486 Vulnerability Management Jobs

We have Immediate Openings on VulnerabilityManagement Contract to Hire role for multiple clients. Job Details Skills VulnerabilityManagement JD Primary & Secondary Skills Vulneribility ManagementQualys GuardQualys AgentPolicy ComplianceVulneribilty Scanning RESPONSIBILITIES Perform vulnerability assessment using leading Vulnerability Scanning solutions like Qualys, Microsoft Defender, etc. Perform vulnerability assessments on On-prem, Cloud hosted systems, container (like Docker & Kubernetes), databases, web services and other widely deployed infrastructure components. Perform false positive validation and ensure delivery of quality reports. Act as a technical SME to analyse the vulnerability results & detection logic. Provide technical advice and support on remediation to infrastructure / application support teams. Manage & Implement approved scan exclusions based on the request from platform support teams. Review findings and identify root causes for common issues and provide recommendations for sustainable improvements. Responsible to maintain vulnerability quality assurance by building VM team technical knowledge base. Research and report on security vulnerabilities and latest advancements in the vulnerability management lifecycle. Understand security policies, procedures and guidelines to all levels of management and staff. Communicate effectively orally and in writing and establish cooperative working relationships. Provide suggestion to improve vulnerability Management service based on current trends in information technology (Network, system security software and hardware). Act as line manager in the absence of team lead. People and Talent Minimum 6 years of experience in Information security and preferably in Banking and Financial services sector Good understanding and Implementation experience on Enterprise Network Security Architecture and Enterprise Network Design. In-depth working experience on Cloud technologies, routers, switches, firewalls, load balancers and proxy will be added advantage for the role. Bachelor Degree in Engineering, Computer Science/Information Technology or its equivalent. Industry certifications will be a plus e.g. CISSP, CCNA Security, CCIE, CCNP Security, CISA, CRISC and CISM. Strong knowledge and subject matter expertise in multiple areas within Information Security. Hands on skill and expertise in performing risk / threat assessments/risk consulting. Excellent written, oral communication and reporting skills. Provides technical leadership, expertise and direction working with district and college technical staff for design and implementation of information technology security systems. Develops strategy for propagating, maintaining, and measuring compliance against security policies, standards, and guidelines district-wide. Time management and organizational skills Ability and desire to learn new skills quickly Performs other related duties as assigned. Risk Management Key StakeholdersClick here to enter text. Other ResponsibilitiesClick here to enter text. COMPETENCIESS FRAMEWORKGrow Self Applicable for all roles.Action OrientedTaking on new opportunities and tough challenges with a sense of urgency, energy and enthusiasm.CollaboratesBuilding partnerships and working collaboratively with others to meet shared objectives.CourageStepping up to address difficult issues and saying what needs to be said.Customer FocusBuilding strong customer relationships and delivering customer-centric solutions.Instils TrustGaining the confidence and trust of others through honesty, integrity and authenticity.Nimble LearningActively learning through experimentation when tackling new problems. Using both successes and failures as a learning factor d integration tasks. If you are interested in, please share the update profile with below details. Current CTC Expected CTC Notice Period Total Experience Relevant Experience

Network Vulnerability management. Occasional network pen testing Network security architect The scope of the consultant services is to assist IKEA in Understanding the network architecture of MP. Assessing the vulnerability of the infrastructure. Scanning through the various reports of network vulnerability scans. Mitigation plan and report of various network vulnerability. Guiding infrastructure team around OT security. Requirements for this position. Industry experience of around 10 to 15 yrs . Ability to identify network attacks and systemic security issues as they relate to threats and vulnerabilities, with a focus on recommendations for enhancements or remediation Strong knowledge of: computer network defense, identity management, incident management, network security and infrastructure design Strong knowledge of cybersecurity activities associated with: requirements analysis, risk analytics and modeling, risk management; emerging issues, risks, vulnerabilities and vulnerability assessment Strong understanding of the following: networking fundamentals (all OSI layers, protocols), OS and software vulnerably and exploitation techniques, commercial or open-source offensive security tools for reconnaissance, scanning, exploitation and post exploitation (e.g. Metasploit, Nmap, Nessus, Burp Suite), and familiarity with interpreting log output from networking devices, operating systems, and infrastructure services experience or working knowledge with threat modeling methodologies such as Stride, Pasta, or comparable experience visually representing data and process flows in an enterprise environment

