52 Ccsp Jobs

Key Responsibilities • Lead and deliver cybersecurity risk assessments, security architecture reviews, and threat modeling for client engagements across multiple industries. • Develop and implement cybersecurity governance frameworks, including policies, controls, and compliance programs (ISO 27001, NIST, CIS, etc.). • Advise clients on cloud and application security strategies with a focus on secure design and regulatory compliance. • Oversee and mentor junior consultants in cyber risk assessment methodologies and best practices. • Interface with senior client stakeholders, providing consulting-level insights and recommendations to manage risks effectively. • Support business growth through solution development, proposal support, and client relationship management. • Stay abreast of emerging threats, security technologies, and regulatory requirements to provide forward-looking advisory services. Required Skills & Experience • 810 years of experience in cybersecurity consulting, risk management, and security architecture. • Strong track record in security architecture reviews, threat modeling, and risk assessments. • Solid knowledge of cloud security (AWS, Azure, GCP) and enterprise environments. • Hands-on experience in building or assessing governance, risk, and compliance (GRC) programs. • Strong understanding of industry frameworks and standards (NIST CSF, ISO 27001, PCI DSS, etc.). • Ability to engage with senior leadership and C-level executives with strong communication and presentation skills. Certifications • Mandatory: CISSP and/or CCSP (both preferred). • Additional preferred certifications: CISM, SABSA, AWS/Azure Security Specialty, or equivalent. Preferred Attributes • Prior experience with a Big 4 or top-tier consulting firm or equivalent consulting background. • Strong problem-solving, stakeholder management, and project delivery skills. • Ability to work across diverse clients, geographies, and industri

As a Tech Delivery & Op Excellence Practitioner, you understand how to deliver value to clients and apply methods or certifications appropriately. Your attention to detail and deep expertise allow you to see inherent risks or improvement opportunities that others may not. You work directly with client teams to ensure a high standard of delivery and operational excellence is met. Key responsibility: - Risk and Compliance senior Analyst works with the Application service delivery organization and other compliance related functions to help: - Perform audits/reviews to assess risks in Application development and maintenance service environment - Manage risk in Application development and maintenance service to an acceptable level - Increase awareness of and compliance with policy and process-related matters - Support successful completion of various external compliance certification programs and internal compliance assessments - Introduce continual improvement including lessons learned from matters requiring intervention - The successful candidate for this role will be a member of a dedicated team operating a Controls and Compliance function, performing audit-style reviews of Application Development & Maintenance Services outsourcing engagements covering compliance matters and operational service management and service delivery good practice. Must-Have Skills/Qualifications: - Minimum of 1-year experience in Auditing principles and practices (sample qualifications*: CISA, ISO 27001 Lead Auditor) - Minimum of 1-year experience in Application security/audit roles in Application development & maintenance service industry (sample qualifications*: EC-Councils CASE, CEH, Agile Methodology, DevOps Certification, CMMI for Development) - Knowledge of secure SDLC models, secure coding standards, OWASP Top 10, threat modeling, SAST, DAST, single sign-on, Encryption - Minimum of 1-year experience in Operational compliance requirements - Contract Management/Service Reporting (including Service Level Agreements and Operational Level Agreements) - Risk management or assessment (sample qualification*: CRISC) - Knowledge of cloud environment and services (sample qualification*: Microsoft Azure/AWS/Google Certifications) - Team and stakeholder management Nice-to-Have Skills/Qualifications: - Data privacy and protection (sample qualifications*: CIPM, CIPT, CIPP) - CISSP, CISM, CISA, CCSK, CCSP - SOC1 and SOC2 (SSAE16/ISAE3402) awareness - Business Continuity and Disaster Recovery awareness (ISO 22301) Professional Attributes: 1. Good communication 2. Teamwork 3. Problem-solving capabilities 4. Work planning and management 5. Quick learner 6. Eager to take on responsible tasks 7. Dedicated and focused Educational Qualification: 1. MBA-Information Security/IT 2. BE/B-Tech with CS/IT/related domain 3. BSc-IT Additional Information: - Occasional within-country travel - Flexibility in working hours - 15 years full-time education,

As a Senior Security Engineer at Adobe, you will be part of a global architecture and engineering team within Enterprise Security focused on securing access to Adobe data using Zero Trust best practices. Your responsibilities will include implementing a Zero Trust Solution, delivering access controls based on a zero trust strategy, and providing support to critical projects within the Enterprise Security organization. You will play a key role in enhancing the security posture for employees and data by researching, analyzing, troubleshooting, and supporting the delivery of security solutions aligned with team security strategies and key requirements. Your role will involve supporting the development and maturity of security services, policies, and standards to improve security posture. This includes creating clear documentation, proposing architectural standards, and leading programs to achieve security goals. You will collaborate with business units and vendor suppliers across Adobe to enhance their security posture and service architecture, as well as assist in evaluating and selecting security technologies in alignment with business partners and customers. To succeed in this role, you will need a Bachelor's degree in MIS, Computer Science, or Engineering, along with familiarity with Zero Trust solutions, Identity and Access Management technologies, and Public Cloud services. Knowledge of Web Application Security platforms, Single Sign-On, Authentication, Authorization, Federation Technologies, and Python will be beneficial. Excellent communication skills, certifications in Information Security and Cloud Technology, and the ability to work collaboratively and provide leadership within the organization are essential. We are seeking a highly skilled Senior Security Engineer to join our Global Enterprise Security Architecture team at Adobe. The ideal candidate will have extensive experience in leading large-scale security projects, driving Zero Trust initiatives, and advising on infrastructure security best practices. This role is crucial for supporting global enterprise security architecture efforts, enhancing corporate security authentication, and managing high-impact cybersecurity projects. Key Responsibilities include: - Providing leadership within the Enterprise Security Architecture & Engineering team and executing security initiatives across the organization. - Developing and implementing security solutions to address challenges in vendor security, corporate authentication, and cybersecurity risk management. - Advancing the organization's Zero Trust security model, setting standards, and implementing frameworks to secure digital assets. - Overseeing high-impact security projects, collaborating with stakeholders, and serving as a Trusted Advisor on infrastructure security best practices. If you require accommodation to navigate Adobe's website or complete the application process due to a disability or special need, please contact accommodations@adobe.com or call (408) 536-3015.,

