24 Ccsk Jobs

Role & responsibilities We are recruiting for a Senior in the IT Audit & Assurance, Risk Consulting team. Working as a Senior in this team, your responsibilities will include: Performing IT gap and maturity assessments against regulations and frameworks Experience in atleast one of the frameworks: ISO 27001, HIPAA, PCI DSS, NIST will be preferred Assist in planning activities, development of audit program, and execution of internal audits and IT control assessments in atleast two of the following areas: IT strategy and governance, IT operations, network and infrastructure security, cloud and third-party risk, programs and projects, automation, GITCs and application controls, and regulatory/compliance requirements Hands on experience with SAP or Oracle applications preferred Knowledge of business process areas such as: Procure to Pay, Order to Cash, Fixed Assets, General Ledger & HR would be an advantage Industry experience in BFSI will be an advantage Work with client management team to assist in implementation of new processes and controls to address key risks, as necessary Draft comprehensive executive summaries and final reports for delivery to client senior management and document and review engagement workpapers in accordance with standard KPMG methodologies Helping AM and Managers to manage and upskill the team. Preferred candidate profile Expertise in performing IT maturity and gap assessments against regulations and leading frameworks Working knowledge in ITGCs, IT Application controls and Third Party Risk Management Hands-on exposure of conducting IT Audits and IT Risk Assessment Experience in assessing risks across a variety of business processes. Experience of working on Financial Services sector clients. Strong communication, articulation and presentation skills Excellent report writing skills

As a Manager in the Risk Consulting - Protect Tech team at EY, you will have the opportunity to leverage your tech-savvy mindset and passion for building a better working world through people, technology, and innovation. You will be focusing on IT Risk Management, IT SOX, IT Regulatory Compliance, IT Audits, and IT and Digital Transformations (including ERP, Emerging Tech, and Cloud transformations) while enabling technology to better manage risk. By joining our dynamic team, you will collaborate with industry leaders to tackle complex challenges and transform businesses for our clients. **Key Responsibilities:** - Supervise delivery, provide technical and project leadership, and build client relationships - Drive high-value work products within expected timeframes and budget - Understand clients" challenges and offer solutions in the areas of IT Risk - Participate in go-to-market activities, create proposals, and identify cross-selling opportunities - Travel to client locations for meetings, workshops, and knowledge sharing sessions - Jointly lead global account relationships, manage engagement deliveries, and drive growth agenda - Consistently deliver quality client services, manage risks, and keep key stakeholders informed - Manage a team for delivery of engagements, foster an innovative work environment, and mentor junior consultants - Use knowledge of the current IT environment and industry trends to identify client service issues - Foster relationships with client personnel to enhance information systems security - Assist with business development opportunities and assess ways to serve clients effectively **Qualifications Required:** - Bachelor's or master's degree with 5-7 years of related work experience - 3-4 years of experience in IT Risk Management in Emerging Tech and Cloud - Strong exposure in client-facing roles and collaborating with cross-functional teams - Relevant industry certifications such as CISA, CISM, CISSP, CCSK, or others (as relevant) At EY, we exist to build a better working world by creating long-term value for clients, people, and society. Our diverse teams in over 150 countries provide trust through assurance and help clients grow, transform, and operate across various service lines. Join us in building a better working world together.,

The Business Advisory Team at Deutsche Bank in Pune, India is looking for an Information Security Specialist to join the Chief Security Office (CSO) team. The CSO is responsible for safeguarding the bank's information and systems to protect assets, revenues, gain competitive advantages, and prevent reputational damage. As an Information Security Specialist, you will be responsible for providing support for complex business and CIO programs that require coordination and end-to-end support from the CSO area. This includes assessing risks related to information security, developing pragmatic strategies for effective controls, and identifying and mitigating potential threat areas. You will also contribute to the implementation of the Information Security Strategy, evaluate internal controls, and ensure that appropriate procedures and policies are in place. Key Responsibilities: - Support issues from complex business and CIO programs requiring coordination from the CSO area - Develop strategies for effective controls and information security management - Identify and assess potential threat areas for information security - Contribute to the implementation of the Information Security Strategy - Evaluate internal controls in relation to information security risks - Develop strategies for effective controls and information security management objectives - Maintain customer relationships and focus on the information security agenda - Provide support for application issues during the Cloud Migration Journey - Assist in migrating applications to Google Cloud Platform (GCP) - Ensure compliance with security and operational controls for GCP migration - Identify and report risks associated with cloud migration - Work with stakeholders and global teams Skills And Experience: - Graduate in computer science with technical experience - Strong technical knowledge of information security and cloud security - Experience aligning security with business and technology strategy - Knowledge of security organization processes - Certification qualifications such as CISSP, CCSP, CISM, CEH, CISA, or CCSK are beneficial - Excellent English language skills Deutsche Bank offers a range of benefits including a comprehensive leave policy, parental leaves, childcare assistance, sponsorship for certifications, employee assistance program, insurance coverage, health screening, and more. Training, coaching, and continuous learning opportunities are provided to support career development. If you are looking to excel in your career in a collaborative and inclusive work environment, consider joining Deutsche Bank's Business Advisory Team in Pune. For more information about Deutsche Bank and our teams, please visit our company website: [https://www.db.com/company/company.htm](https://www.db.com/company/company.htm),

