83 Cyber Jobs

We are seeking a highly skilled Cybersecurity Officer with a strong background in information security, cyber risk management, and technical infrastructure protection.As a global provider of financial and data clearing applications for mobile network operators, we understand the critical importance of robust cybersecurity measures.This role is specifically focused on the digital security of enterprise systems, cloud infrastructure, application environments, and customer data. Nextgen Clearing is the market leading provider of global roaming services. We operate internationally across 20 global locations, employing over 300 talented people. We offer Award-winning Data and Financial Clearing services, along with unique value-added features on a single flexible online platform. Nextgen Clearing serves more than 160 operators worldwide, giving them a 24/7 holistic overview of their full roaming business Key Responsibilities: Define and implement security policies and controls to protect the company's digital assets and ensure regulatory compliance. Continuously monitor the company's security posture and quickly respond to security incidents. Develop security strategies and plans for preventing and responding to security breaches. Provide expert guidance and support to software teams on implementing secure development practices, security requirements, and conducting security testing. Foster secure application deployment and configuration, ensuring the protection of data integrity and confidentiality. Conduct regular training and awareness sessions for the company's staff to promote security best practices. Assist in the response to security incidents, including the management of communications and recovery efforts. Work collaboratively with customer service teams to safeguard customer data, enhance data privacy, and ensure secure customer interactions. Contribute to the company's efforts to prevent fraud and manage security incident communications to maintain trust with customers. Stay up-to-date on the latest cybersecurity trends, threats, and security technologies to continuously improve the organization's security stance. Collaborate with IT and other departments to establish a security-focused culture across the company. Develop and maintain documentation related to security policies, procedures, and incident response plans. Stay up to date on emerging cybersecurity threats and vulnerabilities and proactively recommend and implement countermeasures to mitigate risks. Foster security awareness and monitor security policy implementation Requirements Bachelor's degree in Computer Science, Information Security, or a related field. Master's degree or cybersecurity certifications (e.g., CISSP, CISM, CEH, TOGAF) are a plus. A minimum of 10 years of experience in information security or cybersecurity. Strong understanding of information security principles, best practices, and industry standards. Experience with implementing and managing security protocols, cybersecurity tools, and technologies. Familiarity with compliance requirements and standards such as ISO 27001, GDPR, and PCI DSS. Ability to identify security vulnerabilities and risks, as well as implement preventive and corrective measures. Knowledge of secure software development life cycle (SDLC) practices. Excellent problem-solving skills and the ability to work in a fast-paced, high-pressure environment. Strong communication and interpersonal skills to collaborate with diverse teams and educate non-technical stakeholders on security-related matters. Incident response and crisis management experience. Working Conditions: The role may require availability outside of standard business hours to respond to security incidents and maintain critical security measures. Benefits A supportive, dynamic, and collaborative work environment. Exceptional opportunities for professional and career advancement. Engagement with the leading provider of roaming services, catering to global Mobile Network Operators as clients. For more information, please visit www.nextgenclearing.com. Private Health Insurance Training & Development

Who We Are At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward – always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities. The Role Are you passionate about Senior Security Consultant and driven to protect against the latest threats? We are seeking a Senior Security Consultant who will join our team and take the lead on developing, implementing, and maintaining our security strategy within our Service Provider organization. As our Senior Security Consultant, you will work closely with our leadership team to design and implement effective security solutions that not only protect our business objectives and regulatory requirements, but also provide innovative solutions to stay ahead of emerging threats. You will conduct risk assessments and threat modeling to identify and prioritize risks to our business and IT assets, using your extensive experience in security architecture design and implementation within a Service Provider environment to create a cutting-edge security architecture framework. You will also work to maintain policies, standards, and guidelines related to information security within our organization, collaborating with cross-functional teams to implement security controls and technologies such as encryption, authentication, and authorization solutions. Your role will also involve conducting security reviews of vendors and third-party partners to ensure they meet our rigorous security standards, as well as performing regular security and risk reviews of our Service Provider environment to identify vulnerabilities and recommend remediation activities. At the forefront of security trends and technologies, you will advise our senior leadership team on the latest security best practices, and stay ahead of emerging security threats, always keeping our organization one step ahead. Join us on this exciting journey of securing our Service Provider organization and protecting our customer’s assets. Your Future at Kyndryl Every position at Kyndryl offers a way forward to grow your career, from a Junior Architect to Principal Architect – we have opportunities for that you won’t find anywhere else, including hands-on experience, learning opportunities, and the chance to certify in all four major platforms. Who You Are You’re good at what you do and possess the required experience to prove it. However, equally as important – you have a growth mindset; keen to drive your own personal and professional development. You are customer-focused – someone who prioritizes customer success in their work. And finally, you’re open and borderless – naturally inclusive in how you work with others. Required Technical and Professional Expertise Minimum of 15 years of experience in security Experience with security frameworks such as NIST CSF, ISO 27001, or CIS Controls Deep understanding of security technologies, such as firewalls, intrusion detection and prevention systems, vulnerability scanners, and endpoint protection Strong knowledge of cloud security concepts and technologies, such as Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform (GCP). Good Knowledge and experience in Crowd strike , Microsoft Defender, Cortex , & Symantec EDR , Arcon PIM , Cyber Ark PIM & Iraje •Bachelor's or Master's degree in Computer Science(B.E/B.Tech/MCA), Information Security, or a related field Preferred Technical and Professional Experience •Relevant industry certifications such as CISSP, CISM, or CCSP Being You Diversity is a whole lot more than what we look like or where we come from, it’s how we think and who we are. We welcome people of all cultures, backgrounds, and experiences. But we’re not doing it single-handily: Our Kyndryl Inclusion Networks are only one of many ways we create a workplace where all Kyndryls can find and provide support and advice. This dedication to welcoming everyone into our company means that Kyndryl gives you – and everyone next to you – the ability to bring your whole self to work, individually and collectively, and support the activation of our equitable culture. That’s the Kyndryl Way. What You Can Expect With state-of-the-art resources and Fortune 100 clients, every day is an opportunity to innovate, build new capabilities, new relationships, new processes, and new value. Kyndryl cares about your well-being and prides itself on offering benefits that give you choice, reflect the diversity of our employees and support you and your family through the moments that matter – wherever you are in your life journey. Our employee learning programs give you access to the best learning in the industry to receive certifications, including Microsoft, Google, Amazon, Skillsoft, and many more. Through our company-wide volunteering and giving platform, you can donate, start fundraisers, volunteer, and search over 2 million non-profit organizations. At Kyndryl, we invest heavily in you, we want you to succeed so that together, we will all succeed. Get Referred! If you know someone that works at Kyndryl, when asked ‘How Did You Hear About Us’ during the application process, select ‘Employee Referral’ and enter your contact's Kyndryl email address.

