195 Vulnerability Jobs - Page 4

About Tekion: Positively disrupting an industry that has not seen any innovation in over 50 years, Tekion has challenged the paradigm with the first and fastest cloud-native automotive platform that includes the revolutionary Automotive Retail Cloud (ARC) for retailers, Automotive Enterprise Cloud (AEC) for manufacturers and other large automotive enterprises and Automotive Partner Cloud (APC) for technology and industry partners. Tekion connects the entire spectrum of the automotive retail ecosystem through one seamless platform. The transformative platform uses cutting-edge technology, big data, machine learning, and AI to seamlessly bring together OEMs, retailers/dealers and consumers. With its highly configurable integration and greater customer engagement capabilities, Tekion is enabling the best automotive retail experiences ever. Tekion employs close to 3,000 people across North America, Asia and Europe. We are looking for a highly skilled and motivated Security Engineer to join our dynamic team. In this role, you will be responsible for managing security incidents, identifying vulnerabilities, and implementing strategies to mitigate risks across our organization s infrastructure. If you have a proven track record in incident response, vulnerability management, and enhancing overall security posture, we would love to hear from you. Responsibilities and Deliverables: Incident Response : Monitor and analyze security event logs and alerts to detect potential incidents, and lead investigations for containment, eradication, and recovery. Root Cause Analysis : Perform in-depth analysis of sophisticated security incidents and targeted attacks across systems, networks, and code to identify root causes and prevent recurrence. Security Automation : Enhance detection and response capabilities through automation, including fine-tuning alerts to reduce false positives and automating responses to repetitive incidents. Playbook Creation : Develop and maintain incident response playbooks for distinct types of security incidents, ensuring they align with current threats. Security Event Enrichment : Leverage IOCs, threat intelligence, and other data sources to enrich security events, improving detection accuracy and reducing incident response time. Collaboration : Work with security stakeholders and cross-functional teams to coordinate incident response efforts and improve overall security initiatives. Threat Hunting : Conduct proactive threat hunting to identify potential malicious activities and mitigate emerging risks before they escalate. Vulnerability Management : Identify, assess, and prioritize vulnerabilities across systems, applications, and networks, and ensure effective remediation strategies. Vulnerability Scanning & Testing : Regularly conduct vulnerability scans, penetration tests, and risk assessments to uncover weaknesses in the security posture. Patch Management : Collaborate with IT and development teams to ensure timely patching and remediation of vulnerabilities. Required Experience & Education: Education: Bachelors/Masters degree in computer science, Information Technology, Cybersecurity, or a related field. Experience: A minimum of 3 years of experience in a Security Operations Center (SOC) environment. Certifications: Relevant certifications such GCIA, GCIH, AWS Security Specialist or any other certification that is in the field of Security Operations or Incident Response Coding Skills: Proficient in coding languages like Python or Go Technical Skills: Hands-on experience with security tools and technologies such as SIEMs, Endpoint Detection and Response (EDR), Web Application Firewalls (WAFs), Intrusion Detection Systems (IDS), and vulnerability scanners. Hands-on Experience: Proficient in the incident response process, including identification, containment, remediation, and recovery. Cloud Experience: Experience with cloud security services, preferably in AWS or Azure environments. Analytical Skills: Strong analytical and problem-solving skills with a detail-oriented approach to security challenges. Soft Skills: Excellent verbal and written communication skills, capable of conveying complex security concepts to non-technical stakeholders.

Serve as the primary point of contact and collaborate closely with our Infosec team to identify and prioritize vulnerabilities. Work with Engineering, Infrastructure, and IT teams to address vulnerabilities, provide guidance, and ensure timely remediation. Execute and enhance vulnerability management strategy, implementation, and operationalization. Establish policies, procedures, and standards for vulnerability identification, assessment, and remediation. Facilitate focus group meetings to discuss vulnerability remediation strategies and hold weekly steering committee meetings with leadership to review remediation progress. Collaborating with support teams to compile evidence and measure service level agreement (SLA) performance using analytical tools. Creating and sharing intuitive dashboards with clients to enhance transparency and exceed SLA compliance goals. Accumulate, monitor, and report on vendor performance metrics (SLAs & KPIs) to internal stakeholders. Partner with the Security Operations Center (SOC) to examine and communicate data loss prevention (DLP) incidents involving confidential or personal data to relevant business units and senior management. Define program controls, processes, procedures, reporting cadence, decision governance structures and ways of working with key stakeholders. Monitor the execution of defined task through tracking of program milestones and their statuses, developing program plans and measuring progress against ongoing key performance indicators. Analyze, evaluate, and overcome program, risks, and produce program reports for leadership and stakeholders. Sets stakeholder and program team expectations and ensures that the deliverables are aligned with business goals. Establishes the program KPIs measurements and quality control points and align reporting to track progress against the measurements. Proactively anticipates and mitigates issues through validations. 10+ years of total experience with 3+ years in project/ program management Candidate should have familiarity with Information Security and Vulnerability concepts. Any related certification in Information Security will be

Sound cloud security knowledge, specialized in Azure. Hands on experience on cloud security tools like Wiz.io. Evaluate & assess vulnerabilities/ threats published on internets cyber space and analysis the relevance to organization. Emergency vulnerability management process. Analysis Zero days, vulnerabilities exploited in the wild to safeguard organization IT landscape. Collaborate with technology, platform, and security teams to mitigate the emerging threats. Conduct assessment on security advisories and support vulnerability advisory process. Maintain & improve existing severity risk rating mechanism and provide sustainable ways for risk mitigation. Skills Must have Ideally up to eight years of hands-on experience with vulnerability scanning tools. Certifications like CEH, OSCP etc will be additional advantage. Good knowledge of CVEs, EPSS, vulnerabilities and exploits. Proven experience in vulnerability management and in depth understanding of vulnerability management lifecycle. Potentially, experience with other security processes e.g. vulnerability scanning or configuration management Prioritisation of complex technical tasks Good at communicating and documenting technical information (MS Teams, Confluence, Gitlab) Skills to collaborate & manage technology partners and other security counterparts. Technical communication and documentation skills Nice to have N/A Other Languages English: C1 Advanced Seniority Senior Refer a Friend Positive work environments and stellar reputations attract and retain top talent. Find out why Luxoft stands apart from the rest. Recommend a friend Related jobs View all vacancies Pune, India Req. VR-114914 Cybersecurity BCM Industry 06/06/2025 Req. VR-114914 Apply for Cyber Security Systems Engineer in Pune *

