1254 Application Security Jobs - Page 17

Detailed job description - Skill Set: Technically strong hands-on Self-driven Good client communication skills Able to work independently and good team player Flexible to work in PST hour(overlap for some hours) Past development experience for Cisco client is preferred.

Description & Requirements Job Description: Introduction: A Career at HARMAN Digital Transformation Solutions (DTS) We re a global, multi-disciplinary team that s putting the innovative power of technology to work and transforming tomorrow. At HARMAN DTS, you solve challenges by creating innovative solutions. Combine the physical and digital, making technology a more dynamic force to solve challenges and serve humanity s needs Work at the convergence of cross channel UX, cloud, insightful data, IoT and mobility Empower companies to create new digital business models, enter new markets, and improve customer experience. About the Role- Senior Penetration Tester with deep expertise in application security . The ideal candidate will be responsible for planning, executing, and documenting comprehensive penetration tests, including advanced manual testing techniques and contribute to strengthening our security posture by recommending practical solution principles and secure coding practices . What You Will Do Conduct comprehensive penetration tests on web/mobile/cloud applications, firmware, and hardware devices. Perform manual security testing beyond automated tools to uncover complex vulnerabilities. Analize systems and architecture to identify security risks and attack surfaces . Use industry-standard tools such as Metasploit, Burp Suite, Nmap, Wireshark, Nessus, and custom scripts for exploitation and reconnaissance. Simulate real-world attack scenarios to evaluate system resilience. Develop and present detailed reports with proof-of-concept (PoC) , risk assessments, and remediation guidance. Collaborate with development and DevOps teams to suggest secure coding practices and fix vulnerabilities at the root. Stay up to date with emerging threats, vulnerabilities, and industry trends. What You Need 8-10 years of hands-on experience in penetration testing (application and hardware). Strong knowledge of OWASP Top 10, SANS 25 , and common vulnerability patterns. Deep familiarity with exploit frameworks (e.g., Metasploit), reverse engineering , and hardware-level attack techniques (e.g., JTAG, UART, SPI). Experience analyzing and testing embedded systems, IoT devices, and network appliances. Ability to explain vulnerabilities to non-security stakeholders with clarity. Proven experience in crafting custom exploits or payloads . Solid understanding of secure development lifecycle (SDLC) and CI/CD pipeline integration. Certifications like OSCP, OSCE, GPEN, or similar are a strong plus. What is Nice to Have Knowledge of containerized environments. Familiarity with secure boot, firmware integrity , and hardware encryption modules . Contribution to bug bounty platforms or CVE submissions. What Makes You Eligible Any offer of employment is conditioned upon the successful completion of a background investigation and drug screen. Dedicated performer & team player with the ability to advocate appropriately for product quality. Relentless learner with a dedication to learn new technologies and test methods Self-driven and Innovative to drive continuous improvements in Test process Resourcefulness in triaging problems and coordinating with multiple teams for issue resolution Strong written, verbal communication and inter personal relationship skills You Belong Here HARMAN is committed to making every employee feel welcomed, valued, and empowered. No matter what role you play, we encourage you to share your ideas, voice your distinct perspective, and bring your whole self with you all within a support-minded culture that celebrates what makes each of us unique. We also recognize that learning is a lifelong pursuit and want you to flourish. We proudly offer added opportunities for training, development, and continuing education, further empowering you to live the career you want. About HARMAN: Where Innovation Unleashes Next-Level Technology Ever since the 1920s, we ve been amplifying the sense of sound. Today, that legacy endures, with integrated technology platforms that make the world smarter, safer, and more connected. Across automotive, lifestyle, and digital transformation solutions, we create innovative technologies that turn ordinary moments into extraordinary experiences. Our renowned automotive and lifestyle solutions can be found everywhere, from the music we play in our cars and homes to venues that feature today s most sought-after performers, while our digital transformation solutions serve humanity by addressing the world s ever-evolving needs and demands. Marketing our award-winning portfolio under 16 iconic brands, such as JBL, Mark Levinson, and Revel, we set ourselves apart by exceeding the highest engineering and design standards for our customers, our partners and each other.

About the Role We are looking for a highly skilled and experienced Frontend JavaScript Developer for the position of Principal Software Engineer who can lead the development and design of high-performance frontend architectures. In this role, you will take ownership of Angular-based frontend systems, establish scalable components and design patterns, and collaborate across teams to ensure cohesive, secure, and performant product delivery. The ideal candidate is someone who can architect complex Angular frontend systems, has a deep understanding of browser rendering, code bundling, optimization strategies, RxJS and reactive patterns, and modern state management, and can also guide junior developers to grow in both technical and collaborative aspects. Candidates with exposure to backend fundamentals using Node.js , Express.js , and WebSocket-based real-time communication are highly preferred for seamless cross-functional collaboration. About Auriga IT Auriga IT is a digital solutions company founded in 2010 by an IIT Roorkee alumnus, based in Jaipur, India. It serves as a digital solutions partner for startups, corporates, government entities, and unicorns. Auriga IT focuses on design, technology, and data capabilities to help organizations launch new businesses and drive digital transformation. Key Responsibilities Lead the architectural design and implementation of scalable, reusable frontend applications using Angular and TypeScript Define and implement frontend architecture flows, maintainable design systems, and component libraries Establish and enforce coding standards, performance budgets, and testing strategies Optimize applications for high performance and scalability, focusing on Core Web Vitals , bundle size reduction, and runtime performance Integrate secure practices: CSP , secure token flows, input validation, XSS/CSRF protections Guide the use of state management solutions ( NgRx , NGXS , RxJS ) based on use case suitability Collaborate with DevOps and backend teams on API integrations, WebSocket implementation (e.g., Socket.io) , deployment, and system health Drive CI/CD processes using tools like GitHub Actions , Jenkins , Docker , and Angular CLI/Webpack Participate in code reviews and mentor junior developers to build both technical and product understanding Conduct root-cause analysis and production-level debugging for critical issues across environments Coordinate with cross-functional teams, including QA, backend, DevOps, product, and design Required Skills and Qualifications Strong command of: Angular , TypeScript , RxJS , JavaScript (ES6+) HTML5 , CSS3 , Tailwind CSS , Angular Material , or SCSS Proven experience in: Designing modular component-based architecture Lazy loading , standalone components , SCAM pattern SSR and pre-rendering with Angular Universal Modern state management with NgRx , NGXS , RxJS selectors/effects RESTful API consumption , error handling, and observable streams Application security best practices ( OAuth2 , JWT , XSS/CSRF protection ) Performance optimization ( on-push change detection , tree shaking, lazy loading, etc.) Dev tooling: Angular DevTools , Chrome DevTools , Lighthouse , Source Map Explorer Hands-on exposure to: CI/CD: GitHub Actions , Jenkins Bundling tools: Webpack , Angular CLI Git branching strategies, GitHub PRs, and version control Testing frameworks: Jasmine , Karma , Cypress. Strong foundation in: Debugging production issues Analyzing frontend logs and performance bottlenecks Translating product vision into long-term architecture strategies Leading Agile sprints and team ceremonies Good to Have Working knowledge of backend tools and APIs using Node.js and Express.js Familiarity with AWS tools: S3 , CloudFront , Lambda , EC2 Exposure to React JS , Vue.js , SvelteKit , or other modern JS frameworks Understanding of micro frontends and federated module architecture Knowledge of GraphQL , design patterns , and caching layers Familiarity with Infrastructure as Code tools: Terraform , Pulumi Awareness of observability tools like Sentry , LogRocket , or Datadog Experience with design systems and tools like Storybook Hands-on with Docker-based local environments Contributions to internal tooling, documentation, or tech blogs Experience with feature flags , A/B testing , or experiment-driven development

