1262 Application Security Jobs - Page 48

Hello Talented Techie! We provide support in Project Services and Transformation, Digital Solutions and Delivery Management. We offer joint operations and digitalization services for Global Business Services and work closely alongside the entire Shared Services organization. We make efficient use of the possibilities of new technologies such as Business Process Management (BPM) and Robotics as enablers for efficient and effective implementations. We are looking for Information Security Professional (ISMS/InfoSec) Job Summary: We are seeking a dedicated Information Security Professional to join our team. The ideal candidate will focus on maintaining and managing our ISO27001 certification. This role involves handling the overall Information Security Management System (ISMS), managing internal stakeholders, conducting internal audits, facilitating external audits, and overseeing the information security program management. Key Responsibilities: Maintain and manage the ISO27001 certification and related processes. Oversee the Information Security Management System (ISMS) ensuring compliance with ISO27001 standards. Manage and coordinate internal audits, identifying areas for improvement and implementing necessary changes. Facilitate external audits, acting as the primary point of contact with external auditors. Engage with internal stakeholders to ensure information security policies and practices are effectively communicated and implemented. Develop, implement, and manage information security programs to enhance organizational security posture. Stay updated with the latest developments in information security standards and best practices. Qualifications: Bachelor"™s degree in Information Security, Computer Science, or a related field. 5-7 years of experience in information security with at least 5 years in direct ISMS. Strong knowledge of ISO27001 standards and requirements. Experience in managing and maintaining an Information Security Management System (ISMS). Excellent stakeholder management skills and the ability to communicate effectively with various levels of the organization. Strong organizational and program management skills. Certifications such as ISO27001 Lead Auditor (LA) and Certified Information Systems Auditor (CISA) are preferred. Preferred Certifications: ISO27001 Lead Auditor (LA) Certified Information Systems Auditor (CISA) Skills: Excellent analytical and problem-solving abilities. Strong communication and interpersonal skills. Ability to work independently and as part of a team. High attention to detail and a commitment to maintaining high standards of work. Create a better #TomorrowWithUs! This role, based in Bangalore, is an individual contributor position. You may be required to visit other locations within India and internationally. In return, you'll have the opportunity to work with teams shaping the future. At Siemens, we are a collection of over 312,000 minds building the future, one day at a time, worldwide. We value your unique identity and perspective and are fully committed to providing equitable opportunities and building a workplace that reflects the diversity of society. Come bring your authentic self and create a better tomorrow with us. Find out more about Siemens careers atwww.siemens.com/careers

Introduction Siemens Healthineers develops MedTech products that support better patient outcomes with greater efficiencies, giving providers confidence that they need to meet the clinical, operational, and financial challenges of a changing healthcare landscape. With 70,000+ employees Siemens Healthineers is one of the world"™s largest suppliers of technology to the healthcare industry. As a global leader in medical imaging, laboratory diagnostics, and healthcare information technology, we have a keen understanding of the entire patient care continuum"”from prevention and early detection to diagnosis and treatment. Brief Description: An Information Security Management system is maintained to address the complex challenges and threats in the rapidly evolving digital landscape and fulfill the organization"™s purpose and values. As an Information Security Professional, you will play an essential role in implementing and maintaining our Information Security requirements in accordance with ISO27001 and other relevant regulatory standards. You will gain expertise in driving implementation of various Information security topics in a cross-collaborative environment. What are my key Responsibilities? Assist the implementation and continuous improvement of the ISO27001 Information Security Management System (ISMS). Conduct regular risk assessments and internal audits to ensure compliance with ISO27001 standards. Ensure adherence to all relevant regulatory requirements as directed by the Global Cybersecurity Governance Organization and country specific cybersecurity requirements. Assist to Develop and maintain policies, procedures, and process documentation to meet the Information Security requirements. Work closely with various departments to collect and analyze operational security measures and help integrate measures into all aspects of operations without the need for follow-ups or reminders. Assist project teams for information security inquiries and incident response. Monitor and respond to security incidents and breaches, ensuring timely resolution and documentation of incidents. Assist with Planning, coordinating, conducting and preparing detailed audit reports for internal and external audits to assess the effectiveness of the information security program. Follow up on audit recommendations to ensure timely implementation of corrective actions. Maintain a comprehensive audit trail for all information security activities and initiatives. What do I need to qualify for this job? Bachelor"™s degree in engineering, Information Security, Computer Science, or a related field with 4-6 years of working experience. Minimum of 2-3 years of hands-on experience in information security, with a focus on implementing ISO27001. Strong understanding of ISO 27001 requirements, information security principles, risk management, IT infrastructure set up and regulatory requirements. Good understanding of ISO 27701 PIMS standards. Proven ability to work independently and collaboratively with cross-functional teams. Excellent communication, presentation and interpersonal skills. Self-directed with an ability to take ownership and accountability of assigned tasks. Familiarity with Software development best practices for ensuring security. Previous experience with Software quality assurance responsibilities will be preferred. Highly Recommended to have completed Lead Implementor certification in ISO 27001 standard . What else do I need to know? Siemens Healthineers is dedicated to equality and we welcome applications that reflect the diversity of the communities we work in. All employment decisions at Siemens Healthineers are based on qualifications, merit and business need. Bring your curiosity and imagination and help us shape tomorrow. We are looking forward to receiving your online application. Please ensure you complete all areas of the application form to the best of your ability as we will use the data to review your suitability for the role.

Location: Hyderabad, Bangalore - India Function: HV Product Management Requisition ID: 1033000 The Company We’re Hitachi Vantara, the data foundation trusted by the world’s innovators. Our resilient, high-performance data infrastructure means that customers – from banks to theme parks – can focus on achieving the incredible with data. ?? If you’ve seen the Las Vegas Sphere, you’ve seen just one example of how we empower businesses to automate, optimize, innovate – and wow their customers. Right now, we’re laying the foundation for our next wave of growth. We’re looking for people who love being part of a diverse, global team – and who get excited about making a real-world impact with data. The Team The VSP 360 team is focused on building an intelligent, hybrid cloud platform that integrates observability, automation, protection, and data insights. As part of this mission, we are expanding platform capabilities to include rich data services integrations that enhance visibility, governance, compliance, and cyber resilience. This team works cross-functionally with engineering, partner ecosystems, and customer-facing teams to deliver seamless experiences and actionable insights from a wide range of data services and third-party platforms. The Role As the Product Manager for Data Services within the VSP 360 platform, you will lead the strategy and execution for integrating a diverse set of data services that drive data intelligence, governance, and protection. This includes managing platform-level integrations with services such as data classification, data cataloging, PII detection, cyber resilience, and third-party data protection solutions. You’ll collaborate with internal and external stakeholders to define use cases, capture integration requirements, and drive partner enablement. Your role will focus on building scalable APIs and workflows that bring context-rich insights and automation to the forefront of hybrid cloud storage management. You will be responsible for managing the backlog in Aha!, coordinating cross-functional execution, and ensuring customer-facing outcomes around security, compliance, and operational efficiency. What You’ll Bring 5+ years of product management experience in data services, storage, or enterprise software Strong understanding of data classification, cataloging, governance, and PII/security frameworks Familiarity with cyber resilience concepts and tools Experience integrating third-party solutions (e.g., Commvault, Veeam) into a platform environment Proven ability to define APIs and workflows for data services integration Agile product management experience with tools like Aha!, Jira, or equivalent Ability to balance technical requirements with customer value and usability Strong collaboration and communication skills across product, engineering, and partners Strategic mindset with experience driving partner ecosystems and joint solutions Passion for delivering customer-centric solutions with measurable business impact About us We’re a global team of innovators. Together, we harness engineering excellence and passion for insight to co-create meaningful solutions to complex challenges. We turn organizations into data-driven leaders that can a make positive impact on their industries and society. If you believe that innovation can inspire the future, this is the place to fulfil your purpose and achieve your potential. #LI-SP7 Championing diversity, equity, and inclusion

