1249 Application Security Jobs - Page 4

IT GRC Responsibilities: The incumbent is responsible for the following: A) IT- Governance: Experience in • Utilizing processes, frameworks, and decision-making mechanisms to direct and control the use of IT within an organization. • Establishment of Policies, Procedures, and Controls: Setting clear guidelines for ITrelated activities and decisions, ensuring consistency and adherence to best practices and legal requirements. • Effective Communication and Collaboration: Facilitating strong communication and collaboration across various departments, teams, and organizational stakeholders. • Stakeholder Engagement: Fostering involvement, engagement, and informed participation from relevant stakeholders in IT decision-making processes. • Accountability and Defined Roles: Ensuring clarity regarding who is responsible for specific IT decisions, actions, and outcomes. • Comprehensive Risk Management: Incorporating practices such as regular risk assessments, mitigation strategies, and ongoing monitoring to manage IT risks. • Optimization of IT Resource Utilization: Ensuring efficient use of IT resources to maximize the organization's benefits. • Mitigation of IT Adoption Risks: Addressing potential risks associated with technology adoption, including security, compliance, operational, and financial risks. B) IT Risk Management: Experience in • GRC delivery engagements and executing advisory & consulting projects around Risk & Compliances such as SOX ITGC, HIPAA, GDPR -EU/Data Privacy (DPO). • Executing IT security assessment, risk assessments pertaining to clients IT environment. • Executing technical risk assessments around applications, control testing on premise and for Cloud environment etc. pg. 2 • Executing activities like data discovery, privacy & security impact analysis and propose process and technical solutions. • Documenting policies & procedures meeting the regulatory compliance and risk management requirements. • Developing knowledge base, re-usable components for GRC advisory services • Development and enhancements of GRC services, team and delivery capabilities. • Identification of threats and risk exposures • Monitoring of the implementation of corresponding mitigating controls • Various GRC tools usage like. (Riskonnect, ServiceNow, MetricStream) C) IT Compliance Programs & Quality Management: • Design, implement, manage and improve quality and compliance programs across the organization. • Manage compliance and improve business processes and operations by supporting a program of internal audits and external assessments against adopted standards (e.g., COBIT, ISO20000, ISO27000, ISO22301, ITSM etc.) • Perform and/or manage internal reviews of Projects and Services against the industry standards adopted by the organization. • Document and perform quality and compliance review and testing procedures. • Business Processes and Controls: o Support the design, implementation, monitoring and continuous improvement of sound business processes across the organization. o Conduct reviews and monitor compliance with approved business processes and control frameworks. o Using the Continuous Improvement Process, identify processes requiring improvement, coordinate prioritization and implementation of these improvements using appropriate tools and techniques. • Co-ordinate activities for fulfilling requirements of internal and external audits or assessments. • Prepare relevant reports for to the Senior Management pg. 3 Experience and Skills required: Essential: • 15-18 Overall years of relevant experience in implementing, managing, reviewing and improving internal controls for governance, compliance and quality, IT audits, or assurance and risk management programs in Global Shared Services/Captive unit environment. • IT risk management experience is a must. • Demonstrated ability to work with and report to a governance board (i.e., Audit /Risk committee or similar) • Highly proficient in IT Risk, compliance and audit methodologies, especially but not limited to those applicable in IT environments. • Experience in business process and control optimization, preferably within an IT organization • Proficient in IT governance and quality standards • Experience writing high quality documentation and reports. • Excellent comprehension of internal controls requirements and implications. • Demonstrated ability to work in multicultural and diverse environments. Desirable: • Good knowledge of IT Application & Infrastructure operations. • Knowledge of regulatory compliances such as SOX, PCI etc. • Good knowledge of Risk Management and Control Auditing principles • Knowledge of Data Privacy Requirements and Cyber Laws. • Knowledge of IT Security, physical and environmental security and HR security controls. Education: Essential: • Bachelors/ Masters degree, or equivalent, in Business Management, Information Technology Management or related field • Good understanding of various IS standards, framework such as ISO27001, PCIDSS, HIPAA, NIST, SOC/SSAE16 Standards & ISO27005, ISO 22301 Guidelines • Certified in risk management (ISO31000, ISO27005), CISA/CISM, BCMS/BCP-DR

The Role Description: Designated position will be a part of India Managed Security Services Organization. The individual will be required to lead AppSec and Vulnerability Management business function and will be responsible for conducting security assessment, Penetration testing of IT/Cloud and OT infrastructure, application security assessment of hosted applications and DevSecOps support for new applications throughout their lifecycle to identify potential vulnerabilities, suggest mitigation strategies, and support the customers/ partners in implementing these strategies. This included project management, service delivery and quality assurance, customer management, relationship with vendors & technology partners. Key General Responsibilities: Lead and drive the AppSec & Vulnerability management function and service delivery by new projects acquisition, project delivery through execution & operations support Strong leadership skills with the ability to lead department and manage functional teams Build and grow the competency through hiring and developing the current team Provide strong technical leadership to the delivery team, partners and customers Results-oriented and ability to think big can work backward from customers needs Project Management, Service Management, Customer handling, Quality assurance Highly effective communicator and demonstrated ability to work cross-functionally, with a track record of delivering results and demonstrating strong ownership People management and accountable for hiring, talent development, performance management, succession planning, coaching to direct reports, and engagement for the teams Excellent communication and interpersonal skills, with the ability to influence and engage stakeholders at all levels within the organization and with customers, partners/vendors Support sales strategy to meet agreed business revenue through pre-sales & appropriate solutions Identify and grow new opportunities with existing customer and ensure customer satisfaction and retention Key Technical Responsibilities: As Technical leader, drive future strategy around Threat intelligence, security architecture reviews, vulnerability management, security configuration, DevSecOps and application security Perform manual/automation internal and external vulnerability assessments in IT/Cloud and OT Perform security control assessment and vulnerability assessments in OT environment Perform Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Interactive Application Security Testing (IAST) to identify vulnerabilities in software applications Conduct Vulnerability Assessment and Penetration Testing (VAPT) in Web, Android and API Perform Gray Box and/or Penetration testing on WEB, API and Mobile Device (Android) Complete project work with quality and within deadlines as required, complete the analysis and draw comprehensive conclusions, making appropriate recommendations and mitigation plan Communicate technical impact and business risk to a non-technical audience after the project Provide expert advice on the selection and implementation of appropriate Security Assessment / Testing software and tools Implement and manage DevSecOps by utilizing Software Assurance Maturity Model (SAMM) to evaluate and improve the security of software development processes Follow security standards and frameworks, and implement best practices methodologies Work closely with product development teams to ensure secure coding practices are followed Educate customers, technical team, application developers about Emerging threat and vulnerability, application security to raise awareness and build a Security Champion program General Experience Requirement for the role: Having 8+ years of experience in the leading and managing Threat & Vulnerability competency, projects and customer engagements Having 6-8 years of core hands-on experience in fields of cyber-Security, security standards, best practices, vulnerability assessments, web application testing, network and mobile application assessment, and penetration testing 1-2 years of experience in enterprise security management, security products/solution integration/security operations, with good understanding of Network and system security concepts and standards, security best practices Experience building and leading and managing security teams with experience in Cyber security practices, AppSec, threat intelligence, vulnerability management, penetration testing, infrastructure security assessment Excellent Project Management, Service Management and customer handling skills Possess excellent written, presentation and verbal communication skills necessary for team coordination, helping partners, and service discussions along with organizational skills Good analytical skills with an ability to think outside the box to solve highly technical problems Ability to work effectively with clients, management, staff members, vendors, and consultants Good interpersonal skills to interact and collaborate with senior management stakeholders such as IT, Network and Security and CIO/ CTO/ business leadership teams Ability to work calmly with patience in high pressure situations in a dynamic environment Education and Certification preferred for the role: BTech/B.E. in CSE/IT/CSA/ECE MCA/ MTech/MS in CSE/IT/CSA/Electronics Any of the security certifications such as CEH, CHFI, ECSA, OSCP, GPEN, CISSP/CISM/CISA Technical Skills that are Key to this role: Strong background in Network/Infrastructure Vulnerability Assessment and Penetration Testing Good understanding of security vulnerabilities, OWASP Top 10 vulnerabilities, Enterprise security architecture, standards, relevant best practices and frameworks Extensive expertise in Web, API, Android Mobile Apps, and AWS/Azure Cloud Security, Experience with software penetration testing, architectural risk assessment, threat modeling, static code analysis and secure code review on WEB, API and Android mobile applications Web Application Penetration Testing: Strong experience in assessing web applications for security vulnerabilities using tools such as Burp Suite, OWASP ZAP, or similar. Mobile Application Penetration Testing: Proficiency in evaluating the security of mobile applications on Android platforms, including reverse engineering and code analysis. Cloud Security: In-depth knowledge of cloud security best practices, including experience with AWS/ Azure Cloud Platform, and the ability to configure security controls and monitor for cloud-based threats, with experience in AWS/Azure cloud security assessments. API Security: Expertise in assessing the security of APIs, including authentication, authorization, and data protection. Web Application and Mobile Apps security assessment in accordance with the OWASP standards. Vulnerability Assessment includes analysis of bugs in various applications on various domains by using both manual and Automation tools. Familiarity with security in DevOps and continuous integration/continuous deployment (CI/CD) pipelines. Experience of working on Windows and Linux with Good understanding of operating system internals (Windows, Linux and Mobile OS (Android) and app development (especially mobile) Should be familiar with common compliance requirements like GDPR, PCI-DSS, ISO 27001 Experience with mobile Open Web Application Security Project (OWASP) standards and testing checklist. Should be able to configure automated scanners (such as Login sequence, manually exploring critical flaws, Policy customization, scan throttling, etc) to perform successful scans. Assessment of scanner results and intelligently identifying false positives from the scan results. Flaws like, Authentication (session management) testing, CSRF, business logic testing which are not detected by an automated scanner must be identified using manual testing. Understanding of the workflow of the application and identifying the entry points to detect possible vulnerabilities.Hands-on experience with popular security tools NMAP, Nessus, Burp Suite, Nessus, Netsparker, Metasploit, OWASP ZAP. Familiar with Agile process and development tools (Jira, Confluence, Bitbucket, Git, Maven, Jenkins, etc