Location/s: Bengaluru Recruiter contact: Supriya Yadavalli Mott MacDonald is a global engineering, management, and development consultancy with over 20,000 employees across more than 50 countries and 140+ offices. We work across incredible global industries, delivering exciting work that is defining our future and making an important societal impact in the communities we serve. Our people power our performance - we succeed when they do. With countless opportunities to collaborate, learn, and grow, the possibilities for excellence are as varied as every individual. Whether you want to grow as a subject matter expert or broaden your experience with roles across our international community, you re surrounded by global specialists who want to combine their expertise and champion you to be your best. As a proudly employee-owned business, we benefit our clients, our communities, and each other, investing in creating the right space for everyone to feel empowered, included, and valued. Whatever your ambition, Mott MacDonald is where people come to be brilliant. About the business unit Mott MacDonald s support services are the driving force behind our organisation enabling us to run efficiently and effectively. The team works collaboratively to offer specialist advice, best practice and technology to all areas of our business specifically designed for our global reach. Job Description: Working as an IT Specialist in Cyber Security you will assist and advise the IT Manager for Cyber Security regarding Risk Analysis and Remediation Risk Analysis and Remediation Service Desk analyst you will be the first point of contact for all employees seeking to resolve IT issues. Speedy and intelligent resolution of IT incidents is the key to ensuring that Mott MacDonald can deliver on its promises to its clients. Key duties and responsibilities include: Proactively seeking out the most effective means of monitoring information security related activities, by use of existing tools, or the investigation of new tools and methods Developing and adopting appropriate Risk Assessment methodologies to ensure we are correctly prioritizing the risks we have identified. Assist in the monitoring and resolution of all Information Security issues as they occur, driving through forensic investigation and remediation as appropriate. Feedback all lessons learned into Operational and/or Governance systems. Drive and support information security related change in Operational teams Governance Advice on appropriate security posture (approach, risks, technical measures, awareness) from the point of view of the business (both overall and specific teams) Assist with driving cultural change in the organization by helping people understand risks and make better choices to address enterprise security weaknesses. Communications Responsible for working with BMS and IT teams to communicate to the business and IT on known threats and best practices for information security, as they evolve. Operational Advice on all requirements around information security and appropriate use of specific systems or services, both those provided by IT or as required by the business, including projects with special security requirements and setup. Acting as a point of contact for Information Security champions within operational IT teams, advising on appropriate responses, escalation as required. Supervise the development of and relationship with the (planned) Security Operations Centre Help to ensure that risk is measured and understood effectively by operational teams. Penetration testing and vulnerability assessments Assist with prioritisation of security controls and remediation. Architecture Review and recommend tools and processes for managing information security around new and existing systems. Price out solutions and advise on the best risk solution portfolio. Identify, review and evaluate technology risk. Input to design choices for new systems to ensure security is addressed appropriately. Scan and provide feedback on new products and risks to inform management strategy. Candidate Specification: Essential: Demonstrable experience of business operations and processes in a large multinational or global organisation In-depth understanding of the Office 365 platform and Microsoft Windows Domain environment In-depth understanding of modern cloud and network technologies and protocols Demonstrate appreciation for user-centred design, experience, and usability Experience with mobile applications Working knowledge of international data privacy, data residency, and information security requirements Desirable: High degree of understanding of the evolving global and internal IT environments Knowledge of all Threat areas (deliberate, accidental, internal, external) Extensive experience of the ISO 27001 Information Security Management framework Understanding of Cyber Essential Plus and similar government security standards Personal Attributes: Passionate about technology and learning. Ability to balance demands and priorities and think clearly under pressure. Attention to detail and a focus on quality. Excellent conflict resolution, communication, and collaboration skills. Logical and analytical approach to solving problems. We can offer (subject to Company s policy): - Agile and safe working environment - Competitive annual leave and sick leaves - Group incentive scheme - Group term life insurance, Workmen s compensation and Group medical insurance coverage - Short and Long-term Global employment opportunities - Global collaboration and knowledge sharing - Digital Innovation and Transformation

Associate Application Security Analyst Gurgaon/Bangalore, India An associate security analyst role within the Global Technology Transversal Application Services (TAS) function, supporting the provision of a robust and consistent security scanning, remediation and guidance service within the TAS Application Operations team The team provides a global, centralized Operations, Governance, Audit, Risk & Security service across Application Delivery What you ll be DOING What will your essential responsibilities include? Assist the Application Operations (Security) team in all security related activities, forums and discussions Perform application scanning across the Application Delivery estate using tools such as SonarQube, Checkmarx, JFrog Xray, CAST Highlight, Defender and Qualys Assist in setting up Jenkins pipeline integration to CI/CD lifecycle Perform Static Application Security Testing (SAST) and Software Composition Analysis (SCA), including analysis of components in applications to detect vulnerabilities and compliance issues Work with Application Delivery teams to communicate the outcome of scanning and analysis, and agree remediation actions including target dates for completion, in alignment with Information Security Policy requirements Assist in Risk Assessments, evaluating the severity of identified vulnerabilities and prioritizing remediation efforts based on potential impact to the organization Contribute to the production of reporting and metrics to both internal and external stakeholders You will report to the Head of Application Operations What you will BRING We re looking for someone who has these abilities and skills: Required Skills and Abilities: Security First mindset Understanding of vulnerability analysis, scanning and remediation processes Understanding of CVEs, CVSS Understanding of security industry compliancy benchmarks and standards i e CIS Understanding of security best practices/standards i e OWASP, NIST Preferable experience with at least 2 coding languages i e Java, Dot Net, C++, Python etc Excellent analytical, critical thinking and organizational skills, ability to multitask and work to deadlines Proficiency in Power BI, MS Work and MS Excel: We maintain and continually develop a number of Power BI Dashboards to support provision of critical data and use Excel to support our data capture and analysis and reporting Desired Skills and Abilities: Excellent communication, interpersonal and relationship building skills (verbal and written) Who WE are AXA XL, the P&C and specialty risk division of AXA, is known for solving complex risks For mid-sized companies, multinationals and even some inspirational individuals we don t just provide re/insurance, we reinvent it How? By combining a comprehensive and efficient capital platform, data-driven insights, leading technology, and the best talent in an agile and inclusive workspace, empowered to deliver top client service across all our lines of business property, casualty, professional, financial lines and specialty With an innovative and flexible approach to risk solutions, we partner with those who move the world forward Learn more at axaxl com What we OFFER Inclusion AXA XL is committed to equal employment opportunity and will consider applicants regardless of gender, sexual orientation, age, ethnicity and origins, marital status, religion, disability, or any other protected characteristic At AXA XL, we know that an inclusive culture and a diverse workforce enable business growth and are critical to our success That s why we have made a strategic commitment to attract, develop, advance and retain the most diverse workforce possible, and create an inclusive culture where everyone can bring their full selves to work and can reach their highest potential It s about helping one another and our business to move forward and succeed Five Business Resource Groups focused on gender, LGBTQ+, ethnicity and origins, disability and inclusion with 20 Chapters around the globe Robust support for Flexible Working Arrangements Enhanced family friendly leave benefits Named to the Diversity Best Practices Index Signatory to the UK Women in Finance Charter Learn more at axaxl com / about-us / inclusion-and-diversity AXA XL is an Equal Opportunity Employer Total Rewards AXA XL s Reward program is designed to take care of what matters most to you, covering the full picture of your health, wellbeing, lifestyle and financial security It provides competitive compensation and personalized, inclusive benefits that evolve as you do We re committed to rewarding your contribution for the long term, so you can be your best self today and look forward to the future with confidence Sustainability At AXA XL, Sustainability is integral to our business strategy In an ever-changing world, AXA XL protects what matters most for our clients and communities We know that sustainability is at the root of a more resilient future Our 2023-26 Sustainability strategy, called Roots of resilience , focuses on protecting natural ecosystems, addressing climate change, and embedding sustainable practices across our operations Our Pillars: Valuing nature: How we impact nature affects how nature impacts us Resilient ecosystems - the foundation of a sustainable planet and society - are essential to our future We re committed to protecting and restoring nature - from mangrove forests to the bees in our backyard - by increasing biodiversity awareness and inspiring clients and colleagues to put nature at the heart of their plans Addressing climate change: The effects of a changing climate are far reaching and significant Unpredictable weather, increasing temperatures, and rising sea levels cause both social inequalities and environmental disruption Were building a net zero strategy, developing insurance products and services, and mobilizing to advance thought leadership and investment in societal-led solutions Integrating ESG: All companies have a role to play in building a more resilient future Incorporating ESG considerations into our internal processes and practices builds resilience from the roots of our business We re training our colleagues, engaging our external partners, and evolving our sustainability governance and reporting AXA Hearts in Action: We have established volunteering and charitable giving programs to help colleagues support causes that matter most to them, known as AXA XL s Hearts in Action programs These include our Matching Gifts program, Volunteering Leave, and our annual volunteering day - the Global Day of Giving For more information, please see axaxl com/sustainability

