833 Cissp Jobs - Page 8

Role Purpose The purpose of this role is to design the organisations computer and network security infrastructure and protect its systems and sensitive information from cyber threats Do 1. Design and develop enterprise cyber security strategy and architecture a. Understand security requirements by evaluating business strategies and conducting system security vulnerability and risk analyses b. Identify risks associated with business processes, operations, information security programs and technology projects c. Identify and communicate current and emerging security threats and design security architecture elements to mitigate threats as they emerge d. Identify security design gaps in existing and proposed architectures and recommend changes or enhancements e. Provide product best fit analysis to ensure end to end security covering different faucets of architecture e.g. Layered security, Zoning, Integration aspects, API, Endpoint security, Data security, Compliance and regulations f. Demonstrate experience in doing security assessment against NIST Frameworks, SANS, CIS, etc. g. Provide support during technical deployment, configuration, integration and administration of security technologies h. Demonstrate experience around ITIL or Key process-oriented domains like incident management, configuration management, change management, problem management etc. i. Provide assistance for disaster recovery in the event of any security breaches, attacks, intrusions and unusual, unauthorized or illegal activity j. Provide solution of RFPs received from clients and ensure overall design assurance i. Develop a direction to manage the portfolio of to-be-solutions including systems, shared infrastructure services, applications, hardware related to cyber risk security in order to better match business outcome objectives ii. Analyse technology environment, enterprise specifics, client requirements to set a collaboration design framework/ architecture iii. Depending on the clients need with particular standards and technology stacks create complete RFPs iv. Provide technical leadership to the design, development and implementation of custom solutions through thoughtful use of modern technology v. Define and understand current state solutions and identify improvements, options & tradeoffs to define target state solutions vi. Clearly articulate and sell architectural targets, recommendations and reusable patterns and accordingly propose investment roadmaps vii. Evaluate and recommend solutions to integrate with overall technology ecosystem viii. Tracks industry and application trends and relates these to planning current and future IT needs 2. Stakeholder coordination & audit assistance a. Liaise with stakeholders in relation to cyber security issues and provide timely support and future recommendations b. Provide assistance in maintaining an information security risk register and help with internal and external audits relating to information security c. Support audit of security best practices and implementation of security principles across the organization, to meet business goals along with customer and regulatory requirements d. Assist with the creation, maintenance and delivery of cyber security awareness training to team members and customers e. Provide training to employees on issues such as spam and unwanted or malicious emails Mandatory Skills: IDAM Security Consulting. Experience: 8-10 Years.

Role Purpose The purpose of this role is to design the organisations computer and network security infrastructure and protect its systems and sensitive information from cyber threats Do 1. Design and develop enterprise cyber security strategy and architecture a. Understand security requirements by evaluating business strategies and conducting system security vulnerability and risk analyses b. Identify risks associated with business processes, operations, information security programs and technology projects c. Identify and communicate current and emerging security threats and design security architecture elements to mitigate threats as they emerge d. Identify security design gaps in existing and proposed architectures and recommend changes or enhancements e. Provide product best fit analysis to ensure end to end security covering different faucets of architecture e.g. Layered security, Zoning, Integration aspects, API, Endpoint security, Data security, Compliance and regulations f. Demonstrate experience in doing security assessment against NIST Frameworks, SANS, CIS, etc. g. Provide support during technical deployment, configuration, integration and administration of security technologies h. Demonstrate experience around ITIL or Key process-oriented domains like incident management, configuration management, change management, problem management etc. i. Provide assistance for disaster recovery in the event of any security breaches, attacks, intrusions and unusual, unauthorized or illegal activity j. Provide solution of RFPs received from clients and ensure overall design assurance i. Develop a direction to manage the portfolio of to-be-solutions including systems, shared infrastructure services, applications, hardware related to cyber risk security in order to better match business outcome objectives ii. Analyse technology environment, enterprise specifics, client requirements to set a collaboration design framework/ architecture iii. Depending on the clients need with particular standards and technology stacks create complete RFPs iv. Provide technical leadership to the design, development and implementation of custom solutions through thoughtful use of modern technology v. Define and understand current state solutions and identify improvements, options & tradeoffs to define target state solutions vi. Clearly articulate and sell architectural targets, recommendations and reusable patterns and accordingly propose investment roadmaps vii. Evaluate and recommend solutions to integrate with overall technology ecosystem viii. Tracks industry and application trends and relates these to planning current and future IT needs 2. Stakeholder coordination & audit assistance a. Liaise with stakeholders in relation to cyber security issues and provide timely support and future recommendations b. Provide assistance in maintaining an information security risk register and help with internal and external audits relating to information security c. Support audit of security best practices and implementation of security principles across the organization, to meet business goals along with customer and regulatory requirements d. Assist with the creation, maintenance and delivery of cyber security awareness training to team members and customers e. Provide training to employees on issues such as spam and unwanted or malicious emails Mandatory Skills: IDAM Security Consulting. Experience: 8-10 Years.

