1254 Application Security Jobs - Page 29

We are seeking a highly skilled Software Engineer to join our dynamic and collaborative team as an individual contributor. The role involves responsibilities across the full software development lifecycle, including development, integration, testing, and deployment of our products. This position is based in Bangalore and requires close collaboration with our team located in Burlington, MA. The Software Engineer will report directly to the Development Manager. The ideal candidate is a self-driven with proven experience in Java development. They possess excellent verbal communication skills, strong interpersonal abilities, and demonstrate a positive and collaborative attitude. Responsibilities include, but are not limited to: Design, develop, and test high-quality Java EE software products and libraries. Conduct research on emerging technologies and contribute innovative ideas to enhance product development. Act as an individual contributor within an agile team environment. Investigate, diagnose, troubleshoot, and implement solutions to resolve system issues effectively. Translate functional requirements into technical specifications to meet business objectives. Key Qualifications: Bachelors degree in Computer Science, Computer Engineering, or a related field. A minimum of 5 years of programming experience with modern object-oriented and/or dynamic languages such as Java and Python. Experience with cloud platforms including Google Cloud Platform, Amazon Web Services, and Microsoft Azure. Proficiency in frameworks and technologies including Spring, RESTful web services, Tomcat, and Redis. Experience with testing tools such as TestNG, Mockito, and JUnit. Demonstrated hands-on experience in developing complex, web-based systems. Strong commitment to agile software development principles and practices. Exceptional problem-solving skills and the ability to communicate technical concepts effectively. Strong communication skills with the ability to provide clear, step-by-step technical guidance. Proven ability to work collaboratively within a team environment as well as independently to solve problems. Experience in database design and a solid understanding of SQL programming. Nice-to-Have Qualifications: Familiarity with relational databases, particularly PostgreSQL. Hands-on experience with front-end frameworks such as React and state management libraries like Redux. Proficiency with Spring or similar inversion of control (IoC) containers. Experience with container technologies (e.g., Docker, Kubernetes, Google Container Engine, Pivotal Cloud Foundry, OpenShift) Experience with performance testing and measurement of RESTful APIs, SQL queries, and algorithms. Inclusion and Diversity are important to us. Black Duck considers all applicants for employment without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, military veteran status, or disability

Black Duck Software, Inc. helps organizations build secure, high-quality software, minimizing risks while maximizing speed and productivity. Black Duck, a recognized pioneer in application security, provides SAST, SCA, and DAST solutions that enable teams to quickly find and fix vulnerabilities and defects in proprietary code, open-source components, and application behavior. With a combination of industry-leading tools, services, and expertise, only Black Duck helps organizations maximize security and quality in DevSecOps and throughout the software development life cycle. We are seeking a passionate and experienced Senior Software Engineer to join our dynamic team. In this role, you will be at the forefront of innovation, working on cutting-edge projects that leverage your expertise in Java, Node.js, UI frameworks and cloud platform tools. You will collaborate closely with cross-functional teams to design, develop, and maintain high-quality software solutions that meet the evolving needs of our clients and stakeholders. Qualifications: BS in Computer Science/Software Engineering or an equivalent degree 3+ years of experience building enterprise software applications Expertise in Java development, Node.js and Cloud platforms. Experience with at least one of the modern UI frameworks like React, Angular or Ember Familiarity with Open API specifications and REST APIs, with the ability to design and implement scalable and secure APIs. Proficiency with Docker and Kubernetes (K8S) for containerization and orchestration, enabling the deployment and management of applications in a cloud environment Ability to solve problems using efficient algorithms, with a growth mindset and a willingness to tackle complex challenges. Solid understanding of performance and scalability issues in distributed services Experience with Microservices architecture. Experience with using PostgreSQL database for storing and queuing large sets of data Understanding of agile application development methodologies, with experience working in agile teams to deliver software iteratively and incrementally. Knowledge of application security principles and practices is a plus, helping to ensure our software solutions are secure and resilient against threats. Key responsibilities: Design, Develop, and Maintain Applications: Utilize your deep knowledge of Java and React to create robust, scalable applications. Your work will involve writing clean, efficient, and maintainable code. Implement and Maintain REST APIs: Develop and manage RESTful APIs and Open API specifications to ensure seamless integration and communication between services. Interservice Communication: Use gRPC and RabbitMQ to facilitate efficient and reliable interservice communication, ensuring our systems are highly responsive and resilient. Deploy and Manage Applications: Leverage Docker and Kubernetes (K8S) to deploy, manage, and scale applications in a cloud environment, ensuring high availability and performance. Agile Development: Participate actively in agile development processes, including sprint planning, daily stand-ups, and retrospectives, to deliver high-quality software in a timely manner. Collaboration: Work closely with team members, including developers, testers, and product managers, to ensure the successful delivery of software projects. Your ability to communicate effectively and work as part of a team is crucial. Continuous Learning: Stay up to date with the latest technologies and industry trends. Apply new knowledge to improve our products and processes continuously Nice to have: Experience with other SQL databases and understanding of object-relational mapping frameworks Experience programming in Go and/or Python Experience developing with NoSQL database technologies (e.g., Mongo) and Message Queues (e.g.: Kafka and RabbitMQ)

Black Duck Software, Inc. helps organizations build secure, high-quality software, minimizing risks while maximizing speed and productivity. Black Duck, a recognized pioneer in application security, provides SAST, SCA, and DAST solutions that enable teams to quickly find and fix vulnerabilities and defects in proprietary code, open-source components, and application behavior. With a combination of industry-leading tools, services, and expertise, only Black Duck helps organizations maximize security and quality in DevSecOps and throughout the software development life cycle. We are seeking a passionate and experienced Senior Software Engineer to join our dynamic team. In this role, you will be at the forefront of innovation, working on cutting-edge projects that leverage your expertise in Java, Node.js, UI frameworks and cloud platform tools. You will collaborate closely with cross-functional teams to design, develop, and maintain high-quality software solutions that meet the evolving needs of our clients and stakeholders. Qualifications: BS in Computer Science/Software Engineering or an equivalent degree 5+ years of experience building enterprise software applications Expertise in Java development, Node.js and Cloud platforms. Experience with at least one of the modern UI frameworks like React, Angular or Ember Familiarity with Open API specifications and REST APIs, with the ability to design and implement scalable and secure APIs. Proficiency with Docker and Kubernetes (K8S) for containerization and orchestration, enabling the deployment and management of applications in a cloud environment Ability to solve problems using efficient algorithms, with a growth mindset and a willingness to tackle complex challenges. Solid understanding of performance and scalability issues in distributed services Experience with Microservices architecture. Experience with using PostgreSQL database for storing and queuing large sets of data Understanding of agile application development methodologies, with experience working in agile teams to deliver software iteratively and incrementally. Knowledge of application security principles and practices is a plus, helping to ensure our software solutions are secure and resilient against threats. Key responsibilities: Design, Develop, and Maintain Applications: Utilize your deep knowledge of Java and React to create robust, scalable applications. Your work will involve writing clean, efficient, and maintainable code. Implement and Maintain REST APIs: Develop and manage RESTful APIs and Open API specifications to ensure seamless integration and communication between services. Interservice Communication: Use gRPC and RabbitMQ to facilitate efficient and reliable interservice communication, ensuring our systems are highly responsive and resilient. Deploy and Manage Applications: Leverage Docker and Kubernetes (K8S) to deploy, manage, and scale applications in a cloud environment, ensuring high availability and performance. Agile Development: Participate actively in agile development processes, including sprint planning, daily stand-ups, and retrospectives, to deliver high-quality software in a timely manner. Collaboration: Work closely with team members, including developers, testers, and product managers, to ensure the successful delivery of software projects. Your ability to communicate effectively and work as part of a team is crucial. Continuous Learning: Stay up to date with the latest technologies and industry trends. Apply new knowledge to improve our products and processes continuously Nice to have: Experience with other SQL databases and understanding of object-relational mapping frameworks Experience programming in Go and/or Python Experience developing with NoSQL database technologies (e.g., Mongo) and Message Queues (e.g.: Kafka and RabbitMQ)

