36 Black Duck Jobs

As a DevOps Specialist at our company based in Kochi, you will play a crucial role in ensuring the smooth functioning of our systems. With over 5 years of experience, you will be responsible for proactive performance and security measures to maintain our systems" efficiency akin to a well-oiled CI/CD pipeline. Your daily tasks will include conducting system health checks, monitoring logs, tracking incidents, and providing support for CI/CD pipelines (Jenkins, GitLab), containers (Docker, K8s), and cloud platforms (AWS/Azure). You will be utilizing tools like Prometheus, Grafana, and AppDynamics to ensure visibility and collaborating on change/problem management and process enhancement. Additionally, you will be expected to maintain clear documentation and effectively communicate with stakeholders. To excel in this role, you should have hands-on experience with Linux, ELK Stack, ServiceNow, and security tools such as SonarQube, Black Duck, and OWASP. Strong communication skills, excellent troubleshooting abilities, and familiarity with Life Sciences, SCRUM, or ITIL methodologies are highly valued. If you are a proactive problem solver who thrives in a fast-paced environment and possesses the required technical skills and knowledge, we encourage you to apply. Connect with us by sending your resume to m.neethu@ssconsult.in or reach out for more details. Join us in this exciting opportunity to contribute to our dynamic team and make a meaningful impact in the world of DevOps. #DevOpsJobs #KochiJobs #HiringNow #CI/CD #Docker #Kubernetes #AWS #Azure #TechCareers #DevOpsSpecialist,

Job Description: Expereince Required: 10 to 15 years Essential Duties and Responsibilities: As a senior member of the DevOps team, you will lead initiatives that elevate developer experience, streamline automation, and ensure robust, scalable delivery pipelines. You'll collaborate with the development teams to improve the delivery experience by designingand maintaining fully automated modern CI/CD workflows. Your expertise in scripting (PowerShell/CLI), Docker, Kubernetes and GitOps toolingwill be key to building resilient, observable systems that empower developers and accelerate product delivery while maintaining high security standards and foster cost efficiency. CI/CD & Automation Design, implement, and maintain robust CI/CD pipelines using Azure DevOps and in the future with GitHub Actions Optimize build and test processes for performance and reliability. Develop and manage YAML-based declarative pipelines . Configure and maintain self-hosted agents for custom build environments. Automate tasks and workflows using PowerShell scripting. Infrastructure & Cloud Implement and manage Infrastructure as Code (IaC) using Terraform to provision and maintain Azure resources. Ensure scalable, secure, and cost-effective cloud infrastructure deployments. Containerization & Orchestration Build and manage containerized applications using Docker . Deploy and orchestrate workloads on Azure Kubernetes Service (AKS) . Manage Kubernetes packages using Helm charts. GitOps Implement GitOps workflows using Flux for automated, declarative deployments. Source Control & Package Management Apply best practices in Git workflows, including trunk-based development . Manage .NET dependencies using NuGet . Security & Quality Integrate tools like SonarQube , Black Duck , and CheckMarx into CI/CD pipelines for code quality, security, and license compliance. Monitoring & Observability Set up and maintain monitoring solutions using Azure Application Insights and Datadog . Implement cloud cost management strategies to monitor and optimize Azure spend. Experience with Istio or Ambient Service Mesh is a strong plus. Operating Systems Administer and troubleshoot Linux-based environments for servers and containers. Debugging & Troubleshooting Diagnose and resolve issues across CI/CD pipelines, infrastructure, and containerized environments. Use monitoring tools like Azure Application Insights and Datadog to identify performance bottlenecks and system failures. Troubleshoot Linux-based server and container environments. Collaborate with developers and QA to debug build failures, deployment errors, and runtime anomalies.

Role & responsibilities Description: Job Title: FOSS Compliance Analyst Location: Bangalore Experience: 5+ Years We are seeking a detail-oriented and experienced FOSS Compliance Analyst to manage open source software audits across our product portfolio. The ideal candidate will have hands-on experience with SCA tools and a strong understanding of open source licensing, compliance, and risk mitigation. ________________________________________ Key Responsibilities • Conduct thorough audits of software codebases to identify open source components and associated licenses. • Identify all categories of software components Proprietary, Third party, Open Source Software. Use and manage SCA tool to streamline FOSS analysis. • Collaborate with engineering teams to ensure compliance with open source license obligations. • Maintain and update the organizations open source policy and compliance processes. • Review Software Bill of Materials (SBOMs) for internal and external stakeholders. • Provide training and guidance to development teams on FOSS usage best practices. • Programming experience in web technologies like CSS, Python, Java understanding of open source databases, software integration methods. • Stay current with evolving open source licensing trends and regulatory requirements. ________________________________________ Required Qualifications • Minimum 5 years of experience in FOSS auditing and compliance. • Proficiency with one or more SCA tools (e.g., Black Duck, WhiteSource, FOSSA, Snyk, FOSSID). • Strong understanding of open source licenses (GPL, MIT, Apache, BSD, etc.). • Experience working with SBOMs and license documentation. • Understanding of Open Source Software principles and communities. • Excellent communication and documentation skills. • Ability to work independently and cross-functionally in a fast-paced environment. • IT Skills: MS office tools (Word, Excel, PowerPoint). • Language Skills: Proficient in English language. ________________________________________ Preferred Qualifications • Experience with CI/CD pipelines and integrating SCA tools. • Familiarity with legal aspects of software distribution and IP. • Knowledge of Inner-Source, Open-Source and Contributions are plus. ________________________________________ Why Join Us? • Work on cutting-edge compliance initiatives in a tech-forward environment. • Be part of a team that values transparency, innovation, and continuous learning. • Competitive compensation, flexible work options, and growth opportunities. Preferred candidate profile

This is a senior level development position responsible for establishing and implementing new or revised application systems and programs in coordination with the Technology Team. The overall objective of this role is to building robust, high-performance, large-scale applications. Hands-on experience in Web technologies (HTML, CSS, React JS), REST-APIs, and Backend using Java/J2EE technologies. Big Data / Data Lake system architecture is a plus Experience with Agile software development processes with a strong emphasis on test driven development Strong knowledge of CI/CD pipelines and experience in tools such as JIRA, BlackDuck, SONAR etc. Ability to evaluate design trade-offs and document choices effectively Demonstrated capacity to build sophisticated tooling for development and production team use Has the ability to operate with a limited level of direct supervision.