You will be responsible for developing and maintaining a robust application security strategy and architecture that aligns with industry best practices and regulatory requirements. The ideal candidate will possess a deep understanding of both AppSec and general cybersecurity principles. Your Day to Day Develop and maintain a robust application security strategy, standards and target state architectures which aligns with industry best practices and regulatory requirements. Be the application security advocate across the organization. Lead discussions and reviews around new technologies, framework enhancements and product reviews. Define and improve application security in the SDLC, ensuring security is prioritized from inception to deployment. Conduct regular security architecture risk assessments and threat modelling to implement effective risk mitigation strategies. Ensure compliance with relevant security standards, regulations, and industry frameworks (eg, PCI DSS, GDPR). Maintain awareness on latest DevSecOps approaches and how they fit into large enterprise organization s AppSec program. Collaborate with software engineers and leadership teams as we'll and cybersecurity teams to integrate security controls throughout the software development lifecycle. Be comfortable interfacing and providing guidance to senior and technical leadership on application security issues/approaches, to achieve the deployment of effective security solutions. What do you need to bring Degree in Computer Science, Cybersecurity, Mathematics, or a related field. 15+ years experience in AppSec, Software/Systems Engineering, and/or Architecture. Expert level understanding of NodeJS, Java, modern web development frameworks and Service Oriented Architecture (SOA). Familiarity with iOS, Android and browser SDK development. Expert level understanding of AppSec scanning tools across SAST/SCA/DAST/IAST/Container Security/API Security/Secret Scanning/Fuzzing in large enterprise environments. In depth knowledge of SDLC, and CI/CD pipelines best practices. Good understanding of SLSA and supply chain security. Expert level understanding of containerized platforms and security best practices. In depth understanding of cybersecurity principles, including cryptography, authentication, web security, vulnerability assessments and threat detection. Desired expertise in various security testing activities, including penetration testing, vulnerability scanning, and code reviews. Working knowledge of major cloud platforms such as AWS, Azure, Google Cloud. Industry certifications (eg, CISSP, CISM, CCSP, or equivalent) are a plus.

We are seeking an experienced Application Security Architect to join our growing Secure Architecture team. In this role, you will focus on designing secure solutions for modern application architectures including AI/ML workloads, APIs and cloud-native systems across hybrid environments. You will partner with cross-functional teams to embed security into solution designs, champion secure development practices and align architecture with Resmed s overall security strategy. This role is ideal for someone who thrives on innovation, thinks like an adversary and believes secure design is critical to scalable growth. Let s talk about responsibilities: Lead security architecture efforts for AI, API and cloud-based applications across AWS, Azure and GCP platforms. Define and evaluate security controls to protect models from adversarial attacks, data poisoning and unauthorized inference. Develop secure design patterns, reusable controls and architecture blueprints aligned with Resmed s security standards. Partner with data scientists and engineering teams to develop secure ML pipelines, including feature engineering, validation, and anomaly detection mechanisms. Design secure-by-design architecture patterns and reusable controls for APIs, microservices, and distributed cloud environments. Guide the implementation of zero-trust architecture principles across systems, including identity, access, networking, application and data flows. Perform threat modeling, risk assessments and architecture reviews on high-impact projects. Establish detection and response capabilities around AI systems and APIs. Engage with stakeholders across the business to ensure security solutions enable agility, innovation, and growth. Let s talk about you: 10+ years in cybersecurity, with strong experience in cloud-native application and data security. Strong understanding of cybersecurity frameworks (eg, NIST, ISO 27001), secure software development, and encryption. Experience designing security for distributed systems, APIs, and AI/ML pipelines. Strong knowledge of cloud platforms (AWS, GCP, Azure), API security protocols, and DevSecOps practices. Proven experience in designing and reviewing modern application architectures in agile and data-driven environments. Familiarity with machine learning operations (MLOps), model governance and responsible AI frameworks. Excellent communicator, able to translate complex risks into actionable guidance. Industry certifications like CISSP, CCSP, or cloud security specializations.

Developing and implementing highly-responsive user interface components using React concepts Analyse system domain and client requirements Working with team to create and maintain a robust system to support business with focus on usability Developing and implementing front-end architecture to support user interface concepts Optimizing components for maximum performance across a vast array of web-capable devices and browsers Building reusable components and front-end libraries for future use Candidate Must have Experience developing & integrating ReactJs and REST APIs Experience in Microservices security like Authentication, Oauth, JSON Web Token Perform development on In-depth knowledge of JavaScript, CSS, HTML, and frontend languages and react tools like React.js, Webpack, Enzyme, Redux, and Flux In-depth understanding of JavaScript, the DOM, and relevant concepts (AJAX, JSON, REST API/Micro service Consumption) Thorough understanding of React.js etc., (Redux, Context API) and its core principles.( Class and functional components working experience) Code review and enforcing best practices Must have knowledge of Server Side Rendering(SSR), PWA Concepts( Service worker) Familiarity with modern front-end build pipelines and tools Good understating of application security fundamentals, application performance tuning and scalability Proficient understanding of code versioning tools, such as Git, SVN, TFS etc. Good knowledge and hands-on on Unit Testing and available Test Frameworks like Nodeunit, Mocha. Excellent written and verbal communication skills Good To Have Good to have knowledge of NodeJs Knowledge of isomorphic React is a plus

