About The Role :: Job Title:Cyber Threat Intelligence Analyst Corporate Title:Associate Location:Pune, India Role Description As a Threat Intelligence Analyst in the Threat Intelligence and Assessment function, you will play a critical role in safeguarding the organization from cyber threats. In this role, you will be responsible for identifying, assessing, and mitigating threats, you will provide mitigation recommendations in response to evolving threats. You will be required to analyse complex technical issues and develop bank specific solutions while collaborating with diverse teams and stakeholders. This role will also consist of delivering against projects and strategic initiatives to continuously enhance the banks capabilities in responding to threats. What we'll offer you As part of our flexible scheme, here are just some of the benefits that youll enjoy, Best in class leave policy. Gender neutral parental leaves 100% reimbursement under childcare assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Employee Assistance Program for you and your family members Comprehensive Hospitalization Insurance for you and your dependents Accident and Term life Insurance Complementary Health screening for 35 yrs. and above Your key responsibilities Pro-actively identify threats and track threat actors, TTPs, and ongoing campaigns to produce timely actionable intelligence. Produce threat assessments to support threat mitigation activities. Analyse multiple data/intelligence sources and sets to identify patterns of activity that could be attributed to threats and develop informed recommendations. Conduct analysis on files/binaries, packet captures, and supporting materials to extract relevant artifacts, observables, and IOCs. Proactively drive improvements of internal processes, procedures, and workflows. Participate in the testing and integration of new security monitoring tools. Meet strict deadlines to deliver high quality reports on threats, findings, and broader technical analysis. Take ownership for personal career development and management, seeking opportunities to develop personal capability and improve performance contribution. Develop and maintain relationships with internal stakeholders, external intelligence sharing communities. Your skills and experience 3+ years of experience in cybersecurity, with a focus on threat intelligence, analysis, and mitigation Strong operational background in intelligence related operations with experience in Open-Source Intelligence (OSINT) techniques Operational understanding of computing/networking (OSI Model or TCP/IP). Knowledge on the functions of security technologies such as IPS/IDS, Firewalls, EDR, etc A good or developing understanding of virtual environments and cloud (e.g., VSphere, Hypervisor, AWS, Azure, GCP) Demonstrated knowledge and keen interest in tracking prominent cyber threat actor groups, campaigns and TTPs in line with industry standards Knowledge of or demonstratable experience in working with intelligence lifecycle, intelligence requirements and Mitre ATT&CK Framework Non-Technical Experience Investigative and analytical problem solving skills Excellent verbal and written communication; to both technical and non-technical audiences. Self-motivated with ability to work with minimal supervision. Education and Certifications Preferred - Degree in computer science, networking, engineering, or other field associated with cyber, intelligence or analysis. Desired Experience or Certifications CISSP, CISM, GIAC, GCTI, GCIH, GCFE, GCFA, GREM, GNFA, Security+, CEH How we'll support you Training and development to help you excel in your career. Coaching and support from experts in your team. A culture of continuous learning to aid progression. A range of flexible benefits that you can tailor to suit your needs. About us and our teams Please visit our company website for further information: https://www.db.com/company/company.htm We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively. Together we share and celebrate the successes of our people. Together we are Deutsche Bank Group. We welcome applications from all people and promote a positive, fair and inclusive work environment.

Primary Responsibilities: Conduct security assessments for new and existing clinical technologies to protect organizational data assets Review and prepare architectural diagrams to ensure secure technology deployment Collaborate with vendors and business partners to obtain and evaluate technical documentation Define security requirements based on corporate policies, best practices, team input, security frameworks, and compliance regulations Document assessment findings and requirements for technology implementation and operation Work with vendors and partners to develop remediation plans for technologies posing unacceptable risks Independently research technologies or topics beyond current expertise Comply with the terms and conditions of the employment contract, company policies and procedures, and any and all directives (such as, but not limited to, transfer and/or re-assignment to different work locations, change in teams and/or work shifts, policies in regards to flexibility of work benefits and/or work environment, alternative work arrangements, and other decisions that may arise due to the changing business environment). The Company may adopt, vary or rescind these policies and directives in its absolute discretion and without any limitation (implied or otherwise) on its ability to do so Required Qualifications: Bachelors degree in a technical or scientific discipline, or equivalent experience 5+ years in IT operations 2+ years in cybersecurity Experience identifying security risks in technology Proficiency in creating and interpreting architectural diagrams Security certifications (e.g., CISSP, CCSP, CEH) Solid understanding of network security principles and best practices. Proven critical thinking and problem-solving skills Solid work ethic and attention to detail Ability to work independently and collaboratively Ability to align security requirements with business objectives Solid relationship-building skills with partners, clients, and peers Ability to clearly communicate technical concepts to both technical and non-technical stakeholders Adaptability in a large, fast-paced, and rapidly changing organization Preferred Qualification: Experience in a regulated industry, preferably healthcare

