UDP, Routing) Applications (HTTP, SMTP, DNS, FTP, SSH, etc.) Encryption (DES, AES, RSA) and hashing algorithms (MD5, SHA-1, etc.) System/Application vulnerabilities and exploitation Operating systems (Windows, *Nix, and Mac) Cloud technology (SaaS, IaaS, PaaS) and associated digital forensics and incident response techniques CISSP, CISM or related SANs certifications preferred Active US government security clearance Working knowledge of secure communication methods, including Secure Shell, S/MIME and PGP/GPG Work in a way that works for you We recognize that everyone is different and that the way in which people want to work and deliver at their best is different for everyone too. In this role, we can offer the following flexible working patterns: Working flexible hours - flexing the times when you work in the day to help you fit everything in and work when you are the most productive. Occasionally working remotely from home or any other work location Working with us Our people are at the heart of what we do at Baker Hughes. We know we are better when all of our people are developed, engaged and able to bring their whole authentic selves to work. We invest in the health and well-being of our workforce, train and reward talent and develop leaders at all levels to bring out the best in each other. Working for you Our inventions have revolutionized energy for over a century. But to keep going forward tomorrow, we know we have to push the boundaries today. We prioritize rewarding those who embrace change with a package that reflects how much we value their input. Join us, and you can expect: Contemporary work-life balance policies and wellbeing activities Comprehensive private medical care options Safety net of life insurance and disability programs Tailored financial programs Additional elected or voluntary benefits About Us: We are an energy technology company that provides solutions to energy and industrial customers worldwide. Built on a century of experience and conducting business in over 120 countries, our innovative technologies and services are taking energy forward – making it safer, cleaner and more efficient for people and the planet. Join Us: Are you seeking an opportunity to make a real difference in a company that values innovation and progress? Join us and become part of a team of people who will challenge and inspire you! Let’s come together and take energy forward. Baker Hughes Company is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law. R147718

Do you like working on identifying and preventing potential cybersecurity risks? Are you ready for the next step in your career? Join our Digital Technology Team! Our Digital Technology business provides intelligent, connected technologies to monitor and control our energy extraction assets. We provide customers with the peace of mind needed to reliably and efficiently improve their operations. Our team creates business value through continuous improvement in up-time, resilience, performance, time to market, security and compliance Partner with the best As an Incident Response Analyst you will play a crucial role in safeguarding Baker Hughes information systems by analyzing a wide range of cybersecurity events. Your primary focus will be on identifying, investigating, and interpreting security incidents and trends, and making recommendations on appropriate containment and remediation steps. You will be at the forefront of detecting potential threats and vulnerabilities, providing critical insights that drive our cybersecurity defense strategies. As a Incident Response Analyst you will be Responsible for : Leading technical aspects of digital security incident detection and response, focusing on very unstructured incidents and high-risk events. Specializing in network-centric analysis (NSM), host-centric analysis (live response, digital forensics), malware analysis, and/or log-centric analysis (SIEM) Performing daily response operations with a schedule that may involve nontraditional working hours - act as escalation points for Event Triage Analysts Mentoring and train Event Analysts as required. The best candidates for the role work well with other people and have strong verbal and written communication skills, a sense of diplomacy, and decision making skills to handle the often fast-paced role of an incident handler Fuel your passion Bachelor's Degree in Computer Science or “STEM” Majors (Science, Technology, Engineering and Math). A minimum 4 years of professional experience in STEM related degree, Political Science/Government/International Affairs. The best candidates for the role work well with other people and have strong verbal and written communication skills, a sense of diplomacy, and decision making skills to handle the often fast-paced role of an incident handler Strong verbal and written communication skills Detailed understanding of APT, Cyber Crime and other associated tactics Strong track record of understanding and interest in recognized IT and OT security-related standards and technologies, demonstrated through training, job experience and/or industry Knowledge of and/or working on Baker Hughes OT products Professional experience with Cyber Security, Operations Security, Product Security, Industrial Control Systems (ICS), Information Assurance, and Information Technology Experience with host based detection and prevention suites (Microsoft Defender, OSSEC, Yara, MIR, Carbon Black, Tanium, etc.) Experience with host-centric tools for forensic collection and analysis (Microsoft Defender, Sleuth Kit, Volatility Framework, FTK, Encase, etc.) Experience with Network Forensics and/or Network Security Monitoring (NSM) tools (Snort, Bro-IDS, PCAP, tcpdump, etc.) and analysis techniques (alert, flow/session and PCAP analysis) Experience with malware and reverse engineering (Dynamic and static analysis) Strong IT infrastructure background including familiarity with the following: Networking (TCP/IP, UDP, Routing) Applications (HTTP, SMTP, DNS, FTP, SSH, etc.) Encryption (DES, AES, RSA) and hashing algorithms (MD5, SHA-1, etc.) System/Application vulnerabilities and exploitation Operating systems (Windows, *Nix, and Mac) Cloud technology (SaaS, IaaS, PaaS) and associated digital forensics and incident response techniques CISSP, CISM or related SANs certifications preferred Active