1249 Application Security Jobs - Page 7

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Omada Identity Cloud Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to document the implementation of cloud security controls and facilitating the transition to cloud security-managed operations. You will engage in discussions to align security strategies with organizational objectives, ensuring that all security measures are effectively integrated into the cloud environment. Your role will also require you to stay updated on the latest security trends and technologies to enhance the overall security posture of the organization. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Facilitate training sessions to enhance team knowledge and skills in cloud security.- Develop and maintain comprehensive documentation of security policies and procedures. Professional & Technical Skills: - Must To Have Skills: Proficiency in Omada Identity Cloud.- Good To Have Skills: Experience with cloud security frameworks and compliance standards.- Strong understanding of identity and access management principles.- Experience with security incident response and risk management.- Familiarity with cloud service providers and their security offerings. Additional Information:- The candidate should have minimum 7.5 years of experience in Omada Identity Cloud.- This position is based at our Gurugram office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Omada Identity Cloud Good to have skills : NAMinimum 12 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to document the implementation of cloud security controls and facilitating the transition to cloud security-managed operations. You will engage in discussions to align security strategies with organizational objectives, ensuring that all security measures are effectively integrated into the cloud environment. Your role will also require you to stay updated on the latest security trends and technologies to enhance the overall security posture of the organization. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Expected to provide solutions to problems that apply across multiple teams.- Facilitate training sessions to enhance team knowledge and skills in cloud security.- Conduct regular assessments of cloud security measures to identify areas for improvement. Professional & Technical Skills: - Must To Have Skills: Proficiency in Omada Identity Cloud.- Strong understanding of cloud security frameworks and best practices.- Experience with identity and access management solutions.- Familiarity with compliance standards and regulations related to cloud security.- Ability to analyze and mitigate security risks in cloud environments. Additional Information:- The candidate should have minimum 12 years of experience in Omada Identity Cloud.- This position is based at our Gurugram office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : SailPoint IdentityNow Good to have skills : NAMinimum 2 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to assess security needs, documenting security controls, and transitioning to cloud security-managed operations, all while ensuring compliance with industry standards and best practices. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work related problems.- Engage in continuous learning to stay updated with the latest security trends and technologies.- Assist in the development of security policies and procedures to enhance the overall security posture. Professional & Technical Skills: - Must To Have Skills: Proficiency in SailPoint IdentityNow.- Strong understanding of cloud security principles and practices.- Experience with identity and access management solutions.- Familiarity with regulatory compliance frameworks such as GDPR and HIPAA.- Ability to analyze and mitigate security risks effectively. Additional Information:- The candidate should have minimum 2 years of experience in SailPoint IdentityNow.- This position is based at our Hyderabad office.- A 15 years full time education is required. Qualification 15 years full time education

Job Title Security Delivery Senior Analyst Management Level: 10 - Senior Analyst Location: Bengaluru Must have skills: Node.js, PostgreSQL, AWS, Azure DevOps, Agile, CI/CD, Strong Communication, Estimation (for level 8/9) Good to have skills: Application Security, AWS Fargate, Google BigQuery Job Summary : The ISD backend developer will be responsible for writing code for the upcoming changes and operational tasks. The application is built in AWS Cloud Native architecture. The application is written in AngularJS, Node.js, both in TypeScript. The developer must be skilled in Node.js, PostgreSQL, AWS and be familiar with agile concepts and automated CI/CD including unit testing. Roles & Responsibilities: The backend developer will be responsible for supporting a custom-built dashboard in AngularJS and Node.js. Level 9/8 developers must prioritize work, estimate work, and assist other developers. The Developer will also take part in future project planning and estimation. Professional & Technical Skills: Technical Experience: The backend developer must be skilled in NodeJS and PostgreSQL and have working knowledge of TypeScript and PostgreSQL. The Developer must also be experienced in Continuous Integration/Continuous Deployment (CI/CD) to automate builds and deployments. Professional Experience: The backend developer must be self-motivated with excellent communication skills. The developer should be able to work with the lead(s) to solve complex development challenges, perform peer/quality reviews and maintain the teams code repository and deployment activities. Additional Information: About Our Company | AccentureQualification Experience: Minimum 4+ years of experience is required Educational Qualification: Any Degree

1. Performs all administration, management, configuration, testing, and integration tasks related to the Threat Intel Platform solutions, and associated platforms including content creation and maintenance. 2. Develop information security and incident response workflows, procedures, and best practices and publish them in confluence. 3. Background to AWS, EC2, Kubernetes, and Docker implementation Jenkins, Bitbucket, Vscode/Pycharm, JIRA, etc. 4. Candidate who understands Network infrastructure in terms of cybersecurity. 5. Performing documentation tasks that he has been assigned and updating regularly and publishing it in the confluence folder. 6. Performing Code Review - (Preferred language Python and Ansible) 7. Documentation of changes in confluence 8. Working on service now for Change - management process required for implementation of project.