Looking for candidates with hands-on experience in Information Security, particularly in TPRM (Third Party Risk Management), Information Security Consulting, Vendor Management, Third-Party Cyber Risk Assessment, Vendor Risk Assessment, and GRC. Skill set - ISO, SOC2 type2 , Vendor or information security Risk assessments, Operations Resilience, BCP/DR, NIST, GDPR, PCI/DSS, Client Management. Job Location: Bangalore and Notice Period: Immediate to 15 days (only candidates available within this period may apply).

1 year contract Job Title: Python Developer with Neo4j & ExpressJS Location: Bangalore / Chennai / Hyderabad Experience: 3+ Years mode -wfo Salary: 5-10lpa Employment Type: Full-Time (Immediate to 15 Days Joiners Preferred) Client: Brillio On Payroll of: Nyxtech Hiring Contact: Yash Sharma (LinkedIn) :-linkedin.com/in/yashsharma1608 Notice Period: Immediate to 15 Days Job Description: Brillio is seeking a highly capable Python Developer with hands-on expertise in Neo4j (Cypher, APOC) and ExpressJS . The ideal candidate will have a strong backend development background and experience working with modern databases and CI/CD tools. This is a fast-paced role requiring immediate availability and a passion for problem-solving and scalable architecture. Key Responsibilities: Develop and maintain backend services using Python and ExpressJS. Design and optimize graph-based data models using Neo4j , Cypher queries, and APOC procedures. Work with relational and NoSQL databases like PostgreSQL and Cassandra . Collaborate with cross-functional teams to translate business needs into technical solutions. Implement CI/CD workflows using Git and Jenkins . Ensure code quality, security, and performance in a production environment. Required Skills & Experience: Minimum 3 years of development experience. Strong proficiency in Python and ExpressJS . Deep understanding of Neo4j , including Cypher and APOC . Working knowledge of PostgreSQL , Cassandra , Git , and Jenkins . Familiarity with Java and Spring Framework is a plus. Good analytical skills with a proactive approach to problem-solving. Immediate to 15 days availability is mandatory. Additional Details: Be part of innovative and data-intensive application development. Work in a supportive, high-energy environment with cutting-edge technologies. Immediate joiners preferred due to project urgency.

Job Description Position: Security Analyst Company: IFTAS ( Indian Financial Technology & Allied Services ) Job Description Role Summary (a) Title: Security analyst (b) Business/Function: (c) Band / Designation: Security analyst-L2 (d) Location: Hyderabad (f) Team: (g) Summary: Security Analyste for application support responsible for safeguarding software applications and their infrastructure.Security analysts are experts who identify and fix problems within security systems by analyzing risks, vulnerabilities, threats and incidents. They perform a ton of security analyses to recommend solutions for preventing cyberattacks. Key duties include identifying vulnerabilities through VA, PT ,security patching assessments enforcing secure coding standards, implementing security controls and responding effectively to security incidents. Ensure to work closely with developers, testers, and security teams and customers to ensure applications are designed and deployed securely, complying with industry standards and regulations. Participate in audits and compliance efforts (e.g., SOX, ISO, NIST, PCI). (h) Position Code: Mandatory II Additional Information (a) Responsibilities: Analyse vulnerability scan results from tools like Tenable, Qualys, or Rapid7 to idenfy security weaknesses across infrastructure and applications. Priorize vulnerabilies using mulple criteria, including CVSS, KEV (Known Exploited Vulnerabilies), EPSS (Exploit Prediction Scoring System), asset criticality, and business context. Partner with IT and Businesss teams to track remediaon progress and provide technical guidance on migaon strategies. Monitor threat intelligence feeds to correlate vulnerabilies with current exploit ac¢vity. ¢Create and maintain vulnerability metrics, dashboards, and reports for leadership and compliance teams. ¢Support vulnerability assessment ac¢vi¢es in cloud environments (AWS, Azure, etc.). ¢Maintain documenta¢on related to the vulnerability management lifecycle. ¢Develop a set of security controls to mi¢gate the risks iden¢ed ¢This could include implemen¢ng security so¢ware and improving physical security measures. ¢Document the risk assessment results, including all assets, threats, vulnerabili¢es, and security controls. ¢Develop a detailed plan to address all iden¢ed risks and vulnerabili¢es. ¢Monitor the eec¢veness of the remedia¢on plan and analyse security metrics to adjust as necessary for the ongoing protection of assets. ¢Assist in policy and process development related to vulnerability and patch management. Mandatory III Requirements (a) Education: B.E / B.Tech or any Graduate (b) Experience: Minimum of 4 + years of experience, preferably in application Security & Internal secuirty audits for Operations teams. (c) Certifications Relavent certifications Technical Skills: ¢Applying Incident Response Frameworks and Handling Procedures. ¢Informa¢on security, compliance, assurance, and/or other security best prac¢ces and principles. ¢Possessing and fostering an inquisi¢ve mindset amongst team members. ¢Assist in policy and process development related to vulnerability and patch management. ¢par¢cipate in audits and compliance eorts (e.g., Internal security audit ,applica¢on Security audit etc.. ). ¢Security Systems Documenta¢on Create and maintain technical and opera¢onal documenta¢on of in-scope security systems to ensure knowledge transfer and con¢nuity. Kindly update your CV according to your knowledge on mention skills in JD and share ASAP on Sandhya.P@Litmusit.com

