195 Vulnerability Jobs - Page 6

Calix is hiring Security Researcher to join their Threat Intelligence team in Bangalore. The successful candidates will lead efforts in identifying, analyzing, and mitigating network threats. Develop and implement advanced threat detection and prevention strategies. Additionally, they will enhance threat detection capabilities through various research activities. Key Responsibilities: Write, test, and optimize IPS signatures using the companys proprietary signature language and detection engine to identify network-based intrusions and malicious activities. Learn and master the proprietary signature syntax, functions, and capabilities to develop effective detection rules across various protocols and attack vectors. Analyze network traffic patterns and packet captures to create custom signatures tailored to the proprietary IPS platforms unique detection capabilities. Collaborate with engineering teams to understand platform-specific limitations and optimize signature performance within the proprietary engine environment. Support and contribute to internal automation processes designed to streamline threat detection activities and signature deployment workflows. Work closely with senior researchers and team leads to learn advanced detection methodologies and complex signature development techniques. Capture, analyze, and process indicators of compromise from diverse third-party threat intelligence sources and internal security tools. Monitor security advisories and vulnerability disclosures to identify new detection opportunities within the proprietary platform framework. Document research findings and contribute to knowledge sharing initiatives that benefit the broader security research team. Gain hands-on experience with complex detection capabilities by shadowing senior team members during high-priority investigations and research projects. Develop expertise in the proprietary platform through guided learning sessions and practical application under senior supervision. Qualifications: Bachelors/Masters degree in Computer Science, Electrical Engineering, Cyber Security or a related field. 1-3 years of experience in cybersecurity, network security, or threat detection roles. Understanding of core network concepts including TCP/IP, protocols, routing, and traffic analysis. Familiarity with network security tools, IDS/IPS, and malware prevention/monitoring solutions. Working experience on signature writing and threat detection technologies. Working Knowledge of both Windows and Linux based operating systems. Basic scripting capabilities in Python or similar languages for automation and data processing tasks. Must thrive within a team environment as well as on an individual basis. Natural curiosity and willingness to learn in a fast-paced, ever-changing threat landscape. A passion for cybersecurity, continuous improvement, and staying current on threat trend.

Job Title: Specialist I - Information Security | Vulnerability Management - Subject Matter Expert (SME) Location:, Hyderabad , Chennai , Bangalore , Trivandrum , Cochin Experience: 7-9 years Company: CyberProof, A UST Company About CyberProof CyberProof is a leading cyber security services and platform company dedicated to helping customers react faster and smarter to security threats. We enable enterprises to create and maintain secure digital ecosystems through automation, threat detection, and rapid incident response. As part of the UST family, we are trusted by some of the world s largest enterprises. Our Security Operations Group is composed of a global team of highly skilled cyber security professionals, with our tier 3-4 expertise rooted in Israeli Intelligence. Job Summary: We are seeking a highly experienced and knowledgeable Subject Matter Expert (SME) to join our Vulnerability Management team. The ideal candidate will possess deep expertise in cybersecurity, particularly in vulnerability management processes, tools, and best practices. This role demands strong analytical skills, excellent communication, and a proactive approach to security risk mitigation. Key Responsibilities: Lead and manage the vulnerability management program end-to-end. Conduct vulnerability assessments and penetration testing. Use tools like Qualys VMDR, MS Defender, and CrowdStrike to detect, analyze, and report vulnerabilities. Create dashboards and detailed reports with actionable recommendations. Prioritize vulnerabilities based on business risk and exploitability. Collaborate with technical teams for remediation planning and execution. Stay current with emerging threats, trends, and technologies. Deliver training on vulnerability management processes and tools. Support incident response efforts with expertise in vulnerability exploitation and mitigation. Ensure compliance with security frameworks and regulatory standards.

Role: Monitoring and managing all the audit and administrative procedures under cyber security for working and compliance. Responsibilities: Project Coordination: Manage and coordinate cybersecurity projects, including resource allocation, timeline management, and budget control. Collaborate with cross-functional teams (SMC,ENGG, IT, Supply Chain, Homologation, Suppliers etc.) to ensure project alignment and successful execution. Oversee the implementation of cybersecurity measures and controls. Control and liasioning with consultants. Reporting and Communication: Prepare detailed and informative reports on audit findings, risk assessments, and project progress. Communicate effectively with stakeholders at various levels, including technical and non-technical audiences. Provide recommendations for cybersecurity improvements and enhancements. Project Management: Proven project management skills, including planning, execution, and monitoring. Experience with project management methodologies (e.g., Agile, Waterfall). Ability to manage multiple projects simultaneously and prioritize tasks effectively. User Training and Awareness: Develop and deliver cybersecurity function and awareness training programs for concern areas. Information Management: Maintain comprehensive documentation of cybersecurity process, procedure, and evidence. Ensure compliance with document requirement for audit and certification. Cybersecurity Audit and Assessment: Develop and execute comprehensive cybersecurity audit plans for vehicle systems and components. Conduct vulnerability assessments, penetration testing, and risk assessments. Identify and evaluate cybersecurity risks and threats. Develop mitigation strategies and action plans to address identified vulnerabilities. Technical/ Functional: Strong analytical abilities and knowledge of cybersecurity principles are essential. Should have experience in inter-division coordination activities. Must be aware of work areas of various verticals and business areas companywide. Some prior experience related to Audit procedures preferable. Understanding of cybersecurity principles, standards, and best practices. Basic Knowledge of automotive cybersecurity standards (e.g., ISO/SAE 21434, UNR 155/156, AIS 189/190). Experience with cybersecurity frameworks Basic knowledge of IT area of MSIL is needed.

Task Description: Vulnerability Mgmt Support & maintain the vulnerability detection & mitigation best practice Apply threat & VM program to information security practices & develop its maturity Participate in incident response triage & proactive analysis in information security related vulnerabilities detection & mitigation in the network, systems and/or application; Analyse vulnerability feeds & support the CDC operations with IOC/IOA based on vendor advisories , security alerts & threat trending; Provide analysis & apply CVSS scoring mechanism, that associated to all related vectors/strings of vulnerabilities; Detect, analyze, & acknowledged CDC operation & EDR team for latest threats/detection signature & creation of use cases that able to monitor or drop related vulnerability exploitations; Provide regular updates to the stakeholders on security assessment reports with detailed security issues & recommend workarounds; Regular tracking & maintain the vulnerability process cycle to ensure timely closure of all vulnerability findings ; Actively investigate the latest in security vulnerabilities, vendor advisories, security incidents, & penetration techniques & notify stakeholders when appropriate; Provide support & participate, in ongoing & future projects of VM . Provide security assessment & consultation o