At SAFE Security , our vision is to be the Champions of a Safer Digital Future and the Catalysts of Change . We believe in empowering individuals and teams with the freedom and responsibility to align their goals, ensuring we all move forward together. We operate with radical transparency, autonomy, and accountability there s no room for brilliant jerks. We embrace a culture-first approach , offering an unlimited vacation policy , a high-trust work environment, and a commitment to continuous learning. For us, Culture is Our Strategy check out our Culture Memo to dive deeper into what makes SAFE unique. We re looking for a Senior Threat Researcher to lead security efforts across our product and production environments and ensure that what we build is built to last and withstand. As part of our Security Operations (SecOps) team, you ll work closely with engineers and product managers, embedding security into every phase of the development lifecycle. What You ll Do: Lead a team of 3 Threat Researchers focused on product and production security Conduct manual security assessments of web/mobile applications and APIs as part of sprint ceremonies (biweekly) Perform static code analysis (SAST) , software composition analysis (SCA) , and secrets scanning using automated tools, followed by deep manual validation Monitor, triage, and prioritize vulnerabilities in the production environment Carry out perimeter security reviews based on emerging threats and attack surface changes Review the security implications of new architecture or deployment changes Monitor and action alerts from the Cloud Native Application Protection Platform (CNAPP) Collaborate cross-functionally with engineering and program teams to embed security best practices Automate repetitive security tasks using scripting (Python, Shell, JS, etc.) What You ll Bring: Bachelor s or Master s degree in Computer Science, IT, or related field Proven experience in Application & Cloud Security, with hands-on exposure to: - Burp Suite Pro - SAST/SCA tools - CNAPP solutions Strong understanding of vulnerability validation and risk prioritization Familiarity with code repositories (e.g., GitHub) and secure code practices Comfortable with scripting for automation and tooling Experience working in Agile Scrum environments Effective communicator with strong documentation and team collaboration skills Previous experience in leading or mentoring a security-focused team Nice to Have (Certifications): OSCP OSWE CRTP If you re passionate about cyber risk, thrive in a fast-paced environment, and want to be part of a team that s redefining security we want to hear from you!

Job Title: DevOps Engineer (3-8+ Years Experience) Location: Bengaluru, India Job Type: Full-time Experience: 3-8+ years Industry: Financial Technology / Software Development About Us: We are a cutting-edge software development company specializing in ultra-low latency trading applications for brokers, proprietary trading firms, and institutional investors. Our solutions are designed for high-performance, real-time trading environments, and we are looking for a DevOps Engineer to enhance our deployment pipelines, infrastructure automation, and system reliability. For more info, please visit: https://tradelab.in/ Responsibilities: 1. CI/CD & Infrastructure Automation Design, implement, and manage CI/CD pipelines for rapid and reliable software releases. Automate deployments using Terraform, Helm, and Kubernetes . Optimize build and release processes to support high-frequency, low-latency trading applications . Good knowledge on Linux/Unix 2. Cloud & On-Prem Infrastructure Management Deploy and manage cloud-based (AWS, GCP) and on-premises infrastructure . Ensure high availability and fault tolerance of critical trading systems. Implement infrastructure as code (IaC) to standardize deployments. 3. Performance Optimization & Monitoring Monitor system performance, network latency, and infrastructure health using tools like Prometheus, Grafana, ELK . Implement automated alerting and anomaly detection for real-time issue resolution. 4. Security & Compliance Implement DevSecOps best practices to ensure secure deployments. Maintain compliance with financial industry regulations (SEBI) . Conduct vulnerability scanning, access control, and log monitoring . 5. Collaboration & Troubleshooting Work closely with development, QA, and trading teams to ensure smooth deployments. Troubleshoot server, network, and application issues under tight SLAs. Required Skills & Qualifications: 5+ years of experience as a DevOps Engineer in a software development or trading environment. Strong expertise in CI/CD tools (Jenkins, GitLab CI/CD, ArgoCD). Proficiency in Cloud Platforms (AWS, GCP,) and Containerization (Docker, Kubernetes). Experience with Infrastructure as Code (IaC) using Terraform , or CloudFormation. Deep understanding of Linux system administration and networking (TCP/IP, DNS, Firewalls). Knowledge of monitoring & logging tools (Prometheus, Grafana, ELK ). Experience in scripting and automation using Python, Bash, or Go. Understanding of security best practices (IAM, firewalls, encryption). Good to have but not Mandatory Skills: Experience with low-latency trading infrastructure and market data feeds . Knowledge of high-frequency trading (HFT) environments . Exposure to FIX protocol, FPGA, and network optimizations . Experience with Redis, Nginx for real-time data processing. Perks & Benefits: Competitive salary & performance bonuses Opportunity to work in the high-frequency trading and fintech industry Flexible work environment with hybrid work options Cutting-edge tech stack and infrastructure Health insurance & wellness programs Continuous learning & certification support

insightsoftware is a global provider of comprehensive solutions for the Office of the CFO. We believe an actionable business strategy begins and ends with accessible financialdata. With solutions across financial planning and analysis (FP&A), accounting, and operations, we transform how teams operate, empowering leaders to make timely and informed decisions. With data at the heart of everything we do, insightsoftware enables automated processes, delivers trusted insights, boosts predictability, and increases productivity. Learn more at insightsoftware.com Work Timings: 2:30-11:30PM Location: Bangalore Summary In this role, you will be responsible for managing the procurement and vendor management teams and their day-to-day operations. The ideal candidate will be a go-getter known for consistently ensuring operational efficiency. The appropriate candidate will be a success driven self-starter, skilled at managing teams and working with cross functional groups to ensure the team objectives are met Primary Responsibilities: Manage the Vendor Management and Procurement team - build, train and manage performance goals Improve and execute purchasing policies and procedures that include vendor base management, purchasing cycle (requisitions, purchase orders), developing the appropriate audit and goods received process. Review Purchase Requisition forms and create Purchase Orders accordingly. Complete New Vendor Setups in compliance with policies Review purchase orders against purchasing guidelines; obtain legal contract review, check against finance budget, review & confirm accounting coding. Approve or reject and issue purchase orders to vendors. Negotiate and complete contracts for goods and services utilizing established contracting policies and procedures Review vendors, assess vendor capabilities and prevent vendor duplication. Additionally ensure clean vendor data, deactivating vendors not being used. Manage and update process controls and ensure team alignment to the controls Collaborate with internal leadership in other functional areas, as it relates to their respective programs, to ensure alignment of activities, objectives, and expectations. Build and develop vendor relationships, managing effective partnerships with key suppliers to encourage superior service, obtain competitive pricing, and obtain quality products and/or services. Identify and implement process improvements throughout the department to increase efficiency and accuracy and decrease high risk areas. Lead and contribute to the Coupa implementation and stabilization efforts. Maintain purchasing documents and assure that they are properly completed with all terms and conditions of purchases being met. Assure department records are maintained and that purchases are followed up or expedited when required. Maintain purchase contracts database. Audit database system for accuracy on a continual basis preventing any vulnerability for fraud or excessive errors. Ensure compliance with local and foreign requirements. Lead low-dollar sourcing efforts within the team Interface with accounting on audit issues and system management to ensure proper controls are in place and operating as planned Qualifications Bachelor s Degree, preferably in accounting. 10 plus years in procurement and vendor management with 3 plus year of team management experience Exceptional work ethic and strong attention to detail Excellent written and verbal communication skills, and the ability to interact effectively Self-starter who can take on responsibility with little oversight Ability to read and comprehend moderately complex instructions, short correspondence, and memos Ability to write correspondence with understanding of audience Ability to effectively present information in one-on-one and small group situations to other managers and employees Exhibits our core values: Results Orientation, Winning Attitude, Be One Team, Disciplined Execution, and Growth Mindset