Job Summary: We are looking for a Senior Operations Manager to oversee and optimize business operations, ensuring efficiency, cost-effectiveness, and compliance. The ideal candidate will be responsible for streamlining processes, improving productivity, managing cross-functional teams, and implementing best practices to achieve operational excellence. Key Responsibilities: 1. Strategic Leadership: Develop and implement strategic plans for the service and operations department in alignment with overall organizational goals. Provide vision and direction to achieve excellence in service delivery. 2. Team Management: Lead, mentor, and manage teams across regions, fostering a culture of collaboration, innovation, and continuous improvement. Ensure effective communication and coordination among team members. 3. Service Delivery: Oversee the operation and maintenance of Electronic Security, Fire Detection/Suppression, IBMS & allied systems solutions. Ensure service quality, responsiveness, and timely issue resolution. 4. Client Relationship Management: Build and maintain strong relationships with clients to understand their evolving needs and expectations. Address client concerns promptly and ensure high levels of customer satisfaction. 5. Regional Operations: Efficiently manage service and operations activities across multiple regions. Implement standardized processes while considering regional variations and requirements. 6. Performance Metrics: Establish and monitor key performance indicators (KPIs) to evaluate team and individual performance. Regularly assess and improve operational efficiency based on metrics. 7. Resource Planning: Plan and allocate resources effectively to meet service demands. Optimize staffing levels, skill sets and equipment to ensure efficient operations. 8. Training and Development: Implement training programs to enhance the technical skills and knowledge of service teams. Keep the team updated on industry advancements and best practices. 9. Budget Management: Develop and manage budgets for service and operations. Monitor expenses and implement cost-effective measures without compromising service quality. 10.Continuous Improvement: Identify opportunities for process improvement and implement best practices. Foster a culture of continuous learning and innovation within the service and operations teams. 11.Health and Safety Compliance: Ensure compliance with health and safety regulations. Implement and enforce safety protocols to create a secure working environment. 12.Emergency Response Planning: Develop and implement effective emergency response plans to address critical situations promptly. Conduct regular drills and assessments to ensure preparedness.

B2 Role L1/ L2 Support resource ( 2 years experience in DLP) Daily Summary Report with list of activities to be shared on daily. Configure Client tasks Purge events on frequent basis Help Desk Support Support in Troubleshooting during Agent installation Providing VPN evidences Support user in installation or uninstallation of Agents Support in resolving Agent Communication issues Support in Agent Upgrade Generate and share MIS reports with end user Troubleshooting Policy related issues Whitelisting of IPs, PF IDs Sharing of granular details of Infringements. Provide Root cause analysis documents

Immediate Openings on Trellix Endpoint Security PAN INDIA - Contract Skills:Trellix Endpoint Security LOCATION : PAN INDIA Period :Immediate Employment Mode : Contract Description Evaluation Criteria Description Job Title Email security Analyst L2 Skill Name PGP email encryption Personal Qualities - Excellent written and verbal communication skills - Ability to multi-task, prioritize, coordinate, work well under pressure and meet deadlines Key Responsibilities PGP Key Management: Generate, store, and distribute public/private key pairs for email encryption. Manage key lifecycle, including key rotation, revocation, and expiration. Encryption Implementation: Implement PGP encryption on company email systems (e.g., Outlook, Thunderbird).

Were looking for a highly skilled Technical Specialist to lead complex solutions and contribute to excellence across our cloud platforms. In this role, you'll collaborate with global teams, lead automation efforts, and deliver impactful results in a dynamic, agile environment. You have: BE Degree in Computer Science or related technical discipline, or equivalent practical experience and 6-8 years of experience in software design, development, and testing. Experience working with public and private cloud environments, including any of the following platformsAmazon AWS EKS, Red Hat OpenShift, Google GCP GKE, Microsoft Azure AKS, VMware Tanzu, or open-source Kubernetes. Strong Python development skills, with experience in DevOps practices, working in a Jenkins-based environment, and familiarity with test frameworks like Radish and Cucumber. Experience with container technologies (Docker or Podman) and Helm charts. Good to have: Experience with Security Vulnerability Management Platforms or Vulnerability Assessment and Management Systems. Hands-on experience in configuring and managing security vulnerability scans, including container vulnerability scanning (e.g., Anchor), port scanning (e.g., Tenable), and malware scanning (e.g., Symantec Endpoint Protection). Experience in researching solutions to security vulnerabilities and applying hands-on mitigation strategies. Lead & perform development activities of medium/high complexity features. Architect, design, develop, and test scalable software solutions Own and lead feature development and contribute to process improvements Collaborate with peers to resolve technical issues and review design specs Build and automate tests using frameworks like Radish,Cucumber, etc. Operate in an agile environment and bring a proactive, solution-oriented mindset Work effectively in global, distributed teams and adapt seamlessly to remote collaboration

Immediate Openings on Security Consultants with Vulnerability _Contract_Pan India 6+ Years Security Consultants with Vulnerability Pan India Period :Immediate. Type Contract Description 7 + Years Security Consultants with Vulnerability tools exp like Qualys or Tenable (prefer Qualys) and ServiceNow. Experience with Vulnerability tools such as Qualys or Tenable (prefer Qualys) and ServiceNow .