Your seniority as a security engineer puts you in the ranks of the top talent in your field. Play a critical role at one of the worlds most iconic financial institutions where security is vital. As a Security Engineer III at JPMorgan Chase within Cyber Technology & Controls, you serve as a seasoned member of a team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. Carry out critical technology solutions with tamper-proof, audit defensible methods across multiple technical areas within various business functions in support of the firm s business objectives Job responsibilities Executes security solutions design, development, and technical troubleshooting with the ability to apply knowledge of existing security solutions to satisfy security requirements for internal clients (e.g., product, platform, application owners) Creates secure and high-quality production code and maintains algorithms that run synchronously with appropriate systems Applies specialized tools (e.g., vulnerability scanner) to analyze and correlate incident data to identify, interpret, and summarize the probability and impact of threats when determining specific vulnerabilities Leads delivery of continuity-related awareness, training, educational activities, and exercises Adds to team culture of diversity, equity, inclusion, and respect Required qualifications, capabilities, and skills Formal training or certification on security engineering concepts and 3+ years applied experience Experience developing security engineering solutions Proficient in coding in one of more languages such as Java and C#. Experience in Networking eg, load balancers, various protocols, proxy. Understanding of the Software Development Life Cycle Understanding of agile methodologies such as CI/CD, application resiliency, and security Preferred qualifications, capabilities, and skills Familiar in developing scalable and highly available applications. Familiar with public cloud , preferably AWS

Senior Cybersecurity Supervisor The Senior Cybersecurity Supervisor will be responsible for delivering services to assess and evaluate the security posture of a variety of Honeywell Products and partner technologies. This role will be responsible for security services delivery, which may include use of application / network / firmware / hardware security toolsets, detection of security defects, and remediation consultation of those weaknesses. Our services support the identification of potential attack techniques and serve as the foundation for continuously improving the product development lifecycle. You will provide leadership for a team of Product Security Assurance Engineers. This position will also work with other business stakeholders to ensure testing techniques are developed in accordance with asset risk and business functionality and will play a key role in ensuring appropriate remediation activities are completed as planned. RESPONSIBILITIES Leadership role with Product Security Assurance Team Direct staff and team leaders Provide mentorship, expertise and direction to junior security assurance and product team members Interview and hire qualified candidates Conduct meaningful performance reviews Champion strategic Product Security initiatives Create development plans Track skillsets and approve training requests Proactively anticipate escalations and track issues/conduct root cause analysis assessments Lead initiatives to engineer better solutions Ensure accountability for the development, maintenance and improvement of Security Testing across all SBGs Assist in the development of modular, repeatable, effective Security Testing processes Partner with Tools and Technology Team to select, implement, develop, and automate testing with appropriate tools. Continuously monitors levels of service and interprets and prioritizes threats based on test results Provide briefings to Product Security leadership and other executive leaders Work with cross functional teams to develop remediation suggestions YOU MUST HAVE Bachelor s degree in computer science or software engineering, electrical engineering or equivalent experience 5+ years demonstrated experience in penetration testing WE VALUE 2+ years demonstrated experience leading a team of 3 or more individual contributors Experience in security testing within the appropriate domain Experience leading security test programs at a Fortune 100 corporation Relevant Security certifications Public speaking at Technical Conferences 2+ years of application development Familiarity with reverse engineering tools, debuggers, and dynamic analysis techniques. Understanding of application protocols, development, and common attack vectors. Published vulnerability research Good cybersecurity capabilities and strong software engineering skills Excellent understanding of security by design principles and architecture level security concepts Experience and knowledge of penetration testing methodologies and tools Up to date knowledge of current and emerging security threats and techniques for exploiting security vulnerabilities Demonstrated project management skills. Effective oral and written communication skills Excellent interpersonal skills

Innovate to solve the worlds most important challenges The future is what you make it. When you join Honeywell, you become a member of our global team of thinkers, innovators, dreamers, and doers who make the things that make the future. That means changing the way we fly, fueling jets in an eco-friendly way, keeping buildings smart and safe and even making it possible to breathe on Mars. Working at Honeywell isn t just about developing cool things. That s why all our employees enjoy access to dynamic career opportunities across different fields and industries. Are you ready to help us make the future? The Honeywell Global Security (HGS) business believes in integrating security into all aspects of our business to protect the people, processes, and assets by which Honeywell achieves its greater mission. In the role of Sr Advanced Cyber Security Architect, you will join a growing central Product Security organization providing expertise in secure software, requirements, and architecture throughout all phases of the product lifecycle. The role will report to the Director of Cyber Security and will drive security baselines, processes, solutions, and risk reduction across a growing line of core product. This role will have the unique distinction of being a part of a highly cross functional security team, creating new strategies, policies and processes, and centrally touching every end of Honeywell s offerings, product lifecycle, and business lifecycle. This role will additionally interact regularly with Suppliers and industry partners, to keep up with an ever-evolving threat landscape. Key Responsibilities: Lead efforts with the development teams to manage product risk and apply the appropriate security controls Provide product security related coaching and security expertise for all software and firmware development teams Drive best in class security requirements into product and service offerings Lead and coordinate cross-functional activities for Supplier Cyber Assessments Lead new project deployments and initiatives that add value to SDL processes and procedures Lead efforts of mentoring and training the engineering development community and facilitate adoption of shift-security-to-left practice As a member of the architecture leadership team, you will understand and influence the development of services and offerings by ensuring security by design of the cloud, as well as on-premises solutions. Ensure data security requirements are understood and implemented in accordance with applicable country laws and regulations Partner with development teams and Suppliers across business and product lines to drive security requirements, practices, and complete thorough security reviews of products Drive secure engagement and architecture including threat modeling, vulnerability and risk assessment, analysis of findings from penetration tests, and tools (e.g., SAST, SCA, Container vulnerability scans) Drive incident response investigation, ensure coordination for remediation plan and execution Mentor and coach engineering and security architects in secure SDLC practices, train and engage security advocates Represent Honeywell in consortia, contributing to creation and refinement of tomorrow s industry standards and best practices You must have: 6+ years of experience in security engineering Secure software development lifecycle (SSDLC) experience Understanding of security by design principles We value: Experience with Cloud Provider (e.g., Azure, AWS, GCP) security architecture and controls Experience with Threat Modeling Experience with security tools (e.g., SAST, SCA, vulnerability scanning, penetration testing) Understanding of Agile software development practices Experience with SaaS, cloud, IOT, and OT security and controls Understanding of DevOps (CI/CD) Sound understanding of Cryptography, encryption algorithms, Public Key Infrastructure (PKI), Secure boot and Open-source risk management Up to date knowledge of current and emerging security threats and techniques for exploiting security weaknesses Certifications in security demonstrating deep practical knowledge such as CSSLP, CCSP, or CISSP Strong interpersonal skills with the ability to facilitate diverse groups, help negotiate priorities, and resolve conflicts among partners Experience working with external partners Experience with definition, creation, integration, and monitoring of metrics Passion for achieving results and continual self-improvement Master s Degree