Job Title: Associate Project Manager Company: Techdefence Labs Solutions Ltd. Location: Ahmedabad Department: Consulting Job Type: Full Time About Techdefence: Techdefence is a leading cybersecurity solutions provider specializing in offensive and defensive security, AI-powered threat intelligence, and enterprise security frameworks. Our comprehensive services and product portfolio cater to global enterprises, government agencies, and critical infrastructure, ensuring proactive protection against cyber thre ats. With a strong R&D focus, Techdefence delivers cutting-edge security solutions in the areas of cloud security, network security, application security, penetration testing, SOC solutions, and managed security services. Our expertise in cyber resilience, r isk management, and compliance frameworks (ISO 27001, NIST, GDPR, PCI-DSS, etc.) positions us as a trusted partner for organizations worldwide. Role Overview: Techdefence Labs is looking for an Associate Project Manager to support the planning, execution, and delivery of cyber security projects across various domains such as network security, application security, GRC, and SOC implementations. This role will work closely with technical teams, clients, and stakeholders to ensure project milestones are met on time and within scope. Key Responsibilities: Assist in the coordination and management of cyber security projects from initiation to closure Develop and maintain project plans, schedules, and documentation Track progress and performance, and escalate risks or issues to the Project Manager Coordinate with internal technical teams, vendors, and clients to align deliverables Ensure adherence to quality, compliance, and information security standards Support the preparation of status reports, stakeholder presentations, and meeting minutes Maintain project documentation including SOWs, RACI matrices, and timelines Contribute to continuous improvement of project management processes and tools Qualifications & Skills: Bachelors degree in information technology, Computer Science, Cyber Security, or related field 1-3 years of experience in a project coordination/associate PM role, preferably in a technology or cyber security environment Familiarity with cyber security principles, frameworks (e.g., NIST, ISO 27001), and terminology is a plus Working knowledge of project management tools (e.g., MS Project, Jira, Asana) Excellent organizational, communication, and interpersonal skills Ability to manage multiple priorities and meet tight deadlines Soft Skills Strong attention to detail Ability to work independently and meet deadlines Good communication and interpersonal skills

At FourKites we have the opportunity to tackle complex challenges with real-world impacts. Whether it s medical supplies from Cardinal Health or groceries for Walmart, the FourKites platform helps customers operate global supply chains that are efficient, agile and sustainable. Join a team of curious problem solvers that celebrates differences, leads with empathy and values inclusivity. We are seeking an experienced Security Engineer with a strong background in DevOps, DevSecOps, and cloud infrastructure management. The ideal candidate will have hands-on expertise in AWS, GCP, Azure, and microservices architecture, combined with a deep understanding of security principles and best practices. You will be responsible for implementing and securing cloud-based environments, deploying infrastructure with automation tools, and ensuring that security is embedded throughout the development lifecycle. What you ll be doing: Cloud Infrastructure & Security Architect and secure highly available, scalable, and fault-tolerant systems across AWS, GCP, and Azure environments. Design and implement cloud security solutions, focusing on compute, network, storage, content delivery, administration, and security. Implement security controls for Kubernetes clusters, containerized applications, and cloud-native services. DevOps & Automation: Leverage automation technologies (Ansible, Chef, Puppet, Jenkins, Docker) to manage infrastructure and deployment pipelines. Develop, deploy, and maintain infrastructure-as-code solutions with tools such as CloudFormation, Terraform, and AWS/GCP/Azure CLI. Enable CI/CD pipelines for secure application delivery while ensuring security is integrated into the build and deployment processes. Programming & Application Security: Implement and secure microservices architecture using tools such as AWS Lambda, Docker, Kubernetes, and serverless technologies. Develop and maintain secure, scalable applications using programming languages such as C++, C#, Java, and Python. Monitoring & Threat Detection: Continuously monitor cloud environments to identify and mitigate security threats and vulnerabilities. Conduct risk assessments and threat modeling for cloud applications and infrastructure. Use monitoring tools (e.g., AWS CloudWatch, GCP Stackdriver, Azure Monitor) to detect and respond to potential security incidents. Collaboration & Reporting: Collaborate with cross-functional teams including business leaders, engineers, and other security professionals to design and implement security solutions. Communicate security risks, mitigations, and incident reports to both technical and non-technical stakeholders. Produce detailed documentation of security policies, procedures, and technical implementations. Who you are: 3+ years of IT experience with a strong focus on DevOps, DevSecOps, and cloud security engineering. Strong hands-on experience with cloud platforms such as AWS, GCP, and Azure, and familiarity with their foundational services (e.g., EC2, DynamoDB, API Gateway, RDS, Lambda, CloudFront, etc.). Strong experience in Kubernetes security controls is a must. CKA/ CKAD/ CKS preferred. In-depth knowledge of Kubernetes, microservices, container orchestration, and security controls. Experience designing, deploying, and securing cloud-native applications with a focus on scalability, high availability, and load balancing. CISSP (Certified Information Systems Security Professional) or equivalent industry-recognized security certifications. Or AWS Associate or higher certifications (e.g., AWS Certified Solutions Architect - Associate). Or equivalent certifications would work Technical Skills : Expertise in implementing security best practices in cloud environments and DevOps pipelines. Familiarity with container security tools and methodologies. Strong analytical, troubleshooting, and problem-solving skills with the ability to quickly identify and address security threats. Excellent verbal and written communication skills to effectively engage with stakeholders at all levels. Strong teamwork orientation, collaborating with multidisciplinary teams to achieve organizational goals. Additional Requirements: Ability to work in a fast-paced environment and manage multiple tasks concurrently. A proactive approach to learning new technologies and staying up-to-date with industry trends in cloud security. FourKites is the #1 supply chain visibility platform in the world, extending visibility beyond transportation into yards, warehouses, stores and beyond. Tracking more than 2.5 million shipments daily across road, rail, ocean, air, parcel and courier, and reaching over 185 countries, FourKites combines real-time data and powerful machine learning to help companies digitize their end-to-end supply chains. More than 1,000 of the world s most recognized brands including 9 of the top-10 CPG and 18 of the top-20 food and beverage companies trust FourKites to transform their business and create more agile, efficient and sustainable supply chains. FourKites provides competitive compensation with stock options, outstanding benefits and a collaborative culture for all employees around the globe. To help you be your best, we have 5 global recharge days, in addition to standard holidays, and a hybrid, flexible approach to work. Parental leave for all parents, an annual wellness stipend and volunteer days also provide you with time and resources for self care and to care for others. Throughout the year, FourKites sets aside time during the workday to learn and celebrate diversity. And were always listening for new ways to support everyone in and out of the office. Benefits Medical benefits start on the first day of employment 36 PTO days (Sick, Casual and Earned), five recharge days, two volunteer days Home Office setups and Technology reimbursement Lifestyle & Family benefits Ongoing learning & development opportunities (Professional development program, Toast Master club, etc.)