Project description Security is a global organization within Group Technology Infrastructure and Security Engineering. Our services focus on access management for applications and infrastructure, identity management for users, directories, detecting/preventing measures for cyber threats, and exchanging/storing data securely. We provide consolidated and reliable security services that implement secure design principles, and create best-fit solutions. You'll be working as part of our global Infrastructure Vulnerability Management team. As an Tech Business Analyst, you'll play an important role in ensuring the on-going cyber-security of organization. Responsibilities engage with colleagues at all levels to meet business requirements translate business requirements into technical documentation collaborate with technologists to drive delivery conduct as-is and to-be impact analysis contribute to reduction of all security and operational risks, in line with policies and standards identify opportunities to improve our processes, tools and reports Skills Must have Ideally 3 years of experience in applying business analysis techniques, preferably in IT Security or infrastructure projects (Vulnerability Management area preferred). SQL hands-on experience understanding of IP Networks ( OSI model, IP Routing, Firewall, SSL= Ideally 2 years hands-on experience with Vulnerability Management Scanning Solutions Experience managing Business and Technical from initiation to final implementation Experience with data analysis proficiency with Excel is a must, experience with dedicated tools is a plus. Experience with Business Process analysis (documentation of as-is and to-be processes, process improvement). Ability to work independently on assigned tasks and driving them from start to completion. Ability to challenge and propose possible improvements (in various areas, e.g. process, reporting) Ability to explain complex concepts in a clear and concise manner Use to work with stakeholders on different levels of the organization, including managers Use to work in a demanding and variable environment Excellent written and verbal communication skills Fluent in English Nice to have N/A Other Languages EnglishC1 Advanced Seniority Regular

1. Conduct vulnerability scan using Prisma's cloud vulnerability scanning features to identify vulnerabilities in cloud resources . 2. Assess and monitor security posture of Kubernetes clusters, including network policies, pod configurations and container runtime security. 3. Leverage Prisma cloud's automated vulnerability risk scoring to evaluate severity of vulnerabilities 4. Work with teams to prioritize vulnerabilities based on severity, exploitability & potential business impact. 5. Ensure organization's cloud infrastructure complies with industry standards 6. Use Prisma cloud to scan Kubernetes clusters and container registries for known vulnerabilities and misconfigurations 7. Create vulnerability reports that detail discovered vulnerabilities, risk analysis and remediation actions.

Hi All, Greetings of the day! Currently we are having opening for the position of Cybersecurity, Risk Management for one of our leading Investment Banking client in Mumbai location. Experience - 2 to 5 Years Location - Goregaon (Hybrid) Responsibilities - Work on the remediation titles to be actionable good understanding of vulnerabilities - Provide data cleaning rules where needed need understanding of Databases and Scripting - Coordinate with Global counterparts - Automatize reporting in GCSD experience in scripting. - Work closely with regional production security teams to transition scanning & reporting activities - Document SOP for operational teams (tools maintenance and IVM activities) Technical & Behavioral Competencies OWASP methodologies application is a mandatory. 2 - 4 year experience in IT Security minimum University degree, preferably in Computer Science with spec. in IT Security Exceptional communication and advocacy skills, both verbal and written, with the ability to express complex technical issues in an easily understood manner. Curious and highly implicated in IT Security Team player Experience working in an international and complex financial environment, dealing with both business constraints and IT users across countries. Good knowledge of Security scanning tools like Qualys, Nexpose, Appspider is highly appreciated along with good understanding of Kubernetes. Experience in a multi-cultural environment is appreciated. CEH or Any Security certifications are appreciated. Experience in Development languages and scripting is appreciate Interested candidates can share their updated resume at dipti.ghavri@kiya.ai

