1981 Cyber Security Jobs - Page 25

Vice President - Cyber security Delivery Job Summary: The Security Delivery Head is responsible for overseeing and managing the delivery of security services within an organization. This role involves developing and implementing security strategies, managing security teams, and ensuring the protection of the organization's assets, employees, and information. Key Responsibilities: Develop and Implement Security Strategies : Create and execute comprehensive security strategies that align with organizational goals and industry best practices. Manage Security Teams : Lead and manage a team of security professionals, including recruitment, training, and performance evaluation. Oversee Security Operations : Ensure the effective operation of security systems and protocols, including monitoring, incident response, and investigations. Risk Management : Identify, assess, and mitigate security risks to the organization. Develop and implement risk management plans. Compliance and Governance : Ensure compliance with relevant laws, regulations, and industry standards. Maintain up-to-date knowledge of security trends and regulatory changes. Stakeholder Collaboration : Work closely with other departments, such as IT, HR, and legal, to integrate security measures into overall business operations. Budget Management : Develop and manage the security budget, ensuring cost-effective use of resources. Crisis Management : Lead the organizations response to security incidents and emergencies, including crisis communication and recovery efforts. Continuous Improvement : Continuously evaluate and improve security policies, procedures, and technologies. Qualifications: Education : Bachelors degree in Security Management, Information Technology, or a related field. A Masters degree is preferred. Experience : Minimum of 20 years of experience in security management, with at least 5 years in a leadership role. Certifications : Relevant certifications such as CISSP, CISM, or PMP are highly desirable. Skills : Strong leadership, communication, and problem-solving skills. Proficiency in security technologies and risk management. Key Competencies: Strategic Thinking Leadership and Team Management Risk Assessment and Mitigation Regulatory Compliance Crisis Management Stakeholder Collaboration This role is crucial for ensuring the security and resilience of the organization. If you have any specific requirements or need more details, feel free to ask!

Hiring for Application Security role at Mumbai location !!! Job Title: Senior Manager Third Party Technology Risk Management Location: Mumbai Experience Required: 7 - 9 Years Industry: Financial Services / BFSI Job Type: Full-Time Work Mode: Hybrid Note: 2 levels of interview with client - 1st round - Virtual / 2nd round - F2F is Must . Job Overview: We are looking for a seasoned and driven Senior Manager to lead our Third-Party Technology Risk Management efforts. If you have strong experience in managing vendor risks, IT security frameworks, and global compliance standards in a financial services environment this opportunity is for you! Key Responsibilities: Conduct and lead Third-Party Risk Assessments for new and existing vendors. Evaluate IT security controls using industry frameworks (NIST, ISO 27001, SOC 2, GDPR, etc.). Develop and manage vendor risk dashboards and reports for senior stakeholders. Collaborate with cross-functional teams across regions to ensure compliance and risk mitigation. Ensure vendors meet our cybersecurity, network, and cloud security expectations. Coordinate vendor audits, risk reviews, and maintain detailed documentation. Work effectively with multicultural, cross-time-zone teams. Communicate risk findings and remediation plans to senior management. Maintain high standards of confidentiality, integrity, and professionalism. Required Skills & Qualifications: Bachelor's degree in IT, Information Security, or related field. Certifications such as CISSP, CISA, CISM, CRISC, or ISO 27001 Lead Auditor. 1012+ years in Technology Risk, with strong focus on Third-Party Risk Management. In-depth knowledge of NIST, ISO 27001, PCI DSS, SOC 2, COBIT, GDPR. Strong grasp of cybersecurity, network, and cloud security principles. Experience working with compliance, procurement, and legal teams. Excellent verbal and written communication skills for senior stakeholder engagement. Proficient in Microsoft Word, PowerPoint, and Project. Proven ability to manage conflict, build strong vendor/client relationships, and influence decision-making. Preferred Skills (Nice to Have): Familiarity with GRC tools (e.g., Archer, ServiceNow, OneTrust). Experience working with cloud service providers (AWS, Azure, GCP). Knowledge of outsourced IT risk, data privacy, and regulatory trends.

Lloyd Institute of Forensic Science, Greater Noida affiliated to National Forensic Sciences University, an institution of national importance under the aegis of the Ministry of Home Affairs, which facilitates and promotes studies and research and to achieve excellence in the field of forensic science in conjunction with applied behavioral science studies, law, criminology and other allied areas and technology and other related fields, invites online application from the eligible candidates for various teaching posts in the following disciplines Digital Forensic Multimedia Forensic Cyber Security & Information Security Requirement A good academic record, A master's degree with 60% marks (or equivalent grade on a point scale wherever the grading system is followed) with Ph.D. in a concerned /relevant/allied subject from an Indian University or an equivalent degree from an accredited Foreign University Excellent academic background, high-quality publications, potential to get research funding from Government agencies and industries, appropriate academic professional activities undertaken, and a good innovative teaching record would be some of the important criteria for selection. Minimum Qualification Professor- - Actively engaged in research with a minimum of 10 research publications in the UGC- CARElisted journals. - A minimum of ten years of teaching experience in university/college as Assistant Professor/Associate Professor/Professor, and/or research experience at an equivalent Level at the University/National Level Institutions with Experience of Ph.D. guidance. . OR An outstanding professional, having a Ph.D. degree in the relevant/allied/applied disciplines, from any academic institution/industry, who has made a significant contribution to the knowledge in the concerned/allied/relevant discipline, provided he/she has ten years experience. Associate Professor - Experience of Ph.D. guidance Explanation: Experience of Ph.D. guidance means that registration of Ph.D. student as such should have been completed, wherein candidate is a sole/principal supervisor(guide). - Minimum eight years of experience of teaching and / or research in an academic/research position equivalent to that of Assistant Professor in a University, College or Accredited Research Institution/industry - Minimum five publications in the UGC-CARE listed Journals Assistant Professor - Minimum two publications in the UGC-CARE listed Journals.