Changing the world through digital experiences is what Adobe is all about. We give everyonefrom emerging artists to global brandseverything they need to design and deliver exceptional digital experiences. We are passionate about empowering people to craft beautiful and powerful images, videos, and apps, and transform how companies interact with customers across every screen. We are on a mission to hire the very best and are committed to building exceptional employee experiences where everyone is respected and has access to equal opportunity. We realize that new ideas can come from everywhere in the organization, and we know the next big idea could be yours. As a Senior Security Engineer at Adobe, you will be a part of a global architecture and engineering team within Enterprise Security dedicated to securing access to Adobe data using Zero Trust best practices. This role involves implementing a Zero Trust Solution at Adobe and delivering access controls based on a zero trust strategy. Additionally, you will be supporting other critical projects and services within the Enterprise Security organization focused on securing access and data. Your responsibilities will include researching, analyzing, troubleshooting, and supporting the delivery of security solutions aligned with team security strategies and key security requirements. You will also contribute to the development and enhancement of security services, policies, and standards to improve the security posture for employees and data. Collaborating with business units and vendor suppliers across Adobe, you will assist in improving security posture and service architecture, as well as help in the evaluation and selection of security technologies. To succeed in this role, you will need a Bachelor's degree in MIS, Computer Science, or Engineering, familiarity with Zero Trust solutions, Identity and Access Management technologies, and Public Cloud services. Knowledge of Web Application Security platforms, Single Sign On, Authentication, Authorization, Federation Technologies, and Python will be beneficial. Excellent communication skills, certifications in Information Security and Cloud Technology, strong interpersonal skills, and the ability to work collaboratively and build consensus across the organization are essential. We are seeking a highly skilled Senior Security Engineer to join our Global Enterprise Security Architecture team at Adobe. The ideal candidate will have significant experience leading large-scale security projects, driving Zero Trust initiatives, advising on infrastructure security best practices, and managing cybersecurity projects. This role is crucial for supporting global enterprise security architecture efforts and enhancing corporate security authentication. Key Responsibilities: - Provide leadership within the Enterprise Security Architecture & Engineering team, setting the strategy and executing security initiatives across the organization. - Act as a leader in advancing the organization's Zero Trust security model, setting standards, and implementing frameworks to secure digital assets across diverse environments. - Oversee high-impact, cross-functional security projects that align with the company's objectives, including vendor security management and global risk mitigation. - Serve as a Trusted Advisor on infrastructure security best practices, guiding teams on architecture decisions that align with our security roadmap. If you require an accommodation to navigate our website or complete the application process, please contact accommodations@adobe.com or call (408) 536-3015. Adobe values a free and open marketplace for all employees and has policies in place to ensure fair recruitment practices.,

The Divisional Risk and Control Analyst for TDI Control Testing & Assurance in Pune, India, plays a crucial role in ensuring the effective operation of infrastructure functions within the Infrastructure Chief Operating Office (COO). The primary focus is on driving operational efficiency while supporting the delivery of infrastructure services in alignment with business objectives and control requirements. The role involves overseeing the Infrastructure Divisional Control Office (DCO) and Trade Settlement and Confirmations Operations (TSCO). As part of the Infrastructure COO, the Infrastructure Divisional Control Office (IDCO) serves multiple functions within the infrastructure domain. It is a dedicated risk, control, and regulatory oversight function responsible for managing and proactively mitigating risks across the Technology and Infrastructure organization. The IDCO also provides a centralized view of non-financial risks, ensuring effective standards and policies are consistently implemented. The TDI Control Testing & Assurance team, a part of IDCO, is responsible for identifying, tracking, and reporting control testing and assurance activities. This team conducts independent controls testing on various risk types according to Control Testing Standards, with a focus on regulatory and risk-based assurance requirements. The Divisional Risk and Control Analyst will be part of this team. Key Responsibilities: - Conduct control testing in line with Control Testing methodology/minimum standards. - Identify control deficiencies, escalate potential issues to senior management, and prepare detailed workpapers documenting testing results. - Track and follow up on identified findings, ensuring compliance with regulatory and internal firm policy requirements. - Support controls assurance activities and monitor adherence to Control Testing methodology/minimum standards. - Build strong relationships with key stakeholders across different teams and divisions. Skills and Experience: - University degree in Computer Science, Mathematics, Engineering, or related fields. - Professional certifications such as CISA, CISSP, CISM, CRISC are beneficial. - Experience in Cloud Security audit/testing or related certifications like CCSP, CCSK would be advantageous. - Strong knowledge of IT application controls auditing, IT risk management, and financial regulations. - Excellent communication, organizational, and analytical skills with the ability to work under pressure and prioritize workload effectively. The role offers training, development, coaching, and support to help excel in the career. The culture promotes continuous learning, collaboration, and a range of flexible benefits tailored to individual needs. Deutsche Bank Group fosters a culture of empowerment, responsibility, commercial thinking, and collaboration. The company welcomes applications from diverse backgrounds, promoting a positive and inclusive work environment.,

As a Security Lead at Big Data Exchange (BDX), you will play a crucial role in providing security incident response and readiness within a 24x7 Security Operations Centre supporting the IT Infrastructure and Operations team. Your responsibilities will include managing security incidents, responding to operational incidents, coordinating incident responses, and developing incident response playbooks and procedures. You will be responsible for supporting global vulnerability management processes, conducting regular vulnerability assessments, collaborating with IT teams to implement security patches, and validating updates. Additionally, you will manage the Total Cost of Ownership for security solutions, operate various security tools such as HIDS, NIDS, IPS, analysers, and scanners, and monitor and analyze security tools to identify threats and vulnerabilities. Your role will involve assisting in the identification and evaluation of security threats and vulnerabilities, conducting in-depth analysis of security events, and providing recommendations for mitigation and remediation solutions. You will also be required to participate in industry cyber forums, support audits and reviews, and stay updated on developments in the information security industry. To excel in this role, you should have a proven track record in managing technical resources, relevant information security experience, solid knowledge of cloud technologies, and familiarity with cloud security architecture and operations. You must also possess experience with SecDevOps principles, Security Automation and Orchestration, and industry best-practice approaches to IT systems design and management. Strong communication skills, both written and verbal, are essential for effectively communicating with senior management and technical/non-technical audiences. A relevant University degree in Computer Science, Information Management, or a related field, or equivalent experience is a must. Additionally, holding certifications such as CISSP, CCSP, or other relevant cyber security certifications is advantageous. For this role, essential competencies and behavioral skills include a Bachelor's degree in computer science, at least 10 years of relevant experience in cyber security, knowledge of information technology operation, cyber security assessment, cyber security products, and market best practices and frameworks. Certification in cyber security and project management is desirable for this position. Big Data Exchange (BDX) offers a dynamic environment where you can contribute to the security operations and incident response functions while staying abreast of the latest developments in the information security industry. Join us in our mission to provide mission-critical infrastructure for Enterprise IT workloads and support digital transformations and sustainability.,

As a Security Delivery Associate Manager at Accenture, you will be part of the Technology for Operations team, serving as a trusted advisor and partner to Accenture Operations. Your role will involve providing innovative and secure technologies to assist clients in building an intelligent operating model that drives exceptional results. Collaborating closely with the sales, offering, and delivery teams, you will identify and develop innovative solutions to meet client needs. Your responsibilities will include establishing and maintaining a security governance framework, supporting management structures and processes to ensure information security strategies align with business objectives and comply with relevant laws and regulations. By adhering to policies and internal controls, assigning responsibilities, defining metrics, and reporting, you will help manage risk and compliance requirements effectively. We are seeking a candidate with a commitment to quality, experience in research and development, strong negotiation skills, effective problem-solving abilities, and proficiency in risk management. The ideal candidate will possess in-depth knowledge in application security, hands-on experience in SAST, DAST, and penetration testing, as well as familiarity with DevSecOps and Software Composition Analysis. Additionally, expertise in scripting using Python, database knowledge, networking skills, and certifications such as CISSP, CCSP, CISM, CEH, and ECSA would be advantageous. In this role, you will analyze and resolve moderately complex problems, create new solutions by adapting existing methods and procedures, and align your work with the strategic direction set by senior management. Your primary interactions will be with your direct supervisor or team leads, as well as peers and management levels within Accenture and client organizations. You should be able to work independently on new assignments with minimal guidance, making decisions that impact your team and occasionally other teams. If in a leadership role, you may manage medium-sized teams or work efforts at a client or within Accenture. Please be aware that this position may involve working in rotational shifts.,