Step into a leadership role for skilled security teams at one of the worlds largest and most powerful corporations. As a Manager of Cybersecurity Architecture at JPMorgan Chase within the Cybersecurity & Tech Controls team, you lead multiple teams and manage day-to-day implementation activities by identifying and escalating issues and ensuring your team s work adherence to compliance standards, business requirements, and tactical best practices. Job responsibilities Provides guidance and cultivates skills for immediate team of architects on daily tasks and activities Sets overall guidance and expectations for team output, practices, and collaboration Anticipates dependencies with other teams to deliver products and applications in line with business requirements Manages stakeholder relationships and the team s work in accordance with compliance standards, service level agreements, and business requirements Champions the firm s culture of diversity, equity, inclusion, and respect, and prioritizes diverse representation Required qualifications, capabilities, and skills Formal training or certification on security engineering concepts and 5+ years applied experience. In addition, demonstrated coaching and mentoring experience Experience running teams of architects that design and deliver cybersecurity products and solutions Hands on experience of key security concepts in SAST, DAST, SCA, Cloud, and Vulnerability MGMT Proficient in automation Proficient in agile methodologies Experience creating internal software platforms to enable engineering workflows Preferred qualifications, capabilities, and skills Familiarity with modern front-end technologies Relevant experience in designing, developing, and implementing software solutions, constantly seeking to be an expert

We are seeking a highly skilled Lead Azure DevOps Engineer to join our team and drive the end-to-end deployment, scalability, and operationalization of machine learning models in production. You will collaborate closely with data scientists, data engineers, and DevOps teams to ensure seamless CI/CD, reproducibility, monitoring, and governance of ML pipelines Key Responsibilities Design, implement, and maintain CI/CD pipelines for deploying and monitoring microservices efficiently. Manage infrastructure as code using Terraform for repeatable and scalable provisioning. Deploy and optimize containerized applications using Docker and Azure services (Container Apps, Container Registry, Key Vault, Service Bus, Blob Storage). Apply best practices for securing Docker images, including vulnerability scanning, reducing image size, and optimizing build efficiency. Implement and maintain Azure Monitor for logging, monitoring, and alerting to ensure system reliability. Ensure security best practices across cloud environments, including secrets management, access control, and compliance. (Nice to have) Design and manage multi-client architectures within shared pipelines and storage accounts in Azure Blob Storage 6+ years of experience in DevOps or MLOps with a strong focus on production-grade ML solutions. Strong expertise in Azure, particularly with CI/CD, container orchestration, and cloud security. Proficiency in Terraform for infrastructu

You will help us run one of the largest and most sophisticated cloud-scale, big data, and microservices platforms in the world. You will be responsible to maintain and provision the base infrastructure that runs Splunk Observability Cloud , including cloud compute platforms, managed services, Kubernetes, and required tooling. You will be a key part of the team that strives to offer a fully automated and self-serve, secure, performant, compliant, and cost-efficient Platform-as-a-Service that follows cloud-native best practices and empowers product teams to easily and quickly deploy and operate workloads. You are passionate about automation, infrastructure-as-code, microservices, and getting rid of tedious, manual tasks. You will: Design new services, tools, and monitoring to be implemented by the entire team. Analyze the tradeoffs of the proposed design and make recommendations based on these tradeoffs. Mentor new engineers to achieve more than they thought possible. You enjoy making other teams successful and are fulfilled through the success of others. You will work on infrastructure projects, including: Adopting new cloud-native frameworks and services Automating cloud provider infrastructure via Terraform, Kubernetes, and Helm Developing code for tools and automation to reduce manual tasks and reduce human error Establishing and documenting run books and guidelines for using the multi-cloud infrastructure and microservices platform. Improve the resiliency of multi-cloud microservices platform Networking, routing, and load balancing Security vulnerability remediation and patching automation Automating deployment of our services in new provider zones/regions Designing and productionizing access tiers to provide appropriate permissions across roles Qualifications Must-Have: 6+ years of solid hands-on cloud infrastructure experience on public cloud platforms specifically AWS or GCP. 3+ years of strong hands-on experience deploying, managing, and monitoring large-scale Kubernetes clusters in the public cloud Experience with Infrastructure-as-Code using Terraform and/or Helm. Experience with infrastructure automation and scripting using Python and/or bash scripting. Knowledge of microservices fundamentals including Service Mesh using Istio, service discovery, deployment strategies, monitoring, scheduling, and load balancing Excellent problem-solving, triaging, and debugging skills in large-scale distributed systems Preferred: AWS Solutions Architect certification preferred. CKA and HashiCorp-certified Terraform Associate certifications preferred Experience with Infrastructure-as-Code using Terraform, CloudFormation, Google Deployment Manager, Packer, Pulumi, ARM, etc. Experience with developing infrastructure or platform services using GoLang or Python. Experience with CI/CD frameworks and Pipeline-as-Code such as Jenkins, Spinnaker, Gitlab, Argo, Artifactory, etc. Exposure to monitoring tools such as Splunk, Prometheus, Grafana, ELK stack, etc. in order to build observability for large-scale microservice deployments. Proven skills to effectively work across teams and functions to influence the design, operations, and deployment of highly available software.