Not Applicable Specialism Risk Management Level Director & Summary At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data. In cloud security at PwC, you will be responsible for designing, implementing and elevating the security posture across our clients cloud environments, covering IaaS, PaaS and SaaS. Your work will involve having a deep technical knowledge of cloud security and you will work with one or more Cloud Service Providers (CSP) to implement security protocols, monitor for potential security breaches, conduct risk assessments and vulnerability testing of cloudbased systems, and stay up to date with the latest security threats and trends in cloud technology. Why PWC & Summary A career within Cybersecurity and Privacy services, will provide you with the opportunity to help our clients implement an effective cybersecurity programme that protects against threats, propels transformation, and drives growth. As companies pivot toward a digital business model, exponentially more data is generated and shared among organisations, partners and customers. We play an integral role in helping our clients ensure they are protected by developing transformation strategies focused on security, efficiently integrate and manage new or existing technology systems to deliver continuous operational improvements and increase their cybersecurity investment, and detect, respond, and remediate threats. s Demonstrate expertise related to cloud service provider platforms including Microsoft Azure, AWS, and Google Cloud Platform and their embedded security, as well as multicloud security management technologies. Assist in the design and development of cloud security solutions based on customer requirements, evaluating business strategies and cloud architecture best practices. Manage and execute cloud security solutions across design, implementation, and operations. Develop Cloud Risk Assessment plans to assess client s cloud security posture and identify risks, provide recommendations for improvement and risk reduction. Ability to work independently and function in a team environment. Mandatory Skill Sets 12+ years of experience in cloud security solution architecture, design and implementation with cloud platforms such as AWS, Google Cloud Platform, Microsoft Azure and M365. Possess cloud certification for Microsoft Azure/AWS/Google Cloud Platform. Scripting Experience with Ansible, Terraform, CloudFormation & ARM, Powershell, Python, Java etc Experience in scripting languages like Python, Java etc desirable. Experience with designing and implementing multicloud security management technologies like CASB, CSPM, CWPP etc. Understanding of Containers, Serverless, Kubernetes, API s etc Knowledge and experience across IT infrastructure with security frameworks and standards such as ISO 27001, NIST, and relevant security best practice frameworks desirable. Excellent written and verbal communication, facilitation, and presentation skills. 10 +years of experience in cloud security solution architecture, design and implementation along with a team handling experience required. Preferred Skill Sets 12+ years of experience in cloud security solution architecture, design and implementation with cloud platforms such as AWS, Google Cloud Platform, Microsoft Azure and M365. Possess cloud certification for Microsoft Azure/AWS/Google Cloud Platform. Scripting Experience with Ansible, Terraform, CloudFormation & ARM, Powershell, Python, Java etc Experience in scripting languages like Python, Java etc desirable. Experience with designing and implementing multicloud security management technologies like CASB, CSPM, CWPP etc. Understanding of Containers, Serverless, Kubernetes, API s etc Knowledge and experience across IT infrastructure with security frameworks and standards such as ISO 27001, NIST, and relevant security best practice frameworks desirable. Excellent written and verbal communication, facilitation, and presentation skills. 10 +years of experience in cloud security solution architecture, design and implementation along with a team handling experience required. Years of Experience 12+ Years Education Qualification Btech/MBA preferred Education Degrees/Field of Study required Bachelor of Engineering, Master of Business Administration Degrees/Field of Study preferred Required Skills Cloud Application Security Accepting Feedback, Accepting Feedback, Active Listening, Analytical Thinking, Cloud Administration, Cloud Engineering, Cloud Infrastructure, Cloud Infrastructure Architecture Design, Cloud Resource Management, Cloud Security, Cloud Security Auditing, Cloud Service Delivery, Cloud Service Level Risk Management, Coaching and Feedback, Communication, Creativity, Cyber Engineering, Embracing Change, Emotional Regulation, Empathy, Forensic Investigation, Incident Investigation, Inclusion, Influence, Information Security {+ 31 more} Travel Requirements Available for Work Visa Sponsorship

Rapsys Tech Solutions Pvt Ltd is looking for IOT Engineer to join our dynamic team and embark on a rewarding career journey. Responsible for designing, developing, and implementing IoT systems and solutions that connect physical devices to the internet and enable them to communicate with each other and with the cloud. The job description of an IoT Engineer typically includes the following:1.System Architecture: Designing and developing the system architecture for IoT solutions, including hardware and software components, communication protocols, and cloud infrastructure.2.Hardware Design: Developing the hardware components of the IoT system, such as sensors, actuators, and microcontrollers, and integrating them with the software components.3.Software Development: Developing the software components of the IoT system, such as firmware, middleware, and applications, and ensuring that they are secure, scalable, and reliable.4.Data Management: Designing and implementing data management systems that can collect, store, and analyze the data generated by IoT devices.5.Testing and Validation: Testing and validating the IoT system to ensure that it meets the requirements and specifications of the project.6.Maintenance and Support: Providing maintenance and support services for the IoT system, including troubleshooting, bug fixing, and software updates.

We are a fast-growing, category-leading organization with ambitious objectives and a positive, inclusive culture. Were looking for passionate professionals who want to grow their talents and achieve great things. If that sounds like you, we want to talk to you about joining our team. The Security Operations team is responsible for accelerating the delivery and improving the operations and security of our cloud-based software. The Role We are looking for an experienced application security engineer to join us as we build and improve our security posture. What will you do? Own and improve the security monitoring, detection and response infrastructure supporting our SaaS platform. Ensure that security infrastructure is appropriately designed, configured, and operated. Work with development teams to build and improve automated security scans in their delivery pipelines. Work with our engineering, compliance and solution engineering teams to gather security evidence and help maintain Flexera s certifications. Work with internal and external collaborators to run Flexera s penetration testing program Work with our compliance team to codify and automate our compliance processes. You should have. Experience designing and building security infrastructure services in AWS Cloud and/or Azure Cloud. Proficiency in one or more programming languages out of Golang, Nodejs, Python or Java Proficiency with one or more scripting languages Proficiency with Linux based operating systems like CentOS, RHEL, Ubuntu, Debian, Amazon Linux Knowledge of secure coding practices Familiarity with security framweworks and standards like the OWASP Top 10 and ISO27001 Deep understanding of web application architecture Proficiency with Security Tools and Technologies in the field of SAST, SCA, DAST and Penetration Testing Skills articulating security requirements to technical and non-technical teams. Strong interpersonal skills; mentoring, coaching, collaborating, and team building. Familiarity with DevSecOps, and agile concepts. Nice if you have Experience with securing container-based systems and delivery pipelines. Kubernetes knowledge esp. EKS and AKS FedRamp experience.

Our Offensive Security professionals are on a mission to make the world a safer place, one company at a time. We believe that our work to help our clients discover and remediate their unique security risks makes every one of us safer. Our clients trust us to use cutting-edge offensive security tools, creativity, imagination, and expert knowledge to find cybersecurity risks in their networks, systems, and software.. We're looking to grow our team of penetration testers in India. We perform testing of web and smartphone applications, computer networks, cloud infrastructure, hardware devices, employees via social engineering, organizations via red team testing, and more.. As a Senior Consultant, you will report to a Principal Consultant in India. You will lead teams of consultants on cybersecurity projects for clients, large and small, across North America, EMEA, and APAC. You will be the technical leader of our engagements to our clients, scope solutions to their cybersecurity challenges, and act as their security subject matter expert and ours. You will mentor our Associate Consultants and Consultants during our engagements and act as a role model for their careers. You will think strategically and socialize your ideas to help us better ourselves.. Below are the roles and responsibilities for the Senior Consultant, Offensive Security role based in India:. Day to day responsibilities. Lead and deliver offensive security engagements such as web, mobile, API, and network penetration tests as an expert in the eyes of the client and your teammates. Solution and scope engagements for our clients, including penetration tests, cloud security projects, and more. Lead the technical delivery of our engagements by defining the execution strategy, delegating tasks to junior members of the team, evaluating their progress, and providing feedback. Execute internal strategic initiatives to help our practice grow, adapt, and evolve. Essential Traits. 6+ years in cybersecurity, with 3+ years in penetration testing, application security, or red teaming. Expert knowledge of application security, cloud security, infrastructure security, and other offensive or defensive security domains. A high degree of contextual and technological adaptability (i.e., tooland industry-agnostic). Generosity with your knowledge and patience with your apprentices. Excellent oral and written communication skills. A proven ability to lead and deliver cybersecurity engagements. Prerequisites. Bachelor’s degree or college diploma in information security, computer science or engineering, software engineering, or IT/System/Network administration. Excellent oral and written communication skills. Experience working both as part of a team and independently. About Kroll. Join the global leader in risk and financial advisory solutions—Kroll. With a nearly century-long legacy, we blend trusted expertise with cutting-edge technology to navigate and redefine industry complexities. As a part of One Team, One Kroll, you'll contribute to a collaborative and empowering environment, propelling your career to new heights. Ready to build, protect, restore and maximize our clients’ value? Your journey begins with Kroll.. Kroll is committed to equal opportunity and diversity, and recruits people based on merit.. In order to be considered for a position, you must formally apply via careers.kroll.com. Show more Show less