Cloud Security Architecture : - Asses, help in design and development of AWS, Azure and AWS security architectures for protecting PII/PCI data deployed into different types of cloud and cloud/hybrid systems. - Improve the security around cloud-based applications, across all types (including Infrastructure, Platform, and Software as a Service (IaaS/PaaS/SaaS). - Work part of Cyber team for Enterprise Security for other Technology teams and Vendors within the organisation for all matters related to cloud security. - Implement NIST framework on cloud-native architectures to mitigate the risk to Organisation PII, PCI data and with appropriate security controls present. - SSDLC Embed Security practices in development and implementation of the overall enterprise cloud architecture to ensure Secure Software Development Lifecycle. - Enhance/redesign existing cyber standards in partnership with Engineering, Infrastructure Services, and Application Development. - Act as the ambassador and senior technical representative to Lead initiatives designed to share knowledge across Security Platforms and/or Technology teams, identify, recommend, coordinate and deliver timely knowledge to support teams regarding technologies, processes or tools. - Ensures the effective translation of the security architecture is implemented into the solutions. - Assist to evaluate all the new initiatives/solutions (including Cloud) with the design recommendations and work with project managers and architects during implementation. - SAP GRC / AC 12 experience is good to have. New Technology & Risks : - Evaluate and recommend tools and solutions to enhance the security posture of the Enterprise. - Maintain contact with vendors regarding security system updates and technical support of security products. - Perform cost-benefit and risk analysisAnalyzes business impact and exposure, based on emerging security threats, vulnerabilities and risks. Measures of Success : - Product/services are cyber compliant and risk reduced to minimal or zero. - Successful implementation/ adoption of any new solution, technology or framework. - Timely and inbudget delivery of security projects specifications within time and budget. Technical Skills / Experience / Certifications : - CCSP certification is mandatory, Any among like TOGAF, SABSA, OSCP or python certification is preferred. - Knowledge of enterprise IT Systems, infrastructure and security technologies. - Knowledge of Information Security Standards like ISO 27001, PCI-DSS, NIST CSF, CSA framework etc. - Working knowledge of common and industry standard cloud-native/cloud-friendly authentication mechanisms (OAuth, OpenID, etc. - Experience with deployment orchestration, automation, and security configuration management (Jenkins, Puppet, Chef, etc.) preferred. - Experience architecting solutions within Amazon Web Services (AWS), Azure, Google Cloud Platform (GCP), VMware NSX, Oracle etc. - Experience with assessment, development, implementation, optimization, and documentation of a comprehensive and broad set of security technologies and processes such as secure software development, Application Security, data protection, cryptography, key management, identity and access management (IAM), network security) within SaaS, IaaS, PaaS, and other cloud environments. - Experience working with cloud security and governance tools, cloud access security brokers (CASBs), and server virtualization technologies. - Experience performing threat modeling and design reviews to assess security implications and requirements for introduction of new technologies. - SAP GRC / AC 12 experience is good to have.

Your role We are seeking an experienced and highly motivated Cloud Security Engineer to lead the implementation and optimization of security solutions across our public and hybrid cloud infrastructure. This role requires hands-on expertise in Microsoft Defender for Cloud, Cloud Access Security Broker (CASB), Cloud Workload Protection Platforms (CWPP), and Cloud Security Posture Management (CSPM) tools. The ideal candidate will be responsible for ensuring robust visibility, security, and compliance across all cloud-native assets, workloads, and applications. Design, deploy, and manage cloud-native security architectures across Azure, AWS, and GCP environments. Implement and optimize Microsoft Defender for Cloud, CASB solutions, and CWPP/CSPM tools to secure cloud workloads and assets. Monitor cloud environments for anomalies, vulnerabilities, and potential threats. Ensure compliance with regulatory standards (e.g., ISO, NIST, GDPR, HIPAA) and internal security policies. Conduct risk assessments and threat modeling of cloud services and applications. Collaborate with DevOps and Cloud Engineering teams to embed security into CI/CD pipelines. Develop automated security alerts, incident responses, and logging mechanisms. Provide recommendations for cloud architecture adjustments to strengthen security posture. Create and maintain documentation for cloud security strategies, policies, and procedures. Your profile Hands-on experience with Microsoft Defender for Cloud and CASB solutions (e.g., Microsoft Defender for Cloud Apps). Proven expertise with CWPP and CSPM platforms (e.g., Prisma Cloud, Wiz, Microsoft Defender CSPM). Strong understanding of cloud platforms Azure, AWS, GCP. Proficiency in scripting languages (e.g., PowerShell, Python) and infrastructure-as-code (e.g., Terraform, ARM templates). Knowledge of cloud security frameworks and best practices. Familiarity with SIEM solutions and cloud-native logging (e.g., Azure Monitor, AWS CloudWatch). Relevant certifications (e.g., Microsoft CertifiedAzure Security Engineer Associate, CISSP, CCSP, AWS Certified Security Specialty) are highly preferred. Excellent communication skills and stakeholder management experience.