Position Purpose The purpose of the position is to help with the information security topics mentioned in the direct responsibilities. Responsibilities Direct Responsibilities - Executing IT risk assessment reviews, identifying controls gaps and working in collaboration with subject matter experts to devise appropriate mitigation plans. Identifying key risk trends, issues and other insights requiring further investigation and following up with Technology as appropriate. Knowledge of Secure Development methodologies and frameworks. Hands-on experience in penetration testing and tools like AppScan, Webinspect, Fortify, AppSpider, BurpSuite, Qualys, Checkmarx, Coverity Well-versed in conducting Security Review, Assessments and providing recommendations. Knowledge of OWASP, SANS standards. Experience in Process Improvement, Controls Enhancement and Reporting. - Engaging with organization wide risk and control groups, including internal audit and territory control teams. - Working with Technology stakeholders (including Production Support and Development teams) to identify the IT risks affecting the organization and formulating appropriate remediation strategies based on full understanding of business exposure and compensating controls. Contributing Responsibilities Excellent understanding of development security and its implementation in systems: identification, authentication, access control and provisioning, alignment of jurisdiction to business process Knowledge of single-sign-on security strategies (e.g. SAML, OAUTH2, SiteMinder etc.) Excellent understanding of authentication related mechanisms (Kerberos, One Time Passwords, PKI) Good understanding of cryptography and its practical uses within secure application development Familiarity with common security vulnerabilities (e.g. OWASP Top 10) Strong technical skills required to understand vulnerabilities in detail and how to resolve/mitigate them. Excellent knowledge of programming best practices, design patterns, etc. Excellent problem solving skills, being able to develop approaches to complex technology and strategy problems, building consensus across diverse interest groups and working within constraints of practical delivery yet able to think beyond the requirements of immediate issues. Well-developed written communication skills with the ability to summarise key issues, conclusions and recommendations in report form. Target audiences will include regulatory authorities and internal/external auditors. Technical & Behavioral Competencies Excellent knowledge of programming best practices, design patterns, etc. Excellent problem solving skills, being able to develop approaches to complex technology and strategy problems, building consensus across diverse interest groups and working within constraints of practical delivery yet able to think beyond the requirements of immediate issues. Well-developed written communication skills with the ability to summarize key issues, conclusions and recommendations in report form. Target audiences will include regulatory authorities and internal/external auditors. Hands-on experience in penetration testing and tools like AppScan, Webinspect, Fortify, AppSpider, BurpSuite, Qualys, Checkmarx, Coverity, Sonatype, Blackduck Well-versed in conducting Security Review, Assessments and providing recommendations. Knowledge of OWASP, SANS standards. Experience in Process Improvement, Controls Enhancement and Reporting. Excellent Inter personal and presentation skills Strong in verbal and written communication Ability to liaise with cross-functional stakeholders globally Clear understanding of application and data security Must be flexible, independent, self-motivated Good analytical skills Specific Qualifications (if required) - CEH, SSCP, OSCP certified. - Technical Graduate (Computer Science) Preferable. Skills Referential Behavioural Skills : (Please select up to 4 skills) Ability to collaborate / Teamwork Communication skills - oral & written Ability to share / pass on knowledge Active listening Transversal Skills: (Please select up to 5 skills) Ability to understand, explain and support change Analytical Ability Ability to develop and adapt a process Ability to develop and leverage networks Ability to manage / facilitate a meeting, seminar, committee, training Education Level: Bachelor Degree or equivalent

Role Description Ensure license compliance in software products Enhance software license compliance and reporting for open source and 3rd party software Maintain and publish a software bill of materials for all product lines per software release Publish and maintain the open source software used required by license Survey and recommend license and security compliance tools Improve software development processes for compliance best practices Educate the development community regarding software compliance practices to improve awareness Automate software and security compliance and inventory reports Automate open-source software inventory and OSS vulnerability analysis report Identify and remediate security vulnerabilities based on OSS software packages to improve the security posture of the products and services Document processes and procedures Collaborate with the legal team to provide answers to customer or partner inquiries Interface with tools vendors and their support teams when issues arise Mentor and grow junior staff members Technical Skills Experience with License and OSS compliance reporting and publishing Familiar or experience with OpenChain standard and implementation Direct experience using a Software Composition Analysis (SCA) tools such as Blackduck or equivalent Experience with Linux, binary images, packages, containers, and source code repositories such as git Ability to read programming languages such as C/C++, Java, Python, Go Ability to automate license compliance reporting and integrate into CI/CD process. Work independently, drive improvements, meet schedules, impart good judgement, and exhibit strong writing skills Attention to detail and high-quality output Nice-to-have skills Qualifications BS Computer Science or Engineering + 10 years of experience MS Computer Science or Engineering + 8 years of experience