Join our Team About this opportunity: We are seeking a highly skilled, hands-on AI Architect GenAI to lead the design and implementation of production-grade, cloud-native AI and NLP solutions that drive business value and enhance decision-making processes The ideal candidate will have a robust background in machine learning, generative AI, and the architecture of scalable production systems As an AI Architect, you will play a key role in shaping the direction of advanced AI technologies and leading teams in the development of cutting-edge solutions, What you will do: Architect and design AI and NLP solutions to address complex business challenges and support strategic decision-making, Lead the design and development of scalable machine learning models and applications using Python, Spark, NoSQL databases, and other advanced technologies, Spearhead the integration of Generative AI techniques in production systems to deliver innovative solutions such as chatbots, automated document generation, and workflow optimization, Guide teams in conducting comprehensive data analysis and exploration to extract actionable insights from large datasets, ensuring these findings are communicated effectively to stakeholders, Collaborate with cross-functional teams, including software engineers and data engineers, to integrate AI models into production environments, ensuring scalability, reliability, and performance, Stay at the forefront of advancements in AI, NLP, and Generative AI, incorporating emerging methodologies into existing models and developing new algorithms to solve complex challenges, Provide thought leadership on best practices for AI model architecture, deployment, and continuous optimization, Ensure that AI solutions are built with scalability, reliability, and compliance in mind, The skills you bring: Minimum of experience in AI, machine learning, or a similar role, with a proven track record of delivering AI-driven solutions, Hands-on experience in designing and implementing end-to-end GenAI-based solutions, particularly in chatbots, document generation, workflow automation, and other generative use cases, Expertise in Python programming and extensive experience with AI frameworks and libraries such as TensorFlow, PyTorch, scikit-learn, and vector databases, Deep understanding and experience with distributed data processing using Spark, Proven experience in architecting, deploying, and optimizing machine learning models in production environments at scale, Expertise in working with open-source Generative AI models (e-g , GPT-4, Mistral, Code-Llama, StarCoder) and applying them to real-world use cases, Expertise in designing cloud-native architectures and microservices for AI/ML applications, Why join Ericsson At Ericsson, you?ll have an outstanding opportunity The chance to use your skills and imagination to push the boundaries of what?s possible To build solutions never seen before to some of the worlds toughest problems You?ll be challenged, but you wont be alone You?ll be joining a team of diverse innovators, all driven to go beyond the status quo to craft what comes next, What happens once you apply Click Here to find all you need to know about what our typical hiring process looks like, Encouraging a diverse and inclusive organization is core to our values at Ericsson, that's why we champion it in everything we do We truly believe that by collaborating with people with different experiences we drive innovation, which is essential for our future growth We encourage people from all backgrounds to apply and realize their full potential as part of our Ericsson team Ericsson is proud to be an Equal Opportunity Employer learn more, Primary country and city: India (IN) || Kolkata Req ID: 770049

Role: Cloud Security Professional Experience: 3 to 10 yrs Location: Mumbai, Pune, Bangalore, Delhi, Hyderabad Education: only B.Tech/ M.Tech/ B.E/MCA/BCA. Role Summary Join our Cyber team to help clients secure their cloud environments. You will conduct threat-based risk assessments, review cloud security architecture, and evaluate security controls to protect valuable assets and manage cyber risk effectively. Key Skills & Qualifications Cloud Platforms: Strong understanding of cloud technologies like AWS, Azure, GCP, and OCI. Security Architecture: Knowledge of cloud security architecture, Zero Trust principles, and security controls (e.g., IAM, SIEM, WAF, Container Security). Frameworks & Risk: Familiarity with industry standards (NIST, ISO 27001, CIS benchmarks) and the Risk Management Lifecycle. Client Experience: Must have experience in client-facing engagements. Education & Certs: A Bachelor's degree in a technical field is preferred. Cloud certifications like CCSK, CCSP, AWS, Azure, or GCP are highly desirable.

Job Description: Key Responsibilities: ? Work independently to lead and complete high quality threat-based risk assessments, business impact analysis across a diverse set of cloud technologies, business functions, and platforms. ? Conduct cloud infrastructure security risk assessments based on cloud security best practices. ? Assess cloud security architecture ? Cloud security controls evaluation to ensure compliance with business scope, security policies and standards ? Preparing cloud infrastructure risk assessment reports. ? Work closely with internal management/team and client business representatives to scope assessments, gather documentation, interview clients, identify risks, document findings, and ensure transparent assessment of risks by following a structured risk assessment methodology. ? Driving the efforts to identify, assess, and communicate the cloud information security risks to relevant-internal and external stakeholders. Requirements Desired qualifications ? Bachelor&aposs degree preferred in Computer Science, Information Security, Information Technology, Engineering ? Cloud security certifications - CCSK/CCSP, AWS/Azure/GCP ? 3-5+ years of working experience in Cyber Security Consulting with proficiency in cloud security assessment ? Should have played a role in client engagements Preferred: ? Certifications: CCSK/CCSP, Azure/AWS/GCP certifications Show more Show less

Job Description: Key Responsibilities: ? Work independently to lead and complete high quality threat-based risk assessments, business impact analysis across a diverse set of cloud technologies, business functions, and platforms. ? Conduct cloud infrastructure security risk assessments based on cloud security best practices. ? Assess cloud security architecture ? Cloud security controls evaluation to ensure compliance with business scope, security policies and standards ? Preparing cloud infrastructure risk assessment reports. ? Work closely with internal management/team and client business representatives to scope assessments, gather documentation, interview clients, identify risks, document findings, and ensure transparent assessment of risks by following a structured risk assessment methodology. ? Driving the efforts to identify, assess, and communicate the cloud information security risks to relevant-internal and external stakeholders. Requirements Desired qualifications ? Bachelor&aposs degree preferred in Computer Science, Information Security, Information Technology, Engineering ? Cloud security certifications - CCSK/CCSP, AWS/Azure/GCP ? 3-5+ years of working experience in Cyber Security Consulting with proficiency in cloud security assessment ? Should have played a role in client engagements Preferred: ? Certifications: CCSK/CCSP, Azure/AWS/GCP certifications Show more Show less

Note: By applying to this position you will have an opportunity to share your preferred working location from the following: Bengaluru, Karnataka, India; Hyderabad, Telangana, India Minimum qualifications: Bachelor's degree in Computer Science, a related technical field, or equivalent practical experience, 6 years of experience planning infrastructure modernization as a technical consultant, technical pre-sales engineer, or enterprise architect Experience in cloud migration, data center migration, disaster recovery, virtualization, or application/servers assessment/discovery, Experience in leading IT discussions and design cloud adoption plans, Preferred qualifications: Master's degree in Computer Science, or a related technical field, Experience architecting and implementing solutions on any public cloud as an enterprise architect or IT infrastructure consultant, Experience with Kubernetes ecosystem, Relational Database Management System and NOSQL databases, Experience with Linux system administration or enterprise applications, Understanding of virtualization and networking concepts (e-g , Linux, hypervisors, network virtualization, open protocols, application acceleration and load balancing, DNS, virtual private networks) and their application to PaaS and IaaS technologies, Understanding of Artificial Intelligence and Machine Learning concepts, About The Job The Google Cloud Platform team helps customers transform and build what's next for their business ? all with technology built in the cloud Our products are developed for security, reliability and scalability, running the full stack from infrastructure to applications to devices and hardware Our teams are dedicated to helping our customers ? developers, small and large businesses, educational institutions and government agencies ? see the benefits of our technology come to life As part of an entrepreneurial team in this rapidly growing business, you will play a key role in understanding the needs of our customers and help shape the future of businesses of all sizes use technology to connect with customers, employees and partners, In this role, you will work with the Sales team to introduce Google Cloud to customers You will help prospective and existing customers and partners understand Google Cloud, develop creative cloud solutions, estimations, and architectures to solve their business issues and any potential technical roadblocks, Google Cloud accelerates every organizations ability to digitally transform its business and industry We deliver enterprise-grade solutions that leverage Googles cutting-edge technology, and tools that help developers build more sustainably Customers in more than 200 countries and territories turn to Google Cloud as their trusted partner to enable growth and solve their most critical business problems, Responsibilities Inspire customers and peers to solve difficult problems with novel solutions, leverage a sophisticated set of technical competences, Manage the Go-to-Market (GTM) strategy from a technical perspective Craft the strategy to transform the customers, identify customer technical objections, and develop a strategy to resolve technical blockers, Work with customers to demonstrate and prototype Google Cloud product integrations in customer/partner environments Help the Account team to close agreements from a technical perspective, Recommend migration strategies, enterprise architectures, migration tools, and cloud infrastructure required to complete solutions using on Google Cloud, Travel to customer sites, conferences, and other related events, as needed, Google is proud to be an equal opportunity workplace and is an affirmative action employer We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status We also consider qualified applicants regardless of criminal histories, consistent with legal requirements See also Google's EEO Policy and EEO is the Law If you have a disability or special need that requires accommodation, please let us know by completing our Accommodations for Applicants form ,