Conduct comprehensive penetration testing of networks, web applications, mobile applications, and other systems to identify security vulnerabilities. Perform vulnerability assessments and provide detailed recommendations for remediation. Knowledge of OT-ICS Security standards, including ISA/IEC 62443, NIST 800-82, NERC-CIP, MITRE ATT&CK etc. Strong knowledge of common security vulnerabilities, attack vectors, threat modelling and exploitation techniques. Proficiency in using penetration testing tools and frameworks such as Nessus, Burp Suite, Nmap, and other ethical hacking tools. Strong understanding of network protocols, network and application security architectures, and common vulnerabilities (e.g., OWASP Top Ten). Prepare detailed reports of findings, including risk analysis and recommended mitigations, and present these findings to stakeholders. Stay current with emerging security threats, vulnerabilities, and technology trends, and apply this knowledge to improve our security posture. Understanding of component/system architectures in IT and OT environments. Understanding and evaluation of security testing methods. Knowledge of typical industrial protocols (e.g., Modbus, Profinet, OPC, DNP3.0, CAN) Excellent communication skills, with the ability to clearly articulate technical findings and recommendations to both technical and non-technical audiences Source code review for control flow and security flaws IEC 62443 Standard plus at least one of: ISO/IEC 27001 IEC 61508 NIST CSF IEC 61162-460:2024 Proficient in developing VAPT documentation and methodologies specifically aligned with IEC 61162-460:2024 for maritime navigation and radiocommunication equipment cybersecurity. Automotive Vehicle Testing Support Skilled in providing cybersecurity testing support for automotive vehicles , including VAPT of ECUs and in-vehicle networks , threat modeling , and ensuring compliance with industry standards like ISO/SAE 21434. Roles and Responsibilities Min. one professional certification such as Certified Ethical Hacker (CEH), ISA/IEC 62443, OSCP or certified Penetration Tester preferred. Min 2–5 years of experience performing security testing on Industrial control system components like IOT devices, PLCs, SCADA, IIOT devices etc. Familiarity with operating systems (Windows, Linux) and their security features. Excellent problem-solving skills and the ability to think critically to identify and address security issues. Strong verbal and written communication skills, with the ability to document and present technical information to both technical and non-technical audiences. Perform and report on penetration testing of systems, including cloud, NIST 800-53 CA-8 security control and using methodologies that may include, NIST SP 800-115, IEC 62243, PTES, and Information Systems Security Assessment Framework (ISSAF). Develop and maintain up-to-date knowledge of security testing tools and techniques. Contribute to the development and maintenance of security testing methodologies and procedures. Team Collaboration and Training Collaborate with other members of the security team to develop and maintain security policies, procedures, and standards

Position Job Title: Business Intelligence Developer Reports To: Business Intelligence Manager Primary Purpose The BI developer applies business and advanced technical expertise in meeting business data and reporting needs. The position supports business planning by compiling, visualizing, and analyzing business and statistical data from UCWs information systems. The BI developer liaises with various stakeholders across the university to provide them with the data, reporting, and analysis required to make informed data-driven decisions. The Business Intelligence developer will work on projects that will have a significant impact on student, faculty, and staff experience. Specific Responsibilities The BI Developer will at various times be responsible for the following as well as other related duties as assigned to support the business objectives and purpose of the Company. Design relational databases to support business enterprise applications and physical data modeling according to business requirements Gather requirements from various business departments at UCW and transform them into self-serve reports/dashboards for the various business units using Power BI Understand ad-hoc data requirements and convert it into reporting deliverables Contribute to driving reporting automation and simplification to free up time for in-depth analyses Collaborate with internal and external team members, including system architects, software developers, database administrators, and design analysts, to find creative and innovative approaches to enrich business data Provide business and technical expertise for the analytics process, tools, and applications for the University. Identify opportunities that improve data accuracy and efficiency of our processes. Contributes to the development of training materials, documenting processes, and delivering sessions. Develop strategies for data modeling, design, transport, and implementation to meet requirements for metadata management, operational data stores, and ELT/ETL environments Create and test data models for a variety of business data, applications, database structures, and metadata tables to meet operational goals for performance and efficiency Research modern technologies, data modeling methods, and information management systems and recommend changes to company data architectures Contribute to a team environment where all team members consistently experience a sense of belonging and inclusion Position Requirements Competencies: Demonstrated experience in creating complex data models and developing insightful reports and dashboards using Microsoft Power BI Must possess advanced skills in using DAX queries for Power BI Connecting data sources, importing data, cleaning, and transforming data for Business intelligence Knowledge of database management principles and experience working with SQL/MySQL databases Ability to implement row-level security on data along with an understanding of application security layer models in Power BI Ability to translate business requirements into informative reports/visuals A good sense of design that will help communicate data using visually compelling reports and dashboards Experience in ETL (Extract, Transform and Load) processes an asset Experience in being involved in the development of a data warehouse is an asset Data analysis and visualization skills using Python and/or R an asset Strong analytical, problem-solving, and data analysis skills Ability to ensure organizational data privacy and confidentiality Understanding of statistical analysis techniques such as correlation and regression Demonstrated ability to collect data from a variety of sources, synthesize data, produce reports, and make recommendations Ability to manage multiple concurrent tasks and competing demands Education and Experience: Bachelors or masters degree in business, Information Systems, Computer Science, or related discipline Demonstrated experience in using Power BI to create reports, dashboards, and self serve analytics Must have 3+ years of experience in data-specific roles especially in the use of Power BI, Excel, and SQL

