27 Container Security Jobs

As a Cyber Security professional, you will be part of the Group Operational, Technology and Cybersecurity Risk (OTCR) organization at Standard Chartered Bank in Chennai, IN. You will play a crucial role in safeguarding the bank's data and IT systems by managing technological, information, and cyber security risks across the enterprise. Reporting into the Group Chief Risk Officer (CRO), your responsibilities will include ensuring the effective implementation of Operational, Technology, and ICS controls in alignment with the Operational Risk Type Framework (ORTF) and the ICS Risk Type Framework. You will be instrumental in fostering a positive culture of Operational, Technology, and Cybersecurity risk management within the bank. Collaborating with the OTCR team, CISO & COO, you will support the Tech and ICS risk management strategy, governance, advisory, and assurance roles for various client businesses, regions, and functions. Your expertise in ICS controls domains such as Network Security Management, End-point Security, Security Incident Management, Cyber Forensic, Cloud Computing, Identity Access Management (IAM), AI/ML, and DevSecOps will be essential. Key responsibilities will involve overseeing and challenging 1st line Tech and ICS risk proposals, monitoring Tech and ICS risks and remediation plans, ensuring regulatory compliance, promoting a healthy Tech and ICS risk culture, and conducting reviews to drive improvements. You will also play a pivotal role in governance, collaborating with teams within TTO and participating in work groups to advise and challenge on Tech and ICS matters. To be successful in this role, you should have a strong background in Cyber Security frameworks, standards, and principles, Cloud and Container Security, Data Science and Analytics, ML Ops, and DevSecOps. A degree in Information and Cyber Security or Technology, along with a minimum of 10 years of experience in information security or risk management, is required. Professional certifications such as CRISC, CCSK/CCSP, CISSP, CISA, CISM are desirable. Your ability to communicate effectively in English, present complex AI/ML risk concepts to non-technical stakeholders, and uphold the highest standards of ethics and compliance will be crucial. By joining Standard Chartered, you will be part of an international bank that values diversity, inclusion, and continuous learning, offering flexible working options, wellbeing support, and opportunities for personal and professional growth. If you are looking for a purpose-driven career in Cyber Security and want to contribute to a bank that makes a positive impact, Standard Chartered welcomes your unique talents and values your commitment to driving commerce and prosperity through diversity and inclusion. For more information and to explore career opportunities, visit www.sc.com/careers.,

As a Vulnerability Management Specialist at Amdocs, you will play a crucial role in leading, implementing, identifying, assessing, and mitigating security vulnerabilities across our infrastructure, including cloud environments. Your responsibilities will include conducting regular vulnerability scans, analyzing scan results, prioritizing vulnerabilities, collaborating with stakeholders to implement remediation plans, and overseeing patch deployment processes to ensure timely remediation. You will also perform risk and vulnerability assessments, document findings, engage with stakeholders to address risks, and oversee risk acceptance and exclusion processes. Additionally, you will monitor container security and cloud security posture, provide threat management support, respond to identified threats effectively, maintain comprehensive reports on vulnerability findings and trends, and support security audits and compliance requirements related to vulnerability management. To excel in this role, you should have 6-9 years of experience in vulnerability management and threat management, hands-on experience with vulnerability scanning tools such as Wiz, Rapid7, Nessus, CrowdStrike, MDE, and Axonius, proficiency in container security, On-prem and Cloud Vulnerability Management, and experience with cloud platforms like AWS, Azure, or GCP. You should also be familiar with risk acceptance and exclusion processes, have a basic understanding of Generative AI (GenAI) concepts, possess strong analytical skills, attention to detail, excellent communication, and stakeholder management skills. Moreover, you should have a good understanding of Security Frameworks and Standards such as NIST, CIS, PCI-DSS, and experience leading a team of Vulnerability Analysts. Preferred qualifications for this role include experience with other security tools and frameworks, data visualization tools like Power BI, AWS Quicksight, scripting and automation experience in Python, Go, and security certifications like CISSP, CISM, or CEH. By joining Amdocs as a Vulnerability Management Specialist, you will have the opportunity to work with industry-leading technologies and experts in a global company, evolve yourself in cutting-edge technologies and business trends, and collaborate with a great team. Amdocs is an equal opportunity employer that welcomes applicants from all backgrounds and is committed to fostering a diverse and inclusive workforce.,

Role: Linux Administrator Experience: 6+ Years Location: Chennai Mandatory: Linux, GCP, AWS JD: Experience: o 6+ years of experience in cloud security, with a focus on enterprise product software in the cloud. o At least 3+ years of hands-on experience with major cloud platforms (AWS, Microsoft Azure, or Google Cloud Platform). o Proven experience with securing enterprise software applications and cloud infrastructures. o Strong background in securing complex, large-scale software environments with a focus on infrastructure security, data security, and application security. o Hands-on experience with the OWASP Top 10 and integrating security measures into cloud applications. o Experience with Hybrid Cloud environments and securing workloads that span on-premises and public cloud platforms. Technical Skills: o In-depth experience with cloud service models (IaaS, PaaS, SaaS) and cloud security tools (e.g., AWS Security Hub, Azure Security Center, GCP Security Command Center). o Expertise in securing enterprise applications, including web services, APIs, and microservices deployed in the cloud. o Strong experience with network security, encryption techniques, IAM policies, security automation, and vulnerability management in cloud environments. o Familiarity with container security (Docker, Kubernetes) and serverless computing security. o Hands-on experience with Infrastructure as Code (IaC) tools such as Terraform, CloudFormation, or similar tools. o Knowledge of regulatory compliance requirements such as SOC 2, GDPR, HIPAA, and how they apply to enterprise software hosted in the cloud. Show more Show less