Cyber Security Engineer As an Cyber Security Engineer II here at Honeywell, you will be accountable for ensuring the security of our products and services. You will work closely with our team to implement and maintain security measures to protect our customers from cyber threats. You will report directly to our Security Engineering Manager and you ll work out of our Orion Campus, Bangalore location on a hybrid work schedule. In this role, you will impact the security of all of our products and services, ensuring the self-assured integrity and availability of our customers products, data, and information. You will work with cross-functional teams to develop and implement security solutions, conduct vulnerability assessments, and respond to security incidents. At Honeywell, our people play a critical role in developing and assisting our employees to help them perform at their best and drive change across the company. Help to build a strong, diverse team by recruiting talent, identifying, and developing successors, driving retention and engagement, and fostering an inclusive culture. KEY RESPONSIBILITIES Develop and implement security measures to protect systems and networks Conduct vulnerability assessments and penetration testing Monitor and respond to security incidents Work with cross-functional teams to ensure security requirements are met Stay up-to-date with the latest cybersecurity trends and technologies YOU MUST HAVE 3+ years of experience in cybersecurity or a related field Bachelors degree or equivalent experience in Software Engineering, Computer Science, or related discipline Familiarity with the following tools with direct experience in several of them: o Java / Groovy o Python o JIRA ScriptRunner o Jenkins o Ansible / Boto3 o DevSecOps o Security Requirements o Threat Modeling o Penetration Testing Tools o Public Key Infrastructure o Embedded Device Software Engineering o Hardware Engineering WE VALUE Strong knowledge of python-based development Experience designing and deploying global technology services Deep understanding of tool automation and integration Strong knowledge of secure software development lifecycle and practices such as threat modeling, security reviews, penetration tests, and security incident response Understanding of security by design principles and architecture level security concepts Up to date knowledge of current and emerging security threats and techniques for exploiting security vulnerabilities Excellent communication and leadership skills Strong interpersonal skills with the ability to facilitate diverse groups, help negotiate priorities, and resolve conflicts among project stakeholders Technical leadership experience in the software security field Certifications in security and privacy demonstrating deep practical knowledge such as CSSLP Understanding of Agile software development practices ABOUT HONEYWELL Honeywell International Inc. (Nasdaq: HON) invents and commercializes technologies that address some of the world s most critical demands around energy, safety, security, air travel, productivity, and global urbanization. We are a leading software-industrial company dedicated to introducing state-of-the-art technology solutions to improve efficiency, productivity, sustainability, and safety in high-growth businesses in broad-based, attractive industrial end markets. Our products and solutions enable a safer, more comfortable, and more productive world, enhancing the quality of life of people around the globe. THE BUSINESS UNIT The Corporate Strategic Business Group (CORP SBG) at Honeywell is a division focused on corporate-level functions and initiatives that facilitate the overall operations and strategy of the company. It is accountable for overseeing areas such as finance, legal, human resources, communications, and corporate governance, working closely with other business units and SBGs to ensure alignment and coordination across the organization. The CORP SBG plays a crucial role in the overall strategic direction and management of Honeywells corporate functions and operations, assisting the companys business objectives. Honeywell is an equal opportunity employer. Qualified applicants will be considered without regard to age, race, creed, color, national origin, ancestry, marital status, care or sexual orientation, gender identity or expression, disability, nationality, sex, religion, or veteran status.

Advanced Cyber Security Engineer As an Advanced Cyber Security Engineer II here at Honeywell, you will be accountable for ensuring the security of our products and services. You will work closely with our team to implement and maintain security measures to protect our customers from cyber threats. You will report directly to our Security Engineering Manager and you ll work out of our Orion Campus, Bangalore location on a hybrid work schedule. In this role, you will impact the security of all of our products and services, ensuring the self-assured integrity and availability of our customers products, data, and information. You will work with cross-functional teams to develop and implement security solutions, conduct vulnerability assessments, and respond to security incidents. At Honeywell, our people play a critical role in developing and assisting our employees to help them perform at their best and drive change across the company. Help to build a strong, diverse team by recruiting talent, identifying, and developing successors, driving retention and engagement, and fostering an inclusive culture. KEY RESPONSIBILITIES Develop and implement security measures to protect systems and networks Conduct vulnerability assessments and penetration testing Monitor and respond to security incidents Work with cross-functional teams to ensure security requirements are met Stay up-to-date with the latest cybersecurity trends and technologies COMPENSATION The annual base salary for this position is . Please note that this salary information serves as a general guideline. Honeywell considers various factors when extending an offer, including but not limited to the scope and responsibilities of the position, the candidates work experience, education and training, key skills, as well as market and business considerations. BENEFITS OF WORKING FOR HONEYWELL Benefits - Medical, Vision, Dental, Mental Health Paid Vacation 401k Plan/Retirement Benefits (as per regional policy) Career Growth Professional Development YOU MUST HAVE 3+ years of experience in cybersecurity or a related field Bachelors degree or equivalent experience in Software Engineering, Computer Science, or related discipline Familiarity with the following tools with direct experience in several of them: Java / Groovy Python JIRA ScriptRunner Jenkins Ansible / Boto3 DevSecOps Security Requirements Threat Modeling Penetration Testing Tools Public Key Infrastructure Embedded Device Software Engineering Hardware Engineering WE VALUE Strong knowledge of python-based development Experience designing and deploying global technology services Deep understanding of tool automation and integration Strong knowledge of secure software development lifecycle and practices such as threat modeling, security reviews, penetration tests, and security incident response Understanding of security by design principles and architecture level security concepts Up to date knowledge of current and emerging security threats and techniques for exploiting security vulnerabilities Excellent communication and leadership skills Strong interpersonal skills with the ability to facilitate diverse groups, help negotiate priorities, and resolve conflicts among project stakeholders Technical leadership experience in the software security field Certifications in security and privacy demonstrating deep practical knowledge such as CSSLP Understanding of Agile software development practices ABOUT HONEYWELL Honeywell International Inc. (Nasdaq: HON) invents and commercializes technologies that address some of the world s most critical demands around energy, safety, security, air travel, productivity, and global urbanization. We are a leading software-industrial company dedicated to introducing state-of-the-art technology solutions to improve efficiency, productivity, sustainability, and safety in high-growth businesses in broad-based, attractive industrial end markets. Our products and solutions enable a safer, more comfortable, and more productive world, enhancing the quality of life of people around the globe. THE BUSINESS UNIT The Corporate Strategic Business Group (CORP SBG) at Honeywell is a division focused on corporate-level functions and initiatives that facilitate the overall operations and strategy of the company. It is accountable for overseeing areas such as finance, legal, human resources, communications, and corporate governance, working closely with other business units and SBGs to ensure alignment and coordination across the organization. The CORP SBG plays a crucial role in the overall strategic direction and management of Honeywells corporate functions and operations, assisting the companys business objectives. Honeywell is an equal opportunity employer. Qualified applicants will be considered without regard to age, race, creed, color, national origin, ancestry, marital status, care or sexual orientation, gender identity or expression, disability, nationality, sex, religion, or veteran status.