Cyber Manager Joining Maersk will embark you on a great journey with career development in a global organisation. You will gain broad business knowledge of the companys activities globally, as well as understand how the complexity of IT supports the transport and logistics business. At Maersk we value the diversity of our talent and will always strive to recruit the best person for the job we value diversity in all its forms, including but not limited to: gender, age, nationality, race, sexual orientation, disability or religious beliefs. We are proud of our diversity and see it as a genuine source of strength for building high performing teams. The purpose of this role is to assist in delivering a DevSecOps transformation across Maersk by driving the processes, behaviours and culture necessary to enable successful implementation. You will be a key member of the team charged with delivering the tools, training, and methods necessary to support secure software development, and incentivising secure behaviour across the developer community and broader organisation. Were looking for a software developer who is passionate about security, who will work with our multi-disciplinary team to evangelize the importance of secure coding and design and deliver supporting initiatives. You will work with stakeholders across Maersk to assess the success of interventions and enable continuous improvement. In this role you will be exposed to a wide and challenging range of business issues through regular engagement with stakeholders across Maersk. You will work and communicate across geographical and cultural borders that will enable you to build a strong professional network. We will provide you with opportunities to broaden your knowledge and strengthen your technical and professional foundation. Key responsibilities: Identifying, analysing, and capturing requirements related to secure software development practices across Platforms and Enterprise brands. Designing and delivering user-centered interventions to enable secure software development awareness and practices. This will include writing actionable guidelines, developing and delivering application security training and awareness materials, and identifying opportunities to streamline and automate secure development practices. Collaborating with Developers to identify and develop good DevSecOps practices and assisting in embedding them as business as usual. Developing understanding of DevSecOps best practice in other sectors and extrapolating to Maersk initiatives as appropriate. Primary internal stakeholders Maersk Technology Organization including new platforms Maersk Brands & Supporting Function teams Other Cyber Security functions Primary external stakeholder Maersk customers Maersk suppliers Regulatory bodies Required experience & skills: Who we are looking: Software development experience Knowledge of application security principles and the ability to translate technical concepts to a diverse set of stakeholders. Excellent communication skills: the ability to effectively communicate with both technical and non-technical personnel. Excellent stakeholder management and interpersonal skills. Highly organized, with the ability to manage conflicting priorities and multiple tasks Able to work in a multi-disciplinary, collaborative environment. Strong presentation and storytelling skills. Strong self-starting and can-do attitude Experience: At least four years experience in software development. Experience implementing application security within CI/CD pipelines is strongly preferred. Strong stakeholder management experience with the ability to identify differing stakeholder views and build consensus. Experience working in an agile environment. Experience in an IT Operations environments along with an understanding of how it supports critical business outcomes is strongly preferred

Job Summary Join our team as an Infra. Technology Specialist where you will leverage your expertise in vulnerability management to enhance our IT infrastructure. With a hybrid work model and day shifts you will collaborate with cross-functional teams to ensure robust security measures. Your contributions will directly impact our companys mission to provide secure and reliable technology solutions. Responsibilities Oversee the implementation of vulnerability management processes to ensure the security of IT infrastructure. Collaborate with cross-functional teams to identify and mitigate potential security threats. Provide expert guidance on best practices for vulnerability assessment and remediation. Develop and maintain documentation for vulnerability management procedures and protocols. Conduct regular security audits and assessments to identify areas for improvement. Implement automated tools and technologies to streamline vulnerability management processes. Monitor and analyze security alerts to proactively address potential risks. Coordinate with IT teams to ensure timely patch management and system updates. Evaluate and recommend security solutions to enhance infrastructure resilience. Train and mentor team members on vulnerability management techniques and tools. Report on security metrics and trends to inform strategic decision-making. Ensure compliance with industry standards and regulations related to IT security. Contribute to the development of security policies and procedures to safeguard company assets. Qualifications Possess a strong background in vulnerability management with at least 8 years of experience. Demonstrate proficiency in using vulnerability assessment tools and technologies. Exhibit excellent problem-solving skills and attention to detail. Have a solid understanding of IT infrastructure and security principles. Show ability to work collaboratively in a hybrid work environment. Display strong communication skills to effectively convey technical information. Hold a relevant certification such as Certified Information Systems Security Professional (CISSP). Certifications Required Certified Information Systems Security Professional (CISSP)