: Job Title Head of Networks India and Global Product Delivery Assurance Location Pune The Principal Technology Manager (PTM) has responsibility for planning, directing and leading one department, sub-area/group or a major function within a business unit or region. The focus of this role is to support and execute against the vision of the organization in Service Operations. The Principal Technology Manager creates goals and direction for teams and articulates the objectives to senior organizational leadership. The Principal Technology Manager can focus on one or more specialties within the Service Operations Profession. What well offer you 100% reimbursement under child care assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Accident and Term life Insurance and Expectations Global Network Services (GNS) is responsible for the design, engineering, deployment and operation of the Deutsche Bank network. GNS supports all aspects of network infrastructure in over 2000 offices and branches in over 70 countries. The Global Head of Product Delivery Assurance for one of the product domains, Datacenter, Secure Connectivity or Workplace (Campus/Branches) works within the Network Demand and Integration function. This is a new role responsible to ensure the priorities for one of the 3 main product domains are aligned to overall GTI and GNS Strategy as well as within the main delivery functions in Network Engineering, Solution Deployment and Network Automation. This covers the aspects of Business Priorities, Strategy rollout, Technology Roadmap compliance, Platform Automation and Major Projects specific to the Product Areas whether business driven or by technology transformation, throughout the lifecycle. Functionally, the successful candidate will manage services globally. Work includes supporting the definition of the Product Strategy, developing Product Roadmaps and assuring their implementation, based on strategic business understanding and insights as to how new or existing services and technology can improve business outcomes. Support identification of market opportunities, translating those into product design, and driving strategies that result in a successful product launch, rollout and management through its lifecycle. Product Delivery Assurance is responsible to coordinate with engineering, deployment, automation, risk and operational functions to bring the product vision to life. Aspects including delivery capacity across the functions, plans and resolution of challenges. Working with a variety of people across multiple departments and organizations, understanding of the Banks technology at a deep level, collaborating with other product managers, infrastructure leads, architects and Operations, ensuring network products are in compliance with architectural principles, control and regulatory requirements. Strategic development of the product based on (documented) user requirements and plans. Act as a central function for all information of the product, ensure shared understanding of all functions involved, across the lifecycle. Driving the development and use of technical solution into a clear product set, ensuring the business needs of the Bank are constantly met throughout the lifecycle of the product. At any time, there may be multiple generations of the product existing in operation. One of the challenges is to optimize and minimize the number. Ensuring implementations are in line with expected timelines of the business and handover in production and operations. Ensuring development and rollout processes are globally uniform and implementations deliver uniform quality, in particular relative to configuration compliance and security controls. Analysis and optimization of the delivery experience for our customers to ensure that it is the same in each region. In this context, responsibility includes assurance of standardization of processes and procedures across different silos and regions. Automation will be an essential part of all future deployments, particularly in a hybrid cloud infrastructure landscape and the candidate has the task to drive and support the introduction of automation wherever possible. Customers and associated functions (e.g. CSO, CIO, other GTI platforms) advocate into the networks organization. The role will also act as the Head of Network Services in India providing administrative management oversight for all India based resources, reporting into the Head of Technology Infrastructure India (GTI). In this responsibility, the candidate coordinates a group of regional team leaders who cover most aspects of the Global Network Services organization in line with local requirements and strategy. The position is based on Pune, India. Local team leadership and management in a matrixed environment including performance evaluations, compensation discussion and other human resources responsibilities. Skills and Experience A highly proactive self-starting ethos, with strong customer focus, outstanding leadership, collaboration and problem-solving skills. A passion to deliver the very best service to the Banks business. The ideal candidate would be leading globally dispersed team members and has experience as a network engineer and/or technical product manager in this field. Strong leadership skills and experience in large infrastructure organizations, with the ability to effectively manage, influence and deliver in a globally matrixed organization. Minimum of 10 years of relevant experience of managing general networks including security practice (WAN, LAN, Routing, Switching, NMS, Firewalling, Authentication, DDI, modern security concepts such as ZTNA) Minimum of 5 years in leadership position in globally distributed Network Organization or -Product Management, with the ability to navigate in complex organizations. Expert knowledge of core networking or certifications such as CNP, CISSP, cloud relevant certifications. Good level of understanding of a broad range of IT infrastructure technologies, including modern Cloud and Hybrid Cloud infrastructures and methods, automation and orchestration methods and systems/platforms. Good understanding of the relevant networks market segment for on premise as well as cloud infrastructure relative to the core functions, security and management thereof. Excellent interpersonal- and active listening skill to communicate with various stakeholders including senior business representatives and to influence across different functions within and outside of the networks organization. Sensitivity to cultural differences in the global context and adaption of communication style to ensure effective collaboration. Clear English communication skills in written and verbal. Very good ability in problem solving and conflict resolution. Ability to identify and analyze problem, effectively resolve conflicts, find acceptable solutions and drive timely decisions. Proven operational and process experience, including an understanding of optimization- and quality improvement methodologies, day to day workload- and client escalation management. Team building skills, management and development of staff. Fundamental understanding of Project- and Program Management Graduate degree or equivalent experience / what the bank typically demands for such a technology leadership role. How well support you About us and our teams Please visit our company website for further information: https://www.db.com/company/company.htm We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively. Together we share and celebrate the successes of our people. Together we are Deutsche Bank Group. We welcome applications from all people and promote a positive, fair and inclusive work environment.

The Cyber Security role involves working with relevant technologies, ensuring smooth operations, and contributing to business objectives. Responsibilities include analysis, development, implementation, and troubleshooting within the Cyber Security domain.

The Cyber Security E2 role involves working with relevant technologies, ensuring smooth operations, and contributing to business objectives. Responsibilities include analysis, development, implementation, and troubleshooting within the Cyber Security E2 domain.