Dev Support Engineer We are looking for a skilled Workday Dev BAU Support Engineer to join our DAMO team. This role involves troubleshooting and maintaining backend applications, managing cloud resources, ensuring security compliance, and supporting automation pipelines. The ideal candidate should have experience with Node.js, Google Cloud Platform (GCP), and security tools, along with a strong problem-solving mindset. Responsibilities Debug and troubleshoot Node.js backend applications using console logs and monitoring tools. Manage and establish secure connections between Node.js applications and GCP using service accounts, SSH, and shell scripting. Work with various GCP resources, including App Engine, Datastore, Cloud Scheduler, BigQuery, and Secret Manager. Monitor and analyze GCP notifications for hosted applications, identifying and resolving issues proactively. Investigate InfoSec vulnerability alerts and leverage GCP Security Command Center for security analysis. Ensure application security by working with tools such as Wiz and Snyk to detect and remediate vulnerabilities. Understand and support CircleCI pipelines for continuous integration and deployment. Work with the NEO platform, including token generation, subscription management, and replaying events. Qualifications Experience: 4+ years of experience in Level 2 or Level 3 technical support, with a strong focus on Workday. Experience in Node.js application development and debugging. Hands-on experience with GCP services, including authentication and resource management. Strong knowledge of CI/CD pipelines, especially CircleCI. Familiarity with security tools such as Wiz, Snyk, and GCP Security Command Center. Ability to analyze and respond to cloud security alerts and notifications. Soft Skills: Excellent problem-solving skills with the ability to analyze and resolve complex issues. Strong communication skills to interact effectively with technical teams and business users. Ability to work independently and as part of a team in a fast-paced environment. Strong documentation skills to ensure knowledge sharing and process standardization.

In our always on world, we believe it s essential to have a genuine connection with the work you do. Are you excited by a challenge? Driven by learning and growth? Then joining CommScope s cybersecurity team may be the right next step for you. We are looking out for a Cyber Security Engineer to join our team in Hyderabad. In this role, you will serve as a key individual contributor on our Security Architecture and Engineering team. A CommScope Security Engineer is responsible for designing, implementing, maintaining, monitoring, and managing key technical security systems/controls that protect our business. Success in this role will require foundational understanding of technology stacks, security tooling, and securing cloud environments (Azure, GCP, AWS. Ideal candidates will be willing to grow their technical skills by working on a broad range of security technical controls in an environment where your contribution will matter. Your work will be critical to our organization s cyber security success. CommScope s security team takes pride in protecting the people, processes, and technologies that serve our customers, and their customers - the billions of people our products and services help to connect each day. Join us and pursue your personal best! How Youll Help Us Connect the World : Implement, maintain, monitor, and manage cyber security systems and controls. Deliver projects on time, within budget and in accordance with service level agreements (SLAs). Work in tandem with architects, senior engineers, the security operations center (SOC), incident responders (in cases of anomalous activity and host compromise), and technology infrastructure and development team members. Participate regularly change management meetings. Conduct performance and efficacy testing to stress the limitations of security solutions while at the same time ensuring business innovation and day-to-day processes are not negatively impacted. Collaborate with other team members to develop technical security standards and best practices across various security domains; socialize and evangelize to other technology teams. Articulate common practices and tactics used by malicious software and threat actors, along with associated remediation, to other IT teams. Assist members of the Governance, Risk, and Compliance team to answer technical questions from auditors and clients. Required Qualifications for Consideration: A bachelor s degree with Preferably 4+ years of cyber security experience, demonstrating increased responsibility and success in each role. Hands-on experience in implementing and supporting at least 2 security capabilities (firewalls, CASB, SSE, DLP, SIEM, endpoint, vulnerability scanning, PKI, MFA, CSPM, etc.) Previous professional experience in other IT / technical domains and communicating relevant domain information with a non-technical audience. Proven analytical and critical thinking skills. Strong interpersonal, written, and oral communication skills. Demonstrated customer service and solution-focused orientation. Ambitious and disciplined. Self-starter, able to manage one s own time and juggle competing tasks, proactively seeking prioritization and guidance when needed. You Will Excite Us If You Have: Hands-on experience working with a major public cloud provider, such as Azure, AWS, or GCP. Significant familiarity with Azure security controls and services. Familiarity with Netskope. Familiarity with Palo Alto Networks firewalls and related controls.

Design and implement security controls for products throughout the SDLC. Perform threat modeling, security reviews, and vulnerability assessments. Collaborate with development teams to integrate security best practices. Respond to, investigate, and remediate security incidents related to products. Develop and maintain security automation tools and scripts. Conduct secure code reviews and penetration testing. Research and evaluate emerging security technologies and threats. Create and deliver developer training on secure coding practices. Document security guidelines, standards, and compliance requirements. Communicate risks and mitigation strategies to technical and non-technical stakeholders. Requirements Bachelors degree in Computer Science, Information Security, or a related field. Strong experience in application security, threat modeling, and vulnerability assessment. Proficiency in secure coding practices and common security tools (e.g., SAST, DAST). Familiarity with SDLC, DevSecOps, and cloud security principles. Excellent communication skills and ability to collaborate across teams.

Roles & Responsibilities Project Related Would be leading 1-2 large projects at any time involving suspicions of fraud and misconduct by employees, management or third parties, as well as, fraudulent financial reporting on the part of management. They shall be having teams report to them at a project level. Will have the responsibility of project execution and shall report to a director/partner on every project. They shall be responsible for ensuring project profitability, quality as well as adherence to the agreed project plan Help direct activities involving the tracing, identification and recovery of lost assets Assist organizations in protecting value through the assessment of their risk and vulnerability to fraud and misconduct Use a variety of diagnostic and forensic technology techniques to help determine key areas of risk and assess how well that risk is managed Establish steps to test and help mitigate vulnerabilities to fraud and misconduct. The candidate will drive the delivery of various engagements including undertaking status reviews, developing process frameworks for fraud monitoring systems (FMS), implementation methodology, training client personnel The Individual Experience in the Forensic Sector with strong experience and understanding of processes and controls. Background in consulting preferably from the Big 4 or similar firms is a pre-requisite. Demonstrated track record of project execution capabilities and strong ability to map client business requirements and convert the same to a viable business proposition Will be able to take responsibility on revenue numbers and bring new clients to the group Strong communication skills with client facing experience with ability to interact and make presentations at the CXO level Strong team management responsibilities and people management skills. Should be able to lead by example and motivate the team and be a team player Provide strategic decisions to team and clients Strong analytical and problem-solving skills Consistent display of leadership skills Ability to work under pressure - stringent deadlines and tough client conditions which may demand extended working hours. Ability to work well in teams Willingness to travel within India or abroad for continuous long periods of time Demonstrate integrity, values, principles, and work ethics .

Required Skills Technology | Scripting and Automation | Level 2 Support Technology | Network Security Fundamentals | Level 3 Support Technology | Secured Configuration Management | Level 3 Support Technology | Incident and Breach Response | Level 2 Support Technology | Endpoint Encryption | Level 2 Support Education Qualification : Engineer - B.E / B.Tech / MCA Certification Mandatory / Desirable : Technology | Certified Endpoint Detection and Response Professional/Certified Endpoint Security Administrator/Microsoft Certified: MD-100/CompTIA CySA+/CISSP/CISM/Cisco Certified CyberOps Associate/VMware Certified Professional - Desktop and Mobility Delivery Skills required are: - Advanced Technical Proficiency: - *Mastery of endpoint security solutions such as antivirus, endpoint detection and response (EDR), endpoint protection platforms (EPP), and mobile device management (MDM) systems. *Ability to configure, manage, and troubleshoot advanced endpoint security technologies effectively. *Advanced skills in conducting vulnerability assessments, prioritizing vulnerabilities, and overseeing remediation efforts across endpoint devices. Strategic Oversight and Management: - *Strategic oversight of endpoint security operations, including policy development, deployment strategies, and performance monitoring. *Collaboration with IT teams, network security specialists, compliance officers, and senior management to integrate endpoint security initiatives with broader organizational security strategies. *Facilitation of collaborative efforts to improve endpoint security posture and incident response capabilities. Communication and Stakeholder Management: - *Clear and concise communication of complex technical concepts, security risks, and recommendations to stakeholders at all levels. *Ability to articulate endpoint security issues, incident findings, and remediation strategies effectively. *Comprehensive documentation of endpoint security incidents, investigations, and remediation activities. Continuous Improvement and Adaptability: - *Commitment to staying updated with the latest cybersecurity trends, emerging threats, and technologies through ongoing training, certifications, and industry participation. *Implementation of continuous improvement initiatives to enhance endpoint security operations and resilience against evolving threats. Leadership and Mentorship: - *Mentorship of endpoint security team members to foster their professional growth and technical expertise. *Providing guidance on career development paths and skill enhancement within the endpoint security domain.