Strategy & KPI management experience: Develop meaningful KPIs Evaluate and improve existing KPIs Ensure objectives and KPIs are aligned with strategy or operational goals Design reports for data-driven decision making Clients: Support in executing engagements and may lead a stream within an engagement. This includes pre-engagement work, project planning, developing deliverables, client reports, and presentations with minimal guidance. Attend client meetings and facilitate discussions by seeking and sharing perspectives. Build and maintain strong working relationships with clients. Contribute to business development and proposal development with minimal guidance. Support in identifying opportunities that can add value to the business and share them with senior team members. Use analytical skills to identify business issues and needs. Ensure knowledge and work-related files are uploaded to the system to enable access and use by others within the firm. Support in designing the PMO handbook/processes, and conducting the PMO maturity assessment Effectively deliver work and projects on time, on budget within the scope that meets or exceeds the clients expectations Help in reviewing the work of less experienced members of the Engagement/Project team. Partake in review on completion of projects to identify lessons learned and enhance future quality. Work collaboratively and assist with anything that needs to be done. Quality: Executes work to a level that meets member firms Quality standards. Communicate any risks and issues early to Leaders. Ensure adherence to Quality and risk policies and processes. Ensure to charge time Accurately to Engagement codes. People Development: Support in guiding and coaching other team members and sharing knowledge with colleagues. Provide support to junior employees/new starters, help them in learning new skills, and provide regular feedback to encourage ongoing learning. Meet deadlines throughout the Performance Management cycle; including goal-setting and seeking feedback. Complete professional qualification and technical training within the required timescale. Responsibilities for Internal CandidatesQualifications for Internal Candidates Bachelors Degree in engineering, Computer Science, or a related field 2- 10 years of experience in the consulting field in a similar role. Previous experience in Big 4 firms is preferable Demonstrate strong experience in project management Engagement Financials Management RAID / Risk Management / Reporting / Powerpoint / strong MS Excel skills Strategy & KPIs management experience Must be PMP certified/Additional qualifications or certifications a plus Familiarity with common business software, project management programs, and systems like MS Project / MS EPM / Clarizen / JIRA / PPM Tools / Confluence Fluent English Organized Multi-tasked Analytical skills

Conduct training on network security, threat detection, and risk management Expertise in firewalls, encryption, and ethical hacking Strong knowledge of cybersecurity tools and protocols Excellent communication and teaching skills required

Overview We are seeking a Cybersecurity Specialist to join the Critical Start Technologies Private Ltd. team, operating under the Critical Start umbrella, for our India operations. The ideal candidates is a detail-oriented and proactive cybersecurity professional with a strong foundation in security investigations and a passion for protecting digital environments. You thrive in collaborative settings, are comfortable managing multiple responsibilities, and bring a structured approach to problem-solving. Responsibilities Analyze security trends within customer environments. Identify risk prioritization from triaged security technologies. Create and enrich processes or documentation for team responsibilities. C ollaborate with SOC and MDR Operation Teams on internal projects as required , building client adoption and value optimization . Qualifications Required Qualifications: Two ( 2 )+ years of experience in Cyber Security Analytics . A Bachelor's degree from an accredited university in Computer Science, Engineering, Cyber Security, or related area. Two ( 2 )+ years of experience using Endpoint Protection (EPP), Endpoint Detection & Response (EDR/XDR), and Security Information and Event Management (SIEM) platforms. Certified in one or more industry related courses; Security+, CySA+, CASP+, or Equivalent/High. Ability to effectively prioritize tasks and handle multiple responsibilities simultaneously for client facing deliverables. Proficiency in using MS Products, including Word, Excel, PowerPoint, and Visio.

Breach & Attack Simulation, Cloud Security Assessment & Red Teaming

About the role: The Information Security Team is a central function governing corporate and product security globally. We have built a strong team of high performing security experts and are seeking an analyst within Information Security here at Morningstar. As a member of our Security Operations Center Team, you will get to be a part of a growing and well supported program protecting Morningstar’s Infrastructure, Data, and People. The Role: As an analyst on our Security Operations Center Team, you will monitor and analyze threats, provide security monitoring, and incident response services. Day to day you will work with the team to understand, mitigate, and respond to threats quickly, restoring operations and limiting impact. You will analyze incidents to determine scope and impact and assist in recovery efforts. You will combine threat intelligence, event data, and assessments from recent events, to identify patterns to understand attackers' goals and stop them from succeeding. This position is based in our Mumbai office Responsibilities: Provide 24x7 monitoring operations for security alerts Detect, analyze, report and respond to cyber security events and incidents using a combination of technology solutions and processes Review and escalate alerts Examine and operationalize new adversary detection methods to defend Morningstar Assess the security impact of security alerts and traffic anomalies to identify malicious actions. Generate reports for both technical and non-technical staff and stakeholders. Requirements A bachelor’s degree and 2-3+ years’ experience in Information Security. Excellent communication skills and an understanding of cyber security fundamentals. Candidate should be interested in keeping up with the latest security trends. Experience with security tools ( SIEM , EDR , Proxy) Candidate should have knowledge about cloud security preferably AWS. Add-on Certification like CEH , Security+, CompTIA+, Splunk. Morningstar is an equal opportunity employer