Role Purpose The purpose of this role is to design the organisations computer and network security infrastructure and protect its systems and sensitive information from cyber threats Do 1. Design and develop enterprise cyber security strategy and architecture a. Understand security requirements by evaluating business strategies and conducting system security vulnerability and risk analyses b. Identify risks associated with business processes, operations, information security programs and technology projects c. Identify and communicate current and emerging security threats and design security architecture elements to mitigate threats as they emerge d. Identify security design gaps in existing and proposed architectures and recommend changes or enhancements e. Provide product best fit analysis to ensure end to end security covering different faucets of architecture e.g. Layered security, Zoning, Integration aspects, API, Endpoint security, Data security, Compliance and regulations f. Demonstrate experience in doing security assessment against NIST Frameworks, SANS, CIS, etc. g. Provide support during technical deployment, configuration, integration and administration of security technologies h. Demonstrate experience around ITIL or Key process-oriented domains like incident management, configuration management, change management, problem management etc. i. Provide assistance for disaster recovery in the event of any security breaches, attacks, intrusions and unusual, unauthorized or illegal activity j. Provide solution of RFPs received from clients and ensure overall design assurance i. Develop a direction to manage the portfolio of to-be-solutions including systems, shared infrastructure services, applications, hardware related to cyber risk security in order to better match business outcome objectives ii. Analyse technology environment, enterprise specifics, client requirements to set a collaboration design framework/ architecture iii. Depending on the clients need with particular standards and technology stacks create complete RFPs iv. Provide technical leadership to the design, development and implementation of custom solutions through thoughtful use of modern technology v. Define and understand current state solutions and identify improvements, options & tradeoffs to define target state solutions vi. Clearly articulate and sell architectural targets, recommendations and reusable patterns and accordingly propose investment roadmaps vii. Evaluate and recommend solutions to integrate with overall technology ecosystem viii. Tracks industry and application trends and relates these to planning current and future IT needs 2. Stakeholder coordination & audit assistance a. Liaise with stakeholders in relation to cyber security issues and provide timely support and future recommendations b. Provide assistance in maintaining an information security risk register and help with internal and external audits relating to information security c. Support audit of security best practices and implementation of security principles across the organization, to meet business goals along with customer and regulatory requirements d. Assist with the creation, maintenance and delivery of cyber security awareness training to team members and customers e. Provide training to employees on issues such as spam and unwanted or malicious emails Mandatory Skills: IDAM Security Consulting. Experience: 8-10 Years.

Conduct Cyber Risk reviews for the organizational clients in a swift and thorough manner Assist in understanding common cyber threats and vulnerabilities Assist in understanding common cybersecurity and privacy issues that stem from connections with internal and external customers and partner organizations Assist in understanding Business continuity and disaster recovery planning methodologies Assist in understanding risk management methodologies and procedures Understand Underwriting Insights for Risk Report Creation Assist to prepare a risk report based on organizational internal cyber resilience network, which can become the primary basis of underwriting the cyber risk. Assist in understanding qualitative and quantitative methods for analyzing, interpreting, and synthesizing raw data into intelligence for deriving insights for liability underwriting Roles and Responsibilities 2

We are looking for cyber Security for Aurangabad location. Experience with security tools such as firewalls, intrusion detection/prevention systems (IDS/IPS), SIEM, and encryption technologies Strong skills in system design and architecture.

Job Description Role and Responsibilities: Act as a primary liaison between technical teams and business stakeholders, facilitating expert advice on vulnerability remediation strategies and best practices. Ensure strict adherence to security standards and advocate for the seamless integration of security measures into the Software Development Life Cycle (SDLC). Develop and nurture collaborative relationships with business and development teams to align security objectives with business priorities, ensuring mutual benefit and effective prioritization. Assess risks identified in vulnerability assessment results and other security-related data, prioritizing remediations in alignment with business objectives. Partner with application teams to devise strategies for mitigating identified security gaps, assisting in the planning and prioritization of security remediation efforts and control implementations. Provide technical guidance and support to application teams in implementing security controls, advocating for security-by-design principles, and integrating security scanning into the application build process. Collaborate closely with stakeholders to ensure the completeness and accuracy of information security exception requests, aligning them with predetermined criteria and established risk tolerance levels. Regularly communicate with management and stakeholders, presenting detailed reports and updates on vulnerabilities, ongoing remediation efforts, and the status and trends of exception requests Conduct ongoing security research to stay abreast of current security challenges, identifying new opportunities for security integration and automation to enhance overall security posture. Provide training and awareness on vulnerability risk management practices to technical teams and business stakeholders. Requirements: Bachelor's degree in computer science, Information Security, or a related field. Good to have advanced degree or relevant certifications (e.g., CISSP, CISM). Minimum 8 years of demonstrated expertise in application security, coupled with proficiency in development. Strong understanding of application security concepts, vulnerabilities, and attack vectors. Robust Information Security technical skills and knowledge to identify, research, and understand security control gaps and program compliance issues. Exceptional ability to communicate security concepts, threats, controls, and mitigation/remediation strategies to diverse audiences, including those unfamiliar with such topics. Proven track record in information security vulnerability assessment, remediation, and security governance. Familiarity with Security Policies, Procedures, Audit, and Compliance requirements. Expert understanding of code syntax and semantics of at least one object-oriented programming language. Possess an analytical mindset with the ability to prioritize and assess risks related to vulnerabilities and exception requests. Proven ability to work independently, prioritize tasks, and manage multiple projects simultaneously in a fast-paced environment, ensuring timely and efficient completion of objectives. Soft Skills: Excellent communication and interpersonal skills, adept at articulating technical concepts to non-technical stakeholders. Capable of effectively collaborating with cross-functional teams and building consensus is essential. Commitment to continuous learning and staying updated on industry developments and emerging technologies. Good to have: Familiarity with cloud security concepts, cloud services, and cloud security controls. Knowledge of security frameworks, standards, and benchmarks.