Skills Set: Must have Application Security(SAST,DAST,SCA), Container security, Infrstracture Security, DevSecOps, (Nexus Artifactory, Jfrog, Helm, SONAR Qube, Blackduck)-Any 2 tools Must have 6+ years of experience in Information Security domain Must have hands on experience on Triaging vulnerabilities of Prisma Cloud Twistlock 2+ years Must have hands on experience on vulnerability management & governance tool 2+ years OR Must have working experience in Vulnerability Management 5+ years OR experience working on DevSecOps (including tools) 3+ years Must be able to lead a team of 10+ members to oversee their work and deliverables Should have Clear understanding of Cloud Workload Protection Platform (CWPP) 2+ Should have Clear Understanding of GCP and AWS cloud 2+ years Should have understanding of VM process, false positive, accept risk, explaining findings to the Business Unit

You are a skilled CyberSecurity Business Analyst specializing in IAM & Secrets Management, sought to join a dynamic cybersecurity team. Your primary responsibility will be managing and enhancing Identity & Access Management (IAM) controls with a major focus on Secrets Management, access governance, and compliance reporting within a highly regulated environment. Your key responsibilities will include defining and enhancing secrets management controls across machine-to-machine authentication systems, supporting IAM operations by maintaining access governance for credentials, keys, and tokens, and providing subject matter expertise on secrets and credential management tools and best practices. Additionally, you will collaborate with IAM Control Owners to define and track KPIs/KCIs/KRIs, maintain dashboards, and generate periodic reporting for Cybersecurity leadership and stakeholders. You will evaluate IAM controls against regulatory frameworks such as GDPR, SOX, PCI DSS, ISO 27001, identify cybersecurity exposure risks, support remediation planning, and implement strong governance processes for continuous compliance and risk reduction. Stakeholder management will be a crucial aspect of your role as you collaborate with business units, IT, cybersecurity, and operations teams across global regions. You will provide support during audits and external reviews and lead cross-functional teams to define IAM standards, policies, and procedures. Continuous improvement and documentation are key, where you will recommend enhancements for IAM and Secrets Management efficiency, security, and scalability, and prepare and maintain project artifacts like project charters, plans, dashboards, reports, and closure documents. To excel in this role, you must possess 5-7 years of experience in Cybersecurity, IAM, or Access Governance roles, a strong knowledge of IAM controls, credential governance, and secrets management frameworks. Hands-on experience with Application Security tools such as MicroFocus Fortify (SAST/DAST), Checkmarx, Black Duck/Sonatype IQ, Veracode, and Synopsys is essential. You should have a strong understanding of risk management and compliance metrics (KPIs, KRIs, KCIs), familiarity with project management and governance frameworks, excellent communication and presentation skills, and preferably hold certifications such as CISSP, CISM, or other IAM-related credentials. Mandatory skills include proficiency in Application Security tools like MicroFocus Fortify (SCA, SAST, DAST), Open Source Tools (Black Duck, Sonatype IQ), Veracode, Synopsys, Checkmarx, IAM Governance, KPIs/KCIs, Risk Management, and awareness of Regulatory Frameworks such as SOX, ISO 27001, PCI DSS, and GDPR.,

Lead, develop and maintain the CI/CD (ContinuousIntegration/ContinuousDelivery) pipeline for system and application software associated with embedded devices, enabling rapid and reliable delivery of shippable software packages. Collaborate with engineers to understand their requirements and provide guidance on integrating automation and best practices into their workflows. Design, implement, and maintain infrastructure and tooling to support the development environments, including the build systems, code signing, and release management. Monitor and improve the performance, reliability, and security through proactive monitoring, performance testing, and optimization. Drive the adoption of best practices for software development, including code quality, testing, and code review processes. Stay updated with the latest trends, tools, and technologies in software engineering and DevSecOps practices and evaluate their suitability for the organization. Collaborate with cross-functional teams, including developers, quality assurance, product management, and infrastructure teams, to achieve common goals and deliver high-quality software. What you need: Required Qualifications: Bachelors or Masters degree in Software Engineering/ Computer Science or related discipline & 4+ years of work experience as a DevSecOps Engineer Experience in Python, C/C++, Shell scripting, tools like Make, CMake, MSBuild, GitLab, GitHub, Bitbucket, Black Duck, SonarCloud, Jama, Ansible, Puppet, or Chef. Experience with consuming REST APIs. Knowledge of containerization technologies such as Docker and container orchestration platforms like Kubernetes. Familiarity with Agile methodologies and experience working in an Agile/Scrum environment. Preferred Qualifications: Familiar with security aspects such as Certificate management, Managing and Storing secrets securely, Code Signing, Package signing, etc. Familiarity with Operating system hardening techniques. Knowledge of Build environments such as Windows, Yocto, etc.