The Company PayPal has been revolutionizing commerce globally for more than 25 years. Creating innovative experiences that make moving money, selling, and shopping simple, personalized, and secure, PayPal empowers consumers and businesses in approximately 200 markets to join and thrive in the global economy. We operate a global, two-sided network at scale that connects hundreds of millions of merchants and consumers. We help merchants and consumers connect, transact, and complete payments, whether they are online or in person. PayPal is more than a connection to third-party payment networks. We provide proprietary payment solutions accepted by merchants that enable the completion of payments on our platform on behalf of our customers. Our beliefs are the foundation for how we conduct business every day. We live each day guided by our core values of Inclusion, Innovation, Collaboration, and Wellness. Together, our values ensure that we work together as one global team with our customers at the center of everything we do - and they push us to ensure we take care of ourselves, each other, and our communities. Job Summary: What you need to know about the role: The Container Platform Team (Genesis Team) in APAC plays a critical role in engineering and operations of manifest creation & promotion, application container deployment orchestration, deployment experience, large scale vulnerability through autonomous patching and many such critical Developer facing functionalities that are essential for uninterrupted services, productivity and efficiency for the global Developer community in PayPal. There are multiple high priority initiatives and outcomes directly aligned to our One PayPal Platform Enterprise priority like technology transformation from Mesos to Kubernetes for better reliability and security compliance for PayPal. Meet our team: Team consists of around 10-12 engineers and at org level, we are around 50-60 people who manages entire cluster for PayPal Team manages thousands of application deployment, this role becomes very critical to understand domain in depth. Since the platform is in a Hybrid model, requires to be proficient in Cloud technologies & having knowledge in Kubernetes is a plus. Job Description: Your way to impact: The Container Platform Team plays a critical role in developing a proprietary deployment product which handles the deployment of thousands of container application along with many such critical Developer facing functionalities that are essential for high availability and reliable services which greatly helps in the productivity and efficiency for the global Developer community in PayPal. There are multiple high priority initiatives and outcomes directly aligned to our One PayPal Platform Enterprise priority like technology transformation from Mesos to Kubernetes for better reliability and security compliance for PayPal. There are multiple high priority initiatives and outcomes directly aligned to our One PayPal Platform Enterprise priority like technology transformation from Mesos to Kubernetes for better reliability and security compliance for PayPal. Your day to day: 2+ years of hands on experience in GoLang development Designs, develops, troubleshoots and debugs software programs for enhancements to existing and new applications using GoLang programs. Using current programming language and technologies, uses code to modify existing software applications to add new functions, adapt to new hardware, improve performance or enhance usability. May participate in all aspects from detailed programming to high-level system design. May analyze requirements, tests and integrates application components and ensure that system improvements are successfully implemented. What do you need to bring: Exhibit great leadership skills Put People First, Work Customer Back, Win Together **We know the confidence gap and imposter syndrome can get in the way of meeting spectacular candidates. Please dont hesitate to apply. Preferred Qualification: Subsidiary: PayPal Travel Percent: 0 For the majority of employees, PayPals balanced hybrid work model offers 3 days in the office for effective in-person collaboration and 2 days at your choice of either the PayPal office or your home workspace, ensuring that you equally have the benefits and conveniences of both locations. Our Benefits: We have great benefits including a flexible work environment, employee shares options, health and life insurance and more. To learn more about our benefits please visit https://www.paypalbenefits.com . Who We Are: Click Here to learn more about our culture and community. Commitment to Diversity and Inclusion PayPal provides equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, pregnancy, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state, or local law. In addition, PayPal will provide reasonable accommodations for qualified individuals with disabilities. If you are unable to submit an application because of incompatible assistive technology or a disability, please contact us at talentaccommodations@paypal.com . Belonging at PayPal: Our employees are central to advancing our mission, and we strive to create an environment where everyone can do their best work with a sense of purpose and belonging. Belonging at PayPal means creating a workplace with a sense of acceptance and security where all employees feel included and valued. We are proud to have a diverse workforce reflective of the merchants, consumers, and communities that we serve, and we continue to take tangible actions to cultivate inclusivity and belonging at PayPal. Any general requests for consideration of your skills, please Join our Talent Community . We know the confidence gap and imposter syndrome can get in the way of meeting spectacular candidates. Please don t hesitate to apply.

As a Security Engineer II at JPMorgan Chase within the Cyber Security and Technology Controls, you are part of an agile team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. As an emerging member of the security engineering team, you execute basic software solutions through the design, development, and troubleshooting of multiple components within a technical area, while gaining skills and experience to grow within your role. Job responsibilities Executes software solutions, design, development, and technical troubleshooting with ability to think beyond routine or conventional approaches to build solutions or break down technical problems Creates secure and high-quality production code and maintains algorithms that run synchronously with appropriate systems Produces architecture and design artifacts for complex applications while being accountable for ensuring design constraints are met by software code development Gathers, analyzes, synthesizes, and develops visualizations and reporting from large, diverse data sets in service of continuous improvement of software applications and systems Proactively identifies hidden problems and patterns in data and uses these insights to drive improvements to coding hygiene and system architecture Contributes to software engineering communities of practice and events that explore new and emerging technologies Adds to team culture of diversity, equity, inclusion, and respect Required qualifications, capabilities, and skills Formal training or certification on security engineering concepts and 2+ years applied experience Hands on experience in React, Java\J2EE, Microservices, Spring, Database knowledge, Spring Data JPA, CI\CD, Designing features, Production issue debugging and fixing Proficient in developing security engineering solutions Experience in Software Development Life Cycle Exposure to agile methodologies such as CI/CD, application resiliency, and security Knowledge of information and network security, IT risk management, and architectural concepts and patterns Proficient in specialized tools (eg, vulnerability scanner) used to analyze incident data Preferred qualifications, capabilities, and skills Familiar with Camunda 8 , Database modelling, Performance tuning & Cloud BS/BA degree or equivalent experience

As part of this global team, you'll be involved in projects and services including bug bounty programs where you can: Combine technical expertise with communication skills to effectively manage time sensitive and confidential product vulnerability reports. Advise and work closely with researchers and the engineering teams to drive the timely delivery of security patches. Work closely with stakeholders in ensuring an aligned delivery of security advisories to customers. WHAT YOU BRING: 6 to 10 years of total experience with 4+ years of relevant experience in Security domain. Bachelor or masters degree in computer science, information systems, or a related engineering discipline with enthusiasm for cybersecurity and Artificial Intelligence(AI). Fundamental understanding of AI concepts, including machine learning, deep learning, natural language processing, and data analytics. Awareness of common AI algorithms and models, their applications, and limitations. Deep understanding on AI relevant security vulnerabilities and ability to interpret using right metrics. Stay current with the latest advancements in AI, ML, and cybersecurity. Conduct continuous research on emerging threats and vulnerabilities related to AI to improve knowledge base and support stakeholders. Provide technical guidance and training on AI-related security initiatives. Hands-on experience in using tools like Burp Suite is preferred Industry specific security related certifications (eg, Security+, CEH, CISSP, OSCP, CISA, CCSK) preferred. Any relevant AI/ML certifications preferred. Excellent problem-solving and analytical skills. Strong communication and teamwork abilities with Skills to communicate technical concepts and AI insights to non-technical stakeholders. Ability to work in a fast-paced, dynamic environment and manage multiple tasks simultaneously.