The opportunity: The Legal & Integrity (L&I) Operations Power Platform Developer is responsible for supporting the global Legal Tech Development Team in tool developments and maintenance. This includes managing data, overseeing critical processes for the Legal & Integrity team How you ll make an impact: Design, develop and optimize new PowerApps canvas and model-driven applications, as well as enhance existing ones. Develop application logic using Power FX formulas and establish data connections. Create and maintain Microsoft Power Automate workflows and PowerBI dashboards/Reports Configure connectors and integrations between various systems and applications to facilitate data flow and automation. Utilize Dataverse, SharePoint, and other data sources for app and flow development. Implement data validation and security measures to protect sensitive information. Deploy applications and flow components to the appropriate environments. Ensure application security, scalability, and adherence to best practices. Handle confidential information with discretion and maintain professionalism at all times. Provide Level 1 user support to the L&I community. Collaborate with cross-functional, international teams to support business objectives and drive continuous improvement. Responsible to ensure compliance with applicable external and internal regulations, procedures, and guidelines. Living Hitachi Energy s core values of safety and integrity, which means taking responsibility for your own actions while caring for your colleagues and the business. Your background: Bachelors or Master s degree in relevant fields. 1-5 years of experience as developer. Self-starter caliber who could own tasks through to completion. Strong attention to detail & excellent organizational skills. Ability to handle multiple tasks simultaneously. Proficiency in both spoken & written English language is required. Qualified individuals with a disability may request a reasonable accommodation if you are unable or limited in your ability to use or access the Hitachi Energy career site as a result of your disability. You may request reasonable accommodations by completing a general inquiry form on our website. Please include your contact information and specific details about your required accommodation to support you during the job application process. .

Roles & Responsibilities: Consultancy and Support towards Security and compliance controls with respect to various Bosch/Industry regulations Conduct compliance assessments and provide consultation on security frameworks, including ISO 27001:2022. Engage with stakeholders, including managers, application owners, and technical teams, to assess security controls and document security compliance. Conduct and consult on gap analyses for security policies, controls, and procedures. Assist in developing and maintaining Business Continuity Management Plans (BCMP). Provide guidance on security best practices, including penetration testing, vulnerability scanning, encryption, and backup/storage security. Ensure security documentation is complete, accurate, and up to date. Assist in the implementation of security standards, policies, and regulatory requirements. Follow the roadmap as aligned with customer unit in completion of Policy implementations and controls in the Applications Prepare reports and documentation to demonstrate compliance with relevant standards Ensure the customer KPIs, quality and deliverables are met Skills: Know-how in IT systems Experience in Application Management Processes, Governance and Policies Knowledge of security concepts, including penetration testing, vulnerability scanning, encryption, backup and storage security, business continuity management, and application security. Overview and Experience in Information, Project, IT Security and/or IAM and GRC Processes Work experience with GRC tools will be an added advantage Good working knowledge in MS office (Excel, word and PPT). Knowhow in excel functions (E. g. , Pivot table, charts , lookup functions, etc. , ) Professional oral and written communication skills Know-how on ITIL service management processes will be an added advantage Should be a good team player, flexible and deadline oriented Good verbal and written communication in English and German

Roles & Responsibilities: Consultancy and Support towards Security and compliance controls with respect to various Bosch/Industry regulations Conduct compliance assessments and provide consultation on security frameworks, including ISO 27001:2022. Engage with stakeholders, including managers, application owners, and technical teams, to assess security controls and document security compliance. Conduct and consult on gap analyses for security policies, controls, and procedures. Assist in developing and maintaining Business Continuity Management Plans (BCMP). Provide guidance on security best practices, including penetration testing, vulnerability scanning, encryption, and backup/storage security. Ensure security documentation is complete, accurate, and up to date. Assist in the implementation of security standards, policies, and regulatory requirements. Follow the roadmap as aligned with customer unit in completion of Policy implementations and controls in the Applications Prepare reports and documentation to demonstrate compliance with relevant standards Ensure the customer KPIs, quality and deliverables are met Skills: Know-how in IT systems Experience in Application Management Processes, Governance and Policies Knowledge of security concepts, including penetration testing, vulnerability scanning, encryption, backup and storage security, business continuity management, and application security. Overview and Experience in Information, Project, IT Security and/or IAM and GRC Processes Work experience with GRC tools will be an added advantage Good working knowledge in MS office (Excel, word and PPT). Knowhow in excel functions (E. g. , Pivot table, charts , lookup functions, etc. , ) Professional oral and written communication skills Know-how on ITIL service management processes will be an added advantage Should be a good team player, flexible and deadline oriented Good verbal and written communication in English and German

Penetration testing and vulnerability assessment expertise – Active Directory, Cloud Security, Network Pentesting, Application Security Testing etc. Exploit development and advanced offensive security tactics – EDR Bypass Techniques etc.