Job Summary The Cyber Security Architect will play a crucial role in designing and implementing security solutions to protect the companys digital assets. With a focus on Fortigate Next Gen Firewalls the candidate will ensure robust security measures are in place. The role involves collaborating with various teams including Sales & Marketing to align security strategies with business objectives. This hybrid position offers a dynamic work environment with a day shift schedule. Responsibilities Develop comprehensive security architecture strategies to safeguard digital assets and ensure compliance with industry standards. Implement Fortigate Next Gen Firewalls to enhance network security and protect against cyber threats. Collaborate with cross-functional teams to integrate security measures into business processes ensuring seamless operations. Analyze security systems and identify areas for improvement to optimize protection and efficiency. Conduct regular security assessments and audits to maintain the integrity of the companys digital infrastructure. Provide expert guidance on security best practices to internal teams fostering a culture of security awareness. Monitor emerging cyber threats and develop proactive strategies to mitigate risks effectively. Design and deploy security solutions that align with the companys objectives and enhance overall resilience. Oversee incident response activities ensuring swift resolution and minimal impact on business operations. Evaluate new security technologies and recommend implementations that enhance the companys security posture. Collaborate with Sales & Marketing teams to ensure security measures support business goals and customer trust. Lead training sessions to educate employees on security protocols and the importance of data protection. Maintain documentation of security policies and procedures ensuring accessibility and compliance. Qualifications Possess extensive experience in Fortigate Next Gen Firewalls demonstrating expertise in configuration and management. Have a strong understanding of cybersecurity principles and practices with a focus on network security. Experience in Sales & Marketing domain is advantageous providing insight into aligning security with business strategies. Demonstrate excellent analytical skills with the ability to identify vulnerabilities and propose effective solutions. Exhibit strong communication skills capable of conveying complex security concepts to non-technical stakeholders. Show proficiency in conducting security audits and assessments ensuring compliance with industry standards. Display a proactive approach to threat detection and mitigation staying ahead of potential risks.

ANZEN Technologies Private Limited. stands as an unparalleled powerhouse, empowering organizations across industries with our visionary services, cutting-edge solutions, and ground-breaking services in the realm of Cyber Security, IT Governance, Risk Management, and Compliance. As your trusted partner, we offer a comprehensive suite of End-to-End security services and consultancy, tailored to safeguard critical infrastructure installations, elevate the standards of BFSI, eCommerce, IT/ITES, Pharmaceuticals, and an array of other sectors. Position : Senior Associate Consultant Key Responsibilities: GRC Strategy and Planning: Develop and implement comprehensive GRC strategies, policies, and procedures aligned with organizational goals and objectives. Define and prioritize GRC initiatives based on risk assessments, regulatory requirements, and industry best practices. Continuously evaluate and update GRC frameworks to adapt to evolving threats and compliance landscapes. Risk Management: Conduct risk assessments to identify, analyze, and prioritize risks across the organization. Develop risk mitigation strategies and controls to address identified risks effectively. Monitor and report on risk exposure and mitigation efforts to senior management and stakeholders. Compliance Management: Ensure compliance with relevant laws, regulations, and industry standards, such as GDPR, HIPAA, PCI DSS, etc. Monitor changes in regulatory requirements (SEBI, RBI, IRDAI etc) and assess their impact on the organization's compliance posture. Coordinate compliance audits, assessments, and certifications, and remediate any identified issues or deficiencies. Audit Management: Plan, coordinate, and oversee internal and external audit activities, including IT audits, compliance audits, and third-party audits. Develop audit plans, programs, and testing procedures to assess the effectiveness of controls and compliance with policies and regulations. Review audit findings, assess control deficiencies, and collaborate with stakeholders to develop and implement remediation plans. Monitor and track the progress of audit remediation efforts and report on the status to senior management and audit committees. Policy Development and Enforcement: Develop, review, and update information security policies, standards, and guidelines in alignment with regulatory requirements and industry best practices. Establish mechanisms for policy enforcement and monitor adherence to policies across the organization. Cross-Functional Collaboration: Collaborate with internal stakeholders, including IT, legal, finance, and operations, to integrate GRC principles into business processes and initiatives. Provide guidance and support to business units on GRC-related matters, including risk assessments, compliance requirements, and controls implementation. Training and Awareness: Develop and deliver GRC training programs and awareness campaigns to educate employees on their roles and responsibilities in maintaining compliance and managing risks. Foster a culture of compliance and risk awareness throughout the organization. Qualifications and Skills: Bachelor's degree in Information Security, Risk Management, Business Administration, or related field. Masters degree or relevant certifications (e.g., CISA, CISSP, CRISC, CISM) preferred. Minimum of 5 years of experience in governance, risk, and compliance roles, with a focus on information security and IT risk management, including audit management experience. Strong understanding of regulatory requirements and industry standards related to information security and data privacy (e.g., GDPR, HIPAA, ISO 27001). Proficiency in audit methodologies, risk assessment frameworks, compliance frameworks, and control frameworks (e.g., NIST Cybersecurity Framework, COBIT, ITIL). Excellent analytical, problem-solving, and decision-making skills. Effective communication and interpersonal skills, with the ability to collaborate with diverse stakeholders and influence change. Proven track record of leading GRC initiatives, conducting audits, and driving process improvements. Ability to work independently and manage multiple priorities in a fast-paced environment. Office Address : ANZEN Technologies Private Limited Akshar Business Park, H - 3025, 3rd Floor, Plot No. 3, Sector-25, Vashi, Navi Mumbai 400703 https://anzentech.com Immediate Joiner may apply

About The Role Minimum 2-4 years of experience in Security Operations Centre Experience across SOC domains use case creation, incident management, threat hunting, threat intelligence etc. Solid understanding of cyber security, network security, end point security concepts Good understanding of recent cyber threats, latest attack vectors Must have experience in any one SIEM (Splunk), EDR and SOAR solution Must have experience in leading/managing SOC shifts Experience in shift roster creation, resource management etc. Will be responsible for critical incident investigation, use case review, mentoring Shift Leads, SLA management etc.