RAS DRC - IT Security Engineer- Bangalore /Gurgaon Job summer: The Security Engineer is responsible for ensuring the BDOs network and information systems are protected from external and internal threats. In this role, the Security Engineer is charged with engineering solutions and systems and building policies and procedures. Job Duties : Recommends and implements changes to enhance network and open systems security for BDO Protects network resources against unauthorized access, modification, or destruction Performs day-to-day monitoring and management of security devices and applications Collaborates with IT partners to create and execute the Firms technical security strategy Partners with Infrastructure Services professionals to evaluate and recommend security patches for operating systems, network devices, and applications Coordinates with other departments inside BDO (such as Legal and Human Resources) to create and enforce policies and procedures related to information security Performs intrusion testing on corporate network, both external and internal, report findings back to upper management Provides assistance with establishing standards for hardware and software where there are implications to security (i.e., wireless access control) Reports security assessment metrics to upper management on a regular basis Collaborate with internal departments at BDO to communicate BDOs security program to customers and prospects. Adheres to BDO and department policies and procedures Other duties as required Technical Set and Education Details : Education: High school diploma/GED, required Bachelors degree, preferred Experience: Five (5) years of experience providing IT systems security support, required License/Certifications: CISSP certification, preferred Software: Demonstrated knowledge with one (1) or more of the following, preferred: Firewall technologies such as Cisco ASA, Cisco FTD, Palo Alto VPN administration Intrusion Prevention Systems / WAF Web proxy / Web Filtering solutions Endpoint protection products (application control, EDR, NGAV) Scripting experience (Powershell, Python) SOAR and automation technologies Vulnerability and patch management SIEM administration and log management Understanding of incident response concepts Understanding of attack frameworks and methodology Microsoft Azure and Cloud Security Posture Management Windows and Linux operating systems General understanding of network protocols Ticketing systems such as ServiceNow Other Knowledge, Skills & Abilities: Strong verbal and written communication skills Self-motivated to improve skills and functionality of assigned security systems Excellent interpersonal and customer relationship skills Capacity to work in a deadline-driven environment while handling multiple complex projects/tasks simultaneously with a focus on details

*Bachelors degree in computer science, Information Technology, Information Security, or related field (or equivalent experience) *Knowledge on Splunk, Firewall, and any Security tools along with CloudFlare WAF *Knowledge on Cloud Security * Experience working in a technical support or helpdesk role is preferred * Familiarity with enterprise security tools such as SIEM, IDS/IPS, EDR, web application firewall, identity and access management solutions, etc. * Basic understanding of networking concepts and protocols (TCP/IP, DNS, DHCP, etc.) * Proficiency in at least one scripting language (e.g., Python, PowerShell) is a plus * Certifications such as CompTIA Security+, CISSP, CCSP or GIAC are advantageous but not required * Ability to prioritize and manage multiple tasks simultaneously * Strong problem-solving skills and a methodical approach to troubleshooting * Adaptability and willingness to learn new technologies and processes * Commitment to providing exceptional customer service and support

Role - Client Support Engineer No of Vacancy - 5 (Delhi) + 4 (Bangalore) Location - New Delhi (Candidate need to travel as per work requirements) Qualification BE/B.Tech/MCA or Equivalent Qualification Experience 1+ Years Roles and responsibilities Client Support Engineer: Implementation of Security solution, applications at client end, debug the deployment issues, LDAP and Active Directory management, Operating Systems administration Job Requirements Knowledge of operating systems, IT equipment and technologies, Knowledge of OSI Layer and TCP/IP networking Experience in securing and working with any operating systems like Windows, RHEL, Ubuntu, CentOS, etc. and any hypervisors like VMWare, Ovirt, etc. Experience in installing and troubleshooting of Desktop, Laptop, Workstation, working experience in installing, configuring, and troubleshooting Windows & /Linux based system Collaborate with the other security teams to contain and investigate major incidents Must have excellent reporting and analytical skills. Excellent oral/written communication and documentation skills, Able to work under pressure and tight deadlines. Candidate should be willing to travel anywhere in India for support activities. Should be able to handle the clients efficiently for deployment of C-DOT solutions. Open to learn new technologies Working knowledge and willing to track the resolution of issues on Ticket Monitoring system with stringent response time Place of posting would be Bangalore / Delhi Certification Any certifications such as CISSP, CEH, CISA, CEH, ECSA, SSCP, RHCE or MCSE shall be an advantage.

*Bachelors degree in computer science, Information Technology, Information Security, or related field (or equivalent experience) *Knowledge on Splunk, Firewall, and any Security tools along with CloudFlare WAF *Knowledge on Cloud Security * Experience working in a technical support or helpdesk role is preferred * Familiarity with enterprise security tools such as SIEM, IDS/IPS, EDR, web application firewall, identity and access management solutions, etc. * Basic understanding of networking concepts and protocols (TCP/IP, DNS, DHCP, etc.) * Proficiency in at least one scripting language (e.g., Python, PowerShell) is a plus * Certifications such as CompTIA Security+, CISSP, CCSP or GIAC are advantageous but not required * Ability to prioritize and manage multiple tasks simultaneously * Strong problem-solving skills and a methodical approach to troubleshooting * Adaptability and willingness to learn new technologies and processes * Commitment to providing exceptional customer service and support