US government security clearance Working knowledge of secure communication methods, including Secure Shell, S/MIME and PGP/GPG Work in a way that works for you We recognize that everyone is different and that the way in which people want to work and deliver at their best is different for everyone too. In this role, we can offer the following flexible working patterns: Working flexible hours - flexing the times when you work in the day to help you fit everything in and work when you are the most productive. Occasionally working remotely from home or any other work location Working with us Our people are at the heart of what we do at Baker Hughes. We know we are better when all of our people are developed, engaged and able to bring their whole authentic selves to work. We invest in the health and well-being of our workforce, train and reward talent and develop leaders at all levels to bring out the best in each other. Working for you Our inventions have revolutionized energy for over a century. But to keep going forward tomorrow, we know we have to push the boundaries today. We prioritize rewarding those who embrace change with a package that reflects how much we value their input. Join us, and you can expect: Contemporary work-life balance policies and wellbeing activities Comprehensive private medical care options Safety net of life insurance and disability programs Tailored financial programs Additional elected or voluntary benefits About Us: We are an energy technology company that provides solutions to energy and industrial customers worldwide. Built on a century of experience and conducting business in over 120 countries, our innovative technologies and services are taking energy forward – making it safer, cleaner and more efficient for people and the planet. Join Us: Are you seeking an opportunity to make a real difference in a company that values innovation and progress? Join us and become part of a team of people who will challenge and inspire you! Let’s come together and take energy forward. Baker Hughes Company is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law. R147718

Job Applicant Privacy Notice CyberArk, Security Cloud Consultant Publication Date: Jul 16, 2025 Ref. No: 534401 Location: Chennai, IN Role of Wealth Management Operational Security Engineer, being understood this role includes delegations from APAC WM CISO. The incumbent will be responsible for managing and implementing technical access controls, privilege access management, data leakage prevention and other related technologies to ensure the confidentiality, integrity, and availability of our organization’s data and systems. Responsibilities Direct Responsibilities: ü Technical Access Management / Privilege Access Management o Manage and maintain technical/privilege access controls for production and development environments o Ensure compliance with organizational technical access control security policies and procedures o Collaborate with IT teams to implement least privilege access and resolve access-related non-compliance o Review existing CyberArk password management policies and assess the effectiveness of the enforcement through password rotation o Review technical access segregation between production and development environments with respective support teams ü Data Leakage Prevention (DLP) o Create, management and maintain DLP policies to detect and prevent data leaks o Deploy and maintain DLP infrastructure o Collaborate with IT teams to investigate and respond to data leak incidents ü Identity and Access Management (IAM) o Collaborate with IT teams to deploy and maintain data encryption solutions o IAM team to ensure seamless integration with technical access management solutions o Ensure compliance with organizational IAM policies and procedures ü Data Encryption Deployment & Monitoring o Collaborate with IT teams to deploy and maintain data encryption solutions o Ensure compliance with organizational data encryption policies and procedures ü Unstructured & Structured Data Discovery & Activity Monitoring o Collaborate with IT teams to: § Deploy and maintain unstructured & structured data discovery and activity monitoring solution § Identify and classify sensitive data § Monitor and analyse restricted and sensitive database activities § Remediate any non-compliant finding reported ü Infrastructure Vulnerability Management o Responsible to identify, classify, prioritize and remediate vulnerabilities in organization infrastructure. o Ensure the regular coverage of infrastructure assets in vulnerability assessment by service providers o Collaborate with IT Dev and Prod teams to remediate identified vulnerabilities and ensure that all remediation efforts are tracked and documented. o Provide regular reports to management on vulnerability management activities, including identified vulnerabilities, remediation efforts and compliance status. o Collaborate with IT teams, management and other stakeholders to ensure that vulnerability management efforts are aligned with business objectives. o Ensure that vulnerability assessment tools such as Rapid7 Nexpose, Tanium, Qualys are configured to meet the expected quality assessment and by fine-tuning the vulnerability assessment plugins. ü Application Security o Ensure the effective implementation of Secure SDL including the DevSecOps and Threat modelling practices. o Identify and implement the latest security standards for internet facing and internal assets o Improve the Vulnerability Management at the application level in terms of efficiency as well as effectiveness (including Static Acceptance Security Testing – SAST, Dynamic Acceptance Security Testing – DAST and Software Composition Analysis – SCA). o Perform Security risk assessments and reviews to be presented to respective committees o Ensure the adequate security level for all WM GAIM applications, whatever the IT project manager’s location and hosting provider ü Cybersecurity o Ensure the protection of WM business data with an adequate security level of WM assets based on review processes o Ensure the coordination with other IT security or other actors in the region or globally o Assist for a Risk Treatment for any APAC WM issue, based on the processes o Identify the IT security risks in advance, record and follow-up them o Define and contribute to