Take on a crucial role where youll be a key part of a high-performing team delivering secure software solutions. Make a real impact as you help shape the future of software security at one of the worlds largest and most influential companies. As a Lead Security Engineer at JPMorgan Chase within the Cybersecurity & Tech Controls team , you are an integral part of team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. As a core technical contributor, you are responsible for carrying out critical technology solutions with tamper-proof, audit defensible methods across multiple technical areas within various business functions. Job responsibilities Executes creative security solutions, design, development, and technical troubleshooting with the ability to think beyond routine or conventional approaches to build solutions and break down technical problems Develops secure and high-quality production code and reviews and debugs code written by others Minimizes security vulnerabilities by following industry insights and governmental regulations to continuously evolve security protocols, including creating processes to determine the effectiveness of current controls Works with stakeholders and business leaders to understand security needs and recommend business modifications during periods of vulnerability Conducts discovery, vulnerability, penetration testing, and threat scenarios on multiple organizational assets to identify and assess if vulnerabilities are present, and executes threat modeling for multiple applications including external applications interacting with the internal JPMorgan Chase network Adds to team culture of diversity, equity, inclusion, and respect Required qualifications, capabilities, and skills Formal training or certification on security engineering concepts and 5+ years applied experience Experience developing security engineering solutions, along with design and implementation of cloud security solutions on AWS for best technical practices Advanced in one or more programming languages Python or Java Proficient in all aspects of the Software Development Life Cycle Advanced understanding of agile methodologies such as CI/CD, Application Resiliency, and Security Experience with threat modeling, discovery, vulnerability, and penetration testing In-depth knowledge of the financial services industry and their IT systems Preferred qualifications, capabilities, and skills Effective communication skills. Certified AWS solution Architect Familiar with AWS Security & CISSP/CCSP

Some careers shine brighter than others. If you re looking for a career that will help you stand out, join HSBC and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further. HSBC is one of the largest banking and financial services organisations in the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realise their ambitions. We are currently seeking an experienced professional to join our team in the role of Senior Consultant Specialist In this role, you will: Perform highly technical/analytical security assessments of custom mobile applications, widely understood infrastructure and networks, web services and APIs. This covers manual penetration testing, source code and configuration review. Clearly and professionally document root cause and risk analysis of all findings Adhere to the security testing process and raise any gaps or opportunities for improvement with manager. Work closely with the DevOps teams to ensure that the security testing requirements are met and help automate repetitive tasks. Develop understanding of business functionality and apply testing methodology as appropriate to technologies and risks Code and demonstrate basic proof-of-concept exploits of vulnerabilities when required. Assist with coordination of security testing projects according to a structured process, including writing test plans, test cases and test reports. Advise on vulnerability remediation, control implementation and secure development practices Assess product release risk and complexity and identify potential misuse scenarios through review of business requirements and design specifications Assist with tracking, remediation, and risk acceptance for identified security vulnerabilities. Assist in planning, test execution and vulnerability mitigation Ensure that company security policies are implemented, enforced, and enhanced when appropriate Participate in team discussions to formulate new or enhance existing processes and standards Assist in security incident response activities Adhere strictly to compliance and operational risk controls in accordance with company and regulatory standards, policies and practices; report control weaknesses, compliance breaches and operational loss events Run evaluations of new security testing technologies and provide recommendations. Monitor security industry information sources and keep abreast of events, research, and developments. Identify opportunities to improve our processes, quality of the work and efficiencies. Mentor junior team members Other responsibilities as assigned Requirements To be successful in this role, you should meet the following requirements: Minimum 12+ years of experience in IT Maintain a wide breadth of penetration testing and/or leadership management skills to a significant degree of depth. Understand the business context/significance of technical penetration testing findings. Consistently output superior quality of deliverables. Poses an entrepreneurial attitude to excel in loosely defined scenarios. Ability to work independently or lead any size team of penetration testers. Superior time management skills and self-discipline. Be subject matter expert in at least 2 of penetration testing domains (i. e. infrastructure/apps/mobile). Demonstrated ability to solve complex technical problems. At least 5 years of prior demonstrable hands-on experience in penetration testing. Solid understanding of the platform security models for iOS and Android platforms. Excellent understanding of platform-specific security risks, common vulnerabilities for mobile applications, common risks in financial applications. Practical knowledge of penetration testing of widely understood infrastructure, web and mobile technologies, using manual and automated testing methods. Excellent TCP/IP knowledge and understanding of security implications/issues. Strong web application testing experience. Proven programming/scripting skills. Ability to explain security functionality from first principles. Ability to adapt and apply information to new scenarios and technologies. Strong understanding of applied use of cryptography in application development.

Some careers shine brighter than others. If you re looking for a career that will help you stand out, join HSBC, and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further. We are currently seeking an experienced professional to join our team in the role of Lead consultant specialist In this role you will: Hunting for malicious or anomalous activity across the enterprise, using existing tools. Acting in co-ordination with GCO staff to lead the development and implementation of an advanced analysis and search capability focused on identifying potentially sophisticated APT and insider threat activities within the organization. Researching new and existing threat actors and associated tactics, techniques and procedures (TTPs); developing a detailed understanding of their potential impact to the organization, providing recommended solutions for improving our defensive and detective capability. Collaboration with the wider Cybersecurity functions, e. g. , Red Team, to develop hypotheses for new attack techniques and evasion methods. Coordinating threat hunting activities, leveraging intelligence from multiple internal and external sources. Reviewing incident and penetration testing reports and corresponding logs, to identify gaps in our detection capability and provide recommendations to improve them. Providing expert analytic investigative support on large scale and complex security incidents. Contributing to the continued evolution of hunting, monitoring, detection, analysis and response capabilities and processes Training, developing, mentoring, and inspiring colleagues across the function in area(s) of specialism, strengthening Cybersecurity Operations capabilities. Represent HSBC Global Cybersecurity Operations at internal awareness and external cybersecurity forums. Collaborate with the wider Cybersecurity (and IT) teams to ensure that the core, underlying technological capabilities that underpin an effective and efficient operational response to current and anticipated threats and trends remain fit for purpose. Identify processes that can be automated and orchestrated to ensure maximum efficiency of Global Cybersecurity Operations resources. Requirements To be successful in this role, you should meet the following requirements: Excellent investigative skills, insatiable curiosity, and an innate drive to win. Instinctive and creative, with an ability to think like the enemy. Strong problem-solving and trouble-shooting skills Deep knowledge of hacker culture Developed external peer network for sharing intelligence. Self-motivated and possessing of a high sense of urgency and personal integrity. Excellent understanding of HSBC cyber security principles, global financial services business models, regional compliance regulations and laws. Excellent understanding and knowledge of common industry cyber security frameworks, standards, and methodologies, including OWASP, ISO2700x series, PCI DSS, GLBA, EU data security and privacy acts, FFIEC guidelines, CIS and NIST standards. Proven experience in identifying and responding to advanced attacker methodologies both within the corporate environment as well as external attack infrastructures, ideally with offensive experience and / or deception environment development (tripwire systems, honeypots, honey-token/accounts, etc. ) using open source, vendor purchased and bespoke/in-house developed solutions. Experience in computer forensics, vulnerability analysis, cyber security analysis, penetration testing and/or network engineering. Highest level of technical expertise in information security, including deep familiarity with relevant penetration and intrusion techniques and attack vectors Expert level knowledge of scripting, programming and/or development of bespoke tooling or solutions to solve unique problems. Expert Knowledge and technical experience of 3rd Party Cloud Computing platforms such as AWS, Azure and Google