Who we are At Twilio, we re shaping the future of communications, all from the comfort of our homes. We deliver innovative solutions to hundreds of thousands of businesses and empower millions of developers worldwide to craft personalized customer experiences. Our dedication to remote-first work , and strong culture of connection and global inclusion means that no matter your location, you re part of a vibrant team with diverse experiences making a global impact each day. As we continue to revolutionize how the world interacts, we re acquiring new skills and experiences that make work feel truly rewarding. Your career at Twilio is in your hands. See yourself at Twilio Join the team as Twilio s next Staff Engineer, Security Engineering Partner. Who we are At Twilio, we re shaping the future of communications, all from the comfort of our homes. We deliver innovative solutions to hundreds of thousands of businesses and empower millions of developers worldwide to craft personalized customer experiences. Our dedication to remote-first work , and strong culture of connection and global inclusion means that no matter your location, you re part of a vibrant team with diverse experiences making a global impact each day. As we continue to revolutionize how the world interacts, we re acquiring new skills and experiences that make work feel truly rewarding. Your career at Twilio is in your hands. About the job This position is needed to bridge the gap between our security organization and engineering teams by partnering on the implementation of robust security measures at scale, up-leveling existing security capabilities and critical security risk reduction. Responsibilities In this role, you ll: Build relationships with engineering to foster cooperative partnerships across key Twilio products and platforms. Partner with product and engineering teams to integrate scalable security capabilities. Use metrics and data on the state of security at the product level, to drive accountability and action. Drive security risk reduction through technical leadership and influence of engineering roadmaps. Lead security reviews for critical features, new initiatives and infrastructure changes. Cultivate security expertise across engineering teams through mentorship, technical guidance and training. Qualifications Twilio values diverse experiences from all kinds of industries, and we encourage everyone who meets the required qualifications to apply. If your career is just starting or hasnt followed a traditional path, dont let that stop you from considering Twilio. We are always looking for people who will bring something new to the table! 5+ years of experience in security engineering with a proven track record of designing and implementing scalable security solutions. Deep technical expertise in specialized security domains - application security, cloud security, product security. Proven track record leading cross-functional security initiatives where you influenced security outcomes outside of the security organization. Ability to communicate complex security concepts clearly to both technical and non-technical audiences using metrics. A strong background in software development, with specialized expertise in security engineering. Ability to translate emerging security threats and trends into actionable engineering requirements and technical roadmaps. Experience with Threat Modeling methodologies and leading security design reviews. Desired: Strong problem-solving skills and analytical capability. Comfortable with ambiguity. Solid understanding of infrastructure and application security risks and mitigation techniques, Solid understanding and experience with containerization and orchestration technologies like Kubernetes and Docker. Experience with Infrastructure-as-Code. Location This role will be remote and based in India. Travel We prioritize connection and opportunities to build relationships with our customers and each other. For this role, you may be required to travel occasionally to participate in project or team in-person meetings. What We Offer There are many benefits to working at Twilio, including, in addition to competitive pay, things like generous time-off, ample parental and wellness leave, healthcare, a retirement savings program, and much more. Offerings vary by location. Twilio thinks big. Do you? We like to solve problems, take initiative, pitch in when needed, and are always up for trying new things. Thats why we seek out colleagues who embody our values something we call Twilio Magic . Additionally, we empower employees to build positive change in their communities by supporting their volunteering and donation efforts. So, if youre ready to unleash your full potential, do your best work, and be the best version of yourself, apply now! If this role isnt what youre looking for, please consider other open positions . Twilio is proud to be an equal opportunity employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, genetic information, political views or activity, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. Qualified applicants with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act. Additionally, Twilio participates in the E-Verify program in certain locations, as required by law. Twilio is committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans in our job application procedures. If you need assistance or an accommodation due to a disability, please contact us at accommodations@twilio.com .

About Boomi and What Makes Us Special Are you ready to work at a fast-growing company where you can make a difference? Boomi aims to make the world a better place by connecting everyone to everything, anywhere. Our award-winning, intelligent integration and automation platform helps organizations power the future of business. At Boomi, you ll work with world-class people and industry-leading technology. We hire trailblazers with an entrepreneurial spirit who can solve challenging problems, make a real impact, and want to be part of building something big. If this sounds like a good fit for you, check out boomi.com or visit our Boomi Careers page to learn more. Position Overview We are seeking a hands-on Security Architect to join our engineering organization. This critical role will drive alignment between vulnerability management remediation iniatives and DevSecOps, coordinate with engineering and product teams on security implementation, and support strategic security initiatives. The ideal candidate will combine deep technical expertise with strong communication skills to influence and strengthen our overall security posture across the organization. Role and Responsibilities Work closely with the DevSecOps team to implement security strategies and remediation plans. Act as the primary engineering interface for security posture, vulnerability remediation, and secure development practices. Perform hands-on security architecture reviews, threat modeling, secure code reviews, and secure design evaluations. Collaborate with engineering teams to drive adoption of security tools, frameworks, and best practices. Integrate security controls and checks into CI/CD pipelines and engineering workflows. Contribute to Project Phoenix execution and participate in other strategic security engineering initiatives. Identify, assess, prioritize, and drive remediation of vulnerabilities across application, cloud, and infrastructure environments. Mentor engineering teams to adopt security-first design and implementation principles. Track and respond to evolving security threats, integrating learnings into engineering processes. Technical Must-Know Concepts Candidates are expected to demonstrate strong expertise in the following areas: Application Security: Secure coding practices (OWASP Top 10, CWE), secure SDLC integration. Threat Modeling: STRIDE, DREAD frameworks, attack surface identification and mitigation planning. Cloud Security: AWS security best practices (IAM, KMS, GuardDuty), encryption at rest and transit, cloud resource hardening. Infrastructure and CI/CD Security: Security in IaC (Terraform, CloudFormation), secrets management, pipeline security integration (SAST, SCA, DAST, IaC scanning). Vulnerability Management: Experience with tools like Snyk, TruffleHog, CrowdStrike CSPM or similar; prioritization and remediation of vulnerabilities. Authentication and Authorization Security: OAuth 2.0, OpenID Connect, SSO security principles. Container and Kubernetes Security: Image scanning, container hardening, Kubernetes RBAC, network policies. Cryptography Fundamentals: Understanding TLS/SSL, encryption standards, key management practices. Security Standards and Compliance Awareness: Familiarity with NIST, ISO 27001, SOC 2, PCI DSS frameworks. DevSecOps Tooling: GitHub, GitLab, Bitbucket CI/CD pipelines and security automation integrations. Be Bold. Be You. Be Boomi. We take pride in our culture and core values and are committed to being a place where everyone can be their true, authentic self. Our team members are our most valuable resources, and we look for and encourage diversity in backgrounds, thoughts, life experiences, knowledge, and capabilities. All employment decisions are based on business needs, job requirements, and individual qualifications. Boomi strives to create an inclusive and accessible environment for candidates and employees. If you need accommodation during the application or interview process, please submit a request to talent@boomi.com . This inbox is strictly for accommodations, please do not send resumes or general inquiries.