Role & responsibilities Perform vulnerability assessments using tools like SAST, DAST, SCA, and manual techniques. Should have hands-on experience in Web Application Security Testing tools (SAST & DAST) and Penetration testing tools such as HP Fortify, Check marx, Acunetix, Nessus, Burp Suite, Metasploit., Qualys Guard, Kali Linux, etc. Conduct technical vulnerability assessments, identify potential vulnerabilities and provide recommended controls and support to mitigate them. Manage and improve application security tools (e.g., Check marx, Veracode, Fortify, Burp Suite, OWASP ZAP). Participate in incident response and forensics in the event of a security breach involving application layer components. Contact Person: Divya R Email ID: rdivya@gojobs.biz

Responsibilities: * Design cybersecurity architecture for cloud environments * Ensure application & product security compliance * Collaborate with cross-functional teams on risk management strategies Work Location - Remote Clients - Saudi Arabia Health insurance Annual bonus

Let s do this. Let s change the world. In this vital role you will Guide and support junior team members by offering technical advice, conducting code reviews, and sharing knowledge to promote their professional development. Perform security testing (e.g., penetration testing, code reviews) and ensure continuous security monitoring across the organization s IT landscape. Identify vulnerabilities in networks, systems, applications, and infrastructure through hands-on penetration testing. Attempt to exploit discovered vulnerabilities to demonstrate their impact and prove their existence (e.g., retrieving sensitive data, elevating user privileges, or gaining access to admin functionality). Perform assessments on web applications, cloud environments, and network infrastructure. Use automated tools and manual techniques to identify security weaknesses. Conduct advanced post-exploitation tasks to simulate real-world attack scenarios. Work with third-party security vendors for audits, product testing, and external assessments when required. Use automated tools (e.g., Burp Suite, OWASP ZAP, or Acunetix) to identify common vulnerabilities such as SQL Injection, Cross-Site Scripting (XSS), Cross-Site Request Forgery (CSRF), and others. Document identified vulnerabilities in detail, explaining how they were found, their severity, and their potential impact. Include proof-of-concept (PoC) for critical vulnerabilities. Offer actionable, practical solutions for fixing the vulnerabilities, such as secure coding practices, configuration changes, or security controls. Use risk-based prioritization, categorizing issues by their severity and business impact (e.g., high, medium, low) to help the organization focus on the most critical issues. Continuously learn about the latest vulnerabilities, exploits, and security trends. Present the findings to stakeholders, security teams, and management, explaining the business risk and potential impacts of the vulnerabilities discovered. Familiarity with industry standards and compliance requirements (e.g., PCI-DSS, NIST, ISO 27001) and their relevance to penetration testing. What we expect of you We are all different, yet we all use our unique contributions to serve patients. This role has a strong focus on ensuring the organizations infrastructure, applications, and systems are secure from external and internal threats. This role is responsible for conducting authorized security tests on IT infrastructure to evaluate the strength of its systems against potential cyberattacks. A variety of automated tools and manual techniques are leveraged to simulate real-world attacks. The penetration tester then works with the organization to prioritize, remediate and report on identified issues, strengthening the overall security posture. Basic Qualifications: Bachelor s degree with 6 - 8 years of experience in Computer Science, Cybersecurity or Information Systems related field . Preferred Qualifications: Must-Have Skills: Strong knowledge of common vulnerabilities (e.g., OWASP Top 10, SANS Top 25), network protocols, encryption standards, application security and common penetration testing methodologies (ISSAF, OSSTMM, PTES). Familiarity with tools like Burp Suite, OWASP ZAP and Metasploit. A deep understanding of web application architecture, databases, and authentication mechanisms. Ability to think critically and creatively when testing and attempting to exploit vulnerabilities. Good-to-Have Skills: Experience with threat intelligence and incorporating emerging threats into penetration testing practices Proficiency in scripting and automation (e.g., Python, Bash) is a plus Professional Certifications (please mention if the certification is preferred or mandatory for the role): Preferred: eJPT, eCPPT, eWPT, OSCP, OSWA, GWAPT What you can expect of us As we work to develop treatments that take care of others, we also work to care for your professional and personal growth and well-being. From our competitive benefits to our collaborative culture, we ll support your journey every step of the way. In addition to the base salary, Amgen offers competitive and comprehensive Total Rewards Plans that are aligned with local industry standards.