As a Staff member in our team, your primary responsibility will be to perform and document testing on consulting, compliance, and internal audit engagements within financial institutions, specifically focusing on IT risk, strategy, and governance. Additionally, you will provide training and supervision to other Staff members involved in the engagements. Your role will involve identifying findings and documenting opportunities for process improvement, as well as researching technical issues that may arise during the engagement. You will collaborate with Managers and Senior Managers to develop strategic solutions that meet client needs and assist in engagement planning, execution, and final report issuance within client deadlines. Furthermore, you will play a crucial role in laying the groundwork for building strong relationships with clients, which includes participation in networking and business development activities. Your dedication to meeting client deadlines and delivering exceptional client service will be key to your success in this role. To be considered for this position, you must hold a Bachelor's degree. While certifications such as CISA, CISM, or CISSP are preferred, candidates who are not certified must meet educational requirements to obtain a license upon hire in their state of employment. Additional certifications such as CPA, CIA, CRCM, CAMS, CFIRS, CFE, and/or CFF are advantageous. Ideally, you should have a minimum of 3 years of experience in information systems, internal audit, regulatory compliance, or consulting services. Experience in network engineering/administration with a security focus is desirable. Knowledge of IT control and service management standards like CObIT, ITIL, and ISO is preferred, along with SOX IT audit experience. Previous experience in banking or credit unions would be a plus. We are looking for individuals who can work effectively both as part of a team and independently, demonstrating creative problem-solving skills and strong research capabilities. Excellent verbal and written communication skills, along with proficient use of Microsoft Office tools, are essential. The ability to manage multiple priorities, tasks, and projects simultaneously is also crucial for success in this role.,

What we’re looking for In this dynamic Information Security Analyst III role, you'll be at the forefront of protecting SurveyMonkey by crafting sophisticated threat detections and staying ahead of emerging threats within the security operations team. You will be reporting to the Information Security Manager. Leveraging your expertise in SIEM query languages, you'll play a key role in identifying and mitigating risks, ensuring the company's security posture remains robust. We are looking for someone who has experience in automation and is constantly challenged to expand their knowledge of the latest security trends while contributing to the defense of a widely trusted service. What you’ll be working on Monitor and triage security events, identify vulnerabilities, and respond to security incidents. Develop and refine security automation playbooks. Expertise in creating threat detections and staying abreast of new and evolving threats. Ability to conduct research and log analysis into IT security issues and products as required. Deploy, manage and maintain all security tools and ensure strong security posture of corporate devices. We’d love to hear from people with Bachelor degree in Information Security, Cybersecurity, Information Technology, or a related field. 8+ years of hands-on experience in IT security, compliance or incident response. Strong familiarity with SIEMs, EDR, SOAR platforms (e.g.,CrowdStrike, LogScale, XSOAR) Working experience with MITRE ATT&CK and Cyber Kill Chain frameworks Experience with AWS cloud security monitor and detection tools. (e.g, AWS GuardDuty, AWS Cloudwatch or AWS CloudTrail or similar) Ability to effectively prioritize and execute tasks in a high-pressure environment. Certifications preferred: Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), CompTIA Security+, Certified Information Security Manager (CISM), or similar. SurveyMonkey believes in-person collaboration is valuable for building relationships, fostering community, and enhancing our speed and execution in problem-solving and decision-making. As such, this opportunity is hybrid and requires you to work from the SurveyMonkey office in Bengaluru 3 days per week. #LI - Hybrid

Role & responsibilities Experience in understanding and reviewing solution architecture, identify the security loopholes, recommend the best solution specific to environment and technologies in use. Understanding of data criticality, classify them and suggest controls accordingly. Understanding of Containers and Kubernetes and security best practices. Expert level security knowledge in technical IT domains such as operating systems, networks, databases, cloud or solution development etc. Experience in practical security vulnerability identification and remediation. Management of multiple stakeholders including business, IT and management. Information Security domains - two or more of the following: Risk Assessment, Vulnerability Management, Incident Management, Security Architecture, Application/Network Security. This experience should include both advisory and implementation experience. Excellent work experience on micro service architecture, micro segmentation, zero trust architecture etc. Industry related certification preferred (e.g. CISSP, CISA, CISM, CISSP-ISSAP, GSEC / GCIH / GCIA: GIAC Security Certifications, ISO 27001:2013, PCIDSS 3.0, OSCP/OSCE). Preferred candidate profile