When you join Verizon You want more out of a career A place to share your ideas freely ? even if theyre daring or different Where the true you can learn, grow, and thrive At Verizon, we power and empower how people live, work and play by connecting them to what brings them joy We do what we love ? driving innovation, creativity, and impact in the world Our V Team is a community of people who anticipate, lead, and believe that listening is where learning begins In crisis and in celebration, we come together ? lifting our communities and building trust in how we show up, everywhere & always Want inJoin the #VTeamLife, What youll be doing,, The work you'll be doing is to support mission and business-critical applications within Verizon connect Digital projects You will be enhancing the customer experience and building a world class solutions Under the mentorship of a technical lead who would be supporting you on delivery, you will also work as a team member on various projects and mentor junior resources You will help develop, implement and maintain this important application, Designing, developing and maintaining customer portal application and databases by evaluating client needs, analyzing requirements and developing software systems, Testing and coordinating all user interfaces changes of Responsive Web Design, Executing full software development life cycle (SDLC) concept, design, build, deploy, test, release and support, Ensuring application development sprint cycle is on track and adjusting the plan to meet release timelines, Acting independently, at the same time displaying excellent collaboration within and between various teams, Understanding the domain knowledge and adapting to an agile environment, Building reusable code and libraries for future use in front end and back end technologies, Mentoring junior developers in the team and leading them to deliver on projects, What were looking for,, Youll Need To Have Bachelor's degree or four or more years of work experience, Three or more years of relevant experience required, demonstrated through work experience and/or military experience, Experience on Frontend/Web technologies, micro-services, backend services & database skills(React JS, Spring boot microservices) Knowledge of SDLC and Agile Development, Knowledge of cloud-native application development, Effective code review, quality, performance tuning experience, Even better if you have one or more of the following: Experience with a high-performance, high-availability environment, Strong analytical, debugging skills, Good communication and presentation skills, Relevant certifications, Experience with UI framework(React JS), Experience with backend framework(Spring boot microservices), Experience with OWASP rules and mitigate security vulnerabilities using security tools like Fortify, Sonarcube, Blackduck etc Experience with Unit testing framework like JUnit, Mokito, Experience monitoring tools like NewRelic, Ability to understand Agile and DevOps tools and technologies, Strong problem solving and debugging skills, AI/GenAI skills Cloud Technologies If Verizon and this role sound like a fit for you, we encourage you to apply even if you dont meet every ?even better? qualification listed above, Why Verizon Verizon is committed to maintaining a Total Rewards package which is competitive, valued by our employees, and differentiates us as an Employer of Choice, We are a ?pay for performancecompany and your contribution is rewarded through competitive salaries, performance-based incentives and an employee Stock Program We create an opportunity for us all to share in the success of Verizon and the value we help to create through this broad-based discretionary equity award program, Your benefits are market competitive and delivered by some of the best providers, You are provided with a full spectrum of health and wellbeing resources, including a first in-class Employee Assistance Program, to empower you to make positive health decisions, We offer generous paid time off benefits to help you manage your work life balance and opportunities for flexible working arrangements*, Verizon provides training and development for all levels, to help you enhance your skills and develop your career, from funding towards education assistance, award-winning training, online development tools and access to industry research, You will be able to take part in volunteering opportunities as part of our environmental, community and sustainability commitment, Where youll be working In this hybrid role, you'll have a defined work location that includes work from home and assigned office days set by your manager, Scheduled Weekly Hours 40 Equal Employment Opportunity Verizon is an equal opportunity employer We evaluate qualified applicants without regard to race, gender, disability or any other legally protected characteristics, Show

Looking for a AWS devops Engineer with all skills are mandatory AWS YAML Powershell (varacode or blackduck)

You are a skilled DevOps Specialist with over 3 years of experience, seeking to join a global automotive team with locations in Kochi, Pune, and Chennai. Your primary role will involve managing operations, system monitoring, troubleshooting, and supporting automation workflows to ensure the operational stability and excellence of enterprise IT projects. You will play a crucial part in overseeing critical application environments for leading companies in the automotive industry. Your responsibilities will include performing daily maintenance tasks to ensure application availability and system performance through proactive incident tracking, log analysis, and resource monitoring. Additionally, you will be expected to monitor and respond to tickets raised by the DevOps team or end-users, support users with troubleshooting, maintain detailed incident logs, track SLAs, and prepare root cause analysis reports. You will also assist in scheduled changes, releases, and maintenance activities while identifying and tracking recurring issues. Furthermore, you will be responsible for maintaining process documentation, runbooks, and knowledge base articles, providing regular updates to stakeholders on incidents and resolutions. You will also manage and troubleshoot CI/CD tools such as Jenkins, GitLab, container platforms like Docker and Kubernetes, and cloud services including AWS and Azure. To excel in this role, you should have proficiency in logfile analysis and troubleshooting (ELK Stack), Linux administration, and monitoring tools such as AppDynamics, Checkmk, Prometheus, and Grafana. Experience with security tools like Black Duck, SonarQube, Dependabot, and OWASP is essential. Hands-on experience with Docker, familiarity with DevOps principles, and ticketing tools like ServiceNow are also required. Experience in handling confidential data and safety-sensitive systems, along with strong analytical, communication, and organizational skills, will be beneficial. Additionally, you should possess the ability to work effectively in a team environment. Optional qualifications include experience in the automotive or manufacturing industry, particularly with production management systems, and familiarity with IT process frameworks like SCRUM and ITIL. In summary, as a DevOps Specialist, you will play a vital role in ensuring the operational stability and excellence of enterprise IT projects for leading companies in the automotive industry by managing operations, system monitoring, troubleshooting, and supporting automation workflows. Your expertise in tools and technologies such as ELK Stack, Docker, Jenkins, AWS, and Azure, along with your strong analytical and communication skills, will be instrumental in your success in this role.,

Role Description Ensure license compliance in software products Enhance software license compliance and reporting for open source and 3rd party software Maintain and publish a software bill of materials for all product lines per software release Publish and maintain the open source software used required by license Survey and recommend license and security compliance tools Improve software development processes for compliance best practices Educate the development community regarding software compliance practices to improve awareness Automate software and security compliance and inventory reports Automate open-source software inventory and OSS vulnerability analysis report Identify and remediate security vulnerabilities based on OSS software packages to improve the security posture of the products and services Document processes and procedures Collaborate with the legal team to provide answers to customer or partner inquiries Interface with tools vendors and their support teams when issues arise Mentor and grow junior staff members Technical Skills Experience with License and OSS compliance reporting and publishing Familiar or experience with OpenChain standard and implementation Direct experience using a Software Composition Analysis (SCA) tools such as Blackduck or equivalent Experience with Linux, binary images, packages, containers, and source code repositories such as git Ability to read programming languages such as C/C++, Java, Python, Go Ability to automate license compliance reporting and integrate into CI/CD process. Work independently, drive improvements, meet schedules, impart good judgement, and exhibit strong writing skills Attention to detail and high-quality output Nice-to-have skills Qualifications BS Computer Science or Engineering + 10 years of experience MS Computer Science or Engineering + 8 years of experience