Job Description Site Reliability Engineer The Software Integrity Group at Black Duck is looking for a SRE. We are growing and our development environment is a mix of on-prem and cloud-based infrastructure. As a member of the release engineering team, you will have an opportunity to develop tools to automate infrastructure, automate process, develop re-usable libraries and build and release pipelines that use them. The ideal candidate will be a great communicator and a quality focussed innovator. You need to be willing to experiment and to learn quickly so we can be responsive to our stakeholders. Job location: Bangalore, Near Dairy Circle (Hybrid work model) Responsibilities of this Role Uses technical knowledge and creativity to maximize CI/CD throughput by implementing proactive monitoring, scaling and alerting. Maintain and Deploy Continuous Integration/Continuous Delivery Pipelines using GitLab CI, docker and python libraries using Jenkins Pipelines with Groovy Libraries Automate branching, tagging, and SCM administration for multiple projects Maintain, Evolve and Create on-demand Infrastructure Manage docker images for multiple teams Maintain cloud-based Operating System Images for automated deployment Apply OS patches to VM and Docker images as needed Manage Release of VM Images/Virtual Applications into the Amazon and Google Marketplaces Automate Deployment of Products with Ansible, Kubernetes, Docker Swarm/Compose, Terraform Key Qualifications Unix Systems Administration (Solaris, AIX, Linux, Freebsd) Proven understanding of Dynamic and Static linking in software executables Automake, Autoconf, Libtool familiarity Docker/VM image creation and System Administration Build Pipelines with CI/CD automation in Jenkins, Gitlab, Github, Concourse Infrastructure Automation with terraform or ansible Python programming and package creation Production Application Administration and Management Performance Monitoring and Tuning Bash Expertise Preferred Experience Porting Software Between Unix Variants Docker, Docker Compose, Docker Swarm Kubernetes, Helm, Terraform, Ansible AWS / GCP / Azure DevOps Automation Object Oriented Programming C/C++ programing Java programing Prometheus, Grafana, Inclusion and Diversity are important to us. Black Duck considers all applicants for employment without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, military veteran status, or disability.

Hello Visionary! We empower our people to stay resilient and relevant in a constantly changing world. We’re looking for people who are always searching for creative ways to grow and learn. People who want to make a real impact, now and in the future. Does that sound like youThen it seems like you’d make a great addition to our vibrant team. We are looking for a Penetration Tester. This position is available for Chennai Location. You’ll make a difference by: Having experience in performing advanced penetration testing on networks, web & mobile applications, and systems. Having ability to Identify vulnerabilities, exploit weaknesses, and assess the security posture of various assets. Having ability to develop and maintain automated testing tools and scripts. Creating detailed reports outlining findings, risks, and recommended actions. Having Extensive experience in penetration testing, vulnerability assessment, and ethical hacking. Having Proficiency with penetration testing tools such as Metasploit, Burp Suite, Nmap, Nessus, and others. Strong understanding of network protocols, web and mobile applications, and operating systems. Maintaining documentation of testing methodologies, tools, and processes. Knowledge of scripting and programming languages (e.g., Python, Bash). You’ll win us over by: Having An engineering degree B.E/B.Tech/M.E/M.Tech with good academic record. 3-4 Years of relevant experience as Penetration Tester. Having Good command over English language (spoken & written) is non-negotiable. Working closely with business partners to understand their needs and translate them into technical requirements. Communicating findings, risks, and remediation strategies to both technical and non-technical stakeholders. Foster strong relationships with business units to ensure security measures align with business goals. Certification Preferred: Entry level certifications like CEH, eJPT, eWPT. Other certifications like eWPTX, OSCP is an advantage. We’ll support you with: Hybrid working Opportunities. Diverse and inclusive culture. Great variety of learning & development opportunities. Join us and be yourself! We value your unique identity and perspective, recognizing that our strength comes from the diverse backgrounds, experiences, and thoughts of our team members. We are fully committed to providing equitable opportunities and building a workplace that reflects the diversity of society. We also support you in your personal and professional journey by providing resources to help you thrive. Come bring your authentic self and create a better tomorrow with us. Make your mark in our exciting world at Siemens. This role is based in Chennai and is an Individual contributor role. You might be required to visit other locations within India and outside. In return, you'll get the chance to work with teams impacting - and the shape of things to come. We're Siemens. A collection of over 319,000 minds building the future, one day at a time in over 200 countries. Find out more about Siemens careers at