Jun 23, 2025 Location: Bengaluru Designation: Consultant Entity: Deloitte Touche Tohmatsu India LLP Your potential, unleashed. India s impact on the global economy has increased at an exponential rate and Deloitte presents an opportunity to unleash and realise your potential amongst cutting edge leaders, and organisations shaping the future of the region, and indeed, the world beyond. At Deloitte, your whole self to work, every day. Combine that with our drive to propel with purpose and you have the perfect playground to collaborate, innovate, grow, and make an impact that matters. The team Risk Advisory is about much more than just the numbers. It s about attesting to accomplishments and challenges and helping to assure strong foundations for future aspirations. Deloitte exemplifies the what, how, and why of change so you re always ready to act ahead. Learn more about Risk Advisory Practice Location and way of working Base location: Bangalore Professional is required to work from office Your work profile As a Consultant in our Cyber Team you ll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations: - As a part of our Cyber, you ll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations. You ll: Role Description ISMS or Third-Party Risk Assessments Lead engagement team in delivering client engagements Support Managers/AD/D in assessment/ audit execution, reporting, quality review and tracking Support Managers/AD/D in responding to RFP, proposals, new opportunities Lead discussions with client teams from various depts. Such as compliance teams, auditing and regulators to identify and document various requirements/obligations Flexible to step-in and perform work on ground such as conducting risk assessments and audits with respect to people, process and technology Act as subject matter expert (SME) for providing guidance and share knowledge with team members. Assist team members during engagements Should be able to work as independently on short term engagements Perform quality reviews of work performed by team members Desired qualifications 1+ Relevant years of experience in Third party risk management Relevant years of experience in IT Audits, Cloud security Experience with ISO22301 implementation and audits Preferred certifications CBCI / CBCP / ISO22301 LI or LA Offensive Security Certified Professional, CISA to work in a cross-functional, cross-cultural matrix environment\ Understanding of Third party/vendor/supplier risk management considerations Knowledge of Data Protection & Privacy related risks associated with Third-Party and relevant control frameworks for Third party risk management Excellent written/verbal communication Excellent documentation and presentation skills Highly motivated and willing to work in local and global environments Security certifications like CISSP, CISA, CISM, CEH, ISO27001 Work experience in Infrastructure / Application Security Work experience in IT Audit Work experience in Information Risk Management Your role as a Consultant We expect our people to embrace and live our purpose by challenging themselves to identify issues that are most important for our clients, our people, and for society. In addition to living our purpose, Senior Executive across our organization must strive to be: Inspiring - Leading with integrity to build inclusion and motivation Committed to creating purpose - Creating a sense of vision and purpose Agile - Achieving high-quality results through collaboration and Team unity Skilled at building diverse capability - Developing diverse capabilities for the future Persuasive / Influencing - Persuading and influencing stakeholders Collaborating - Partnering to build new solutions Delivering value - Showing commercial acumen Committed to expanding business - Leveraging new business opportunities Analytical Acumen - Leveraging data to recommend impactful approach and solutions through the power of analysis and visualization Effective communication Must be well abled to have well-structured and well-articulated conversations to achieve win-win possibilities Engagement Management / Delivery Excellence - Effectively managing engagement(s) to ensure timely and proactive execution as well as course correction for the success of engagement(s) Managing change - Responding to changing environment with resilience Managing Quality & Risk - Delivering high quality results and mitigating risks with utmost integrity and precision Strategic Thinking & Problem Solving - Applying strategic mindset to solve business issues and complex problems Tech Savvy - Leveraging ethical technology practices to deliver high impact for clients and for Deloitte Empathetic leadership and inclusivity - creating a safe and thriving environment where everyones valued for who they are, use empathy to understand others to adapt our behaviours and attitudes to become more inclusive.

Location: Bengaluru Designation: Assistant Manager Entity: Deloitte Touche Tohmatsu India LLP Your potential, unleashed. India s impact on the global economy has increased at an exponential rate and Deloitte presents an opportunity to unleash and realise your potential amongst cutting edge leaders, and organisations shaping the future of the region, and indeed, the world beyond. At Deloitte, your whole self to work, every day. Combine that with our drive to propel with purpose and you have the perfect playground to collaborate, innovate, grow, and make an impact that matters. The team Cyber is about much more than just the numbers. It s about attesting to accomplishments and challenges and helping to assure strong foundations for future aspirations. Deloitte exemplifies the what, how, and why of change so you re always ready to act ahead. Your work profile As an Consultant/ Assistant Manager/ D M in our Cyber - Extended Enterprise Team you ll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations: - As a part of our Cyber team, you ll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations. You ll: Role Description ISMS or Third-Party Risk Assessments Ability to effectively liaise with clients and manage stakeholder expectations Work with client teams from various depts. Such as compliance teams, auditing and regulators to identify and document various requirements/obligations Conducting risk assessments and audits with respect to people, process and technology Identification of gaps/observations, risks, opportunities and improvement of policies, processes, procedures and standards Documenting information security risk, recommendation and compensating controls in the form of assessment/audit reports Collaborate with other members of the engagement team to plan and develop relevant work papers/deliverables for vendor information security reviews, define approach for vendor assessment and develop vendor evaluation model Handle key activities of assessment/ audit life cycle: planning, execution, reporting, quality review and tracking Provide guidance and share knowledge with team members and participate in performing procedures especially focusing on complex, judgmental and/or specialized issues Desired qualifications 2 to 8 Relevant years of experience in Third party risk management Relevant years of experience in IT Audits, Cloud security Experience with ISO22301 implementation and audits Preferred certifications CBCI / CBCP / ISO22301 LI or LA Offensive Security Certified Professional, CISA to work in a cross-functional, cross-cultural matrix environment\ Understanding of Third party/vendor/supplier risk management considerations Knowledge of Data Protection & Privacy related risks associated with Third-Party and relevant control frameworks for Third party risk management Excellent written/verbal communication Excellent documentation and presentation skills Highly motivated and willing to work in local and global environments Security certifications like CISSP, CISA, CISM, CEH, ISO27001 Work experience in Infrastructure / Application Security Work experience in IT Audit Work experience in Information Risk Management Location and way of working Base location: Bangalore This profile involves frequent / occasional travelling to client locations OR this profile does not involve extensive travel for work. Hybrid is our default way of working. Each domain has customized the hybrid approach to their unique needs. Your role as an Consultant /Assistant Manager/ Deputy Manager We expect our people to embrace and live our purpose by challenging themselves to identify issues that are most important for our clients, our people, and for society. In addition to living our purpose, Consultant/ AM/ DM across our organization must strive to be: Inspiring - Leading with integrity to build inclusion and motivation Committed to creating purpose - Creating a sense of vision and purpose Agile - Achieving high-quality results through collaboration and Team unity Skilled at building diverse capability - Developing diverse capabilities for the future Persuasive / Influencing - Persuading and influencing stakeholders Collaborating - Partnering to build new solutions Delivering value - Showing commercial acumen Committed to expanding business - Leveraging new business opportunities Analytical Acumen - Leveraging data to recommend impactful approach and solutions through the power of analysis and visualization Effective communication Must be well abled to have well-structured and well-articulated conversations to achieve win-win possibilities Engagement Management / Delivery Excellence - Effectively managing engagement(s) to ensure timely and proactive execution as well as course correction for the success of engagement(s) Managing change - Responding to changing environment with resilience Managing Quality & Risk - Delivering high quality results and mitigating risks with utmost integrity and precision Strategic Thinking & Problem Solving - Applying strategic mindset to solve business issues and complex problems Tech Savvy - Leveraging ethical technology practices to deliver high impact for clients and for Deloitte Empathetic leadership and inclusivity - creating a safe and thriving environment where everyones valued for who they are, use empathy to understand others to adapt our behaviours and attitudes to become more inclusive. How you ll grow Connect for impact Our exceptional team of professionals across the globe are solving some of the world s most complex business problems, as well as directly supporting our communities, the planet, and each other. Know more in our Global Impact Report and our India Impact Report . Empower to lead You can be a leader irrespective of your career level. Our colleagues are characterised by their ability to inspire, support, and provide opportunities for people to deliver their best and grow both as professionals and human beings. Know more about Deloitte and our One Young World partnership. Inclusion for all At Deloitte, people are valued and respected for who they are and are trusted to add value to their clients, teams and communities in a way that reflects their own unique capabilities. Know more about everyday steps that you can take to be more inclusive. At Deloitte, we believe in the unique skills, attitude and potential each and every one of us brings to the table to make an impact that matters. Drive your career At Deloitte, you are encouraged to take ownership of your career. We recognise there is no one size fits all career path, and global, cross-business mobility and up / re-skilling are all within the range of possibilities to shape a unique and fulfilling career. Know more about Life at Deloitte. Everyone s welcome entrust your happiness to us Our workspaces and initiatives are geared towards your 360-degree happiness. This includes specific needs you may have in terms of accessibility, flexibility, safety and security, and caregiving. Here s a glimpse of things that are in store for you. Interview tips We want job seekers exploring opportunities at Deloitte to feel prepared, confident and comfortable. To help you with your interview, we suggest that you do your research, know some background about the organisation and the business area you re applying to. Check out recruiting tips from Deloitte professionals.