Cyber Security Engineer: Review security measures and software configuration to protect systems and information infrastructure, including firewalls and data encryption programs. Cyber Security Threat hunting, Intelligence, response Document security breaches and assess the damage they cause. Work with security team to perform tests and uncover network vulnerabilities. Coordinate with IT and Fix detected vulnerabilities to maintain a high-security standard. Stay current on IT security trends and news. Develop company-wide best practices for IT security. Help colleagues install security software and understand information security management. Research security enhancements and make recommendations to management. Stay up-to-date on information technology trends and security standards. Handle security Audits and customer reviews Analyse and recommend improvement in security posture Support for RFP response Monitor computer networks for security issues. Investigate security breaches and other cyber security incidents. Identify Data leak Discuss and present security findings to senior management. Security compliance Required Skills and Experience: Bachelor's degree is a must Experience in information security or related field. Experience with computer network penetration testing and techniques. Understanding of firewalls, proxies, SIEM, antivirus, Active Directory, and IDPS concepts. Handon experience with PA Traps and Antimalware products. Ability to identify and mitigate network vulnerabilities and explain how to avoid them. Understanding of patch management with the ability to deploy patches in a timely manner while understanding business impact. Scripting knowledge is a plus Security Standard awareness NIST, ISO 27001 and 270002 Knowledge of data privacy regulations like GDPR Certification CEH & CISSP. Cyber Security Threat hunting, Intelligence, response experience MITRE framework, DLP, Encryption knowledge, TTP Malware and Phishing analysis

Expertise in Vulnerability Management, Web Proxy/URL Filtering, Intrusion Detection System (IDS), Cloud Security, Disaster Recovery and Pen Testing Develop project plan & scope, define milestones, timeline management & forecast.

Job Area: Information Technology Group, Information Technology Group > Cyber Security Engineering General Summary: Addresses the requirement for engineering practitioners in cybersecurity functions. Protects vital electronic systems and data from attack, as well as outsmarting and responding appropriately to sophisticated cyber-attacks. Maintains and applies working knowledge of industry standard cybersecurity frameworks and standards to analyze and prioritize cybersecurity risks across the enterprise and recommend treatment options. Researches attempted or successful efforts to compromise application, system, network or data security and designs countermeasures. Identifies, designs, implements, executes and assesses technical and procedural capabilities to effectively identify, prevent, detect, and respond to evolving cyber threats which threaten company electronic information, devices, applications, and data. Minimum Qualifications: "¢ Bachelor's degree in Engineering, Information Systems, Computer Science, or related field and 2+ years of cybersecurity-relevant work experience. OR High school diploma or equivalent and 4+ years of cybersecurity-relevant work experience. Physical Requirements: "¢ Frequently transports and installs equipment up to 40 lbs. Job Summary: We are seeking a highly skilled and experienced Cyber Security Incident Response, Detection & Threat hunting professional to join our team. The primary focus of this role will be on CSIRT, Detection Management & Threat Hunting along with providing in-depth investigation and support for incidents escalated from CyberSOC Tier 1 and Tier 2. Key Responsibilities: Conduct threat hunting and manage CSIRT incidents. Provide in-depth investigation and support for incidents escalated from SOC Tier 1 and Tier 2. Own and drive the Cyber Security Incident process. Utilize strong knowledge and hands-on experience in detection management frameworks to onboard detections in multiple SIEM or EDR solutions. Perform detailed analysis of various security-related events, including social engineering attacks, malware outbreaks, DDoS, ransomware, and more. Communicate with key business units to make recommendations on mitigation and prevention techniques. Recommend and document acceptable mitigating controls. Liaise with Incident Managers to engage other ISRM stakeholders and the rest of the business. Contribute to the improvement of SOC operations through the identification, development, and maintenance of new use cases. Monitor security blogs, articles, and reports to stay current on the latest security risks, threats, and technology trends. Develop custom content for the SIEM platform. Create, publish, and communicate dashboards to be monitored by the Security Operations Center. Be available on call 24x7, including weekends and off-hours. Qualifications: Strong knowledge and hands-on experience in detection management frameworks and onboarding detections in SIEM or EDR solutions. Expertise in malware analysis and the ability to conduct detailed analysis of various security-related events. Excellent communication skills for interacting with key business units and making recommendations on mitigation and prevention techniques. Experience in liaising with Incident Managers and engaging other ISRM stakeholders. Proficiency in developing custom content for SIEM platforms and creating dashboards for the Security Operations Center. Availability for on-call responsibilities 24x7, including weekends and off-hours. Preferred Skills: Detection development on multiple EDR and SIEM solutions. Hands-on on Threat Hunting & handling CSIRT. Familiarity with the latest security risks, threats, and technology trends. Strong analytical and problem-solving skills. Ability to work effectively in a fast-paced and dynamic environment.

The Opportunity This position is responsible for leading the Security Operations Center (SOC) for Capgeminis India Cyber Defence Centres (CDC). The SOC consists of a variety of highly-skilled, technical staff performing Monitoring and Analysis, Cyber Incident Handling, Threat Intelligence & Hunting & non-compliance reporting. Furthermore, the SOC Operations lead coordinates 24x7 staffing to support mission-critical operations, including incident response, and manages surge support. Our Ideal Candidate Core Competencies Able to demonstrate knowledge and experience of: 10-15 yrs of Experience in managing, operating, and running incident management and team management for customers with overall experience of 15-20 years in cyber security / IT security space Manage daily/BAU CSOC security operations that include shared and dedicated customers Supervise and manage a team of Cyber Security Analysts within the CSOC Provide guidance and mentorship to improve analyst skill sets and ensure delivery of high quality analysis and work products Ensure accountability and punctuality of security analysts & incident management operations Overall responsibility on meeting defined SLA and ensuring Quality delivery Cybersecurity metrics reporting at executive-level briefings (daily, weekly, monthly) Establish trust and business relationships with customer and other relevant stakeholders Technical, operational and people leadership of a global CSOC function. Optimisation of CSOC technology. Own and optimize CSOC operational delivery frameworks and standard operating procedures (SOP). Strong communication and engagement skills. Able to effectively engage and communicate at all levels and across diverse stakeholder groups. Recommending the annual training calendar for all SOC team members Excellent team management skills Technical/Professional Experience Able to demonstrate knowledge and experience of: Degree (or equivalent) educated in a relevant subject. Cyber or Information Security professional certifications e.g. CISSP, CISM. Agile and continuous improvement. Strong analytic skills to inform effective data driven decision making on service improvement and risk reduction. Cyber leadership team experience. Current Cyber risks and threats and current and emerging Cyber mitigations (controls and mitigations).