KPMG India is looking for Assistant Manager - Info Sec and Tech Risk Assessments Assistant Manager - Info Sec and Tech Risk Assessments to join our dynamic team and embark on a rewarding career journey Ensuring company policies are followed. Optimizing profits by controlling costs. Hiring, training and developing new employees. Resolving customer issues to their overall satisfaction. Maintaining an overall management style that follows company best practices. Providing leadership and direction to all employees. Ensuring product quality and availability. Preparing and presenting employee reviews. Working closely with the store manager to lead staff. Overseeing retail inventory. Assisting customers whenever necessary. Organizing employee schedule. Ensuring that health, safety, and security rules are followed. Ensuring a consistent standard of customer service. Motivating employees and ensuring a focus on the mission. Maintaining merchandise and a visual plan. Maintaining stores to standards, including stocking and cleaning. Completing tasks assigned by the general manager accurately and efficiently. Supporting store manager as needed.

Job Title - Network & Cloud Manager, Level:Manager, Entity:CF Management Level:Manager Location:Bangalore or Any location Must have skills: Strong experience in cloud security (AWS, Azure, or GCP) IAM, key management, logging, hardening. Solid foundation in network security firewalls, VPNs, SD-WAN, NAC, segmentation. Practical knowledge of security frameworks ISO 27001, NIST, CIS Controls. Project management expertise planning, risk tracking, stakeholder coordination. Strong written and verbal communication skills for reporting and presentations. Good to have skills: Job Summary : Were looking for an experienced professional to lead Information Security initiatives while also overseeing the project management of key security programs and risk initiatives. This role requires a strong understanding of cybersecurity principles, regulatory frameworks, and the ability to drive structured project execution across teams and departments. Youll be responsible for aligning our security efforts with business goals, ensuring compliance, managing risks, and driving the successful rollout of enterprise security programs. You'll work closely with cross-functional teams to deliver secure, scalable, and efficient solutions, while also ensuring projects stay on track and align with business goals. If you enjoy combining hands-on tech work with planning, process, and team leadership, this might be the right fit for you Roles & Responsibilities: Lead and manage security-related projects, ensuring alignment with business priorities and timelines. Own project delivery from initiation to closure planning, scheduling, resourcing, and reporting. Develop and manage documentation, dashboards, and executive reporting for security programs. Stay up to date with industry trends, emerging technologies, and best practices. Professional & Technical Skills: Cloud Security: AWS/Azure/GCP security services (IAM, KMS, GuardDuty, Security Center, etc.) Network Security :Firewalls (e.g., Palo Alto, Fortinet), VPNs, SD-WAN, NAC, IDS/IPS. Communication: Strong documentation, reporting, and executive presentation skills. Certifications (preferred): CISSP, CISM, CCSP, AWS Security Specialty, Azure Security Engineer, PMP Additional Information: This is a strategic yet hands-on role requiring a blend of security expertise and project execution. The position involves working with multiple internal and external stakeholders, including auditors and technology teams. Flexibility is available for remote, or hybrid work arrangements based on business needs. Opportunities for career growth in cybersecurity leadership and program management are significant. About Our Company | AccentureQualification Experience: 812 years of relevant experience in network and/or cloud security roles Minimum 35 years of experience managing security-related projects Ability to work across teams and manage deliverables in matrix environments A strategic yet practical approach to solving security and governance challenges Ability to stay current on emerging threats, technologies, and best practices Educational Qualification: Bachelors Degree in Engineering B.Tech / B.E in Computer Science, Information Technology, Electronics & Communication, or a related field. Preferred :Certifications such as AWS Certified Solutions Architect, Microsoft Certified:Azure Administrator, CCNP, CISSP, CISM, or other relevant cloud and security certifications.