Benefits Health Insurance: We provide hospitalization and non-hospitalization benefits like annual medical screening and mental health assistance program for employees and their dependents, Employee Wellbeing: We provide various options for sport and recreation benefits, Job for Friends: Get your friends on board through our employee referral program, and we will reward you, Flexible Working: We offer flexible work schedules, including flexible start and end times as well as remote and/or hybrid work, Anniversary & Success Milestones: We celebrate your work anniversaries and success by rewarding your loyalty and dedication, Gift Vouchers: We share your happiness with you and provide vouchers for newborns, wedding, work anniversaries, annual and festival gifts, Team Events: We celebrate our success with team-building activities throughout the year, Training and Development: We provide a broad training portfolio for personal and professional growth, including unlimited access to course platform to all our employees,

Location: Mumbai, MH, IN Areas of Work: Corporate Finance Job Id: 13501 External Job Description Key Responsibilities: (Domestic Operations) Vendor Payments (Outward Remittances): Manage and process all domestic vendor payments, including coordination with banks and internal user functions Ensure timely execution, documentation accuracy, and compliance with applicable regulations and internal policies, Banking Documentation & Rate Management: Handle documentation related to interest rates, fixed deposits, and other banking instruments Generate reports for rate bookings and maintain records for accounting and audit purposes, Service Payments: Process domestic service-related payments, ensuring proper documentation and adherence to regulatory and internal guidelines, Bank Reconciliation: Perform reconciliation of bank accounts related to domestic transactions Track debit advices, bank charges, and ensure accurate accounting by coordinating with the finance team, Reporting Activities: Prepare financial and economic reports for senior management Support quarter-end and year-end reporting requirements with accurate and timely data, MIS & Compliance Reporting: Maintain MIS for all domestic treasury activities Ensure timely submission of reports to banks and internal stakeholders as per compliance requirements, Functional Competencies Strong understanding of domestic banking operations and payment processes Familiarity with financial documentation and regulatory compliance ERP system proficiency Advanced skills in Excel and Word

Your work profile As Assistant Manage r in our Cyber - Extended Enterprise Team youll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations: - Key Responsibilities: Work independently to lead and complete high quality threat-based risk assessments, business impact analysis across a diverse set of cloud technologies, business functions, and platforms. Conduct cloud infrastructure security risk assessments based on cloud security best practices. Assess cloud security architecture Cloud security controls evaluation to ensure compliance with business scope, security policies and standards Preparing cloud infrastructure risk assessment reports. Work closely with internal management/team and client business representatives to scope assessments, gather documentation, interview clients, identify risks, document findings, and ensure transparent assessment of risks by following a structured risk assessment methodology. Driving the efforts to identify, assess, and communicate the cloud information security risks to relevant-internal and external stakeholders. Your role as a Assistant Manager We expect our people to embrace and live our purpose by challenging themselves to identify issues that are most important for our clients, our people, and for society. In addition to living our purpose, Senior Executive across our organization must strive to be: Strong understanding of cloud technologies and platforms: Azure/AWS/GCP/OCI Understanding of cloud security architecture Understanding of Zero trust principle, security technologies and controls: AWS/Azure/GCP/OCI cloud native security controls, Identity Access Management, Data Security, IDS/IPS, SIEM, web application firewall, cryptography, Kubernetes, container security etc. Should have conducted cloud security assessments and configuration reviews as per industry best practices Familiarity with industry-leading standards and frameworks such as ISO 27001, NIST, CSA CCM, CIS benchmarks to help clients adhere to compliance requirements Knowledge and experience of Risk Management Lifecycle (Risk Identification, Risk Assessment, Risk Response, & Reporting) Experience with cloud security tools and services Knowledge and experience in developing/creating cloud security policies and frameworks for organizations Effective written and communication skills Strong sense of ownership, urgency, and drive Should have the ability to work independently Demonstrate teamwork and collaborate with other teams to ensure clients cloud environment is secure Desired qualifications Bachelors degree preferred in Computer Science, Information Security, Information Technology, Engineering Cloud security certifications CCSK/CCSP, AWS/Azure/GCP 4+ years of working experience in Cyber Security Consulting with proficiency in cloud security assessment Should have played a role in client engagements Preferred: Certifications: CCSK/CCSP, Azure/AWS/GCP certifications Location and way of working Base location: Bengaluru Professional is required to work from office Experience-}4-9 Years

We are seeking a skilled Vulnerability Management Specialist to lead and facilitate end-to-end vulnerability management responsibilities. This role involves collaborating with internal teams and external auditing firms (PCI, SOC, ISO 27001) while ensuring effective vulnerability scanning, remediation, compliance, and continuous process improvement. Key Responsibilities Vulnerability Scanning & Remediation Schedule and conduct weekly vulnerability scans. Ensure results are communicated to Remediation Owners. Track and validate closure of Critical, High, and Medium vulnerabilities within timelines. Audit & Compliance Support Collaborate with internal stakeholders for device inventory analysis and audit readiness. Provide required evidence to external auditors for PCI, SOC, and ISO 27001 audits. Train internal employees on vulnerability scanning and remediation processes aligned with PCI and Security Requirements . Security Analysis & Monitoring Perform security analysis and technical assessments. Monitor and report remediation progress, ensuring compliance with regulatory, contractual, and legal requirements . Conduct penetration testing and segmentation testing for services. Process Improvement & Documentation Identify gaps and recommend improvements in vulnerability management workflows. Create and maintain process documentation and training material. Database & CMDB Integration Lead efforts to integrate DBORs of infrastructure and CPE devices into the CMDB . Ensure automated, recurring hydration of inventory supporting services. Required Skills Strong project management and time management skills. Proficiency in Microsoft PowerPoint, Excel, Outlook, and Word . Excellent verbal and written communication skills. Hands-on experience with: ServiceNow Vulnerability Response Module Tenable SC and Tenable.io Desired Skills Bachelors degree in Computer Science / Information Systems (preferred). 5+ years in IT Operations (with exposure to PCI DSS audits) and 3+ years in IT Security . Relevant certifications preferred: CISSP, CISM, CCSK, CCSP, PMP, CISA .