About The Role : Job Title- DCO Independent Testing, AVP Location- Pune, India Role Description DWS Group (DWS) is one of the world's leading asset managers. Building on more than 60 years of experience and a reputation for excellence in Germany and across Europe, DWS has come to be recognized by clients globally as a trusted source for integrated investment solutions, stability, and innovation across a full spectrum of investment disciplines. We offer individuals and institutions access to our strong investment capabilities across all major asset classes and solutions aligned to growth trends. Our diverse expertise in Active, Passive and Alternatives asset management as well as our deep environmental, social and governance focus complement each other when creating targeted solutions for our clients. Our expertise and on-the-ground-knowledge of our economists, research analysts and investment professionals are brought together in one consistent global CIO View, which guides our investment approach strategically. DWS wants to innovate and shape the future of investingwith approximately 3,500 employees in offices all over the world, we are local while being one global team. We are investors entrusted to build the best foundation for our clients future. What we'll offer you As part of our flexible scheme, here are just some of the benefits that youll enjoy Best in class leave policy Gender neutral parental leaves 100% reimbursement under childcare assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Employee Assistance Program for you and your family members Comprehensive Hospitalization Insurance for you and your dependents Accident and Term life Insurance Complementary Health screening for 35 yrs. and above Your key responsibilities This role will support India DCO office with activities as outlined below: Lead comprehensive control evaluations and substantive testing to independently assess the design and effectiveness of controls within the newly established Independent Testing Team Assess end to end business processes to identify significant gaps and determine issue root causes. Partners with business units to perform control evaluations, monitoring and testing efforts within Compliance and Operation Risk Framework to identify control gaps as well as opportunities for effectiveness and efficiency improvements. These assessments will include coverage for other regulatory programs including SOX Apply critical thinking skills to substantive testing techniques to thoroughly evaluate the effectiveness of high-risk business processes. Assess and monitor risks, ensuring compliance with firm standards, regulatory requirements, and industry best practices. Collaborate with cross-functional teams and stakeholders to support control design and effectiveness. Foster collaboration with Compliance and Operational Risk Officers on various engagements. This includes developing detailed test scripts, facilitating issue discussions, participating in business meetings, and drafting comprehensive final reports to ensure alignment and clarity. Develop and execute robust control test scripts aimed at identifying control weaknesses, determining root causes, and recommending practical solutions to enhance operational efficiency and control effectiveness. Document test steps and results in a comprehensive and organized manner, ensuring sufficient support and justification for testing conclusions. Maintain a high standard of documentation to facilitate transparency and accountability. Ensure compliance with internal policies, procedures, and external laws, rules, and regulations, while identifying necessary remediation actions. This includes developing and executing testing procedures, meticulously documenting results, drawing informed conclusions, making actionable recommendations, and distributing detailed compliance testing review reports. Lead meetings with business owners at various management levels, delivering testing results and supporting sustainable control enhancements. Identify and capitalize on opportunities to strengthen controls and improve operational efficiency. Your skills and experience Bachelor's degree in information security or related field required, with a preference towards master's degree. Demonstrated ability to analyse complex issues, develop and implement risk mitigation strategies, and communicate effectively with senior stakeholders. Proficient knowledge of risk management frameworks, regulations, and industry best practices Strong and progressive Auditing or Control Testing experience with current knowledge and understanding of Control testing methodology. Experience developing test scripts, audit programs, or testing templates. 6+ years in information security management and governance, with a focus on control design and testing Detailed experience in ISO 27001, GDPR, COBIT, KAIT, BAIT, etc. and other cyber security frameworks Good to have CertificationsCRISC, CISSP, CISM, CISA, ISO 27001 Lead Implementer/ Auditor Should possess strong communication skills (written/ spoken) Should be skilled to work with minimal supervision. Strong analytical and strategic mindset along with the ability to collaborate with different stakeholders including top management representatives. How we'll support you Training and development to help you excel in your career Coaching and support from experts in your team A culture of continuous learning to aid progression A range of flexible benefits that you can tailor to suit your needs About us and our teams Please visit our company website for further information: https://www.db.com/company/company.htm

Why Verifone For more than 30 years Verifone has established a remarkable record of leadership in the electronic payment technology industry. Verifone has one of the leading electronic payment solutions brands and is one of the largest providers of electronic payment systems worldwide. Job Summary: The Security Analyst will be responsible for monitoring our security infrastructure, identifying and responding to security threats, managing vulnerabilities, and contributing to the continuous improvement of our overall security posture. This role is crucial in safeguarding our organizations systems, data, and reputation against an ever-evolving landscape of cyber threats. Key Responsibilities: Security Monitoring & Alerting: Monitor security alerts and events from various sources, including SIEM, IDS/IPS, EDR, firewalls, and other security tools. Triage and investigate alerts to determine their severity, scope, and potential impact. Incident Detection & Response: Act as a first responder for security incidents, following established incident response plans. Conduct initial analysis, containment, eradication, and recovery activities. Document incident details, actions taken, and lessons learned. Escalate complex incidents to senior analysts or incident response teams as appropriate. Vulnerability Management: Perform regular vulnerability scans and assessments of our IT infrastructure, applications, and networks. Analyse scan results, priorities vulnerabilities, and track remediation efforts with relevant teams. Assist in the development and implementation of patching and remediation strategies. Security Tool Administration & Maintenance: Assist in the configuration, maintenance, and optimization of security tools and technologies. Ensure security tools are functioning correctly and generating accurate data. Log Analysis & Threat Hunting: Collect, analyze, and correlate log data from various systems to identify suspicious activity or potential threats. Proactively hunt for threats and indicators of compromise (IOCs) within the environment. Threat Intelligence: Stay informed about the latest cybersecurity threats, vulnerabilities, attack vectors, and mitigation techniques. Gather and analyze threat intelligence from various sources to enhance detection capabilities. Reporting & Documentation: Prepare regular reports on security incidents, vulnerability status, and overall security posture. Maintain accurate and detailed documentation of security procedures, configurations, and incident response activities. Collaboration & Support: Collaborate with IT teams, developers, and other business units to implement security best practices and address security concerns. Provide security-related support and guidance to end-users and internal teams. Assist with internal and external security audits and compliance activities (e.g., GDPR, ISO 27001). Skills and experience we desire: Bachelor s degree in computer science or related field 2+ years of hands-on experience with the design, implementation, and operation of enterprise vulnerability management. 2+ years experience supporting diverse IT systems, processes, or capabilities in large organizations 2+ years of solid understanding of industry best practices for hands on, security vulnerability remediation. 2+ years with SCCM, WSUS (or other, similar tools) running in an enterprise environment. 2+ years in scripting of packaged installation of patches, software, and configuration changes, including the knowledge and ability to write PowerShell scripts needed to automate patch management processes. Extensive experience with core vulnerability management scanners (e.g. Qualys, Tenable etc.). Strong knowledge of OWASP Top 10 and the ability to articulate application security risks and determine threat level. Technical understanding of a range of enterprise IT and cloud-based architectures and technologies such as networking, server infrastructure, operating systems, web applications, databases, containerization, mobile. Preferred certifications: Net+, Security+, OSCP, CEH, CISSP, GIAC (GSEC, GEVA, GPEN etc.)

About Product Security Engineer at Traveloka will be required to ensure that our products and services are shipped with high security standards through application security testing, hardening, and secure framework. A Product Security Engineer will be smart and self starter. The person needs to find unique ways to understand complex software architecture and should be able to perform manual security code review. They need to be able to integrate security in the software development process with defense-in-depth strategies such as automated testing in CI/CD pipeline. A Product Security Engineer preferably needs to have a software development background and should have practical programming knowledge. They will work very closely with our Software Engineering Team to implement Secure SDLC in Traveloka. They will also need to have proficiency in handling multiple projects based on different frameworks and groups. Responsibilities Carry out manual and automated review of source code to identify security vulnerabilities and risks Implement automated security testing tools (SAST, DAST, IAST) and their deployment within continuous integration systems Implement hardening and secure framework such as RASP, WAF, safe library, and security decorator functions Perform vulnerability assessment & penetration testing on web API, front-end service, internal RPC, and mobile application Attend design reviews and actively lead the discussions from a security standpoint Analyze possible security incident related to application security such as payment abuse or sensitive data exposure via web API Ensure that product security requirements are identified early on and are being baked into all projects Provide effective recommendations or patches to mitigate security vulnerabilities Develop in-house tools to integrate with SDLC and to track and derive security metrics Skills & Experience Academic background in Computer Science or equivalent Relevant professional experience or extensive experience in security activities (e.g. CTF, bug bounty, security research, publications, blog) Practical knowledge of modern software development such as microservices, application containerization, REST architecture, object oriented programming, stateless/stateful authentication, and cloud platform Working knowledge of one or more of these programming languages: Java, JavaScript, Kotlin, C#, Objective-C, Swift Experience in security code review, vulnerability assessment, and penetration testing. Knowledge of common vulnerabilities such as OWASP Top 10 and CWE including business logic issue (e.g. IDOR) Core skill set in two or more of the following areas: JavaScript framework (e.g. React) Java framework (e.g. Spring) Android / iOS platform DevOps AWS Automation tool development Dynamic debugging Unit testing Algorithm & data structure If you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us!