Good hands on towards design, development maintenance of secure software solutions for Linux-based systems on embedded and automotive systems also security controls e.g (Secure Boot, secure unlock, secure reprogramming, message authentication) Good understanding on configuration of AppArmor profiles to enforce security policies and mitigate risks in Linux environments. Hands on towards development and integration of Trusted Execution Environment (TEE) solutions Good knowledge of development and implementation in Cryptography and Key Management. Experience in working with Client Product teams and collaboration with hardware and software team members. Incorporate secure coding standards and practices in DevSecOps, conduct security assessment and code reviews, enforce Static Application Security Testing (SAST), Open Source SW vulnerability scanning and license analysis to ensure SW security. Collect, generate, maintain and update SW bill of materials and contribute to GIT repositories Participate in PI planning, provide effort estimation to implement security controls and contribute to the Feature Roll Out Plan (FROP)

Job Summary What you need to know about the role The Container Platform Team (Genesis Team) in APAC plays a critical role in engineering and operations of manifest creation promotion, application container deployment orchestration, deployment experience, large scale vulnerability through autonomous patching and many such critical Developer facing functionalities that are essential for uninterrupted services, productivity and efficiency for the global Developer community in PayPal. There are multiple high priority initiatives and outcomes directly aligned to our One PayPal Platform Enterprise priority like technology transformation from Mesos to Kubernetes for better reliability and security compliance for PayPal. Meet our team Team consists of around 10-12 engineers and at org level, we are around 50-60 people who manages entire cluster for PayPal Team manages thousands of application deployment, this role becomes very critical to understand domain in depth. Since the platform is in a Hybrid model, requires to be proficient in Cloud technologies having knowledge in Kubernetes is a plus. Job Description Your way to impact The Container Platform Team plays a critical role in developing a proprietary deployment product which handles the deployment of thousands of container application along with many such critical Developer facing functionalities that are essential for high availability and reliable services which greatly helps in the productivity and efficiency for the global Developer community in PayPal. There are multiple high priority initiatives and outcomes directly aligned to our One PayPal Platform Enterprise priority like technology transformation from Mesos to Kubernetes for better reliability and security compliance for PayPal. There are multiple high priority initiatives and outcomes directly aligned to our One PayPal Platform Enterprise priority like technology transformation from Mesos to Kubernetes for better reliability and security compliance for PayPal. Your day to day 2+ years of hands on experience in GoLang development Designs, develops, troubleshoots and debugs software programs for enhancements to existing and new applications using GoLang programs. Using current programming language and technologies, uses code to modify existing software applications to add new functions, adapt to new hardware, improve performance or enhance usability. May participate in all aspects from detailed programming to high-level system design. May analyze requirements, tests and integrates application components and ensure that system improvements are successfully implemented. What do you need to bring Exhibit great leadership skills Put People First, Work Customer Back, Win Together **We know the confidence gap and imposter syndrome can get in the way of meeting spectacular candidates. Please dont hesitate to apply. Preferred Qualification Subsidiary PayPal Travel Percent 0 For the majority of employees, PayPals balanced hybrid work model offers 3 days in the office for effective in-person collaboration and 2 days at your choice of either the PayPal office or your home workspace, ensuring that you equally have the benefits and conveniences of both locations. Our Benefits We have great benefits including a flexible work environment, employee shares options, health and life insurance and more. To learn more about our benefits please visit https//www.paypalbenefits.com . Who We Are Click Here to learn more about our culture and community. Commitment to Diversity and Inclusion PayPal provides equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, pregnancy, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state, or local law. In addition, PayPal will provide reasonable accommodations for qualified individuals with disabilities. If you are unable to submit an application because of incompatible assistive technology or a disability, please contact us at talentaccommodations@paypal.com . Belonging at PayPal Our employees are central to advancing our mission, and we strive to create an environment where everyone can do their best work with a sense of purpose and belonging. Belonging at PayPal means creating a workplace with a sense of acceptance and security where all employees feel included and valued. We are proud to have a diverse workforce reflective of the merchants, consumers, and communities that we serve, and we continue to take tangible actions to cultivate inclusivity and belonging at PayPal. Any general requests for consideration of your skills, please Join our Talent Community . We know the confidence gap and imposter syndrome can get in the way of meeting spectacular candidates. Please don t hesitate to apply.

Some careers shine brighter than others. If you re looking for a career that will help you stand out, join HSBC and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further. HSBC is one of the largest banking and financial services organisations in the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realise their ambitions. We are currently seeking an experienced professional to join our team in the role of Senior Software Engineer. Work Location: Pune In this role, you will: Understand the release cycles within GPE and aligned testing associated with it. Release deployment on various environments. Automation script creation for the stable functioning of the environments like healthchecks / monitoring. Troubleshoot Incidents drive resolution where necessary; aiding support to SME s from application teams to facilitate resolution. Drive root cause analysis with involved teams. Report updates for ongoing issues to stakeholder. Critical vulnerability fixing, OS/DB/MQ patching, certificate renewals. Build Automation pipelines for requirements Requirements To be successful in this role, you should meet the following requirements: Must have strong UNIX and SQL experience. Basic knowledge on middleware products like WAS/MQ. Experience of DevOps tools like Jenkins, GITHUB Experience of Control-M, Connect Direct (C:D). Experience of deployment / change pipelines like CI / CD Strong analytical skills supported by problem solving skills attitude The successful candidate will also meet the following requirements: Basic understanding of the Payment flow and banking processes. Strong communication skills (verbal, written, and presentation of complex information and data). Stakeholder Management skills. Knowledge Automation tools like Tosca and UFT.

Take on a crucial role where youll be a key part of a high-performing team delivering secure software solutions. Make a real impact as you help shape the future of software security at one of the worlds largest and most influential companies. As a Lead Security Engineer at JPMorgan Chase within the Cybersecurity Tech Controls team, you are an integral part of team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. As a core technical contributor, you are responsible for carrying out critical technology solutions with tamper-proof, audit defensible methods across multiple technical areas within various business functions. Job responsibilities Facilitates security requirements clarification for multiple networks to enable multi-level security to satisfy organizational needs Executes security solutions design, development, and technical troubleshooting with the ability to apply knowledge of existing security solutions to satisfy security requirements for internal clients (e. g. , product, platform, application owners) Creates secure and high-quality production code and maintains algorithms that run synchronously with appropriate systems Applies specialized tools (e. g. , vulnerability scanner) to analyze and correlate incident data to identify, interpret, and summarize the probability and impact of threats when determining specific vulnerabilities Leads delivery of continuity-related awareness, training, educational activities, and exercises Adds to team culture of diversity, equity, inclusion, and respect Required qualifications, capabilities, and skills Formal training or certification on security engineering concepts and 5+ years applied experience Experience in developing security engineering solutions, including the design and implementation of cloud security solutions on AWS Proficiency in software engineering with code development using Python and Terraform/Cloud Formation Infra as Code concepts. Experience in development, management, configuration, testing, and integration tasks related to Cloud Network Security platforms. Proficient in Public/Private Cloud Cybersecurity for mission-critical settings, encompassing complex data analysis, enhancement of technical documentation. Expertise in Cybersecurity organization practices, operations, risk management processes, principles, architectural requirements, engineering, and threats and vulnerabilities. Preferred qualifications, capabilities, and skills Familiar of core concepts for Public/Private/Hybrid Clouds (Networking, Policy placement, IAM, Network/Application Firewall) Familiarity with modern front-end technologies Effectively communicating with senior business leaders

Join a team where you can play a crucial role in shaping the future of a world-renowned company and make a direct and meaningful impact in a space designed for top performers. As a Senior Lead Security Engineer at JPMorgan Chase within the Cybersecurity Tech Controls team , you are an integral part of an agile team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. Drive significant business impact through your capabilities and contributions and apply deep technical expertise and problem-solving methodologies to tackle a diverse array of cybersecurity challenges that span multiple technology domains. Job responsibilities Facilitates security requirements clarification for multiple networks to enable multi-level security to satisfy organizational needs Executes security solutions design, development, and technical troubleshooting with the ability to apply knowledge of existing security solutions to satisfy security requirements for internal clients (e. g. , product, platform, application owners) Creates secure and high-quality production code and maintains algorithms that run synchronously with appropriate systems Applies specialized tools (e. g. , vulnerability scanner) to analyze and correlate incident data to identify, interpret, and summarize the probability and impact of threats when determining specific vulnerabilities Leads delivery of continuity-related awareness, training, educational activities, and exercises Adds to team culture of diversity, equity, inclusion, and respect Required qualifications, capabilities, and skills Formal training or certification on security engineering concepts and 5+ years applied experience Experience in developing security engineering solutions, including the design and implementation of cloud security solutions on AWS Proficiency in software engineering with code development using Python and Terraform/Cloud Formation Infra as Code concepts. Experience in development, management, configuration, testing, and integration tasks related to Cloud Network Security platforms. Proficient in Public/Private Cloud Cybersecurity for mission-critical settings, encompassing complex data analysis, enhancement of technical documentation. Expertise in Cybersecurity organization practices, operations, risk management processes, principles, architectural requirements, engineering, and threats and vulnerabilities. Preferred qualifications, capabilities, and skills Familiar of core concepts for Public/Private/Hybrid Clouds (Networking, Policy placement, IAM, Network/Application Firewall) Familiarity with modern front-end technologies