Role & responsibilities Job Purpose (State in one sentence the overall objective of the job) As part of the Security Architecture and Advisory team, the OT Security Lead will review, implement, and enhance security architecture standards for OT infrastructure and ICS systems and provide comprehensive end-to-end security. Major Accountabilities (Describe the main results of the job to be achieved) Create and execute the strategy, vision, and roadmap for Organizations OT security Define and document the overall OT network security architecture (including OT network segmen-tation approach) Create standard frameworks and configuration standards across OT security capabilities Maintain and operate technology related to ICS security to prevent unauthorized access and busi-ness disruption Coordinate OT security risk assessments, develop risk treatment plans, produce assessment re-ports on a regular basis, and ensure that metrics are tracked Assess and implement required security controls, and identify recommendations for improvement in line with industry standards to maintain an effective security posture Drive change management processes for the OT environment and support the OT asset inventory (systems, machines, firmware and software) by orchestrating OT asset collection, tracking, and maintenance Partners with security architects to identify and evaluate the impact of emerging technologies in the OT environment (e.g.: introduction of newly developed tools into the production facilities) Collaborate with the different security teams, such as: Collaboration with the Governance Risk and Compliance (GRC) team to create the nec-essary policies, and procedures for the cybersecurity domains listed above Collaboration with the Incident Response team to perform IR activities within the OT en-vironment Collaboration with the Culture and Awareness team to jointly develop internal communi-cation and trainings plans to increase security awareness, e.g.: in manufacturing sites Enable strategic decisions to provide secure OT capabilities Develop and maintain strong relationships with vendors and strategic external partners Deliver high quality work outcomes in a high-pressure, fast paced setting to meet company needs Education: • Bachelors in engineering/Masters in Science • Certification or accreditation in Information Security (e.g.: CISM, CISA, CISSP, etc.) a plus but not required Languages: • English Experience and Skills: Secure IT OT Integration Architecture • Zero Trust and Network Segmentation design in OT • Knowledge on IEC 62443 , NIST 800-82 • Minimum 12 years experience in OT security solution design and engineering • Previous experience of running an OT security organiza-tion in regulated environment • Excellent negotiation, communication, and interpersonal skills ability to develop influential relationships with differ-ent stakeholders across all levels • Change Management Champion with experience in lead-ing teams through large-scale IT change/transformation programs • Highly experienced people leader with the ability to lead and develop diverse teams across wide geographies • An entrepreneurial mindset driven by curiosity, continuous improvement, and interest in technical advancements and trends • Strong project management skills with the ability to multitask and properly delegate work. company Name : Sandoz Location : Hyderabad Contract for 6 months and will be renewed on performance base. share resumes to nedunuri.saikumar@manpower.co.in

TEKSALAH is hiring potential candidates for Qualys Engineer position to our UAE office. Candidates willing to relocate to UAE location need to only apply. Key Responsibilities Execute the deployment of Qualys security solutions for enterprise customers. Define project scope, timelines, and deliverables in collaboration with customers and internal teams. Work closely with clients to understand their security requirements and customize deployments accordingly. Ensure proper configuration, integration, and implementation of Qualys products according to customer needs. Assist customers in setting up scanners, QGS, agents, policies and cloud-based security solutions. Troubleshoot technical issues related to deployments, software, networking, and configurations.. Work with cross-functional teams, including support, sales engineers, and product teams, to ensure successful deployments. Conduct training sessions and knowledge transfer to ensure customers effectively use Qualys solutions. Provide post-deployment support and guidance to ensure smooth operations. Create technical documentation, deployment guides, and best practice recommendations. Required Qualifications & Skills: Experience with Qualys solutions (Vulnerability Management, Patch Management, Web Application Scanning, Compliance, Cloud Security, etc. Strong knowledge of networking, security protocols, firewalls, and TCP/IP Proficiency in Linux/Unix and Windows operating systems. Experience with cloud platforms (AWS, Azure) and virtualization technologies. Scripting experience (Python, Bash, PowerShell) is a plus Experience in any other VA solutions is an added advantage Hands-on experience with APIs, and integrations with 3rd party applications. Experience & Certifications: Bachelor's degree in Computer Science, Cybersecurity, or a related field. 3+ years of experience in security solution deployment, IT security, or network administration. Security certifications Qualys certifications and CEH, CISSP, Security+ are a plus. Soft Skills: Strong problem-solving and analytical abilities. Excellent verbal and written communication skills. Ability to manage multiple projects and work with minimal supervision. Customer-oriented mindset with a focus on security best practices.