Innovation is our driving force towards your success Description of the role: The Security Monitoring Analyst is responsible for manning the India SOC for our client based in the US. The key responsibilities include: Handling of all alerts SIEM, IPS/IDS solutions, EDR the Resource is expected to monitor, investigate, respond, and resolve these alerts. Resolving general support requests device control, URL whitelisting, lockouts, etc. Completion of daily checklists as well as preparation and sending of daily reports. Monitor patching status and respond to patch failures by either redeploying the patch manually or escalating to the relevant teams. Monitor Vulnerability scans, review the reports, and parse through these to remove false alarms. Document the response and resolution of alerts and tickets. Creating exclusions/Detection lists to reduce false alarms. Key requirements: The individual is expected to be a graduate (Engineering preferred). CompTIA / CySA+ / equivalent preferred. Ability to think logically, understand and apply learning into practice 2.5+ years of experience in IT security monitoring. Experience working with intrusion detection/prevention systems is a must. Experience in Darktrace would be preferred. Experience working with a SIEM tool is a must. Experience in patch management and IBM BigFix would be an advantage. Experience with vulnerability scanners and their reporting management would be beneficial. Excellent verbal and written English is mandatory. The candidates will be communicating with users based in the US and must communicate effectively. Hours of operation : Rotational shifts shift 7am 3pm / 3pm 11pm / 11pm to 7am. Description of the role: The Security Monitoring Associate is responsible for monitoring security and patching alerts for our clients based in the US. This primarily includes alerts being received on the SIEM tool (Rapid 7 Insight IDR) and also on two different IPS/IDS solutions (SecureWorks and Darktrace) the resource is expected to monitor, investigate and respond to these alerts. Patching of all Windows based systems is carried out on a monthly/quarterly basis using IBM BigFix. The resource is expected to monitor the patching status, respond to patch failures by either redeploying the patch or escalating to the relevant teams. The resource is also expected to review vulnerability reports and parse through these to remove false alarms. Position location: Mumbai Andheri (E). Hours of operation: Rotational shifts shift 7am -3pm/3pm -11pm/11pm to 7am. Salary: INR 4.5L 6L p.a. Key requirements: The individual is expected to be a graduate, any discipline. 2-3 years of experience in IT security monitoring. Experience in working with Intrusion Detection/Prevention Systems is a must. Experience in Secureworks/Darktrace would be preferred. Experience in working with a SIEM tool is must. Experience in patch management and IBM BigFix would be an advantage. Experience with vulnerability scanners and their reporting management would be beneficial. Excellent verbal and written English is a must. The candidates will be communicating with users based in the US and must be able to communicate effectively. The individual will be on the rolls of Interspence Solutions LLP (a Mumbai-based IT company) and will be working to support a leading US based Oil & Gas company. About Company: Interspence Solutions (www.interspence.com) was established in August 2017 and is a company that provides IT consulting and support services within the manufacturing and process industry. Interspence has entered into a long term contract with an Major US based Oil & Gas company to provide skilled IT resources on a T&M basis working under the direction of the their IT leadership team. The company is transforming its business on the back of heavy investments in technology around real time data capture, Big Data platforms, in-memory databases and analytical engines and elastic search services. There is also a significant push towards mobility with majority of the applications being converted into mobile apps. The company is also looking at moving towards DevOps in the near future. With this significant push within the IT space, there is an increasing for skilled and talented resources. Towards this end, we are searching for talented and smart resources who wish to learn and grow their skills working with a company that is defining the art of the possible with the latest technology. Apply for this position Allowed Type(s): .pdf, .doc, .docx By using this form you agree with the storage and handling of your data by this website. *

Innovation is our driving force towards your success About Company: No. Of Position : 1 The key responsibilities include: Provide operational support to the team, including handling meetings and taking minutes. Ensure the operational delivery as per the quality criteria and maintaining client satisfaction. Liaise with internal/external clients to ensure client satisfaction. Maintain time sheets, compilation of data and update the activity list weekly for relevant stakeholders. Provide documentation and presentation support to relevant stakeholders as required. Prepare weekly reports and assist with operational resources if required. Assist with activity planning and maintain the activity calendar. Assist with queries and operational monitoring. Perform any other miscellaneous activity as required. Knowledge and Attributes: Ability to work with diverse personalities and demonstrate a high level of performance. Proactive in approach and meticulous attention to detail. Excellent communication is essential for coordinating with team members and stakeholders. Service-oriented aptitude. Understanding of IT processes, structure, and control requirements. Confident and resilient individual who is organized and outcomes-focused. Ability to provide support with limited guidance for projects. Ability to keep on track and meet deadlines. Ability to address any challenges that arise during project execution. Qualification : Any Degree/BBA/BMS/Bachelor in Project Management/MBA. Work Time : 11 am to 7 pm OR 2 pm to 10 pm. Work Schedule : Hybrid (3 days work from office). Work location : Andheri East. Required Experience : 2 4yrs Description of the role: The Security Monitoring Associate is responsible for monitoring security and patching alerts for our clients based in the US. This primarily includes alerts being received on the SIEM tool (Rapid 7 Insight IDR) and also on two different IPS/IDS solutions (SecureWorks and Darktrace) the resource is expected to monitor, investigate and respond to these alerts. Patching of all Windows based systems is carried out on a monthly/quarterly basis using IBM BigFix. The resource is expected to monitor the patching status, respond to patch failures by either redeploying the patch or escalating to the relevant teams. The resource is also expected to review vulnerability reports and parse through these to remove false alarms. Position location: Mumbai Andheri (E). Hours of operation: Rotational shifts shift 7am -3pm/3pm -11pm/11pm to 7am. Salary: INR 4.5L 6L p.a. Key requirements: The individual is expected to be a graduate, any discipline. 2-3 years of experience in IT security monitoring. Experience in working with Intrusion Detection/Prevention Systems is a must. Experience in Secureworks/Darktrace would be preferred. Experience in working with a SIEM tool is must. Experience in patch management and IBM BigFix would be an advantage. Experience with vulnerability scanners and their reporting management would be beneficial. Excellent verbal and written English is a must. The candidates will be communicating with users based in the US and must be able to communicate effectively. The individual will be on the rolls of Interspence Solutions LLP (a Mumbai-based IT company) and will be working to support a leading US based Oil & Gas company.