As an Application Security Engineer at UKG, you will have the opportunity to join our internal Global Security Research & Architecture team, focusing on driving the remediation of application security vulnerabilities within UKG product lines. Your role will be crucial in ensuring the security of software applications throughout the Software Development Life Cycle. This position requires a strong technical background and expertise in software development and security. Your primary responsibilities will include identifying, reporting, and prioritizing application security vulnerabilities, collaborating with development teams to remediate them, and supporting the adoption of the internal Security Champions program. You will also provide guidance on secure coding standards, conduct code reviews, create and maintain documentation for security processes, procedures, and guidelines, as well as participate in security audits and assessments. In addition, you will be tasked with continuously improving Secure Software Development Life Cycle (S-SDLC) processes and environments, assisting in the investigation and resolution of security incidents related to applications, and ensuring optimal performance of all tools supporting the security of the Software Development Lifecycle (SDLC), such as SAST, DAST, SCA, MAST, among others. To qualify for this role, you should hold a Bachelor's degree in computer science or software engineering, with at least 8 years of proven experience in application security and software development. Additionally, experience with application security tools and techniques, a strong understanding of security frameworks and standards, and proficiency in programming languages such as Java, C#, or JavaScript/TypeScript are essential. Preferred qualifications include experience with cloud security (e.g., GCP, Azure), familiarity with container security, and knowledge of DevSecOps practices and tools. Join UKG's award-winning team and be part of our mission to inspire every organization to become a great place to work through our innovative HR technology solutions. Apply online today and contribute to a brighter tomorrow with us. UKG is proud to be an equal opportunity employer that promotes diversity and inclusion in the workplace, including the recruitment process. If you require disability accommodation during the application and interview process, please reach out to UKGCareers@ukg.com.,

As a Security Engineer at Pluang based in Gurgaon, you will play a crucial role in enhancing the investment experience for users by ensuring state-of-the-art security and reliability of the platform. Your responsibilities will include collaborating with software engineering teams, defining security requirements, participating in architecture discussions, and maintaining a vulnerability management program to identify security risks across various systems. Your expertise will be utilized in designing and developing automated solutions for security processes, implementing perimeter security measures, application security practices, cloud security controls, and threat detection mechanisms. Additionally, you will support compliance and regulatory requirements, work with third parties to enhance information security governance, and contribute to security projects as necessary. Required qualifications for this role include a minimum of 3 years of experience in Vulnerability Assessment & Penetration Testing for web and mobile applications, as well as infrastructure. You should be familiar with threat detection tools such as EDR and WAF, possess experience with cloud-based microservice architectures, and have conducted application security reviews and code analysis. Collaboration with product managers and software engineering teams to enhance security throughout the software development lifecycle is also essential. Desirable skills for this position include experience in a fast-paced environment, implementing SAST and DAST technologies, and working with Container Security. Pluang offers an attractive compensation package, opportunities for career growth, a healthy work environment, and policies promoting work-life balance and team building. Join Pluang to be part of a team that aims to empower millennials to achieve financial freedom through a diverse range of investment options. With a focus on providing access to financial products in a simple and inclusive manner, Pluang utilizes robust technology to facilitate financial investments with high returns. As an affiliate of PG Berjangka with a trading license from Bappebti, Pluang is committed to making financial markets accessible to individuals from all backgrounds.,

At EY, you will have the opportunity to shape a career that reflects your unique identity, supported by a global network, inclusive environment, and cutting-edge technology to empower you to reach your full potential. Your individual voice and perspective are key in contributing to EY's continuous improvement. By joining us, you will create a rewarding experience for yourself while playing a role in fostering a more productive working world for everyone. As a Container Security Engineer with 1-2 years of experience, your responsibilities will include designing, deploying, and troubleshooting container deployments for security scanning solutions utilizing Helm Charts on Kubernetes Platforms such as Open Shift and EKS. You will collaborate on integrating with CI/CD pipelines and automating processes to ensure seamless security testing within the code development lifecycle. Your role will involve designing security architectures and controls to protect container orchestration platforms, ensuring value delivery for both security and development teams. Additionally, you will be responsible for enforcing network policies to secure Kubernetes namespaces and pods, as well as providing API analysis and support for integrating Security Solutions with Risk and Reporting solutions to address and prioritize code vulnerabilities effectively. To excel in this role, you should possess a minimum of 1-2 years of IT experience, with at least 1 year specializing in Container Security. Proficiency in Container Technologies like Docker and Kubernetes Platforms such as OpenShift, EKS, or GKE is required. Preferred qualifications include experience in Container Deployments using Helm Charts and Infrastructure Code, particularly with Terraform, as well as familiarity with Secure Development Pipelines like Jenkins or Electric Flow. A strong understanding of relevant Security Standards (OWASP) and their application in the software development lifecycle within an agile environment is essential. Your expertise in conducting security analysis on web applications and APIs, along with knowledge of tools like Sysdig, will be beneficial in this role. EY is dedicated to building a better working world by creating sustainable value for clients, individuals, and communities while fostering trust in the global capital markets. Through the utilization of data and technology, diverse EY teams across 150 countries deliver assurance and support clients in growth, transformation, and operations. With a focus on assurance, consulting, law, strategy, tax, and transactions, EY teams strive to address complex challenges by asking innovative questions and providing new solutions to current global issues.,

As a Security Engineer at Expedia Group, you will be part of the Security Solutions Engineering team responsible for designing and implementing critical security systems and services. Your role will involve working on key initiatives from conceptualization to deployment, requiring a deep understanding of complex technical environments and the ability to develop effective security solutions. Your responsibilities will include: - Implementing Endpoint Detection and Response (EDR) solutions such as Anti-malware Agents and Data Loss Prevention - Managing Web Content Filtering for seamless Internet protection using on-premise and cloud-based web proxies - Overseeing Vulnerability Management for DC and cloud assets, including patching and compliance - Utilizing Threat Intelligence feeds from sources like Recorded Future - Conducting Threat detection through User Behavior Analysis and investigation - Integrating SIEM & SOAR solutions and managing Container security - Implementing Network security measures including Web Application Firewall, Intrusion Prevention, and Anti-malware detection - Maintaining, monitoring, and enhancing systems and security posture with a focus on service excellence - Collaborating with cross-functional teams to solve complex problems and influence engineering practices To qualify for this role, you should have: - A Bachelor's or Master's degree in a Technical field or equivalent professional experience - At least 3 years of experience in security engineering and operations support in a mission-critical environment - Hands-on experience with AWS Cloud services and security - Proficiency in various security technologies such as Web Content Filtering, Web Application Firewalls, Intrusion Detection Systems, and SIEM - Strong analytical skills and the ability to correlate and analyze security-related data - Programming experience in languages like Java, Python, Perl, or C++ - Excellent organizational and communication skills - A proactive and innovation-driven mindset with the ability to thrive in a fast-paced environment If you require any accommodations during the application process, please contact our Recruiting Accommodations Team. Join us at Expedia Group and be part of a diverse and inclusive community that values your contribution to shaping the future of travel.,