At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture, and technology to become the best version of you. And we're counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. As an Associate Director in the EY-Cyber Risk Compliance and Resilience team, you will contribute technically to Cyber Security client engagements and internal projects. Your role will involve actively establishing, maintaining, and strengthening internal and external relationships. Your key responsibilities include reporting to the competency leader for Cyber Risk, Compliance, Resilience, and Emerging Technology. You will be responsible for defining, developing, and implementing strategic go-to-market plans in collaboration with local EY member firms in the region. Additionally, you will own end-to-end sales opportunity qualification and pursuit, support the overall growth strategy for the Cybersecurity practice, identify market differentiators, drive development of new products and solutions, pursue strategic partnerships and acquisitions, and manage engagements across clients to deliver value and ensure growth. To succeed in this role, you must have deep knowledge of services and service delivery approach for Cyber Risk, Compliance, and resilience, a proven track record in collaborative sales, the ability to build and maintain trusted relationships, technical understanding of risk and compliance solutioning, willingness to travel and adapt, and be a self-starter and strategic thinker. Other skills required include expertise in Cyber Strategy & Governance, Compliance Management, Cyber Risk management, Cyber Resilience, Business Continuity & Disaster Recovery, Application security, Threat Modelling, and Vendor Risk Management. To qualify for this role, you need at least 18 years of overall experience, with 15 years in architecture and solutioning for enterprise and cloud security. A Bachelor's or college degree in a related field or equivalent work experience is required, while an MBA is considered a plus. Additionally, having project management skills and certifications like CISSP/CISA/CISM or ITIL would be beneficial. We are looking for individuals with commercial acumen, technical experience, and a willingness to learn in a fast-moving environment. Join our market-leading team of professionals and collaborate with EY Consulting practices globally to work with leading businesses across various industries. At EY, we exist to build a better working world, creating long-term value for clients, people, and society, and building trust in the capital markets. Our diverse teams in over 150 countries provide trust through assurance and help clients grow, transform, and operate across various service areas. Join us in asking better questions to find new answers for the complex issues facing our world today.,

At EY, you will be part of a globally connected powerhouse of diverse teams that are dedicated to shaping your future with confidence. As a Senior Manager in the Cyber Risk Compliance and Resilience team, you will play a crucial role in contributing technically to Cyber Security client engagements and internal projects. Building and maintaining strong internal and external relationships will be a key aspect of your responsibilities. You will have the opportunity to utilize your deep technical understanding of risk and compliance solutioning for enterprises, including knowledge of products, capabilities, competitor landscape, pricing methodologies, and brand management. Ensuring that all work meets EY's quality standards and fostering a positive learning culture within the team will be integral to your role. Key responsibilities include collaborating with local EY member firms to develop strategic go-to-market plans, leading sales opportunities from qualification to pursuit, supporting the growth strategy for the Cybersecurity practice, and identifying market differentiators and strategic partnership opportunities. You will also be responsible for developing branding and marketing strategies, inspiring and motivating team members, and overseeing engagements to deliver value to clients. To excel in this role, you should possess deep knowledge of services and delivery approaches for Cyber Risk, Compliance, and resilience, as well as a proven track record in collaborative sales and relationship-building. Adaptability, strategic thinking, and willingness to travel and work flexibly are essential qualities for success in this position. Qualifications for this role include at least 15 years of overall experience, with a minimum of 10 years in architecture and solutioning for enterprise and cloud security. A bachelor's or college degree in a related field or equivalent work experience is required, and an MBA is considered a plus. Additional skills such as project management, CISSP/CISA/CISM certifications, and ITIL knowledge are advantageous. EY is committed to building a better working world by creating new value for clients, people, society, and the planet. By leveraging data, AI, and advanced technology, EY teams help clients navigate the challenges of today and tomorrow with confidence. Joining EY offers the opportunity to work with a market-leading team of professionals globally and collaborate with leading businesses across various industries.,

As a Solution Designer at Sun Life Global Solutions, you will be responsible for driving the execution of technical and architectural decisions made by the team. Your role will involve ensuring the employment of the right practices, problem-solving, and fostering collaboration among team members. Collaborating with key stakeholders, you will analyze ideas and demands for architectural fit and translate detailed business requirements into implementable solutions. Furthermore, you will partner with both business and IT teams on solution architecture design, maintaining alignment between enterprise architecture blueprint and solution implementation. It will be your responsibility to ensure the technical integrity, consistency, and quality of the solution at every stage of its lifecycle. In this role, you may also be required to coach developers, engage in pair programming, introduce new practices, or assist in onboarding new team members. Collaboration with business users, product and enterprise teams, and IT development teams is essential to design, develop, and implement the product effectively. To be successful in this position, you should have 11 to 18 years of hands-on Design & Development experience and be proficient in identifying and applying relevant Architecture & Design Patterns for performance optimization. Experience in integrating with Legacy systems, knowledge of Development best practices (such as TDD, BDD), and expertise in design, presentation, and prototyping tools are crucial. Additionally, familiarity with designing Cloud-native applications & services deployed over AWS, handling Application security and API Security, and understanding the latest industry standards and architectural patterns in Distributed Computing, Cloud, UI, and Database are essential for success. Coaching an agile technical team and experience with DevOps practices (Continuous Integration tools, Configuration management tools, Unit testing, Build configuration, Code Quality) would be beneficial for this role. If you are a forward-thinking individual with a passion for technology and innovation, and possess the necessary skills and experience, we invite you to join our dynamic team at Sun Life Global Solutions.,

Do you want to work on complex and pressing challenges, the kind that bring together curious, ambitious, and determined leaders who strive to become better every day If this sounds like you, you've come to the right place. You will be a core member of Periscope's technology team with responsibilities that range from developing and implementing our core enterprise products to ensuring that McKinsey's craft stays on the leading edge of technology. In this role, you will be involved in leading software development projects in a hands-on manner. You will spend about 70% of your time writing and reviewing code and creating software designs. Your expertise will expand into database design, core middle-tier modules, performance tuning, cloud technologies, DevOps, and continuous delivery domains over time. You will be an active learner, tinkering with new open-source libraries, using unfamiliar technologies without supervision, and learning frameworks and approaches. You will have a strong understanding of key agile engineering practices to guide teams on improvement opportunities in their engineering practices. You will provide ongoing coaching and mentoring to the developers to improve our organizational capability. You will be based in our Bengaluru or Gurugram office as part of our Growth, Marketing & Sales team. You'll be aligned primarily with Periscope's technology team. Periscope By McKinsey enables better commercial decisions by uncovering actionable insights. The Periscope platform combines world-leading intellectual property, prescriptive analytics, and cloud-based tools to provide more than 25 solutions focused on insights and marketing, with expert support and training. It is a unique combination that drives revenue growth both now and in the future. Customer experience, performance, pricing, category, and sales optimization are powered by the Periscope platform. Periscope has a presence in 26 locations across 16 countries with a team of 1000+ business and IT professionals and a network of 300+ experts. Driving lasting impact and building long-term capabilities with our clients is not easy work. You are the kind of person who thrives in a high-performance/high reward culture - doing hard things, picking yourself up when you stumble, and having the resilience to try another way forward. In return for your drive, determination, and curiosity, we'll provide the resources, mentorship, and opportunities you need to become a stronger leader faster than you ever thought possible. Your colleagues at all levels will invest deeply in your development, just as much as they invest in delivering exceptional results for clients. Every day, you'll receive apprenticeship, coaching, and exposure that will accelerate your growth in ways you won't find anywhere else. When you join us, you will have continuous learning opportunities, a voice that matters, be part of a global community, and receive world-class benefits. Your qualifications and skills should include a degree in computer science or a related field, 6+ years" experience in software development, proficiency in Scala, React.js, relational and NoSQL databases, cloud infrastructure, container technologies, modern engineering practices, Agile methodology, performance optimization tools, excellent analytical and problem-solving skills, customer service focus, and the ability to work effectively under pressure and in diverse team settings. Prior experience leading a small team is advantageous.,