Job Summary Experienced Vulnerability Management and penetration testing Governance lead will manage a team to oversee the identification, assessment, and remediation of security vulnerabilities across enterprise systems. This role will focus on establishing a proactive security posture, ensuring compliance with industry standards, and driving governance initiatives to mitigate risks effectively along with strong leadership and project management skills. Vulnerability Assessment: Lead regular vulnerability scans and penetration testing across infrastructure, cloud environments and outside-In. Security Baseline: Lead development and implementation of Security Baseline using CIS Benchmarks by determining the systems, applications, and network devices to be secured (e.g., Windows, Linux, Cloud, Docker, Kubernetes). Risk Analysis & Prioritization: Evaluate identified vulnerabilities based on severity, exploitability, and potential business impact. Remediation Planning: Collaborate with IT, security, engineering and entity teams to ensure timely remediation of high-risk vulnerabilities. Governance & Compliance: Develop and enforce security governance frameworks in line with industry standards (e.g., NIST, CIS, ISO 27001, PCI-DSS). Threat Intelligence Integration Leverage global threat intelligence feeds to stay ahead of emerging security threats and vulnerabilities. Security Policy Development: Define policies and best practices for vulnerability management, reporting, and remediation. Automation & Continuous Monitoring: Implement automated vulnerability scanning tools and ensure ongoing security assessments. Incident Response Support: Provide technical guidance in vulnerability-related security incidents and audits. Reporting & Metrics: Establish key risk indicators and provide executive reports on vulnerability trends and remediation progress. Experience: 12+ years in cybersecurity, vulnerability management, or Penetration testing roles. Technical Expertise: Hands-on experience with vulnerability scanning tools (e.g., Qualys, Tenable, Rapid7, Nessus, OpenVAS), penetration testing and threat intelligence platforms. Penetration Testing & Ethical Hacking Experience with tools like Metasploit, Burp Suite, Nmap, and Wireshark for real-world security assessments. Security Framework Knowledge: Strong understanding of NIST, CIS benchmarks, OWASP Top 10, and CVSS scoring models. Compliance Awareness: Familiarity with regulatory standards affecting security risk management. Leadership & Communication: Ability to coordinate with multiple stakeholders, drive security improvements, and articulate risks effectively. Certifications such as CISSP, CISM, CEH, OSCP or equivalent. Experience in cloud vulnerability management (AWS, Azure, GCP). Knowledge of DevSecOps practices and security automation. Reinvent your world.We are building a modern Wipro. We are an end-to-end digital transformation partner with the boldest ambitions. To realize them, we need people inspired by reinvention. Of yourself, your career, and your skills. We want to see the constant evolution of our business and our industry. It has always been in our DNA - as the world around us changes, so do we. Join a business powered by purpose and a place that empowers you to design your own reinvention. Come to Wipro. Realize your ambitions. Applications from people with disabilities are explicitly welcome.

Mandatory Skills: Security Compliance and Framework. Experience8-10 Years.

For more than 40 years, Accelya has been the industry s partner for change, simplifying airline financial and commercial processes and empowering the air transport community to take better control of the future. Whether partnering with IATA on industry-wide initiatives or enabling digital transformation to simplify airline processes, Accelya drives the airline industry forward and proudly puts control back in the hands of airlines so they can move further, faster. Key Responsibilities: Manage all installed systems and infrastructure, including installation, configuration, testing, and maintenance of Linux-based operating systems. Troubleshoot, tune, upgrade, and monitor RedHat and CentOS systems, ensuring system health and performance. Perform OS upgrades for RedHat and CentOS platforms. Mitigate vulnerabilities related to the Linux OS within defined timeframes. Manage user accounts, create, delete, and modify user permissions, and configure/manage LVM, Apache, Samba, and NFS. Ensure system hardening and compliance with CIS standards. Provide support during IT audits and deliver required evidence to auditors. Enforce operating system policies to ensure security, integrity, and efficiency of system resources, applications, and operations. Support datacenter activities, including hardware break-fix coordination with OEM vendors. Address IT operations tickets and incidents in compliance with defined SLAs. Qualifications and Requirements: Certifications: Red Hat Certified Engineer (RHCE) required. AWS certification is a plus. ITIL certification preferred. Technical Skills: Proven working experience as a Linux Administrator in a large-scale environment. Experience with RedHat and CentOS platforms. Proficiency in managing LVM, Apache, Samba, and NFS. Strong understanding of security hardening techniques (CIS standards). Basic scripting knowledge (e.g., Bash, Python). Experience: 5-6 years of experience in Linux system administration, supporting large and complex environments. Hands-on experience with OS patching, upgrades, and vulnerability management. Experience with cloud platforms such as AWS. Familiarity with Virtualization Platform such as VMware. Education: Bachelor s degree in IT, Computer Science, Computer Engineering, or a related field. Other Skills: Excellent communication and interpersonal skills. Strong problem-solving abilities. Familiarity with ITIL processes such as Incident, Change, and Problem Management. Additional Information: The role requires flexibility to work in 24x7 shifts. The candidate must be able to support datacenter operations and address hardware break-fix issues. This is a challenging and dynamic role that offers an opportunity to work with cutting-edge Linux technologies and environments. What does the future of the air transport industry look like to you? Whether you re an industry veteran or someone with experience from other industries, we want to make your ambitions a reality!