Were proud to be recognized as a Great Place to Work , a testament to our inclusive culture, strong leadership, and commitment to employee well-being and growth. At Tarento, you ll be part of a collaborative environment where ideas are valued, learning is continuous, and careers are built on passion and purpose. Job Summary: We are seeking a skilled Backend Developer with 3 to 5 years of hands-on experience in developing scalable and robust backend systems using Java, Spring Boot, and AWS DynamoDB. The ideal candidate should have a solid understanding of microservices architecture, design principles, and must follow standard coding practices. You will be responsible for building and maintaining the backend services that power our applications. Key Responsibilities: Design, develop, and maintain scalable backend services and APIs using Java and Spring Boot. Work with DynamoDB and other AWS services to build highly available and distributed systems. Collaborate with frontend developers, DevOps, and other team members to deliver high-quality products. Apply solid principles of microservices architecture to design loosely coupled and independently deployable services. Ensure code quality through unit testing, integration testing, and adherence to coding standards. Participate in code reviews and provide constructive feedback to peers. Optimize application performance and troubleshoot production issues as needed. Contribute to architectural discussions and technical decision-making. Required Skills and Qualifications: 3 to 5 years of hands-on experience in Java and Spring Boot application development. Strong experience with NoSQL databases, particularly AWS DynamoDB. Proficiency in designing and implementing RESTful APIs and working with JSON. Solid understanding of microservices architecture and cloud-native application design. Knowledge of design patterns, object-oriented programming, and clean code principles. Experience with tools like Git, Maven/Gradle, and CI/CD pipelines. Familiarity with containerization tools such as Docker is a plus. Excellent problem-solving skills and attention to detail. Preferred Qualifications: Experience with other AWS services (e. g. , Lambda, Cognito, API Gateway, S3). Familiarity with monitoring and logging tools (e. g. , Prometheus, Grafana, ELK stack). Understanding of secure coding practices and application security fundamentals.

Sales Director - Enterprise Sales Are you a seasoned sales leader with a passion for driving growth and forging strategic relationships We are looking for a Director - Enterprise Sales to lead our sales efforts. Location: Mumbai Experience: 10+ years Key Responsibilities: Drive sales growth by nurturing existing client relationships and securing new business within the assigned territory. Leverage strong product knowledge and technical expertise in application and cloud security to address customer challenges and effectively communicate product value. Consistently achieve and exceed performance metrics, delivering compelling presentations and messaging to C-level and V-level executives. Manage the entire sales process from negotiations through contract development, ensuring successful order fulfillment. Collaborate closely with pre-sales, internal sales, and technical support teams to deliver seamless customer experiences. Build and maintain strong relationships with partners, developing a robust pipeline and driving new and upsell opportunities. Candidate Profile: Graduate with a Management Degree in Sales, Business Development, or Marketing. Extensive experience in application and cloud security solutions, with a proven track record of success in sales and business development. At least 10 years of experience in a competitive sales environment, with a history of consistently meeting and exceeding targets. Strong background in developing strategic channel and enterprise security partnerships. Exceptional communication and presentation skills, with the ability to engage effectively with stakeholders at all levels. Experience in full sales cycle management, including responding to RFPs and tenders. If youre a strategic thinker with a talent for building high-value relationships and delivering results, wed love to hear from you! Apply now and help us shape the future of enterprise security! Please write to namitha@careerxperts.com to connect!,

The Applications Development Intermediate Programmer Analyst position is an intermediate level role where you will be responsible for participating in the establishment and implementation of new or revised application systems and programs in coordination with the Technology team. Your main objective will be to contribute to applications systems analysis and programming activities. As an ideal candidate, you should have the following technical skills: - Full stack developer with expertise in .NET, Angular, and Oracle Database - Exposure to JIRA and Agile Methodologies - Familiarity with DevOps practices Your responsibilities will include: - Using your knowledge of applications development procedures and concepts to identify necessary system enhancements - Consulting with users, clients, and technology groups to recommend programming solutions - Analyzing applications for vulnerabilities, conducting testing, and debugging - Serving as an advisor to new or lower-level analysts - Identifying problems, analyzing information, and recommending solutions - Developing and maintaining full-stack applications using Angular and Java - Implementing responsive and user-friendly interfaces - Collaborating with UX/UI designers and participating in code reviews Qualifications required for this role are: - 5-8 years of relevant experience in the Financial Service industry - Intermediate level experience in Applications Development - Strong communication skills and problem-solving abilities - Proficiency in Angular, TypeScript, Java, Spring Framework, MongoDB, and Oracle - Experience with microservices architecture, RESTful API design, Apache Kafka, and frontend performance optimization Preferred qualifications include: - Experience with Angular migration between major versions - Knowledge of state management solutions and containerization technologies - Experience with CI/CD pipelines, DevOps practices, and contributions to open-source projects Education: - Bachelors degree/University degree or equivalent experience Please note that this job description provides a high-level overview of the responsibilities. Other job-related duties may be assigned as required. Citi is an equal opportunity and affirmative action employer.,

Your Impact: We are OpenText-Fortify and we specialize in Enterprise Application Security. Our product helps you manage, measure and integrate security for the entire software lifecycle. What the role offers: Design and implement static analysis algorithms based on recent relevant computer science research and literature. Develop new analysis features and add support for new languages and language features. Apply recent research developments from computer science literature where we can benefit from upgrading our algorithms and program representations. Write specifications for features as they are implemented. Analyse the quality of security finding results and product performance characteristics. Maintain the Fortify Static Code Analyzer code base using good software engineering practices. Collaborate with a project team of other software engineers, security researchers, and quality engineers, to develop reliable, cost-effective, and high-quality solutions. Ensure team alignment with release goals, mentoring junior engineers, and ensures project delivery through effective code-reviews, coordination and technical leadership. What you need to succeed: Master's degree or Ph.D. (preferred) in Computer Science or equivalent, with emphasis on programming languages, static program analysis, compilers, or software security. Solid enterprise Java backend engineering skills Excellent written and verbal communication skills; Ability to effectively communicate design proposals and specifications.