As a Pre-Sales Lead specializing in Cybersecurity at Embee, you will play a vital role in supporting Embee's cybersecurity sales initiatives by leveraging your technical expertise to create customized solutions. With over 10 years of experience, you will need a deep understanding of both Microsoft and non-Microsoft security solutions, covering areas such as Network Security, Application Security, Endpoint Protection, Data Protection, and Security Operations. Your responsibilities will include designing solutions, supporting sales efforts, responding to RFPs, and engaging with clients, particularly CISOs and IT teams. Your primary responsibilities will involve developing tailored cybersecurity solutions that integrate a mix of Microsoft and non-Microsoft technologies to address complex security requirements. You will provide detailed technical guidance on various cybersecurity products, including Next-Gen Firewalls, WAF, EPP & EDR, DLP, and SecOps. Collaborating closely with Business Development Managers and sales teams, you will contribute to creating compelling solution proposals, presentations, and demonstrations. Additionally, you will engage directly with enterprise clients to understand their needs and align proposed solutions with their security objectives. Leading the creation of RFP and RFI responses will also be a key part of your role, requiring you to outline technical architecture, project scopes, and solution documentation. To excel in this role, you will need at least 10 years of experience in cybersecurity pre-sales or solutions architecture, preferably within System Integrators or OEMs. Your technical proficiency should cover a wide range of cybersecurity solutions, both from Microsoft and other providers. Strong communication and presentation skills are essential for effectively conveying complex technical concepts to diverse audiences. You should also possess excellent problem-solving abilities to diagnose client requirements and design scalable cybersecurity solutions. Collaboration and relationship management skills will be crucial for working with cross-functional teams and ensuring client satisfaction. Furthermore, a commitment to continuous learning and staying updated on cybersecurity trends and advancements is essential for success in this dynamic role. Joining Embee as a Pre-Sales Lead in Cybersecurity presents an exciting opportunity to make a significant impact in a collaborative and innovative environment. With a supportive team and a focus on driving cybersecurity excellence, this role offers a rewarding experience for cybersecurity professionals seeking to advance their careers in a challenging yet fulfilling setting.,

Join our team at Litera, where legal technology meets excellence. With over 25 years of experience, Litera has been a pioneer in legal technology innovation, developing software solutions to enhance impact and efficiency in the legal industry. Our suite of integrated legal tools, designed by top legal professionals, simplifies core legal workflows, fosters secure collaboration, and organizes firm knowledge and experience. We strive to empower over 2.3 million legal professionals every day, enabling them to focus on their craft. At Litera, we believe in less busy work and more of life's work. As a Site Reliability Engineer (SRE) at Litera, you will be an integral part of a dynamic team dedicated to driving innovation in the legal technology sector. You will have the opportunity to work with cutting-edge tools and collaborate with industry experts to deliver solutions that significantly impact the legal profession. In this role, you will play a vital role in ensuring the availability, reliability, and resiliency of Litera's SaaS applications and technology services. You will be involved in designing, building, enhancing, and supporting next-generation applications while adhering to industry best practices for configuration management, incident management, application monitoring, and disaster recovery. Your responsibilities will include resolving software defects, supporting on-premises customer-maintained software products, and participating in a 24x7 SRE team on-call rotation. Key Responsibilities: - Serve as a subject matter expert for SaaS-hosted applications and underlying architecture - Address unique challenges across the organization - Provide ongoing support for customer-facing applications and escalations - Participate in a 24x7 SRE team on-call rotation - Conduct root cause analysis for major outages and incidents - Automate processes to reduce toil - Build and maintain product availability and performance dashboards - Recommend and implement solutions to improve the environment continuously - Maintain security compliance and configuration standards - Organize and lead cross-functional teams to resolve critical production issues - Manage organizational disaster recovery events and processes - Write and maintain technical documentation - Mentor others within the organization and be a technical leader - Demonstrate dependability and support for the team Qualifications: - 2+ years of experience in debugging applications and defect management - 2+ years of experience working with cloud providers (AWS/Azure) - 1+ years of experience working with container orchestration technologies - 1+ years of experience working with configuration management tools (Terraform) - Prior work experience in a Site Reliability Engineer or Support Engineer role - Good working knowledge of enterprise monitoring and alerting tools - Strong problem-solving skills and reverse engineering discipline - Ability to troubleshoot server operating systems, databases, and web servers - Understanding of software engineering best practices and agile methodologies - Familiarity with application service scaling and architectural changes - Ability to simplify and explain complex issues - Quick learner with a willingness to adapt to new technologies - Understanding of ITIL and service management processes - Experience in tuning databases and working in a fast-paced environment - Strong sense of urgency and professional composure under pressure Preferred Skills: - Experience working on SaaS teams - Experience in regulated environments (SOX, HIPAA, PCI) - Industry-relevant certifications - Software development experience - Background in application security and compliance Why Join Litera - Company culture emphasizing growth, integrity, and impactful work - Commitment to employees" well-being and professional growth - Global, dynamic, and diverse team fostering collaboration and problem-solving - Comprehensive benefits package promoting work-life balance and career development At Litera, we are an equal opportunity employer dedicated to creating an inclusive environment that celebrates diversity and empowers all employees to succeed.,

A career in Information Technology Risk Assurance offers you the opportunity to develop and implement strategies that assist clients in maximizing the benefits of enterprise technologies. By leveraging these technologies effectively, clients can enhance their return on investment, manage risks, streamline processes, and identify operational inefficiencies. The role involves engaging in creative problem-solving and utilizing innovative technologies to enable strategies that enhance the value of clients" business applications, mitigate risks, and optimize operational processes. Your focus will be on designing effective and efficient solutions for critical business, security, and compliance processes, with an emphasis on application security, fraud prevention, financial accuracy, and process optimization. By employing innovative and proprietary technologies, you will facilitate collaboration between business stakeholders, compliance functions, and Information Technology teams to promote new ways of working while minimizing financial and operational risks. Your expertise in financial system design, risk mitigation, business process design, data integrity, security, and data analytics will be essential in helping clients tailor their enterprise financial systems to meet business requirements, enhance user experiences, and manage risks effectively. As a valuable member of the team, you will play a pivotal role in guiding clients to achieve the maximum value from their Oracle investment. To excel in a rapidly changing environment, each individual at PwC is expected to be a purpose-led and values-driven leader. The PwC Professional, our global leadership development framework, sets clear expectations for skills and behaviors across different roles, geographies, and career paths. It equips you with the necessary skills to succeed and progress in your career, fostering a culture of continuous learning and development. Responsibilities: - As an Associate, you will collaborate with a team of problem solvers to address complex business challenges, from strategic planning to execution. Key responsibilities at this level include: - Providing constructive feedback in real-time and receiving feedback openly. - Collaborating effectively with team members. - Identifying opportunities for improvement and offering suggestions. - Handling, analyzing, and managing data responsibly. - Adhering to risk management and compliance protocols. - Staying informed about developments in your area of expertise. - Communicating confidently and articulately, both verbally and in written materials. - Building and nurturing internal and external networks. - Seeking opportunities to understand the global operations of PwC. - Upholding the firm's code of ethics and business conduct. The role will primarily involve working on Business Process controls for ATR/OTC/PTP for Oracle, as well as conducting IT Risk and Controls assessments and audits. As a senior associate, you will collaborate with a team of 2-5 members on multiple projects related to Control Integration (CI) for Oracle. In the realm of CI, your tasks will include: - Designing and implementing business process and IT General Controls to meet financial reporting and SOX requirements. - Leveraging automated controls within the ERP to enhance control effectiveness. - Addressing historical control deficiencies, gaps, or system limitations. - Conducting process walkthroughs, assessing financial and operational controls related to the Oracle application, and recommending improvements. - Reviewing the RACI matrix and Control Owners documentation, and documenting test scripts and key reports. - Evaluating risks and designing controls during enterprise system implementations. - Conducting Test of Design and/or Test of Effectiveness for operational controls in Oracle. - Understanding internal controls, compliance, and their relevance to audit processes. Preferred Knowledge: - Proficiency in applying internal control principles and business/technical knowledge, encompassing Application Controls, IT General Controls, and Financial Reporting Concepts. - Thorough understanding of control design, implementation, and assessment, with a focus on systems implementation lifecycle, application security, and Oracle-related business processes. - Basic PL/SQL skills would be advantageous. Capability: - Ability to adapt work programs and practice aids, assess controls, security, segregation of duties, and optimization potentials using PwC's proprietary or relevant tools. - Capacity to identify and address client needs, build and maintain client relationships, and comprehend the client's business requirements effectively. Experience: - Up to 4 years of experience in the domains specified in the job description. Candidates with experience in Big 4 firms or equivalent are preferred. - Experience in leading teams of 2-3 members would be beneficial. Education: - Bachelor's Degree in Engineering or Management Information Systems, or a Master's in Computer Applications. - Additional post-graduate certifications such as CA or MBA would be advantageous.,