Do you aspire to be a part of a pivotal platform engineering team and play a significant role in the transformation of our organization At UBS, we are envisioning a new way of working, connecting with colleagues, clients, and partners, and delivering value. Embracing agility will enhance our responsiveness, adaptability, and innovation. We are currently seeking an IT System Engineer to join our platform engineering team. Your responsibilities will include: - Integrating container solutions within the UBS ecosystem - Developing new features for the container platform (including APIs, webhooks, UIs) - Creating automation for provisioning, upgrading, monitoring, and maintaining a large global fleet of Kubernetes clusters - Ensuring a secure container platform, production stability, and performance - Troubleshooting container workloads and implementing corrective measures - Collaborating with other engineering groups on the delivery of large-scale cloud/container programs The WMA Data Foundational Platforms & Services Crew, which fuels the WMA CDIO, is the team you will be a part of. This team provides foundational, disruptive, and modern platforms and technologies to drive business value across UBS. To excel in this role, you should possess: - 10+ years of engineering experience managing Azure Kubernetes Service - Development expertise in Java, Python, and/or Go, building containerized microservices on Kubernetes - Familiarity with Azure, Azure AD, PaaS, SaaS cloud services, and DevOps tools - Strong knowledge of setting up and supporting development/staging Kubernetes environments in Azure and on-premise deployments - Demonstrated experience in implementing CI/CD pipelines using various build and deployment plugins - Proficiency in deploying monitoring and metrics for Kubernetes containers - Deep understanding of the container ecosystem, including security, vulnerability management, monitoring, and alerting - Expertise in developing solutions for enabling development and operations teams to work with containerized applications UBS, the world's largest and truly global wealth manager, operates through four business divisions. We have a presence in over 50 countries and are known for our global reach and expertise. At UBS, we value our people and their diverse skills, experiences, and backgrounds. We prioritize our employees by offering new challenges, a supportive team, growth opportunities, and flexible working arrangements. Our inclusive culture fosters the best in our employees, regardless of where they are in their career journey. Collaboration is central to our ethos, as we believe that together, we achieve more than individually. We are dedicated to disability inclusion and offer reasonable accommodations throughout the recruitment process. UBS is an Equal Opportunity Employer that respects, empowers, and celebrates the diversity within our workforce.,

As a Security leader with a background in AWS and cloud Security, you play a crucial role in defining and enforcing the security policies and procedures of the organization. With excellent written and verbal communication skills, exceptional organizational abilities, and expert-level proficiency in IT and Cloud Security, you will be responsible for architecting and implementing IT Security policies while reporting to the Director of Information Technology. In this full-time role, your essential duties and responsibilities include providing leadership and technology vision to the IT Security team, performing internal and external security audits, documenting, implementing, and monitoring adherence to IT security standards, as well as assessing and improving security metrics. You will work on enhancing security tools and operations, monitor and manage IDS, vulnerability scanning, and assessments, and serve as the Data Privacy Officer (DPO) for the company. Creating awareness within the company regarding Security, Privacy, and compliance requirements, ensuring security and privacy training for staff involved in data processing, conducting security and privacy audits, and serving as the point of contact between the company and clients for privacy controls are key aspects of your role. Additionally, you will be responsible for log aggregation and analysis, managing Anti-Virus software, addressing security and data breach-related incidents, and ensuring customer satisfaction while being accountable for individual product/project success and quality. To qualify for this position, you must hold certifications such as CISSP, Security+, or equivalent, along with having 10+ years of Cyber Security experience, 5+ years of IT management experience, 5+ years of AWS experience, and 3+ years of experience with Identity & Access Management tools. Your extensive experience with Linux & Windows Security administration, managing Cloud and Container Security, Network and Application penetration testing, vulnerability scanners, IDS, IPS deployment and monitoring, SIEM tools, security automation, incident response & management, vulnerability management, and patch management will be essential. Moreover, your role will involve ensuring organization efficiencies through continual improvement programs, representing the organization in inspections and audits, driving action plans to closure, conducting deep dive RCAs and ensuring CAPAs are closed, and maintaining a metrics-driven approach. Additional qualifications such as experience with monitoring tools like Datadog, Change Management, Configuration Management, Infrastructure as Code tools, hardening Operating Systems and Applications, endpoint security management, working in GxP environments, and familiarity with various practices will be beneficial. With no travel expectations, this role requires a dedicated and experienced professional who can effectively lead security operations and teams, prioritize security and privacy, and drive continuous improvement initiatives to enhance organizational security posture.,

Key Responsibilities: Design, implement, and manage security policies using Check Point CloudGuard across AWS and Azure environments. Configure and maintain CloudGuard gateways , including firewall rules, IPS, VPNs, and threat prevention features. Monitor cloud traffic and logs for anomalies, threats, and compliance violations. Monitor Cloud WAF (AWS, Azure) Collaborate with DevOps and cloud engineering teams to integrate security into CI/CD pipelines. Conduct regular security assessments and audits of cloud infrastructure and reviews of Cloud operations such as IAM, NSG, etc. Respond to and investigate security incidents and breaches. Maintain documentation of security configurations, policies, and procedures. Stay updated with the latest cloud security trends, vulnerabilities, and best practices. Required Skills & Qualifications: Min of 3-4+ years of experience in cloud security, specifically with Check Point CloudGuard . Strong hands-on experience with AWS and Azure cloud platforms. Proficiency in configuring and managing CloudGuard , CloudGuard Posture Management , and CloudGuard Network Security, CloudGuard Workload Protection. . Familiarity with IAM , VPC , NSG , Security Groups , and cloud-native firewalls . Experience with SIEM tools , log analysis , and incident response . Knowledge of compliance standards such as CIS, ISO 27001, and regulatory bodies such as RBI, PFRDA, etc . Scripting knowledge (Python, Bash, PowerShell) is a plus. Relevant certifications (e.g., Check Point CCSA/CCSE, AWS/Azure Security Specialty) are preferred. Preferred Qualifications: Experience with Terraform , or other IaC tools. Exposure to container security (e.g., Kubernetes, Docker). Understanding of Zero Trust Architecture and cloud workload protection platforms (CWPP) . Candidates who are interested may send their resumes to twinkle.b@camsonline.com