AWS Security Architecture & Strategy: Design and implement comprehensive security architectures for Redaptive's AWS cloud environments Develop cloud security roadmaps aligned with business objectives and compliance requirements Establish security standards, policies, and procedures for AWS deployments Evaluate and recommend security enhancements to strengthen the cloud security posture Lead security aspects of cloud migration initiatives and new AWS service adoptions Implement zero-trust security principles in cloud architecture designs Provide expert guidance on AWS security best practices to stakeholders across the organization Establish metrics to measure the effectiveness of cloud security controls Security Automation & CI/CD Integration: Develop and maintain security as code implementations for AWS environments Integrate security controls and checks into CI/CD pipelines Automate security scanning, compliance verification, and remediation processes Implement infrastructure as code (IaC) security practices for AWS CloudFormation and Terraform Create automated security testing frameworks for cloud resources Develop custom security rules and policies for automated enforcement Collaborate with DevOps teams to ensure security requirements are met throughout the development lifecycle Design and implement automated incident response playbooks for cloud security events Cloud Security Monitoring & Operations: Configure and manage cloud security monitoring solutions including AWS Security Hub, GuardDuty, and CloudTrail Implement and tune cloud-native SIEM solutions for comprehensive security visibility Develop and maintain cloud security dashboards and reporting mechanisms Perform advanced cloud security investigations and threat hunting Respond to and remediate cloud security incidents Conduct cloud security posture assessments and vulnerability management Implement and manage cloud security logging and audit mechanisms Develop and maintain cloud security incident response procedures Identity & Access Management: Design and implement AWS IAM policies, roles, and permission boundaries following least privilege principles Develop automated solutions for identity lifecycle management in cloud environments Implement and manage privileged access management for AWS resources Configure and maintain AWS Single Sign-On and federation with corporate identity providers Design and implement secure service-to-service authentication mechanisms Conduct regular access reviews and implement automated compliance checks Develop and maintain IAM security frameworks and governance processes Implement automated detection and remediation of IAM policy violations Compliance & Risk Management: Ensure AWS environments meet relevant regulatory requirements and industry standards (e.g., SOC 2, ISO 27001, NIST) Develop and implement cloud security compliance frameworks and controls Perform cloud security risk assessments and develop risk treatment plans Technical Skills AWS Security Architecture & Strategy: Design and implement comprehensive security architectures for Redaptive's AWS cloud environments Develop cloud security roadmaps aligned with business objectives and compliance requirements Establish security standards, policies, and procedures for AWS deployments Evaluate and recommend security enhancements to strengthen the cloud security posture Lead security aspects of cloud migration initiatives and new AWS service adoptions Implement zero-trust security principles in cloud architecture designs Provide expert guidance on AWS security best practices to stakeholders across the organization Establish metrics to measure the effectiveness of cloud security controls Security Automation & CI/CD Integration: Develop and maintain security as code implementations for AWS environments Integrate security controls and checks into CI/CD pipelines Automate security scanning, compliance verification, and remediation processes Implement infrastructure as code (IaC) security practices for AWS CloudFormation and Terraform Create automated security testing frameworks for cloud resources Develop custom security rules and policies for automated enforcement Collaborate with DevOps teams to ensure security requirements are met throughout the development lifecycle Design and implement automated incident response playbooks for cloud security events Cloud Security Monitoring & Operations: Configure and manage cloud security monitoring solutions including AWS Security Hub, GuardDuty, and CloudTrail Implement and tune cloud-native SIEM solutions for comprehensive security visibility Develop and maintain cloud security dashboards and reporting mechanisms Perform advanced cloud security investigations and threat hunting Respond to and remediate cloud security incidents Conduct cloud security posture assessments and vulnerability management Implement and manage cloud security logging and audit mechanisms Develop and maintain cloud security incident response procedures Identity & Access Management: Design and implement AWS IAM policies, roles, and permission boundaries following least privilege principles Develop automated solutions for identity lifecycle management in cloud environments Implement and manage privileged access management for AWS resources Configure and maintain AWS Single Sign-On and federation with corporate identity providers Design and implement secure service-to-service authentication mechanisms Conduct regular access reviews and implement automated compliance checks Develop and maintain IAM security frameworks and governance processes Implement automated detection and remediation of IAM policy violations Compliance & Risk Management: Ensure AWS environments meet relevant regulatory requirements and industry standards (e.g., SOC 2, ISO 27001, NIST) Develop and implement cloud security compliance frameworks and controls Perform cloud security risk assessments and develop risk treatment plans Nice-to-have skills Experience with multi-cloud security strategies and implementations Knowledge of regulatory compliance requirements relevant to cloud environments Experience with container security (Docker, Kubernetes, ECS, EKS) Background in implementing Zero Trust architecture in AWS environments Experience with AWS automated incident response and remediation Knowledge of cloud-native security tools and platforms Experience with Hashicorp Vault or similar secrets management solutions Background in implementing security for data lakes and analytics platforms Experience with cloud workload protection platforms (CWPP) Knowledge of serverless security best practices Experience with cloud security in the energy efficiency or sustainability industries Background in threat modeling for cloud architectures Experience working with global teams and offshore development models Qualifications Bachelor's degree in Cybersecurity, Computer Science, or related field; Master's degree preferred Minimum of 7+ years of experience in cybersecurity, with at least 5 years focused on cloud security Advanced expertise with AWS security services including GuardDuty, Security Hub, IAM, KMS, and CloudTrail Strong understanding of cloud security frameworks (AWS Well-Architected Framework, NIST CSF, CSA CCM) Hands-on experience implementing security controls in CI/CD pipelines Expert knowledge of infrastructure as code (IaC) security for AWS CloudFormation and/or Terraform Experience with cloud security posture management (CSPM) tools and processes Strong understanding of identity and access management principles in cloud environments Experience with automated security testing and continuous security validation Proficiency in scripting and programming (Python, Bash, etc.) for security automation Excellent understanding of network security, containerization security, and serverless security In-depth knowledge of DevSecOps principles and practices Excellent written and verbal communication skills Relevant security certifications (AWS Certified Security - Specialty, CCSP, CISSP, or equivalent)

We are looking to hire 4 Project Managers. 3 of these roles are remote with occasional travel to the Bengaluru office whereas 1 role would be onsite in Bengaluru. The client is based out of the US so some overlap with the US timings would be required. There will be strict background checks conducted on all candidates to prevent any possibility of moonlighting. Project Manager Rapid Hardware & Product Development Drive complex, fast-cycle engineering projects from concept to realityowning schedule, cost, risk, and cross-functional coordination to launch innovative instruments on time, on budget, and in full regulatory compliance. Your leadership keeps velocity high and surprises low. ROLE SNAPSHOT Location / schedule: Remote Purpose: Lead rapid-cycle hardware programs from concept to production KEY RESPONSIBILITIES Track every Bill of Material (BOM) line; flag swaps or change requests that threaten cost ceilings Maintain a live risk register and launch early mitigations (dual vendors, spares, prototypes) Orchestrate hardware, firmware, AI, QA, supply-chain & regulatory teams to hit each gate on time Run weekly micro-stand-ups, bi-weekly exec decks, and real-time dashboardsno surprises Blend 12-week sprints inside formal phase gates (design-freeze pilot release) Monitor lead-times daily; expedite parts, secure backups, or lease demo units to keep momentum Version-control charters, gate minutes, BOM snapshots & retrospectives in SharePoint/S3 for instant traceability MUST-HAVE QUALIFICATIONS PMP + Lean Six Sigma Green Belt (or equivalent cost-control credential) 7+ years leading $5 M hardware programs delivered inside six months Proven record holding cross-functional teams to fixed-cost BOM targets Hands-on with Azure DevOps Boards/Dashboards, SharePoint & basic Power BI Working knowledge of CLIA, 21 CFR 11, and IQ/OQ/PQ processes Ownership mindset, transparent “signal-rich” communication, proactive risk management PREFERRED QUALIFICATIONS SAFe Agilist or POPM certification ASQ CQE or GAMP 5 credential PMI-RMP or APICS CPIM/CSCP certification

environmental, pharmaceutical and cosmetic product testing and in AgroScience CRO services. It is also one of the global independent market leaders in certain testing and laboratory services for genomics, discovery pharmacology, forensics, CDMO, advanced material sciences and in the support of clinical studies. The primary focus at EITSI is to develop the next generation LIMS (Lab Information Management system), Customer portals, e-commerce solutions, ERP/CRM system, Mobile Apps & other B2B platforms for various Eurofins Laboratories and businesses. Young and dynamic, we have a rich culture, and we offer fulfilling careers. Job Title Information Security Consultant "“ Cloud Security Reporting to Manager Reporting Location Bangalore We are looking for a motivated Cloud Security Consultant to join our team, focusing on Cloud-Native Application Protection Platform (CNAPP) technologies . The main focus area will be Cloud Secure Posture . The ideal candidate will possess deep expertise in scaled virtual systems and security technologies and be capable of maintaining and enhancing our application security posture through proactive operational management, effective communication, and continuous learning. You will be responsible for: Operational IntegrityMaintain the operational integrity of CNAPP and related tool sets and process, ensuring configurations are up to date and optimized, and escalating issues appropriately., Risk and Threat AnalysisProvide thorough analysis of risks and threats, suggesting and implementing potential remediations - Providing necessary information and guidance to IT Technology Owners, - Monitoring remediation actions. Business UnderstandingGather and incorporate an understanding of business-relevant factors impacted by security toolsets. Security AdvocacyPromote security awareness among relevant stakeholders and best practices throughout the organization. You will have the ability to continuously learn about technologies and associated vulnerabilities, practice interactions with IT stakeholders and get detailed understanding of corporate processes (e.g. IT Change Management, Software Development). SPECIFIC ASSIGNMENTS: You will be working on running the Cloud-Native Application Protection Platform. You will be responsible for maintaining and elevating the security across our cloud environments. The main goal of this role is to reduce risk while allowing the business to operate quickly, safely, and efficiently. If you are motivated and passionate about cloud security architecture and operations, this could be the ideal role for you. Your role is strategic for the organization "“ running the CNAPP is key to secure the Company, build strong layer of defense and improve Company"™s security posture! Technical details, leading security products, industry best practices, guidelines - you will be working with them on day-to-day basis to grow your security skills and improve Eurofins IT environment. Qualifications If you have: - Educational background in IT or Information Security and, - 4+ years of experience with public cloud providers (Azure, AWS, GCP) involving cloud security architecture. - Experience in Kubernetes - Previous experience in Security (at least 7+ years) we are looking for you! Willingness to learn and motivation to act towards the achievable goal is key for us! On the role of Cloud Security Consultant, you can utilize your technical skills: Understanding of various Cloud Service Providers (CSP); Assessing and evaluating cloud-policies; Utilizing CVEs, collecting and processing information from vulnerability databases; Experience using CI/CD pipelines for change management and automated security testing; Working with leading industry products and services (e.g. Wiz, ServiceNow); Added advantage if candidate has CISSP/CCSP/Any cloud security or architecture certification; As you'll be working in an international environment, your English needs to be excellent . You have to be an effective communicator (both to technical and non-technical professionals), convincing that your concepts are relevant and important for the whole organization. Other skills you'll need are orientation on details, team collaboration, problem solving. Additional Information What we can offer: Very attractive, multicultural and friendly work environment in fast-growing international company (more than 50 000 employees now); Possibility to grow and make the next step in your professional career and self-development; Long-term relationship and competitive salary package;