As a VP in the Technology and Cloud risk team at Barclays, you will be instrumental in shaping the future of Technology and Security Chief Control Office (CCO) Controls Management. Your primary focus will be on governance and execution support for technology, cloud, and AI risk. You will play a proactive role in identifying, assessing, and remediating risks to ensure compliance with regulations and respond to audit requests. Additionally, you will evaluate security risks associated with new cloud and AI deployments, offer advisory services, and engage with stakeholders from various functions. Collaboration with cross-functional teams, staying updated on security threats, and promoting best practices and policies will be key responsibilities. You will also be involved in developing metrics and scorecards to facilitate decision-making and ensuring the implementation of robust security policies. Furthermore, you will assess technology and information security risks related to new application deployments to public cloud and AI use cases, provide advisory services, and review/sign-off on new deployments and ad hoc requests. Regulatory and compliance reviews, as well as responding to audit and regulatory-related internal/external requests, will also be part of your role. To excel in this position, you should possess extensive experience in cloud and AI risk management. Practical experience with commercial cloud offerings such as AWS and Azure, a strong understanding of AWS services, CI/CD pipelines, infrastructure deployment through code, automation technologies, and industry standards related to Cloud will be advantageous. A bachelor's or master's degree with relevant experience is required. Highly valued skills may include industry certifications like CCSP and CCSK, awareness of AI risk industry frameworks/regulations, and knowledge of cyber threats and vulnerabilities for AI use cases. Your success in this role will be evaluated based on your risk and controls expertise, change and transformation capabilities, business acumen, strategic thinking, digital and technology proficiency, as well as job-specific technical skills. The location of this role is in Pune/Noida, IN. As a VP in this role, your primary purpose will be to design, develop, and consult on the bank's internal controls framework and supporting policies and standards across the organization. You will ensure that the framework is robust, effective, and aligned with the bank's overall strategy and risk appetite. Your accountabilities will include identifying and analyzing emerging and evolving risks, communicating the purpose and structure of the control framework to relevant stakeholders, supporting the development and implementation of the bank's internal controls framework, monitoring and maintaining the framework for compliance, and embedding the control framework across the bank through collaboration, training sessions, and awareness campaigns. In fulfilling the expectations of a Vice President, you will advise key stakeholders, manage and mitigate risks, demonstrate leadership and accountability, show a comprehensive understanding of the organization's functions, collaborate with other areas of work, and create solutions based on analytical thought. Building and maintaining trusting relationships with internal and external stakeholders will be crucial for accomplishing key business objectives. All colleagues at Barclays are expected to embody the Barclays Values of Respect, Integrity, Service, Excellence, and Stewardship, as well as demonstrate the Barclays Mindset of Empower, Challenge, and Drive in their behavior.,

2-3 years IT audit experience in Domain like ITGC, Cyber Security, SOC 2, Application and IT security Infrastructure and IT Regulatory compliance Proficient in assessing IT-related risk and controls review Familiarity with IT regulatory requirements related to information security of regulators such as RBI, IRDA, SEBI and other IT Standards Educational Professional Credentials Working IT audit experience in role of lead or IT audit team member. Bachelor's/Master's degree in Engineering such as IT, Computer Science etc. Having one IT Security certification such as CISA, ISO 27001, CISSP, CISM, CCSK etc. Required Knowledge Skills Excellent written and verbal communication skills.

As a Tech Delivery & Op Excellence Practitioner, you understand how to deliver value to clients and apply methods or certifications appropriately. Your attention to detail and deep expertise allow you to see inherent risks or improvement opportunities that others may not. You work directly with client teams to ensure a high standard of delivery and operational excellence is met. Key responsibility: - Risk and Compliance senior Analyst works with the Application service delivery organization and other compliance related functions to help: - Perform audits/reviews to assess risks in Application development and maintenance service environment - Manage risk in Application development and maintenance service to an acceptable level - Increase awareness of and compliance with policy and process-related matters - Support successful completion of various external compliance certification programs and internal compliance assessments - Introduce continual improvement including lessons learned from matters requiring intervention - The successful candidate for this role will be a member of a dedicated team operating a Controls and Compliance function, performing audit-style reviews of Application Development & Maintenance Services outsourcing engagements covering compliance matters and operational service management and service delivery good practice. Must-Have Skills/Qualifications: - Minimum of 1-year experience in Auditing principles and practices (sample qualifications*: CISA, ISO 27001 Lead Auditor) - Minimum of 1-year experience in Application security/audit roles in Application development & maintenance service industry (sample qualifications*: EC-Councils CASE, CEH, Agile Methodology, DevOps Certification, CMMI for Development) - Knowledge of secure SDLC models, secure coding standards, OWASP Top 10, threat modeling, SAST, DAST, single sign-on, Encryption - Minimum of 1-year experience in Operational compliance requirements - Contract Management/Service Reporting (including Service Level Agreements and Operational Level Agreements) - Risk management or assessment (sample qualification*: CRISC) - Knowledge of cloud environment and services (sample qualification*: Microsoft Azure/AWS/Google Certifications) - Team and stakeholder management Nice-to-Have Skills/Qualifications: - Data privacy and protection (sample qualifications*: CIPM, CIPT, CIPP) - CISSP, CISM, CISA, CCSK, CCSP - SOC1 and SOC2 (SSAE16/ISAE3402) awareness - Business Continuity and Disaster Recovery awareness (ISO 22301) Professional Attributes: 1. Good communication 2. Teamwork 3. Problem-solving capabilities 4. Work planning and management 5. Quick learner 6. Eager to take on responsible tasks 7. Dedicated and focused Educational Qualification: 1. MBA-Information Security/IT 2. BE/B-Tech with CS/IT/related domain 3. BSc-IT Additional Information: - Occasional within-country travel - Flexibility in working hours - 15 years full-time education,