We're Celonis, the global leader in Process Mining technology and one of the world's fastest-growing SaaS firms. We believe there is a massive opportunity to unlock productivity by placing data and intelligence at the core of business processes and for that, we need you to join us.. The Team:. As a member of the Information Security Organization at Celonis, you'll collaborate closely with various departments and customers to communicate and demonstrate the security posture of our products. This position is part of the Security Enablement team within the broader Security GRC (Governance, Risk, and Compliance) Department. The Information Security team plays a critical role in ensuring Celonis' technology and information assets are appropriately guarded from external and internal threats. The Security GRC Department you'll be joining is responsible for maintaining existing security attestations at Celonis globally, balancing risk with appropriate controls and assessing control effectiveness.. The Role:. As Associate Security Enablement Analyst within the Information Security GRC team, you will act as a key interface between Celonis and its customers, helping to demonstrate the strength of our security posture and ensuring a smooth, informed, and confident customer journey. In this role, you’ll handle a broad range of customer-facing security activities—from responding to security questionnaires and audits, to building scalable processes and content for security communications. You’ll work closely with internal stakeholders across Legal, Operations, and Engineering, playing a critical role in reinforcing trust and transparency around our security practices. This position is ideal for someone who thrives at the intersection of security, communication, and customer success.. The work you’ll do:. Customer Security Requests: Respond quickly and accurately to customer security inquiries, supporting business development and customer success efforts.. Technical Security Communication: Independently address technical questions from customers, ensuring their security requirements are clearly understood and met.. Audit Support: Support customer audits and remote assessments by preparing and delivering relevant security documentation and evidence.. Security Questionnaires: Lead the completion of security questionnaires and related documentation, particularly those focused on cloud security.. Cross-Functional Collaboration: Work with Legal, Operations, and Cloud Engineering to develop and maintain standardized materials that clearly explain our security controls and practices.. Knowledge Management: Build and maintain a centralized knowledge base covering key Information Security topics, making resources easily accessible to internal and external stakeholders.. Enablement & Culture: Contribute to internal initiatives that strengthen Celonis’s security culture, operational maturity, and external security presence—whether through team development, internal enablement, or customer-facing improvements.. Privacy & GenAI Readiness: Collaborate with cross-functional teams to support privacy-related initiatives and emerging GenAI-related security considerations, ensuring alignment with evolving regulatory and customer expectations.. The qualifications you need:. University degree in the field of Information Technology and Management, Business Administration, or a similar field. Experience working with Security Questionnaires, IT projects, RFX. Work experience in the field of IT Security, Auditing, Cloud Security or similar. Excellent communication skills in English (spoken and written). Excellent ability to communicate with clients, relevant departments, collaborators and other relevant actors. High professional responsibility and excellent skills to work independently. Excellent skills to learn quickly and adapt to new tasks. Ability to learn topics related to Cloud, Infrastructure, and IT Security. Ability to work under pressure andin a dynamic work environment. Excellent communication skills in German (has the advantage). What Celonis Can Offer You:. Pioneer Innovation: Work with the leading, award-winning process mining technology, shaping the future of business.. Accelerate Your Growth: Benefit from clear career paths, internal mobility, a dedicated learning program, and mentorship opportunities.. Receive Exceptional Benefits: Including generous PTO, hybrid working options, company equity (RSUs), comprehensive benefits, extensive parental leave, dedicated volunteer days, and much more.. Prioritize Your Well-being: Access to resources such as gym subsidies, counseling, and well-being programs.. Connect and Belong: Find community and support through dedicated inclusion and belonging programs.. Make Meaningful Impact: Be part of a company driven by strong values that guide everything we do: Live for Customer Value, The Best Team Wins, We Own It, and Earth Is Our Future.. Collaborate Globally: Join a dynamic, international team of talented individuals.. Empowered Environment: Contribute your ideas in an open culture with autonomous teams.. About Us:. Celonis makes processes work for people, companies and the planet. The Celonis Process Intelligence Platform uses industry-leading process mining and AI technology and augments it with business context to give customers a living digital twin of their business operation. It’s system-agnostic and without bias, and provides everyone with a common language for understanding and improving businesses. Celonis enables its customers to continuously realize significant value across the top, bottom, and green line. Celonis is headquartered in Munich, Germany, and New York City, USA, with more than 20 offices worldwide.. Get familiar with the Celonis Process Intelligence Platform by watching this video.. Celonis Inclusion Statement:. At Celonis, we believe our people make us who we are and that “The Best Team Wins”. We know that the best teams are made up of people who bring different perspectives to the table. And when everyone feels included, able to speak up and knows their voice is heard that's when creativity and innovation happen.. Your Privacy:. Any information you submit to Celonis as part of your application will be processed in accordance with Celonis’ Accessibility and Candidate Notices. By submitting this application, you confirm that you agree to the storing and processing of your personal data by Celonis as described in our Privacy Notice for the Application and Hiring Process.. Please be aware of common job offer scams, impersonators and frauds. Learn more here.. Show more Show less

Are you a Product Security Analyst expert looking for a challenging opportunity?. Join our Product Security team.. We operate at the heart of the digital transformation of our business. Our team is responsible for Product Security including application security for our global organization.. Partner with the best.. We are looking for a Lead Product Security Analyst, with a focus in Product Security. In this role, you will work in a team and demonstrate working knowledge of systems and products and how they are secured in customers' businesses.. As a Senior Lead Product Security Engineer, you will be responsible for:. Building and executing engineering processes for early detection of design flaws, vulnerabilities, weaknesses, missing security controls, and secure implementation of product features.. Applying existing technologies, approaches, methodologies in new combinations to design new products, systems, or processes. Viewed internally and externally as a specialist in the discipline.. Presenting plans, technical roadmaps, ri Senior Lead Product Security Engineer Are you a Product Security Analyst expert looking for a challenging opportunity?. Join our Product Security team.. We operate at the heart of the digital transformation of our business. Our team is responsible for Product Security including application security for our global organization.. Partner with the best.. We are looking for a Lead Product Security Analyst, with a focus in Product Security. In this role, you will work in a team and demonstrate working knowledge of systems and products and how they are secured in customers' businesses.. As a Senior Lead Product Security Engineer, you will be responsible for:. Building and executing engineering processes for early detection of design flaws, vulnerabilities, weaknesses, missing security controls, and secure implementation of product features.. Applying existing technologies, approaches, methodologies in new combinations to design new products, systems, or processes. Viewed internally and externally as a specialist in the discipline.. Presenting plans, technical roadmaps, risks and recommendations to senior business and technical leaders. Lead programs related to Product Security Incident Response, Product Inventory, etc. Driving awareness, engagement, and improvements of Product Security metrics with business leaders. Demonstrating working knowledge of systems and products and how they are secured in a customer environment.. Implementing tools to automate and scale security processes.. Providing security leadership to the business segment product security teams. Experiencing with cyber security framework (NIST 800-53, ISO 27001, IEC 62443, etc.) implementation and governance. Familiarity with cyber regulations (EU NIS2, CRA, etc). Fuel your passion. To be successful in this role you will:. Have a bachelor’s degree in computer science or “STEM” Majors (Science, Technology, Engineering, and Math).. Have a minimum of 10 years of professional experience in a STEM-related degree preferably with a Product Security / OT Security focus.. Have project management experience, and expertise with Agile development teams.. Have prior work experience with various development tools including threat modelling, vulnerability technologies, application security, and secure coding principles.. Have experience with penetration testing and ethical hacking.. Have experience securing applications within cloud platforms such as AWS, Azure, and alike.. Have experience with a broad set of information security technologies and processes within a SaaS, IaaS, PaaS, or cloud environment.. Working with us. Our people are at the heart of what we do at Baker Hughes. We know we are better when all our people are developed, engaged and able to bring their whole authentic selves to work. We invest in the health and well-being of our workforce, train and reward talent and develop leaders at all levels to bring out the best in each other.. Working for you. Our inventions have revolutionized energy for over a century. But to keep going forward tomorrow, we know we must push the boundaries today. We prioritize rewarding those who embrace change with a package that reflects how much we value their input. Join us, and you can expect:. Contemporary work-life balance policies and wellbeing activities. Comprehensive private medical care options. Safety net of life insurance and disability programs. Tailored financial programs.. Additional elected or voluntary benefits. About Us:. We are an energy technology company that provides solutions to energy and industrial customers worldwide. Built on a century of experience and conducting business in over 120 countries, our innovative technologies and services are taking energy forward – making it safer, cleaner and more efficient for people and the planet.. Join Us:. Are you seeking an opportunity to make a real difference in a company that values innovation and progress? Join us and become part of a team of people who will challenge and inspire you! Let’s come together and take energy forward.. Baker Hughes Company is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law.. R136394. Show more Show less