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : SailPoint IdentityIQ Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to assess security needs, documenting security controls, and overseeing the transition to cloud security-managed operations, all while ensuring compliance with industry standards and best practices. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Facilitate training and knowledge sharing sessions to enhance team capabilities.- Monitor and evaluate the effectiveness of security measures and recommend improvements. Professional & Technical Skills: - Must To Have Skills: Proficiency in SailPoint IdentityIQ.- Strong understanding of cloud security principles and frameworks.- Experience with identity governance and administration solutions.- Familiarity with regulatory compliance requirements related to security.- Ability to analyze and mitigate security risks effectively. Additional Information:- The candidate should have minimum 7.5 years of experience in SailPoint IdentityIQ.- This position is based at our Coimbatore office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Threat Hunting Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. A typical day involves collaborating with various teams to assess security needs, documenting the implementation of cloud security controls, and transitioning to cloud security-managed operations. You will engage in discussions to refine security strategies and ensure compliance with industry standards, all while adapting to the evolving landscape of cloud security threats and solutions. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Facilitate training sessions to enhance team knowledge and skills in security practices.- Evaluate and recommend new security technologies and tools to improve the overall security posture. Professional & Technical Skills: - Must To Have Skills: Proficiency in Security Threat Hunting.- Strong understanding of cloud security principles and frameworks.- Experience with incident response and threat intelligence.- Familiarity with security compliance standards such as ISO 27001 and NIST.- Ability to analyze security incidents and develop mitigation strategies. Additional Information:- The candidate should have minimum 7.5 years of experience in Security Threat Hunting.- This position is based at our Gurugram office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : CyberArk Privileged Access Management Good to have skills : NAMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to assess security needs, documenting the implementation of cloud security controls, and facilitating the transition to cloud security-managed operations. You will engage in discussions to refine security strategies and ensure compliance with industry standards, all while adapting to the evolving landscape of cloud technologies and security threats. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work related problems.- Conduct regular assessments of cloud security measures to identify potential vulnerabilities and recommend improvements.- Collaborate with cross-functional teams to ensure alignment of security practices with business objectives. Professional & Technical Skills: - Must To Have Skills: Proficiency in CyberArk Privileged Access Management.- Strong understanding of cloud security principles and best practices.- Experience with identity and access management solutions.- Familiarity with compliance frameworks such as ISO 27001, NIST, or GDPR.- Ability to analyze security incidents and develop effective response strategies. Additional Information:- The candidate should have minimum 3 years of experience in CyberArk Privileged Access Management.- This position is based at our Bengaluru office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : One Identity Manager Good to have skills : NAMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to assess security needs, documenting security controls, and transitioning to cloud security-managed operations. You will engage in discussions to refine security strategies and ensure compliance with industry standards, all while adapting to the evolving landscape of cloud technologies. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work related problems.- Assist in the development and documentation of security policies and procedures.- Evaluate and recommend security technologies and tools to enhance the security posture. Professional & Technical Skills: - Must To Have Skills: Proficiency in One Identity Manager.- Good To Have Skills: Experience with cloud security frameworks and compliance standards.- Strong understanding of identity and access management principles.- Experience in designing and implementing security architectures for cloud environments.- Familiarity with risk assessment methodologies and security best practices. Additional Information:- The candidate should have minimum 3 years of experience in One Identity Manager.- This position is based at our Pune office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : One Identity Manager Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to assess security needs, documenting security controls, and transitioning to cloud security-managed operations. You will engage in strategic discussions to align security measures with organizational objectives, ensuring a robust security posture in the cloud environment. Your role will also include reviewing and refining security policies and procedures to adapt to evolving threats and compliance requirements, ultimately contributing to the overall security strategy of the organization. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Develop and maintain comprehensive documentation of security architecture and controls.- Conduct regular security assessments and audits to identify vulnerabilities and recommend improvements. Professional & Technical Skills: - Must To Have Skills: Proficiency in One Identity Manager.- Strong understanding of cloud security principles and best practices.- Experience with identity and access management solutions.- Familiarity with regulatory compliance frameworks such as GDPR, HIPAA, or PCI-DSS.- Ability to analyze security incidents and implement effective remediation strategies. Additional Information:- The candidate should have minimum 5 years of experience in One Identity Manager.- This position is based at our Kolkata office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : CyberArk Privileged Access Management Good to have skills : NAMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to document the implementation of cloud security controls and facilitate the transition to cloud security-managed operations, ensuring that all security measures align with organizational objectives and compliance standards. You will also engage in discussions to refine security strategies and address any emerging challenges in the cloud environment, contributing to a secure and efficient operational landscape. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work related problems.- Develop and maintain comprehensive documentation of cloud security architecture and controls.- Evaluate and recommend security technologies and practices to enhance the cloud security posture. Professional & Technical Skills: - Must To Have Skills: Proficiency in CyberArk Privileged Access Management.- Strong understanding of cloud security principles and best practices.- Experience with identity and access management solutions.- Familiarity with compliance frameworks such as ISO 27001, NIST, or GDPR.- Ability to analyze security incidents and implement corrective actions. Additional Information:- The candidate should have minimum 3 years of experience in CyberArk Privileged Access Management.- This position is based at our Pune office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : SailPoint IdentityIQ Good to have skills : Security Architecture DesignMinimum 18 year(s) of experience is required Educational Qualification : Minimum 15 years of full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to assess security needs, documenting the implementation of cloud security controls, and overseeing the transition to cloud security-managed operations. You will engage in strategic discussions to align security measures with organizational objectives, while continuously evaluating and enhancing security protocols to adapt to evolving threats and technologies. Roles & Responsibilities:- Expected to be a Subject Matter Expert with deep knowledge and experience.- Should have influencing and advisory skills.- Engage with multiple teams and responsible for team decisions.- Expected to provide solutions to problems that apply across multiple teams, and provide solutions to business area problems.- Facilitate workshops and training sessions to enhance team understanding of security protocols and best practices.- Conduct regular assessments of security frameworks to ensure compliance with industry standards and regulations. Professional & Technical Skills: - Must To Have Skills: Proficiency in SailPoint IdentityIQ.- Good To Have Skills: Experience with Security Architecture Design.- Strong understanding of cloud security principles and practices.- Experience in risk assessment and management related to cloud environments.- Ability to design and implement security controls tailored to specific business needs. Additional Information:- The candidate should have minimum 18 years of experience in SailPoint IdentityIQ.- This position is based at our Chennai office.- A Minimum 15 years of full time education is required. Qualification Minimum 15 years of full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Architecture Design Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : BE or MCA or MSc with Good Computer Science Background with good academic record of 65 and above Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to document the implementation of cloud security controls and facilitating the transition to cloud security-managed operations, ensuring that all security measures align with organizational objectives and compliance standards. You will engage in discussions to refine security strategies and provide guidance on best practices, contributing to a secure and efficient cloud environment. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Develop and maintain comprehensive documentation of security architecture and controls.- Conduct regular assessments of security measures to identify areas for improvement. Professional & Technical Skills: - Must To Have Skills: Proficiency in Security Architecture Design.- Strong understanding of cloud security principles and frameworks.- Experience with risk assessment and management methodologies.- Knowledge of compliance standards such as ISO 27001, NIST, or GDPR.- Familiarity with security tools and technologies for threat detection and response. Additional Information:- The candidate should have minimum 5 years of experience in Security Architecture Design.- This position is based in Coimbatore.- A BE or MCA or MSc with Good Computer Science Background with good academic record of 65 and above is required. Qualification BE or MCA or MSc with Good Computer Science Background with good academic record of 65 and above