Visas Cybersecurity product team has designed a Cybersecurity product that delivers protection of cryptographic secrets in application memory, reducing attack vectors of unprotected application memory. This software engineering role will work with a small team of software engineers, and contribute directly to the code base, demonstrating stewardship of software through full life cycle: requirements, design, development, testing, and support. Essential Functions Work closely with the lead software engineer of this cybersecurity product. Automation and Best Practices: Implement best engineering practices and automate software development, testing, and deployment processes. Ensure the timely delivery and maintenance of multiple services, focusing on continuous improvement. Understand Visa Network architecture and work with Visas container and platform experts to implement rapid POCs and pilots to demonstrate feasibility of new capabilities and technologies and align security defenses to such capabilities. Partner closely with application and infrastructure teams in building secure key management services. Apply creative thinking/approach to determine solutions that further Business Goals and align with Technology Strategies. Ability to communicate on cybersecurity topics to diverse audiences, from new-hire engineers to senior executives and customers. Capability to conduct original research, or guide the research of colleagues, to solve complex problems through empirical methods and experimentation. Demonstrate technical mastery and be an inspirational leader and mentor who continuously develops the competencies of their self and others. Continuous Learning: Engage in continuous learning and development, actively seeking opportunities to enhance your skills and knowledge. Collaborate with peers to share insights and drive team growth. This is a hybrid position. Expectation of days in office will be confirmed by your Hiring Manager. Basic Qualifications 5+ years of relevant work experience with a Bachelor s Degree or at least 2 years of work experience with an Advanced degree (e.g. Masters, MBA, JD, MD) or 0 years of work experience with a PhD, OR 8+ years of relevant work

Key Responsibilities: Design and develop applications using the Mendix low-code platform Collaborate with stakeholders to gather and refine functional and non-functional requirements Translate business needs into technical solutions and implement them in Mendix Build integrations with APIs, web services, and external systems Maintain, troubleshoot, and enhance existing Mendix applications Apply best practices in UI/UX, data modeling, and application security Participate in Agile/Scrum ceremonies and contribute to continuous improvement Write technical documentation and provide user training when needed Ensure applications meet performance, scalability, and reliability standards Work closely with QA and DevOps teams to automate testing and deployments

Jul 24, 2025 Location: Pune Designation: Assistant Manager Entity: Deloitte South Asia LLP Your potential, unleashed. India s impact on the global economy has increased at an exponential rate and Deloitte presents an opportunity to unleash and realise your potential amongst cutting edge leaders, and organisations shaping the future of the region, and indeed, the world beyond. At Deloitte, your whole self to work, every day. Combine that with our drive to propel with purpose and you have the perfect playground to collaborate, innovate, grow, and make an impact that matters. The Team Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure, vigilant, and resilient not only by looking at how to prevent and respond to attacks, but at how to manage cyber risk in a way that allows you to unleash new opportunities. Embed cyber risk at the start of strategy development for more effective management of information and technology risks Your work profile As an Assisstant Manager in our Cyber Team you ll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations. Youll : Role Description : 1. ISMS or Third-Party Risk Assessments 2. Lead engagement team in delivering client engagements 3. Support Managers/AD/D in assessment/ audit execution, reporting, quality review and tracking Support Managers/AD/D in responding to RFP, proposals, new opportunities 4. Lead discussions with client teams from various depts. Such as compliance teams, auditing and regulators to identify and document various requirements/obligations 5. Flexible to step-in and perform work on ground such as conducting risk assessments and audits with respect to people, process and technology 6. Act as subject matter expert (SME) for providing guidance and share knowledge with team members. Assist team members during engagements 7. Should be able to work as independently on short term engagements 8. Perform quality reviews of work performed by team members Desired qualifications 1. 3+ Relevant years of experience in Third party risk management 2. Relevant years of experience in IT Audits, Cloud security 3. Experience with ISO22301 implementation and audits 4. Preferred certifications CBCI / CBCP / ISO22301 LI or LA Offensive Security Certified Professional, CISA to work in a cross-functional, cross-cultural matrix environment\ 5. Understanding of Third party/vendor/supplier risk management considerations 6. Knowledge of Data Protection & Privacy related risks associated with Third-Party and relevant control frameworks for Third party risk management 7. Excellent written/verbal communication 8. Excellent documentation and presentation skills 9. Highly motivated and willing to work in local and global environments 10. Security certifications like CISSP, CISA, CISM, CEH, ISO27001 11. Work experience in Infrastructure / Application Security 12. Work experience in IT Audit 13. Work experience in Information Risk Management Location and way of working Base location: Pune 5 days work from Office Your role as an AM We expect our people to embrace and live our purpose by challenging themselves to identify issues that are most important for our clients, our people, and for society. In addition to living our purpose, Assistant Manager across our organization must strive to be: Inspiring - Leading with integrity to build inclusion and motivation Committed to creating purpose - Creating a sense of vision and purpose Agile - Achieving high-quality results through collaboration and Team unity Skilled at building diverse capability - Developing diverse capabilities for the future Persuasive / Influencing - Persuading and influencing stakeholders Collaborating - Partnering to build new solutions Delivering value - Showing commercial acumen Committed to expanding business - Leveraging new business opportunities Analytical Acumen - Leveraging data to recommend impactful approach and solutions through the power of analysis and visualization Effective communication Must be well abled to have well-structured and well-articulated conversations to achieve win-win possibilities Engagement Management / Delivery Excellence - Effectively managing engagement(s) to ensure timely and proactive execution as well as course correction for the success of engagement(s) Managing change - Responding to changing environment with resilience Managing Quality & Risk - Delivering high quality results and mitigating risks with utmost integrity and precision Strategic Thinking & Problem Solving - Applying strategic mindset to solve business issues and complex problems Tech Savvy - Leveraging ethical technology practices to deliver high impact for clients and for Deloitte Empathetic leadership and inclusivity - creating a safe and thriving environment where everyones valued for who they are, use empathy to understand others to adapt our behaviours and attitudes to become more inclusive. How you ll grow Connect for impact Our exceptional team of professionals across the globe are solving some of the world s most complex business problems, as well as directly supporting our communities, the planet, and each other. Know more in our Global Impact Report and our India Impact Report. Empower to lead You can be a leader irrespective of your career level. Our colleagues are characterised by their ability to inspire, support, and provide opportunities for people to deliver their best and grow both as professionals and human beings. Know more about Deloitte and our One Young World partnership. Inclusion for all At Deloitte, people are valued and respected for who they are and are trusted to add value to their clients, teams and communities in a way that reflects their own unique capabilities. Know more about everyday steps that you can take to be more inclusive. At Deloitte, we believe in the unique skills, attitude and potential each and every one of us brings to the table to make an impact that matters. Drive your career At Deloitte, you are encouraged to take ownership of your career. We recognise there is no one size fits all career path, and global, cross-business mobility and up / re-skilling are all within the range of possibilities to shape a unique and fulfilling career. Know more about Life at Deloitte. Everyone s welcome entrust your happiness to us Our workspaces and initiatives are geared towards your 360-degree happiness. This includes specific needs you may have in terms of accessibility, flexibility, safety and security, and caregiving. Here s a glimpse of things that are in store for you. Interview tips We want job seekers exploring opportunities at Deloitte to feel prepared, confident and comfortable. To help you with your interview, we suggest that you do your research, know some background about the organisation and the business area you re applying to. Check out recruiting tips from Deloitte professionals.