As a Senior Security Engineer at Adobe, you will be part of a global architecture and engineering team within Enterprise Security focused on securing access to Adobe data using Zero Trust best practices. Your responsibilities will include implementing a Zero Trust Solution, delivering access controls based on a zero trust strategy, and providing support to critical projects within the Enterprise Security organization. You will play a key role in enhancing the security posture for employees and data by researching, analyzing, troubleshooting, and supporting the delivery of security solutions aligned with team security strategies and key requirements. Your role will involve supporting the development and maturity of security services, policies, and standards to improve security posture. This includes creating clear documentation, proposing architectural standards, and leading programs to achieve security goals. You will collaborate with business units and vendor suppliers across Adobe to enhance their security posture and service architecture, as well as assist in evaluating and selecting security technologies in alignment with business partners and customers. To succeed in this role, you will need a Bachelor's degree in MIS, Computer Science, or Engineering, along with familiarity with Zero Trust solutions, Identity and Access Management technologies, and Public Cloud services. Knowledge of Web Application Security platforms, Single Sign-On, Authentication, Authorization, Federation Technologies, and Python will be beneficial. Excellent communication skills, certifications in Information Security and Cloud Technology, and the ability to work collaboratively and provide leadership within the organization are essential. We are seeking a highly skilled Senior Security Engineer to join our Global Enterprise Security Architecture team at Adobe. The ideal candidate will have extensive experience in leading large-scale security projects, driving Zero Trust initiatives, and advising on infrastructure security best practices. This role is crucial for supporting global enterprise security architecture efforts, enhancing corporate security authentication, and managing high-impact cybersecurity projects. Key Responsibilities include: - Providing leadership within the Enterprise Security Architecture & Engineering team and executing security initiatives across the organization. - Developing and implementing security solutions to address challenges in vendor security, corporate authentication, and cybersecurity risk management. - Advancing the organization's Zero Trust security model, setting standards, and implementing frameworks to secure digital assets. - Overseeing high-impact security projects, collaborating with stakeholders, and serving as a Trusted Advisor on infrastructure security best practices. If you require accommodation to navigate Adobe's website or complete the application process due to a disability or special need, please contact accommodations@adobe.com or call (408) 536-3015.,

Changing the world through digital experiences is what Adobe is all about. We give everyonefrom emerging artists to global brandseverything they need to design and deliver exceptional digital experiences. We are passionate about empowering people to craft beautiful and powerful images, videos, and apps, and transform how companies interact with customers across every screen. We are on a mission to hire the very best and are committed to building exceptional employee experiences where everyone is respected and has access to equal opportunity. We realize that new ideas can come from everywhere in the organization, and we know the next big idea could be yours. As a Senior Security Engineer at Adobe, you will be a part of a global architecture and engineering team within Enterprise Security dedicated to securing access to Adobe data using Zero Trust best practices. This role involves implementing a Zero Trust Solution at Adobe and delivering access controls based on a zero trust strategy. Additionally, you will be supporting other critical projects and services within the Enterprise Security organization focused on securing access and data. Your responsibilities will include researching, analyzing, troubleshooting, and supporting the delivery of security solutions aligned with team security strategies and key security requirements. You will also contribute to the development and enhancement of security services, policies, and standards to improve the security posture for employees and data. Collaborating with business units and vendor suppliers across Adobe, you will assist in improving security posture and service architecture, as well as help in the evaluation and selection of security technologies. To succeed in this role, you will need a Bachelor's degree in MIS, Computer Science, or Engineering, familiarity with Zero Trust solutions, Identity and Access Management technologies, and Public Cloud services. Knowledge of Web Application Security platforms, Single Sign On, Authentication, Authorization, Federation Technologies, and Python will be beneficial. Excellent communication skills, certifications in Information Security and Cloud Technology, strong interpersonal skills, and the ability to work collaboratively and build consensus across the organization are essential. We are seeking a highly skilled Senior Security Engineer to join our Global Enterprise Security Architecture team at Adobe. The ideal candidate will have significant experience leading large-scale security projects, driving Zero Trust initiatives, advising on infrastructure security best practices, and managing cybersecurity projects. This role is crucial for supporting global enterprise security architecture efforts and enhancing corporate security authentication. Key Responsibilities: - Provide leadership within the Enterprise Security Architecture & Engineering team, setting the strategy and executing security initiatives across the organization. - Act as a leader in advancing the organization's Zero Trust security model, setting standards, and implementing frameworks to secure digital assets across diverse environments. - Oversee high-impact, cross-functional security projects that align with the company's objectives, including vendor security management and global risk mitigation. - Serve as a Trusted Advisor on infrastructure security best practices, guiding teams on architecture decisions that align with our security roadmap. If you require an accommodation to navigate our website or complete the application process, please contact accommodations@adobe.com or call (408) 536-3015. Adobe values a free and open marketplace for all employees and has policies in place to ensure fair recruitment practices.,

The Divisional Risk and Control Analyst for TDI Control Testing & Assurance in Pune, India, plays a crucial role in ensuring the effective operation of infrastructure functions within the Infrastructure Chief Operating Office (COO). The primary focus is on driving operational efficiency while supporting the delivery of infrastructure services in alignment with business objectives and control requirements. The role involves overseeing the Infrastructure Divisional Control Office (DCO) and Trade Settlement and Confirmations Operations (TSCO). As part of the Infrastructure COO, the Infrastructure Divisional Control Office (IDCO) serves multiple functions within the infrastructure domain. It is a dedicated risk, control, and regulatory oversight function responsible for managing and proactively mitigating risks across the Technology and Infrastructure organization. The IDCO also provides a centralized view of non-financial risks, ensuring effective standards and policies are consistently implemented. The TDI Control Testing & Assurance team, a part of IDCO, is responsible for identifying, tracking, and reporting control testing and assurance activities. This team conducts independent controls testing on various risk types according to Control Testing Standards, with a focus on regulatory and risk-based assurance requirements. The Divisional Risk and Control Analyst will be part of this team. Key Responsibilities: - Conduct control testing in line with Control Testing methodology/minimum standards. - Identify control deficiencies, escalate potential issues to senior management, and prepare detailed workpapers documenting testing results. - Track and follow up on identified findings, ensuring compliance with regulatory and internal firm policy requirements. - Support controls assurance activities and monitor adherence to Control Testing methodology/minimum standards. - Build strong relationships with key stakeholders across different teams and divisions. Skills and Experience: - University degree in Computer Science, Mathematics, Engineering, or related fields. - Professional certifications such as CISA, CISSP, CISM, CRISC are beneficial. - Experience in Cloud Security audit/testing or related certifications like CCSP, CCSK would be advantageous. - Strong knowledge of IT application controls auditing, IT risk management, and financial regulations. - Excellent communication, organizational, and analytical skills with the ability to work under pressure and prioritize workload effectively. The role offers training, development, coaching, and support to help excel in the career. The culture promotes continuous learning, collaboration, and a range of flexible benefits tailored to individual needs. Deutsche Bank Group fosters a culture of empowerment, responsibility, commercial thinking, and collaboration. The company welcomes applications from diverse backgrounds, promoting a positive and inclusive work environment.,