" Security Operations (SecOps) Engineer Location: Bangalore Team: Security & Compliance Reports to: Engineering Manager Platform & Security About Josys Josys is on a mission to redefine enterprise IT operations through automation, visibility, and security. As we continue to scale globally, securing our cloud-native infrastructure and application ecosystem is more critical than ever. We are looking for a passionate Security Operations Engineer to join our security team and help strengthen our defenses and practices across the cloud. Job Summary As a Senior SecOps Engineer , youll lead the design and implementation of security controls across cloud infrastructure, CI/CD pipelines, and application layers. You ll act as a subject matter expert in both preventive and detective controls, vulnerability management, and compliance enforcement. We are looking for someone hands-on with a deep understanding of cloud and application security especially across AWS, data privacy, and regulatory frameworks . Key Responsibilities 1. Cloud Security Monitoring & Compliance Configure and optimize AWS-native security tools like Security Hub, GuardDuty, Config, CloudTrail for real-time detection and compliance. Drive Cloud Gap Assessments and security posture reviews across multi-account AWS environments. Ensure alignment with standards like CIS, ISO 27001, SOC 2 , and regulatory requirements including GDPR and data residency controls . 2. Incident Response & Remediation Lead investigation and remediation efforts in partnership with L1 support and SRE teams . Perform root cause analysis , implement fixes, and establish preventive controls. Build runbooks, define escalation processes, and improve incident response automation . 3. Secure DevOps & CI/CD Integration Integrate automated security tools in CI/CD for both infrastructure and applications (e.g., SAST, DAST, IaC scanning). Implement IaC policy enforcement using tools such as tfsec, Checkov, or OPA . Embed security gates and practices early in the software development lifecycle. 4. Penetration Testing & Vulnerability Management Conduct or coordinate regular penetration testing using tools like Burp Suite, OWASP ZAP , or via third-party assessors. Manage end-to-end vulnerability lifecycle , from discovery through remediation. Translate findings into developer-friendly guidance and track fixes to closure. 5. Continuous Improvement & Security Awareness Stay current with cloud security trends, vulnerabilities, and threats . Drive security awareness training and contribute to improving engineering security hygiene. Influence architectural decisions by embedding security principles into project planning. Required Qualifications 5 8 years of experience in cloud security, application security, or security operations roles. Deep knowledge of AWS security architecture, IAM, networking, and encryption practices . Hands-on experience with security testing tools like Burp Suite, OWASP ZAP , Nmap, and cloud-native monitoring tools. Strong grasp of compliance frameworks including GDPR, SOC 2, ISO 27001 , and data residency considerations . Solid scripting or automation skills (e.g., Python, Bash, Terraform). Must hold at least one relevant certification: AWS Certified Security Specialty CISSP (Certified Information Systems Security Professional) CCSP (Certified Cloud Security Professional) Nice to Have Experience with container security (e.g., EKS, Docker) and runtime protection tools . Familiarity with security operations platforms (e.g., Splunk, ELK, or SIEM tools ). Experience working in fast-paced SaaS or DevOps-centric environments . Why Join Us Work on a global SaaS platform at the cutting edge of IT automation and cloud security. Lead initiatives that shape how modern enterprises manage risk. Join a culture of ownership, innovation, and collaboration. Remote-friendly work culture with high-impact opportunities.