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : SailPoint IdentityIQ Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to assess security needs, documenting security controls, and overseeing the transition to cloud security-managed operations. You will engage in strategic discussions to align security measures with organizational objectives, ensuring a robust security posture in the cloud environment. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Facilitate training sessions to enhance team knowledge and skills in cloud security.- Evaluate and recommend new security technologies and practices to improve the overall security framework. Professional & Technical Skills: - Must To Have Skills: Proficiency in SailPoint IdentityIQ.- Good To Have Skills: Experience with cloud security frameworks and compliance standards.- Strong understanding of identity governance and administration.- Experience in implementing security controls in cloud environments.- Familiarity with risk assessment methodologies and security best practices. Additional Information:- The candidate should have minimum 7.5 years of experience in SailPoint IdentityIQ.- This position is based at our Hyderabad office.- A 15 years full time education is required. Qualification 15 years full time education

EC-Council is the worlds largest cyber security technical certification body. We operate in 145 countries globally and we are the owner and developer of various world-famous cyber security programs. We are proud to have trained and certified over 220,000 information security professionals globally that have influenced the cyber security mindset of countless organizations worldwide. www.eccouncil.org We are seeking a seasoned and strategic Information Security Lead to spearhead our cybersecurity initiatives and lead a team of talented security engineers. In this critical role, you will be responsible for defining security strategy, optimising security architecture, and driving execution across multiple security domains including cloud, network, application, and endpoint security. You will serve as both a technical expert and a team leader, ensuring the organization's digital assets are well protected while fostering a high-performing security team. If you bring a passion for security, strong leadership skills, and a track record of building secure enterprise environment then we want to hear from you. Infosec Lead Responsibilities: As an Infosec Lead, your responsibilities will include: Lead a team of security engineers, overseeing their work, mentoring them, and ensuring alignment with organizational objectives. Manage end-to-end execution of IT security projects, including design, planning, implementation, and ongoing optimization ofsecurity architecture, infrastructure and solutions. Define and implement next-generation security strategies, architectures, and governance processes. Partner with key stakeholders across business units to understand requirements and deliver for-purpose security solutions. Validate and manage Business Continuity (BCP) and Disaster Recovery (DR) plans, coordinating with relevant teams. Prepare, review, and maintain documentation including incident reports, policies, procedures, and technical recommendations. Continuously assess and enhance the organizations security posture across antivirus, application control, rewall, SIEM, VPN, SSL, IDS/IPS, and more. INFORMATION SECURITY LEAD JD Develop and enforce infrastructure and application hardening strategies aligned with best practices. Lead threat modeling, risk assessments, and vulnerability remediation efforts. Identify new tools, opportunities, and innovations to improve Security Operations and efficiency. Drive implementation of audit recommendations, and continuously in-tune security appliances and controls. Maintain expertise in threat landscape analysis and risk profiling, and apply it to organizational defense mechanisms. Manage relationships with external vendors, security product providers, and managed services partners. Oversee vulnerability management and penetration testing programs; ensure timely mitigation and closure of findings. Collaborate with application, DevOps, and infrastructure teams to integrate security into DevSecOps pipelines. Present detailed security posture reports, KPIs, and dashboards to senior leadership and the board. Infosec Lead Requirements: To be successful in this role, you should have: 10+ years of experience in Information Security, with 3+ years in a team leadership role managing security teams. Proven experience in leading cross-functional team, mentoring security engineers, and building strong team dynamics. Expertise in developing and managing security architectures, policies, and controls across cloud and on-prem environments. Hands-on experience with cloud security in Azure and AWS environments. Proficient with security tools including rewalls (SonicWALL, Fortinet), SIEM, endpoint protection, network monitoring, and IAM solutions. Deep knowledge of routing, switching, and network segmentation practices for secure infrastructure design. Familiarity with ISO 27001, NIST, CIS, PCI-DSS, and other global security standards. Proficient in DevSecOps methodologies, tools, and CI/CD integration. Experience presenting security metrics, dashboards, and strategic updates to executive stakeholders. Bachelor'ss