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : DevSecOps Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :To play a key role in enabling successful project delivery across multiple projects. This role expects you to specialize in a range of security domains, including penetration testing, dynamic and static application security testing, software composition analysis, security architecture review and container security. Additionally, you provide comprehensive support in vulnerability management, service monitoring, and DevSecOps practices. Roles & Responsibilities:-Should have hands-on experience and knowledge of manual and automated penetration testing on the web, mobile and cloud-based applications.-Should have hands-on experience and knowledge of DAST (Dynamic Application Security Testing) to identify runtime vulnerabilities in staging and production environments.-Should have hands-on experience and knowledge of SAST (Static Application Security Testing) for early-stage source code and binary analysis.-Should have hands-on experience and knowledge of SCA (Software Composition Analysis) to detect open-source risks and license compliance issues.-Should have hands-on experience and knowledge of executing SAR (Security Architecture Review) of complex and cloud-based application and should be able to strategize risk remediation with the stakeholders or Security Architect.-Should have hands-on experience and knowledge of integrating security tools into CI/CD pipelines (e.g., Jenkins, GitHub Actions, GitLab CI).-Should have hands-on experience and knowledge of enforcing policy-as-code, shift-left security testing, and secure code delivery practices and automate security checks for container images and Kubernetes workloads.-Should be able to scan and harden docker containers using industry-standard tools.-Should be able to monitor vulnerabilities in container registries and orchestrators (e.g., Kubernetes, ECS).-Skilled in communicating security findings to technical and non-technical stakeholders.-Contribute to secure architecture reviews, risk assessments, and compliance initiatives.-Should be able to manage clients and various stakeholders.Should be a good people manager and should have experience of people and project management. Professional & Technical Skills: Tools & Technologies:Pentest Tools:Burp Suite Pro, OWASP ZAP, Nmap, Postman, Kali Linux,DAST/SAST/SCA:Fortify, Checkmarx, Veracode, Coverity, AppScan, Black Duck, Snyk,DevSecOps:GitHub Actions, Jenkins, GitLab, Docker, Kubernetes,VM Tools:Qualys, Tenable, ThreadFix,Monitoring:ServiceNow, Jira, Confluence-Should be able to collaborate with infrastructure and DevOps teams to secure cloud-native deployments.-Should be able to identify, triage, and manage vulnerabilities using centralized platforms (e.g., ThreadFix).-Should track vulnerability lifecycle from detection through remediation and reporting.-Should support real-time service monitoring to maintain system integrity and threat detection coverage. Additional Information:- The candidate should have minimum 7.5 years of experience in DevSecOps.- This position is based at our Gurugram office.- A 15 years full time education is required. Qualification 15 years full time education

Dear Candidate, We are seeking a skilled DevOps Engineer to join our team. The ideal candidate will be responsible for streamlining the software development and deployment process, automating workflows, and ensuring that our systems are scalable, secure, and reliable. You will collaborate closely with development, operations, and product teams to build and maintain infrastructure and ensure continuous integration and delivery. Role & Responsibilities: Automation & Scripting : Design and implement automated systems for deployment, monitoring, and infrastructure management using tools like Terraform , Ansible , or Chef . Continuous Integration/Continuous Deployment (CI/CD) : Develop and manage CI/CD pipelines using tools like Jenkins , GitLab CI , or CircleCI to enable rapid and reliable software deployment. Infrastructure Management : Manage and maintain cloud infrastructure (AWS, GCP, Azure) and on-premise systems, ensuring high availability, scalability, and security. System Monitoring & Performance : Monitor system performance, including application uptime, server health, and resource utilization. Use monitoring tools like Prometheus , Grafana , or Datadog to ensure smooth operation. Collaboration with Development Teams : Work closely with development teams to ensure the continuous delivery of high-quality software and streamline the development process. Security & Compliance : Implement and maintain security practices such as automated patch management, vulnerability scanning, and encryption to safeguard infrastructure. Version Control & Repository Management : Utilize version control systems like Git and repository management tools like GitHub or Bitbucket for code collaboration and management. Required Skills & Qualifications: DevOps Tools & Technologies : Strong experience with DevOps tools such as Jenkins , Docker , Kubernetes , Terraform , Ansible , Chef , and Puppet . Cloud Platforms : Extensive experience with cloud services like AWS , GCP , or Azure to build, manage, and scale infrastructure. Automation & Scripting : Proficiency in scripting languages like Python , Bash , or Ruby to automate repetitive tasks and streamline workflows. Containerization & Orchestration : Hands-on experience with Docker , Kubernetes , or other container orchestration tools for building and managing containers. CI/CD Practices : Expertise in setting up and maintaining CI/CD pipelines to automate the build, testing, and deployment processes. Infrastructure as Code (IaC) : Experience with Terraform or CloudFormation to manage infrastructure resources as code. Version Control : Proficiency in version control systems, specifically Git , for managing codebases and collaborating with teams. Monitoring & Logging : Familiarity with monitoring tools like Prometheus , Grafana , Datadog , or New Relic to ensure system health and performance. Soft Skills: Strong problem-solving and analytical skills. Excellent communication skills to work with cross-functional teams. Ability to work independently and as part of a team. Detail-oriented with a focus on delivering high-quality solutions Note: If you are interested, please share your updated resume and suggest the best number & time to connect with you. If your resume is shortlisted, one of the HR from my team will contact you as soon as possible. Srinivasa Reddy Kandi Delivery Manager Integra Technologies