Role Overview : The Application Security Senior Engineer will play a crucial role in safeguarding our applications and digital assets against security threats. With a primary focus on Vulnerability Assessment and Penetration Testing (VAPT), the role involves identifying, assessing, and mitigating security vulnerabilities across our application portfolio. This position requires a proactive mindset, strong technical skills, and the ability to collaborate effectively with cross-functional teams and support the security projects. Key Responsibilities : 1. Vulnerability Assessment and Penetration Testing (VAPT): - Conduct comprehensive security assessments of applications using industry-standard tools and techniques.- Perform manual testing and automated scans to identify vulnerabilities such as OWASP Top 10, SQL injection, XSS, CSRF, etc.- Analyze and interpret assessment findings, providing clear and actionable recommendations to development teams.- Support the security gating process with timely security assessment and reporting.- Provide guidance and assistance on secure software development life cycle.- Track identified vulnerabilities through to resolution, collaborating closely with development teams to ensure timely mitigation.- Provide detailed vulnerability reports and metrics to stakeholders, including risk assessments and remediation progress. 2. Support for Security Projects: - Actively participate in security projects and initiatives, providing expertise and guidance on application security best practices.- Perform Security Architecture review for existing and new security projects and guide on security best practices.- Collaborate with architects and developers to integrate security into the SDLC (Secure Development Life Cycle) and CI/CD pipelines. 3. Incident Response and Support: - Assist in incident response activities related to application security incidents.- Contribute to root cause analysis and lessons learned sessions to improve incident handling and prevention strategies. 4. Security Awareness and Training: - Develop and deliver training sessions on secure coding practices and application security awareness.- Promote a culture of security within the organization, advocating for continuous improvement and adherence to security policies. Requirements: Bachelors degree in Computer Science/Information Technology, or a related field. Minimum of 5 years of experience in application security, with a focus on VAPT and secure development practices. Proven experience with security assessment tools such as Burp Suite, Qualys, Nessus, etc. Strong understanding of web application architecture, including front-end, back-end, and APIs. Solid knowledge of OWASP guidelines and best practices for secure coding. Certifications such as CISSP, CEH, OSCP, or similar are preferred. Excellent communication skills with the ability to articulate technical concepts to non-technical stakeholders. Strong analytical and problem-solving skills, with attention to detail. Why join us? Impactful Work: Play a pivotal role in safeguarding Tanla's assets, data, and reputation in the industry. Tremendous Growth Opportunities: Be part of a rapidly growing company in the telecom and CPaaS space, with opportunities for professional development. Innovative Environment: Work alongside a world-class team in a challenging and fun environment, where innovation is celebrated. Tanla is an equal opportunity employer. We champion diversity and are committed to creating an inclusive environment for all employees. www.tanla.com

We are looking for a skilled Full Stack Engineer with expertise in .NET Core and React to join our Security Remediation Team in Bangalore. The ideal candidate will have 5-10 years of experience. ### Roles and Responsibility Design and develop secure, enterprise-level web applications using .NET Core and React, adhering to best practices for code security. Collaborate with cross-functional teams to gather security requirements and deliver secure software solutions. Write clean, maintainable, and secure code in C# and .NET Core, incorporating request sanitization and input validation to mitigate vulnerabilities. Enhance and remediate existing applications by identifying and addressing security vulnerabilities within the codebase. Conduct code reviews to ensure compliance with security standards and apply security testing techniques. Partner with the security team to integrate security best practices throughout the Software Development Life Cycle (SDLC). Investigate and implement security tools and techniques to continuously enhance the security posture of applications. Test, deploy, and maintain secure applications, ensuring prompt remediation of vulnerabilities through the use of security-focused development tools. Develop comprehensive documentation for security processes and decisions, ensuring alignment with internal security guidelines and industry standards. Stay informed about emerging security trends, threats, and technologies, and recommend practices and tools to bolster application security. ### Job Requirements Bachelor’s degree in Computer Science, Engineering, or a related field. Proven experience as a Full Stack Developer or similar role with a strong emphasis on secure software development. In-depth knowledge of .NET Core and C#, with expertise in Object-Oriented Programming (OOP) concepts. Practical experience in React for developing secure front-end interfaces. Solid understanding of security concepts such as request sanitization, input validation, and secure coding practices to protect against OWASP Top 10 vulnerabilities. Familiarity with secure architecture styles/APIs (e.g., REST, GraphQL, RPC) and security protocols (e.g., OAuth2, JWT). Experience with SQL/NoSQL databases, including secure data handling and storage practices. Proficient in Git and other version control systems. Excellent troubleshooting, debugging, and communication skills, with the ability to articulate security-related issues to both technical and non-technical stakeholders. Detail-oriented, with a commitment to writing secure, high-quality code.

We are looking for a highly skilled and experienced Consultant to join our team in Kolkata. The ideal candidate will have 3-4 years of experience in the field. ### Roles and Responsibility Develop and maintain front-end and back-end features of web applications. Collaborate with UX/UI designers to implement responsive and user-friendly interfaces. Write clean, scalable, and efficient code using modern web development technologies. Troubleshoot, debug, and optimize applications for maximum speed and scalability. Work with databases (SQL/NoSQL) to design and implement efficient data storage solutions. Ensure application security, responsiveness, and user friendliness across multiple platforms. Participate in code reviews and maintain high-quality coding standards. Stay updated with emerging technologies and best practices in full-stack development. Collaborate effectively with cross-functional teams including product managers, designers, and other developers. ### Job Requirements Engineering or equivalent qualification. 3-4 years of experience in the field. Ability to work collaboratively to provide services across multiple client departments while following commercial and legal requirements. Practical approach to solving issues and complex problems with the ability to deliver insightful and practical solutions. Agile, curious, mindful, and able to sustain positive energy, while being adaptable and creative in their approach. Strong understanding of tax laws and regulations. Experience with transactional tax and TTT development.

We are looking for a skilled Security Consultant / Senior Security Consultant with expertise in penetration testing to join our team. The ideal candidate will have 3-9 years of experience. ### Roles and Responsibility Lead engagements from kickoff with clients through scoping, penetration testing, and reporting while adhering to the agreed scope and deadlines. Perform penetration testing including network, web application, mobile app (Android & iOS), APIs, cloud security, thick client applications, wireless, social engineering, physical penetration testing, and red team assessments. Execute penetration testing projects using established methodology, tools, and rules of engagement. Identify and exploit security vulnerabilities in various systems. Conduct in-depth analysis of penetration testing results and create reports describing findings, exploitation procedures, risks, and recommendations. Convey complex technical security concepts to both technical and non-technical audiences, including executives. Utilize tools such as BurpSuite, Nessus, Nmap, Kali Linux, and Nessus for effective vulnerability assessment and penetration testing. Stay up-to-date with the latest techniques and concepts, including Active Directory attacks. Support SDLC and agile environments with application security testing and source code reviews. Serve as a mentor and guide to junior pen testers, sharing knowledge, skills, and best practices to foster their growth and development. Provide technical expertise and guidance to clients on remediation strategies and security best practices. ### Job Requirements BE/ B.Tech/ MCA or equivalent degree. Minimum 3 years of work experience in penetration testing, including at least three of the following: network, web application, mobile app (Android & iOS), thick client, APIs, wireless, social engineering, physical, and red team assessments. One of the following certifications: OSCP, OSCE, OSEP, OSWE, CREST, CRTE, eCPTX, or eWPTX. Knowledge of Windows, Linux, UNIX, and other major operating systems. Strong understanding of security principles, policies, and industry best practices. Proven ability to lead client engagements, build strong client relationships, and deliver exceptional results. Excellent communication and presentation skills, both written and verbal. Demonstrated thought leadership in cybersecurity through publications, speaking engagements, or contributions to industry forums. Exceptional problem-solving skills, strategic thinking, and the ability to influence and lead. Familiarity with OWASP methodologies and application security vulnerabilities. Exceptional ability to educate and guide application developers in security best practices. Excellent communication, presentation, and interpersonal skills. Strong Word, Excel, and PowerPoint skills.