Your Impact As part of the Product Security team, you must have a strong understanding of information security processes across product development lifecycle including secure coding principle, static code / dynamic scanning, application penetration testing, container security, cloud security, supply chain security and threat modelling the applications. You should be familiar with the industry best practices for information security policies and product security. standards. You will have the opportunity to collaborate with the product stakeholders such as product development, cloud operation, system architects, security champions, Global Information Security on the Product security process and customer escalations/support What The Role Offers Please review the below write up and highlight for any corrects Strategic Planning: Align application security initiatives with business goals; refine Product Security processes and tools. Technical Leadership: Stay updated on the latest trends and advancements in application security and apply them to continually improve the organizations security program. Recommend mitigations for vulnerabilities; manage third-party and open-source software risk. Architecture and Design: Review application designs for security best practices. Design, enhance, and advocate for the threat modelling process. Conduct threat modelling and advise product teams on implementing appropriate security controls. Security Reviews: Conduct security assessments throughout the development lifecycle. Collaborate with development teams to remediate security vulnerabilities. Code Review and Analysis: Conduct code reviews and implement automated code analysis tools. Secure Development Practices: Enforce secure coding practices, train developers in secure coding. Incident Response/Customer Escalations: Lead incident response efforts related to application security incidents. Work with cross-functional teams to investigate and remediate security breaches. Policy and Standards: Develop and enforce application security policies; ensure compliance with industry standards. Security Testing: Oversee the implementation of security testing methodologies Conduct Penetration Testing activity for applications/systems Security Awareness: Promote security awareness across engineering; conduct training for development teams on Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST). Collaboration: Collaborate with cross-functional teams, including development, operations, GIS, etc., to integrate security into all aspects of the software development lifecycle and improve security maturity. Documentation and Reporting: Maintain comprehensive documentation of security processes/policies; produce maturity status reports for senior management. Generate reports and conduct peer reviews. Research and Innovation: Stay informed on emerging threats and vulnerabilities, and proactively implement innovative security solutions. Vendor and Tool Evaluation: Evaluate and recommend security tools/technologies; Manage vendor relationships What You Need To Succeed 5 - 8 years of experience with the relevant technologies Bachelors degree in engineering, computer science or equivalent is preferred Industry standard best practices on application security controls, requirements, features, and specifications Application security issues, weaknesses, vulnerabilities, threats, risks, and impacts of exploitation Familiarity with Security Standards and groups (OWASP, PCI, SANS, OSSTMM etc.) Strong vulnerability assessment experience of web, mobile and thick client applications, RESTful & JSON APIs, web servers, databases, and hosting environments (cloud, off-cloud, Containers) Strong experience in manual vulnerability assessment and penetration testing Hands on experience on Application Security tools such as Fortify, WebInspect, Burp, etc. Experience in planning, researching and developing security policies, standards and procedures in line with industry best practices A natural curiosity to learn how things work, and more importantly, how they can be made to work outside of their intended purposes, (i.e. the ethical hacker mentality) Preferably to have application security penetration testing related certifications, (e.g. GWAPT, OSWE, OSCP, GPEN, CPTE, CEH, GWEB, GCIH, etc.) Highly desirable to have general information security related certifications, (e.g. CISSP, CISM, GSEC, CCSP, etc.) Should have excellent team playing and collaborative skills, to work with multiple stake holders. Strong analytical, troubleshooting, writing, communication, and consultancy skills Possess a commitment to quality and a thorough approach to work.

Your Impact: As a Python Developer in the Debricked data science team, you will work on enhancing data intake processes and optimizing data pipelines. You will apply many different approaches, depending on the needs of the product and the challenges you encounter. In some cases, we use AI/LLM techniques, and we expect the number of such cases to increase. Your contributions will directly impact Debrickeds scope and quality and will help ensure future commercial growth of the product. What the role offers: As a Python Developer, you will: Innovative Data Solutions: Develop and optimize data pipelines that improve the efficiency, accuracy, and automation of the Debricked SCA tools data intake processes. Collaborative Environment: Work closely with engineers and product managers from Sweden and India to create impactful, data-driven solutions. Continuous Improvement: Play an essential role in maintaining and improving the data quality that powers Debrickeds analysis, improving the products competitiveness. Skill Development: Collaborate across teams and leverage OpenTexts resources (including an educational budget) to develop your expertise in software engineering,data science and AI, expanding your skill set in both traditional and cutting-edge technologies. What you need to Succeed: 2-4 years of experience in Python development, with a focus on optimizing data processes and improving data quality. Proficiency in Python and related tools and libraries like Jupyter, Pandas and Numpy. A degree in Computer Science or a related discipline. An interest in application security. Asset to have skills in Go, Java, LLMs (specifically Gemini), GCP, Kubernetes, MySQL, Elastic, Neo4J. A strong understanding of how to manage and improve data quality in automated systems and pipelines. Ability to address complex data challenges and develop solutions to optimize systems. Comfortable working in a distributed team, collaborating across different time zones.