You are a skilled DevOps Specialist with over 3 years of experience, sought to join a global automotive team in Kochi, Pune, or Chennai. Your primary responsibilities include managing operations, system monitoring, troubleshooting, and supporting automation workflows to ensure operational stability and excellence for enterprise IT projects within the automotive industry. Your daily tasks will involve proactive incident tracking, log analysis, and resource monitoring to maintain application availability and system performance. You will also be responsible for responding to tickets raised by the DevOps team or end-users, troubleshooting issues, and maintaining detailed incident logs and SLAs. Additionally, you will assist in scheduled changes, releases, and maintenance activities, while documenting processes, runbooks, and knowledge base articles. To excel in this role, you must have proficiency in logfile analysis, Linux administration, and monitoring tools such as AppDynamics, Checkmk, Prometheus, and Grafana. Experience with security tools like Black Duck, SonarQube, and OWASP is required, along with hands-on experience in Docker. Familiarity with CI/CD tools (Jenkins, GitLab), container platforms (Docker, Kubernetes), and cloud services (AWS, Azure) is essential. Your communication, analytical, and organizational skills will be crucial in providing regular updates to stakeholders, preparing root cause analysis reports, and effectively collaborating with the team. Experience in handling confidential data and safety-sensitive systems is necessary, along with the ability to work in a team environment. Optional experience in the automotive or manufacturing industry, particularly production management systems, and familiarity with IT process frameworks like SCRUM and ITIL will be advantageous.,

Job Role : DevOps Engineer Year Of Experience- 2–3 Years Location: Ghansoli Education: BE/ B.Tech Overview : Looking for a motivated and skilled DevSecOps Engineer with 2–3 years of hands-on experience in implementing DevSecOps practices, CI/CD pipelines, and integrating security into the development lifecycle. The ideal candidate will have working knowledge of Kubernetes (K8S), cloud platforms like GKE and AKS, and build/deployment automation tools including Azure DevOps and Jenkins. Experience with security scanning tools (SAST, DAST, Fortify, SonarQube) and scripting knowledge in Groovy, ANT, and JavaScript is essential. Job Role: • Design, implement, and maintain secure and scalable CI/CD pipelines. • Integrate security tools and processes into DevOps workflows (DevSecOps). • Automate infrastructure and deployments using Azure DevOps and Jenkins. • Deployment using On-Premises K8S clusters and Manage Kubernetes clusters - GKE and AKS. • Deployment using Windows based servers - IIS • Implement and maintain Static and Dynamic Application Security Testing (SAST/DAST) tools. • Integrate and configure Fortify, SonarQube, and other security tools into pipelines. • Write and maintain automation scripts using Groovy, ANT, and JavaScript. • Collaborate with development, QA, and security teams to ensure secure software delivery. • Conduct security assessments and remediations as part of the SDLC. Required Skills & Qualifications : • Bachelor degree in Engineering or Equivalent. • 2–3 years of hands-on experience in DevSecOps / DevOps. • Strong knowledge and hands-on experience with: - Azure DevOps Pipelines and Jenkins for CI/CD. - Security tools: Fortify, SonarQube, Blackduck, DAST/SAST tools (e.g., OWASP ZAP, Burp Suite, etc.). - Kubernetes (K8s) – with GKE and AKS. • Proficiency in scripting languages such as Groovy, ANT, and JavaScript. • Basic programming / scripting capabilities to automate security checks & workflows. • Understanding of application security principles and best practices. • Experience working in Agile and collaborative team environments. • Excellent troubleshooting, documentation, and communication skills.

Dear Candidate, We are hiring a Compliance Engineer to ensure code and dependencies meet licensing and audit standards. Key Responsibilities: Track open-source usage and license compliance. Automate compliance scanning and reporting. Assist in security reviews and audits. Required Skills & Qualifications: Familiarity with tools like FOSSA, Black Duck. Knowledge of OSS licenses (MIT, GPL, Apache). Experience with code scanning and SBOMs. Note: If interested, please share your updated resume and preferred time for a discussion. If shortlisted, our HR team will contact you. Kandi Srinivasa Delivery Manager Integra Technologies

We seek a highly skilled and motivated Test Architect in the core domain to join our dynamic global team. You will be a key member of our Core Solutions team, This role will be critical in providing advanced expertise in IPv4/IPv6, firewalls, cloud core technologies, and Software Test experience in Telco grade products. You Have: Any Bachelor's degree or Master's degree, or equivalent degree, with 10+ years of relevant Software Test experience in Telco-grade products 7+years of System test experience in Functional and serviceability areas with high-traffic, large-scale distributed systems, and client-server architectures Good experience in verification ofCloud Native, Microservices applications, using Containers and Virtualization Technologies like Docker, Kubernetes (K8s), Consul, Redis, gRPC, Helm, Envoy, and Open Source Integration. Good experience in security testing of a product and knowledge of various security scans like Black Duck Hub, Tenable, Codenomicon/Defensics, Malware, Anchore, NMAP, Nessus, etc. Good working experience in IMS, VoLTE, 4G/5G core technologies. In-depth and working experience with cloud-ready, cloud-native, microservices, and containers architecture, DevOps, CI/CD. It would be nice if you also had: Prior experience in interfacing with customers & customer teams is an added advantage. Should have worked on the toolsets like Jira, Jenkins, or Bamboo. Able to bring in innovative practices for chaotic programmable tests like Chaos Monkey, Janitor Monkey etc. Own and drive CNCS Functional testing across multiple core network NFs like SBC, TAS, CSCF, and MRF. Own and drive CNCS security testing and execute various security scans, and analyze the scan reports. Identify security vulnerabilities in the product. Validate security-related enhancements. Overall, Responsible for driving the Test strategy and planning for CNCS releases, Test effectiveness and Improvements for the CNCS product in functional/non-functional areas, and accountable for fault escapes. Understand new feature enhancements in SBC, NTAS, CSCF, MRF, etc. NFs and plan testing of critical features therein within CNCS. Analyse critical customer issues, help identify solutions, and ensure similar issues dont escape internal testing. Work effectively in a mixed environment and use best practices and knowledge of internal or external business issues to improve products or services. Plan technical requirements from customers needs. Apply and maintain quality standards. Participate in process and tool evolutions and identify improvements therein. Mentor junior team members and help them realize their full potential.