Innovation is our driving force towards your success About Company: Role Overview : The Patch Management Specialist will be responsible for ensuring 100% patch compliance across all servers and workstations (Windows ONLY). This role involves managing the BigFix console for administration, coordinating patch deployments, and maintaining system security and performance. Location : Remote (Preferred Mumbai/Pune) Time : 7 pm to 3 am OR 8 pm to 4 am Work Hours : 5 days a week with a Saturday and Sunday of key responsibilities : Patch Compliance : Ensure 100% patch compliance across all EOG servers and workstations (Windows ONLY). BigFix Console Management : Administer and manage the BigFix console to deploy patches and updates effectively. Coordination and Scheduling : Collaborate with various IT teams to schedule and coordinate patch deployments, minimizing system downtime. Issue Resolution : Address and resolve any issues arising from patch deployments and update failures. Documentation : Maintain and update patch management documentation, including deployment schedules, compliance reports, and issue logs. Reporting : Provide regular reports on patch management activities, system compliance, and performance metrics. Audits : Conduct regular audits of patch levels and system statuses to ensure ongoing compliance and security. Key Requirements: Experience : Proven experience in patch management, particularly with Windows servers and workstations. Technical Skills : Proficiency in using patch management tools such as BigFix, SCCM, WSUS, or equivalent. Communication Skills : Excellent verbal and written communication skills to effectively coordinate with various teams and stakeholders. Problem-Solving : Strong analytical and problem-solving skills to address issues promptly and efficiently. Attention to Detail : High attention to detail to ensure accurate documentation and compliance reporting. Team Collaboration : Ability to work collaboratively within the RRT and other IT teams to achieve patch management goals. Preferred Qualifications: Certifications : Relevant certifications in patch management, system administration, or IT security. Experience with BigFix : Specific experience in administering and managing the BigFix console. Shift Flexibility : Willingness to work in shifts, including rotational shifts if required. This role is crucial for maintaining the security and efficiency of the organization s IT infrastructure by ensuring that all systems are up-to-date and secure. If you have any further questions or need additional details, feel free to ask! Description of the role: The Security Monitoring Associate is responsible for monitoring security and patching alerts for our clients based in the US. This primarily includes alerts being received on the SIEM tool (Rapid 7 Insight IDR) and also on two different IPS/IDS solutions (SecureWorks and Darktrace) the resource is expected to monitor, investigate and respond to these alerts. Patching of all Windows based systems is carried out on a monthly/quarterly basis using IBM BigFix. The resource is expected to monitor the patching status, respond to patch failures by either redeploying the patch or escalating to the relevant teams. The resource is also expected to review vulnerability reports and parse through these to remove false alarms. Position location: Mumbai Andheri (E). Hours of operation: Rotational shifts shift 7am -3pm/3pm -11pm/11pm to 7am. Salary: INR 4.5L 6L p.a. Key requirements: The individual is expected to be a graduate, any discipline. 2-3 years of experience in IT security monitoring. Experience in working with Intrusion Detection/Prevention Systems is a must. Experience in Secureworks/Darktrace would be preferred. Experience in working with a SIEM tool is must. Experience in patch management and IBM BigFix would be an advantage. Experience with vulnerability scanners and their reporting management would be beneficial. Excellent verbal and written English is a must. The candidates will be communicating with users based in the US and must be able to communicate effectively. The individual will be on the rolls of Interspence Solutions LLP (a Mumbai-based IT company) and will be working to support a leading US based Oil & Gas company. About Company: Interspence Solutions (www.interspence.com) was established in August 2017 and is a company that provides IT consulting and support services within the manufacturing and process industry. Interspence has entered into a long term contract with an Major US based Oil & Gas company to provide skilled IT resources on a T&M basis working under the direction of the their IT leadership team. The company is transforming its business on the back of heavy investments in technology around real time data capture, Big Data platforms, in-memory databases and analytical engines and elastic search services. There is also a significant push towards mobility with majority of the applications being converted into mobile apps. The company is also looking at moving towards DevOps in the near future. With this significant push within the IT space, there is an increasing for skilled and talented resources. Towards this end, we are searching for talented and smart resources who wish to learn and grow their skills working with a company that is defining the art of the possible with the latest technology. Job Type: Full Time Job Location: Mumbai Apply for this position Allowed Type(s): .pdf, .doc, .docx By using this form you agree with the storage and handling of your data by this website. *

Scrum Master Key Responsibilities: Facilitate Scrum ceremonies including daily stand-up meetings, sprint planning, sprint review, and sprint retrospective for the product development team. The Scrum Master acts as both a facilitator and a coach to the team; ensuring the Scrum framework and any organization-specific guidelines or practices are adhered to. Serve as a Scrum Master for multiple scrum teams, focusing on coaching the team on agile values and principles and the ensuing practices. Work closely with the Engineering team to understand the product & technology and contribute to product roadmap planning, scheduling, and release management. Work collaboratively with stakeholders to identify and mitigate risks. Develop & utilize metrics to help improve the teams effectiveness. Facilitate cross-team coordination, contacting the larger organization for dependency management and impediment removal. Plan and track the vulnerability backlog for Scrum teams based on the SLA. Experienced in tracking burn-down, and issues using JIRA/Azure, and good at emphasizing team velocity. Support the Product Owner by maintaining data in the appropriate Agile toolset, by providing transparency to the Product roadmap and related project priorities. Key Requirements: Bachelor s degree in computer science or a related field. Minimum of 6 years of experience as a Scrum Master with a focus on Product development. Strong knowledge of Agile Scrum principles and practices, particularly in database development. Excellent communication and interpersonal skills. Strong problem-solving and analytical skills relevant to database development challenges. Proficiency with Azure Dev Ops or Jira. Flexible to work in any shift timings. Knowledge and experience with Agile software development methods such as Scrum, Kanban, SAFe, or Lean. Preferred Certification : Certified Scrum Master (CSM) or Professional Scrum Master (PSM 1)

Responsibility: Oversee product cyber security in high-complexity development projects from acquisition to start of production (SOP) according to ISO/SAE 21434 or UNECE R-155. Planning & Development: Develop security activities and evaluate development efforts. Evaluation & Approval: Approve security concepts and strategies throughout development phases. QCT Targets: Achieve Quality, Cost, and Time targets related to cyber security work products. Tasks / Areas of Responsibility Planning & Guidance: Independently plan necessary cyber security activities and provide guidance to colleagues. Risk Analysis: Analyze product scope for cyber security risks, considering known weaknesses and vulnerabilities. Coordination: Define a holistic product cyber security concept. Coordinate with customers, suppliers, and subcontractors. Report to customers and obtain information from subcontractors. Support: Assist the development team in selecting security-compliant technologies and cryptographic procedures. Verification Methods: Define verification methods like fuzzing, vulnerability scanning, and penetration testing. Assessments & Training: Prepare cyber security assessments and implement training measures. Communication: Facilitate communication within the global HELLA cyber security network to improve processes. YOUR QUALIFICATIONS Bachelors OR masters degree in engineering ISO-21434 certification OR working experience CISSP certification is preferred Location - Hinjewadi Phase - 1.