About Zscaler Zscaler, a leading company serving numerous enterprise customers globally, including 45% of Fortune 500 companies, was established in 2007 with a core mission to ensure the cloud is a secure environment for conducting business and to enhance the experience for enterprise users. Operating the world's largest security cloud, Zscaler plays a pivotal role in accelerating digital transformation, enabling enterprises to become more agile, efficient, resilient, and secure. The innovative Zscaler Zero Trust Exchange platform, powered by AI, forms the foundation of our SASE and SSE offerings, safeguarding numerous enterprise customers from cyber threats and data breaches by securely connecting users, devices, and applications across any location. Recognized as a Best Workplace in Technology by esteemed platforms like Fortune, Zscaler nurtures an inclusive and supportive culture that attracts some of the most talented professionals in the industry. If you thrive in a fast-paced, collaborative environment and are dedicated to creating and innovating for the greater good, Zscaler welcomes you to take your next career step with us. Our Engineering team is responsible for developing and enhancing the world's largest cloud security platform, built entirely from scratch. With a repertoire of over 100 patents and ambitious plans to improve services and expand our global presence, our team has established Zscaler as the leader in cloud security today, serving over 15 million users across 185 countries. Join our team of cloud architects, software engineers, security experts, and more to contribute your vision and passion towards empowering organizations worldwide to embrace speed and agility through a cloud-first approach. We are currently seeking an experienced Principal Information Security Engineer to join our Cyber and Data Security team. Reporting to the Sr. Manager of Cyber Risk & Governance, your responsibilities will include: - Designing and managing runtime container security strategies, encompassing monitoring, threat detection, incident response, and vulnerability management for Docker and Kubernetes environments. - Implementing and optimizing security tools for runtime container protection, including image scanning, network micro-segmentation, and anomaly detection solutions. - Collaborating with engineering and DevOps teams to construct secure container architectures and enforce security best practices within CI/CD pipelines. - Investigating and resolving container-related security incidents, conducting root cause analysis, and implementing preventive measures. Minimum Qualifications: - Possess 8+ years of cybersecurity experience, with a specific focus on container security, along with at least 5 years of hands-on experience with Docker and Kubernetes. - Demonstrated expertise in Kubernetes security concepts, such as pod security policies, RBAC, and network policies. - Proficiency in container image scanning tools (e.g., Wiz, Trivy, Aqua Security, Crowdstrike Cloud Security, Prisma Cloud) and runtime protection solutions. - Strong understanding of container orchestration systems and securing CI/CD pipelines for containerized applications. - Proven ability to lead technical initiatives and collaborate effectively with cross-functional teams, including DevOps and SRE. Preferred Qualifications: - Hold certifications like CKA (Certified Kubernetes Administrator) or CKSS (Certified Kubernetes Security Specialist). - Experience in automating container security tasks using infrastructure-as-code tools like Terraform, Helm, or Ansible. Join Zscaler in our mission to create a diverse and inclusive team that mirrors the communities we serve and the customers we collaborate with. We value all backgrounds and perspectives, emphasizing collaboration and a sense of belonging. Be part of our journey to streamline and secure business operations. Zscaler offers a comprehensive Benefits program designed to support our employees at every stage of their lives and careers, which includes various health plans, time off for vacation and sick leave, parental leave options, retirement plans, education reimbursement, in-office perks, and more! By applying for a role at Zscaler, you agree to adhere to relevant laws, regulations, and company policies, including those related to security and privacy standards and guidelines. Zscaler is committed to providing reasonable support and accommodations during our recruiting processes for candidates with disabilities, long-term conditions, mental health conditions, sincere religious beliefs, neurodivergent individuals, or those requiring pregnancy-related support.,

Choosing Capgemini means choosing a company where you will be empowered to shape your career in the way you'd like, where you'll be supported and inspired by a collaborative community of colleagues around the world, and where you'll be able to reimagine what's possible. Join us and help the world's leading organizations unlock the value of technology and build a more sustainable, more inclusive world. Evaluate software/product architecture to ensure security is embedded at the design phase. Develop cybersecurity artifacts such as threat models and lead mitigation discussions. Support engineering teams in triaging and resolving identified product vulnerabilities. Coordinate internal and external security and privacy assessments, including VAPT. Assist in formulating and implementing product security and privacy policies, standards, and procedures. Ensure compliance with defined security and privacy requirements and verify the effectiveness of protection measures. Guide the resolution of security audit findings and ensure timely closure. Provide strategic security risk management and advisory support for product and information security. Participate in incident response and assess the risk and impact of security breaches. Review engineering changes, new services, and feature requests for security implications. Collaborate with tech leads and architects to ensure secure product development. Promote a culture of security awareness and continuous improvement across teams. Strong experience in application, mobile, network, OS, and cloud security (experience range 7 to 15 years). Proficiency in AWS security, including AWS Solution Architect Associate and Security Specialty certifications. Hands-on expertise in static/dynamic code analysis, container security, and Kubernetes. Familiarity with security frameworks and standards like NIST 800-53, CIS/STIG, HI-TRUST, and SOC2. Knowledge of cryptography, PKI, OAUTH, 2FA, and secure software development lifecycle (SDLC). Capgemini is a global business and technology transformation partner, helping organizations to accelerate their dual transition to a digital and sustainable world, while creating a tangible impact for enterprises and society. It is a responsible and diverse group of 340,000 team members in more than 50 countries. With its strong over 55-year heritage, Capgemini is trusted by its clients to unlock the value of technology to address the entire breadth of their business needs. It delivers end-to-end services and solutions leveraging strengths from strategy and design to engineering, all fueled by its market-leading capabilities in AI, generative AI, cloud, and data, combined with its deep industry expertise and partner ecosystem.,