We seek a highly skilled and motivated Test Lead in the core domain to join our dynamic global team. You will be a key member of our Core Solutions team, This role will be critical in providing advanced expertise in IPv4/IPv6, firewalls, cloud core technologies, and Software Test experience in Telco grade products. You Have: Any Bachelor's degree or Master's degree, or equivalent degree, with 6+ years of relevant Software Test experience in Telco grade products. System test experience in Functional and serviceability areas with high-traffic, large-scale distributed systems and client-server architectures. Good experience in verification ofCloud Native, Microservices applications, using Containers and Virtualization Technologies like Docker, Kubernetes (K8s), Consul, Redis, gRPC, Helm, Envoy, and Open Source Integration. Experience with security testing of a product and knowledge of various security scans like Black Duck Hub, Tenable, Codenomicon/Defensics, Malware, Anchore, NMAP, Nessus etc is an added advantage. Good working experience in IMS, VoLTE, 4G/5G core technologies. Working experience with cloud-ready, cloud-native, micro services and containers architecture, DevOps, CI/CD. It would be nice if you also had: Prior experience in interfacing with customers & customer teams is an added advantage. Should have worked on the toolsets like Jira, Jenkins, or Bamboo. Able to bring in innovative practices for chaotic programmable tests like Chaos Monkey, Janitor Monkey, etc. Contribute to CNCS Functional testing across multiple core network NFs like SBC, TAS, CSCF, and MRF. Contribute to CNCS security testing and execute various security scans, and analyze the scan reports. Validate security related enhancements. Own end-to-end CNCS functional features and deliver with quality. Overall, Responsible for driving the Test strategy, Test effectiveness, and Improvements for the CNCS product in functional/non-functional areas, and accountable for fault escapes. Works effectively in a mixed environment and uses best practices and knowledge of internal or external business issues to improve products or services. Plan technical requirements from customers needs. Applies and maintains quality standards. Participates in process and tool evolutions and improvements.

Dear Candidate, We are hiring a Go Developer to build high-performance microservices and backend systems. The role requires proficiency in Golang and a deep understanding of concurrent programming and cloud-native architecture. Key Responsibilities: Develop scalable services and APIs using Go Optimize systems for performance and concurrency Build event-driven systems using Kafka, NATS, or gRPC Work with CI/CD pipelines and containerized environments Participate in system design and architecture discussions Required Skills & Qualifications: Proficient in Golang , standard library, and concurrency patterns Experience with Docker, Kubernetes, and REST/gRPC services Knowledge of cloud infrastructure (AWS/GCP) Familiar with Prometheus, Grafana, and distributed tracing tools Soft Skills: Strong troubleshooting and problem-solving skills. Ability to work independently and in a team. Excellent communication and documentation skills. Note: If interested, please share your updated resume and preferred time for a discussion. If shortlisted, our HR team will contact you. Kandi Srinivasa Reddy Delivery Manager Integra Technologies

Vantive is a vital organ therapy company on a mission to extend lives and expand possibilities for patients and care teams everywhere For 70 years, our team has driven meaningful innovations in kidney care As we build on our legacy, we are deepening our commitment to elevating the dialysis experience through digital solutions and advanced services, while looking beyond kidney care and investing in transforming vital organ therapies Greater flexibility and efficiency in therapy administration for care teams, and longer, fuller lives for patients? that is what Vantive aspires to deliver We believe Vantive will not only build our leadership in the kidney care space, it will also offer meaningful work to those who join us At Vantive, you will become part of a community of people who are focused, courageous and dont settle for the mediocre Each of us is driven to help improve patientslives worldwide Join us in advancing our mission to extend lives and expand possibilities Description As Sr Principal Engineer, own and direct the cybersecurity design and analysis of multiple medical devices Resolve difficult problems, from conception to final design with team input Plan, lead, and deliver project assignments in the evaluation, selection and adaptation of various cybersecurity engineering techniques, procedures, and criteria with minimal guidance Contributes to a cybersecurity vision that aligns with the organization's vision and strategic plan Utilizes solid understanding of device and system connectivity concepts in a medical device domain Provides direction to technical team members that are accountable for implementing cybersecurity, integration, and connectivity deliverables Exhibits creativity and innovation in completing divisional and cross-functional/business unit goals and objectives Essential Duties And Responsibilities Create system requirements, architectures, risk analysis and other specifications that define the cybersecurity functionality of medical device systems both embedded and hosted Create threat models of medical device systems and the interfaces between medical devices Perform vulnerability scanning of medical device systems and analyze results Monitor threat intelligence and analyze CWEs and CVEs that affect medical device systems and propose solutions Collaborate with the cross functional team, primarily software, in the implementation of cybersecurity functionality Contribute to external communications (bulletins, FAQs, etc ) related to cybersecurity Resolve competing constraints between interrelated functions (Engineering, Risk Management, Compliance, Clinical, Human Factors, Regulatory, Marketing, Service) Ensure compliance to the product development process and Quality System and Design Control requirements Work with regulators to ensure regional needs are met Qualifications For This Role Experience with threat modeling, penetration testing, fuzz testing, vulnerability scanning, secure code analysis Experience with cybersecurity related software such as Blackduck, Coverity, etc Experience dealing with threat intelligence, CWEs and CVEs Familiarity with cybersecurity related organizations and certifications such as UL (UL-2900), ICS-CERT, FIPS 140, etc Experience with cybersecurity functionality on embedded systems and hosted software applications Requires strong organization and communication skills, with the ability to interface with both technical and non-technical personnel Ability to convince management on courses of action with minimal assistance using both written and verbal methods Must be able to provide solutions that reflect understanding business objectives Medical device experience a plus Education And Experience BE /B Tech or ME /M Tech with 12 18 years of related experience Vantive is committed to supporting the needs for flexibility in the workplace We do so through our flexible workplace policy which includes a minimum of 3 days a week onsite This policy provides the benefits of connecting and collaborating in-person in support of our Mission Reasonable Accommodation Vantive is committed to working with and providing reasonable accommodations to individuals with disabilities globally If, because of a medical condition or disability, you need a reasonable accommodation for any part of the application or interview process, please click on the link here and let us know the nature of your request along with your contact information Form Link Recruitment Fraud Notice Vantive has discovered incidents of employment scams, where fraudulent parties pose as Vantive employees, recruiters, or other agents, and engage with online job seekers in an attempt to steal personal and/or financial information To learn how you can protect yourself, review our Recruitment Fraud Notice