About LeadSquared: One of the fastest-growing SaaS companies in the CRM space, LeadSquared empowers organizations with the power of automation. More than 1700 customers with 2 lakhs+ users across the globe utilize the LeadSquared platform to automate their sales and marketing processes and run high-velocity sales at scale.We are backed by prominent investors such as Stakeboat Capital, Jyoti Bansal, and Gaja Capital to name a few. We raised $153mn in our latest Series C funding round from WestBridge Capital, and were now Indias 103rd Unicorn! We are expanding rapidly and our 1100+ strong and still growing workforce is spread across India, the U.S, the Middle East, ASEAN, ANZ, and South Africa. * Among the Top 50 fastest-growing tech companies in India as per Deloitte Fast 50 programs * Frost and Sullivans 2019 Marketing Automation Company of the Year award * Among Top 100 fastest growing companies in FT 1000: High-Growth Companies Asia- Pacific * Listed as Top Rates Product on G2Crowd, GetApp, and TrustRadiusLocation: Cessna Business Park (Bangalore)-WFORequirements: * 2-3 years of experience in product or application security; at least 1 year of hands-on software development experience is highly desirable. * Proficiency in application security testing using tools such as Burp Suite, SonarQube, SQLMap, and others (SAST, DAST, SCA). * Experience with secure coding practices, and strong scripting skills in Python or JavaScript. * Solid understanding of industry standards and frameworks such as OWASP Top 10, SANS CWE, etc. * Knowledge of security fundamentals like cryptography, authentication, risk assessment, and threat modeling. * Exposure to cloud platforms (e.g., AWS, Azure) and their associated security best practices. * Familiar with CI/CD pipelines and DevSecOps practices for integrating security into development workflows. * Understanding of compliance standards such as ISO 27001 and HIPAA. * Ability to automate security testing to increase assessment coverage and efficiency. * Strong communication skills to effectively convey technical findings to both technical and non-technical stakeholders.Key Responsibilities: * Conduct application security assessments on web,API and mobile platforms. * Perform secure code reviews on apps * Carry out cloud security assessments for SaaS infrastructure and services. * Manage the vulnerability lifecycle from discovery to resolution. * Deliver security training and awareness sessions to internal teams. * Develop tools and frameworks to support security automation and engineering initiatives.

About Gruve Gruve is an innovative software services startup dedicated to transforming enterprises to AI powerhouses. We specialize in cybersecurity, customer experience, cloud infrastructure, and advanced technologies such as Large Language Models (LLMs). Our mission is to assist our customers in their business strategies utilizing their data to make more intelligent decisions. As a well-funded early-stage startup, Gruve offers a dynamic environment with strong customer and partner networks. About the Role: We are seeking a skilled Site Reliability Engineer (SRE) / DevOps Engineer to join our infrastructure team. In this role, you will design, build, and maintain scalable infrastructure, CI/CD pipelines, and observability systems to ensure high availability, reliability, and security of our services. You will work cross-functionally with development, QA, and security teams to automate operations, reduce toil, and enforce best practices in cloud-native environments. Key Responsibilities: Design, implement, and manage cloud infrastructure (GCP/AWS/Azure) using Infrastructure as Code (Terraform). Maintain and improve CI/CD pipelines using tools like circleci, GitLab CI, or ArgoCD. Ensure high availability and performance of services using Kubernetes (GKE/EKS/AKS) and container orchestration. Implement monitoring, logging, and alerting using Prometheus, Grafana, ELK, or similar tools. Collaborate with developers to optimize application performance and deployment processes. Manage and automate security controls such as IAM, RBAC, network policies, and vulnerability scanning. Basic Qualifications: Strong knowledge of Linux Experience with scripting languages such as Python, Bash, or Go. Experience with cloud platforms (GCP preferred, AWS or Azure acceptable). Proficient in Kubernetes operations, including Helm, operators, and service meshes. Experience with Infrastructure as Code (Terraform). Solid experience with CI/CD pipelines (GitLab CI, Circleci, ArgoCD, or similar). Familiarity with monitoring and observability tools (Prometheus, Grafana, ELK, etc. ). Experience with scripting languages such as Python, Bash, or Go. Knowledge of networking concepts (TCP/IP, DNS, Load Balancers, Firewalls). Preferred Qualifications Experience with advanced networking solutions. Familiarity with SRE principles such as SLOs, SLIs, and error budgets. Exposure to multi-cluster or hybrid-cloud environments. Knowledge of service meshes (Istiol). Experience participating in incident management and postmortem processes. Why Gruve At Gruve, we foster a culture of innovation, collaboration, and continuous learning. We are committed to building a diverse and inclusive workplace where everyone can thrive and contribute their best work. If you re passionate about technology and eager to make an impact, we d love to hear from you. Gruve is an equal opportunity employer. We welcome applicants from all backgrounds and thank all who apply; however, only those selected for an interview will be contacted.

Some careers shine brighter than others. If you re looking for a career that will help you stand out, join HSBC and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further. HSBC is one of the largest banking and financial services organisations in the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realise their ambitions. We are currently seeking an experienced professional to join our team in the role of Senior Consultant Specialist In this role, you will: Act as trusted advisor for the senior management to properly manage their operational risk and all items related (Control environment, issues management). Own the delivery of risk & control projects and programmes for FinEX. Manage the promotion of accountable risk and control decision-making based on quality data. Collaborate with cross functional teams, including Cybersecurity, IT, and business units, to ensure control strategies align with organisational goals and requirements. Have knowledge of software development tools, technologies and methodologies and collaborate with IT Service Owners and Development Teams to develop control enhancement solutions and enforce control compliance. Stay current on industry trends and advancements in risk management and controls to identify opportunities for enhancement, automation, and innovation. Assist service owners in responding appropriately and effectively to firm-wide risk, cyber and corporate control initiatives. Develop and implement risk management strategies and control frameworks. Monitor and report on the effectiveness of risk management and control activities. Conduct risk assessments and identify potential areas of vulnerability. Provide guidance and support to business units on risk and control matters. Ensure compliance with regulatory requirements and internal policies. Facilitate risk and control training and awareness programs. Requirements To be successful in this role, you should meet the following requirements: Experience in a risk and control environment, understanding the principles of risk management, and strong engineering mindset to ideate and design control solutions for complex and interlinked IT processes. Effective influencing skills and a collaborative team working approach. Ability to develop trusted advisor status and be an accomplished influencer with key stakeholders. Experience and proven track record to influence/manage functionally and work independently at a senior level. Strong communication skills and a proven track record of senior executive engagement. Actively challenge poor, inefficient, or excessive controls, related tasks, and behaviours while proposing solutions and recommendations. Ability to work in a multi-country, culturally diverse, and time-zone separated management role. Analytical with the ability to understand and resolve complex problems. Proficiency in MS Excel to interrogate large data sets. Familiarity with SharePoint, Microsoft Teams, and Confluence. You ll achieve more when you join HSBC. .