This position provides input, support, and performs full systems life cycle management activities (e-g-, analyses, technical requirements, design, coding, testing, implementation of systems and applications software, etc-)- He/She participates in component and data architecture design, technology planning, and testing for Applications Development (AD) initiatives to meet business requirements- This position provides input to applications development project plans and integrations- He/She collaborates with teams and supports emerging technologies to ensure effective communication and achievement of objectives- This position provides knowledge and support for applications development, integration, and maintenance- He/She provides input to department and project teams on decisions supporting projects- Responsibilities: Performs systems analysis and design- Designs and develops moderate to highly complex applications- Develops application documentation- Produces integration builds- Performs maintenance and support- Supports emerging technologies and products- Technology: Java, Couchbase/NoSQL, Spring Boot, Microservices/REST API,, Message Broker (AMQ, WMQ), JDBC, CI/CD Pipeline,Cloud Technologies, Application Security, Database, Linux and some shell scripting, Qualifications: Bachelor s Degree or International equivalent Bachelors Degree or International equivalent in Computer Science, Information Systems, Mathematics, Statistics, or related field - Preferred

We are seeking a highly skilled and motivated Senior Full Stack Developer with deep expertise in -NET (C#) to join our growing technology team- In this role, you will collaborate closely with other developers to design, develop, and maintain scalable, secure, and high-performance web applications- As a senior team member, you will play a key role in guiding the technical direction of product development efforts- This includes leading by example in adopting best practices, applying robust design patterns, and ensuring code quality, performance, and security across the stack- You should be proactive, self-driven, and comfortable working in a fast-paced, dynamic environment with cross-functional teams- A strong understanding of platform architecture and the surrounding service ecosystem is essential, as you ll help align technical solutions with broader business goals- Required Qualifications: Bachelor s degree in computer science, engineering, or a related technical field (or equivalent practical experience)- Minimum of 7 years of professional experience in software development using the -NET technology stack- At least 2 years of experience in a senior software engineering role- Strong hands-on experience with -NET, C#, ASP-NET, -NET Core, and ASP-NET Core- Proven expertise in building and maintaining web applications and RESTful services using Web API- Solid experience in Microsoft SQL Server, including database design and development- Proficient in modern front-end technologies such as JavaScript, HTML5, and CSS- Practical knowledge of object-oriented programming (OOP) principles and design patterns- Experience with ORM frameworks such as Entity Framework or Fluent NHibernate- Familiarity with CI/CD pipelines and tools like Bamboo or Jenkins for automated software delivery- Deep understanding of Test-Driven Development (TDD) and unit testing best practices- Working experience with Agile/Scrum methodologies- Understanding of application security principles and secure coding practices- Knowledge of AWS Cloud services and experience integrating cloud-based solutions is a plus- Strong communication skills and the ability to collaborate effectively across technical and non-technical teams- Key Responsibilities: Design and develop robust, scalable web applications and services using the Microsoft -NET technology stack- Collaborate with software architects to translate business requirements into efficient, maintainable technical solutions- Work closely with product managers, UI/UX designers, and QA engineers to deliver high-quality, end-to-end software solutions- Ensure high code quality through effective development practices, code reviews, and adherence to development standards- Implement and enforce application security best practices to ensure secure software delivery- Ensure web applications meet WCAG 2-1 Level AA accessibility standards- Participate in Agile development cycles, working closely with scrum teams and product owners to meet delivery goals- Coordinate with QA and DevOps teams to ensure compliance with the full software development lifecycle (SDLC)- Collaborate effectively with cross-functional teams, including those responsible for system and application integration- Contribute to the adoption and continuous improvement of CI/CD pipelines for reliable and efficient software deployments- Conduct code and security reviews to ensure software meets performance, quality, and compliance standards- Optimize application performance and ensure compatibility across different platforms and devices- Develop comprehensive unit tests to validate code functionality and ensure software reliability- Create and maintain clear, organized technical documentation, including specifications, workflows, and procedures- Troubleshoot and resolve complex software issues, identifying performance bottlenecks and implementing long-term fixes- Continuously assess and recommend improvements to platforms, products, and processes to enhance efficiency and value delivery- Preferred Qualifications: Experience with microservices architecture and containerization (Docker, Kubernetes)- Familiarity with authentication and authorization frameworks (OAuth2, JWT)- Background in DevOps practices and automated testing- Prior experience working with distributed or remote teams-