degree in Computer Science, Information Systems, or related field; certiifications such as CISSP, CISM, CCSP, or CEH are preferred. Strong understanding of threat intelligence, incident response, and forensics. Excellent communication skills with the ability to simplify complex technical topics for business audiences. Personal Attributes and Soft Skills Team Leadership: Builds, mentors, and inspires a high-performing security team; leads with integrity, empathy, and technical credibility. Strategic Thinking: Aligns security initiatives with business goals, ensuring a proactive and forward-thinking security posture. Customer Focus: Balances security needs with user experience and business priorities. Problem-Solving Skills: Approaches challenges analytically and methodically to design effective, ong-term security solutions. Project & Task Ownership: Takes full accountability for delivering results across people, process, and technology. Mentorship: Guides junior engineers with structured feedback, hands-on coaching, and growth opportunities. Requirement Understanding: Converts business and technical requirements into well-dened security policies and actions. Proactive Approach: Anticipates security risks, stays updated with industry trends, and responds with agility. Effective Time Management: Prioritizes competing demands effectively while managing incidents and projects simultaneously. Additional Information We are an equal opportunity workplace and are an affirmative action employer. We are always committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, or Veteran status and we do not discriminate on the basis of such characteristics or any other status protected by the laws or regulations in the locations where we work. This job description has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job. EC-Council is committed to working with and providing reasonable accommodation to individuals with disabilities. If you have a medical condition or disability which inhibits your ability to complete any part of the application process and are in need of a reasonable accommodation to complete the process, please contact us ecchr@eccouncil.org and let us know how we may assist you. This notice together with our Privacy Policy and Terms of Use of this website and any other documents we mention here are meant to inform you on what personal data about you we collect, use, disclose, share or otherwise process when you are applying for a job at EC-Council or when EC-Council contacts you for recruitment purposes. Please read carefully to understand our views and practices on how we protect your personal data - Privacy Policy | EC-Council (eccouncil.org).

At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we're counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. As a Technology Transformation Risk Manager, you will play a pivotal role in ensuring that technology transformations within the organization are carried out with a comprehensive understanding and management of the associated risks. Your responsibilities will include identifying, evaluating, and mitigating risks related to technology change initiatives, ensuring alignment with the company's risk appetite and compliance with relevant regulations and standards. You will lead risk assessments for technology transformation projects such as cloud migrations, system implementations, and digital innovations. Additionally, you will develop and maintain a risk management framework tailored to technology transformations, integrating industry best practices and regulatory requirements. Collaboration with project teams to identify potential risks early in the transformation lifecycle and recommend mitigation strategies will be key. You will monitor the effectiveness of risk mitigation plans, adjust them as necessary to address emerging risks and changes in the project scope, and facilitate risk workshops and training sessions to promote a proactive risk management culture among technology and business teams. Furthermore, you will liaise with internal and external stakeholders, including auditors, regulators, and third-party vendors, to ensure comprehensive risk coverage. Providing regular reporting to senior management on the risk profile of technology transformation initiatives, including key risk indicators and status of mitigation efforts, will be part of your role. To qualify for this role, you must have a Bachelor's or Master's degree in Information Technology, Computer Science, Risk Management, or a related field, along with a minimum of 5 years of experience in technology risk management, focusing on transformation projects. Strong understanding of IT governance frameworks, cybersecurity principles, and data privacy regulations is required. Desired experience in Internal controls within SAP ECC/S4 Applications and professional certifications such as CRISC, CISM, CISSP, or equivalent are highly desirable. You are expected to have strong exposure to client-facing roles, collaborate with cross-functional teams, and possess excellent communication, documentation, and report writing skills. Stay abreast of emerging technologies, industry trends, and regulatory changes that may impact the risk landscape of technology transformations, and support the continuous improvement of risk management policies, procedures, and tools.,