Job Summary As a Cyber Security Specialist you will play a critical role in safeguarding our organizations digital assets. With a focus on Cyber Threat Intelligence Services you will work to identify and mitigate potential threats. Your expertise in Cyber Security and Cloud along with experience in CrowdStrike will be essential in ensuring the security of our systems. This hybrid role offers the flexibility of working both remotely and on-site during day shifts. Responsibilities Lead the development and implementation of advanced cyber threat intelligence strategies to protect organizational assets. Oversee the monitoring and analysis of security threats using CrowdStrike and other advanced tools. Provide expert guidance on cloud security best practices to ensure data integrity and confidentiality. Collaborate with cross-functional teams to design and implement robust security architectures. Conduct regular security assessments and audits to identify vulnerabilities and recommend improvements. Develop and maintain incident response plans to effectively manage and mitigate security breaches. Coordinate with external partners and stakeholders to enhance threat intelligence capabilities. Implement security policies and procedures to comply with industry standards and regulations. Analyze security incidents and provide detailed reports to senior management. Train and mentor junior security team members to build a strong security culture within the organization. Stay updated with the latest cyber security trends and technologies to proactively address emerging threats. Support the integration of security solutions into existing IT infrastructure to enhance overall protection. Drive continuous improvement initiatives to optimize security operations and reduce risk exposure. Qualifications Possess a deep understanding of cyber threat intelligence services and their application in a corporate environment. Demonstrate proficiency in using CrowdStrike for threat detection and response. Exhibit strong knowledge of cloud security principles and practices. Have a proven track record of conducting security assessments and audits. Show experience in developing and implementing incident response plans. Display excellent communication skills for effective collaboration with cross-functional teams. Hold a relevant degree in Cyber Security Information Technology or a related field. Certifications Required Certified Information Systems Security Professional (CISSP) Certified Cloud Security Professional (CCSP)

SUMMARY Our client is IT MNC part of one of the major insurance groups based out of Germany and Europe. The Group is represented in around 30 countries worldwide, with Over 40,000 people worldwide, focusing mainly on Europe and Asia. Our client offers a comprehensive range of insurances, pensions, investments and services by focusing on all cutting edge technologies majorly on Could, Digital, Robotics Automation, IoT, Voice Recognition, Big Data science, advanced mobile solutions and much more to accommodate the customers future needs around the globe thru supporting millions of internal and external customers with state of-the-art IT solutions to everyday problems & dedicated to bringing digital innovations to every aspect of the landscape of insurance. Roles & Responsibilities: As per of Cyber Security Governance team member you will be closely working with the Global entity teams (IT administrators / IT Security / Information Security) and Germany teams (Cyber Security / SOC / Incident Handling / VAPT). Working in the complex Cyber Security environment and multinational culture Working on NIST Cyber Security Framework to validate the Cyber Security Maturity of Global Entities. Gather the evidence from global entities for Cyber Security controls, maintain, track, and regularly report the status in ERGO standard format. Provide the guidance and consultancy to global entities to implement the Cyber Security Control as per Information Security Policy and Guidelines. Understand the Security Advisory issued by the OEM and other external security agency. Which include IoC (Indicator of Compromise), IoA (Indicator of Attack), and recommended remediation actions. Issue the Security Advisory email to global entities with recommendation on new Vulnerability & Threats Support global entities on post Cyber Incident Activities, such as record lesson learn, RCA validatation, opportunity to improve the Cyber Control, etc. Understand the basic queries, complex issues, and various scenarios on cyber security. Prepare and present the conclusion a way that is appropriate for the target audience Handle the local Cyber Security Incidents with IT & Network Team Create the SoP / documentation as per NIST control and Information Security Policy Requirements Key Competencies & Skills: Deep understanding about Cyber Security concepts and controls in enterprise Knowledge of industry standard and regulations, such as GDPR, PCI-DSS, HIPAA, ISO 27001, NIST Cyber Security Framework (CSF) etc. Solid understanding of network topology, network protocols, Cyber, Servers Security Endpoint Security, Secure Architecture, Security Technology, On-premises Architecture, and Cloud infrastructure. Knowledge of trouble ticketing systems / CRM Proficient knowledge about enterprise processes based on ITIL framework Familiar with the latest Cyber Security vulnerability / exploits / trends Education / Qualification: Bachelor or Master degree in the field of the Computer Science, Information Systems, or Information Technology At least one Cyber Security Certification is must, such as CISM, CISA, CISSP, CRISC, or equivalent Experience: 7 14 Years of total experience with 4 8 Years of relevant experience Job Location: Hiranandani Gardens, Powai, Mumbai Mode: Work from Office