Our Offensive Security professionals are on a mission to make the world a safer place, one company at a time. We believe that our work to help our clients discover and remediate their unique security risks makes every one of us safer. Our clients trust us to use cutting-edge offensive security tools, creativity, imagination, and expert knowledge to find cybersecurity risks in their networks, systems, and software.. We're looking to grow our team of penetration testers in India. We perform testing of web and smartphone applications, computer networks, cloud infrastructure, hardware devices, employees via social engineering, organizations via red team testing, and more.. As a Senior Consultant, you will report to a Principal Consultant in India. You will lead teams of consultants on cybersecurity projects for clients, large and small, across North America, EMEA, and APAC. You will be the technical leader of our engagements to our clients, scope solutions to their cybersecurity challenges, and act as their security subject matter expert and ours. You will mentor our Associate Consultants and Consultants during our engagements and act as a role model for their careers. You will think strategically and socialize your ideas to help us better ourselves.. Below are the roles and responsibilities for the Senior Consultant, Offensive Security role based in India:. Day to day responsibilities. Lead and deliver offensive security engagements such as web, mobile, API, and network penetration tests as an expert in the eyes of the client and your teammates. Solution and scope engagements for our clients, including penetration tests, cloud security projects, and more. Lead the technical delivery of our engagements by defining the execution strategy, delegating tasks to junior members of the team, evaluating their progress, and providing feedback. Execute internal strategic initiatives to help our practice grow, adapt, and evolve. Essential Traits. 6+ years in cybersecurity, with 3+ years in penetration testing, application security, or red teaming. Expert knowledge of application security, cloud security, infrastructure security, and other offensive or defensive security domains. A high degree of contextual and technological adaptability (i.e., tooland industry-agnostic). Generosity with your knowledge and patience with your apprentices. Excellent oral and written communication skills. A proven ability to lead and deliver cybersecurity engagements. Prerequisites. Bachelor’s degree or college diploma in information security, computer science or engineering, software engineering, or IT/System/Network administration. Excellent oral and written communication skills. Experience working both as part of a team and independently. About Kroll. Join the global leader in risk and financial advisory solutions—Kroll. With a nearly century-long legacy, we blend trusted expertise with cutting-edge technology to navigate and redefine industry complexities. As a part of One Team, One Kroll, you'll contribute to a collaborative and empowering environment, propelling your career to new heights. Ready to build, protect, restore and maximize our clients’ value? Your journey begins with Kroll.. Kroll is committed to equal opportunity and diversity, and recruits people based on merit.. In order to be considered for a position, you must formally apply via careers.kroll.com. Show more Show less

Senior Security Consultant (Secure Code Review + Web Application Penetration Testing). NetSPI is the proactive security solution used to discover, prioritize, and remediate security vulnerabilities of the highest importance, so businesses can protect what matters most. NetSPI secures the most trusted brands on Earth through Penetration Testing as a Service (PTaaS), External Attack Surface Management (EASM), Cyber Asset Attack Surface Management (CAASM), and Breach and Attack Simulation (BAS). Leveraging a unique combination of dedicated security experts, intelligent process, and advanced technology, NetSPI brings a proactive approach to cybersecurity with more clarity, speed, and scale than ever before.. NetSPI is on an exciting growth journey as we disrupt and improve the proactive security market. We are looking for individuals with a collaborative, innovative, and customer-first mindset to join our team. Learn more about our award-winning workplace culture and get to know our A-Team at?www.netspi.com/careers.. NetSPI is seeking a Senior Security Consultant who will serve as a resource for delivery of secure code review and web application penetration assessment. This position requires an understanding of various web technologies, enterprise secure development and risk management. In addition, it requires experience with application security assessments/testing, as well as demonstrated competencies in problem solving, client service, written/verbal communication, and project execution.. Responsibilities. Conduct in-depth penetration testing and secure code review assessments on web applications. Dynamically exploit vulnerabilities found in codebase and correlate insecure coding practices into dynamic application vulnerabilities. Deliver secure code review assessment on programming languages such as Java, C#, Python, C/C++, Perl, PHP. Analyze and identify security vulnerabilities in source code using both automated and manual static analysis tools and techniques. Train and assist developers in writing secure software and remediating existing vulnerabilities. Provide oversight to peers on service lines through QA process. Mentor and assist team members in effectively delivering assessments and enhancing skillsets. Present detailed penetration test findings to clients and assist in remediation planning. Engage in research to develop new penetration testing methods, tools, and innovative exploit techniques. Contribute to the cybersecurity community through tools, presentations, white papers, and blogging. Maintain consistency with other internal requirements related to day-to-day administration tasks (time keeping, status updates to clients, etc.). Minimum Qualifications. Minimum of 3-5 years of experience in application security including both secure code review and web application penetration testing. Exceptional familiarity in all Burp Suite functions. Published Burp extensions and ability to create new Burp Suite extensions preferred. Detailed understanding of the OWASP Top 10 and CWE Top 25 issues with focus on ability to identify and remediate vulnerability in source code. Ability to explain risk and business impact of security vulnerabilities to variety of audience. Bachelor’s degree or higher, preferably in Computer Science, Engineering, Mathematics, IT, or a related field; equivalent experience will also be considered.. Preferred Qualifications. Experience in detecting, analyzing and providing recommendation guidance on security vulnerabilities using SAST and/or manual secure code review in at least two of the following languages: Java, C#, PHP, Python, C/C++. Experience in software development in at least one server-side programming language. We are an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status or any other characteristic protected by law.. Show more Show less

What You'll Do. Join us in building a secure, scalable, and experienced platform to support Avalara's expanding business and global customer base. As a Senior Application Security Engineer, you'll work with world-class engineers and architects to ensure security is embedded in everything we build—both in today's systems and the future of our architecture. This role is perfect for someone passionate about automation, cloud-native security, and AI-driven application defense.. You'll help shape the future of Avalara Security, driving security as code, ensuring automation-first practices, and integrating modern AI tooling into security workflows. You understand the value of developer empathy, moves quickly without sacrificing quality, and excels in an environment that combines startup energy with enterprise scale.. You will report to security leadership at Avalara. This is a remote position.. Job Responsibilities. What Your Responsibilities Will Be. You will build, maintain, and continuously improve an automated security pipeline framework integrated into our CI/CD environments.. You will lead development of Infrastructure-as-Code and Policy-as-Code for application security enforcement and consistency across environments.. You will evaluate and integrate security tools (SAST, DAST, SCA, CSPM, EDR) and AI-based solutions into engineering workflows and CI/CD pipelines.. You will provide applicable guidance and mentorship to development and Avalara Security engineering teams on secure development best practices.. Investigate, prototype, and apply AI/ML-based solutions for application behavior analysis, anomaly detection, and threat hunting.. Promote security by design across the organization, and help foster a security-first culture.. Contribute to the continuous refinement of the SDLC to ensure security is smooth, consistent, and measurable.. What You’ll Need To Be Successful. Required Qualifications. 8+ years of experience in application security, secure software development, or security engineering.. Strong programming proficiency in Python and GoLang (hands-on).. Experience with secure SDLC practices and CI/CD pipeline integration.. Strong hands-on experience with Kubernetes, container security, and cloud infrastructure security—preferably AWS and GCP.. Experience with Infrastructure-as-Code (IaC) tools like Terraform or CloudFormation.. Working knowledge of cryptographic protocols and standards: TLS, OAuth, SAML, JWT, etc.. Familiarity with Git, modern source control practices, and agile development methodologies.. Experience working with a broad range of security tools, including:. Tenable, Wiz (Cloud Security Posture Management). Checkmarx, Mend (SAST, SCA). Acunetix, Burp Suite (DAST). CrowdStrike (EDR/XDR). Bachelor's Degree in Computer Science, Engineering, or a related field.. Proven experience contributing to security automation efforts within a security organization like Avalara Security.. Experience with AI/ML tools and frameworks applied to application security or behavior analytics.. Security certifications such as OSWE, CSSLP, AWS Security Specialty, or Kubernetes Security Specialist.. Passion for enabling developer-friendly security solutions and maximum automation.. How We’ll Take Care Of You. Total Rewards. In addition to a great compensation package, paid time off, and paid parental leave, many Avalara employees are eligible for bonuses.. Health & Wellness. Benefits vary by location but generally include private medical, life, and disability insurance.. Inclusive culture and diversity. Avalara strongly supports diversity, equity, and inclusion, and is committed to integrating them into our business practices and our organizational culture. We also have a total of 8 employee-run resource groups, each with senior leadership and exec sponsorship.. What You Need To Know About Avalara. We’re Avalara. We’re defining the relationship between tax and tech.. We’ve already built an industry-leading cloud compliance platform, processing nearly 40 billion customer API calls and over 5 million tax returns a year, and this year we became a billion-dollar business. Our growth is real, and we’re not slowing down until we’ve achieved our mission to be part of every transaction in the world.. We’re bright, innovative, and disruptive, like the orange we love to wear. It captures our quirky spirit and optimistic mindset. It shows off the culture we’ve designed, that empowers our people to win. Ownership and achievement go hand in hand here. We instill passion in our people through the trust we place in them.. We’ve been different from day one. Join us, and your career will be too.. We’re An Equal Opportunity Employer. Supporting diversity and inclusion is a cornerstone of our company — we don’t want people to fit into our culture, but to enrich it. All qualified candidates will receive consideration for employment without regard to race, color, creed, religion, age, gender, national orientation, disability, sexual orientation, US Veteran status, or any other factor protected by law. If you require any reasonable adjustments during the recruitment process, please let us know.. Show more Show less