What Youll Do We are seeking a highly experienced Principal, Application Security Engineer to lead and evolve our global application security strategy. This role is critical to ensuring our products and platforms are built securely from the ground up and resilient to an evolving threat landscape. You will partner with engineering, product, DevOps, and Security teams to embed security into our SDLC, drive secure coding practices, and influence stakeholders and leaders across the organization. Responsibilities: Develop application security strategies across the global enterprise. Design and implement secure applications and consistently enhance the software development life cycle (SDLC) process. Conduct thorough security assessments, including static and dynamic application security testing (SAST/DAST), threat modeling, web/mobile application and API penetration testing, and application architecture design reviews. Partner with teams such as security operations, DevOps, development, networking, IT, and product teams to remediate issues and ensure a strong security posture. Contribute to the development and automation of security testing tools and processes. Manage third party penetration testing services. Deliver threat modeling training to development teams to consistently enhance product security and reduce risk. Assist with incident response (IR) activities that may relate to application security. What You May Need to be Successful: 7+ years of experience with some combination of application security engineering, threat modeling, penetration testing, web application/API development (.NET/C#, Java, JavaScript), system administration, networking, and information security. Proficiency with web application/API testing, static code analysis, and web application vulnerability scanners. Relevant industry certifications from organizations such as OffSec, SANS, or isc2. Previous technical security engineering role that involved mentorship or training. Effective communication skills and experience with presenting to a technical audience and executive leadership. Work Location: Mumbai/Bangalore (remote) Joining time needed: not exceeding 30 days

Principal Application Security Engineer-First Advantage (Mumbai/Bangalore) Bangalore, Karnataka, India Play Video Job Info Why First Advantage Apply What Youll Do We are seeking a highly experienced Principal, Application Security Engineer to lead and evolve our global application security strategy. This role is critical to ensuring our products and platforms are built securely from the ground up and resilient to an evolving threat landscape. You will partner with engineering, product, DevOps, and Security teams to embed security into our SDLC, drive secure coding practices, and influence stakeholders and leaders across the organization. Responsibilities: Develop application security strategies across the global enterprise. Design and implement secure applications and consistently enhance the software development life cycle (SDLC) process. Conduct thorough security assessments, including static and dynamic application security testing (SAST/DAST), threat modeling, web/mobile application and API penetration testing, and application architecture design reviews. Partner with teams such as security operations, DevOps, development, networking, IT, and product teams to remediate issues and ensure a strong security posture. Contribute to the development and automation of security testing tools and processes. Manage third party penetration testing services. Deliver threat modeling training to development teams to consistently enhance product security and reduce risk. Assist with incident response (IR) activities that may relate to application security. What You May Need to be Successful: 7+ years of experience with some combination of application security engineering, threat modeling, penetration testing, web application/API development (.NET/C#, Java, JavaScript), system administration, networking, and information security. Proficiency with web application/API testing, static code analysis, and web application vulnerability scanners. Relevant industry certifications from organizations such as OffSec, SANS, or isc2. Previous technical security engineering role that involved mentorship or training. Effective communication skills and experience with presenting to a technical audience and executive leadership. Work Location: Mumbai/Bangalore (remote) Joining time needed: not exceeding 30 days

Experience: 4 to 8 years Location: Mumbai ( onsite) Roles and Responsibilities: Maintain the firm s security, standards and guidelines Enforce policy and regulatory compliance. Ability to develop Policies, Standards and Guidelines from scratch as well as modify the existing ones. Defining and reviewing architecture review for new server /VLAN setup in an organisation Providing IT Security Risk advisories for business teams of the organisation Understanding of Infrastructure, Application security assessment and secure SDLC framework. Conduct and document Application and System risk assessments using the firms global standards and develop risk mitigation strategies. Work closely with the business and operations teams to identify risk in different processes and provide assistance in closure of the same. Understanding of OWASP, SANS, and NIST standards Contribution to Information Security strategy and raising security awareness across the organisation. Extensive knowledge on Firewall rule review process, role has the scope to expand further based on success and integration of the above core function. Understanding of Vulnerability Management process and conducting operational tasks related to this process Conducting and maintaining follow-ups on periodic basis with Business /Application teams Years of Experience: 3 to 5 years Must have key skills: Network architecture (Firewall Rules) / Moderate knowledge for Microsoft and RedHat Operating System / Cyber Security / Network Security #LinkedIn

Experience: 4 to 8 years Location: Mumbai ( onsite) Roles and Responsibilities: Maintain the firm s security, standards and guidelines Enforce policy and regulatory compliance. Ability to develop Policies, Standards and Guidelines from scratch as well as modify the existing ones. Defining and reviewing architecture review for new server /VLAN setup in an organisation Providing IT Security Risk advisories for business teams of the organisation Understanding of Infrastructure, Application security assessment and secure SDLC framework. Conduct and document Application and System risk assessments using the firms global standards and develop risk mitigation strategies. Work closely with the business and operations teams to identify risk in different processes and provide assistance in closure of the same. Understanding of OWASP, SANS, and NIST standards Contribution to Information Security strategy and raising security awareness across the organisation. Extensive knowledge on Firewall rule review process, role has the scope to expand further based on success and integration of the above core function. Understanding of Vulnerability Management process and conducting operational tasks related to this process Conducting and maintaining follow-ups on periodic basis with Business /Application teams Years of Experience: 3 to 5 years Must have key skills: Network architecture (Firewall Rules) / Moderate knowledge for Microsoft and RedHat Operating System / Cyber Security / Network Security #LinkedIn