Job Title: Solutions Architect Type: Full-Time Location - Sec 63 Noida Salary: Best in Market About the Role:- We are building a Microsoft-focused IT consulting firm serving SMB clients across cloud solutions, cybersecurity, and digital transformation. We are seeking a client-facing, hands-on Solutions Architect who will not only design and deliver technical solutions but also lead projects and manage technical teams . This is a dual-role opportunity: youll be the lead technical consultant on client calls and pre-sales discussions, and also the technical delivery lead , responsible for creating roadmaps and ensuring successful execution using internal and external resources. Prior experience leading technical teams and projects is a must. Key Responsibilities:- Client-Facing & Business Consulting Join client discovery meetings with the sales team to identify pain points and technical needs. Present technical solutions clearly to both technical and non-technical stakeholders. Collaborate with sales on developing SOWs, proposals, and solution estimates. Build and maintain long-term relationships as the trusted technical advisor. Solution Architecture & Delivery Leadership Design and deploy Microsoft-based solutions, including Azure infrastructure, SharePoint, Intune, MFA, and Office 365. Conduct cybersecurity assessments and penetration tests; implement Microsoft Defender and Azure Security Center. Plan and lead seamless Office 365 migrations with strong emphasis on user experience and uptime. Lead technical project teams , allocate tasks, and oversee execution from kickoff through post-implementation. Develop and maintain project roadmaps , timelines, and delivery milestones aligned with client goals. Be hands-on when needed and help resolve complex issues directly or by guiding team members. Build and manage a trusted network of independent technical experts for flexible delivery capacity. Documentation & Continuous Improvement Produce architecture diagrams, SOWs, security reports, test results, and audit-ready deliverables. Stay up to date with Microsoft technologies and bring new ideas to evolve our offerings. Qualifications:- Education Bachelors degree in Computer Science, Information Technology, or a related field (or equivalent experience). Required Experience:- Minimum 2+ years leading technical teams and IT projects from planning through executionthis is mandatory . 5+ years in solution architecture or IT consulting, with hands-on Microsoft ecosystem experience. Proven success in Azure (IaaS/PaaS), Intune, SharePoint, MFA, and Office 365 migrations. Experience conducting penetration tests and implementing security/compliance frameworks (HIPAA, CMMC, etc.). Previous experience working in or with an IT consulting or managed services firm. Certifications (Preferred):- Microsoft Certified: Azure Solutions Architect Expert Microsoft 365 Certified: Enterprise Administrator Expert CEH / OSCP / CISSP / CompTIA Security+ Skills:- Strong leadership and team coordination experience. Ability to translate technical requirements into business-focused solutions. Excellent communicationclear, confident, and able to represent the company to executive-level stakeholders. Proficient with project management tools (Jira, MS Project, Asana, etc.). Capable of independently managing project delivery and motivating technical contributors. Nice to Have:- A strong network of IT professionals and contractors for rapid scaling. Experience with SMB clients in regulated industries (healthcare, finance, etc.) Who You Are:- A natural team leader with strong client-facing presence. A technical expert who thrives in a fast-paced, high-responsibility role. A builder , excited about contributing to the foundation of a growing consulting firm. To speed up processing, you might also send a copy of your profile along with a brief write-up supporting your case to :- vinod@apetanco.com, rajni@apetan.com , riya@apetan.com

Please share your CV on sv17@svmanagement.com The IT Infrastructure & IT Security Head will drive the strategic planning, deployment, and management of robust, scalable, and secure IT infrastructure for a large-scale, multi-plant automotive manufacturing company. The role demands deep expertise in manufacturing IT ecosystems, cybersecurity governance, and a strong understanding of operational technology (OT) environments, including Industry 4.0 integrations. Qualifications & Experience: Bachelors or Masters degree in computer science, IT, Electronics, or related field. 1620 years of relevant experience, preferably in large-scale manufacturing, with at least 5 years in a leadership role. Strong expertise in IT infrastructure design, cloud computing (Azure/AWS/GCP), industrial networks, and cybersecurity. Experience working in automotive/engineering/manufacturing sectors is highly preferred. Professional certifications such as ITIL, CCNP, MCSE, CISSP, CISM, TOGAF, or PMP will be an added advantage. Extensive experience of managing IT Budgets. Excellent understanding of IT service management/ITIL processes. Experience of managing multiple / complex infrastructure projects. Expertise in modern hosting, computing, storage, and data delivery platforms. Strong knowledge of IT control frameworks (e.g., SOX, access & security, privacy) and implementing controls. Extensive experience in implementing and managing SAP (ECC, S/4 HANA) landscapes Infrastructure with good SAP Basis expertise. Extensive experience with SaaS platform integration and optimization. Proficient in Microsoft Cloud products, IT budgeting, staff recruitment, and vendor management. Familiar with AWS well-architected framework and IT architecture, data integration, and networking infrastructure. Knowledge of automation, RPA, EDR, MDR, vulnerability management, and penetration testing. Hands-on expertise in various IT infrastructure, cloud, and cybersecurity platforms.