NTT DATA is looking for Security Specialist - Cloudflare to join our dynamic team and embark on a rewarding career journey Diagnosing and treating illnesses, medical conditions, and injuries. Ordering, performing, and interpreting diagnostic tests. Collecting, recording, and maintaining patients' information and histories. Prescribing and administering treatments, therapies, medications, vaccinations, and other specialized medical care. Explaining procedures and discussing test results or prescribed treatments with patients and family members. Monitoring patients' conditions and progress. Directing, coordinating, consulting with, and referring patients to nurses, students, assistants, specialists, therapists, and other medical staff. Advising patients, parents, and guardians on diets, activities, hygiene, and disease prevention. Conducting research and remaining up to date on current trends, discoveries, and developments in the field

About our opportunity We are part of the global CIO function tasked to deliver world-class built-in security in Ericsson. Our 100+ employees organization is global with the main hubs located in Sweden (HQ), India, USA, and the Philippines. We are inviting the application for Head of IT Sec AS Attack Surface Management. In this role, you will have the chance to be part of a passionate global team dedicated to fulfilling Ericsson s emerging journey building a strong, resilient, purposed and sustainable IT Security capability. Mandated to protect our company assets from emerging threats and risks, you will together with your colleagues lead the way to develop the future IT Security concepts and technology roadmaps in Ericsson You will Define and execute the enterprise-wide strategy for attack surface management aligned with the broader cybersecurity roadmap. Build and lead a high-performing ASM team covering asset discovery, vulnerability management, cloud security, penetration testing, and red teaming. Partner with business, IT, DevOps, and architecture teams to embed ASM principles in solution design and lifecycle. Oversee continuous asset discovery and inventory (including shadow IT, rogue systems, and exposed services). Manage vulnerability identification, classification, prioritization, and remediation across infrastructure, applications, and cloud environments. Lead API and third-party attack surface monitoring and ensure proactive risk reduction. Drive adoption of ASM platforms, exposure management tools, and threat intelligence integrations. Define KPIs, KRIs, and reporting for ASM effectiveness and risk posture across business units. Ensure alignment with security frameworks (e.g., NIST CSF, ISO 27001, MITRE ATT&CK) and regulatory compliance. Lead red/purple team exercises to validate security posture and feed improvements into the ASM program. Drive coordination with vulnerability management, SOC, architecture, DevSecOps, and compliance teams. Continuously evaluate ASM capabilities through tabletop exercises and exposure simulations. The Skills You Bring: Bachelor s or master s degree in computer science, Information Security, or related field. 10+ years in cybersecurity with at least 4 years in a leadership role managing attack surface or vulnerability management programs. Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or equivalent. Proven experience in managing hybrid IT environments including cloud (AWS, Azure, GCP), SaaS, and on-premises assets. Expertise in tools such as ASM platforms (e.g., CyCognito, Randori, Microsoft Defender ASM), VM platforms (Tenable, Crowdstrike, Qualys, Rapid7), and API security tools. Deep understanding of cloud security controls, CI/CD pipelines, external threat modeling, and exposure management. Familiarity with MITRE ATT&CK, NIST 800-53/CSF, OWASP Top 10, CIS Benchmarks. Strong leadership, stakeholder management, and team development skills. Ability to communicate technical risks and attack surface exposures in business language to executives and board members. Excellent leadership and people management skills, with the ability to inspire and guide a team of security professionals. Why join Ericsson? What happens once you apply? Primary country and city: India (IN) || Gurgaon Req ID: 768823

Req ID: 320092 NTT DATA strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now. We are currently seeking a Technical Analysis Senior Associate : EPM Patch Management / Software Distribution to join our team in Noida, Uttar Pradesh (IN-UP), India (IN). Job Description: Overview: We are seeking a skilled Sr. System Administrator with a strong background in patch management (including 3rd Party Patching & Vulnerability Remediation) to join our dynamic IT team. This role is pivotal in ensuring the stability, security, and optimal performance of our organizations IT infrastructure through effective deployment and management of patches and updates via SCCM & Intune. Responsibilities: SCCM Administration: Configure and maintain System Center Configuration Manager (SCCM) for operating system deployment and patch management. Create and manage SCCM collections, queries, and deployment packages. Monitor SCCM health, troubleshoot issues, and perform regular maintenance tasks. Patch Management: Develop and implement patch management strategies and policies to ensure timely and effective deployment of security patches and updates across all endpoints. Coordinate patch testing, evaluation, and deployment schedules in alignment with business needs and maintenance windows. Stay updated with industry best practices and emerging trends in patch management to enhance system security and reliability. Endpoint Management: Manage endpoints across the organization, ensuring compliance with patch levels and configuration standards. Automate endpoint configuration and software deployments using SCCM to streamline operations and improve efficiency. Documentation and Reporting: Maintain comprehensive documentation of SCCM configurations, processes, and procedures. Generate regular reports on patch compliance, deployment status, and system health for stakeholders and management. Collaboration and Support: Collaborate with IT security teams to prioritize critical patches and vulnerabilities. Provide technical support and guidance to other IT teams and end-users on SCCM-related issues and patch management practices. Qualifications: 3 years of relevant experience or equivalent combination of education and work experience. Demonstrates a good understanding of SCCM Software Updates including 3rd Party Patching and Vulnerability Management Detection & Remediation. In-depth knowledge of configuration management principles and best practices. Preferred skills: SCCM Patching Patch Compliance Reporting 3rd Party Patching; ADR Vulnerability Management, Detection & Remediation Microsoft Endpoint Manager Admin Center Configure Update Ring Defender Security Center Device Compliance Assessment Endpoint Analytics Compliance Policy (Intune) Auto upgrade policy Windows Update for Business