At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture, and technology to become the best version of you. We're counting on your unique voice and perspective to help EY become even better. Join us and build an exceptional experience for yourself and contribute to creating a better working world for all. As a Manager in Risk Consulting - Protect Tech, specifically focusing on IT Risk Emerging Tech or Cloud, you will have the opportunity to embark on your next adventure. Are you a tech-savvy professional with a risk mindset passionate about leveraging people, technology, and innovation to build a better working world Our dynamic Risk Consulting - Technology Risk team offers an incredible opportunity for you to make a real impact in our rapidly evolving world. You will work in areas such as IT Risk Management, IT SOX, IT Regulatory Compliance, IT Audits, and IT and Digital Transformations, including ERP, Emerging Tech, and Cloud transformations. By enabling technology to better manage risk, you will collaborate with industry leaders to help transform businesses and address complex challenges with our clients. In this client-facing role within a rapidly growing practice, you will build relationships with key stakeholders, including management executives of globally recognized brands. This role provides a platform to deepen your understanding of complex business transactions, recommend solutions to pressing business challenges, and process inefficiencies. You will collaborate with our global professionals in multidisciplinary engagements to assist major global clients in transforming and sustaining business performance. Leveraging emerging technologies like AI and ML, you will develop and enhance new solutions, actively contributing to building multiple tools and assets for efficient and effective client delivery. By connecting with our market-leading global network, you will gain the experience necessary to excel as an IT Risk Advisor. Key responsibilities include supervising delivery, providing technical and project leadership to team members, building client relationships, delivering quality client services, and driving high-value work products within expected timeframes and budgets. You will monitor progress, manage risks, and ensure key stakeholders are informed about progress and expected outcomes. Additionally, you will understand clients" challenges and industry-related issues, participate in go-to-market activities, create proposals, respond to RFPs, and identify opportunities for cross-selling to current clients. You will travel to client locations for meetings, workshops, and knowledge-sharing sessions, jointly lead global account relationships, manage engagement deliveries, ensure quality, and drive the growth agenda on accounts. As a Manager, you will also manage a team of Seniors and Staff across geographies, foster an innovative and inclusive team-oriented work environment, and play an active role in counselling and mentoring junior consultants within the firm. To qualify for this role, you must have a bachelor's or master's degree and approximately 5-7 years of related work experience, with at least 3-4 years of experience in IT Risk Management focusing on Emerging Tech and Cloud. You should possess knowledge of strategic, IT, and business risks, control gaps, IT regulatory compliances, information security frameworks, IT general controls, IT application controls, business process controls, and risks during Digital Transformations and Cloud migrations. Your exposure to working in client-facing roles, collaborating with cross-functional teams, and strong communication, documentation, and report writing skills are essential. Relevant industry certifications such as CISA, CISM, CISSP, or CCSK are desirable. EY is dedicated to building a better working world by creating long-term value for clients, people, and society while fostering trust in the capital markets. Our diverse teams across over 150 countries leverage data and technology to provide trust through assurance, help clients grow, transform, and operate across various service lines. Join us in asking better questions to find new answers for the complex issues facing our world today.,

At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture, and technology to become the best version of you. And we're counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Risk Consulting - Protect Tech Senior - IT Cloud Risk The opportunity: your next adventure awaits. Are you a tech-savvy professional with a risk mindset who is passionate about building a better working world through the power of people, technology, and innovation We have an incredible opportunity for you to join our dynamic Protech Tech team and make a real impact in the rapidly evolving world we live in. Within Risk Consulting, you will focus on areas of IT Risk Management, IT SOX, IT Regulatory Compliance, IT Audits, IT and Digital Transformations (including ERP and Cloud transformations), while enabling technology to better manage risk. As a member of our team, you will have the chance to work with industry leaders and help transform businesses by tackling the most complex challenges with our clients. Key Responsibilities Your key responsibilities will include: - Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress, manage risk, and ensure key stakeholders are kept informed about progress and expected outcomes. - Foster relationships with client personnel to analyze, evaluate, and enhance information systems to develop and improve security at procedural and technology levels. - Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the client's business. - Demonstrate deep technical capabilities and professional knowledge. Demonstrate the ability to quickly assimilate new knowledge. Skills And Attributes For Success You will leverage your proven track record of IT Audit experience and strong personal skills to effectively deliver quality results in the assessment, design, and support implementation of controls, security, and IT risk solutions. To qualify for the role, you must have: - A bachelor's or master's degree and approximately 3-6 years of related work experience - At least 2-4 years of experience in IT Cloud risk - Good technical understanding of cloud platforms such as AWS, Azure, or Google Cloud, etc. - Identification of risks within Cloud transformations and migrations - Design of IT Controls framework, including internal controls such as IT general controls, IT application controls, interface controls - Experience implementing and supporting Cloud infrastructure - Strong exposure working in client-facing roles, collaborate with cross-functional teams including internal audits, IT security, and business stakeholders to assess control effectiveness and facilitate remediation activities - Excellent communication, documentation, and report writing skills - Professionals with Cloud certification such as CCSK, CCAK, etc., are preferred EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people, and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform, and operate. Working across assurance, consulting, law, strategy, tax, and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.,