As a Deputy Manager in VAPT & Governance at our Consulting firm in Navi Mumbai, you will be responsible for leading and managing VAPT projects for our BFS clients. Your role will involve scoping, executing, reporting, and tracking remediation of these projects. Additionally, you will deliver technical and governance-driven security assessments across various environments such as infrastructure, applications, cloud, and network. Your expertise in security governance frameworks, controls, and compliance (including RBI, ISO 27001, NIST, etc.) will be crucial in this role. You will play a key part in reviewing and developing security policies, procedures, and risk assessment frameworks. Collaborating with cross-functional teams and managing client relationships will be essential to ensure successful project outcomes. Timely reporting and communication of critical findings to stakeholders will also be part of your responsibilities. Moreover, you will have the opportunity to mentor junior team members and contribute to the development of our practice. To excel in this role, you should hold a Bachelors or Masters degree in IT, Cybersecurity, or a related field. Possessing relevant certifications such as OSCP, CEH, CISA, or CISSP would be advantageous. Your extensive consulting experience in the Banking and Financial Services industry, along with strong hands-on knowledge of VAPT tools and methodologies, will be highly valued. A deep understanding of governance, risk, and compliance specific to the BFSI sector is essential. Excellent presentation, reporting, and client communication skills are also necessary for success in this position.,

As a Network Security Engineer with Third Party Risk Management, you will be responsible for conducting third party risk assessments in alignment with company security policies and industry standards. You will also perform on-site assessments of vendors to identify opportunities for improvement and provide input to aid in the development of policies focused on the security of third-party business processes. Additionally, you will foster relationships and influence the behavior of internal teams and external parties. Your role will involve developing and maintaining supplier risk and control monitoring plans, as well as performing monitor activities and analysis of evidence to ensure controls are operating effectively. You will be required to complete monitor and control tasks triggered by supplier Tier and Third Party Interaction Model. Collaboration with line of business stakeholders to deliver year-over-year cost savings with managed third party relationships is a key aspect of the position. Qualifications for this role include a minimum of 4 years of experience in developing and maintaining global vendor risk management programs. Possession of CISSP, CISM, CISA, or CRISC certification is preferred. A solid understanding of information technology and security solutions is essential. You will also be responsible for monitoring and ensuring successful delivery against third party contractual obligations, as well as assisting in the development of SLAs or key performance indicators for third party relationships. To apply for this position, please email your resume to hr@harinexsolutions.com and follow our company page for more job opportunities.,

The Senior DevOps, Platform, and Infra Security Engineer opportunity at FICO's highly modern and innovative analytics and decision platform involves shaping the next generation security for FICO's Platform. You will address cutting-edge security challenges in a highly automated, complex, cloud & microservices-driven environment inclusive of design challenges and continuous delivery of security functionality and features to the FICO platform as well as the AI/ML capabilities used on top of the FICO platform, as stated by the VP of Engineering. In this role, you will secure the design of the next-generation FICO Platform, its capabilities, and services. You will provide full-stack security architecture design from cloud infrastructure to application features for FICO customers. Collaborating closely with product managers, architects, and developers, you will implement security controls within products. Your responsibilities will also include developing and maintaining Kyverno policies for enforcing security controls in Kubernetes environments and defining and implementing policy-as-code best practices in collaboration with platform, DevOps, and application teams. As a Senior DevOps, Platform, and Infra Security Engineer, you will stay updated with emerging threats, Kubernetes security features, and cloud-native security tools. You will define required controls and capabilities for the protection of FICO products and environments, build and validate declarative threat models in a continuous and automated manner, and prepare the product for compliance attestations while ensuring adherence to best security practices. The ideal candidate for this role should have 10+ years of experience in architecture, security reviews, and requirement definition for complex product environments. Strong knowledge and hands-on experience with Kyverno and OPA/Gatekeeper are preferred. Familiarity with industry regulations, frameworks, and practices (e.g., PCI, ISO 27001, NIST) is required. Experience in threat modeling, code reviews, security testing, vulnerability detection, and remediation methods is essential. Hands-on experience with programming languages such as Java, Python, and securing cloud environments, preferably AWS, is necessary. Moreover, experience in deploying and securing containers, container orchestration, and mesh technologies (e.g., EKS, K8S, ISTIO), Crossplane for managing cloud infrastructure declaratively via Kubernetes, and certifications in Kubernetes or cloud security (e.g., CKA, CKAD, CISSP) are desirable. Proficiency with CI/CD tools (e.g., GitHub Actions, GitLab CI, Jenkins, Crossplane) is important. The ability to independently drive transformational security projects across teams and organizations and experience with securing event streaming platforms like Kafka or Pulsar are valued. Hands-on experience with ML/AI model security, IaC (e.g., Terraform, Cloudformation, Helm), and CI/CD pipelines (e.g., Github, Jenkins, JFrog) will be beneficial. Joining FICO as a Senior DevOps, Platform, and Infra Security Engineer offers you an inclusive culture reflecting core values, the opportunity to make an impact and develop professionally, highly competitive compensation and benefits programs, and an engaging, people-first work environment promoting work/life balance, employee resource groups, and social events to foster interaction and camaraderie.,