A successful candidate in this role will be responsible for protecting computing infrastructure including workstations, servers, and in the cloud. A candidate for this job enjoys a challenge and will work with the security, development Required Candidate profile CISSP (Certified Information System Security Professional) from ISC2, GSEC (GIAC Security Essentials Certification) from the SANS Institute or CEH (Certified Ethical Hacker)

Autodesk is seeking a Security Analyst to join our Enterprise Security Services team. A successful candidate in this role will be responsible for protecting computing infrastructure including workstations, servers, and in the cloud. Required Candidate profile Experience with enterprise systems management, such as Active Directory, Azure Active Directory, group policy, Intune and Jamf 5+ years of experience in the field of information security

Manage cyber Security projects out sourced to vendor like Red team exercise, cyber security drills, implement ASM tools, Implement continuous Red Team Assessment tool, execute BAS Monitor, follow up, closure VAPT results, SEBI CSCRF compliance status Required Candidate profile Revamp management of vendor for Informatio Security policies procedures, conduct risk assessment, source code reviews, clasify apps Implement automated CSCRF tool & automated test/patch management tol

About The Role : for Security Delivery Analyst Position Title: Security Delivery Analyst (Level 10/11) Location: Mumbai Employment Type: Full Time Must have skills: Security & Risk Management Good to have skills: NA About CF/S&C Corporate Functions include Human Resources, Finance, Legal, Marketing Communications, and Workplace Solutions"that power Accentures people across industries and functions to keep our business leading in the New. Join the heart and soul of Accenture, partnering with our extraordinary people to bring innovation into every organization. About Accenture: Accenture is a global professional services company with leading capabilities in digital, cloud and security. Combining unmatched experience and specialized skills across more than 40 industries, the company offers Strategy and Consulting, Song (Interactive), Technology and Operations services"all powered by the world's largest network of Advanced Technology and Intelligent Operations centers. With net revenues of $64 billion for 2023, their 774,000+ employees deliver on the promise of technology and human ingenuity every day, serving clients in more than 49 countries and over 200 cities. Job Summary : Provide ISMS related operational support and guidance to Information Security (IS) Leads and the local IS team members to ensure they can successfully carry out their roles and responsibilities; this includes ensuring that questions or requests submitted to the central ISMS team are accurately and timely addressed. Roles & Responsibilities: Provide ISMS related operational support and guidance to Information Security (IS) Leads and the local IS team members to ensure they can successfully carry out their roles and responsibilities; this includes ensuring that questions or requests submitted to the central ISMS team are accurately and timely addressed. Conduct management reviews for each ISMS instance, which ensure the ongoing suitability, adequacy and effectiveness of the local ISMS instances and provides opportunities for improvement Conduct regular global forums (webinar) for IS leads and accountable security leaders. Provide support with the annual Asset Register refresh and annual Risk Assessment refresh. Review the Annual Asset Register & Risk Assessment Refresh outcomes of the local ISMS Instances, identify improvement actions gaps/findings with the local IS Leads/Teams, and drive them to closure Conduct reviews of the critical controls, prepare and issue actions for deficiencies identified Prepare timely and accurate reports and scorecards to keep IS and business leadership updated. Administer and maintain the ISMS SharePoint and the Archer GRC ISMS tool. Professional & Technical Skills: Above all else, the candidate must be deeply passionate about the information security and privacy domain. Without this fire in the belly, meeting all the other requirements listed is completely pointless. The candidate must be self-motivated, a quick learner, take ownership of activities and be proactive. Must have a working knowledge of the ISO27001 standard requirements. Should have been exposed to ISMS implementation, deployment and/or auditing. Being a global team, daily work involves cross-country interaction, therefore strong communication skills, both written and verbal are a must. High proficiency (minimum 8/10) on Microsoft office tools (Outlook, Excel, Word, PowerPoint etc.) Hands on experience working on and administration of SharePoint sites. Exposure to the information security risk management domain, other ISO standards such as 27701 etc. Industry certifications such as ISO27001 lead auditor/lead implementer, CISSP, CISA, Security+ Working experience with the Archer GRC risk management platform. Experience with data visualization tools such as Qlik Sense/Power BI etc. will be an advantage. Auditing of information security and data privacy controls. Proficiency with office automation tools like excel macros, VB scripting and Power Automate Job Qualification: Exposure to the information security risk management domain, other ISO standards such as 27701 etc. Industry certifications such as ISO27001 lead auditor/lead implementer, CISSP, CISA, Security+ Working experience with the Archer GRC risk management platform. Experience with data visualization tools such as Qlik Sense/Power BI etc. will be an advantage. Auditing of information security and data privacy controls. Proficiency with office automation tools like excel macros, VB scripting and Power Automate Additional Information: NA Qualifications Experience: Minimum 2 year(s) of experience is required Educational Qualification: B.Tech/BE