& Summary A career within Enterprise Architecture services, will provide you with the opportunity to bring our clients a competitive advantage through defining their technology objectives, assessing solution options, and devising architectural solutions that help them achieve both strategic goals and meet operational requirements. We help build software and design data platforms, manage large volumes of client data, develop compliance procedures for data management, and continually researching new technologies to drive innovation and sustainable change. Why PWC At PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes for our clients and communities. This purposeled and valuesdriven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences for each other. Learn more about us . & Summary We are looking for a skilled Senior Angular + .NET Developer to join our dynamic team. The ideal candidate will have strong expertise in building scalable, highperformance web applications using Angular for frontend and .NET for backend development. You will be responsible for designing, developing, and maintaining complex software solutions, collaborating with crossfunctional teams, and mentoring junior developers. Responsibilities Design, develop, and maintain responsive web applications using Angular and .NET technologies. Develop robust backend services and APIs using ASP.NET Core or .NET Framework. Collaborate with product managers, UI/UX designers, and other developers to deliver highquality software solutions. Write clean, maintainable, and efficient code following best practices and coding standards. Troubleshoot, debug, and optimize application performance. Participate in code reviews, providing constructive feedback and ensuring code quality. Mentor junior and midlevel developers, sharing knowledge and promoting best practices. Ensure application security, data protection, and compliance with organizational standards. Stay uptodate with emerging technologies and industry trends, recommending improvements where applicable. Participate in Agile development processes including sprint planning, daily standups, and retrospectives. Mandatory skill sets Must Have Frontend Expertlevel experience with Angular (2+) including TypeScript, RxJS, Angular CLI, Angular Material, and componentdriven architecture. Backend Strong expertise in .NET technologies (ASP.NET Core and/or .NET Framework), C#, Web API development, and Entity Framework. Proficient in RESTful API design and integration. Solid understanding of relational databases (e.g., SQL Server) and writing complex queries/stored procedures. Experience with version control systems, preferably Git. Familiarity with unit testing and testdriven development (TDD). Strong knowledge of software design patterns, SOLID principles, and clean code practices. Experience with frontend build tools and package managers like npm, Webpack. Understanding of CI/CD pipelines and deployment processes. Strong problemsolving skills and ability to work independently as well as in a team. Excellent communication and interpersonal skills. Preferred skill sets Good to Have Experience with cloud platforms such as Azure or AWS. Knowledge of containerization technologies like Docker and orchestration tools such as Kubernetes. Familiarity with frontend state management libraries like NgRx. Understanding of microservices architecture. Experience with automated testing frameworks (e.g., Jasmine, Karma for Angular; xUnit, NUnit for .NET). Knowledge of Agile/Scrum methodologies. Exposure to DevOps tools and practices. Familiarity with GraphQL APIs. Experience working with message brokers (e.g., RabbitMQ, Azure Service Bus). Years of experience required 5+ Years Education qualification B.E. / B.Tech / MBA. All qualifications should be in regular fulltime mode with no extension of course duration due to backlogs Education Degrees/Field of Study required Master of Engineering, Master of Business Administration, Bachelor of Engineering Degrees/Field of Study preferred Required Skills Angular Accepting Feedback, Accepting Feedback, Active Listening, Analytical Reasoning, Analytical Thinking, Application Software, Business Data Analytics, Business Management, Business Technology, Business Transformation, Communication, Creativity, Documentation Development, Embracing Change, Emotional Regulation, Empathy, Implementation Research, Implementation Support, Implementing Technology, Inclusion, Intellectual Curiosity, Learning Agility, Optimism, Performance Assessment, Performance Management Software {+ 16 more} No

Req ID: 334023 NTT DATA strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now. We are currently seeking a Sr. DevOps Engineer to join our team in Bangalore, Karn taka (IN-KA), India (IN). Role: Sr. DevOps Engineer Overview - As a DevOps engineer will be responsible for supporting the DevOps capability and managing/collaborate with members of DevOps engineering team. In doing so, you will closely collaborate with program leads, technology architects, and leads across global locations. Responsibilities: 1. Estimate for Cloud Platform automation and DevOps activities and build proposals 2. Plan and perform Infrastructure automation, Build, Deploy, and Release automation on various Cloud platforms 3. Design and configure Dev-Sec-Ops pipeline for various projects, working with the Client and Project teams 4. Define, articulate, and evangelize Cloud Platform Automation activities 5. Deploy Infrastructure as a Code (IaC) using Terraform within the Azure environment 6. Serve as a thought leader and SME for DevOps industry trends, new and existing technology offerings, and architectural concepts 7. Functionally decompose complex problems into simple, straightforward solutions while discussion with business and technology teams 8. Completely understand system interdependencies and limitations, same needs to explained to business and technology teams during management reviews 9. Should be willing to quickly upskill on new technologies, tools, and paradigms. 10. Design and adopt Agile management approach, also implementation where required 11.Particpate in design of an infrastructure and configuration management strategy. 12.Implement DevOps strategy, release management workflow, CI/CD pipelines, Infrastructure as Code (IaC), Azure Kubernetes Service infrastructure 13.Participate in discussion related to infrastructure compliance and security, dependency management strategy, security and compliance Requirements: 1. Bachelors degree (Computer Science/Information Technology/Electronics & Communication/ Information Science/Telecommunications) 2. 8+ years IT experience 3. Certified in Azure DevOps [Advantage : AZ-303 AZ-304 AZ-400 AZ-500 (or equivalent), Terraform Associate Certification (or equivalent)] 4. Good knowledge about open source technology stack and programing skills 5. Strong understanding of different Cloud (Azure) IaaS services and platforms and their associated limitations, with a special focus on Network and Application security considerations 6. Building and maintaining tools to automate application and infrastructure deployment, and monitor operations 7. Hands-on experience with scripting languages such as Python, PowerShell, Terraform, Puppet, Bash, and Infrastructure as code automation using Terraform. 8. Strong experience with creating and modifying JSON configuration files, Terraform. 9. Strong implementation experience using Continuous Planning, Integration, and Deployment tools like - 9.a. Azure DevOps Toolchain, 9.b. Jenkins, GitHub, Bitbucket, Nexus, SonarQube 9.c. Containerization technologies like Kubernetes/Docker 10. Good communication skills and ability to articulate technical issues/requirements. Mandatory Skills a) Infrastructure as Code (IaC), Terraform, Azure environment b) Docker, Kubernetes, and the Azure cloud platform. c) CI/CD pipelines, Azure DevOps. d) Version control Git Desirable Skills a) Standard Programing - Java, b) Scripting - Angular, NodeJS c) Low Code - Node-Red d) Message broker - RabbitMQ e) Communication protocol- WebSocket s, f) Database - SQL, Mongo, Added advantage AZ-303: Focuses on Azure infrastructure and technical proficiency in the Azure cloud AZ-304: Focuses on designing solutions using Azure AZ-400: Focuses on DevOps engineering AZ-500: Microsoft Azure Security Technologies Terraform Associate Certification About NTT DATA We are one of the leading providers of digital and AI infrastructure in the world. NTT DATA is a part of NTT Group, which invests over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. Visit us at us.nttdata.com Whenever possible, we hire locally to NTT DATA offices or client sites. This ensures we can provide timely and effective support tailored to each client s needs. While many positions offer remote or hybrid work options, these arrangements are subject to change based on client requirements. For employees near an NTT DATA office or client site, in-office attendance may be required for meetings or events, depending on business needs. At NTT DATA, we are committed to staying flexible and meeting the evolving needs of both our clients and employees. NTT DATA recruiters will never ask for payment or banking information and will only use @nttdata.com and @talent.nttdataservices.com email addresses. If you are requested to provide payment or disclose banking information, please submit a contact us form, https: / / us.nttdata.com / en / contact-us . NTT DATA endeavors to make https://us.nttdata.com accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact us at https: / / us.nttdata.com / en / contact-us .