About The Role Project Role : Tech Delivery&Op Excellence Practitioner Project Role Description : Understand how to deliver value to clients, and use that commercial competency to apply methods or certifications appropriately. Attention to detail and deep expertise allow them to see inherent risks or improvement opportunities that others may not. Work directly with client teams to ensure a high standard of delivery and operational excellence are met. Must have skills : Governance Risk Compliance (GRC) Good to have skills : NAMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Tech Delivery & Op Excellence Practitioner, you will understand how to deliver value to clients and apply methods or certifications appropriately. Attention to detail and deep expertise allow you to see inherent risks or improvement opportunities that others may not. Work directly with client teams to ensure a high standard of delivery and operational excellence are met. Key responsibility:- Risk and Compliance senior Analyst works with the Application service delivery organization and other compliance related functions to help:- Perform audits/reviews to assess risks in Application development and maintenance service environment- Manage risk in Application development and maintenance service to an acceptable level - Increase the level of awareness of and compliance with policy and process related matters - Support successful completion of various external compliance certification programs and internal compliance assessments- Introduce continual improvement including lessons learned from matters requiring intervention- This successful candidate for this role will be a member of a dedicated team operating a Controls and Compliance function, which will perform audit style reviews of Application Development & Maintenance Services outsourcing engagements covering compliance matters and operational service management and service delivery good practice.Must-Have Skills/ Qualifications:- Minimum of 1-year experience in Auditing principles and practices (sample qualifications*:CISA, ISO 27001 Lead Auditor)- Minimum of 1-year experience in Application security/audit roles in Application development & maintenance service industry(sample qualifications*:EC-Councils CASE (Certified Application Security Engineer), CEH(Certified Ethical Hacker), - Agile Methodology( Certified Scrum Master), DevOps Certification, CMMI for Development- Knowledge of secure SDLC models, secure coding standards, OWASP Top 10, threat modeling, SAST(Static Application security testing), DAST (Dynamic Application security testing), single sign on, Encryption - Minimum of 1-year experience in Operational compliance requirements)- Contract Management / Service Reporting(including Service Level Agreements and Operational Level Agreements)- Risk management or assessment (sample qualification*:CRISC)- Knowledge of cloud environment and services (sample qualification*:Microsoft Azure/AWS/Google Certifications)- Team and stakeholder managementNice-to-Have Skills/ Qualifications:- Data privacy and protection (sample qualifications*:CIPM, CIPT, CIPP)- CISSP*, CISM*, CISA*, CCSK*, CCSP*- SOC1 and SOC2 (SSAE16 / ISAE3402) awareness- Business Continuity and Disaster Recovery awareness (ISO 22301) Professional Attributes:1:Good communication2:Teamwork3:Problem Solving Capabilities4:Work Planning and Management 5:Quick Learner6:Eager to take on responsible task7:Dedicated and Focused Educational Qualification:1:MBA-Information Security/ IT2:BE/B-Tech with CS/IT/related domain3:BSc- IT Additional Information:(i.e., travel, overtime %)1:Occasional within country travel 2:Flexibility in working hours Qualification 15 years full time education

What the Role Offers: Design, develop new product features using Microservices, Golang, File System and could. Work on cloud storage like AWS, Azure, and Google Cloud Analyze technical requirements, design applications, identify new technologies, and integrate solutions into existing product. Responsible for successful completion of code deliverables within the project Develop prototypes and do live code demos. Work with agile team to ensure required information for testing is provided. Conduct peer code-reviews to ensure adherence to patterns and standards. Promote a practice of learning by being available to mentor other developers. Participate in the user story grooming and estimation sessions, t-shirt sizing to refine product backlog. Development of software in an agile development environment Involved in the various phases of the SDLC, secure coding and reviews. What you need to succeed: Bachelors or masters degree in computer science, Information Systems, or equivalent. Experience in full stack development with Golang and JavaScript frameworks, and knowledge web technologies. Experience in Docker, Microservices, Web Development, and deployment. Experience in working with Cloud storage, AWS, Azure, Google Cloud. Knowledge of databases, LDAP and security. Knowledge of Operating System Linux or Windows. Experience with security tools, Static Analysis tools. Knowledge of threat modelling Excellent problem solving and analytical thinking skills. Good interpersonal, written, and verbal communication skills A strong desire to develop your career through self-learning and scheduled personal development time. ONE LAST THING: You are persistent and inquisitive. You have to understand why things are happening the way they are. You are determined to understand cyber attack techniques at a very detailed level. You are a self-starter who is able to work with minimal management, however have strong collaboration and interpersonal skills to work together with several other professionals from other information security fields. Youre a creative thinker who wants to answer the question, Why? Your workstation is a pyramid of monitors that you can't take your eyes off of at the risk of missing something. You have a desire to learn new technologies. Your sense of humor, passion and enthusiasm shines through in everything you do.

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Saviynt Identity Platform Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education" Summary :As a Security Lead, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. You will also document the implementation of the cloud security controls and transition to cloud security-managed operations. Roles & Responsibilities:- The candidate will be responsible for implementation of Saviynt IGA architecture- The role also involves troubleshooting and resolving issues within the team and collaborating with Saviynt support to ensure seamless operations and system efficiency. Ensuring quality and efficiency throughout the project lifecycle is key.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams. Professional & Technical Skills: - Must Have Skills: Proficiency in Saviynt IGA.- Strong knowledge of Saviynt IGA architecture, with hands-on experience in application onboarding, connector configurations, and workflow implementation. Solid experience in design discussions, creating design documents, and performing unit testing- Ability to troubleshoot and resolve technical issues within the team and in collaboration with Saviynt support.- Proficiency in Segregation of Duties (SOD), certifications, and custom JARs. Familiarity with identity governance processes, role management, and security protocols is essential. Experience in troubleshooting and optimizing complex systems is a must.- Detail-oriented, strong problem-solving abilities, excellent collaboration and communication skills, proactive, and able to work effectively in team-oriented environments. Focused on delivering projects on time and to specification. Additional Information:- The candidate should have a minimum of 4 years of experience in Saviynt IGA. Overall IT work experience should be 5 years or above- A 15 years full time education is required.- Bachelors degree in Computer Science, Information Technology, or a related field. Certifications are a plus." Qualification 15 years full time education

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Delivery Excellence Good to have skills : NAMinimum 18 year(s) of experience is required Educational Qualification : 15 years full time education Summary :Should be able to manage the delivery for the large client with multiple skills and different verticals. Should be able to lead large number of teams.As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to document the implementation of cloud security controls and facilitate the transition to cloud security-managed operations, ensuring that all security measures align with organizational objectives and compliance standards. You will engage in discussions to refine security strategies and provide guidance on best practices, contributing to a secure and efficient cloud environment. Roles & Responsibilities:- Expected to be a Subject Matter Expert with deep knowledge and experience.- Should have influencing and advisory skills.- Engage with multiple teams and responsible for team decisions.- Expected to provide solutions to problems that apply across multiple teams, and provide solutions to business area problems.- Facilitate workshops and training sessions to enhance team understanding of cloud security practices.- Continuously assess and improve the cloud security framework to adapt to evolving threats and business needs. Professional & Technical Skills: - Must To Have Skills: Proficiency in Delivery Excellence.- Strong understanding of cloud security principles and frameworks.- Experience with risk assessment and management in cloud environments.- Ability to design and implement security controls tailored to cloud architectures.- Familiarity with compliance standards and regulations related to cloud security. Additional Information:- The candidate should have minimum 18 years of experience in Delivery Excellence.- This position is based at our Bengaluru office.- A 15 years full time education is required. Qualification 15 years full time education