What You'll Do Avalara aspires to be the global cloud compliance platform. As a Product Security Architect at Avalara, you will design and implement security frameworks and architectures that protect our SaaS product ecosystem. You will work with product development teams and DevOps teams to ensure security is built into our software from the ground up. You will focus on safeguarding the entire product lifecycle, from design through deployment, ensuring that our customers' data and our platform are secure from modern threats. You will report to Chief Architect. This is an individual contributor role. What Your Responsibilities Will Be Architect secure product environments that address security concerns across our SaaS offerings, ensuring the security of all product layers, including application, data, and infrastructure. Develop security standards, guidelines, and best practices for product development teams, ensuring security is integrated into the software development lifecycle (SDLC). Conduct threat modeling and risk assessments for new features to identify and address potential security vulnerabilities. Collaborate with product managers, developers, and DevOps teams to define security requirements and ensure they are incorporated throughout the design process. Perform secure code reviews and work with development teams to establish secure coding practices, including automation of security testing in CI/CD pipelines. Oversee data security and privacy mechanisms, such as encryption, data masking, and anonymization, to ensure compliance with regulatory requirements like GDPR, HIPAA, and others. Lead vulnerability management efforts for products, including monitoring, identifying, and remediating security flaws across services. Establish security monitoring and incident response processes for our SaaS platform, working with DevOps teams to monitor security events and respond to product security incidents. Stay up-to-date with the latest security threats and technologies that impact SaaS platforms, ensuring proactive measures are in place to address new risks. Lead security-related training and awareness projects within the product and engineering teams, helping build a security-first mindset across the organization. What You'll Need To Be Successful 4 year Bachelor's degree in Cybersecurity, Computer Science, Software Engineering, or related field. Master's degree or security certifications (e.g., CSSLP, CISSP, CCSP) 15+ years of experience in software engineering. Experience secure software development and building security into product architectures from design to deployment. Hands-on experience with cloud environments (AWS, Azure, GCP) and securing cloud-native applications Certified Secure Software Lifecycle Professional (CSSLP) Certified Information Systems Security Professional (CISSP) Certified Cloud Security Professional (CCSP) GIAC Cloud Security Automation (GCSA)

Job Summary: As a Mid-Level Security Analyst (Manager Level) , you will lead and manage day-to-day security operations and ensure the implementation and enforcement of security measures across the organization. Your role will involve assessing vulnerabilities, managing security incidents, and overseeing a team of security professionals. You will collaborate closely with IT, risk management, and other business units to maintain a secure infrastructure and ensure compliance with relevant security standards and regulations. Key Responsibilities: Security Operations Management : Oversee daily security operations and lead the Security Operations Center (SOC) team. Develop and enforce security policies, procedures, and guidelines. Manage vulnerability scanning, penetration testing, and threat monitoring activities. Ensure all security tools (firewalls, IDS/IPS, DLP, SIEM) are properly configured, maintained, and updated. Incident Response and Management : Lead investigations and response to security incidents, breaches, or cyberattacks. Perform root cause analysis and post-incident reporting. Ensure incident response plans are regularly tested and optimized. Threat and Vulnerability Management : Manage and review system vulnerabilities and threats, and implement risk mitigation strategies. Perform regular risk assessments and security audits to identify and address security gaps. Collaborate with DevOps and infrastructure teams to integrate security best practices in all systems. Compliance and Governance : Ensure compliance with security regulations, standards, and frameworks (ISO 27001, NIST, GDPR, etc.). Maintain up-to-date documentation of security controls and processes. Coordinate internal and external security audits, including audits related to compliance. Leadership and Team Development : Supervise and mentor junior security analysts and engineers. Provide guidance on career development, training, and certifications. Collaborate with HR and senior leadership to define security team goals and objectives. Vendor and Stakeholder Management : Liaise with third-party vendors to assess security tools and technologies. Work closely with other business units, such as IT, legal, and finance, to ensure security objectives are aligned with business priorities. Security Awareness and Training : Develop and implement security awareness training programs for employees. Foster a culture of security awareness across the organization. Required Skills and Qualifications: Education : Bachelor's degree in information security, Computer Science, or a related field. Experience : 4-7 years of experience in cybersecurity or information security roles. Prior experience in a leadership or managerial role within security operations is preferred. Certifications (desired but not mandatory): CISSP, CISM, CEH, GSEC, or other relevant security certifications. Technical Proficiency : Strong knowledge of SIEM, firewalls, IDS/IPS, vulnerability management, and encryption. Experience with security frameworks such as NIST, ISO 27001, or CIS. Hands-on experience with incident response and management. Soft Skills : Excellent communication and presentation skills. Strong leadership, problem-solving, and decision-making abilities. Ability to work under pressure and prioritize tasks in a fast-paced environment. Key Performance Indicators (KPIs): Reduction in security incidents and breaches. Compliance with industry regulations and standards. Team development and performance improvements. Successful mitigation of identified vulnerabilities and risks.

Internal Audit Specialist We Are: Accenture is helping transform leading organizations and communities around the world. Choose Accenture and make delivering innovative work part of your extraordinary career. Accenture works at the intersection of business and technology to help clients improve their performance and create sustainable value for their stakeholders. Accenture is consistently recognized on FORTUNE's 100 Best Companies to Work For and DiversityInc's Top 50 Companies for Diversity lists. The Internal Audit Department provides the Audit Committee of the Board of Directors with an independent and objective assessment of the reliability and integrity of financial and select operating information, the effectiveness and efficiency of Accenture plc and its consolidated subsidiaries' (the "Company") systems and internal controls, and compliance with the Company's policies and procedures. Internal Audit Services also provides advisory services designed to add value and improve the Company's operations through bringing a systematic, disciplined approach to evaluate and improve the effectiveness of risk management, controls, operations, and governance processes. You Are: An agile, highly-motivated, innovative thinker with a background in audit, risk, or compliance looking to join a fast-paced, global internal audit organization that has embraced transformative capabilities including advanced analytics, dynamic risk assessment processes, and automation to retain its role as a trusted advisor to the business. The Work: Participate in the execution of the risk-based audit plan, reporting results to Accenture Leadership and the Audit Committee of the Board of Directors Conduct a wide-ranging scope of audits with an emphasis on assessing emerging areas of risk including cyber security, artificial intelligence, cloud computing, robotic process automation, and the Internet of Things. Through advisory services, work with our business partners to help them proactively identify and manage risk in new technologies, new go-to-market offerings, and critical corporate initiatives. Shape the future of the Accenture Internal Audit through involvement in departmental initiatives that enable us to become more efficient and effective in everything we do. Ensure your technical skill set and business acumen stay current and relevant through participation in our robust training program. Support the departmental annual risk assessment and audit planning effortsWhy Should I Join the Accenture TeamYou are looking for an internal audit role that provides you with exposure to senior levels of leadership, enables you to work with emerging technologies, provides opportunities for international travel and flexible work arrangements (work from home), requires little to no SOX testing, and offers a competitive salary and benefits package. Qualifications Desired Skills Qualifications Undergraduate degree in Computer Science, Information Systems, Electronics, or Business Administration. Minimum of 6 years of experience in IT auditing, information security, or related technical role focusing on compliance activities. Experience conducting IT external and internal audits or assessments, preferably for a global organization. Strong IT knowledge in infrastructure technologies (networking, data centers and hosting, virtualization, cloud etc.), application development and support, and emerging technologies. Understanding of industry standards including ISO27001, ISO 20K, NIST 800-53, PCI DSS, HIPAA, GDPR Experience leveraging predictive models and custom analytics in audit planning and execution is preferred. Technical knowledge and familiarity with control requirements in areas including ERP applications, Windows and Unix operating systems, cyber security, cloud security and vendor management. Strong verbal and written communication skills and proficiency with the English language. Demonstrated leadership, teamwork, and collaboration skills. Possession of a relevant professional certification (CISA, CISSP, CIA, CPA, CCSK) is preferred. Ability to adopt flexible work hours to collaborate with global teams and travel (up to 20%).