The details of the position are: Company: Leading NBFC company. Designation: Assistant Vice President SOC & Cyber Security Awareness Role: SOC & Cyber Security Awareness Reporting: VP - : SOC & Cyber Security Awareness Location: Mumbai. Work Days: 5. Purpose of the Job: The Assistant Vice President (AVP) SOC & Cybersecurity Awareness will play a pivotal role in strengthening the organisation's cybersecurity posture. This position involves overseeing Security Operations Centre activities, driving continuous improvement in threat detection and incident response, and leading strategic initiatives to Enhance cybersecurity awareness across the enterprise. The AVP will collaborate with cross-functional teams to ensure SOC operations align with regulatory standards. audit requirements, and industry best practices. Additionally, the role includes designing and executing awareness programs that foster a security-first culture among employees, stakeholders, and partners Role & Responsibilities - 1. Strategic Program Development & Execution: Design and implement a comprehensive cybersecurity awareness and behaviour change program tailored to various internal audiences (executives, employees, contractors, vendors). Develop, document, and implement Standard Operating Procedures (SOPs) for SOC operations while continuously refining processes to enhance efficiency and effectiveness. Develop an annual awareness calendar including campaigns, phishing simulations, newsletters, security champions initiatives, and gamified learning. Align awareness efforts with global security frameworks (e.g., NIST, ISO 27001, CIS), regulatory requirements (e.g., RBI, DPDP), and organisational security strategy. 2. Content Creation and Communication: Create engaging, informative, and easily digestible security-related content (emailers, videos, infographics, playbooks, e-learnings). Localise content for cultural and regional relevance across geographies. 3. Training: o Develop role-based security training (for developers, IT staff, risk teams, etc.). o Monitor training completion rates and effectiveness using data analytics. 4. Phishing Simulations & Metrics: Design and manage regular simulated phishing campaigns across business units. o Analyse and report campaign results, identify risky user groups, and implement targeted follow-ups or remediation training. 5. Regulatory Compliance: o Ensure SOC operations remain compliant with evolving regulatory frameworks by staying informed of changes and proactively updating internal controls, policies, and procedures to reflect new requirements 6. Audit Management: o Lead and oversee security audits by ensuring SOC processes align with audit standards and effectively communicate findings and remediation strategies to stakeholders. 7. Stakeholder Engagement & Culture Building: o Partner with business units, risk teams, HR, compliance, and IT to embed cyber risk awareness into business-as-usual processes. o Build and manage a network of security champions or ambassadors. o Present updates to senior management, audit committees, and regulators as needed. Qualifications: Bachelors degree in information technology, Cybersecurity, Communications, or a related field. Certifications preferred: CISM, CISA, CompTIA Security, or similar. Experience: 10+ years of professional experience, with at least 5 years in cybersecurity awareness or training roles. Experience in BFSI (Banking, Financial Services & Insurance) domain strongly preferred. Familiarity with risk frameworks, regulatory environments, and cybersecurity tools. Skills & Competencies o Cybersecurity knowledge: Understanding of core security principles, threat vectors, and controls. o Communication expertise: Excellent verbal and written communication with a knack for simplifying complex topics. Campaign execution: Experience planning and running large-scale campaigns, events, or training rollouts. Analytical mindset: Ability to analyse data from phishing campaigns or learning platforms to improve programs. Stakeholder management: effectively communicating across all organizational levels to ensure timely outcomes. Creativity & innovation: Brings fresh ideas to improve engagement and reach. For any further queries, write us at melissa@rightmatch.co.in

SUMMARY Our client is IT MNC part of one of the major insurance groups based out of Germany and Europe. The Group is represented in around 30 countries worldwide, with Over 40,000 people worldwide, focusing mainly on Europe and Asia. Our client offers a comprehensive range of insurances, pensions, investments and services by focusing on all cutting edge technologies majorly on Could, Digital, Robotics Automation, IoT, Voice Recognition, Big Data science, advanced mobile solutions and much more to accommodate the customers future needs around the globe thru supporting millions of internal and external customers with state of-the-art IT solutions to everyday problems & dedicated to bringing digital innovations to every aspect of the landscape of insurance. Job Location: Hiranandani Gardens, Powai, Mumbai Mode: Work from Office Requirements Key Responsibilities: : Business-Cybersecurity Alignment: o Work closely with business stakeholders, IT security teams, and cross-functional teams to ensure cybersecurity initiatives align with the organization’s broader business goals. o Translate business needs into technical security requirements that can be effectively executed by the security and IT teams. Risk Analysis & Security Assessments: o Conduct risk assessments in the context of hybrid IT environments (cloud, on-premises, and edge) to identify security gaps and vulnerabilities. o Collaborate with security teams to evaluate existing security controls and recommend solutions to mitigate identified risks, balancing business needs with security requirements. Cybersecurity Frameworks & Compliance: o Ensure that all business and technical security requirements comply with relevant regulatory compliance frameworks (e.g., NIST CSF, ISO 27001, GDPR, HIPAA). o Support audits and compliance assessments, identifying any gaps between current practices and regulatory standards. (must have) Security Process Improvement: o Identify opportunities for process improvements within the cybersecurity function, including streamlining security incident response, access management processes, and threat detection workflows. o Develop business cases for proposed security improvements, including cost-benefit analyses and risk assessments. The Business Analyst will have comprehensive responsibilities spanning multiple cybersecurity domains, and should have expertise in at least 5 of the following areas o SIEM Sentinel & Security Operations: Manage and optimize SIEM solutions, particularly Sentinel, for effective monitoring, incident detection, and security event correlation across hybrid environments. Collaborate with security operations teams to ensure proper configuration, tuning, and reporting within SIEM platforms to support proactive threat management. o Security Tools & Technology Integration: Work with security teams to implement and optimize security tools such as SIEM (e.g., Splunk, Microsoft Sentinel), EDR (e.g., CrowdStrike, MS Purview/Defender), SOAR platforms, CASB (Cloud Access Security Broker), and Threat Intelligence systems. Help define and document requirements for the integration of cybersecurity tools into the broader security ecosystem. o User Access Management (UAM) & RBAC: Work closely with identity and access management teams to ensure the implementation of UAM and RBACsystems that align with the organization's security policy and business requirements. Support the development of processes for managing user roles, privileges, and access rights across enterprise systems. o Cloud & Encryption Security: Ensure that security policies and controls are applied across both on-premises and cloud environments(AWS, Azure, Google Cloud), addressing challenges related to cloud security, data encryption, and access management. Collaborate with technical teams to implement strong encryption methods for data - in - transit, data-at-rest, and data-in-use in line with organizational security policies. o AI & ML in Cybersecurity: (Good to have) Contribute to the use of AI/ML technologies to enhance threat detection, anomaly identification, and predictive analytics within the organization’s security operations. Collaborate with data scientists and security teams to define requirements for AI/ML-based security models and incident response automation. o SOAR Integration & Incident Response: Assist with the integration of Security Orchestration, Automation, and Response (SOAR) solutions into the incident response lifecycle to streamline response times and automate repetitive tasks. Support the continuous improvement of incident response procedures and playbooks, ensuring a consistent, rapid, and efficient approach to security incidents. Benefits