About The Role Project Role : Application Designer Project Role Description : Assist in defining requirements and designing applications to meet business process and application requirements. Must have skills : Workday Talent Management Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : Mandatory to have Workday Primary skill Related certification15 years full time education Summary :As an Application Designer, you will assist in defining requirements and designing applications to meet business process and application requirements. You will play a crucial role in shaping the functionality and usability of applications to enhance business operations. Roles & Responsibilities:- Expected to be an SME- Collaborate and manage the team to perform- Responsible for team decisions- Engage with multiple teams and contribute on key decisions- Provide solutions to problems for their immediate team and across multiple teams- Lead the design and development of application features- Conduct regular team meetings to ensure project progress- Review and optimize application design and functionality Professional & Technical Skills: - Must To Have Skills: Proficiency in Workday HCM Security, Mandatory to have Workday Primary skill Related certification- Strong understanding of application security principles- Experience in designing and implementing security protocols- Knowledge of role-based access control- Familiarity with data encryption techniques Additional Information:- The candidate should have a minimum of 7.5 years of experience in Workday HCM Security- This position is based at our Bengaluru office- A mandatory Workday Primary skill Related certification is required Qualification Mandatory to have Workday Primary skill Related certification15 years full time education

About The Role Project Role : Security Delivery Lead Project Role Description : Leads the implementation and delivery of Security Services projects, leveraging our global delivery capability (method, tools, training, assets). Must have skills : Security Delivery Governance Good to have skills : NAMinimum 18 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Delivery Lead, you will lead the implementation and delivery of Security Services projects, leveraging our global delivery capability (method, tools, training, assets). Roles & Responsibilities:- Expected to be a SME with deep knowledge and experience.- Should have influencing and Advisory skills.- Engage with multiple teams and responsible for team decisions.- Expected to provide solutions to problems that apply across multiple teams, and provide solutions to business area problems.- Lead the planning, execution, and monitoring of Security Services projects.- Collaborate with cross-functional teams to ensure project success.- Provide guidance and mentorship to junior team members.- Develop and implement strategies to enhance Security Delivery Governance. Professional & Technical Skills: - Must To Have Skills: Proficiency in Security Delivery Governance.- Strong understanding of security frameworks and compliance standards.- Experience in risk management and mitigation strategies.- Knowledge of security technologies and tools.- Good To Have Skills: Security certifications such as CISSP or CISM. Additional Information:- The candidate should have a minimum of 18 years of experience in Security Delivery Governance.- This position is based at our Pune office.- A 15 years full time education is required. Qualification 15 years full time education

About The Role Project Role : Application Designer Project Role Description : Assist in defining requirements and designing applications to meet business process and application requirements. Must have skills : Workday Data Mapping & Conversions Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : Mandatory to have Mandatory Skill Related certification15 years full time education Summary :As an Application Designer, you will assist in defining requirements and designing applications to meet business process and application requirements. Your typical day will involve collaborating with stakeholders to understand their needs and translating them into functional design solutions. Roles & Responsibilities:- Expected to be an SME- Collaborate and manage the team to perform- Responsible for team decisions- Engage with multiple teams and contribute on key decisions- Provide solutions to problems for their immediate team and across multiple teams- Lead design discussions and provide innovative solutions- Conduct regular reviews to ensure project alignment with business goals Professional & Technical Skills: - Must To Have Skills: Proficiency in Workday Data Mapping & Conversions, Mandatory Skill Related certification- Strong understanding of application security principles- Experience in designing and implementing security solutions for Workday Data Mapping & Conversions- Knowledge of role-based access control and data security- Hands-on experience in configuring security policies and permissions Additional Information:- The candidate should have a minimum of 7.5 years of experience in Workday HCM Security- This position is based at our Bengaluru office- A Mandatory Skill Related certification is required Qualification Mandatory to have Mandatory Skill Related certification15 years full time education

About The Role Project Role : Application Designer Project Role Description : Assist in defining requirements and designing applications to meet business process and application requirements. Must have skills : Workday Business Assets Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : Mandatory to have Workday Primary skill Related certification15 years full time education Summary :As an Application Designer, you will assist in defining requirements and designing applications to meet business process and application requirements. You will play a crucial role in shaping the functionality and usability of applications to enhance business operations. Roles & Responsibilities:- Expected to be an SME- Collaborate and manage the team to perform- Responsible for team decisions- Engage with multiple teams and contribute on key decisions- Provide solutions to problems for their immediate team and across multiple teams- Lead the design and development of application features- Conduct regular team meetings to ensure project progress- Review and optimize application design and functionality Professional & Technical Skills: - Must To Have Skills: Proficiency in Workday HCM Security, Mandatory to have Workday Primary skill Related certification- Strong understanding of application security principles- Experience in designing and implementing security protocols- Knowledge of role-based access control- Familiarity with data encryption techniques Additional Information:- The candidate should have a minimum of 7.5 years of experience in Workday HCM Security- This position is based at our Bengaluru office- A mandatory Workday Primary skill Related certification is required Qualification Mandatory to have Workday Primary skill Related certification15 years full time education

About The Role Project Role : Application Developer Project Role Description : Design, build and configure applications to meet business process and application requirements. Must have skills : CloudSense Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As an Application Developer, you will design, build, and configure applications to meet business process and application requirements. Your typical day will involve collaborating with teams to develop innovative solutions and contribute to key decisions. Roles & Responsibilities:- Expected to be an SME- Collaborate and manage the team to perform- Responsible for team decisions- Engage with multiple teams and contribute on key decisions- Provide solutions to problems for their immediate team and across multiple teams- Lead the team in implementing best practices for application development- Stay updated on industry trends and technologies to enhance application performance Professional & Technical Skills: - Must To Have Skills: Proficiency in CloudSense- Strong understanding of cloud computing principles- Experience in designing and developing scalable applications on cloud platforms- Knowledge of DevOps practices for continuous integration and deployment- Hands-on experience with cloud-based application security measures Additional Information:- The candidate should have a minimum of 5 years of experience in CloudSense- This position is based at our Pune office- A 15 years full-time education is required Qualification 15 years full time education