SOC Analyst works within the 24/7 Cyber Fusion Center (CFC). The role is responsible for monitoring, triaging, analyzing and escalating incidents and events in the technology environment. This SOC Analyst will evaluate data collected from a variety of cyber operations tools (e.g., SIEM, IDS/IPS, Firewalls, network traffic logs, cloud platforms, and SOAR solutions to analyze events that occur within the environments for the purposes of detecting and mitigating threats in both structured and unstructured situations. Individuals in this role are proactive and well-versed in log, identity, cloud, network, and root cause analysis Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional expertise SOC Analyst must have skills in email security, system event, network event, log analysis. Knowledge of common IT and security technology concepts with emphasis on TCP/IP network security, operating system security, modern attack and exploitation techniques is important. Experience conducting event analysis in AWS and Azure environments. Characterize and analyse alerts to understand potential and active threats. Perform event correlation using information gathered from a variety of sources within the enterprise to gain situational awareness and determine the nature and characteristics of events that could be an observed attack Preferred technical and professional experience Document and escalate events/incidents that may cause adverse impact to the environment. Provide daily summary reports of events and activity relevant to cyber operations. Perform Cyber Operations trend analysis and reporting. Perform high-quality triage and thorough analysis for all alerts. Demonstrate effective communication skills both written and verbal. Actively engage in team chats, calls, and face to face settings. Constantly contribute to SOC runbooks/playbooks Recommend improvements to automations, alert fidelity, and security controls. Preferred Experience: Experience / Knowledge in CyberArk, Azure SSO. Knowledge of enterprise web technologies, security, and cutting-edge infrastructures

SOC Analyst must have skills in email security, system event, network event, log analysis. Knowledge of common IT and security technology concepts with emphasis on TCP/IP network security, operating system security, modern attack and exploitation techniques is important. Experience conducting event analysis in AWS and Azure environments. Characterize and analyse alerts to understand potential and active threats. Perform event correlation using information gathered from a variety of sources within the enterprise to gain situational awareness and determine the nature and characteristics of events that could be an observed attack Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional expertise Document and escalate events/incidents that may cause adverse impact to the environment. Provide daily summary reports of events and activity relevant to cyber operations. Perform Cyber Operations trend analysis and reporting. Perform high-quality triage and thorough analysis for all alerts. Demonstrate effective communication skills both written and verbal. Actively engage in team chats, calls, and face to face settings. Constantly contribute to SOC runbooks/playbooks Recommend improvements to automations, alert fidelity, and security controls. Preferred Experience: Experience / Knowledge in CyberArk, Azure SSO. Knowledge of enterprise web technologies, security, and cutting-edge infrastructures Preferred technical and professional experience SOC Analyst works within the 24/7 Cyber Fusion Center (CFC). The role is responsible for monitoring, triaging, analyzing and escalating incidents and events in the technology environment. This SOC Analyst will evaluate data collected from a variety of cyber operations tools (e.g., SIEM, IDS/IPS, Firewalls, network traffic logs, cloud platforms, and SOAR solutions to analyze events that occur within the environments for the purposes of detecting and mitigating threats in both structured and unstructured situations. Individuals in this role are proactive and well-versed in log, identity, cloud, network, and root cause analysis

As a Cyber Security Analyst you will be responsible for the administration, endpoint protection, vulnerability management, intrusion detection system, security information & event management, Active Directory, Domain Controller and Email Security.

Lead & focus: Demonstrate clear & calm leadership, setting the tone for each response Command and coordinate a response to security incidents, relevant threats, and high profile security events Scope a response to the next best actions Ensure response is sustainable for all resources involved Support beyond normal shift hours in an emergency or during times of staff shortage Coordinate & communicate: Delegate tasks in a timely manner and manage them to closure Facilitate incident / threat resolution through prompt communication across multiple teams Document status and regularly communicate updates to stakeholders and senior management Develop and track key metrics and reporting related to incident management Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional expertise Incident Response, Soc Management Preferred technical and professional experience Threat Hunting

Location: Thane What does a successful Internal Audit- IT professional do at FISERV? Efficiently conduct the audit projects as per The Institute of Internal Auditors standards and in accordance with Fiserv global Internal Audit framework and methodologies. What will you do: Should be able to direct/execute audit project independently (covering planning, fieldwork and reporting stages of audits) Lead a variety of moderately complex to complex IT focused audits including IT governance, service and project delivery, audits of IT technical domains such as networks, infrastructure, and applications. Audit Co-ordination & Facilitation - Meetings with key personnel of various work areas Planning, conducting walkthroughs, drafting process understanding and relevant controls. Preparing planning memos, risk assessment matrix, risk assessment control matrix (RACM) and Internal controls Documenting and Reviewing Test of Designs and Test of Effectiveness controls. Perform analytical procedures/analysis to test the effectiveness of controls. Document audit procedures and cross reference working papers. Create management representation letter comments and recommendations and draft audit reports for management review. Expected to assign variety of audits including operational, compliance or IT focused under a variety of financial or info-security/cyber security regulations in the US and other international locations in APAC, EMEA, LATAM, etc., Validations of audit issues. Conducting special reviews. What will you need to know: Desired qualification: Computer Services engineering/ BSc/MSc-IT / BCA/MCA degree [with an emphasis in information technology or equivalent degree] Experience: at least 6 to 8 years of IT Audit experience in assessing technology/IT controls and have experience in Internal Audit, Compliance & Risk Advisory services preferably in Banking and Financial services domain. Experience in auditing IT Internal controls, IT risk mitigation and technology related processes reviews. Good experience in IT General controls (ITGC) reviews, Cyber security controls, Infrastructure audits, application security audits, Network security control risk reviews. Good client interfacing skills, drafting skills, communication, and interpersonal skills. Computer proficiency, specifically Microsoft Office products (Word, Excel, PowerPoint, etc.) What would be great to have: Desired certifications: CISA / CISSP / CISM / CCNA certified professionals

We are looking for an IT Security Consultant whose responsibilities include identifying vulnerabilities, implementing security measures and providing advice on security protocols. The ideal candidates should be familiar with IT compliance procedures.