Safeguards information system assets by identifying and solving potential and actual security problems. Protects system by defining access privileges, control structures, and resources. Recognizes problems by identifying abnormalities; reporting violations. Implements security improvements by assessing current situation; evaluating trends; anticipating requirements. Determines security violations and inefficiencies by conducting periodic audits. Upgrades system by implementing and maintaining security controls. Keeps users informed by preparing performance reports; communicating system status. Maintains quality service by following organization standards. Maintains technical knowledge by attending educational workshops; reviewing publications. Contributes to team effort by accomplishing related results as needed. Cyber Security Qualifications / Skills: System administration Network security Problem solving Information security policies On-call network troubleshooting Firewall administration Network protocols Routers, hubs, and switches Informing others Process improvement

Overview We are seeking a Cybersecurity Specialist to join the Critical Start Technologies Private Ltd. team, operating under the Critical Start umbrella, for our India operations. The ideal candidates is a detail-oriented and proactive cybersecurity professional with a strong foundation in security investigations and a passion for protecting digital environments. You thrive in collaborative settings, are comfortable managing multiple responsibilities, and bring a structured approach to problem-solving. Responsibilities Analyze security trends within customer environments. Identify risk prioritization from triaged security technologies. Create and enrich processes or documentation for team responsibilities. C ollaborate with SOC and MDR Operation Teams on internal projects as required , building client adoption and value optimization . Qualifications Required Qualifications: Two ( 2 )+ years of experience in Cyber Security Analytics . A Bachelor's degree from an accredited university in Computer Science, Engineering, Cyber Security, or related area. Two ( 2 )+ years of experience using Endpoint Protection (EPP), Endpoint Detection & Response (EDR/XDR), and Security Information and Event Management (SIEM) platforms. Certified in one or more industry related courses; Security+, CySA+, CASP+, or Equivalent/High. Ability to effectively prioritize tasks and handle multiple responsibilities simultaneously for client facing deliverables. Proficiency in using MS Products, including Word, Excel, PowerPoint, and Visio.

SUMMARY Our client is IT MNC part of one of the major insurance groups based out of Germany and Europe. The Group is represented in around 30 countries worldwide, with Over 40,000 people worldwide, focusing mainly on Europe and Asia. Our client offers a comprehensive range of insurances, pensions, investments and services by focusing on all cutting edge technologies majorly on Could, Digital, Robotics Automation, IoT, Voice Recognition, Big Data science, advanced mobile solutions and much more to accommodate the customers future needs around the globe thru supporting millions of internal and external customers with state of-the-art IT solutions to everyday problems & dedicated to bringing digital innovations to every aspect of the landscape of insurance. Roles & Responsibilities: As per of Cyber Security Governance team member you will be closely working with the Global entity teams (IT administrators / IT Security / Information Security) and Germany teams (Cyber Security / SOC / Incident Handling / VAPT). Working in the complex Cyber Security environment and multinational culture Working on NIST Cyber Security Framework to validate the Cyber Security Maturity of Global Entities. Gather the evidence from global entities for Cyber Security controls, maintain, track, and regularly report the status in ERGO standard format. Provide the guidance and consultancy to global entities to implement the Cyber Security Control as per Information Security Policy and Guidelines. Understand the Security Advisory issued by the OEM and other external security agency. Which include IoC (Indicator of Compromise), IoA (Indicator of Attack), and recommended remediation actions. Issue the Security Advisory email to global entities with recommendation on new Vulnerability & Threats Support global entities on post Cyber Incident Activities, such as record lesson learn, RCA validatation, opportunity to improve the Cyber Control, etc. Understand the basic queries, complex issues, and various scenarios on cyber security. Prepare and present the conclusion a way that is appropriate for the target audience Handle the local Cyber Security Incidents with IT & Network Team Create the SoP / documentation as per NIST control and Information Security Policy Requirements Key Competencies & Skills: Deep understanding about Cyber Security concepts and controls in enterprise Knowledge of industry standard and regulations, such as GDPR, PCI-DSS, HIPAA, ISO 27001, NIST Cyber Security Framework (CSF) etc. Solid understanding of network topology, network protocols, Cyber, Servers Security Endpoint Security, Secure Architecture, Security Technology, On-premises Architecture, and Cloud infrastructure. Knowledge of trouble ticketing systems / CRM Proficient knowledge about enterprise processes based on ITIL framework Familiar with the latest Cyber Security vulnerability / exploits / trends Education / Qualification: Bachelor or Master degree in the field of the Computer Science, Information Systems, or Information Technology At least one Cyber Security Certification is must, such as CISM, CISA, CISSP, CRISC, or equivalent Experience: 7 14 Years of total experience with 4 8 Years of relevant experience Job Location: Hiranandani Gardens, Powai, Mumbai Mode: Work from Office

Job Title: Level 2 Cyber Security Analyst Experience Required: 3-6 Years Location: Work from office (Gurugram) Shift Timing : 24x7 Job Responsibilities: Incident Investigation: Conduct thorough investigations of security incidents using IBM QRadar, ensuring timely and accurate identification, analysis, and resolution of security threats. Support Level 1 Analysts: Provide guidance and support to Level 1 analysts, assisting with complex issues and ensuring effective incident response and escalation procedures. Use Case Understanding: Develop and maintain a deep understanding of security use cases, ensuring the effective implementation and monitoring of security controls. Rotational Shifts: Be prepared to work in rotational shifts to provide 24/7 security monitoring and incident response. Collaboration: Work closely with other IT and security teams to ensure comprehensive security coverage and effective incident management. Documentation: Maintain detailed and accurate documentation of incidents, investigations, and resolutions to support continuous improvement and compliance requirements. Training and Development: Stay updated with the latest security trends, tools, and best practices, and participate in ongoing training and development opportunities.