Provide a brief description of the overall purpose of the position, why this position exists and how it will contribute in achieving the teams goal. Responsibilities Direct Responsibilities Direct Responsibilities - To perform Penetration testing (Gray Box and/or Black Box) for Web applications; Thick Client, API, and mobile applications. - To understand the applications security requirements and identify & document the scope of the test - Ensure execution of the documented security scenarios for the application under test. - Document and report all findings - Collaborate with the developers to help them understand the vulnerabilities reported in application - Escalate issues to the local management and onshore stakeholders in case it affects the testing progress - Ensure processes for the project is followed for the assessments Note : - Optional, experience in Source Code Assessment (SCA)/SAST, Mobile Testing Contributing Responsibilities Technical & Behavioral Competencies - Clear understanding of OWASP Top 10 - application security risks - Tools/OS: Burp Suite, OWASP ZAP, Kali Linux - Manual Security Testing & Analysis, Security Test Designing - Excellent Inter personal and presentation skills - Strong in verbal and written communication - Good analytical skills - Strong Time Management - Must be flexible, independent, self-motivated - Team player Specific Qualifications (if required) CSSLP/CEH or equivalent certification preferred Skills Referential Behavioural Skills : (Please select up to 4 skills) Choose an item. Choose an item. Choose an item. Choose an item. Transversal Skills: Choose an item. Choose an item. Choose an item. Choose an item. Choose an item. Education Level: Bachelor Degree or equivalent Experience Level At Least 3 years Other/Specific Qualifications (if required) -

The BNP Paribas Fortis Governance, Risk and Compliance team supports IT and Business Units to develop adequate solutions on operational IT and Cyber risk management practices, with specific focus on Information Security. Their main missions are: Identify operational IT and Cyber risks on assets/applications, projects and 3rd-parties. Advice, consult, monitor and report on risk treatment in order to reduce the overall risk exposure of IT and Business at an optimized cost. Elaborate and manage the implementation of a flexible strategy to reduce IT and Cyber risks in accordance with the IT and Information Security policies of BNP Paribas Group. Responsibilities Direct Responsibilities Instruct the 5 European Bank Authority ICT risks categories and to follow them throughout TPTRM assessments Perform third-party technology risk assessments to help beneficiaries/contract owners identify and evaluate complex business and technology risks related to their third parties, and provide recommendations for managing those risks Provide periodic status updates including potential risks and delays to the project delivery to beneficiary project manager, conduct workshops wherever necessary contribution to the definition and review of contractual clauses. Work with Procurement team in adding or amending any IT related clause in the contract Assist in the selection and tailoring of third-party technology risk management approaches, methods and tools to support delivery of third-party cyber risk assessment services Review thoroughly Asset classifications and pre-existing asset related risks & control responses ensuring sync with TPTRM assessments responses Identify key actors for decision making according to flagged risk families Apply group key procedures, templates, to carry out risks activities Demonstrate knowledge in one or more of the following cyber risk domains, including: Security Governance and Management, Security Policies and Procedures, Application Security Controls, Access Controls, Network Security Operations, Security Architectures, Identity Management, Disaster Recovery & Business Continuity, Incident Response, Risk Management, Privacy and Data Protection, Encryption. Contributing Responsibilities As part of its defined missions, the TPTRM Analyst/Consultant is responsible for executing - or supporting the execution of TPTRM Assessments involving - IT operational risks identification, assessment, documentation, treatment, monitoring and closing Document TPTRM risks, assess inherent and residual risks in the activity Analyze the root cause and the business impact Work towards strong mitigation plan and the execution of the same Provide support to beneficiary/contract owner to implement actions to reduce the residual risk Report to P&P/ Project Manager about key TPTRM risks information, warning, or alert Contribute to various exercises and reviews on controlling and assessing TPTRM risks As a TPTRM Analyst/ Consultant review if all the mandatory prior-assessments are properly completed if not take necessary actions towards compliance Define and document a methodology, use groups tool to manage and document assessments and outcomes Facilitate the business / sponsor / beneficiary / SME decision-making with deep analysis based on relevant flagged risk families Provide support to provider teams/ contract owners and coordinate/ assist to ensure proper assessments are done Manage TPTRM inventory with follow-up tracker management Monitor the process with specific and group standard indicators to steer the activity As an IRM team member this includes all or part of the following activities: Execute as Second Line of Defense: Oversight of risk management and compliance, providing support and guidelines to operational teams. Contribute to process improvement, upkeep with new policies, regulations, standards & guidelines Contribute to IRM IT risk awareness actions Technical & Behavioral Competencies Functional Skills Experience in IT Risk and Cyber Security domains in a financial institution demonstrating a high-level of commitment and self-motivation. Experience in the Finance & IT industry with a strong exposure to IT Operations, Application Security, and/or network administration, IPS Strong demonstrated knowledge of Risk & Compliance, cybersecurity, cyber risk, cyber threats, Third Party Technology Risk Management/ Vendor assessments Risk knowledge and awareness of risks combined with enthusiasm and a genuine interest in the role of Risk Assessment, Third Party Technology Risk Assessment, Risk Analysis in business and providing Risk Opinion as a subject matter expert. Working knowledge of global regulations, frameworks and standards(ISO, NIST, COBIT, PCI-DSS, HIPAA) and conversant in the tactics, techniques and procedures used by Risk adversaries. Demonstrates a calm professional approach, with a good understanding of delivery within time constraints and the need to escalate/inform departmental management as appropriate. IT knowledge Technical : - Good understanding of organizations and IT Businesses - Good technical understanding of infrastructures and IT Security Productions and Systems - Experience in vulnerability management and penetration testing - - IT risk /Third Party risk analysis and management methods and should have worked on Risk Management Tools like RSA Archer, Metric stream, ServiceNow etc - Knowledge of Cyber Resilience, IT continuity and business continuity - GRC - Governance, Risk Management and Compliance Management. - Firewall and Internet technologies; Cloud Security, Banking Tools & Technologies. - Secure access control mechanisms; Encryption and Key management technics Behavioral : - Strong Communication, Analytical and problem-solving skills. - Proven organizational skills with excellent multi-tasking, result oriented and prioritization skills - Good documentation and reporting skills - Ability to work independently - Strong communication and interpersonal skills, able to communicate and relate easily with IT, Finance and back-office users - Good communication, technical writing/diagramming skills - Attention to detail and accuracy - Ability for creativity and innovation - Self-discipline Specific Qualifications (if required) - One or more Industry-recognized information Security certifications such as CISSP, CISA, GCCC, CISM, CEH, CRISC, OSCP or Security+. - IT Security tools like Firewalls, IPS, WAF, Endpoint protection, Network security, etc. - IT Auditing (ISO27001/2, NIST 800 Series, ISO27005, ISO42001) - Regulatory Compliance - MBA in Finance/Systems/IT, Masters in Technology, Bachelor of Commerce, Masters in Commerce, Bachelor in Science, Bachelor in Technology Skills Referential Behavioural Skills : (Please select up to 4 skills) Communication skills - oral & written Attention to detail / rigor Ability to deliver / Results driven Creativity & Innovation / Problem solving Transversal Skills: Analytical Ability Ability to manage a project Ability to understand, explain and support change Ability to develop and adapt a process Ability to anticipate business / strategic evolution Education Level: Bachelor Degree or equivalent Experience Level At least 5 years Other/Specific Qualifications (if required)- CISA/CISSP/CISM/CRISC -