Qualcomm India Private Limited is a leading technology innovator, pushing the boundaries of what's possible to enable next-generation experiences and driving digital transformation to help create a smarter, connected future for all. As a Qualcomm Software Engineer, you will be responsible for designing, developing, creating, modifying, and validating embedded and cloud edge software, applications, and specialized utility programs. Your work will contribute to launching cutting-edge, world-class products that meet and exceed customer needs. Collaboration with systems, hardware, architecture, test engineers, and other teams is essential to design system-level software solutions and obtain information on performance requirements and interfaces. Minimum Qualifications: - Bachelor's degree in Engineering, Information Systems, Computer Science, or a related field. Skills/Experience: - 1-3 years of proficiency in C/C++ Programming. - Strong understanding of Networking concepts, particularly with L3/L4 (Layer 3/Layer 4) experience. - Exposure to RDKB (Reference Design Kit for Broadband) and prplWRT middleware platforms is a plus. - RDKB experience with Yocto-based builds, CCSP (Common Component Software Platform) layer, and Gateway Apps. - prplWRT familiarity with OpenWRT-based builds, TR-181 Managers, netmodel, Configuration management with ODL, and modular network APIs. Responsibilities: - Development: Engage in the design and implementation of network stack components. - Unit Testing: Conduct thorough unit testing to ensure the reliability and performance of the developed components. - On Target Verification: Perform verification on target devices to validate the functionality and integration of the network stack. - RDKB and prplWRT Specific Tasks: Implement and optimize network stack components using RDKB and prplWRT frameworks. Integrate and test features such as Modem Manager, LibQMI, and other prpl feeds. Education Requirements: BE/MTech/MS in a relevant field. Qualcomm is an equal opportunity employer committed to providing accessible processes for individuals with disabilities. Reasonable accommodations are available for individuals needing support during the application/hiring process. Employees are expected to abide by all applicable policies and procedures, including security and confidentiality requirements. For more information about this role, please contact Qualcomm Careers.,

Job Purpose/Summary : - Evaluate and enhance the performance of SIEM/SOAR systems to ensure optimal threat detection and incident response. - Develop and maintain automation scripts and playbooks to streamline incident detection, analysis, and response processes. Leverage SOAR capabilities to reduce manual intervention and improve response times. - Oversee the day-to-day administration of SIEM/SOAR platforms, ensuring their availability, reliability, and security. Perform regular updates, patches, and configuration changes. - Collaborate with the Incident Response team to ensure seamless integration of detection and response functions. Provide support during security incidents to ensure timely and effective remediation. - Work closely with other IT and security teams to develop specific use cases and to enhance the overall security posture of the organization. Share insights and recommendations to improve overall cybersecurity posture. - Maintain detailed documentation of automation, scripts, and improvement. - Manage execution of standard procedures for the administration, content management, change management, version/patch management, and lifecycle management of the SIEM/SOAR platforms. - Manage technical documentation around the content deployed to the SIEM/SOAR. - Manage reports, dashboards, metrics for CyberSOC KPIs and presentation to senior management & other stakeholders. Qualification: - Bachelor's degree in Computer Science, Information Security, EXTC or related field. - Relevant certifications (e.g., CISSP, CCSP, CompTIA Security+) are highly desirable. - Proven experience (3+ years) working within the Cybersecurity field, with a focus on security platform implementation & administration. - Experience with deploying and managing a large SIEM/SOAR environment. - Experience with Palo Alto XDR and/or other SIEM platforms like Sentinel, Qradar, Splunk, ArcSight, etc. - Experience with Palo Alto XSOAR and/or equivalent SOAR Platforms like Resilient, Phantom, etc. - Proficiency in scripting languages (e.g., Python, Bash) for automation and customization of security processes is highly desirable.

Cybersecurity Engineer + Analyst (Hybrid Chandigarh / Mohali) Infinity Healthcare Solutions, LLC is expanding its cybersecurity operations and is actively seeking a highly skilled and motivated Cybersecurity Engineer + Analyst to join our team. This role is designed for professionals who bring both deep technical engineering expertise and analytical skills to secure enterprise infrastructure, identify vulnerabilities, and respond to evolving cyber threats. This position will work at the intersection of IT security architecture, incident response, risk management, and compliance operations to ensure the security and integrity of our organizations data and systems. Key Responsibilities: Security Operations & Monitoring: Monitor infrastructure, networks, and cloud environments using SIEM tools (e.g., Splunk, Microsoft Sentinel) Identify, investigate, and respond to real-time alerts and security incidents Analyze logs and network traffic to detect anomalies and unauthorized activities Perform deep-dive forensic analysis and root cause investigations on security events Incident Response & Threat Management Lead and execute end-to-end incident response processes including containment, eradication, and recovery Maintain incident response playbooks, runbooks, and documentation for various threat scenarios Collaborate with cross-functional teams to remediate vulnerabilities and improve incident readiness Stay up to date with the latest threats, vulnerabilities, zero-day exploits, and malware campaigns Security Engineering & Hardening Manage and configure endpoint protection, firewalls, IDS/IPS, and other security controls Assist in the secure deployment and configuration of cloud environments (AWS, Azure, GCP) Evaluate and implement security tools and automation for risk mitigation Apply industry best practices to harden systems and reduce attack surfaces Governance, Risk & Compliance Perform routine risk assessments, internal security audits, and gap analysis Ensure adherence to regulatory and compliance standards: ISO 27001, NIST, SOC 2, GDPR Support internal and external audits by preparing documentation and evidence Develop and maintain security policies, procedures, and technical documentation IAM & Access Controls Manage Identity and Access Management (IAM), including user provisioning, role-based access, MFA Enforce least privilege and zero-trust principles across all systems and environments Required Qualifications: Bachelors degree in Cybersecurity, Computer Science, Information Technology, or a related field Minimum 3 years of hands-on experience in cybersecurity operations, security engineering, or threat analysis Proficient with SIEM, IDS/IPS, EDR, antivirus, and endpoint security platforms Solid understanding of network protocols, firewalls, routing, and segmentation Practical knowledge of security for cloud platforms (AWS, Azure, or GCP) Experience working with IAM, RBAC, MFA, VPNs, and secure access controls Strong documentation and reporting skills; ability to communicate technical issues clearly Preferred Skills & Tools: Familiarity with MITRE ATT&CK, CIS Controls, OWASP Top 10 Experience using tools such as Wireshark, Nmap, Nessus, CrowdStrike, Qualys Scripting or automation experience (e.g., PowerShell, Python, Bash) is a plus Familiarity with DevSecOps practices is desirable Preferred Certifications (Any): CEH Certified Ethical Hacker CompTIA Security+ CISSP Certified Information Systems Security Professional CISA, CISM, or other GIAC certifications Why Join Us: Opportunity to work in a security-first environment with global impact Collaborative, forward-thinking team culture Exposure to enterprise-grade cloud security architecture and compliance frameworks Career development.