processes from cybersecurity perspective o Periodic reporting of security status to IT Security Domain Head o Ensure the regular reporting for management follow-up o Ensure to follow-up on the DLP, Incident Management topics with by investigating and following with handlers until the issue is closed. o Ensure to onboard the Assets & Applications in SIEM and handling BAU, create / update relevant documents. ü Production Security o Ensure the effectiveness and success of vulnerability management process o Ensure the compliance level of the production environment and integrate to reporting ü IT Security Compliance (delegation on WM APAC scope) o Ensure the alignment with the Group and WM GAIM security policies, for both project and production assets o Ensure the compliance with regulatory bodies requirements, including for APAC (HKMA, MAS), EU (GDPR), Switzerland (FINMA) o Leveraging on a deep knowledge of Security standards such as NIST, CIS, ISO2700x, ensure the compliance with the IT security requirements o Ensure the compliance with the Third-party Technology risks and the Cloud security o Identify the process gaps and provide solutions ü Coordination with IT Security actors o Alignment on the objectives and means, contribution to the different global reporting (WM Cybersecurity Committee, Application Security Dashboard…) o Coordination and control of security activities performed by APAC Business Information Security and Production Security teams, including production security review, user security awareness for the WM scope. o Coordination with the global security teams concerning integration of WM assets within production sites o Keeping abreast of initiatives by the IT Security community within the Group and other IT Security stakeholders within the Group

City/Cities Noida Country India Working Schedule Full-Time Work Arrangement Hybrid Relocation Assistance Available No Posted Date 18-Jul-2025 Job ID 10463 Description and Requirements Job Responsibilities Responsible for creating and testing Windows software installation packages for automated deployments in an Enterprise environment Experience in creating packaging for server operating system, mostly for Citric end user platform hosting on server platform. Initiates, plans, coordinates, designs, develops, and tests software distribution packages. Work with end customer to perform the UAT testing of the package before distribution of the package in production environment. End-to end support in packaging, testing , distributing in test and production rollout, help operations team in case of any failure in prod deployments Participates in project activities beyond technical tasks, to include collecting data, contributing to designs/decisions, and communicating with customers Research and recommend innovative, and where possible, automated approaches for anything related to software packaging and deployment Generate and maintain operational and other procedural documentation as needed Experience with multi-site, large environment with application package deployments using tools such System Center Configuration Manager, Intune, or equivalent technologies such as Chef Infra , Ansible Experience with producing complex software packages and software deployments Minimum of two years' experience in Config Management, SCCM, Intune or similar product for application packaging and distribution Expertise with Desktop Virtualization - VMWare Workstation, Hyper-V, Azure AVD, Citrix VDI, or equivalent technologies is preferred In-depth knowledge of operating systems (Windows Desktop OS 7/10/11, Windows Server 20XX Server). Ex. (DLL conflicts, Windows registry, environment variables, batch files, and client/ server operations/connectivity Strong knowledge in windows application package creation and installation using Windows installation components and third-party tools such as Admin Studio, InstallShield, Wise Studio, Orca Expertise in Windows automation scripting such as PowerShell, WMI, VBScript, PowerShell App Deployment Toolkit. PowerShell and App Deployment Kit strongly preferred Working knowledge in Microsoft‚ÄØIntune‚ÄØsoftware administration, software packaging and deployment Comprehensive knowledge and experience with Windows installer technologies such as MSI,‚ÄØMSIX, AppX, virtualization, and other installer technologies. Candidate should also have a strong understanding of the following areas as relates to application packaging: MSI patches and transforms MSIX packaging and App Attache MSI merge modules, macros, and custom actions Security modifications within MSI packages Installation impersonation (system, user etc.) Experience with DLL conflicts, Windows registry modifications Environment variables TCP/IP networks, Network Protocols Knowledge, Skills and Abilities Education Bachelor’s degree (Any Stream) or diploma with a minimum of 15 years of education. Experience Minimum Experience of 5 years with at least 3 years of relevant experience Expertise in windows Application packaging via Installadhiled, Experites in windows desktop and server operating systems Expertise in Citrix/Virtualization services Preferred experience in , Chef , Ivanti, Tanium and Ansible Good knowledge in PowerShell Knowledge and skills (general and technical) Application virtualization – Intermediate Citrix App Layering - Intermediate Microsoft Terminal services - Intermediate Good understanding on Citrix/virtualization Environment ITIL Framework knowledge Basic understanding of CRM tools (ServiceNow/Remedy) Should have experience in XenApp. About MetLife Recognized on Fortune magazine's list of the 2025 "World's Most Admired Companies" and Fortune World’s 25 Best Workplaces™ for 2024, MetLife , through its subsidiaries and affiliates, is one of the world’s leading financial services companies; providing insurance, annuities, employee benefits and asset management to individual and institutional customers. With operations in more than 40 markets, we hold leading positions in the United States, Latin America, Asia, Europe, and the Middle East. Our purpose is simple - to help our colleagues, customers, communities, and the world at large create a more confident future. United by purpose and guided by empathy, we’re inspired to transform the next century in financial services. At MetLife, it’s #AllTogetherPossible. Join us!