Communication Good Email Good Experience Range 3-5 Years Required Skills Set Perform SoD and EoD of NSDL/CDSL/RTGS/SFMS/CCIL/Cash & other banking applications.., Process batch jobs including uploads and downloads required to be performed on various applications as a process or on need basis based on the SOP, SOD/EOD activities based on the SOP provided and as per cut off time on daily basis except when informed by regulator / application teams on account of national holidays & Sundays., Perform Backup support as per SOP, Schedule processes including the processes that need to be executed on a daily, monthly and yearly basis on applications and its databases, Execute the monthly and yearly processes as per schedule , Hand and Feet Support for the devices hosted in PDC, Manage File Transfer jobs- Schedule the given Scripts for file transfer and monitor, Backup Media management - Hands and feet support for . Hardware Networking Course, Computer course, MCSE, CCNA) Technical Question Can you describe your experience with data center infrastructure components such as servers, storage systems, networking equipment, and cooling systems? What monitoring tools have you used to oversee data center operations? How do you use these tools to ensure up-time and performance? How do you manage and maintain power distribution units (PDUs) and uninterruptible power supplies (UPS) in a data center? What are the key considerations when planning and implementing cable management in a data center? Can you explain the importance of environmental controls (temperature, humidity) in a data center, and how do you ensure optimal conditions? Can you describe your experience with data center infrastructure components such as servers, storage systems, networking equipment, and cooling systems? What monitoring tools have you used to oversee data center operations? How do you use these tools to ensure up-time and performance? How do you manage and maintain power distribution units (PDUs) and uninterruptible power supplies (UPS) in a data center? What are the key considerations when planning and implementing cable management in a data center? Can you explain the importance of environmental controls (temperature, humidity) in a data center, and how do you ensure optimal conditions? How do you prioritize and manage tasks in a high-pressure data center environment? Can you describe your approach to managing change requests and implementing updates in a live data center? What procedures do you follow for routine maintenance and inspections of data center equipment? How do you handle capacity planning and scalability in a data center? What steps do you take to ensure compliance with operational standards and best practices in a data center? Describe a critical incident you managed in a data center. What was the issue, and how did you resolve it? How do you prepare for and respond to power outages or cooling system failures in a data center? What protocols do you follow in the event of a fire alarm or other emergency situation in a data center? Can you explain your approach to disaster recovery planning and testing? How do you conduct root cause analysis for data center incidents, and what steps do you take to prevent recurrence? How do you communicate operational status and issues to stakeholders and management? Describe a time when you collaborated effectively with other teams (IT, facilities, security) to resolve a data center issue. How do you handle conflicts or disagreements within your team or with other departments? What strategies do you use to ensure effective communication and coordination during maintenance or upgrades in a data center? A critical server in the data center is experiencing performance issues. Walk me through your troubleshooting approach. You receive a notice of an impending power outage due to external factors. What steps do you take to ensure data center up time and safety? A new equipment upgrade needs to be deployed urgently in the data center. How do you plan and execute this without disrupting ongoing operations? You notice an unusual spike in temperature readings from one section of the data center. How do you investigate and address this issue? During a routine inspection, you discover a security vulnerability in the data centers physical access controls. How do you respond and mitigate this issue?

About the Company: At AT&T, we re connecting the world through the latest tech, top-of-the-line communications and the best in entertainment. Our groundbreaking digital solutions provide intuitive and integrated experiences for millions of customers across online, retail and care channels. Join our mission to deliver compelling communication and entertainment experiences to customers around the world as we continue to evolve as a technology-powered, human-centered organization. As part of our team, you ll transform the way we deliver a seamless customer experience with digital at the center of all you do. In our world, digital is much larger than just an eCommerce channel, we are transforming all channels to digitally perform as one team to create a better customer experience. As we move into 2024, the digital transformation will revolutionize the digital space and you can build a career that will propel your future. About the Job: This position is a Senior Specialist Cyber Security for performing Application Security Testing in Cyber Security Organization. This profile will be passionate in preventing risk by identifying vulnerabilities in the applications of the enterprise by configuring scan settings for effective vulnerability enumeration, Identify and document findings, approve false positives and define/document approved mitigations used by AppSec Testers. Experience Level: 8+ years Location: Hyderabad or Bengaluru Roles and Responsibilities: Perform SAST/SCA/DAST scans using industry vulnerability scanner SAST/SCA Veracode, using supplied compiled binary, configure scan platform to correct scan for both static code CWE s as well as SCA derived CVEs. Work will include coordination with app owner to ensure all branches of code are included in compiled binary file. DAST Work begins with crawling the target application to identify existing directory and file structure. Once identified, execute DAST scan using HCL product to identify dynamic issue only visible during code execution. During testing process, tester MUST ensure application is not degraded and/or taken out of service due to scanning activities Tester must ensure results from scanner are present in VM reporting platforms and visible to approved app users Perform manual validation and false-positive analysis on the automated scan results. Provide remediation support will analyze the top-rated vulnerabilities along with provide support to application teams on remediation strategies from identified risks. Execute scan retest by performing revalidation tests of previously identified critical and high severity vulnerabilities as requested by the client application teams. Primary / Mandatory skills: Overall 8+ years of IT experience 7+ years of application security Experience 5+ years of Application Security testing Experience Bachelors degree required. Deep familiarity with the OWASP Top 10 and other security concerns for web applications Deep Understanding of OWASP Application Security Verification Standards (ASVS) Deep understanding of SAST, DAST, SCA Scanning practices Experience in scanning leveraging Veracode, Appscan.or other enterprise tools. Understand how to interpret and assess CVEs (Common Vulnerability and Exposures) and CWEs (Common Weakness Enumeration) as found by scanning tools Understanding of SAST, DAST tools and dependency scanning tools Experience working/integrating with secret management systems Advanced knowledge of front-end and back-end web application development in at least one technology stack (.NET, Java, PHP, Ruby/Rails, Angular, Node.js, etc.) Track record of staying current with trends, techniques, tools, and processes that drive improvement of security posture of applications Strong documentation skills Excellent verbal and written communication skills, with proven technical writing abilities (English language proficiency required) Team-oriented thinking with demonstrated ability to produce high-quality work as part of a fast-paced, dynamic team Proven ability to communicate, collaborate, and present effectively with teams and individuals in different disciplines or areas Technical Skills: SAST, DAST, SCA Additional information (if any): Flexible to provide coverage in US morning hours upon need. Certification : CSSLP or equivalent #Cybersecurity Location: IND:KA:Banglaore / Intl Tech Park, Whitefield Rd - Storage: Innovator Building, Itpb, Whitefield Rd Job ID R-69182 Date posted 06/06/2025