Project Role : Security Engineer Project Role Description : Apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Must have skills : Email Security Good to have skills : NA Minimum 2 year(s) of experience is required Educational Qualification : Related qualifications and certifications As a Security Engineer, you will be responsible for applying your expertise in Email Security to design, build, and protect enterprise systems, applications, data, assets, and people. Your typical day will involve safeguarding information, infrastructures, applications, and business processes against cyber threats using your knowledge of Email Security. Roles & Responsibilities: Design, implement, and maintain Email Security solutions to protect enterprise systems, applications, data, assets, and people. Conduct regular security assessments and audits to identify vulnerabilities and recommend appropriate remediation measures. Collaborate with cross-functional teams to ensure that security policies, procedures, and standards are implemented and adhered to. Provide technical guidance and support to other teams on Email Security-related issues and incidents. Professional & Technical Skills: Must To Have Skills:In-depth knowledge of Email Security technologies and solutions like minecast, O365 and bitlocker tools Good To Have Skills:Experience with other security technologies such as Firewalls, IDS/IPS, SIEM, and DLP. Strong understanding of security policies, procedures, and standards. Experience with security assessments and audits. Excellent analytical and problem-solving skills. Additional Information: The candidate should have hands-on experience on minecast, O365 and bitlocker tools The candidate should have a minimum of 3 years of experience in Email Security. The ideal candidate will possess a strong educational background in Computer Science, Information Technology, or a related field, along with relevant certifications such as CISSP, CISM, or CEH. This position is based at our Bangalore office. Qualification Related qualifications and certifications

Project Role : Security Engineer Project Role Description : Apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Must have skills : Email Security Good to have skills : NA Minimum 3 year(s) of experience is required Educational Qualification : Related qualifications and certifications Summary :As a Security Engineer, you will be responsible for applying your expertise in Email Security to design, build, and protect enterprise systems, applications, data, assets, and people. Your typical day will involve safeguarding information, infrastructures, applications, and business processes against cyber threats using your knowledge of Email Security. Roles & Responsibilities: Design, implement, and maintain Email Security solutions to protect enterprise systems, applications, data, assets, and people. Conduct regular security assessments and audits to identify vulnerabilities and recommend appropriate remediation measures. Collaborate with cross-functional teams to ensure that security policies, procedures, and standards are implemented and adhered to. Provide technical guidance and support to other teams on Email Security-related issues and incidents. Professional & Technical Skills: Must To Have Skills:In-depth knowledge of Email Security technologies and solutions like minecast, O365 and bitlocker tools Good To Have Skills:Experience with other security technologies such as Firewalls, IDS/IPS, SIEM, and DLP. Strong understanding of security policies, procedures, and standards. Experience with security assessments and audits. Excellent analytical and problem-solving skills. Additional Information: The candidate should have hands-on experience on minecast, O365 and bitlocker tools The candidate should have a minimum of 5 years of experience in Email Security. The ideal candidate will possess a strong educational background in Computer Science, Information Technology, or a related field, along with relevant certifications such as CISSP, CISM, or CEH. This position is based at our Gurugram office. Qualifications Related qualifications and certifications

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Cloud Infrastructure Good to have skills : AWS Architecture Minimum 0-2 year(s) of experience is required Educational Qualification : BE Summary :As a Security Architect, you will be responsible for defining the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve documenting the implementation of the cloud security controls and transitioning to cloud security-managed operations using your expertise in Cloud Infrastructure and AWS Architecture. Roles & Responsibilities: Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Collaborate with cross-functional teams to ensure the security of cloud infrastructure. Provide technical guidance and support to the team on cloud security best practices and standards. Stay updated with the latest advancements in cloud security and integrate innovative approaches for sustained competitive advantage. Professional & Technical Skills: Must To Have Skills:Expertise in Cloud Infrastructure. Good To Have Skills:AWS Architecture. Strong understanding of cloud security best practices and standards. Experience in implementing cloud security controls. Experience in providing technical guidance and support to the team. Solid grasp of the latest advancements in cloud security. Additional Information: The candidate should have a minimum of 0-2 years of experience in Cloud Infrastructure. The ideal candidate will possess a strong educational background in computer science, or a related field, along with a proven track record of delivering impactful cloud security solutions. This position is based at our Bengaluru office. Qualification BE