Our Offensive Security professionals are on a mission to make the world a safer place, one company at a time. We believe that our work to help our clients discover and remediate their unique security risks makes every one of us safer. Our clients trust us to use cutting-edge offensive security tools, creativity, imagination, and expert knowledge to find cybersecurity risks in their networks, systems, and software.. We're looking to grow our team of penetration testers in India. We perform testing of web and smartphone applications, computer networks, cloud infrastructure, hardware devices, employees via social engineering, organizations via red team testing, and more.. As a Senior Consultant, you will report to a Principal Consultant in India. You will lead teams of consultants on cybersecurity projects for clients, large and small, across North America, EMEA, and APAC. You will be the technical leader of our engagements to our clients, scope solutions to their cybersecurity challenges, and act as their security subject matter expert and ours. You will mentor our Associate Consultants and Consultants during our engagements and act as a role model for their careers. You will think strategically and socialize your ideas to help us better ourselves.. Below are the roles and responsibilities for the Senior Consultant, Offensive Security role based in India:. Day to day responsibilities. Lead and deliver offensive security engagements such as web, mobile, API, and network penetration tests as an expert in the eyes of the client and your teammates. Solution and scope engagements for our clients, including penetration tests, cloud security projects, and more. Lead the technical delivery of our engagements by defining the execution strategy, delegating tasks to junior members of the team, evaluating their progress, and providing feedback. Execute internal strategic initiatives to help our practice grow, adapt, and evolve. Essential Traits. 6+ years in cybersecurity, with 3+ years in penetration testing, application security, or red teaming. Expert knowledge of application security, cloud security, infrastructure security, and other offensive or defensive security domains. A high degree of contextual and technological adaptability (i.e., tooland industry-agnostic). Generosity with your knowledge and patience with your apprentices. Excellent oral and written communication skills. A proven ability to lead and deliver cybersecurity engagements. Prerequisites. Bachelor’s degree or college diploma in information security, computer science or engineering, software engineering, or IT/System/Network administration. Excellent oral and written communication skills. Experience working both as part of a team and independently. About Kroll. Join the global leader in risk and financial advisory solutions—Kroll. With a nearly century-long legacy, we blend trusted expertise with cutting-edge technology to navigate and redefine industry complexities. As a part of One Team, One Kroll, you'll contribute to a collaborative and empowering environment, propelling your career to new heights. Ready to build, protect, restore and maximize our clients’ value? Your journey begins with Kroll.. Kroll is committed to equal opportunity and diversity, and recruits people based on merit.. In order to be considered for a position, you must formally apply via careers.kroll.com. Show more Show less

Our Offensive Security professionals are on a mission to make the world a safer place, one company at a time. We believe that our work to help our clients discover and remediate their unique security risks makes every one of us safer. Our clients trust us to use cutting-edge offensive security tools, creativity, imagination, and expert knowledge to find cybersecurity risks in their networks, systems, and software.. We're looking to grow our team of penetration testers in India. We perform testing of web and smartphone applications, computer networks, cloud infrastructure, hardware devices, employees via social engineering, organizations via red team testing, and more.. As a Senior Consultant, you will report to a Principal Consultant in India. You will lead teams of consultants on cybersecurity projects for clients, large and small, across North America, EMEA, and APAC. You will be the technical leader of our engagements to our clients, scope solutions to their cybersecurity challenges, and act as their security subject matter expert and ours. You will mentor our Associate Consultants and Consultants during our engagements and act as a role model for their careers. You will think strategically and socialize your ideas to help us better ourselves.. Below are the roles and responsibilities for the Senior Consultant, Offensive Security role based in India:. Day to day responsibilities. Lead and deliver offensive security engagements such as web, mobile, API, and network penetration tests as an expert in the eyes of the client and your teammates. Solution and scope engagements for our clients, including penetration tests, cloud security projects, and more. Lead the technical delivery of our engagements by defining the execution strategy, delegating tasks to junior members of the team, evaluating their progress, and providing feedback. Execute internal strategic initiatives to help our practice grow, adapt, and evolve. Essential Traits. 6+ years in cybersecurity, with 3+ years in penetration testing, application security, or red teaming. Expert knowledge of application security, cloud security, infrastructure security, and other offensive or defensive security domains. A high degree of contextual and technological adaptability (i.e., tooland industry-agnostic). Generosity with your knowledge and patience with your apprentices. Excellent oral and written communication skills. A proven ability to lead and deliver cybersecurity engagements. Prerequisites. Bachelor’s degree or college diploma in information security, computer science or engineering, software engineering, or IT/System/Network administration. Excellent oral and written communication skills. Experience working both as part of a team and independently. About Kroll. Join the global leader in risk and financial advisory solutions—Kroll. With a nearly century-long legacy, we blend trusted expertise with cutting-edge technology to navigate and redefine industry complexities. As a part of One Team, One Kroll, you'll contribute to a collaborative and empowering environment, propelling your career to new heights. Ready to build, protect, restore and maximize our clients’ value? Your journey begins with Kroll.. Kroll is committed to equal opportunity and diversity, and recruits people based on merit.. In order to be considered for a position, you must formally apply via careers.kroll.com. Show more Show less