Visas Cybersecurity product team has designed a Cybersecurity product that delivers protection of cryptographic secrets in application memory, reducing attack vectors of unprotected application memory. This software engineering role will work with a small team of software engineers, and contribute directly to the code base, demonstrating stewardship of software through full life cycle: requirements, design, development, testing, and support. Essential Functions Work closely with the lead software engineer of this cybersecurity product. Automation and Best Practices: Implement best engineering practices and automate software development, testing, and deployment processes. Ensure the timely delivery and maintenance of multiple services, focusing on continuous improvement. Understand Visa Network architecture and work with Visas container and platform experts to implement rapid POCs and pilots to demonstrate feasibility of new capabilities and technologies and align security defenses to such capabilities. Partner closely with application and infrastructure teams in building secure key management services. Apply creative thinking/approach to determine solutions that further Business Goals and align with Technology Strategies. Ability to communicate on cybersecurity topics to diverse audiences, from new-hire engineers to senior executives and customers. Capability to conduct original research, or guide the research of colleagues, to solve complex problems through empirical methods and experimentation. Demonstrate technical mastery and be an inspirational leader and mentor who continuously develops the competencies of their self and others. Continuous Learning: Engage in continuous learning and development, actively seeking opportunities to enhance your skills and knowledge. Collaborate with peers to share insights and drive team growth. Basic Qualifications 5+ years of relevant work experience with a Bachelor s Degree or at least 2 years of work experience with an Advanced degree or 0 years of work experience with a PhD, or 8+ years of relevant work experience. Prefe

Product Security Architect Job Overview: Product Security Architect shall lead the integration of cybersecurity into the product lifecycle , from design to deployment . This role defines secure architecture , drives secure development practices , and partners with engineering and business teams to manage cyber risks and deliver secure, resilient products . As a technical authority , you will enhance the overall security posture and support innovation through robust security solutions. Key Responsibilities: Lead and support all phases of secure engineering, product support, and development of lifecycles Drive secure development principles and implement cybersecurity practices across engineering and production teams Define cybersecurity requirements, perform gap analysis, and establish roadmaps to manage and remediate residual risk Architect secure solutions, define security control frameworks, and integrate cybersecurity features into product designs Conduct and support threat modeling, risk assessments, security assurance testing, and vulnerability assessments Lead security design reviews and provide oversight for secure architecture implementation Serve as a subject matter expert to resolve complex product cybersecurity challenges Mentor engineering teams provide training and promote secure coding and design practices Participate in audit and compliance activities for certifications, governance, and standards. Collaborate on ad hoc cybersecurity initiatives to support secure operations and product innovation Ensure alignment of security strategies with overall product and business objectives Required Skills: Strong background in cybersecurity principles, secure software/hardware design, and development practices In-depth experience with risk management, threat modeling, security testing, and vulnerability assessments Solid understanding of industry security standards (e.g., NIST, ISO 27001/62443, OWASP) Excellent analytical, problem-solving, and decision-making capabilities Demonstrated ability to lead cross-functional teams and influence stakeholders Technical Skills: Secure Development Lifecycle (SDLC) frameworks Architecture risk analysis and mitigation strategies Embedded system and IoT security Cryptographic protocols and key management Threat modeling tools (e.g., STRIDE, DREAD, Microsoft Threat Modeling Tool) SAST/DAST tools and techniques Security compliance and regulatory standards (e.g., IEC 62443, NIST 800-53) Dev SecOps integration Cloud security (AWS, Azure) and container security principles Familiarity with secure firmware and hardware-level security controls Mandatory Certifications: OSCP Offensive Security Certified Professional Good to Have Certifications: CSSLP - Certified Secure Software Lifecycle Professional

Vaibhav Global Ltd (VGL) is a well-established electronic deep discount retailer of fashion jewelry, gemstones, and lifestyle products, with operations in the US, UK, Germany, and Canada. The company, listed on Indian stock exchanges since 1996-97, has a wide reach across 124 million households in key markets. As the digital retail landscape evolves, VGL continues to innovate its portfolio and omni-channel strategy to meet customer demands for convenience. With a group turnover of approximately Rs. 3,041 Crore (FY 2023-2024) and a global workforce of over 3800 employees, VGL is dedicated to sustainable business practices and social responsibility. The company's commitment to environmental sustainability is reflected in its renewable energy initiatives and accolades such as the Excellence Award for IGBC Performance Challenge 2021. Through initiatives like "Your Purchase Feeds.", VGL has provided millions of meals to school children, showcasing its dedication to giving back to the community. VGL is also recognized as a Great Place to Work (GPTW) certified organization. Shop LC and TJC are key subsidiaries of VGL, operating in the US and UK markets respectively. Shop LC, established in 2007 in Austin, TX, broadcasts live to millions of homes in the US and ships thousands of products daily. TJC, founded in London in 2006, is a prominent teleshopping and digital retail brand in the UK. The acquisitions of Mindful Souls B.V. and Ideal World have further strengthened VGL's digital business capabilities and product offerings. As a Security Specialist at VGL, your role is crucial in maintaining the security of the company's digital systems. Responsibilities include setting up and managing firewalls, monitoring network activity, responding to security incidents promptly, and collaborating with other teams on technical tools. You will also support compliance efforts, document security procedures, and evaluate and implement new security tools as needed. Key Responsibilities: - Install and manage firewalls and WAF tools - Set up and maintain Azure networking - Monitor logs, detect threats, and resolve incidents - Implement security tools in Azure cloud environments - Collaborate with DevOps on security for CI/CD pipelines - Support audits and compliance requirements - Write SOPs, runbooks, and incident support documentation Required Skills And Experience: - 4-7 years of experience in network and cloud security - Strong knowledge of NGFWs, WAFs, and Azure cloud security tools - Familiarity with SIEM platforms and packet capture tools - Understanding of VPNs, TCP/IP, and application security - Excellent problem-solving and communication skills At VGL, our purpose is to deliver joy, our vision is to be the Value Leader in Electronic Retailing of Jewelry and Lifestyle Products, and our core values include teamwork, honesty, commitment, passion, and a positive attitude. Join us in our mission to deliver one million meals per day to children in need by FY40 through our one-for-one meal program, "Your Purchase Feeds.".,

You will be joining CRYPTUS CYBER SECURITY, an IT company based in Roorkee, Uttarakhand, specializing in Advanced IT Security, Ethical Hacking, and Cyber Security training. As a Cyber Security Trainer, your primary role will involve creating and delivering training programs focused on cybersecurity, including application security, ceh, and vapt. Additionally, you will be conducting hands-on sessions in malware analysis and ensuring that the training materials align with the latest industry standards. To excel in this position, you should possess strong skills in Application Security, Cybersecurity, Information Security, and Network Security. Proficiency in Malware Analysis, along with excellent communication and presentation abilities, will be key to your success. You must be capable of developing training materials and conducting interactive sessions effectively. Previous experience in teaching or training would be advantageous, and possessing relevant certifications in cybersecurity will be considered a valuable asset. Ideally, you hold a Bachelor's degree in Computer Science, Information Technology, or a related field. This full-time on-site role in Roorkee requires a proactive individual who is dedicated to enhancing cybersecurity knowledge and promoting best practices within the industry.,

The opportunity: You will be a part of advancing the world's energy system towards sustainability, flexibility, and security, while considering social, environmental, and economic aspects. Hitachi Energy holds a remarkable track record and extensive installed base across more than 140 countries. How you'll make an impact: You are expected to have a deep understanding of agile and lean product development methodologies. Previous work experience in a power systems environment would be beneficial. Additionally, a fair understanding of condition monitoring and asset management is required. You will be responsible for ensuring compliance with relevant external and internal regulations, procedures, and guidelines. Living by Hitachi Energy's core values of safety and integrity is crucial, which involves taking accountability for your actions, as well as showing care towards your colleagues and the business. Your background: Ideally, you should hold a Bachelor's or Master's degree in engineering, specializing in Computer Science, Information Technology, Electronics and Communication, or have an M.Sc. in Substation Automation with documented qualifications in IT technologies and micro-service architectures. A minimum of 10 years of software development experience is required. Proficiency in JavaScript frameworks, particularly React JS, is essential. Experience in .NET Core Web API and application design and development is expected. You should be adept in microservice-based application design and development using .NET Core, Kubernetes, PostgreSQL DB, Azure Service Bus, or equivalent technologies. Hands-on experience in developing secure cloud-native applications using Azure PaaS services like Azure Function App, AKS, Service Bus, and Key Vault is preferred. Familiarity with Agile, Scrum, and SAFe Agile methodologies is necessary. Knowledge of Azure DevOps for creating build and deployment pipelines is advantageous. Understanding application security aspects such as secret management, cryptography, secure communication for HTTP and WebSocket, certificate management, data encryption, etc., is crucial. Strong problem-solving skills, the ability to work independently, lead a team, excellent communication, and collaboration skills are essential. You should have proven experience in micro-service architecture development for the cloud. Qualified individuals with disabilities can request reasonable accommodations to access the Hitachi Energy career site by completing a general inquiry form on the website. Please provide your contact information and specific details about the required accommodation to support you during the job application process. This assistance is exclusively for job seekers with disabilities needing accessibility support during the application process. Other inquiries will not receive a response.,