Harness is a high-growth company that is disrupting the software delivery market. The mission at Harness is to enable the 30 million software developers in the world to deliver code to their users reliably, efficiently, securely, and quickly. This not only increases customers" pace of innovation but also improves the developer experience. Harness offers solutions for every step of the software delivery lifecycle, including building, testing, securing, deploying, and managing reliability, feature flags, and cloud costs. The Harness Software Delivery Platform encompasses modules for CI, CD, Cloud Cost Management, Feature Flags, Service Reliability Management, Security Testing Orchestration, Chaos Engineering, Software Engineering Insights, and is expanding rapidly. Led by technologist and entrepreneur Jyoti Bansal, who previously founded AppDynamics and sold it to Cisco for $3.7B, Harness is backed with $425M in venture financing from top-tier VC and strategic firms. Some of the notable backers include J.P. Morgan, Capital One Ventures, Citi Ventures, ServiceNow, Splunk Ventures, Norwest Venture Partners, and many others. **About The Role** Harness is seeking a Senior Product Manager to spearhead the strategy, roadmap, and delivery of the Traceable Application Security Testing module. The focus of this role is on developing cutting-edge solutions across SAST, Secrets Detection, Container Security, DAST, and API Security Testing. The Senior Product Manager will collaborate with engineering, customers, and cross-functional teams to launch products that enhance the security of modern applications at scale. **Key Responsibilities** - Own the vision, strategy, and roadmap for the Traceable AppSec Testing product line. - Define and prioritize features for SAST, Secrets Detection, Container Security, DAST, and API Security Testing. - Collaborate closely with engineering to ensure the delivery of high-quality, secure, and scalable products. - Engage directly with customers to grasp their security workflows, pain points, and priorities. - Work with marketing, sales, and support teams to orchestrate successful product launches and drive adoption. - Keep abreast of competitive trends and emerging threats to steer product direction. - Establish and measure success metrics while driving continuous improvement. **Required Qualifications** - 6-10 years of product management experience, with a focus on building and releasing enterprise security or developer products. - Profound understanding of DevSecOps practices and Application Security (AppSec), particularly in SAST, DAST, secrets detection, container security, and API security. - Demonstrated ability to shape product strategy and translate customer needs into actionable requirements. - Excellent communication, collaboration, and stakeholder management skills. - Experience collaborating with technical users such as developers, security engineers, and DevOps teams. **Preferred Qualifications** - Familiarity with CI/CD, cloud-native security, Kubernetes, or software supply chain security. - Background in software development or security engineering is a plus. **Work Location** The successful candidate for this role will be expected to be present in the Bangalore office three times a week. At Harness, you can expect: - Experience in building a transformative product - End-to-end ownership of your projects - Competitive salary - Comprehensive healthcare benefits - Flexible work schedule - Quarterly Harness TGIF-Off for four days - Paid Time Off and Parental Leave - Monthly, quarterly, and annual social and team building events - Monthly internet reimbursement **Harness In The News** - Harness Grabs a $150m Line of Credit - Welcome Split! - SF Business Times - 2024 - 100 Fastest-Growing Private Companies in the Bay Area - Forbes - 2024 America's Best Startup Employers - SF Business Times - 2024 Fastest Growing Private Companies Awards - Fast Co - 2024 100 Best Workplaces for Innovators *Note on Fraudulent Recruiting/Offers* If you suspect fraudulent recruiting attempts or have received unsolicited emails or messages claiming to be from Harness recruiters or hiring managers, please refrain from providing personal or financial information. Contact Harness immediately at security@harness.io. Further information on this type of scam can be found on the Federal Trade Commission's website. Alternatively, you can reach out to your local law enforcement agency.,

About Gameskraft: Established in 2017, Gameskraft is recognized as one of India's fastest-growing companies, dedicated to building the world's most-loved online gaming ecosystem. Founded by a team of enthusiastic gamers, we have expanded from a small group of 5-6 members to a large family of 600+ Krafters based in our office at Prestige Tech Park, Bangalore. Our primary focus is on creating a safe, secure, and responsible gaming environment for all users. With a vision to deliver unparalleled experiences consistently, we are committed to setting industry-leading standards in design, technology, and user experience. Gameskraft is proud to be the only ISO 27001 and ISO 9001 certified company in the industry. About the Role: Gameskraft is currently seeking a highly skilled Lead Information Security Engineer to spearhead the design, implementation, and management of the organization's security architecture. As a Lead Information Security Engineer, you will collaborate with cross-functional teams, playing a crucial role in safeguarding our critical information assets. Your expertise will be instrumental in enhancing our security posture, ensuring compliance with industry standards, and staying vigilant against emerging threats. Key Responsibilities: 1. **Security Architecture and Strategy:** Design, implement, and uphold the enterprise security architecture. Enforce security policies, standards, and best practices. Evaluate and deploy security tools and technologies to mitigate risks. 2. **Incident Response and Threat Management:** Lead the investigation and resolution of security incidents and breaches. Develop and maintain incident response plans. Conduct threat modeling, vulnerability assessments, and penetration testing. 3. **Risk Management and Compliance:** Perform risk assessments and recommend mitigations to minimize exposure. Ensure compliance with regulatory frameworks and standards (e.g., ISO 27001, NIST, GDPR, PCI DSS). Collaborate with legal, compliance, and audit teams to address security-related requirements. 4. **Leadership and Team Development:** Guide and mentor a team of security engineers and analysts. Cultivate a culture of security awareness throughout the organization. Collaborate with IT and development teams to integrate security into the DevSecOps lifecycle. 5. **Stakeholder Collaboration:** Serve as the primary security liaison for stakeholders, including executives, customers, and external auditors. Communicate security risks and recommendations to non-technical audiences. Partner with product and engineering teams to incorporate security into all development stages. Qualifications and Skills: - **Education and Experience:** Bachelor's degree in Computer Science, Information Security, or a related field. Minimum of 5-7 years of information security experience, with at least 2 years in a senior role. - **Certifications:** Preferred certifications include CISSP, CISM, CISA, CEH, or equivalent. - **Technical Expertise:** Profound knowledge of security frameworks (e.g., NIST, ISO 27001, CIS Controls). Proficiency in security tools like SIEM, IDS/IPS, firewalls, DLP, and endpoint protection. Expertise in cloud security (AWS, Azure, GCP) and container security. Understanding of cryptography, secure coding practices, and network security protocols. - **Soft Skills:** Strong problem-solving and analytical skills. Exceptional communication and stakeholder management abilities. Work Culture: Gameskraft offers a true startup culture characterized by youth, a fast-paced environment, and a focus on personal ownership of challenges that promote rapid growth. Innovation, data orientation, result-driven mindset, pursuit of ambitious goals, and adaptability are central to our work culture. We foster a high-performance, meritocratic setting where idea sharing, debates, and collective growth are encouraged with each new product. Employees can expect to make a significant impact through solving dynamic challenges, leveraging technology, and analytics, and collaborating with cross-functional teams to deliver exceptional products to the market. Compensation & Benefits: Gameskraft provides an attractive compensation package alongside ESOP benefits. Employees receive a medical insurance cover of INR 5 lakh for themselves and their family, fair and transparent performance appraisals, a car lease policy, relocation benefits, and access to a vibrant office space with fully stocked pantries. Additionally, lunch is provided. If you are passionate about creating exceptional user experiences, possess strong leadership skills, and have a proven track record of successful data science, we invite you to apply for this exciting opportunity. Gameskraft is committed to fostering equal employment opportunities and building an inclusive work environment where every individual can thrive. Together, we can achieve more!,