Open Source COE Security Architect This role has been designed as Onsite with an expectation that you will primarily work from an HPE partner/customer office. Who We Are: Hewlett Packard Enterprise is the global edge-to-cloud company advancing the way people live and work. We help companies connect, protect, analyze, and act on their data and applications wherever they live, from edge to cloud, so they can turn insights into outcomes at the speed required to thrive in todays complex world. Our culture thrives on finding new and better ways to accelerate what’s next. We know varied backgrounds are valued and succeed here. We have the flexibility to manage our work and personal needs. We make bold moves, together, and are a force for good. If you are looking to stretch and grow your career our culture will embrace you. Open up opportunities with HPE. Job Description: HPE Operations is our innovative IT services organization. It provides the expertise to advise, integrate, and accelerate our customers’ outcomes from their digital transformation. Our teams collaborate to transform insight into innovation. In today’s fast paced, hybrid IT world, being at business speed means overcoming IT complexity to match the speed of actions to the speed of opportunities. Deploy the right technology to respond quickly to market possibilities. Join us and redefine what’s next for you. What you will do: Expert in IT/Cyber Security field. Should be CISSP/CISM/CCSP and CCSK and ISO27001 Certification are desired. Should have good knowledge of security assessment against different global Frameworks like NIST, MITRE and cloud security alliance etc. Should have good understanding of Compliance and regulatory requirements. Working with information security and DevSecOps teams in a CI/CD environment as well as comprehensive understanding of cloud security systems. Programming experience in C/C++, Python, JavaScript, Bash & PowerShell Scripting is desired. Hands-on expertise, Linux, Kernel, threads, processes, API etc. is desired. Provide Security Vision & Strategy to the Organization, strategic direction, development, and implementation of information security programs and projects to address risks relevant to the attainment of organizational strategic security goals based on open source tool/framework. Experience in advising leadership team regarding evolving of open source Security Technology landscape, product issues, security mitigations for identified risks and possible improvements Expertise in providing executive roadmaps for continual improvement in teams, technology, and processes, process across various security & DevSecOps teams based on open source tool/framework. Experienced in Information Security Risk Management, gap analysis, Audits. Hands-on Experience in formulating Cyber Security Policies, design and implementation of Security Technologies, DevSecOps. Working Knowledge in implementation of Cyber Security Solution in Open Source, Open Stack environment. Ability to provide strategies to increase the ability to withstand cyber-attacks, as measured by annual sophisticated attack simulations. Experience in upgrading, troubleshooting and tuning of Cyber Security Solutions. Thorough understanding and good knowledge of latest Cyber Security technologies, security Architectures, vulnerabilities, security threats. Ability to setup PoC for latest open source security solutions. Good understanding of Open-Source Technologies, Cloud security technologies. What you need to bring: BE/B.Tech with 10+ years of experience in the IT industry and 6+ years of experience in Information Security / Cyber Security field. Expert-level knowledge in the IT/Cyber Security field, with a thorough understanding of the latest security technologies, architectures, vulnerabilities, and threats. Desired certifications include CISSP, CISM, CCSP, CCSK, or ISO 27001. Strong knowledge of global security assessment frameworks like NIST, MITRE, and the Cloud Security Alliance (CSA). A deep understanding of compliance and various industry regulatory requirements. Proven experience in developing security vision, strategy, and executive roadmaps for an organization based on open-source tools. Hands-on experience in Information Security Risk Management, conducting gap analysis, managing audits, and formulating Cyber Security Policies. Comprehensive understanding of cloud security systems and working with DevSecOps teams in a CI/CD environment. Working knowledge of implementing, upgrading, troubleshooting, and tuning Cyber Security Solutions, particularly in Open Source and OpenStack environments. Desired programming and scripting experience in C/C++, Python, JavaScript, Bash, and PowerShell. Hands-on expertise with the Linux operating system, including its Kernel, threads, processes, and APIs. Experience advising leadership teams regarding the evolving security landscape, product issues, and risk mitigation strategies. Ability to provide strategies to withstand sophisticated cyber-attacks and experience with annual attack simulations. Proven ability to set up Proof of Concepts (PoCs) for new and emerging open-source security solutions. Additional Skills: Accountability, Accountability, Active Learning (Inactive), Active Listening, Bias, Business Growth, Client Expectations Management, Coaching, Creativity, Critical Thinking, Cross-Functional Teamwork, Customer Centric Solutions, Customer Relationship Management (CRM), Design Thinking, Empathy, Follow-Through, Growth Mindset, Information Technology (IT) Infrastructure, Infrastructure as a Service (IaaS), Intellectual Curiosity (Inactive), Long Term Planning, Managing Ambiguity, Process Improvements, Product Services, Relationship Building {+ 5 more} What We Can Offer You: Health & Wellbeing We strive to provide our team members and their loved ones with a comprehensive suite of benefits that supports their physical, financial and emotional wellbeing. Personal & Professional Development We also invest in your career because the better you are, the better we all are. We have specific programs catered to helping you reach any career goals you have — whether you want to become a knowledge expert in your field or apply your skills to another division. Unconditional Inclusion We are unconditionally inclusive in the way we work and celebrate individual uniqueness. We know varied backgrounds are valued and succeed here. We have the flexibility to manage our work and personal needs. We make bold moves, together, and are a force for good. Let's Stay Connected: Follow @HPECareers on Instagram to see the latest on people, culture and tech at HPE. #india #operations Job: Services Job Level: TCP_04 HPE is an Equal Employment Opportunity/ Veterans/Disabled/LGBT employer. We do not discriminate on the basis of race, gender, or any other protected category, and all decisions we make are made on the basis of qualifications, merit, and business need. Our goal is to be one global team that is representative of our customers, in an inclusive environment where we can continue to innovate and grow together. Please click here: Equal Employment Opportunity. Hewlett Packard Enterprise is EEO Protected Veteran/ Individual with Disabilities. HPE will comply with all applicable laws related to employer use of arrest and conviction records, including laws requiring employers to consider for employment qualified applicants with criminal histories.

Position Purpose A primary focus for this position will be to lead audit execution covering end-to-end processes of auditable entities within the IT and Cybersecurity Inspection Generale APAC team. Responsibilities This individual will work closely with audit assignment team members to complete each phase of the audit. This will entail: assessing the sufficiency and suitability of controls to mitigate risks; and testing the operating effectiveness and sustainability of controls; and documenting walk-throughs of in-scope processes; and documenting the investigations conducted and their results; and drafting findings and associated recommendations to address identified gaps in the control environment; and documenting the final report. This individual will have regular interactions with team members, process / control owners, and management of business units. Based on experience, this role will entail contributing to IT audits. Duties: Demonstrates a strong ability to audit procedures and controls accurately, timely, and with minimal supervision. Executes audit work in accordance with BNPP Inspection Generale policies and procedures. Testing the control design and operating effectiveness of in-scope IT controls Contributes to the completion of continuous monitoring activities for assigned auditable entities and escalates matters that may impact the timing of the next audit assignments. Prepares and updates risk assessments for assigned auditable entities for supervisory review. Validates the sufficiency and suitability of business corrective actions to address audit recommendations. May be asked to direct the work of more junior staff members on the audit assignments. Performs other duties as assigned. Technical Behavioral Competencies Deep knowledge of IT audit Requires deep knowledge of banking functions typically obtained through advanced education combined with experience. Exhibits effective written and verbal communication skills with all levels of management (in English) Not less than 10 years of experience in IT external auditing / internal auditing / in the financial services industry. Curiosity, rigor, and precision. Outstanding analytical skills High level of initiative, commitment, and drive Ability to work effectively under pressure and within short deadlines Promotes a constructive, cooperative, and participative teamwork environment Specific Qualifications (if required) Possess a Bachelors / Masters Degree in Information Technology/ Management Information System / Computer Science and related discipline; Professional Qualification/Certification: in IT Audit - CISA (Certified Information System Audit) required other IT certification: Cybersecurity (e.g CISSP, CISM, CCSP/CCSK, CEH), IT Service Management (ITIL foundation). Skills Referential Behavioural Skills : Communication skills - oral written Ability to collaborate / Teamwork Attention to detail / rigor Active listening Adaptability Transversal Skills: Analytical Ability Ability to manage a project Ability to manage / facilitate a meeting, seminar, committee, training Ability to understand, explain and support change Ability to anticipate business / strategic evolution Education Level: Master Degree or equivalent Experience Level At least 10 years