Req ID: 320125 NTT DATA strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now. We are currently seeking a EPM Patch and Image Management Associate - Full Time to join our team in Noida, Uttar Pradesh (IN-UP), India (IN). Responsibilities: SCCM Administration: Configure and maintain System Center Configuration Manager (SCCM) for operating system deployment and patch management. Create and manage SCCM collections, queries, and deployment packages. Monitor SCCM health, troubleshoot issues, and perform regular maintenance tasks. Patch Management: Develop and implement patch management strategies and policies to ensure timely and effective deployment of security patches and updates across all endpoints. Coordinate patch testing, evaluation, and deployment schedules in alignment with business needs and maintenance windows. Stay updated with industry best practices and emerging trends in patch management to enhance system security and reliability. Endpoint Management: Manage endpoints across the organization, ensuring compliance with patch levels and configuration standards. Automate endpoint configuration and software deployments using SCCM to streamline operations and improve efficiency. Documentation and Reporting: Maintain comprehensive documentation of SCCM configurations, processes, and procedures. Generate regular reports on patch compliance, deployment status, and system health for stakeholders and management. Collaboration and Support: Collaborate with IT security teams to prioritize critical patches and vulnerabilities. Provide technical support and guidance to other IT teams and end-users on SCCM-related issues and patch management practices. Qualifications: 8 years of relevant experience or equivalent combination of education and work experience. Demonstrates a good understanding of SCCM Software Updates including 3rd Party Patching and Vulnerability Management Detection & Remediation. In-depth knowledge of configuration management principles and best practices. Preferred skills: SCCM Patching Patch Compliance Reporting 3rd Party Patching; ADR Vulnerability Management, Detection & Remediation Microsoft Endpoint Manager Admin Center Configure Update Ring Defender Security Center Device Compliance Assessment Endpoint Analytics Compliance Policy (Intune) Auto upgrade policy Windows Update for Business

Duration : 12 Months Timings : Full Time (As per company timings) Notice Period : Immediate Joiners Only Experience Required: 6--9 Years (Minimum 5+ Years Relevant in ServiceNow SecOps) Job Role: ServiceNow SecOps - Vulnerability Response SME We are looking for an experienced ServiceNow SecOps professional with deep expertise in Vulnerability Response modules to join our dynamic team. The ideal candidate must have hands-on experience with ServiceNow implementations and integrations in a SecOps environment. Key Responsibilities: - Implement and customize ServiceNow Security Operations modules, especially Vulnerability Response and Configuration Compliance - Develop catalog items, record producers, workflows, and service requests - Configure integrations with vulnerability scanning tools and external systems - Automate processes using scripting and ServiceNow Orchestration - Maintain and manipulate data between ServiceNow and other systems - Monitor application health, compliance, and usage - Perform system/integration testing and lead troubleshooting efforts - Collaborate with clients to analyze their environment and propose optimal solutions Required Skills & Experience : - 5+ years relevant experience in ServiceNow SecOps (Vulnerability Response) - Expertise in ServiceNow ITSM modules (Incident, Problem, Change, CMDB, Asset) - Strong knowledge in CMDB, Discovery, and external integrations - Proficient in Glide, Jelly Scripting, JavaScript, HTML, XML, AJAX - Experience with REST/SOAP integrations, web UI development, and relational databases - Agile methodology experience is a must - Ability to handle client discussions and provide recommendations - ServiceNow Certified Application Developer (preferred) Important Notes : - BGV is Mandatory - No JNTU Candidates

Role & responsibilities We are seeking candidates with strong programming and communication skills interested in switching over to the cyber security domain. Candidates will be trained in cyber security to support our Continuous Security Posture Improvement vision. The successful candidate will be responsible for ensuring the security of the Client's systems by proactively identifying, validating and prioritizing vulnerabilities and providing actionable threat intelligence. This position involves coordinating and leading routine vulnerability management, penetration testing and remediation oversight on Clients systems as required as per industry standards. Any certification in Cybersecurity/Pen testing/ Vulnerability Assessment/ DevSecOps/DevOps and Cloud is a plus. Technical Requirements: The ideal candidate should possess proficiency in one of the following technology stacks: MERN, MEAN, Dot net, Python, Java, or any other relevant stack. Knowledge on Cybersecurity/DevSecOps/DevOps and cloud related technologies will be a plus. Understanding of cybersecurity principles and would be considered advantageous. Experience : We are also open to both freshers and candidates with up to two years of experience, provided they demonstrate strong coding skills.