You will be responsible for designing, implementing, and managing security solutions for cloud infrastructure in this role as a Cloud Security Engineer. Your main focus will be on securing cloud environments across AWS and other cloud service providers while developing and enforcing cloud security policies, standards, and procedures. You will also work on securing microservices architectures and implementing security measures for Kubernetes clusters and containerized applications. Additionally, managing and securing container orchestration platforms will be part of your responsibilities. Continuously monitoring and improving cloud security posture, implementing CSPM tools to automate security assessments and compliance checks, and identifying and mitigating vulnerabilities and security risks in the cloud environment will be crucial aspects of your role. Ensuring the security of cloud-based infrastructure, including servers, networks, and storage, implementing network security measures such as firewalls, VPNs, and intrusion detection/prevention systems, and conducting regular security assessments and audits of the infrastructure will also fall under your purview. You will need to integrate security into the software development lifecycle (SDLC), perform application security assessments and code reviews, and implement security best practices for modern applications deployed in the cloud. Staying updated with the latest cloud security frameworks and industry best practices, ensuring compliance with relevant regulatory requirements and industry standards, such as PCI DSS and ISMS, and having technical skills in cloud service providers, microservices, Kubernetes, container security, CSPM tools, infrastructure security, network security, encryption, modern application security practices, frameworks, compliance standards, and regulatory requirements are essential for this role. About the Company: SA Technologies is a leading CMMI Level 5 certified organization in IT services, consulting, and staffing company headquartered in California, with a significant presence across the United States, Canada, and India. With over two decades of experience, SA Tech has established itself as a trusted partner for businesses seeking innovative and scalable technology solutions. The company specializes in delivering end-to-end IT services, including application development, cloud computing, enterprise resource planning (ERP), and IT staffing.,

Role Overview: As a DevSecOps Engineer at Fynd, you will be responsible for embedding security into the DevOps lifecycle, automating security processes, and ensuring compliance across our cloud-based infrastructure. You will collaborate with cross-functional teams to implement security best practices and proactively mitigate security risks. What will you do at Fynd Cloud Security & Infrastructure: Secure and manage cloud environments in GCP, AWS, and Azure. Implement best practices for cloud security, IAM, and compliance. Monitor and optimize cloud workloads for security and efficiency. Security Automation & DevOps Integration: Automate security processes using Ansible, Azure DevOps, and other tools. Integrate security checks into CI/CD pipelines to enable secure deployments. Conduct vulnerability assessments and harden infrastructure. Threat Detection & Incident Response: Deploy and manage IDS/IPS solutions to detect and prevent cyber threats. Monitor security logs and respond to incidents proactively. Work with SOC teams to enhance real-time threat detection. Compliance & Risk Management: Ensure adherence to industry security standards and compliance frameworks. Conduct gap assessments and implement remediation plans. Maintain security documentation and audit readiness. Collaboration & Continuous Improvement: Work closely with Engineering, DevOps, and Security teams to drive security initiatives. Stay updated with emerging security trends and threats. Advocate for a DevSecOps-first culture within the organisation. Some more requirements 5 to 7 years of experience in DevSecOps, Cloud Security, or Infrastructure Security. Strong expertise in GCP, AWS, and Azure security best practices. Proficiency in Linux administration and security hardening. Hands-on experience with Ansible, Azure DevOps, and CI/CD pipelines. Familiarity with security tools like IDS/IPS, SIEM, and vulnerability scanners. Knowledge of security frameworks (ISO 27001, NIST, CIS, etc.). Experience with JIRA for task management and tracking. Strong problem-solving skills and ability to work in a fast-paced environment. Preferred Qualifications (Nice to Have): Certifications like AWS Security Specialty, GCP Security Engineer, CISSP, CEH, or CKA. Experience with IaC security tools (Terraform, CloudFormation). Knowledge of container security (Docker, Kubernetes).

Manage a team of DevSecOps security analysts and implementation engineers Implement DevSecOps tools in all product dev environments Follow up with staff members to ensure completion of security-related tasks Manage and maintain Security health check of the integrated automation. Provide professional support for the developed automations, responding to incidents to avoid system outages or restore availability to meet SLAs. Analyze the implementation needs and provide effort estimation to the users Stay abreast of industry best practices (Research new technologies) and contribute ideas for improvements in DevOps practices, delivering innovation through automation. Tracks and reports on the test execution in a timely manner with attention given to achieving a high level of quality. Liaise with development and infra teams to get the defect resolutions Onboard new hires, train and share knowledge, take an active role in technical mentoring and elevating team knowledge. Working with external vendors for support, manage the relevant vendor employees and make sure the support is performed as planned Maintaining hardware and software deployment and POC planning 3+ years of experience in leading a team (team of security analysts is preferrable) 5+ years of relevant experience in information Security DevSecOps Total experience - 6-8 years Extensive expertise in Application security and security architecture area. Hands on experience in SAST Tools (e.g. Checkmarx), Container Scanning tools (Twistlock, Wiz) Expertise in Security code reviews and onboarding process for managing false positives 5+ years experience in FOSS security issues and security hardening (CIS benchmarks) 3+ years experience in setting up continuous integration and continuous delivery systems 2-3 years experience with continuous-integration tools such as Hudson/Jenkins, LiquiBase, Github actions Understanding of build process, best practices and tools such as Maven, Jenkins pipeline, groovy Knowledge of OWASP top 10 list of vulnerabilities, NIST SP-800-xx, NVD, CVSS scoring etc concepts Great Communication skills - (Ability to communicate with a Developer, a Manager or Director level). Project Management Skills 2-3 years basic understanding of Cloud Platforms BS in Computer Science, or equivalent Working in Agile/Scrum team Nice to have: Familiarity with REST Services, Service Oriented Systems and Micro-services architecture Scripting skills in at least one of the following: Python, Django web framework, Perl, Ruby, shell (bash, ksh, csh) Knowledge in distributed systems, software and network security preferred. Security concepts and knowledge of security attacks on Web applications, REST services, distributed systems Sound Knowledge of TCP/IP protocol Stack, HTTP protocol, encoding standards, encryption technologies and development frameworks. 2+years of experience on docker /k8S