About The Role Job Title Security Delivery Senior Analyst Management Level: 10 - Senior Analyst Location: Mumbai Must have skills: IT Security Good to have skills: Job Summary : Conducting Risk assessment of the requests that come in. Understanding the security exception. Analyzing the requests and working with various stakeholders Creating presentations of the summarizations Working with various technology teams. Roles & Responsibilities: IS Exceptions Sr. Analyst is primarily responsible for processing IS exceptions requests on time and with quality with limited supervision. Professional & Technical Skills: Working knowledge on any of the following Network security concepts and / or Knowledge in Authentication, Authorization, encryption Good analytical skills. Good communication and collaboration skills. Good knowledge of MS Office applications (Excel; Word; Power Point). Should have good understanding of information security risk management. 1. 3+ years of experience in Infrastructure \ Application Security Domain or Information security risk management 2. Should have clear understanding / some working experience in conducting and Information security risk assessment in any of the domains (Infrastructure / Application / CDP) 3. Good Technical knowledge and management experience in any one of the following technologies a. Network security (Firewall \ IDS \ IPS Management) b. Security Incident and Event Management c. WebSecurity Gateways - Websense \ Bluecoat \ IronPort d. End Point Security Management Symantec \ McAfee \ Microsoft FEP \ Trend Micro Additional Information: About Our Company | AccentureQualification Experience: Minimum 4+ year(s) of experience is required Educational Qualification: B.Tech/BE

About The Role Project Role : Application Designer Project Role Description : Assist in defining requirements and designing applications to meet business process and application requirements. Must have skills : Workday Recruiting Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : Mandatory to have Workday Primary skill Related certification15 years full time education Summary :As an Application Designer, you will assist in defining requirements and designing applications to meet business process and application requirements. You will play a crucial role in shaping the functionality and usability of applications to enhance business operations. Roles & Responsibilities:- Expected to be an SME- Collaborate and manage the team to perform- Responsible for team decisions- Engage with multiple teams and contribute on key decisions- Provide solutions to problems for their immediate team and across multiple teams- Lead the design and development of application features- Conduct regular team meetings to ensure project progress- Review and optimize application design and functionality Professional & Technical Skills: - Must To Have Skills: Proficiency in Workday Recruiting Primary skill Related certification- Strong understanding of application security principles- Experience in designing and implementing security protocols- Knowledge of role-based access control- Familiarity with data encryption techniques Additional Information:- The candidate should have a minimum of 7.5 years of experience in Workday - Workday HCM/Workday Recruiting- This position is based at our Bengaluru office with flex- A mandatory Workday Primary skill Related certification is required Qualification Mandatory to have Workday Primary skill Related certification15 years full time education

We are looking forward to hire SAP Security Professionals in the following areas : SAP Security Years of Experience - 7 to 9 years As a Security Analyst, you will work on an SAP Security team along with other Security Analysts to analyze, build and maintain the Enterprise SAP Security Roles in a quality manner to support multiple divisions of the business within John Deere. This level operates with moderate autonomy on a team, with access to senior team members or Scrum Master when guidance is needed. In addition, you will; Administer (Create/Maintain) SAP Security Roles Participate and follow documented Change Management Processes Engage in peer reviews of SAP Security role Changes Use Information Security tools for analysis of Information Security events and data with some understanding of the interactions between access patterns and expected outcomes Deliver the basic tasks and activities related to cyber security and get exposure to information security patterns with some complexity Understand and apply current Information Technology (IT) security policies to ensure adherence to standards established by GSEC SAP security Understand and apply knowledge of security system parameters and tables utilized within existing security tools and various applications Follow routine techniques and processes to resolve administrative issues. Use analytical skills to resolve low to moderate level security issues Take part in projects directly related to existing processes and tools Follow processes and actively look for ways to improve the process Perform some decision making when requests fall outside of the normal processes Work on tasks and projects that are low to moderate risk and of low to moderate complexity in nature Supports SoD/SOX reviews and initiatives Nice to have : Application Security ; Power BI ; SQL Other Skills - SAP Security, GRC, Access and RisK management Our Hyperlearning workplace is grounded upon four principles Flexible work arrangements, Free spirit, and emotional positivity Agile self-determination, trust, transparency, and open collaboration All Support needed for the realization of business goals, Stable employment with a great atmosphere and ethical corporate culture