Job Description: Security Advocacy:Promote security best practices within development teams Act as the primary point of contact between the security team and development teams Ensure that security is considered and integrated at every stage of the SDLC Threat Modeling & Risk Assessment:Work with developers to identify potential security threats and vulnerabilities in applications Conduct risk assessments and prioritize remediation efforts Assist in developing threat models and security requirements for projects Secure Development Practices:Educate and mentor development teams on secure coding practices Review code and provide guidance on how to fix security issues Ensure that security tools (eg, static analysis, dynamic analysis) are integrated into the CI/CD pipeline Vulnerability Management:Assist in identifying, tracking, and remediating vulnerabilities in applications Collaborate with the security team to manage and respond to security incidents related to application security Monitor and report on the status of security issues within development projects Security Training & Awareness:Deliver security training sessions and workshops tailored to developers Stay updated on the latest security trends, threats, and technologies, and share this knowledge with the team Advocate for security-centric culture within the organization Collaboration & Communication:Work closely with security engineers, DevOps, QA, and other stakeholders to ensure alignment on security objectives Facilitate communication between teams to address security concerns effectively Participate in security reviews, audits, and compliance activities as needed Required Qualifications: Experience:Experience working with security teams or in a security-focused role is highly desirable Hands-on experience with secure coding practices, vulnerability management, and security tools Skills:Proficiency in at least one programming language (e g, Java, Strong understanding of common security threats (eg, OWASP Top Ten) and how to mitigate them Experience with security testing tools (eg, SAST, DAST, dependency scanning) Knowledge of DevSecOps practices and integrating security into CI/CD pipelines Familiarity with cloud security principles (AWS, Azure, GCP)

Job Description:- Senior Principal Engineer (Azure architect with DevOps knowledge) 7+ years of experience Preferred Skills and Tools: Microsoft Azure (IaaS, PaaS, Networking, Governance, Cost Management) Azure DevOps, Terraform , AKS , Containers ExpressRoute, Load Balancers, NSGs , Firewalls Azure Sentinel, monitoring and security compliance Strong understanding of hybrid cloud architectures and enterprise integration Responsibilities: Lead the design, implementation, and optimization of Azure-based solutions, ensuring security, scalability, and cost-efficiency. Serve as the technical lead and subject matter expert for Windows and Azure cloud infrastructure, including governance, networking, and platform integration. Collaborate with cross-functional teams (Product Owners, Project Managers, DevOps, and Security) to transform business needs into technical solutions. Manage infrastructure tasks across hybrid platforms including Azure and on-premise systems. Drive incident response, root cause analysis, and resolution coordination for infrastructure and connectivity issues. Implement and maintain monitoring, alerting, and vulnerability management using tools like Azure Sentinel. Perform cost optimization by managing VM sizing, reservations, and resource clean-up. Handle firewall rules, DNS, certificates, ExpressRoute connectivity, and Azure networking (VWAN, VNETs, Load Balancers). Plan and execute OS patching and ensure platform compliance with DTAG/DTICI standards. Lead migration and integration efforts, ensuring minimal disruption and adherence to timelines Maintain and enhance CI/CD pipelines using Azure DevOps, and support project environments (Dev/Prod). Contribute to long-term infrastructure roadmap planning and mentor junior engineers as needed

In This Role, Your Responsibilities Will Be: Emerson Product Vulnerability Tracking: Coordinate with Enterprise Vulnerability Manager for tracking Emerson product vulnerabilities in centralized secure database. Monitor Emerson product vulnerability lifecycle and keep relative databases up to date. 3 rd Party Vulnerability Tracking: Track active vulnerability reported with commonly used 3rd party components Periodically update Enterprise Vulnerability Manager with reports and escalations related to 3rd party component PSIRT Membership: Work closely with PSIRT Manager to provide details related to incident response cases. Assist Governance Leader regarding PSIRT handling Who You Are: You take initiatives and doesn t wait for instructions and proactively seek opportunities to contribute. You adapt quickly to new situations and apply knowledge effectively. Clearly convey ideas and actively listen to others to complete assigned task as planned. For This Role, You Will Need: Compliance Reporting: Generate detailed compliance reports on vulnerabilities. Ensure reports meet international standards and regulatory requirements. Maintain vulnerability dashboard and metrics to share with management on periodic basis. Documentation: Coordinate with Product Security Analyst to develop and maintain vulnerability management documentation, including policies, procedures, and playbooks as designated by Governance Leader. Continuous Improvement: Engage in vulnerability management program reviews and continuous improvement initiatives. Training and Support: Provide guidance and training to Product teams on best practices for vulnerability management and compliance reporting. Preferred Qualifications That Set You Apart: Education: Bachelors degree in Computer Science, Information Security or a related field. Skills: Experience with vulnerability management programs and tools (SBOM, Asset Management, Reporting) Experience: 4+ years of experience in product development, vulnerability management, information security, or a related role Communication: Excellent verbal and written communication skills. Personality Attributes: Strong analytical thinking, collaborative and proactive approach. Our Culture & Commitment to You: . .