Summary: Are you passionate about cutting-edge cloud-native platforms and driven to build the foundational services that power enterprise-grade products? We're seeking a highly skilled and strategic Senior Product Manager (Technical) to own the Plexus Application Infrastructure Platform, a critical component of our cloud-native ecosystem. This pivotal role within our Platform Engineering organization is central to our mission: to build a durable competitive advantage by providing robust "building blocks" that accelerate value-to-market for all Thomson Reuters' products. Thomson Reuters leads at the intersection of content and technology with trusted data, workflow automation, and AI. You'll be instrumental in shaping the future of our digital product delivery, working closely with the dedicated Plexus Service Mesh team, which engineers and operates our sophisticated microservice platform based on Kubernetes and Istio. If you're ready to Compete to Win by driving innovation and helping us Obsess over our Customers by delivering exceptional infrastructure, we want to hear from you. About the Role As the Senior Product Manager (Technical) for the Plexus Application Infrastructure Platform, you will be the driving force behind our Service Mesh capability, a critical microservice platform built on Kubernetes and Istio. Your responsibilities will be diverse and impactful, requiring a strategic mindset and a collaborative spirit: Define and Champion Product Strategy: Develop and own the product vision, strategy, and roadmap for the Plexus Application Infrastructure Platform, aligning it with overall organizational goals and anticipating future technology trends, especially within the CNCF landscape. Obsess Over Our Customers: Serve as the authoritative voice of the customer for engineering teams, deeply understanding their needs and translating complex infrastructure challenges into clear, actionable requirements. You will prioritize the product backlog to maximize business and customer value, driving platform capabilities that foster adoption. Compete to Win: Proactively identify and assess new technologies, market trends, and competitive advantages in the cloud-native infrastructure space to ensure our platform remains at the forefront of innovation. Challenge Your Thinking: Advocate for innovative approaches to microservice architecture and platform design. You'll lead efforts to enhance transparency and collaboration across all product and engineering teams, always seeking better ways to build and deliver value. Act Fast. Learn Fast.: Exhibit extreme ownership of the platform's performance and reliability. You'll participate across the full development lifecyclefrom Ideation and Design through Build, Test, and Operateembracing our DevOps culture where 'you build it, you run it.' You'll continuously iterate, analyze metrics, and rapidly adapt to deliver an exceptional user experience. Stronger Together: Lead cross-functional product discovery and delivery, collaborating seamlessly with development managers, architects, scrum masters, software engineers, DevOps engineers, and other product managers. You will foster an environment where collective expertise achieves shared success. Drive Engineering Excellence: Establish and champion software engineering best practices, advocating for tooling that makes compliance frictionless and embedding a strong emphasis on test and deployment automation within our platform. About You We are looking for a visionary and hands-on leader who embodies a unique blend of deep technical understanding and astute product management expertise. You are someone who thrives in a dynamic, fast-paced environment and is driven to make a significant impact. Product Management: 5+ years of progressive experience in Product Management, with a significant portion dedicated to technical products, platforms, or infrastructure services. (Candidates with a strong software development background (e.g., 6+ years) looking to transition into a technical product management role for cloud-native platforms will also be highly considered). Cloud-Native Expertise: Deep technical acumen in cloud-native infrastructure, with hands-on experience building or managing platforms on major cloud providers (AWS, Azure, GCP). Containerization & Service Mesh: Expert-level understanding and practical experience with Kubernetes (ideally AWS EKS and/or Azure AKS) and Istio or other Service Mesh technologies. DevOps & Infrastructure-as-Code: Familiarity with container security, supply chain security, declarative infrastructure-as-code (e.g., Terraform), CI/CD automation, and GitOps workflows. Architectural Understanding: Strong understanding of microservice architectures, API design principles, and distributed systems. Programming (Beneficial): An understanding of modern programming paradigms and languages (e.g., Golang, Python, Java) is highly beneficial, enabling effective collaboration with engineering teams. Problem-Solving: Exceptional problem-solving abilities, capable of dissecting complex technical challenges and translating them into clear product opportunities and solutions. Communication & Influence: Outstanding communication skills, with the ability to articulate complex technical concepts and product strategies clearly and concisely to diverse audiences, from engineers to executive leadership. Collaboration: A collaborative spirit and a history of successfully leading cross-functional teams, fostering an environment where every voice contributes to building the best possible platform. Strategic & Agile: Strategic thinking with a talent for balancing long-term vision with short-term execution. A strong sense of urgency, an agile mindset, and an insatiable curiosity that drives continuous learning and innovation. You're unafraid to challenge assumptions and push boundaries, constantly seeking better ways to build and deliver value. Customer Empathy: A customer-centric approach with a passion for understanding and addressing internal and external customer needs. Education: A bachelors degree in business administration, computer science, computer engineering, a related technical field or equivalent work experience Relevant certifications (e.g., Certified Kubernetes Administrator (CKA), Product Management certifications, or cloud platform certifications) are a plus.

Application & product security, including threat modeling and secure SDLC Cloud security (AWS/GCP/Azure), container security (Docker, Kubernetes & API protection DevSecOps- automation in IaC & CI/CD pipelines Scripting (Python/Shell), Linux security Required Candidate profile Sr Security Egr - 7+ yrs exp. to lead & enhance security across the SDLC. expertise in application security, threat modeling, cloud security (AWS/GCP/Azure), DevSecOps practices & strong communication

Role & responsibilities Application & product security, including threat modeling and secure SDLC Cloud security (AWS/GCP/Azure), container security (Docker, Kubernetes & API protection DevSecOps- automation in IaC & CI/CD pipelines Scripting (Python/Shell), Linux security Preferred candidate profile With more than 7+ years of Total industry experience Advanced experience in securing applications and application settings Advanced experience in app and product security Advanced understanding in securing cloud technologies Experience with technologies from at least one public cloud (AWS, GCP, Azure) Experience in securing containerization (Docker, K8s, etc) and API Experience with modern DevSecOps practices including implementing automated security in IaC and CI/CD pipelines Strong scripting skills Python/Shell Scripting experience Mid to advanced level Linux knowledge in a physical, virtual, or public cloud environment. Exceptional verbal and written communication skills are necessary to effectively collaborate with peers, and to present and explain highly technical information to stakeholders who may have limited technical knowledge. Bonus Points: CISSP, CASP+, GSLC, CISM certified. Qualifications Bachelor's or Master's degree in Computer Science, Engineering, or a related field.