At FourKites we have the opportunity to tackle complex challenges with real-world impacts. Whether its medical supplies from Cardinal Health or groceries for Walmart, the FourKites platform helps customers operate global supply chains that are efficient, agile and sustainable. Join a team of curious problem solvers that celebrates differences, leads with empathy and values inclusivity. We are seeking an experienced Security Engineer with a strong background in DevOps, DevSecOps, and cloud infrastructure management. The ideal candidate will have hands-on expertise in AWS, GCP, Azure, and microservices architecture, combined with a deep understanding of security principles and best practices. You will be responsible for implementing and securing cloud-based environments, deploying infrastructure with automation tools, and ensuring that security is embedded throughout the development lifecycle. What youll be doing: Cloud Infrastructure & Security Architect and secure highly available, scalable, and fault-tolerant systems across AWS, GCP, and Azure environments. Design and implement cloud security solutions, focusing on compute, network, storage, content delivery, administration, and security. Implement security controls for Kubernetes clusters, containerized applications, and cloud-native services. DevOps & Automation: Leverage automation technologies (Ansible, Chef, Puppet, Jenkins, Docker) to manage infrastructure and deployment pipelines. Develop, deploy, and maintain infrastructure-as-code solutions with tools such as CloudFormation, Terraform, and AWS/GCP/Azure CLI. Enable CI/CD pipelines for secure application delivery while ensuring security is integrated into the build and deployment processes. Programming & Application Security: Implement and secure microservices architecture using tools such as AWS Lambda, Docker, Kubernetes, and serverless technologies. Develop and maintain secure, scalable applications using programming languages such as C++, C#, Java, and Python. Monitoring & Threat Detection: Continuously monitor cloud environments to identify and mitigate security threats and vulnerabilities. Conduct risk assessments and threat modeling for cloud applications and infrastructure. Use monitoring tools (e.g., AWS CloudWatch, GCP Stackdriver, Azure Monitor) to detect and respond to potential security incidents. Collaboration & Reporting: Collaborate with cross-functional teams including business leaders, engineers, and other security professionals to design and implement security solutions. Communicate security risks, mitigations, and incident reports to both technical and non-technical stakeholders. Produce detailed documentation of security policies, procedures, and technical implementations. Who you are: 3+ years of IT experience with a strong focus on DevOps, DevSecOps, and cloud security engineering. Strong hands-on experience with cloud platforms such as AWS, GCP, and Azure, and familiarity with their foundational services (e.g., EC2, DynamoDB, API Gateway, RDS, Lambda, CloudFront, etc.). Strong experience in Kubernetes security controls is a must. CKA/ CKAD/ CKS preferred. In-depth knowledge of Kubernetes, microservices, container orchestration, and security controls. Experience designing, deploying, and securing cloud-native applications with a focus on scalability, high availability, and load balancing. CISSP (Certified Information Systems Security Professional) or equivalent industry-recognized security certifications. Or AWS Associate or higher certifications (e.g., AWS Certified Solutions Architect Associate). Or equivalent certifications would work Technical Skills : Expertise in implementing security best practices in cloud environments and DevOps pipelines. Familiarity with container security tools and methodologies. Strong analytical, troubleshooting, and problem-solving skills with the ability to quickly identify and address security threats. Excellent verbal and written communication skills to effectively engage with stakeholders at all levels. Strong teamwork orientation, collaborating with multidisciplinary teams to achieve organizational goals. Additional Requirements: Ability to work in a fast-paced environment and manage multiple tasks concurrently. A proactive approach to learning new technologies and staying up-to-date with industry trends in cloud security. FourKites is the #1 supply chain visibility platform in the world, extending visibility beyond transportation into yards, warehouses, stores and beyond. Tracking more than 2.5 million shipments daily across road, rail, ocean, air, parcel and courier, and reaching over 185 countries, FourKites combines real-time data and powerful machine learning to help companies digitize their end-to-end supply chains. More than 1,000 of the worlds most recognized brands including 9 of the top-10 CPG and 18 of the top-20 food and beverage companies trust FourKites to transform their business and create more agile, efficient and sustainable supply chains. Benefits Medical benefits start on the first day of employment 36 PTO days (Sick, Casual and Earned), five recharge days, two volunteer days Home Office setups and Technology reimbursement Lifestyle & Family benefits Ongoing learning & development opportunities (Professional development program, Toast Master club, etc.)

We are looking for an experienced application security engineer to join us as we build and improve our security posture. What will you do Own and improve the security monitoring, detection and response infrastructure supporting our SaaS platform. Ensure that security infrastructure is appropriately designed, configured, and operated. Work with development teams to build and improve automated security scans in their delivery pipelines. Work with our engineering, compliance and solution engineering teams to gather security evidence and help maintain Flexera s certifications. Work with internal and external collaborators to run Flexera s penetration testing program Work with our compliance team to codify and automate our compliance processes. You should have. Experience designing and building security infrastructure services in AWS Cloud and/or Azure Cloud. Proficiency in one or more programming languages out of Golang, Nodejs, Python or Java Proficiency with one or more scripting languages Proficiency with Linux based operating systems like CentOS, RHEL, Ubuntu, Debian, Amazon Linux Knowledge of secure coding practices Familiarity with security framweworks and standards like the OWASP Top 10 and ISO27001 Deep understanding of web application architecture Proficiency with Security Tools and Technologies in the field of SAST, SCA, DAST and Penetration Testing Skills articulating security requirements to technical and non-technical teams. Strong interpersonal skills; mentoring, coaching, collaborating, and team building. Familiarity with DevSecOps, and agile concepts. Nice if you have Experience with securing container-based systems and delivery pipelines. Kubernetes knowledge esp. EKS and AKS FedRamp experience.

Position Purpose Provide a brief description of the overall purpose of the position, why this position exists and how it will contribute in achieving the teams goal. Responsibilities Direct Responsibilities Direct Responsibilities - To perform Penetration testing (Gray Box and/or Black Box) for Web applications; Thick Client, API, and mobile applications. - To understand the applications security requirements and identify & document the scope of the test - Ensure execution of the documented security scenarios for the application under test. - Document and report all findings - Collaborate with the developers to help them understand the vulnerabilities reported in application - Escalate issues to the local management and onshore stakeholders in case it affects the testing progress - Ensure processes for the project is followed for the assessments Note : - Optional, experience in Source Code Assessment (SCA)/SAST, Mobile Testing Technical & Behavioral Competencies - Clear understanding of OWASP Top 10 - application security risks - Tools/OS: Burp Suite, OWASP ZAP, Kali Linux - Manual Security Testing & Analysis, Security Test Designing - Excellent Inter personal and presentation skills - Strong in verbal and written communication - Good analytical skills - Strong Time Management - Must be flexible, independent, self-motivated - Team player Specific Qualifications (if required) CSSLP/CEH or equivalent certification preferred Education Level: Bachelor Degree or equivalent Experience Level At Least 3 years

Required Qualification: B.E./B.Tech/BSc (with PG Dip Computers)/ BSc (IT) / MCA Preferred Qualification: B.E./B. Tech Responsibilities for Technical Project Manager Skills: Experience working with Web Development / Integration Projects. Development and application support for web applications on Java, Apache (web server), and Linux or Windows-based systems. Knowledge of SQL databases. Fundamental understanding of Application Security and Secure Coding Practices. Serve as the primary point of contact for business stakeholders and third-party vendors. Skilled in collaborating with designers, developers, and product teams to achieve project goals. Demonstrates the ability to work independently, with strong problem-solving and analytical skills. Ability to effectively manage multiple projects across various workstreams. Self-motivated with excellent interpersonal skills, a positive attitude, and a proactive, go-getter mindset. Knowledge of Information Technology infrastructure, Network architecture. Knowledge of Trading Application and Exchanges. Responsibilities: Conduct regular project reviews and inspections with all stakeholders, including business teams and third-party vendors. Build and maintain strong relationships with business stakeholders and third- party vendor teams. Will be responsible for project objectives, deliverables, schedules, budgets, and resources. HRD- Restricted Manage Projects through all stages of their lifecycle: design, planning, development, testing, deployment, and transition to maintenance. Experience: At least 3 years of experience in managing Web application solution, delivery through all phases of project Basic understanding of Project Management Principles and Methodologies. Familiar with mobile technologies development, internet and consumer trends. Core Competencies: As per Knowledge and Skills given above Functional Competencies: Banking / Capital Markets Job Purpose: Participate in requirement gathering, analysis and freezing the requirement. Collaborating with team members across different IT domains (eg: developers, business team, infrastructure) to achieve project objectives. Working closely with Business and development vendor to maintain roadmaps, product backlogs and establish priorities. Assisting in the testing and implementation stages of project cycles. Identify dependencies in Integration or standalone projects and mitigate the risk. Track and report on project milestones and provide status reports to management. IT SPOC role is to oversee, execute and ensure the successful delivery and management of single or multiple projects within scope, quality, time and cost constraints that may be clearly defined or may require dynamic change management to deliver business value. Area of Operations Key Responsibility Technology Projects working with cross functional teams to achieve project milestones within defined timelines and deliver high quality results . 1. Meeting with business users, understanding the business requirement 2. Production Support and Change Implementation for Projects assigned 3. Assisting in planning , coordinating and managing IT projects from inception to completion under the supervision of Senior Project Manager. Any Other Requirement: Excellent communication skills, both verbal and written. HRD- Restricted Personal Attributes The candidate should exhibit the following personal attributes: Good Team Player, ability to take responsibility of work assigned and ready to learn new technologies.