Auditing and reviewing medical documentation for appropriate ICD and CPT coding and ensuring that codes tally with doctors diagnosis Asking explanation from physicians when code assignments are not straightforward or documentation in the record is inadequate, ambiguous, or unclear for coding purposes Ensuring compliance with medical coding policies and guidelines Be updated about new coding rules as codes change from time to time Collecting and distributing coding related information and billing issues Exceptional Knowledge of medical terminology, anatomy, physiology, disease processes, and pharmacology Work as part of a team and achieve the team quality and productivity standards Required Expertise & Qualification: Life Science graduation or any equivalent graduation with Anatomy/Physiology as main subjects 3 to 5 years of work experience as a medical coder Any one of the following coding certifications CPC, COC, CRC, CPCP from AAPC CCS, CCSP, CCA from AHIMA Proficient computer skills Excellent communication skills, both verbal and written Strong people skills & Outstanding organizational skills Ability to maintain the confidentiality of information

Auditing and reviewing medical documentation for appropriate ICD and CPT coding and ensuring that codes tally with doctors diagnosis Asking explanation from physicians when code assignments are not straightforward or documentation in the record is inadequate, ambiguous, or unclear for coding purposes Ensuring compliance with medical coding policies and guidelines Be updated about new coding rules as codes change from time to time Collecting and distributing coding related information and billing issues Exceptional Knowledge of medical terminology, anatomy, physiology, disease processes, and pharmacology Work as part of a team and achieve the team quality and productivity standards Required Expertise & Qualification: Life Science graduation or any equivalent graduation with Anatomy/Physiology as main subjects 3 to 5 years of work experience as a medical coder Any one of the following coding certifications CPC, COC, CRC, CPCP from AAPC CCS, CCSP, CCA from AHIMA Proficient computer skills Excellent communication skills, both verbal and written Strong people skills & Outstanding organizational skills Ability to maintain the confidentiality of information

Extracting relevant information from patient records. Examining documents for missing information. Assigning CPT, HCPCS, ICD to9/ICD10CM, APC, DRG and ASA codes. Ensuring documents are grammatically correct and free from typing errors. Performing chart audits. Informing supervisor of issues with equipment and computer program. Ensuring compliance with medical coding policies and guidelines. Ensuring that codes tally with doctors diagnosis Be updated about new coding rules as codes change from time to time Collecting and distributing coding related information and billing issues. Required Expertise & Qualification: Life Science graduation or any equivalent graduation with Anatomy/Physiology as main subjects 2.6 to 4 years of work experience as a medical coder. Any one of the following coding certifications CPC, COC, CRC, CPCP from AAPC CCS, CCSP, CCA from AHIMA Proficient computer skills. Excellent communication skills, both verbal and written. Strong people skills & Outstanding organizational skills. Ability to maintain the confidentiality of information.

Extracting relevant information from patient records. Examining documents for missing information. Assigning CPT, HCPCS, ICD to9/ICD10CM, APC, DRG and ASA codes. Ensuring documents are grammatically correct and free from typing errors. Performing chart audits. Informing supervisor of issues with equipment and computer program. Ensuring compliance with medical coding policies and guidelines. Ensuring that codes tally with doctors diagnosis Be updated about new coding rules as codes change from time to time Collecting and distributing coding related information and billing issues. Required Expertise & Qualification: Life Science graduation or any equivalent graduation with Anatomy/Physiology as main subjects 2.6 to 4 years of work experience as a medical coder. Any one of the following coding certifications CPC, COC, CRC, CPCP from AAPC CCS, CCSP, CCA from AHIMA Proficient computer skills. Excellent communication skills, both verbal and written. Strong people skills & Outstanding organizational skills. Ability to maintain the confidentiality of information.

A primary focus for this position will be to lead audit execution covering end-to-end processes of auditable entities within the IT and Cybersecurity Inspection Generale APAC team. Responsibilities This individual will work closely with audit assignment team members to complete each phase of the audit. This will entail: assessing the sufficiency and suitability of controls to mitigate risks; and testing the operating effectiveness and sustainability of controls; and documenting walk-throughs of in-scope processes; and documenting the investigations conducted and their results; and drafting findings and associated recommendations to address identified gaps in the control environment; and documenting the final report. This individual will have regular interactions with team members, process / control owners, and management of business units. Based on experience, this role will entail contributing to IT audits. Duties: Demonstrates a strong ability to audit procedures and controls accurately, timely, and with minimal supervision. Executes audit work in accordance with BNPP Inspection Generale policies and procedures. Testing the control design and operating effectiveness of in-scope IT controls Contributes to the completion of continuous monitoring activities for assigned auditable entities and escalates matters that may impact the timing of the next audit assignments. Prepares and updates risk assessments for assigned auditable entities for supervisory review. Validates the sufficiency and suitability of business corrective actions to address audit recommendations. May be asked to direct the work of more junior staff members on the audit assignments. Performs other duties as assigned. Technical & Behavioral Competencies Deep knowledge of IT audit Requires deep knowledge of banking functions typically obtained through advanced education combined with experience. Exhibits effective written and verbal communication skills with all levels of management (in English) Not less than 10 years of experience in IT external auditing / internal auditing / in the financial services industry. Curiosity, rigor, and precision. Outstanding analytical skills High level of initiative, commitment, and drive Ability to work effectively under pressure and within short deadlines Promotes a constructive, cooperative, and participative teamwork environment Specific Qualifications (if required) Possess a Bachelors / Masters Degree in Information Technology/ Management Information System / Computer Science and related discipline; Professional Qualification/Certification: in IT Audit - CISA (Certified Information System Audit) required other IT certification: Cybersecurity (e.g CISSP, CISM, CCSP/CCSK, CEH), IT Service Management (ITIL foundation). Skills Referential Behavioural Skills : Communication skills - oral & written Ability to collaborate / Teamwork Attention to detail / rigor Active listening Adaptability Transversal Skills: Analytical Ability Ability to manage a project Ability to manage / facilitate a meeting, seminar, committee, training Ability to understand, explain and support change Ability to anticipate business / strategic evolution Education Level: Master Degree or equivalent Experience Level At least 10 years