Will be working on Application security testing Skills. Strategize and plan static and dynamic application security testing (SAST/DAST / SCA) tools. Will be responsible for Secure Coding Practices Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional expertise BE / B Tech in any stream, M.Sc. (Computer Science/IT) / M.C.A, with Minimum 5 plus years of experience Application Security Testing: Experience with static and dynamic application security testing (SAST/DAST/ SCA) tools. Secure Coding Practices: Knowledge of secure coding standards (e.g., OWASP Top Ten) and experience in reviewing code for security vulnerabilities. Threat Modeling: Ability to conduct threat modeling sessions to identify and mitigate security risks Preferred technical and professional experience Vulnerability Assessment: Experience in conducting vulnerability assessments and penetration testing Application Security Testing: Experience with static and dynamic application security testing (SAST/DAST) tools. Security Tools: Proficiency in using security tools like Burp Suite, Nessus, or Fortify

Analysing cyber-IOCs, APTs, MITRE ATT&CK TTPs, attack vectors, adversary TTPs, and cyber threat intelligence topics and translating these into actionable intelligence Develop, maintain, and update a repository of cyber threat information that is used in conducting risk assessments and reports on cyber risk trends. Conducts research and evaluates intelligence data, with emphasis on TTP's. Good Experience in Development and documenting of threat Intelligence procedures into playbooks. Experience on Threat Research Reports for Strategic, Tactical, and Operational intelligence Focusing on intent, objectives, and activity of cyber threat actors and then acting accordingly. Perform ad-hoc intelligence gathering using OSINT tools and techniques Able to apply creative and critical thinking when approaching issues and in resolving them. Able to communicate effectively with technical, operational, and senior client staff. Required education Bachelor's Degree Required technical and professional expertise Analysing cyber-IOCs, APTs, MITRE ATT&CK TTPs, attack vectors, adversary TTPs, and cyber threat intelligence topics and translating these into actionable intelligence Develop, maintain, and update a repository of cyber threat information that is used in conducting risk assessments and reports on cyber risk trends. Conducts research and evaluates intelligence data, with emphasis on TTP's. Good Experience in Development and documenting of threat Intelligence procedures into playbooks. Experience on Threat Research Reports for Strategic, Tactical, and Operational intelligence Focusing on intent, objectives, and activity of cyber threat actors and then acting accordingly. Perform ad-hoc intelligence gathering using OSINT tools and techniques Preferred technical and professional experience Able to apply creative and critical thinking when approaching issues and in resolving them. Able to communicate effectively with technical, operational, and senior client staff.

Vulnerability Identification & Assessment: Manage and oversee vulnerability scanning tools (Qualys, Tenable, Rapid7, etc.). Analyze vulnerability data from multiple sources and assess the impact on business operations. Perform risk assessments and categorize vulnerabilities based on severity and exploitability. Remediation & Risk Mitigation: Collaborate with IT and development teams to ensure timely remediation of identified vulnerabilities. Prioritize vulnerabilities based on risk to the business and potential exploitability. Track remediation efforts and ensure proper closure of security gaps. Process & Policy Development: Define and maintain vulnerability management policies, standards, and procedures. Establish workflows for vulnerability detection, reporting, remediation, and validation. Ensure compliance with security frameworks such as NIST, CIS, ISO 27001, and regulatory standards like GDPR, HIPAA, and PCI-DSS. Security Monitoring & Threat Intelligence Integration: Work with threat intelligence teams to understand emerging threats and vulnerabilities. Ensure vulnerability management aligns with incident response and threat-hunting processes. Continuously enhance detection mechanisms to improve vulnerability discovery and response. Compliance & Audit Readiness: Ensure that vulnerability management practices align with regulatory and compliance requirements. Maintain records of assessments, remediation efforts, and compliance reports for audits. Support internal and external audits related to vulnerability management. Reporting & Metrics: Develop and present vulnerability status reports to security leadership and executive teams. Track key performance indicators (KPIs) related to vulnerability remediation SLAs and risk reduction Provide insights on security posture improvements based on trend analysis. Security Awareness & Collaboration: Conduct training sessions to educate teams on vulnerability risks and remediation best practices. Work closely with DevSecOps, SOC, and infrastructure teams to integrate security best practices into the development lifecycle Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional expertise Vulnerability Management Preferred technical and professional experience Qualys