Company Overview: Join one of the fastest-growing IT services companies, where innovation and cutting-edge technology drive our growth. We deliver scalable, data-driven solutions to global clients. Job Summary: We are seeking a motivated and detail-oriented Cyber Security to join our team. The ideal candidate will be responsible for monitoring, analyzing, and responding to security threats while assisting in the implementation of security measures to protect our organization's data and infrastructure. Key Responsibilities: Assist in vulnerability assessments and penetration testing. Implement security measures and best practices to safeguard sensitive data. Conduct security audits and compliance assessments. Support security awareness training for employees. Analyze logs and reports to identify suspicious activities. Collaborate with IT teams to ensure secure network configurations. Maintain and update security documentation and policies. Stay updated with the latest cyber security trends, threats, and best practices. Qualifications: Basic understanding of cyber security concepts, threats, and frameworks. Familiarity with security tools such as firewalls, SIEM, IDS/IPS, and antivirus solutions. Knowledge of networking protocols and operating systems (Windows/Linux/MacOS). Ability to analyze and interpret logs from security devices. Strong analytical and problem-solving skills. Good communication and teamwork abilities.

Lead and manage end-to-end delivery of transformation projects that align with our strategic objectives, from concept through to implementation and benefit realization. Lead the planning and implementation of transformation projects, ensuring alignment with the organization's strategic goals and objectives. Work closely with cross-functional teams including IT, product development, operations, and external partners to deliver projects on time and within budget. Manage and oversee the entire project lifecycle, from ideation, planning, execution, monitoring, and closure, ensuring high-quality deliverables. Drive innovation in product development and technology solutions by staying abreast of industry trends and emerging technologies. Foster a culture of continuous improvement, encouraging teams to innovate and optimize processes for better efficiency and effectiveness. Develop and manage budgets, forecasts, and reports for transformation initiatives, providing regular updates to senior management. Mandatory Experience: Platform experience across ServiceNow, MS, SA, Oracle, Workday, Coupa, Salesforce etc. implementation in PMO standpoint. Experience with Cloud technologies incl. Google, Amazon & Azure, DevOps and Data (ETL, Migration) Clearly ability to understand the BRD / FRD with strong process understanding / Project Management background Strong sector focus incl. FS, HCLS, TMT Experience in technology transformation / organisation transformation including Change Management (end to end). Any experience in Risk Advisory incl. Internal Audit, SOX, GRC, Cyber, TPRM Any experience in Deal Advisory like M&A, Strategy, Financial Due Diligence Openess to travel across countries / regions.

Role & responsibilities To be part of deal-review board for new opportunities & provide inputs on delivery & quality risk if any, based on the current knowledgebase. To review implementation/ transition plan & tracking it via regular program reviews. Define Quality Assurance and Quality control plan for the engagement. Ensure the Quality plan is implemented. Milestone wise deliverables tracking Review adherence to Risk mitigation plan Review SLA compliances and ensure available RCA for missed SLAs Participate in client calls and represent as Quality spoc in the engagement Conduct regular contract compliance audits to ensure compliance to all contractual requirements Conduct periodic Quality trainings Drive continuous Quality improvement projects using Lean, Six Sigma and Kaizen. Define new processes/ templates/ checklist as required Identify and analyze Quality problems, conduct RCA and drive corrective & preventive actions Create Practice wise Benchmark data Preferred candidate profile Strong understanding of Quality concepts like Lean, Six Sigma, Agile, ITIL, ISO 2000 and CMMi SVC/Dev. Certifications in few of these will be desired. Excellent Presentation and communication skills. Should have an eye for detail to identify process and compliance gaps. Ability to influence delivery teams to comply to processes. Strong facilitation Skills. Understanding of Cyber Security domain is desired.

Role & responsibilities To be part of deal-review board for new opportunities & provide inputs on delivery & quality risk if any, based on the current knowledgebase. To review implementation/ transition plan & tracking it via regular program reviews. Define Quality Assurance and Quality control plan for the engagement. Ensure the Quality plan is implemented. Milestone wise deliverables tracking Review adherence to Risk mitigation plan Review SLA compliances and ensure available RCA for missed SLAs Participate in client calls and represent as Quality spoc in the engagement Conduct regular contract compliance audits to ensure compliance to all contractual requirements Conduct periodic Quality trainings Drive continuous Quality improvement projects using Lean, Six Sigma and Kaizen. Define new processes/ templates/ checklist as required Identify and analyze Quality problems, conduct RCA and drive corrective & preventive actions Create Practice wise Benchmark data Preferred candidate profile Strong understanding of Quality concepts like Lean, Six Sigma, Agile, ITIL, ISO 2000 and CMMi SVC/Dev. Certifications in few of these will be desired. Excellent Presentation and communication skills. Should have an eye for detail to identify process and compliance gaps. Ability to influence delivery teams to comply to processes. Strong facilitation Skills. Understanding of Cyber Security domain is desired.