Job Summary As a Cyber Security Specialist you will play a critical role in safeguarding our organizations digital assets. With a focus on Cyber Threat Intelligence Services you will work to identify and mitigate potential threats. Your expertise in Cyber Security and Cloud along with experience in CrowdStrike will be essential in ensuring the security of our systems. This hybrid role offers the flexibility of working both remotely and on-site during day shifts. Responsibilities Lead the development and implementation of advanced cyber threat intelligence strategies to protect organizational assets. Oversee the monitoring and analysis of security threats using CrowdStrike and other advanced tools. Provide expert guidance on cloud security best practices to ensure data integrity and confidentiality. Collaborate with cross-functional teams to design and implement robust security architectures. Conduct regular security assessments and audits to identify vulnerabilities and recommend improvements. Develop and maintain incident response plans to effectively manage and mitigate security breaches. Coordinate with external partners and stakeholders to enhance threat intelligence capabilities. Implement security policies and procedures to comply with industry standards and regulations. Analyze security incidents and provide detailed reports to senior management. Train and mentor junior security team members to build a strong security culture within the organization. Stay updated with the latest cyber security trends and technologies to proactively address emerging threats. Support the integration of security solutions into existing IT infrastructure to enhance overall protection. Drive continuous improvement initiatives to optimize security operations and reduce risk exposure. Qualifications Possess a deep understanding of cyber threat intelligence services and their application in a corporate environment. Demonstrate proficiency in using CrowdStrike for threat detection and response. Exhibit strong knowledge of cloud security principles and practices. Have a proven track record of conducting security assessments and audits. Show experience in developing and implementing incident response plans. Display excellent communication skills for effective collaboration with cross-functional teams. Hold a relevant degree in Cyber Security Information Technology or a related field. Certifications Required Certified Information Systems Security Professional (CISSP) Certified Cloud Security Professional (CCSP)

Manager (IT) Compliance & Audit The ZS IT Governance, Risk & Compliance (GRC) team is a global function that plays a critical role in aligning with ZS' business strategy and operating model. The team's mission is to empower ZS' 13,000+ employees and their clients with the tools, insights, and frameworks needed to effectively manage operational risk and meet compliance requirements in an increasingly complex regulatory landscape. The GRC team is responsible for ensuring that ZS maintains the highest standards of compliance by managing a diverse portfolio of certifications and audits across multiple domains, including Information Security, Privacy, and Environmental, Social & Governance (ESG) . The team's scope of work includes maintaining compliance with industry-recognized standards such as ISO 27001, ISO 27701, ISO 27017, HITRUST, SOC 2, SOC 3, and ESG , providing comprehensive oversight on risk management, security, and privacy practices. By offering independent assurance to both internal stakeholders and external parties, the GRC team ensures that ZS consistently adheres to globally established compliance frameworks, controls, policies, and industry standards. This stewardship strengthens ZS' ability to mitigate risks, meet client and regulatory expectations, and uphold its reputation as a trusted partner across industries. Additionally, the GRC team fosters continuous improvement, not only by responding to evolving regulations but by driving proactive initiatives that embed a culture of compliance and risk awareness throughout ZS operations. This holistic approach helps safeguard ZS assets, data, and relationships in a fast-paced and increasingly interconnected business environment. Manager (IT) Compliance & Audit The Manager, IT Compliance & Audit will be a seasoned leader in the information security compliance domain, driving projects related to critical certifications like ISO 27001, ISO 27701, ISO 27017, HITRUST, SOC 2, SOC 3, and others. The individual will play a pivotal role in managing and ensuring compliance with regulatory and operational security standards while collaborating with various stakeholders, including the CISO, CRO, DPO, Head of Cloud Engineering, IT Stakeholders, and other senior leaders. The role requires hands-on technical and functional expertise, along with the ability to manage and develop teams, oversee compliance programs, and report to leadership committees. Key Responsibilities: Compliance & Audit Management: Lead and manage the implementation, maintenance, and certification processes for ISO 27001, 27701, 27017, HITRUST, SOC 2, SOC 3, and similar standards. Oversee and manage internal and external audits, identifying gaps, and ensuring timely closure of audit findings. Collaborate with cross-functional teams, including IT, security, legal, and risk management, to ensure alignment on security compliance initiatives. Drive continuous improvement initiatives to enhance compliance posture, developing and enforcing security policies, procedures, and controls. Stakeholder Collaboration & Communication: Act as the primary liaison between teams and external auditors, certification bodies, and regulators. Build and maintain strong working with key stakeholders, including the CISO, CRO, DPO, Head of Cloud Engineering, IT, and legal teams, to ensure compliance objectives are met. Provide expert advice on compliance issues and support various departments with technical and policy-driven . People Management & Leadership: Lead, mentor, and develop a team of professionals, fostering a high-performance culture. Manage team workload, project , and career development, ensuring that the team is up-to-date with industry standards and compliance practices. Oversee team training programs to ensure sharing and skills development in compliance and audit. Project Management & Reporting: Lead compliance projects, including forecasting, resource planning, and reporting progress to leadership committees. Develop project timelines, track, and ensure timely delivery of compliance and audit activities. Provide regular reports and updates to management, including dashboards and key performance indicators (KPIs) to assess the organizations compliance and risk posture. Collaborate with internal teams to ensure smooth integration of compliance requirements into new and existing technologies, including AI, cloud services, and data privacy technologies. Strategic Planning & Operational Compliance: Contribute to the development of the organizations broader compliance strategy, aligning with industry trends and emerging regulations. Proactively identify potential risks and vulnerabilities and develop risk mitigation strategies. Lead operational compliance efforts across various functions, ensuring comprehensive coverage of security, privacy, and data protection requirements. Qualifications & Experience: Bachelors degree in computer science, Information Technology, Cybersecurity, or a related field. A masters degree or MBA is preferred. Minimum 10-12 years of experience in IT compliance, audit, and information security, with specific experience managing ISO 27001, ISO 27701, ISO 27017, HITRUST, SOC 2, SOC 3, and related certifications. Proven track record of managing compliance programs and leading audits across large, complex organizations. Strong leadership and people management experience, with a demonstrated ability to lead, develop, and motivate high-performing teams. Excellent project management skills with the ability to manage budgets, forecasts, timelines, and complex stakeholder requirements. Deep understanding of cloud security (Azure, AWS, GCP) and privacy standards, with experience working with cloud engineering and DevSecOps teams. Strong problem-solving skills with the ability to influence and engage with C-level executives and senior stakeholders. Certifications (Preferred): CISA (Certified Information Systems Auditor) CISSP (Certified Information Systems Security Professional) CISM (Certified Information Security Manager) ISO 27001 Lead Auditor/Lead Implementer HITRUST Certified CSF Practitioner Certified Cloud Security Professional (CCSP) PMP (Project Management Professional) or equivalent certification Skills: Strong technical knowledge in information security standards and frameworks. Exceptional communication and presentation skills, with the ability to articulate complex compliance issues to technical and non-technical audiences. Experience with AI and its implications n compliance, security, and data privacy will be an advantage. Proficiency in GRC (Governance, Risk, and Compliance) tools and software. Why Join Us? ZS is a global consulting firm; fluency in English is required. Candidates must possess work authorization for their intended country of employment. An on-line application, including a cover letter expressing interest and a full set of transcripts (official or unofficial), is required to be considered. ZS offers a competitive compensation package with salary and bonus incentives, plus an attractive benefits package. Opportunity to lead and shape the compliance landscape of a forward-thinking organization. Work with cutting-edge technologies in a collaborative, dynamic environment. Competitive compensation and benefits package.