Some careers shine brighter than others. If you re looking for a career that will help you stand out, join HSBC and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further. HSBC is one of the largest banking and financial services organisations in the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realise their ambitions. We are currently seeking an experienced professional to join our team in the role of Sr. Associate Director, Software Engineering In this role, you will: Provide coaching and guiding directly or indirectly to engineering teams by giving clear technical direction, feedback and timely suggestions to ensure a high-quality standard of deliverables according to HSBC standards and best practices. Provide technical leadership across the end-to-end delivery and run lifecycle, utilising their skills and expertise to carry out software development, testing and operational support activities typically being deployed to resolve the most challenging and/or impactful projects or deliveries End to end accountability for a product or service, identifying and developing the most appropriate Technology solutions to meet customer needs as part of the Customer Journey Address existing technical engineering debt and drive for technical evolution aka Digital Transformation for the teams by working closely with various parties including business, Subject Matter Experts, Solution Architects globally. Liaise with other engineers, architects, and business stakeholders to understand and drive the product or service s direction. Establish a digital environment and automate processes to minimize variation and ensure predictable high-quality code and data. Create technical test plans and records, including unit and integration tests, within automated test environments to ensure code quality. Provide support to DevOps teams working at all stages of a product or service release/change with a strong customer focus and end to end journeys, ensuring they have an excellent domain knowledge. Working with Ops, Dev and Test Engineers to ensure operational issues (performance, operator intervention, alerting, design defect related issues, etc.) are identified and addressed at all stages of a product or service release / change. Provide support in identification and resolution of all incidents associated with the IT service, as directed by leadership of the DevOps team, Ensure service resilience, service sustainability and recovery time objectives are met for all the software solutions delivered. Responsible for automating the continuous integration / continuous delivery pipeline within a DevOps Product/Service team driving a culture of continuous improvement. Keep up to date and have expertise on current tools, technologies and areas like cyber security and regulations pertaining to aspects like data privacy, consent, data residency etc. that are applicable Work with industry groups/peers and vendors outside of HSBC to establish and maintain HSBCs involvement and influence in the engineering space. Promote innovation and adoption of cutting-edge specialist technologies and practices with the domain and across HSBC Work with the Engineering Practice to promote development of engineers through coaching, and mentoring. Identify as an authority for specific engineering disciplines providing steer/assistance to programmes or projects that require it. Requirements To be successful in this role, you should meet the following requirements: Currently be a hands-on full stack developer and possess a minimal of 17+ years experience of hands-on software development. Possess strong demonstrable technical capabilities (API, microservices, Java, web-based technologies, ReactJS, database, artificial intelligence, etc), Experience with cloud native development and public cloud providers like GCP or Azure Experience implementing customer facing applications Very good understanding of technology and its application, e.g., mobile app, host to host technologies, artificial intelligence, microservices, etc. Knowledge and experience on DevOps, Disciplined Agile Delivery (DAD), Agile control Framework. Experience presenting to senior stakeholder in both business and technology. Have people leadership capability and experience leading engineering distributed teams encompassing 30+ staff. Are passionate about technology and look for opportunities to learn & bring new ideas to the team. Have experience with Production Support and incident management Excellent knowledge of their technical environment and will have significant responsibility in setting the way forward in the types of technology they look after. Forward thinking, making the right decisions based on strategy Strong communication skills to help for negotiating, collaborating, presenting, facilitating, influencing engineering teams, stakeholders, etc. Demonstrable ability to mentor, develop talent and motivate staff to reach their optimum performance levels and career development Want to be part of a world class team, working for a business with a need and appreciation for excellent software engineers Can-do attitude and problem-solving mindset. Self-starter The successful candidate will also meet the following requirements: Can-do attitude and problem-solving mindset. Self-starter You ll achieve more when you join HSBC. .

Position: Full Time Team: India Software Dev Team Business: H&D, Energy Management Location: Schneider Electric Bangalore, India At Schneider Electric, sustainability is at the core of our purpose, culture and business. Come join the team that s bringing us into a new era of sustainable and intelligent homes. Help us build a portfolio of energy products including solar inverters, home batteries, EV chargers, smart electrical panels, connected outlets and smart lighting solutions that work together to make our homes fully electric, way more intelligent, and instead of contributing to climate change helping fix it! We are hiring a iOS Developer with previous experience in Native App Development on iOS Platform to promote and enable the development of software products in energy management domain. You will be responsible for designing, developing, and maintaining high-quality iOS applications that align with our business goals and user needs. We are looking for a positive, composed, self-motivated, passionate person with a strong desire to work in an exciting, fast-paced, team based collaborative design environment to help us develop next generation technologies to empower and connect our products to each other, and to our customers. Required Skills & Qualifications Bachelor s degree in Computer Science, Engineering, or a related field. Native App development on iOS platform. Strong knowledge on high level languages like Swift & Objective C. Strong knowledge on URLSession/Alamofire, Dispatch Queues, APNS, Autolayout, Dependency Injection, Crashlytics, Combine, SwiftUI and XCTest/Swift Testing Frameworks etc. Strong knowledge on SOLID principles, Clean Architecture and Design Patterns. Strong debugging skills and code optimization skills. Strong knowledge of GIT version control and repository clients like GitHub, GitLab, and bitbucket. Understanding IOT(BLE, Wifi Direct and ZigBee) based Application Architecture. Understanding of Cyber Security and fundamentals. Understanding of CI/CD process. Mobile Software development by using latest technologies. Must have awareness about latest Mobile technology tools & trends. The person should be highly motivated and self-driven. Whats in it for you? Flexibility : With our Global Flexibility at Work policy, we empower our employees to work flexibly and to manage their unique life and work in the way that works best for them. We embrace agile, flexible and smart ways of working for our people to support higher performance, greater inclusion and well-being, and stronger resiliency. Working part-time or from the comfort of your home are just a few of the choices you can make when you need most. We work in a hybrid setting (exact configuration will be discussed with the Manager) and the rest of time with customers and/or collaborating with peers and partners at our office. Career Development : We empower our people to grow and learn every day, developing new skills and building careers for today and tomorrow. Inclusive Environment : At Schneider Electric, diversity is an integral part of our history, culture, and identity. By embracing difference, Schneider Electric builds a culture of respect where everyone feels safe to be their authentic selves. We are 100% committed to inclusion and our policies reflect this commitment to our employees. Great Benefits: Schneider Electric offers an inclusive benefits package to support our employees such as flexible work arrangements, paid family leave, group pension match, well-being programs, holidays & paid time off, recharge breaks, employee share ownership plan and more. Learn more: http://se.com/ca/careers We are looking for positive, self-motivated, passionate people with a keen desire to work in an exciting, energetic, team-based design environment to help us develop next generation technologies to empower and connect our products to each other, and to our customers. Let us learn about you! Apply today. Position: Full Time Team: India Software Dev Team Business: H&D, Energy Management Location: Schneider Electr