8-10 years of exp in Cloud Technology, DevSecOps, cloud security, & CI/CD automation. Expertise in Kubernetes security, IAM, API security, & automated compliance frameworks. Hands on exp in Terraform, container security, & zero-trust architecture. Required Candidate profile Manage Enterprise wise Microservices based Applications hosted on AWS Cloud Technology.Exp in CI/CD & DevOps Tools:Jenkins,GitHub Actions,Terraform,AWS Code Pipeline & Kafka.Strong exp in EKS Cluster

We have Immediate Openings on Container Security /Prisma Cloud security solutions for Contract to Hire role for multiple clients. Job Details Skills Container Security /Prisma Cloud security solutions Experience : 8+Years Lead the implementation of Prisma Cloud security solutions for securing containerized applications, focussing on runtime protection, vulnerability scanning, compliance monitoring and network security Design and architect secure container environments using Prisma cloud to protect container registries, Kubernetes clusters & microservices Configure and manage Prisma Kubernetes security to monitor and enforce security policies in Kubernetes clusters, focusing on threats like misconfigurations, network vulnerabilities and un-authorized access. Integrate Prisma security products into continuous integration pipeline to automatically scan container images, manage vulnerabilities. 5. Conduct risk assessments for containerized environments using Prisma tools Collaborate with DevOps teams to establish effective controls for privileged access and environment specific configurations. Establish and enforce security best practices using Prisma's security capabilities to ensure compliance with industry standards. Utilize Prisma'a cloud compliance dashboard to continuously monitor for regulatory compliance and report on security aspects within containerized environments If you are interested in, please share the update profile with below details. Current CTC Expected CTC Notice Period Total Experience Relevant Experience

Roles & Responsibilities:- Design and implement secure AWS cloud architectures aligned with business and compliance requirements. Automate security controls and integrate them into CI/CD pipelines Manage and monitor AWS security tools such as GuardDuty, Security Hub, and CloudTrail Develop and enforce IAM policies using least privilege principles Conduct threat modeling, vulnerability assessments, and cloud security posture evaluations Ensure compliance with standards like SOC 2, ISO 27001, and NIST Support audit readiness and implement risk treatment plans Collaborate with DevOps teams to embed security in cloud deployments Promote DevSecOps culture across development and operations teams Create and maintain security-as-code using CloudFormation, Terraform, and scripting Automate detection, remediation, and incident response processes Provide security guidance during cloud migrations and new service adoptions Qualification:- Bachelors in Cybersecurity, Computer Science, or related field (Masters preferred) 7+ years in cybersecurity, with 5+ years in cloud security Strong expertise in AWS security tools (GuardDuty, Security Hub, IAM, KMS, CloudTrail) Familiar with cloud security frameworks (AWS Well-Architected, NIST CSF, CSA CCM) Experience in securing CI/CD pipelines and implementing IaC security (CloudFormation/Terraform) Hands-on with CSPM tools and automated security validation Deep understanding of IAM principles and DevSecOps practices Proficient in scripting (Python, Bash) for automation Strong knowledge of network, container, and serverless security Excellent communication skills (verbal and written) Certifications: AWS Security Specialty, CCSP, CISSP, or equivalent Preferred Qualifications :- Experience with multi-cloud (AWS, Azure, GCP) security Understanding of regulatory frameworks (e.g., GDPR, HIPAA, ISO) Hands-on with container security (Docker, Kubernetes, ECS/EKS) Experience with Zero Trust security models in cloud Familiarity with automated incident response and cloud-native tools Knowledge of Hashicorp Vault or similar tools for secrets management Experience securing data lakes and analytics platforms Worked with CWPP and serverless security best practices Cloud security experience in energy efficiency/sustainability domains Experience in cloud threat modeling and collaborating with global teams

We are Hiring Senior Consultant Cyber Security Solution Architect Location: Bangalore, Hyderabad Experience: 14+ years Are you passionate about designing secure, scalable cloud and enterprise security architectures? Join us as a Cyber Security Solution Architect and be at the forefront of helping clients secure their digital ecosystems. What You’ll Do: Design and deliver end-to-end cybersecurity solutions for enterprise clients Collaborate with infra/application architects to embed security in architecture Lead cloud security (Azure/AWS/GCP), DDoS, SIEM, WAF, and container security design Define KPIs and lead security assessments & compliance initiatives (ISO 27001, NIST) Build client-facing proposals and conduct solution defense with stakeholders What We’re Looking For: 14+ years of overall experience, with 5+ years in complex security engineering projects Strong hands-on with tools: Azure Security Center, GuardDuty, Palo Alto, Qualys, etc. Exposure to CASB, Zero Trust, IAM, and multi-cloud security Excellent communication, client interaction, and solutioning skills Preferred Certifications: CISSP | CISM | CEH | CCSP | TOGAF | AWS/Azure/GCP Security Ready to shape the future of enterprise security? Apply now / email at mary.nancy1@sonata-software.com

Qualifications: 7+ years of experience in AWS Cloud experience, with 1+ years in AWS cloud security Deep understanding of AWS services and cloud-native security tools (IAM, VPC Security, KMS, WAF, CloudTrail, etc.) Experience securing multi-account AWS environments using AWS Organizations and Control Tower Proficiency with infrastructure-as-code (e.g., CloudFormation, Terraform) and security automation Strong understanding of security frameworks (e.g., NIST, CIS, PCI DSS, SOC 2) Hands-on experience with SIEMs and incident response in AWS Excellent communication and leadership skills Public Cloud Experience Terraform Experience Cloud Security Prism experience Preferred Qualifications: AWS Certified Security Specialty Experience with DevSecOps and container security (EKS, ECS, or Fargate) Familiarity with third-party tools like Wiz, Palo Alto Prisma Cloud, or CrowdStrike Falcon Cloud Prior experience in regulated industries (finance, healthcare, government)