At PwC, our business application consulting team specializes in providing consulting services for a variety of business applications to help clients optimize operational efficiency. As a part of this team, you will analyze client needs, implement software solutions, and offer training and support for the seamless integration and utilization of business applications. Your role will focus on enabling clients to achieve their strategic objectives by ensuring compliance and enhancing security within SAP applications. By analyzing client requirements, implementing security measures, and providing guidance on compliance with regulatory standards, you will help clients mitigate risks, protect sensitive data, and maintain industry regulations. Your responsibilities will include building meaningful client connections, managing and inspiring others, and navigating complex situations to deepen your technical expertise and awareness of your strengths. You are expected to anticipate the needs of your teams and clients, deliver quality work, and embrace ambiguity by asking questions and using challenging moments as opportunities for growth. In the role of ETS SAP at PwC, you will primarily focus on conducting SAP-ERP Risk and Controls assessments and audits. Your skills should include a good understanding of Business Process flows in SAP, underlying configurations, and design to support them. Tasks related to Control Integration will involve IT Application Control, testing IT general controls, reviewing control documentation, facilitating system readiness, assessing financial and operational controls, conducting assurance reviews, and more. To excel in this role, you should demonstrate thorough knowledge of control design, implementation, and assessment, along with a significant understanding of the systems implementation lifecycle, business processes related to core SAP/Other ERPs, and the ability to design and execute test scripts for SAP Business Process Controls. The ideal candidate for this position will have 4-9 years of experience in ERP (SAP) controls auditing, consulting, and/or implementing. A Bachelor's degree in Engineering, Commerce, or Management Information Systems, or a Master's degree in Commerce or Computer Applications is required. Post-graduate certifications such as CA or MBA will be considered advantageous.,

About the Role Were seeking a Principal Product Security Engineer to play a critical part in building and evolving Quvia s security posture across our products entire lifecycle . In this highly impactful role, you ll partner with product management, engineering, and operations teams to assess product risks, define secure development standards, enforce security policies, and implement best practices to protect our products and, by extension, our customers data and operations. This is a hands-on role requiring a deep understanding of secure software development, application security frameworks, and cloud-native product architectures, with a strong emphasis on vulnerability mitigation and secure design principles . If youre a strategic thinker with a passion for building intrinsically secure products and a knack for embedding security into the DNA of software development, we encourage you to apply. What Youll Do: Security Architecture & Design Review: Collaborate with product and engineering teams to review designs and architectures for new features and products, identifying potential security risks and recommending appropriate controls and mitigations. Threat Modeling: Conduct threat modeling exercises for applications and systems to proactively identify and address potential security weaknesses. Security Code Review: Perform manual and automated security code reviews to identify vulnerabilities such as OWASP Top 10, common weaknesses (CWEs), and other security flaws. Vulnerability Management: Participate in the vulnerability management process, including triage, prioritization, and tracking of vulnerabilities identified through various sources (e.g., pen tests, bug bounties, internal scans). Security Testing: Work with QA and development teams to integrate security testing into the CI/CD pipeline, including static application security testing (SAST), dynamic application security testing (DAST), and software composition analysis (SCA). Security Tooling & Automation: Evaluate, implement, and maintain security tools and technologies to improve the efficiency and effectiveness of our product security program. Develop automation scripts to streamline security tasks. Security Training & Awareness: Contribute to developing and delivering security training and awareness programs for engineering teams. Incident Response Support: Provide security expertise and support during security incidents related to products. Security Best Practices: Research and stay up-to-date with the latest security threats, vulnerabilities, and industry best practices. Evangelize and promote security-first development principles within the organization. What Youll Need: Education: Bachelors degree in Computer Science, Information Security, or a related field, or equivalent practical experience. Experience: 5+ years of experience in product security, application security, or a similar role. Technical Skills: Strong understanding of application security principles, secure coding practices, and common web application vulnerabilities (e.g., OWASP Top 10). Proficiency in at least one programming language (e.g., Python, Java, Go, Node.js, C#) and the ability to review code for security flaws. Experience with security testing tools (SAST, DAST, SCA) and methodologies. Familiarity with cloud security principles and practices (e.g., AWS, Azure, GCP). Understanding of cryptographic principles and secure communication protocols. Experience with CI/CD pipelines and integrating security into the development lifecycle. Knowledge of common security frameworks and standards (e.g., NIST, ISO 27001) is a plus.

About the Role: We are seeking a highly skilled and motivated Lead Full Stack Developer with expertise in PHP to join our expanding technology team. In this role, you will guide and mentor a team of developers to design, develop, and maintain scalable, secure, and high-performance web applications. You will take ownership of the technical direction of product development, leveraging your deep understanding of our platform and service ecosystem to drive architectural decisions and deliver innovative solutions. A proactive and self-driven approach is essential, along with the ability to thrive in a dynamic, fast-paced environment while collaborating effectively with a diverse, cross-functional team. As a technical leader, you will champion the adoption of industry best practices and design patterns, ensuring the delivery of robust, secure, and performant software that meets business objectives. Required Qualifications: Bachelor s degree in computer science, engineering, or a related technical discipline (or equivalent experience). Over 5 years of professional software development experience, with a strong emphasis on PHP. Minimum of 2 years of experience in a lead software engineering or technical leadership role. Strong proficiency in PHP, JavaScript, and Angular. Demonstrated experience designing and developing web applications and services using AWS technology stack. Experience with version control systems such as Git, and automated build and deployment pipelines using CI/CD tools like Bamboo or Jenkins. Practical knowledge of object-oriented programming (OOP) principles and design patterns. Experience with Agile and Scrum development methodologies and best practices. Strong expertise in application security principles and secure coding practices. Excellent communication and interpersonal skills, with the ability to lead and collaborate effectively across diverse teams. Comfortable using Jira and Confluence for project tracking and documentation Key Responsibilities: Lead the end-to-end design, development, and deployment of scalable web applications using PHP and Angular technologies. Collaborate with architects to translate business requirements into robust technical solutions. Work closely with product managers, UI/UX designers, and QA engineers to deliver high-quality, end-to-end software solutions. Ensure timely and efficient development while maintaining high code quality and adherence to best practices. Enforce application security standards and integrate secure coding practices throughout the development lifecycle. Implement and uphold WCAG 2.1 Level AA web accessibility standards to ensure inclusive user experiences. Partner with scrum teams and product owners to guarantee deliverables meet established quality and functional standards. Collaborate effectively with QA and DevOps teams to ensure compliance with SDLC processes and smooth software delivery. Work cross-functionally with multi-disciplinary teams, including those responsible for application integration. Drive and maintain CI/CD pipelines within Agile teams to support continuous, reliable software deployments. Conduct thorough code and security reviews to uphold software quality and compliance requirements. Optimize application performance and ensure compatibility across various platforms and devices. Develop and maintain comprehensive unit tests to verify code functionality and reliability. Produce clear, organized technical documentation including specifications, workflows, and procedures. Diagnose and resolve complex technical issues, identifying performance bottlenecks and implementing sustainable solutions. Continuously evaluate and recommend improvements to platforms, products, and processes to enhance efficiency and business impact. Preferred Qualifications: Experience with microservices architecture and containerization (Docker, Kubernetes). Familiarity with authentication and authorization frameworks (OAuth2, JWT). Background in DevOps practices and automated testing. Prior experience leading distributed or remote teams.

Here is how, through this exciting role, YOU will contribute to BMC's and your own success: Design and develop new features as well as maintain existing features by adding improvements and fixing defects in complex areas (using Java) Play a vital role in project design to ensure scalability, reliability, and performance are met. Assist in troubleshooting complex technical problems in development and production. Implement methodologies, processes & tools. Work in agile within a Scrum team to meet deadlines and produce high quality features. Collaborate with other teams to develop joint features. To ensure youre set up for success, you will bring the following skillset & experience: 8+ years of experience in Java Backend development Experience with SpringBoot, Docker, Kubernetes Experience working in a multi-threaded environment. Analyze requirements to design software architecture considering factors like scalability, security, maintainability Self-learner whos passionate about problem solving and technology. Team player with good communication skills in English (verbal and written) Whilst these are nice to have, our team can help you develop in the following skills: Basic knowledge of Eclipse, Git, Azure DevOps, Jenkins