We are looking for a skilled Security Consultant / Senior Security Consultant with expertise in penetration testing to join our team. The ideal candidate will have 3-9 years of experience. ### Roles and Responsibility Lead client engagements from kickoff to scoping, penetration testing, and reporting, ensuring adherence to agreed scope and deadlines. Conduct penetration testing including network, web application, mobile app (Android & iOS), APIs, cloud security, thick client applications, wireless, social engineering, physical, and red team assessments. Execute penetration testing projects using established methodologies, tools, and rules of engagement. Identify and exploit security vulnerabilities in various systems. Perform in-depth analysis of penetration testing results and create reports describing findings, exploitation procedures, risks, and recommendations. Convey complex technical security concepts to both technical and non-technical audiences, including executives. Utilize tools such as BurpSuite, Nessus, Nmap, Kali Linux, and Nessus for effective vulnerability assessment and penetration testing. Stay updated with the latest techniques and concepts, including Active Directory attacks. Support SDLC and agile environments with application security testing and source code reviews. Serve as a mentor and guide to junior pen testers, sharing knowledge, skills, and best practices to foster their growth and development. Provide technical expertise and guidance to clients on remediation strategies and security best practices. ### Job Requirements Minimum 3 years of work experience in penetration testing, including at least three of the following: network, web application, mobile app (Android & iOS), thick client, APIs, cloud security, thick client applications, wireless, social engineering, physical, and red team assessments. One of the following certifications: OSCP, OSCE, OSEP, OSWE, CREST, CRTE, eCPTX, or eWPTX. Knowledge of Windows, Linux, UNIX, and other major operating systems. Strong understanding of security principles, policies, and industry best practices. Proven ability to lead client engagements, build strong client relationships, and deliver exceptional results. Excellent communication and presentation skills, both written and verbal. Demonstrated thought leadership in cybersecurity through publications, speaking engagements, or contributions to industry forums. Exceptional problem-solving skills, strategic thinking, and the ability to influence and lead. BE/ B.Tech/ MCA or equivalent. Familiarity with OWASP methodologies and application security vulnerabilities. Exceptional ability to educate and guide application developers in security best practices. Excellent communication, presentation, and interpersonal skills. Strong Word, Excel, and PowerPoint skills.

We are looking for a skilled Full Stack Engineer with expertise in .NET Core and Angular to join our Security Remediation Team in Bangalore. The ideal candidate will have 5-10 years of experience. ### Roles and Responsibility Design and develop secure, enterprise-level web applications using .NET Core and Angular, following best practices for code security. Collaborate with cross-functional teams to gather security requirements and deliver secure software solutions. Write clean, maintainable, and secure code in C# and .NET Core, incorporating request sanitization and input validation to mitigate vulnerabilities. Enhance and remediate existing applications by identifying and addressing security vulnerabilities within the codebase. Conduct code reviews to ensure adherence to security standards and apply security testing techniques. Work closely with the security team to integrate security best practices throughout the Software Development Life Cycle (SDLC). Investigate and implement security tools and techniques to continuously enhance the security posture of applications. Test, deploy, and maintain secure applications, ensuring timely remediation of vulnerabilities through the use of security-focused development tools. Develop documentation for security processes and decisions, ensuring compliance with internal security guidelines and industry standards. Stay informed about emerging security trends, threats, and technologies, and recommend practices and tools to strengthen application security. ### Job Requirements Bachelor’s degree in Computer Science, Engineering, or a related field. Proven experience as a Full Stack Developer or in a similar role, with a focus on secure software development. Strong knowledge of .NET Core and C#, with expertise in Object-Oriented Programming (OOP) concepts. Practical experience in Angular for developing secure front-end interfaces. Solid understanding of security concepts such as request sanitization, input validation, and secure coding practices to protect against OWASP Top 10 vulnerabilities. Familiarity with secure architecture styles/APIs (e.g., REST, GraphQL, RPC) and security protocols (e.g., OAuth2, JWT). Experience with SQL/NoSQL databases, including secure data handling and storage practices. Proficient in Git and other version control tools. Excellent troubleshooting, debugging, and communication skills, with the ability to convey security-related issues to both technical and non-technical stakeholders. Detail-oriented, with a commitment to writing secure, high-quality code.

We are looking for a skilled Security Consultant Lead with 9 to 14 years of experience in information security, preferably in cloud security. The ideal candidate will have advanced knowledge of computer science and experience in managing significant Information Security risk management functions. ### Roles and Responsibility Review security architectures and provide pragmatic security guidance that balances business benefits and risks. Engage IT project teams throughout the SDLC to identify and prioritize applicable security controls and provide guidance on implementation. Perform threat modeling and risk assessments of information systems, applications, and infrastructure. Maintain Information Security Policies and Compliance standards and enhance InfoSec risk assessment and certification methodologies. Define security configuration standards for shared and multi-tenant platforms and technologies. Develop appropriate risk treatment and mitigation options to address security risks identified during security review or audit. Translate technical vulnerabilities into business risk terminology for business units and recommend corrective actions to customers and project stakeholders. Provide knowledge sharing and technical assistance to other team members, acting as a Subject Matter Expert (SME) in responsible technologies with a deep technical understanding of services and technology portfolios. ### Job Requirements Advanced degree in Computer Science or a related discipline; or equivalent work experience. Candidates are preferred to hold or be actively pursuing related professional certifications within the GIAC family of certifications or CISSP, CISM, or CISA, or similar cloud-security oriented certifications. Minimum 9 years of experience in managing a significant Information Security risk management function. Experience in managing communication of security findings and recommendations to IT project teams, business leadership, and technology management executives. Strong working knowledge of cloud security, infrastructure security, application security, Agile & DevSecOps methodologies, and operational security. Knowledge of common information security standards such as ISO 27001/27002, CSA and CIS Controls, NIST CSF, PCI/DSS, FEDRAMP is preferred. Experience with Azure Active Directory (AAD) based Identity and Access Management and Authorization design and integration with API, IDaaS, and Federation technologies is preferred.