Experience: 4 to 8 years Location: Mumbai ( onsite) Roles and Responsibilities: Maintain the firm s security, standards and guidelines Enforce policy and regulatory compliance. Ability to develop Policies, Standards and Guidelines from scratch as well as modify the existing ones. Defining and reviewing architecture review for new server /VLAN setup in an organisation Providing IT Security Risk advisories for business teams of the organisation Understanding of Infrastructure, Application security assessment and secure SDLC framework. Conduct and document Application and System risk assessments using the firms global standards and develop risk mitigation strategies. Work closely with the business and operations teams to identify risk in different processes and provide assistance in closure of the same. Understanding of OWASP, SANS, and NIST standards Contribution to Information Security strategy and raising security awareness across the organisation. Extensive knowledge on Firewall rule review process, role has the scope to expand further based on success and integration of the above core function. Understanding of Vulnerability Management process and conducting operational tasks related to this process Conducting and maintaining follow-ups on periodic basis with Business /Application teams Years of Experience: 3 to 5 years Must have key skills: Network architecture (Firewall Rules) / Moderate knowledge for Microsoft and RedHat Operating System / Cyber Security / Network Security #LinkedIn

The opportunity: We are advancing the world s energy system to become more sustainable, flexible and secure whilst balancing social, environmental and economic. Hitachi Energy has a proven record and unparalleled installed base in more than 140 countries. How you ll make an impact: Deep understanding of agile and lean product development methodologies. Work experience in power systems environment is a plus. Deep understanding of agile and lean product development methodologies. Work experience in power systems environment is a plus. Fair understanding of condition monitoring and asset management. Responsible to ensure compliance with applicable external and internal regulations, procedures, and guidelines. Living Hitachi Energy s core values of safety and integrity, which means taking responsibility for your own actions while caring for your colleagues and the business. Your background: Bachelor s / master s degree in engineering in Computer Science / Information technology / Electronics and communication / M. Sc. in Substation Automation with documented qualification in IT technologies and micro-service architectures. At least 10 years of software development experience. Should have experience in javascript frameworks including React JS. Should have experience in . NET core Web API and application design and development. Proficient in microservice-based application design and development using . NET Core, Kubernetes, PostgreSQL DB, Azure Service Bus or equivalent. Experience in developing secure cloud native application using Azure PaaS services such as Azure Function App, AKS, Service Bus, Key Vault etc. Experience in Agile/Scrum/SAFe Agile methodologies. Familiar with Azure DevOps for creating build and deployment pipelines. Knowledgeable in application security aspects such as secret management, cryptography, secure communication for HTTP and WebSocket. Other skills such as certificate management, data encryption, etc. Excellent problem-solving skills and ability to work independently and lead a team. Outstanding communication and collaboration skills. Proven and validated experience in micro-service architecture development for cloud. Qualified individuals with a disability may request a reasonable accommodation if you are unable or limited in your ability to use or access the Hitachi Energy career site as a result of your disability. You may request reasonable accommodations by completing a general inquiry form on our website. Please include your contact information and specific details about your required accommodation to support you during the job application process. .

Dear Candidate, We are hiring a Security Engineer to design and implement security measures that protect IT systems, data, and networks against threats and breaches. Key Responsibilities: Design and deploy security solutions such as firewalls, IDS/IPS, and endpoint protection. Conduct vulnerability assessments, penetration tests, and threat modeling. Monitor systems for security incidents and respond promptly. Ensure compliance with security standards (ISO 27001, NIST, etc.). Collaborate with DevOps and IT teams to embed security best practices. Required Skills & Qualifications: Proficiency in security tools (Nessus, Metasploit, Splunk, Wireshark). Strong understanding of network and application security. Knowledge of cloud security (AWS, Azure, GCP). Experience with encryption, IAM, and incident response. Security certifications preferred (CISSP, CEH, OSCP). Soft Skills: Strong troubleshooting and problem-solving skills. Ability to work independently and in a team. Excellent communication and documentation skills. Note: If interested, please share your updated resume and preferred time for a discussion. If shortlisted, our HR team will contact you. Srinivasa Reddy Kandi Delivery Manager Integra Technologies

We are looking for a highly skilled and experienced professional to join our team as an Anti-virus and Patching specialist in Mumbai, Pune, Kolkata, Chennai, and Noida-India. The ideal candidate will have 1 to 8 years of experience in the field. Roles and Responsibility Manage and implement anti-virus and patching solutions to ensure system security and integrity. Conduct regular vulnerability assessments and penetration testing to identify potential threats. Develop and maintain documentation of anti-virus and patching procedures and protocols. Collaborate with cross-functional teams to ensure compliance with security standards and regulations. Provide technical support and training to end-users on anti-virus and patching best practices. Stay up-to-date with emerging trends and technologies in anti-virus and patching. Job Requirements Graduation degree required. At least 1 year of experience in desktop L1 support or related field. Strong knowledge of anti-virus and patching principles and technologies. Excellent problem-solving and analytical skills. Ability to work effectively in a fast-paced environment and prioritize tasks. Strong communication and interpersonal skills. Experience with CRM/IT Enabled Services/BPO industry is preferred. Location : - Mumbai, Pune, Kolkata, Chennai, Noida