Some of your daily responsibilities would be the following: Analyze current asset management workflows and identify areas for automation. Develop and implement automation scripts and tools using programming languages (e.g., Python, PowerShell). Integrate asset management systems with other enterprise applications. Design and develop automation scripts and tools for identity provisioning, de-provisioning, and access management. Integrate identity management systems with other network infrastructure and applications. Create and maintain documentation for automation processes and scripts. Implement security best practices in automation processes. Ensure compliance with regulatory requirements and internal policies Implement automated discovery and inventory processes. Collaborate with internal teams and external auditors on compliance matters. Leverage industry proven tools to identify and reduce Cyber Risks Assist in Crisis Management, Ransomware Recovery and Business Continuity planning. Identify, investigate and resolve global security breaches / incidents Develop and maintain network and infrastructure security reporting dashboards and scorecards used to measure our Cyber Practice. What were looking for... You are passionate about network security and automation as a career. You are self-driven and motivated, with good communication and analytical skills. Youre a sought-after team member that thrives in a dynamic work environment. You will be working with multiple partners from the business groups, so networking and managing effective working relationships should be your top most priority. You have an understanding of industry trends in all areas of Information Security. You'll need to have some of the skills listed below: Bachelors degree or four or more years of work experience. Four or more years of relevant work experience. Four or more years of experience in network / information security, risk and compliance management. Understanding of network fundamentals, switching, routing protocols, load balancers, web proxies, firewalls and software defined networking solutions. Experience in handling enterprise scale server infrastructure & management Knowledge of Cloud infrastructure and technologies Proficiency in scripting languages (e.g., Python, Bash, PowerShell). Experience with network management tools and protocols (e.g., SNMP, Netconf). Knowledge of database management systems (e.g., SQL, NoSQL). Familiarity with API integrations and web services (REST, SOAP). Excellent analytical and problem-solving skills. Ability to manage multiple tasks and priorities in a fast-paced environment Understanding of security fundamentals Confidentiality, Integrity, Availability, access control, Authentication, Authorization, Auditing secure design concepts like Experience working on IT ticketing systems like JIRA, Service Now and ability to partner and collaborate with other teams in the organization Experience with hosting security awareness campaigns, gamification and bug bounty programs will be an added advantage Strong analytical problem solving, communication and interpersonal skills Passion to stay abreast with emerging technologies, network security trends, tools and techniques. Even better if you have one or more of the following: Masters degree in Computer Science / Information Technology Engineering Industry relevant security certifications Security+, OSCP, CEH, CISSP, GIAC, etc Strong expertise in at least one operating system Window or Linux. Cloud relevant certifications CCSP, CCSK

We are looking for a self-motivated Senior Cybersecurity Analyst to join the R1 Cybersecurity Operations Team. We have a relentless focus on driving results for our customers and enabling them to invest more into patient care; in turn, this allows us to continue to grow our company and your career. The successful candidate must be well-versed in security operations, cyber security tools, intrusion detection, and secured networks. They will serve as an expert and be responsible for providing network and security operations technical analysis, assessment, and recommendations in the areas of real-time security situational awareness, operational network system and applications systems security monitoring. Responsibilities: Monitor various security tools to identify potential incidents, network intrusions, and malware events, etc., to ensure the confidentiality, integrity, and availability of R1s architecture and information systems are protected. Generate trouble tickets and perform initial validation and triage to determine whether incidents are security events using open-source intelligence (OSINT). Review and analyze log files to report any unusual or suspect activities. Utilize incident response use-case workflows to follow established and repeatable processes for triaging and escalating. Follow established incident response procedures to ensure proper escalation, analysis, and resolution of security incidents. Analyze and correlate incident event data to develop preliminary root cause and corresponding remediation strategy. Provide technical support for new detection capabilities, recommendations to improve upon existing tools/capabilities to protect R1s network, and assessments for High Value Assets. Research Threat Intelligence sources on the latest malware, trends, patches to keep the Security Program up to date. Document and maintain SOPs/Runbooks related to investigating security incidents. Perform case management throughout the incident lifecycle for moderately complex security incidents. Understand and assist with compliance and enterprise change management policies and procedures. Attend and participate in cybersecurity projects and the change management process. This includes interacting with business units and technical teams to understand what is coming and how their projects can be more secure from the beginning. Maintain metrics & reports on the status of the R1 cybersecurity operations program. Required Qualifications: A bachelors degree in a technical discipline (e.g., Computer Science, Business Analyst, etc.) A minimum of 3-5 years of professional experience in an IT-related field. Intermediate knowledge of security, monitoring, and networking technologies, tools, protocols, and standards. Intermediate or advanced security, networking, or audit certification or equivalent professional experience in security operations. Knowledge of security policy, programs, process, and metrics. Understanding/Experience on Network Security, Firewall Security, and Web Security (including web application firewalls and proxies). Experience on SIEM, PIM, Content Filtering, and Firewalls. Experience on Change Management Review and Security Audits/Reviews. Understanding/Experience on Linux and pen testing tools. Experience on Investigating, documenting, and reporting on any information security (InfoSec) issues as well as emerging trends. Experience administering Security Tools. Experience Threat Hunting and searching for malicious activity. Strong drive and passion to deliver distinctive end-products, a quick learner with a strong attention to detail and quality. Excellent interpersonal and communication skills. Self-driven, with attention to detail and the ability to think outside the box for solutions to issues. Knowledge of IT Industry standards such as ISO 27001, HIPAA, SOX. Good knowledge of security programs, process, and metrics. Good knowledge of IT Security Infrastructure and related applications and toolsets. Examples include firewalls & Network, Active Directory, DNS. Desired Qualifications: Certification (or ability to obtain certification) in at least one of the following areas: General Security (CISSP), Cloud Security (GCLD, Cloud+, CCSK), and Ethical Hacking (CEH). Experience with advanced cybersecurity tools, network topologies, intrusion detection, and secured networks. In-depth understanding of NIST SP 800-61,?SOC 2 AICPA controls, and frameworks. Recent experience with static and/or dynamic code review process. Experience with forensic data analysis. Leadership experience and qualities.