We are looking for a highly skilled and experienced Consultant to join our team in Bangalore. The ideal candidate will have 3-4 years of experience in the field. ### Roles and Responsibility Develop and maintain front-end and back-end features of web applications. Collaborate with UX/UI designers to implement responsive and user-friendly interfaces. Write clean, scalable, and efficient code using modern web development technologies. Troubleshoot, debug, and optimize applications for maximum speed and scalability. Work with databases (SQL/NoSQL) to design and implement efficient data storage solutions. Ensure application security, responsiveness, and user friendliness across multiple platforms. Participate in code reviews and maintain high-quality coding standards. Stay updated with emerging technologies and best practices in full-stack development. Collaborate effectively with cross-functional teams including product managers, designers, and other developers. ### Job Requirements Engineering or equivalent qualification. 3-4 years of experience in the field. Ability to work collaboratively to provide services across multiple client departments while following commercial and legal requirements. Practical approach to solving issues and complex problems with the ability to deliver insightful and practical solutions. Agile, curious, mindful, and able to sustain positive energy, while being adaptable and creative in their approach. Strong understanding of tax laws and regulations. Experience working with databases (SQL/NoSQL).

We are looking for a highly skilled and experienced Cyber Exercise Analyst to join our team in Bengaluru. The ideal candidate will have 2-4 years of experience in cyber security, with a strong background in risk strategy, digital identity, cyber defense, application security, and technology solutions. ### Roles and Responsibility Collaborate with cross-functional teams to develop and implement comprehensive cyber security strategies. Conduct thorough analysis of complex data sets to identify potential threats and vulnerabilities. Develop and maintain detailed documentation of cyber security processes and procedures. Provide expert guidance on cyber security best practices to stakeholders at all levels. Stay up-to-date with emerging trends and technologies in cyber security. Participate in incident response efforts to mitigate the impact of security breaches. ### Job Requirements Strong understanding of cyber security principles, including risk management and compliance. Experience with cyber security tools and technologies, such as SIEM systems and intrusion detection systems. Excellent analytical and problem-solving skills, with the ability to interpret complex data sets. Effective communication and collaboration skills, with the ability to work with diverse stakeholders. Ability to stay current with emerging trends and technologies in cyber security. Strong attention to detail, with a focus on delivering high-quality results. Expert knowledge of red teaming, tabletop exercises, cyber incident response, and threat intelligence processes. Experience in test documentation, red team report creation, threat intelligence report creation, and analysis for red teaming. Skilled in using information technology/security, proficient in writing technical documentation including manuals, policies, and procedures. Good time management skills and versatility to present to technical audiences. Knowledge of TIBER-EU is an added advantage.

Job Title : Security Engineer - Contractual Role Experience Required : 2-4 years. Job Summary : Seeking for a highly skilled and motivated Web Application Firewall (WAF) and Bot Operations Security Engineer who will play a crucial role in ensuring the security and resilience of our organisations systems, networks, and infrastructure. He will be responsible for deploying, configuring, and managing Web Application Firewalls (WAFs) and bot mitigation solutions to protect our web applications from various cyber threats and malicious activities. This role involves a deep understanding of web application security, bot management, and hands-on experience with WAF technologies and bot mitigation tools. Required Skills: The candidate should have minimum experience of 3 years in Vulnerability management to carry out WAF & BOT solutions. Mandatory : 3+ years of experience in web application security, including hands-on experience with WAF technologies and bot mitigation tools (e.g., Akamai, Cloudflare, Imperva, AWS WAF, Azure Application Gateway, F5 BIG-IP). Strong understanding of web application vulnerabilities, attack vectors, and mitigation techniques. Experience with security monitoring and incident response. Good to have: Proficiency in scripting languages (e.g., Python, Bash) for automation and custom rule creation. Knowledge of web technologies, including HTTP/HTTPS, HTML, JavaScript, and APIs. Familiarity with security frameworks and standards (e.g., OWASP, CIS). Certification: Mandatory : Relevant security certifications such as CISSP, CISM, CEH, or other industry-recognized credentials. Good to have: Certifications such as CREST Practitioner Security Analyst (CPSA), Certified Expert Penetration Tester (CEPT) etc. Qualifications : 1. Bachelors degree in Computer Science, Information Security, or related field (or equivalent experience). 2. Strong understanding of networking protocols, operating systems, and security technologies. 3. Excellent analytical and problem-solving skills. 4. Proficient in at least one scripting language. Responsibilities : WAF Management: Deploy, configure, and maintain Web Application Firewalls to protect web applications from threats such as SQL injection, cross-site scripting (XSS), and other OWASP Top 10 vulnerabilities. Develop and implement custom WAF rules and policies to address specific security requirements and threat landscapes. Monitor WAF performance and fine-tune rules to minimize false positives and negatives. Bot Mitigation: Implement and manage bot detection and mitigation solutions (including advanced BOTs) to safeguard against automated attacks and scraping activities. Analyze bot traffic patterns and behaviour to fine-tune detection and mitigation strategies. Stay updated on emerging bot threats and mitigation techniques, and proactively adjust strategies to counteract new attack vectors. Incident Response: Investigate and respond to security incidents, attack scenarios related to web applications and bot activities. Perform root cause analysis for security events and provide recommendations for improvements to prevent recurrence. Must be willing to be available during off-hours and weekends for incident response and attack scenarios as needed. Collaboration and Communication: Work closely with application developers, system administrators, and other stakeholders to address security concerns and ensure secure application deployment. Provide security guidance and best practices to teams across the organization to enhance overall security posture.

We are hiring for Security Engineer- Navi Mumbai Location (Belapur) for one of our project. Interested candidate can share resume to ankita.patari@happiestminds.com Experience: 2 to 5 Years Location: Navi Mumbai Location (Belapur) Office Timings: Monday to Friday (First Saturday and Third Saturday working) Looking for max 15 Days Joiners only Immediate Joiners please mentioned in Subject Line(Immediate Joiner_AppSec) General Shift Exp Range-2 to 4 Years Primary Skills : SAST, Penetration testing , Vulnerability Assessment Responsibility: Static Code analysis, Static/dynamic testing of mobile applications,Vulnerability Assessment,Penetration Testing Thanks And Regards, Ankita P Ghosh ankita.patari@happiestminds.com