Project Role : Security Engineer Project Role Description : Apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Must have skills : SAP Governance Risk and Compliance (SAP GRC) Good to have skills : Application Security Architecture and Design Minimum 5 year(s) of experience is required Educational Qualification : 15 years of full time education Summary :As a Security Engineer, you will be responsible for designing, building, and protecting enterprise systems, applications, data, assets, and people. Your typical day will involve applying security skills to safeguard information, infrastructures, applications, and business processes against cyber threats using SAP Governance Risk and Compliance (SAP GRC) and Application Security Architecture and Design. Roles & Responsibilities: Design and implement SAP GRC solutions to manage risks and compliance requirements for enterprise systems and applications. Develop and maintain security policies, standards, and procedures to ensure the confidentiality, integrity, and availability of information assets. Conduct security assessments and audits to identify vulnerabilities and recommend remediation actions. Collaborate with cross-functional teams to integrate security controls into the software development lifecycle and ensure compliance with regulatory requirements. Provide technical guidance and support to project teams on security-related issues and best practices. Professional & Technical Skills: Must To Have Skills:Experience in SAP Governance Risk and Compliance (SAP GRC). Good To Have Skills:Experience in Application Security Architecture and Design. Strong understanding of security frameworks, standards, and best practices, such as ISO 27001, NIST, and OWASP. Experience in conducting security assessments and audits using tools such as Nessus, Qualys, or OpenVAS. Knowledge of network and system security, including firewalls, intrusion detection and prevention systems, and endpoint protection solutions. Additional Information: The candidate should have a minimum of 5 years of experience in SAP Governance Risk and Compliance (SAP GRC). The ideal candidate will possess a strong educational background in computer science, information technology, or a related field, along with relevant security certifications such as CISSP, CISM, or CISA. This position is based at our Kolkata office. Qualification 15 years of full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Infrastructure Service Management Good to have skills : NA Minimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will be responsible for defining the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. You will document the implementation of the cloud security controls and transition to cloud security-managed operations. Your typical day will involve designing and implementing security solutions, collaborating with cross-functional teams, and ensuring the integrity and confidentiality of data in the cloud environment. Roles & Responsibilities: Expected to be an SME, collaborate and manage the team to perform. Responsible for team decisions. Engage with multiple teams and contribute on key decisions. Provide solutions to problems for their immediate team and across multiple teams. Design and implement security solutions to protect cloud environments. Collaborate with cross-functional teams to ensure the integrity and confidentiality of data. Develop and maintain cloud security policies, standards, and procedures. Conduct risk assessments and vulnerability scans to identify potential security threats. Stay up-to-date with the latest security trends and technologies to recommend improvements and enhancements. Professional & Technical Skills: Must To Have Skills:Proficiency in Infrastructure Service Management. Experience with cloud security frameworks and architectures. Strong understanding of network security principles and best practices. Knowledge of cloud platforms such as AWS, Azure, or Google Cloud. Experience with security tools and technologies, such as firewalls, intrusion detection systems, and SIEM solutions. Good To Have Skills:CISSP or CISM certification. Experience with security incident response and management. Familiarity with regulatory compliance requirements, such as GDPR or HIPAA. Additional Information: The candidate should have a minimum of 5 years of experience in Infrastructure Service Management. This position is based at our Kolkata office. A 15 years full time education is required. Qualifications 15 years full time education

Project Role : Security Architect Project Role Description : Define the security architecture, ensuring that it meets the business requirements and performance goals. Must have skills : Integrated Security Risk Management Good to have skills : NA Minimum 3 year(s) of experience is required Educational Qualification : Bachelors degree in computer science, IT, information systems management or equivalent area Summary :As a Security Architect, you will be responsible for defining the security architecture, ensuring that it meets the business requirements and performance goals. Your typical day will involve working with Integrated Security Risk Management and collaborating with cross-functional teams to ensure the security of the organization's assets. Roles & Responsibilities: Lead the development and implementation of security architecture for the organization, ensuring that it meets the business requirements and performance goals. Collaborate with cross-functional teams to ensure the security of the organization's assets, including data, applications, and infrastructure. Conduct risk assessments and develop risk management strategies to mitigate security threats. Develop and maintain security policies, procedures, and standards to ensure compliance with regulatory requirements and industry best practices. Provide technical guidance and support to the organization's security team, including mentoring and training on security best practices. Professional & Technical Skills: Must To Have Skills:Experience with Integrated Security Risk Management. Good To Have Skills:Experience with security technologies such as firewalls, intrusion detection and prevention systems, and security information and event management (SIEM) systems. Strong understanding of security architecture principles and best practices. Experience with risk assessment and management methodologies. Experience with security policy development and implementation. Excellent communication and collaboration skills. Additional Information: The candidate should have a minimum of 3 years of experience in Integrated Security Risk Management. The ideal candidate will possess a strong educational background in computer science, information technology, or a related field, along with relevant security certifications such as CISSP, CISM, or CISA. This position is based at our Coimbatore office. Qualifications Bachelors degree in computer science, IT, information systems management or equivalent area