Requirements Description and Requirements Job Responsibilities Responsible for creating and testing Windows software installation packages for automated deployments in an Enterprise environment Experience in creating packaging for server operating system, mostly for Citric end user platform hosting on server platform. Initiates, plans, coordinates, designs, develops, and tests software distribution packages. Work with end customer to perform the UAT testing of the package before distribution of the package in production environment. End-to end support in packaging, testing , distributing in test and production rollout, help operations team in case of any failure in prod deployments Participates in project activities beyond technical tasks, to include collecting data, contributing to designs/decisions, and communicating with customers Research and recommend innovative, and where possible, automated approaches for anything related to software packaging and deployment Generate and maintain operational and other procedural documentation as needed Experience with multi-site, large environment with application package deployments using tools such System Center Configuration Manager, Intune, or equivalent technologies such as Chef Infra , Ansible Experience with producing complex software packages and software deployments Minimum of two years' experience in Config Management, SCCM, Intune or similar product for application packaging and distribution Expertise with Desktop Virtualization - VMWare Workstation, Hyper-V, Azure AVD, Citrix VDI, or equivalent technologies is preferred In-depth knowledge of operating systems (Windows Desktop OS 7/10/11, Windows Server 20XX Server). Ex. (DLL conflicts, Windows registry, environment variables, batch files, and client/ server operations/connectivity Strong knowledge in windows application package creation and installation using Windows installation components and third-party tools such as Admin Studio, InstallShield, Wise Studio, Orca Expertise in Windows automation scripting such as PowerShell, WMI, VBScript, PowerShell App Deployment Toolkit. PowerShell and App Deployment Kit strongly preferred Working knowledge in Microsoft‚ÄØIntune‚ÄØsoftware administration, software packaging and deployment Comprehensive knowledge and experience with Windows installer technologies such as MSI,‚ÄØMSIX, AppX, virtualization, and other installer technologies. Candidate should also have a strong understanding of the following areas as relates to application packaging: MSI patches and transforms MSIX packaging and App Attache MSI merge modules, macros, and custom actions Security modifications within MSI packages Installation impersonation (system, user etc.) Experience with DLL conflicts, Windows registry modifications Environment variables TCP/IP networks, Network Protocols Knowledge, Skills And Abilities Education Bachelor’s degree (Any Stream) or diploma with a minimum of 15 years of education. Experience Minimum Experience of 5 years with at least 3 years of relevant experience Expertise in windows Application packaging via Installadhiled, Experites in windows desktop and server operating systems Expertise in Citrix/Virtualization services Preferred experience in , Chef , Ivanti, Tanium and Ansible Good knowledge in PowerShell Knowledge and skills (general and technical) Application virtualization – Intermediate Citrix App Layering - Intermediate Microsoft Terminal services - Intermediate Good understanding on Citrix/virtualization Environment ITIL Framework knowledge Basic understanding of CRM tools (ServiceNow/Remedy) Should have experience in XenApp. About MetLife Recognized on Fortune magazine's list of the 2025 "World's Most Admired Companies" and Fortune World’s 25 Best Workplaces™ for 2024, MetLife , through its subsidiaries and affiliates, is one of the world’s leading financial services companies; providing insurance, annuities, employee benefits and asset management to individual and institutional customers. With operations in more than 40 markets, we hold leading positions in the United States, Latin America, Asia, Europe, and the Middle East. Our purpose is simple - to help our colleagues, customers, communities, and the world at large create a more confident future. United by purpose and guided by empathy, we’re inspired to transform the next century in financial services. At MetLife, it’s #AllTogetherPossible . Join us!

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. CMS-TDR Senior As part of our EY-cyber security team, who shall work as Senior analyst who will assist clients in detecting and responding to security incidents with support of their SIEM, EDR and NSM solutions. The opportunity We’re looking for Security Analyst with expertise in SIEM, EDR and NSM solutions. Your Key Responsibilities Operational support using SIEM solutions (Splunk, Sentinel), EDR (CrowdStrike, Defender, Carbon Black) and NSM (Fidelis, ExtraHop) for multiple customers. Specialized in second level incident validation and more detailed investigation Performs incident coordination and communication with client to ensure effective containment, eradication, and recovery SIEM support activities which includes adhoc reporting and basic troubleshooting Advise customers on best practices and use cases on how to use this solution to achieve customer end state requirements. Provide near real-time analysis, investigating, reporting, remediation, coordinating and tracking of security-related activities for customer Skills And Attributes For Success Customer Service oriented - Meets commitments to customers; Seeks feedback from customers to identify improvement opportunities. Good knowledge of SIEM technologies such as Splunk, Azure Sentinel from an Security analyst’s point of view Troubleshoot issues associated with SIEM solution. Ability to work with minimal levels of supervision or oversight. Exposure to IOT/OT monitoring (Claroty, Nozomi Networks etc.) is a plus Good knowledge and experience in Security Monitoring Good knowledge and experience in Cyber Incident Response Knowledge in ELK Stack Knowledge in Network monitoring technology platforms such as Fidelis XPS, ExtraHop Knowledge in endpoint protection tools, techniques, and platforms such as Carbon Black, Tanium, CrowdStrike, Defender etc To qualify for the role, you must have B. Tech./ B.E. with sound technical skills Ability to work in 24x7 shifts Strong command on verbal and written English language. Demonstrate both technical acumen and critical thinking abilities. Strong interpersonal and presentation skills. Minimum 3 years of Hands-on experience in SIEM/EDR/NSM solutions Certification in any of the SIEM platforms Knowledge of RegEx, Perl scripting and SQL query language. Certification - CCSA, CEH, CISSP, GCIH, GIAC. Ideally, you’ll also have People/Project management skills. What Working At EY Offers At EY, we’re dedicated to helping our clients, from start–ups to Fortune 500 companies — and the work we do with them is as varied as they are. You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer: Support, coaching and feedback from some of the most engaging colleagues around Opportunities to develop new skills and progress your career The freedom and flexibility to handle your role in a way that’s right for you EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