Customer-focused on ensuring customer policies & SOW requirements are in line with the deliverables Driving Risk Management, Regulatory and Contractual Compliance Focus on ensuring overall compliance is turned Green if the Program runs Red/Amber and in turn sustained Green Focus on Data Privacy (GDPR) Compliance Governance surrounding Customer driven and ERM Driven Cyber Security and Compliance Audits Governance on Design and Roll out of Common Compliance Frameworks Connect with Customers and Delivery Leadership on a regular basis to provide Assurance on Risk and Compliance Delivery

Job description: Job Title: SOAR Automation Engineer Location: Delhi, India Experience: 2-5 years Employment Type: Full-Time Joining: Immediate Job Summary: We are seeking a skilled SOAR Automation Engineer to enhance our cybersecurity operations through automation and orchestration. The ideal candidate will have hands-on experience in SOAR platforms, strong programming expertise, and the ability to develop and optimize playbooks for threat detection and incident response. If you're ready to contribute immediately to cutting-edge security automation, we want you on our team! Key Responsibilities: Develop, customize, and implement SOAR automation workflows using platforms like XSOAR, Google SOAR, IBM SOAR, and Splunk SOAR Design and optimize security playbooks for efficient incident response and threat mitigation Integrate SOAR tools with ServiceNow and other ITSM/security systems Write and maintain Python, JavaScript, and Shell scripting for automation processes Collaborate with cybersecurity analysts to refine security automation strategies Debug and troubleshoot SOAR implementations for optimal performance Stay updated with industry trends in SOAR automation, cybersecurity, and threat intelligence Required Skills & Qualifications: 2-5 years of experience in security automation and programming Strong expertise in SOAR platforms (XSOAR, Google SOAR, IBM SOAR, Splunk SOAR) Solid programming skills in Python, JavaScript, and Shell scripting Experience in creating security playbooks to automate incident response Familiarity with ServiceNow integration for security operations Understanding of cybersecurity principles, threat hunting, and incident management Ability to work efficiently in a fast-paced environment with immediate availability Preferred Qualifications: Certifications in SOAR automation, cybersecurity, or programming languages Knowledge of machine learning applications for security automation Experience with cloud security solutions

We are looking for an experienced Cybersecurity Manager to lead security assessments, develop security strategies, and drive cybersecurity initiatives for our clients. The ideal candidate should have extensive experience in cybersecurity consulting, risk assessment, and compliance frameworks. Key Responsibilities: Lead security and privacy program assessments using industry-standard frameworks (NIST CSF, ISO, CIS, HIPAA, GDPR) and drive risk mitigation strategies. Develop and implement cybersecurity solutions to address security gaps and enhance maturity in privacy capabilities. Provide expert consulting on security strategy, risk management, and compliance requirements . Oversee security documentation, policy development, and compliance adherence. Conduct in-depth assessments of client environments, analyzing security posture and potential vulnerabilities. Lead client engagement meetings, manage project timelines, and ensure high-quality deliverables. Mentor and guide junior team members, fostering a strong security-focused culture. Ideal Candidate Profile: Bachelors degree in information technology , Security, Systems, Assurance, or a related field. 5+ years of cybersecurity consulting experience , with proven leadership in managing client engagements. Deep understanding of regulatory frameworks (NIST, GDPR, ISO 27001/27002, NIST 800 series) and security best practices. Strong expertise in IAM, PAM, Logging & Monitoring, Vulnerability & Patch Management, Incident Response, Asset Management, and Vendor Risk Management . Excellent stakeholder management, communication, and leadership skills. Ability to manage multiple projects and deliver within tight deadlines.

Primary skills: IT Risk Management and IT Control Assessment Secondary skills Shadow IT and Operational IT Risk Management IT Risk Management Identify and assess the risks as a result of WMIS activities for which we are accountable. Record, monitor, review and provide reporting of the risk identified Initiate and/or monitor the progress of all risk mitigation actions Assess IT Risk throughout the project life cycle and to ensure proper follow up of identified risk until the project deployment. IT Control Perform IT control assessment according to the groups framework Monitor corrective actions that would result from the findings of the permanent control framework, Shadow IT Responsible for the Shadow IT inventory collection and assessment for the APAC region Operational Incident Risk management Assess operational risk associated with production and project incident to ensure correct handling. Management reporting of such incidents to ensure proper escalation Record operational risk incident in risk tool Measure the risk through the tracking of historical operational incidents