Required Details: Total Experience Relevant Experience Current Company: Current Designation: Current CTC Expected CTC Notice Period: Current Location Expected Location: Offer In hand: PAN Number (upload profiles to the portal): DOB (upload profiles to the portal): Reason for Job Change: Degree CGPA Passed Out: University: Out of 5 rate yourself: Location: Mumbai locals only. Experience: 5-8 years Budget: Open Competitive Market rate [always keep it low] Interview Mode: 1st Round -Virtual, 2nd/3rd -compulsory face to face, may have more than 3 rounds. JD: Mandatory hands on experience on below mentioned Domains / Tools: (Must have Any One) - Elasticsearch (ELK) / Sqrrl / Crowd strike / Fireeye Mandiant HX / SOAR / Cloud Incident Response Hands-on experience on Sysinternals / Sysmo Hands on experience Any Malware analysis tool like Cuckoo, Cisco threat grid, Threat connect Strong knowledge of Cyber Detection technologies like (Advanced Threat Detection Tools, UEBA Tools, Network Packet Analysis, Endpoint Protection) Should be able to investigation Spam and Malware samples. Certifications Preferred: CISSP, CCSP, GCIH, GCFA

Relevant Experience Current Company: Current Designation: Current CTC Expected CTC Notice Period: Current Location Expected Location: Offer In hand: PAN Number (upload profiles to the portal): DOB (upload profiles to the portal): Reason for Job Change: Degree CGPA Passed Out: University: Out of 5 rate yourself: Location: Mumbai locals only. Experience: 5-8 years Budget: Open Competitive Market rate [always keep it low] Interview Mode: 1st Round -Virtual, 2nd/3rd -compulsory face to face, may have more than 3 rounds. JD: Mandatory hands on experience on below mentioned Domains / Tools: (Must have Any One) - Elasticsearch (ELK) / Sqrrl / Crowd strike / Fireeye Mandiant HX / SOAR / Cloud Incident Response Hands-on experience on Sysinternals / Sysmo Hands on experience Any Malware analysis tool like Cuckoo, Cisco threat grid, Threat connect Strong knowledge of Cyber Detection technologies like (Advanced Threat Detection Tools, UEBA Tools, Network Packet Analysis, Endpoint Protection) Should be able to investigation Spam and Malware samples. Certifications Preferred: CISSP, CCSP, GCIH, GCFA

Open Source COE Security Architect This role has been designed as Onsite with an expectation that you will primarily work from an HPE partner/customer office. Who We Are: Hewlett Packard Enterprise is the global edge-to-cloud company advancing the way people live and work. We help companies connect, protect, analyze, and act on their data and applications wherever they live, from edge to cloud, so they can turn insights into outcomes at the speed required to thrive in todays complex world. Our culture thrives on finding new and better ways to accelerate what’s next. We know varied backgrounds are valued and succeed here. We have the flexibility to manage our work and personal needs. We make bold moves, together, and are a force for good. If you are looking to stretch and grow your career our culture will embrace you. Open up opportunities with HPE. Job Description: HPE Operations is our innovative IT services organization. It provides the expertise to advise, integrate, and accelerate our customers’ outcomes from their digital transformation. Our teams collaborate to transform insight into innovation. In today’s fast paced, hybrid IT world, being at business speed means overcoming IT complexity to match the speed of actions to the speed of opportunities. Deploy the right technology to respond quickly to market possibilities. Join us and redefine what’s next for you. What you will do: Expert in IT/Cyber Security field. Should be CISSP/CISM/CCSP and CCSK and ISO27001 Certification are desired. Should have good knowledge of security assessment against different global Frameworks like NIST, MITRE and cloud security alliance etc. Should have good understanding of Compliance and regulatory requirements. Working with information security and DevSecOps teams in a CI/CD environment as well as comprehensive understanding of cloud security systems. Programming experience in C/C++, Python, JavaScript, Bash & PowerShell Scripting is desired. Hands-on expertise, Linux, Kernel, threads, processes, API etc. is desired. Provide Security Vision & Strategy to the Organization, strategic direction, development, and implementation of information security programs and projects to address risks relevant to the attainment of organizational strategic security goals based on open source tool/framework. Experience in advising leadership team regarding evolving of open source Security Technology landscape, product issues, security mitigations for identified risks and possible improvements Expertise in providing executive roadmaps for continual improvement in teams, technology, and processes, process across various security & DevSecOps teams based on open source tool/framework. Experienced in Information Security Risk Management, gap analysis, Audits. Hands-on Experience in formulating Cyber Security Policies, design and implementation of Security Technologies, DevSecOps. Working Knowledge in implementation of Cyber Security Solution in Open Source, Open Stack environment. Ability to provide strategies to increase the ability to withstand cyber-attacks, as measured by annual sophisticated attack simulations. Experience in upgrading, troubleshooting and tuning of Cyber Security Solutions. Thorough understanding and good knowledge of latest Cyber Security technologies, security Architectures, vulnerabilities, security threats. Ability to setup PoC for latest open source security solutions. Good understanding of Open-Source Technologies, Cloud security technologies. What you need to bring: BE/B.Tech with 10+ years of experience in the IT industry and 6+ years of experience in Information Security / Cyber Security field. Expert-level knowledge in the IT/Cyber Security field, with a thorough understanding of the latest security technologies, architectures, vulnerabilities, and threats. Desired certifications include CISSP, CISM, CCSP, CCSK, or ISO 27001. Strong knowledge of global security assessment frameworks like NIST, MITRE, and the Cloud Security Alliance (CSA). A deep understanding of compliance and various industry regulatory requirements. Proven experience in developing security vision, strategy, and executive roadmaps for an organization based on open-source tools. Hands-on experience in Information Security Risk Management, conducting gap analysis, managing audits, and formulating Cyber Security Policies. Comprehensive understanding of cloud security systems and working with DevSecOps teams in a CI/CD environment. Working knowledge of implementing, upgrading, troubleshooting, and tuning Cyber Security Solutions, particularly in Open Source and OpenStack environments. Desired programming and scripting experience in C/C++, Python, JavaScript, Bash, and PowerShell. Hands-on expertise with the Linux operating system, including its Kernel, threads, processes, and APIs. Experience advising leadership teams regarding the evolving security landscape, product issues, and risk mitigation strategies. Ability to provide strategies to withstand sophisticated cyber-attacks and experience with annual attack simulations. Proven ability to set up Proof of Concepts (PoCs) for new and emerging open-source security solutions. Additional Skills: Accountability, Accountability, Active Learning (Inactive), Active Listening, Bias, Business Growth, Client Expectations Management, Coaching, Creativity, Critical Thinking, Cross-Functional Teamwork, Customer Centric Solutions, Customer Relationship Management (CRM), Design Thinking, Empathy, Follow-Through, Growth Mindset, Information Technology (IT) Infrastructure, Infrastructure as a Service (IaaS), Intellectual Curiosity (Inactive), Long Term Planning, Managing Ambiguity, Process Improvements, Product Services, Relationship Building {+ 5 more} What We Can Offer You: Health & Wellbeing We strive to provide our team members and their loved ones with a comprehensive suite of benefits that supports their physical, financial and emotional wellbeing. Personal & Professional Development We also invest in your career because the better you are, the better we all are. We have specific programs catered to helping you reach any career goals you have — whether you want to become a knowledge expert in your field or apply your skills to another division. Unconditional Inclusion We are unconditionally inclusive in the way we work and celebrate individual uniqueness. We know varied backgrounds are valued and succeed here. We have the flexibility to manage our work and personal needs. We make bold moves, together, and are a force for good. Let's Stay Connected: Follow @HPECareers on Instagram to see the latest on people, culture and tech at HPE. #india #operations Job: Services Job Level: TCP_04 HPE is an Equal Employment Opportunity/ Veterans/Disabled/LGBT employer. We do not discriminate on the basis of race, gender, or any other protected category, and all decisions we make are made on the basis of qualifications, merit, and business need. Our goal is to be one global team that is representative of our customers, in an inclusive environment where we can continue to innovate and grow together. Please click here: Equal Employment Opportunity. Hewlett Packard Enterprise is EEO Protected Veteran/ Individual with Disabilities. HPE will comply with all applicable laws related to employer use of arrest and conviction records, including laws requiring employers to consider for employment qualified applicants with criminal histories.