SUMMARY Our client is IT MNC part of one of the major insurance groups based out of Germany and Europe. The Group is represented in around 30 countries worldwide, with Over 40,000 people worldwide, focusing mainly on Europe and Asia. Our client offers a comprehensive range of insurances, pensions, investments and services by focusing on all cutting edge technologies majorly on Could, Digital, Robotics Automation, IoT, Voice Recognition, Big Data science, advanced mobile solutions and much more to accommodate the customers future needs around the globe thru supporting millions of internal and external customers with state of-the-art IT solutions to everyday problems & dedicated to bringing digital innovations to every aspect of the landscape of insurance. Job Location: Hiranandani Gardens, Powai, Mumbai Mode: Work from Office Requirements Key Responsibilities: : Business-Cybersecurity Alignment: o Work closely with business stakeholders, IT security teams, and cross-functional teams to ensure cybersecurity initiatives align with the organization’s broader business goals. o Translate business needs into technical security requirements that can be effectively executed by the security and IT teams. Risk Analysis & Security Assessments: o Conduct risk assessments in the context of hybrid IT environments (cloud, on-premises, and edge) to identify security gaps and vulnerabilities. o Collaborate with security teams to evaluate existing security controls and recommend solutions to mitigate identified risks, balancing business needs with security requirements. Cybersecurity Frameworks & Compliance: o Ensure that all business and technical security requirements comply with relevant regulatory compliance frameworks (e.g., NIST CSF, ISO 27001, GDPR, HIPAA). o Support audits and compliance assessments, identifying any gaps between current practices and regulatory standards. (must have) Security Process Improvement: o Identify opportunities for process improvements within the cybersecurity function, including streamlining security incident response, access management processes, and threat detection workflows. o Develop business cases for proposed security improvements, including cost-benefit analyses and risk assessments. The Business Analyst will have comprehensive responsibilities spanning multiple cybersecurity domains, and should have expertise in at least 5 of the following areas o SIEM Sentinel & Security Operations: Manage and optimize SIEM solutions, particularly Sentinel, for effective monitoring, incident detection, and security event correlation across hybrid environments. Collaborate with security operations teams to ensure proper configuration, tuning, and reporting within SIEM platforms to support proactive threat management. o Security Tools & Technology Integration: Work with security teams to implement and optimize security tools such as SIEM (e.g., Splunk, Microsoft Sentinel), EDR (e.g., CrowdStrike, MS Purview/Defender), SOAR platforms, CASB (Cloud Access Security Broker), and Threat Intelligence systems. Help define and document requirements for the integration of cybersecurity tools into the broader security ecosystem. o User Access Management (UAM) & RBAC: Work closely with identity and access management teams to ensure the implementation of UAM and RBACsystems that align with the organization's security policy and business requirements. Support the development of processes for managing user roles, privileges, and access rights across enterprise systems. o Cloud & Encryption Security: Ensure that security policies and controls are applied across both on-premises and cloud environments(AWS, Azure, Google Cloud), addressing challenges related to cloud security, data encryption, and access management. Collaborate with technical teams to implement strong encryption methods for data - in - transit, data-at-rest, and data-in-use in line with organizational security policies. o AI & ML in Cybersecurity: (Good to have) Contribute to the use of AI/ML technologies to enhance threat detection, anomaly identification, and predictive analytics within the organization’s security operations. Collaborate with data scientists and security teams to define requirements for AI/ML-based security models and incident response automation. o SOAR Integration & Incident Response: Assist with the integration of Security Orchestration, Automation, and Response (SOAR) solutions into the incident response lifecycle to streamline response times and automate repetitive tasks. Support the continuous improvement of incident response procedures and playbooks, ensuring a consistent, rapid, and efficient approach to security incidents. Benefits

Position: Information Technology Risk Management Consultant Location: Chennai Experience: 8-12 years Education: B.E./ B.Tech./MCA Role Overview Responsible for developing, implementing, and maintaining the organisation’s IT Risk Management framework. This role focuses on identifying, assessing, and mitigating risks to protect information assets, ensure regulatory compliance, and enhance overall IT governance. The position requires a deep understanding of risk frameworks, threat modelling, control evaluation, and GRC tools, combined with strong stakeholder management skills. Job Profile: Conduct comprehensive risk assessments: identification, impact analysis, heatmap/matrix creation, inherent vs. residual risk scoring, and control gap analysis. Perform threat modelling and develop detailed risk scenarios for IT infrastructure, applications, and cloud environments. Align IT risk practices with industry frameworks and standards (ISO 27005/27001, NIST RMF, PCI DSS, DORA). Evaluate and maintain IT controls and security posture, recommending enhancements where necessary. Support internal and external IT audit processes, ensuring timely remediation of findings. Work with GRC teams (ServiceNow GRC, RSA) to track and manage risk compliance workflows. Prepare and present risk dashboards, KRIs, and management reports to senior leadership. Desired Skills Proven experience in IT Risk Management frameworks, threat modelling, and risk scenario planning. Strong understanding of regulatory requirements and compliance frameworks. Expertise in GRC platforms (ServiceNow GRC, RSA). Proficiency in risk scoring methodologies and control gap analysis. Preferred Certifications CRISC – Certified in Risk and Information Systems Control / CISSP - Certified Information Systems Security Professional (Preferred) PMI-RMP – Project Management Institute Risk Management Professional (Optional) ISO 27001 / 27005 Risk Manager Certification (Optional)

Monitor,analyze security events,alerts across various platforms. Investigate potential security incidents,escalate as appropriate,following defined incident response processes. Correlate events from multiple sources to identify patterns or anomalies Required Candidate profile Lead,participate in threat hunting activities to proactively identify potential threats vulnerabilities Serve as the administrator for SOC tools including SIEM, EDR, SOAR,threat intelligence platforms Perks and benefits To be disclosed post interview