Hello All, Greeting for the day!! Wissen is hiring for Vulnerability Management Analyst. Below are the details Role: Vulnerability Management Analyst Experience: 8-12years Employment Type: Permanent Job Location: Bangalore/Hyderabad Notice: Immediate or 15days Mode of Work: Hybrid Preferred candidate profile Experience supporting SCCM, Windows Defender, Palo Alto Expanse, Prisma Access, Tenable, Tanium in an enterprise environment Must have an expert understanding of Windows OS including Windows 10, Windows 11, Server 2016 and 2019 Ability to work independently without intensive oversight, take initiative, and research problems independently Ability to identify, develop, and implement initiatives to improve the IT environment and user experience Experience working with and supporting structured change management, testing, and configuration Ability to translate technical or complex concepts into user-friendly language Ability to collaborate, working closely with both functional and technical teams Strong analytical, problem-solving, and trouble-shooting skills Sound knowledge of industry standards and methodologies Ability to remain flexible as priorities change, adaptable to change, and able to accept ambiguity Established skills in time management, multi-tasking, and prioritization of work 2+ years of experience with understanding and application of policies, standards, processes, and procedures. Role & responsibilities Self-starter attitude and is outfit with skill sets to drive conversation, gain consensus, technically validate, and drive completion Track, communicate, and monitor remediation of identified vulnerabilities, technical controls gaps and associated risk treatment plans. Define methodology, conduct security vulnerability assessments, and address any findings by supporting solution implementation to develop secure infrastructure with relevant operating models best practices. Support Cybersecurity Operations team during and after security incidents and develop mitigation plan to avoid future occurrences. Implement & manage consumption, performance, and Monitoring platform reporting Participate in deep dives for continual improvements to delivery and performance to ensure customers benefit from the best application, patching and configuration experience. Oversee technical aspects to Service Delivery and partner with Service Partners to drive community of practice excellence. Support audit function, prepare reports and documentation for Compliance Participate and contribute to Knowledge Management, Problem and support the Incident Management process Responsible for embedding Information Security policies, guidelines and standards across all platforms and services. Identify and effectively communicate systems vulnerabilities with supporting risk statements and pragmatic mitigation options to stakeholders. Work with the Information Security Team and other Digital pillars to improve efficiencies within security operations, monitoring, remediation, and governance by leveraging existing capabilities or by identifying new capabilities. Assist in improving and automating existing vulnerability management lifecycle. Education Qualifications: Post-secondary qualification in related field Information Technology Infrastructure Library (ITIL) or Microsoft Operating Framework (MOF) qualifications and experience highly regarded Relevant Microsoft Technical accreditation is highly desirable Please share resume to haritha.sigamala@wisseninfotech.com , if any one suitable to this role.

Information Protection Lead Analyst - HIH - Evernorth Position Summary: Cigna Information Protection is looking for a Lead Analyst, Incident Response (IR). The Incident Response Lead Analyst is responsible for handling and coordinating lower severity cybersecurity incidents as part of a 24x7 operation. The IR Lead Analyst acts as a supporting role to the major incident management process in the event of High or Critical Severity cybersecurity incidents. The IR Lead Analyst also acts as a point of escalation to lower tier analysts and provides mentorship. Job Description & Responsibilities : Monitor and respond to security alerts generated by the Managed Security Service Provider (MSSP), Cigna’s SIEM and/or SOAR platforms. Analyze, document, and communicate security events based on priority given by MSSP or SOC Team Lead and according to SOC protocol. Provide escalation support for security events from SOC Analysts. Participate in CSIRT functions supporting investigative requests and/or to assist with the development of containment/mitigation strategies. Perform host and network-based log analysis to identify potentially infected hosts and escalate to appropriate team according to SOC protocol. Correlate IOCs with data from information security systems/tooling to identify attacks and/or potentially compromised systems and escalate to appropriate team according to SOC protocol. Collaborate with Cigna’s Threat Intelligence, Threat Hunt, and Adversary Simulation teams to refine and/or improve threat detections and/or security controls and configurations for security monitoring systems. Contribute to the evaluation, testing, and implementation of new detections, security tools and processes. Develop and maintain documentation for all assigned responsibilities. Develop and report on trends and provide focus and situational awareness on all issues to SOC leadership. Required to perform duties outside of normal work hours based on business needs. Working in a shift is required for this role and you will be allocated to one of the following: Morning Shifts (06:00am-03:30pm) Shift A: Tuesday -> Saturday Shift B: Sunday -> Thursday General Shifts (11:30am-8:30pm): Shift C: Tuesday -> Saturday Shift D: Sunday -> Thursday Experience Required: Overall, 5-8 years of I.T. and/or information security experience. Minimum 1-3 years of experience detecting and responding to cyber intrusions. Experience leveraging the Cyber Kill Chain and MITRE Attack Framework. Experience using IR tools such as Splunk, Tanium, Volatility, Encase, FTK, SIFT, REMnux, etc. Deep understanding of the cyber threat landscape, attack surfaces, and threats associated with each. Deep understanding of enterprise security controls in Active Directory/Windows and UNIX environments. Knowledgeable and experienced with Cloud security concepts and tooling. Experience Desired: Automating and/or scripting ability in one or more of the following: Python, Perl, Bash and/or Powershell. Experience de-obfuscating potentially malicious content. Experience doing static and dynamic malware analysis. Education and Training Required: A degree (bachelor’s degree preferred) from an accredited college and four years of satisfactory full-time experience required by the position; OR Education and / or experience which is equivalent to the above Relevant certifications such as Security+, CEH, CASP or similar Primary Skills: Ability to conduct memory and disk forensics, network traffic analysis, log correlations in support of Incident Response investigations. Thorough knowledge of operating systems, networking, and host analysis. Detailed understanding of attacker tactics, tools, and techniques. Strong communication skills, both written and oral. Strong analytical and investigative mindset Additional Skills: Ability to successfully interface with internal clients. Ability to document and explain technical details in a concise, understandable manner. Ability to manage and balance own time among multiple tasks, lead junior staff when required, and to work independently and as part of a team. About Evernorth Health Services Evernorth Health Services, a division of The Cigna Group, creates pharmacy, care and benefit solutions to improve health and increase vitality. We relentlessly innovate to make the prediction, prevention and treatment of illness and disease more accessible to millions of people. Join us in driving growth and improving lives.

Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health optimization on a global scale. Join us to start Caring. Connecting. Growing together. Primary Responsibilities Deploy and configure automated patch deployment systems at acquired companies Deploy and configure endpoint security/configuration management platforms Characterize and analyze system traffic and logs to identify anomalous activity and potential threats to information resources Manage delivery of Endpoint security services across multiple business segments Contribute to IT and business projects to ensure security solutions and processes are fully integrated prior to new services/products being moved into production Manage delivery of Endpoint security services across multiple business segments Identifying, quantifying, and recommending mitigation actions for security risks as they relate to newly acquired entities Administer and maintain security operations services including implementing preventative security safeguards Comply with the terms and conditions of the employment contract, company policies and procedures, and any and all directives (such as, but not limited to, transfer and/or re-assignment to different work locations, change in teams and/or work shifts, policies in regards to flexibility of work benefits and/or work environment, alternative work arrangements, and other decisions that may arise due to the changing business environment). The Company may adopt, vary or rescind these policies and directives in its absolute discretion and without any limitation (implied or otherwise) on its ability to do so Required Qualifications 3+ years of relevant IT administration experience (Systems, network, database or cloud) 1+ years of Tanium administration experience Experience implementing, configuring, and administering software asset management tools. Additionally, deploy security patches in a large enterprise setting Demonstrated knowledge of other Endpoint Security solutions in the industry Demonstrate knowledge of internal and external attack vectors. Additionally, recommend safeguards for each threat Proven Technical hands-on aptitude with Microsoft Windows & Linux Demonstrate troubleshooting skills at OS, application, network, and database level #SSTech At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone-of every race, gender, sexuality, age, location and income-deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes — an enterprise priority reflected in our mission.

Our information technology team is the foundation behind every endeavor at SailPoint. They ensure that all of our orgs are able to execute, connect and innovate in a secure environment through duties such as supporting network databases and systems, updating system hardware and software, troubleshooting for system errors, and assisting team members in supporting all data security and optimization. IT System Engineer The IT System Engineer is responsible for providing support to critical internal infrastructure and applications. This is a professional level position and requires strong execution and analytical abilities. This position is expected to interact with Servers, Databases, SaaS products, Security, and various groups within Information Technology. Candidate must have strong server, network, communication, and analytical skills. This position may need to travel internationally on occasion to our other offices. Key Responsibilities Responsible for the ongoing maintenance, security, and availability of several applications based on business requirements and adhering to tight operations, security, and procedural models Applies professional-level technical skill and judgement to provide non-routine technical support for computer/data center operations Installs, configures, upgrades, tunes, and troubleshoots server and non-desktop computer hardware, software, systems, and other resources in a datacenter or other centralized computer network setting Maintains access control, data integrity, and file system security for the computer/datacenter environment Monitors, tracks, and records system performance and utilization metrics Assist in improving the efficiency of and help standardize current processes Contribute to documentation of application architecture, system configuration across platforms, and interface with various systems, and use this knowledge effectively to resolve issues Determine and document the root cause of an outage, duration and recommendations or steps to resolve issues Provide assistance as required in analyzing trends and suggesting long-term and short-term improvements Resolve incidents and problems in accordance with defined guidelines and meet operational level agreements Assist in change management processes, implement change requests and meet project deliverables within defined guidelines May participate in the development of information technology and infrastructure projects Ability to work after hours including weekends and night when required Respond to general inquiries Requires a dynamic, hard-working individual, with excellent inter-personal, oral and written communication skills Capable of effectively communicating highly technical information to both technical and non-technical personnel After 30 Days, the System Engineer will: Understand the team’s workflow – crew requests, incidents, and internal projects Meet the teams and get to know our services and their consumers Become comfortable supporting their areas of expertise Make connections within the team and consume knowledge articles to begin to understand the SailPoint way After 60 Days, the System Engineer will: Participate in high visibility projects Become a known expert amongst the teams we serve Confidently address incidents and requests across our spectrum of services Join the on-call rotation After 90 Days, the System Engineer will: Contribute to the project backlog to address outstanding opportunities Recommend and apply environmental changes to strengthen our services Speak confidently to the standards and services the team provides Requirements Bachelor's degree in Computer Science/Engineering or equivalent relevant experience Expertise with Linux system administration, particularly Red Hat Enterprise Linux Experienced with administering Windows Server operating systems Experience with on-prem virtualization technologies (VMWare, Nutanix, etc) Skilled with system and configuration management tools (Ansible, Tanium, Terraform, etc) Scripting skills (Bash, Python, PowerShell, etc) Proficient with Microsoft 365 administration, including Entra ID, Exchange Online, and Teams Knowledgeable in networking principles, devices, and protocols Familiarity with storage area networks (SAN) and network-attached storage (NAS) Excellent troubleshooting and problem-solving abilities Effective communication and teamwork skills with a global team Ability to work independently across multiple efforts with general guidance Motivated to learn new technologies and skills Ability to lift 25 pounds unassisted Industry certifications such as MCSE, RHCE, VCP, or equivalent are a plus. SailPoint is an equal opportunity employer and we welcome all qualified candidates to apply to join our team. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other category protected by applicable law. Alternative methods of applying for employment are available to individuals unable to submit an application through this site because of a disability. Contact applicationassistance@sailpoint.com or mail to 11120 Four Points Dr, Suite 100, Austin, TX 78726, to discuss reasonable accommodations. NOTE: Any unsolicited resumes sent by candidates or agencies to this email will not be considered for current openings at SailPoint.

Who We Are: OpenBet is a global leader in betting and gaming entertainment, trusted by over 200 partners to create memorable winning moments for millions of players worldwide. From processing bets during iconic events like the FIFA World Cup and Super Bowl to pioneering next-gen products like BetBuilder, we continuously redefine the player experience with high-quality content, cutting-edge technology, and advanced player protection tools. For over 25 years, our unbeatable platform has powered the most recognizable betting brands, ensuring peak performance with 100% uptime, unmatched scale, and speed. With 85 licenses, 20 World Lottery Association operators on our customer roster, and a team of 1,200+ experts across 14 countries, we remain at the heart of the industry. Join OpenBet to take your career to the next level and be part of a global innovative team shaping the future of betting entertainment for millions worldwide. Essential Job Functions: Manage and maintain Microsoft O365 environment and its capabilities including Exchange, SharePoint, OneDrive, Teams, PowerApps and more. Manage and maintain identity and access management (IAM) solutions, including Azure Active Directory (AAD) and related components. Manage and maintain Single Sign-On using Active Directory Federation Services with Multi Factor Authentication (OKTA). Manage user's mobile devices through Mobile Device Management (MDM) solutions (MS Intune). Manage Microsoft O365 and OKTA licenses Perform migrations and deployments related to building, upgrading and maintaining Microsoft O365 environment. Implement and manage security policies and compliance measures to safeguard Microsoft O365 environments, including data loss prevention (DLP), threat protection, and conditional access policies. Provide technical support and troubleshooting for Microsoft O365 issues, according to the defined IT Service Catalogue, ensuring minimal disruption to business operations. Monitor system performance and generate regular reports on the health and usage of Microsoft O365 services. Work closely with other IT teams to integrate Microsoft O365 services with existing infrastructure and applications. Develop and maintain comprehensive documentation of configurations, processes, and procedures related to Microsoft O365 services. Provide training and guidance to end-users and junior administrators on Microsoft O365 best practices and new features. Prepare and communicate regular reports on work-related activities, within IT team and across departments as needed. Prepare and communicate regular audit reports on the MFA, Active Directory & O365 environments All other duties as assigned. Education / Required Experience: Undergraduate degree in Computer Science, Information Technology or similar relevant degree. Minimum of 5 years of experience in managing and administering Microsoft O365 and Identity environments in a large-scale environment, with at least 3 years in a senior or lead role Experience in IT projects related to large company acquisitions/mergers would be desirable. Professional Certifications MCSE: Productivity certification Microsoft Certified: Identity and Access Administrator Professional Certifications (Beneficial) ITIL Certification OKTA Certification Proficient in Microsoft O365 services and tools, including Exchange, SharePoint, OneDrive, Teams Deep technical expertise in the Office suite, Outlook, Teams IM, collaboration and voice, Power Apps, Automate and Planner, and security management within the Microsoft 365 environment. Proficient in Active Directory (including ADFS and Azure AD) and Group Policy configuration. Proficient in PowerShell scripting and security best practices. Strong Experience of OKTA SSO / MFA Strong experience managing Microsoft O365 licenses. Proven experience in Microsoft O365 and Identity Management services design, implementation, and maintenance. Good Knowledge of Configuration Management tools (SCCM, Tanium, InTune) Excellent troubleshooting and problem-solving skills, with the ability to analyze complex issues and provide effective solutions. Proven ability to manage and lead projects, with excellent organizational and time-management skills. Strong verbal and written communication skills, with the ability to convey technical information to non-technical stakeholders. Ability to work collaboratively in a team-oriented environment and manage multiple priorities effectively. High level of accuracy and attention to detail, ensuring consistent and reliable service delivery. Strong work ethic and a team player At OpenBet, we celebrate diversity and believe in creating an inclusive environment where every voice is valued and respected. We're committed to building a team that reflects the rich tapestry of humanity, embracing individuals from all walks of life, backgrounds, and identities. Join us in shaping the future of iGaming, where diversity isn't just celebrated—it's celebrated.