We are seeking a skilled and proactive DevOps Engineer with deep expertise in Google Cloud Platform (GCP), Google Kubernetes Engine (GKE), and on-premises Kubernetes platforms like OpenShift. The ideal candidate will have a strong foundation in Infrastructure as Code (IaC) using Terraform, and a solid understanding of cloud-native networking, service meshes (e.g., Istio), and CI/CD pipelines. Experience with DevSecOps practices and security tools is highly desirable. Key Responsibilities Design, implement, and manage scalable infrastructure on GCP (especially GKE google Kubernetes environment) and on-prem Kubernetes (OpenShift). Develop and maintain Terraform modules for infrastructure provisioning and configuration. Troubleshoot and resolve complex issues related to networking, Istio, and Kubernetes clusters. Build and maintain CI/CD pipelines using tools such as Jenkins, Codefresh, or GitHub Actions. Integrate and manage DevSecOps tools such as Blackduck, Checkmarx, Twistlock, and Dependabot to ensure secure software delivery. Collaborate with development and security teams to enforce security best practices across the SDLC. Support and configure WAFs and on-prem load balancers as needed. Required Skills & Qualifications: 5+ years of experience in a DevOps or Site Reliability Engineering role. Proficiency in GCP and GKE, with hands-on experience in OpenShift or similar on-prem Kubernetes platforms. Strong experience with Terraform and managing cloud infrastructure as code. Solid understanding of Kubernetes networking, Istio, and service mesh architectures. Experience with at least one CI/CD toolJenkins, Codefresh, or GitHub Actions. Familiarity with DevSecOps tools such as Black Duck, Checkmarx, Twistlock, and Dependabot. Strong Linux administration and scripting skills. Nice to Have: Experience with WAFs and on-prem load balancers. Familiarity with monitoring and logging tools (e.g., Prometheus, ELK stack, Dynatrace, Splunk). Knowledge of container security and vulnerability scanning best practices. Familiarity with GenAI, Google Vertex AI in Google Cloud.

Dear Candidate, We are hiring a Software Security Engineer to secure applications throughout the software development lifecycle. Ideal for developers with a strong grasp of secure coding and threat modeling. Key Responsibilities: Identify and remediate application-level vulnerabilities Conduct code reviews, static/dynamic analysis, and fuzz testing Collaborate with developers on secure architecture and coding practices Develop security tools, libraries, and automated scans in CI/CD pipelines Required Skills & Qualifications: Experience with secure coding in Java, Python, C/C++, or JavaScript Familiarity with OWASP Top 10, SAST/DAST tools (e.g., SonarQube, Veracode) Understanding of authentication, authorization, and secure APIs Bonus: Knowledge of bug bounty platforms or offensive security techniques Note: If interested, please share your updated resume and preferred time for a discussion. If shortlisted, our HR team will contact you. Kandi Srinivasa Delivery Manager Integra Technologies

About the role As a Software Composition Analysis Specialist, you will play a crucial role in ensuring the integrity, security, and compliance of software components used in our projects. Your responsibilities will include identifying and mitigating vulnerabilities, ensuring adherence to licensing requirements, and promoting best practices for secure software development. Key Responsibilities Component Analysis Conduct thorough analysis of software components to identify vulnerabilities and potential security risks. Evaluate open source and third-party libraries for their impact on overall system security. License Compliance Assess software components for compliance with licensing agreements. Provide guidance on licensing implications and ensure adherence to legal requirements. Tool Utilization Utilize industry-standard Software Composition Analysis tools to identify, track, and manage software components. Stay updated on the latest SCA tools and technologies to enhance analysis capabilities. Collaboration Work closely with development teams to communicate analysis findings and collaborate on remediation strategies. Provide guidance to ensure secure coding practices and prevent future vulnerabilities. Support Maintain comprehensive documentation of software components, vulnerabilities, and remediation efforts. Create reports for stakeholders, including executive summaries and technical details Qualifications & Skills Educational Qualification Engineering Graduate in CS, IT, EC or InfoSec, CyberSec or MCA equivalent Certifications Certified Ethical Hacker (CEH) Compliance Knowledge of security best practices and methodologies. Familiarity with open source software and licenses. Technical Skills Experience with Software Composition Analysis tools (e.g., WhiteSource, Kiuwan, Black Duck, Snyk, etc). Proven experience in software development and a strong understanding of various programming languages. Communication skills Strong communication and collaboration skills. Ability to prioritize and manage multiple tasks in a dynamic environment.