Our vision for the future is based on the idea that transforming financial lives starts by giving our people the freedom to transform their own. We have a flexible work environment, and fluid career paths. We not only encourage but celebrate internal mobility. We also recognize the importance of purpose, well-being, and work-life balance. Within Empower and our communities, we work hard to create a welcoming and inclusive environment, and our associates dedicate thousands of hours to volunteering for causes that matter most to them. Chart your own path and grow your career while helping more customers achieve financial freedom. Empower Yourself. What you will do Conduct security operations necessary to maintain the confidentiality, availability, and integrity of enterprise data and information systems. Provide excellent customer service for internal and external customers in support of security initiatives, incident response, and support Maintenance of security tools and technologies throughout the enterprise environment such as Palo Alto Firewall features (e.g., App-ID, User-ID, threat prevention, and content filtering). Manage and troubleshoot Prisma Access for secure remote connectivity. Supporting and Troubleshooting network security in AWS and Azure environments. Evaluate, design, and implement security related solutions, adhering to established change control processes Provide technical security planning, implementation, configuration, support and troubleshooting services on all security technologies. Provide accurate, clear, and concise documentation of system requirements, specifications, and final builds. Perform all necessary functions associated with the implementation and integration of security tools and platforms into the enterprise environment. Coordinate with systems and network engineers to ensure servers and network devices conform to security standards, and that security devices and controls are working as designed Assist with the development, implementation, and administration of information security policies, standards, and procedures, adhering to industry best practices Assist in ensuring that the corporate IT environment is secure and complies with all internal and external audit requirements Identify potential security risks, and define and document remediation options or mitigating controls Validate security control coverage against identified IOCs based on emerging cyber threat intelligence Collaborate with the Offensive Security team to analyze and evaluate the effectiveness of existing security controls against identified TTPs Assist in the management of an Incident Response Team that addresses potential or in-progress security events, establishing and adhering to escalation procedures and response times Maintain certifications and keep up-to-date with current information technology Participate in 24x7 on-call rotation Perform related duties as requested Job Qualifications (Must meet at least three of the below requirements) 5+ years of experience with managing security controls, to include defining policies and administering devices such as Paloaltonetworks firewalls, Paloaltonetworks Prisma, IDS/IPS platforms, and e-mail/web filtering solutions 2+ years experience in AWS and Azure cloud operations 5 + years of technical experience working with security solutions and conducting security operations 3+ years of network security experience and reviewing security tools and solutions and making recommendations on utilization and strategy 1+ years web application firewalls 5 + years of experience with network protocols, data flows and attacks within an IP environment 3+ years of experience in building configurations for security devices and building an automated process to support large-scale deployment Good knowledge and experience with security software, firewalls, intrusion detection systems and other security systems and network monitoring. 3+ years hands-on technical knowledge of network systems, protocols, and standards such as Ethernet, LAN, WAN and TCP/IP. 3+ years of experience with commercial and open-source security applications and technologies (e.g. malware prevention, DLP, IDS/IDP, and cryptography), as well as related protocols and tools (e.g. SSH, SSL/TLS, snort, port scanners, rootkit detectors, etc.) 3+ Implement security measures for Kubernetes clusters and containerized applications. 3+ years of experience performing network and application security administration 2+ years programming/scripting experience –Python, shell What you will bring Bachelor s degree in Information Technology, Computer Science, or related field and 5 years experience in information technology or related field within the last 10 years Preference will be given to those with degrees in Computer Science, Information Technology, Mathematics, Engineering (various disciplines), and other technology-focused areas. Must have Palo certification and AWS Solutions Arch This job description is not intended to be an exhaustive list of all duties, responsibilities and qualifications of the job. The employer has the right to revise this job description at any time. You will be evaluated in part based on your performance of the responsibilities and/or tasks listed in this job description. You may be required perform other duties that are not included on this job description. The job description is not a contract for employment, and either you or the employer may terminate employment at any time, for any reason, as per terms and conditions of your employment contract. We are an equal opportunity employer with a commitment to diversity. All individuals, regardless of personal characteristics, are encouraged to apply. All qualified applicants will receive consideration for employment without regard to age, race, color, national origin, ancestry, sex, sexual orientation, gender, gender identity, gender expression, marital status, pregnancy, religion, physical or mental disability, military or veteran status, genetic information, or any other status protected by applicable state or local law.

Inspira Enterprise India Pvt. Ltd. is looking for Analyst to join our dynamic team and embark on a rewarding career journey. Financial Analyst : A financial analyst evaluates financial data, assesses investment opportunities, analyzes market trends, and provides recommendations to individuals or organizations regarding investment decisions, portfolio management, and financial planning. Business Analyst : Business analysts work to understand an organization's business processes, identify areas for improvement, gather and analyze data, and make recommendations to enhance efficiency, productivity, and overall business performance. Data Analyst : Data analysts collect, process, and analyze large datasets to identify trends, patterns, and insights that can inform business decisions. They often use tools like Excel, SQL, and data visualization software. Market Analyst : Market analysts research market trends, consumer behavior, and competitive landscape in a specific industry to provide insights that guide marketing and sales strategies. Research Analyst : Research analysts study various subjects, such as market trends, scientific data, social issues, or public policy, to produce reports and findings that contribute to informed decision - making. Policy Analyst : Policy analysts assess and evaluate public policies, proposals, and programs to provide recommendations to government agencies, nonprofit organizations, or other entities. Security Analyst : Security analysts focus on cybersecurity, monitoring networks and systems for potential threats, analyzing security breaches, and implementing measures to protect against cyberattacks.

Job Description Summary: This Job Description applies to Developer: Applications, BaaN, Flex Flow, RedPrairie, webMethods, MuleSoft, and NET SQL The Developer, Applications will be based in Chennai reporting to Manager In this role, you will be In-charge of ensuring continuity of IT systems by providing the planning, technical business, and project coordination necessary to implement, architects, designs, builds, tests, implement, develops software and resolve technical business solutions that automate specific business processes. Responsibilities: Develop business solutions by working with required stakeholders to develop the strategy for implementation. Ensure product is complete and attain customer s requirements along with functions properly Solution testing / QA prior to turnover to other teams for testing and user sign off. Partner with business stakeholders to evaluate & select appropriate technology vendor and/or applications to meet business needs. Work closely with server or database administration for any server/database migration, operating system upgrade to ensure all applications are running smoothly without impacting company day to day operation. Troubleshoot and research of codes to find causes of errors and revise programs Work hand in hand with database administrator to fine tune on database performance to optimize the performance of database and application. Consult with engineering staffs to evaluate and develop software-machine interfaces Consult with application security team and fix the application security breaches Contributes closely with solution architect on the entire development process Maintain and upgrade existing systems. Research on fancy UI components and use in systems. Research on new technologies and incorporate in system solutions. Write and maintain documentation to describe program development, rationale, coding, testing changes, and corrections. Researches and evaluates software and hardware to assist in programming or to use as program platforms. Converts designs and specifications into computer code. Designs and codes screen layouts, graphical user interfaces, printed outputs and interfaces with other systems. Compiles code into programs and corrects errors detected in compile process. Creates and runs unit/integration/system test for automated execution to find errors on earlier implementation phases and confirm programs meets specifications Research codes to find causes of errors and revises programs. Assists for UAT (User Acceptance Test). Writes and maintains technical documentation to describe program development, rationale, coding, testing, changes, and corrections. Writes documentation or reviews documentation written by others that describes installation and operating procedures. Provides technical assistance by answering to inquiries regarding errors, problems or questions with program. Trains end users or technical hold up staff to use programs. Conduct presentations of technical information concerning specific projects or schedules. Installs and tests upgrades of externally developed application components Plans and prepares technical reports, memorandum and instructional manuals as documentation of program development. Upgrades system and corrects errors to maintain system after implementation. May Prepare time and cost estimates for completing projects. May review project proposal or plan to choose timeframe, funding requirements and procedures for accomplishing project goals. Troubleshooting and provide solutions for business critical P1 incidents if any. Consults with client Business System Specialist and other internal stakeholders to prototype, refine, test and debug programs to attain client approval. Qualifications: Typically requires a Bachelor s degree or equivalent systems experience. Typically requires 1-3 years of systems experience. Requires some knowledge of application development, procedures, utilities and job control languages is preferred. Demonstrates operations and technical skills and understanding of Flex s functional standards. Demonstrates a general knowledge of functional concepts and a rudimentary understanding of Flex policies and procedures. Has awareness of the functional impact upon work processes and other functions. Use of the following tools may be required: Office Skills: typing, telephones, computer languages, word processor, spreadsheet (PC), software, computer trouble shooting. Demonstrates working knowledge of functional concepts and a solid understanding of Flex policies and procedures. Demonstrates knowledge of multiple functional technologies/ processes, industries or functions and understanding of interdependencies of such processes at the site. May be required to display project leadership. Able to work in teams using Software Control Repository tools (TFS, Git). Able to understand Object Oriented Programming and SOLID principles.