IT Industry experience in DevOps, SW Development: 10 - 15 years Technical skills 5-7 years of experience in Azure DevOps, AWS DevOps Have hands on experience in DevOps pipeline, Triggers 3-4 years of experience in Solutioning with DevOpsTools Ansible, Terraform, TerraTest Scripts using Yaml Security scan and Testing SonarQube and Integration Security vulnerability tools and assessment Optional skills: Puppet, Chef Successful implementation of DevOps Environment and tool chain 4 - 6 years in Azure and AWS environment Experience in DevOps Automation scripts Knowledge of Cloud Infrastructure (Azure /AWS) and IaaC Team Management and Development Managed a team 7 - 10 DevOps engineers for large projects SME Capability building, Training Plan development and mentor DevOps engineers Collaboration skills and working across multiple project teams Conduct interviews for the Practice and do the hiring on need basis Business development, Artefacts and Case studies Ability to prepare case studies, Practice Plan and implementation Proposals: Experience in working with Sales Team, Pre-sales Presentations and interactions with customers Campaigns: Working with Marketing team

BE, B.Tech, MSc (Information Technology), CISA, CISSP, CEH General Description: Candidates must possess hands-on audit experience in IT general controls. As Information Technology Auditor, you will examine, evaluate and verify policies, procedures and internal controls around information systems and networks. Exposure to ISO27001, SSAE16, Vulnerability Assessment and Penetration Testing, Security Technologies is an added advantage. Responsibilities: Timely completion of information technology and information security audits in a manner that is consistent with the professional standards set by Qadit. Adequately analyze and document all information systems and related controls, and develop an appropriate audit program to test the controls identified. Evaluate the adequacy of security and processing controls as they relate to each audit, and the effectiveness of general IT controls in effect in the IT environment. Review the means of safeguarding information assets and monitor ongoing performance metrics established by the IT and Security Departments of clients. Prepare audit work papers according to established corporate guidelines and industry standards, and as applicable create audit reports. Maintain and enhance audit work paper templates. Maintain active communication with clients to manage expectations, ensure satisfaction, make sure deadlines are met, and lead change efforts effectively. Team with partners and senior managers on proposals and business development calls. 1. Conducting vulnerability assessments & penetration testing analyzing related reports. 2. Running VA PT tools 4. IT general computer controls audits Position will be based in Chennai, but will need to travel extensively both within and outside India. Role Summary Support IT audits, risk assessments, and compliance tasks in the IT GRC domain. B.E./B.Tech (CS/IT/ECE), B.Sc/M.Sc (IT/CS), or B.Com/BBA with interest in IT GRC audit. Key Skills Basic understanding of ISO 27001 and other security frameworks including SOC 2, GDPR and HIPAA, audits, MS Office; good communication and analytical skills. Pursuing CISA, ISO 27001 Foundation, or DISA is a plus. Not mandatory; freshers are welcome. Hands-on exposure to cybersecurity, compliance, and IS audit under expert guidance. Lead and execute IS audits, risk assessments, and compliance reviews within the GRC framework. Graduate in B.E./B.Tech (CS/IT), B.Sc/M.Sc (IT/CS), or equivalent. Upto 2 years in information security, IT audit, or risk/compliance roles. Strong knowledge of ISO 27001 and other security frameworks including SOC 2, GDPR and HIPAA, ITGC, regulatory frameworks (RBI, SEBI), audit tools, and MS Office. CISA, DISA, ISO 27001 Lead Auditor (preferred). Opportunity to lead audits, enhance GRC maturity, and work with senior stakeholders in a dynamic environment.

In this role, you will be responsible for managing the procurement and vendor management teams and their day-to-day operations. The ideal candidate will be a go-getter known for consistently ensuring operational efficiency. The appropriate candidate will be a success driven self-starter, skilled at managing teams and working with cross functional groups to ensure the team objectives are met Primary Responsibilities: Manage the Vendor Management and Procurement team - build, train and manage performance goals Improve and execute purchasing policies and procedures that include vendor base management, purchasing cycle (requisitions, purchase orders), developing the appropriate audit and goods received process. Review Purchase Requisition forms and create Purchase Orders accordingly. Complete New Vendor Setups in compliance with policies Review purchase orders against purchasing guidelines; obtain legal contract review, check against finance budget, review & confirm accounting coding. Approve or reject and issue purchase orders to vendors. Negotiate and complete contracts for goods and services utilizing established contracting policies and procedures Review vendors, assess vendor capabilities and prevent vendor duplication. Additionally ensure clean vendor data, deactivating vendors not being used. Manage and update process controls and ensure team alignment to the controls Collaborate with internal leadership in other functional areas, as it relates to their respective programs, to ensure alignment of activities, objectives, and expectations. Build and develop vendor relationships, managing effective partnerships with key suppliers to encourage superior service, obtain competitive pricing, and obtain quality products and/or services. Identify and implement process improvements throughout the department to increase efficiency and accuracy and decrease high risk areas. Lead and contribute to the Coupa implementation and stabilization efforts. Maintain purchasing documents and assure that they are properly completed with all terms and conditions of purchases being met. Assure department records are maintained and that purchases are followe'd up or expedited when required. Maintain purchase contracts database. Audit database system for accuracy on a continual basis preventing any vulnerability for fraud or excessive errors. Ensure compliance with local and foreign requirements. Lead low-dollar sourcing efforts within the team Interface with accounting on audit issues and system management to ensure proper controls are in place and operating as planned Qualifications Bachelor s Degree, preferably in accounting. 10 plus years in procurement and vendor management with 3 plus year of team management experience Exceptional work ethic and strong attention to detail Excellent written and verbal communication skills, and the ability to interact effectively Self-starter who can take on responsibility with little oversight Ability to read and comprehend moderately complex instructions, short correspondence, and memos Ability to write correspondence with understanding of audience Ability to effectively present information in one-on-one and small group situations to other managers and employees Exhibits our core values: Results Orientation, Winning Attitude, Be One Team, Disciplined Execution, and Growth Mindset

ECMS Requirement Format Number of Openings 1 ECMS ID in sourcing stage 528445 Assignment Duration 6 months -1 year Total Yrs. of Experience 10+ Relevant Yrs. of experience 6+ Detailed JD (Roles and Responsibilities) Certified ServiceNow Developer Need to have extensive development experience and be an SME in the ServiceNow Vulnerability Response/Configuration Compliance modules specifically Must be able to build custom ServiceNow integrations from scratch Must be able to configure new store integrations and maintain existing integrations Deep experience across complex ServiceNow integrations Perform code changes and customizations for enhancement requests within ServiceNow Vulnerability Response/Configuration Compliance Mandatory skills ServiceNow Developer Desired/ Secondary skills NA Domain Any Max Vendor Rate in Per Day (Currency in relevance to work location) INR 12000 Delivery Anchor for tracking the sourcing statistics, technical evaluation, interviews, and feedback etc. Rinky Biswas Work Location given in ECMS ID Any WFO/WFH/Hybrid WFO Hybrid WFO BG Check (Before OR After onboarding) Before Is there any working in shifts from standard Daylight (to avoid confusions post onboarding) YES/ NO 2pm-11pm(IST)(India 2 nd Shift)