Were making big foundational cloud infrastructure changes to make the experience faster, more reliable, and more scalable for our customers workloads. This role will be responsible for helping to build, maintain, and operate our new dynamic cloud infrastructure that powers all Firebolt services. About the day to day Design and implement systematic improvements to Firebolt cloud infrastructure and Engine provisioning services to make it fast, reliable, scalable and cost efficient. Collaborate with development teams across the company to improve services reliability, scalability and developer productivity. Together with an engineering team, you will share an on-call rotation and be an escalation contact for service and cloud infrastructure incidents. REQUIREMENTS BS degree in Computer Science, Engineering, or a related field or equivalent experience. 3+ years hands-on experience as a Site Reliability Engineer. 3+ years of production experience with Kubernetes including using open source solutions from the eco-system. 3+ years of proven experience as a professional developer of production software. Development experience in an object oriented programming language. We develop in Go, C++, and some Python here and there. Experience with these languages is a plus. You are willing to understand and make cross-cutting changes in the Firebolt codebase regardless of the language. Hands on experience in building and operating cloud native applications on AWS, GCP or Azure. Strong Linux fundamentals and an understanding of networking, including a variety of network protocols. Experience building and operating highly concurrent, highly available, and fault-tolerant distributed systems. A bonus if you have Understanding of application security in a cloud environment. Experience working with service mesh and multi-cluster mesh infrastructure (Cilium). Experience in monitoring a variety of different application types with a modern prometheus compatible observability stack. Experience working with CI/CD pipelines like GitHub actions. Experience working with ArgoCD, Terraform, FoundationDB, Kafka and Kubernetes operators is a plus.

Greetings from HR Central!!! We do have an Urgent Opening for One of the Leading Global Product Development Company for Sr Product Cybersecurity Engineer for Pune Location. (Working from Office) Please go through the JD below and let me know your interest to proceed with:Please share your updated CV. Role: Sr Product Cybersecurity Engineer Location: Pune Job Title: Sr. Product Cybersecurity Engineer Location: Pune, India What you will do: In this pivotal role within the Global Product Security team, you will be responsible for driving continuous improvement initiatives aligned with our cybersecurity maturity framework, ensuring proactive management of security and data privacy risks throughout the product lifecycle. You will leverage your expertise in secure software development practices to embed security and privacy by design within our product offerings. How you will do it: Provide cybersecurity guidance and expertise to product development teams and business leaders during all phases of the software development lifecycle. Architect security and privacy by design into software applications for mobile, embedded systems, and cloud environments. Drive secure SDLC activities including security requirements, architectures, threat models, and testing. Periodically assess and refine security policies, standards, and compliance metrics. Quantify product risk and identify appropriate security controls. Review product architectures for security vulnerabilities and collaborate on remediation strategies. Coordinate with third-party penetration testing teams to ensure comprehensive security assessments. Maintain awareness of current security threats and vulnerabilities impacting our products. Support incident response operations and vulnerability remediation activities. Drive security awareness and training initiatives across the organization. What we look for: Bachelor's or higher degree in Engineering, Cybersecurity, or a related technical field. 7-10 years of experience in product or application cybersecurity. Strong knowledge of secure SDLC practices, security architectures, and compliance activities. Proven experience in delivering results using agile methodologies. Solid understanding of security threats, attack vectors, and appropriate security controls. Excellent problem-solving and analytical skills. Strong communication and interpersonal skills to convey complex security concepts to diverse audiences. Familiarity with security frameworks such as NIST, ISO 27001, and GDPR. Relevant cybersecurity certifications (e.g., CISSP, CEH) are a plus. What we offer: Competitive salary and performance-based bonuses. Comprehensive benefits package including health, dental, and retirement plans. Opportunities for professional development and continuous learning. Collaborative and inclusive work environment. Candidates should have experience in the Application Security side and not Network Security. The role requires experience in software development/engineering with some cybersecurity experience. If interested, please share CV to anisha@hr-central.in or call me @ +91-95620-44988

About the role Our support application team performs application vulnerability assessments and document vulnerabilities which were found and provides recommendations for remediation according to BFSI guidelines and industry best practices. As an Application Security Manager, you will provide guidance to the application team on application security best practices, support remediation effort and track open issues and follow up to ensure remediation. You will work along with cross functional business teams to get closure of identified gaps and utilize escalation matrix effectively wherever necessary. You will conduct application security assessment results review and mitigation approval. You will keep abreast of new technologies to ensure that the organization remains at the forefront of security. Key Responsibilities Support and Testing Vulnerability Assessments & Penetration Testing (Automated + Manual) on business critical assets with security tools like BurpSuite, Nessus, Nmap, Accunetix, Metasploit Netsparker, Qualys etc. Analysis Perform in-depth analysis of VAPT results, Review assessment reports to provide risk mitigation & recommendations on that basis. Collaboration Collaborate with the application team and provide them guidance on application security best practices, support remediation effort and track open issues and follow up to ensure remediation. Qualifications & Skills Educational Qualification Engineering Graduate in CS, IT, EC or InfoSec, CyberSec or MCA equivalent with relevant experience Certifications OSCP Compliance Knowledge of cyber security trends & hacking techniques, MITRE ATT&CK framework with hacker mindset. Network Security Knowledge of Network Security technology in areas of Firewall, IPS, VPN, Gateway security solutions (proxy, web filtering) Key Technologies Familiarity with OWASP, SANS vulnerabilities along with its validations in source code and other security frameworks & Compliance, Knowledge of Networking concepts & Good understanding of latest Network /security technologies such as Cloud security and recent trends.

NAB is looking for Security Assurance Consultant to join our dynamic team and embark on a rewarding career journey Undertake short-term or long-term projects to address a variety of issues and needs Meet with management or appropriate staff to understand their requirements Use interviews, surveys etc. to collect necessary data Conduct situational and data analysis to identify and understand a problem or issue Present and explain findings to appropriate executives Provide advice or suggestions for improvement according to objectives Formulate plans to implement recommendations and overcome objections Arrange for or provide training to people affected by change Evaluate the situation periodically and make adjustments when needed Replenish knowledge of industry, products and field

Be part of a transformative team that is shaping the way First American builds and delivers world-class technology products that fuel the real estate industry. We are looking for the best-of-the-best technology experts who will envision, design, build, and deliver innovative solutions that provide exceptional experiences and lasting value to our customers. First American seeks a Principal Engineer- Security Enablement to help validate our services, applications, and tools to be designed and implemented to the highest security standards. You will be responsible for analyzing the security of applications and services, discovering and addressing security issues, building security automation, and quickly reacting to new threat scenarios. What you'll Do: As a Principal Engineer - Security Enablement, you will be responsible for enhancing the security posture of our applications throughout their lifecycle. Conduct application security design reviews to identify potential vulnerabilities and recommend mitigation strategies. Collaborate with development teams to integrate security into the software development lifecycle. Provide guidance and mentorship to developers on secure coding practices and security architecture. Contribute to the continuous improvement of security processes and practices within the organization. Assess and identify security risks that may be present to achieving the team s larger goals. Perform security code reviews of source code changes and advise developers on remediating vulnerabilities and following secure coding practices. Reviewing code for vulnerabilities and then remediating these (either alone or with Software Engineers). Security training and outreach to internal development teams. Stay abreast of emerging security threats, vulnerabilities, and technologies. Collaborate with product management and other cross-functional teams to iteratively design, develop, and validate outcome-driven technology solutions. Continuous Improvement: Join a team determined to achieve ambitious goals, provide regular feedback, and drive continuous improvement. What you'll Bring: 8-10 years experience as a software engineer 2+ years of application security Experience in vulnerability discovery and code-level security reviews Strong background in application security best practices and familiarity with common vulnerabilities (eg, SSRF, race conditions, privilege escalations, etc) Familiarity with and ability to understand business objectives, business context, and security risk Ability to mentor and influence software engineers to share knowledge and improve quality Ability to unblock yourself and help accelerate the team in achieving their goals Ideally, you will also have experience with: Proficient in one of the following C# (.NET Core, .NET Framework), TypeScript & React / Node.js, or Golang Working within a highly regulated industry such as Financial Services or Healthcare Strong experience with AppSec tooling, including integrating it into CI/CD pipelines, such as Veracode, Synk, and PrismaCloud In-depth knowledge of AWS or Azure and associated tools Infrastructure as Code (Terraform, Ansible) Cloud infrastructure & services (AWS, Azure) Cloud security best practices Networking knowledge Security tools such as Burp Suite, Fortify, Vercode, etc Effective communication skills, both verbal and written, with strong relationship, collaborative, and organizational skills