Amex GBT is a place where colleagues find inspiration in travel as a force for good and – through their work – can make an impact on our industry. We’re here to help our colleagues achieve success and offer an inclusive and collaborative culture where your voice is valued. American Express Global Business Travel is seeking an End User Computing Engineer with an analytical mind and a detailed understanding of EUC methodologies. EUC Engineers are expected to have meticulous diligence, outstanding critical thinking skills, work comfortably under pressure, and deliver on tight deadlines. This position will be assigned to work in one of AmexGBT's global offices (not in the US) or Global-Virtual What You’ll Do On a Typical Day The EUC Engineering role is to function as the platform owner responsible for the architecture, design, implementation, configuration, maintenance, and support of existing environments within the Amex GBT infrastructure. This role will ensure elevated levels of availability, resiliency, and performance. Individuals must be able to adapt to changing technology and stay at the forefront of leading IT systems and solutions. Plan, design, deploy, configure, troubleshoot, and maintain current environments: Operating Systems Image control (Windows, macOS) Endpoint Management tools (Tanium, Intune, JAMF, and/or others) Collaboration Tools (Zoom, Exchange, Teams, Snap, Box, Bomgar, DTEN, and/or others) Application packaging within multiple UEM tool sets Develop and execute patching routines to ensure compliance mandates Windows, Mac, and all supported software applications Practice ITIL methodology for Incident Response, Problem, Configuration, & Change Management Build and represent change plans to the Change Advisory Board (CAB) Create and maintain platform documentation and training materials, as well as present training materials Windows Command Shell Script, VBScript, and/or PowerShell tool sets Work within a team environment and be the point of contact for business units What We’re Looking For Experience with “Digital Employee Experience” platforms Bachelor’s or master’s degree in computer science, Computer Engineering, Information Systems, or related computer field strongly preferred – (10+ years of relevant experience considered instead of a degree) Minimum of 8 years of Endpoint Configuration Management experience and large-scale global implementations (Design, Implement, Upgrade, Support, and Maintain) Designs create and maintain current and new processes for the automation and deployment of internal client systems UEM experience required in the planning, designing, implementing, and troubleshooting of UEM environments (Tanium, Intune, JAMF, and/or others) Experience in software distribution, software packaging, and OS deployment Expert understanding of downloading and deploying patches Knowledge of VDI environments such as AWS Workspaces, VMWare, Windows Cloud VDI Solid understanding of current macOS, JAMF, iOS, and Android Understanding of Firewall rules and troubleshooting on local clients Knowledge of Active Directory (AD) integration, GPO management, and reporting analytics from AD In-depth understanding of Windows Desktop Operating systems Strong knowledge with scripting tools – PowerShell, Command Shell Script, VBScript Experience of working with OS tools, i.e., MDT, Sysprep, WIM, WinPE, registry Required knowledge of MSI packaging best practices and standards Strong troubleshooting skills to including logging of issues and root cause analysis Effective communication skills, required to present to leadership at all levels LICENSES / CERTIFICATIONS (preferred): MSCE, MCITS or MCSD, JAMF, Tanium Location India The #TeamGBT Experience Work and life: Find your happy medium at Amex GBT. Flexible benefits are tailored to each country and start the day you do. These include health and welfare insurance plans, retirement programs, parental leave, adoption assistance, and wellbeing resources to support you and your immediate family. Travel perks: get a choice of deals each week from major travel providers on everything from flights to hotels to cruises and car rentals. Develop the skills you want when the time is right for you, with access to over 20,000 courses on our learning platform, leadership courses, and new job openings available to internal candidates first. We strive to champion Inclusion in every aspect of our business at Amex GBT. You can connect with colleagues through our global INclusion Groups, centered around common identities or initiatives, to discuss challenges, obstacles, achievements, and drive company awareness and action. And much more! All applicants will receive equal consideration for employment without regard to age, sex, gender (and characteristics related to sex and gender), pregnancy (and related medical conditions), race, color, citizenship, religion, disability, or any other class or characteristic protected by law. Click Here for Additional Disclosures in Accordance with the LA County Fair Chance Ordinance. Furthermore, we are committed to providing reasonable accommodation to qualified individuals with disabilities. Please let your recruiter know if you need an accommodation at any point during the hiring process. For details regarding how we protect your data, please consult the Amex GBT Recruitment Privacy Statement. What if I don’t meet every requirement? If you’re passionate about our mission and believe you’d be a phenomenal addition to our team, don’t worry about “checking every box;" please apply anyway. You may be exactly the person we’re looking for!