3351 Devsecops Jobs - Page 10

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. EY GDS – Data and Analytics - D and A – Gig - Azure DevOps As part of our EY-GDS D&A (Data and Analytics) team, we help our clients solve complex business challenges with the help of data and technology. We dive deep into data to extract the greatest value and discover opportunities in key business and functions like Banking, Insurance, Manufacturing, Healthcare, Retail, Manufacturing and Auto, Supply Chain, and Finance. The opportunity We are looking for a skilled Azure DevOps Engineer to join our cloud engineering team. The ideal candidate will have a strong foundation in Azure cloud services, infrastructure automation, and CI/CD practices. This role involves working closely with cross-functional teams to enable scalable, secure, and efficient cloud-based data platforms. Your key responsibilities Design, implement, and manage CI/CD pipelines using Azure DevOps and Git-based version control systems. Automate infrastructure provisioning and configuration using Terraform, Azure CLI, PowerShell, or Bash. Support and optimize Azure services including Azure Data Lake, Azure Storage, and networking components. Collaborate with data engineering teams to support data ingestion and transformation pipelines using tools like Qlik Replicate, Kafka, and other ETL/ELT platforms. Ensure adherence to security and compliance standards in cloud deployments. Participate in agile ceremonies and contribute to sprint planning, reviews, and retrospectives. Communicate technical concepts clearly to both technical and non-technical stakeholders. Skills and attributes for success Strong understanding of Azure cloud services, especially Data Lake, Storage, and Networking. Should be having 6+ years of experience. Proficiency in scripting and automation using Terraform, Azure CLI, PowerShell, Bash, or similar tools. Experience with CI/CD pipelines and Git-based version control. Familiarity with data ingestion and pipeline patterns using tools like Qlik Replicate, Kafka, or equivalent. Experience working in agile product development teams. Excellent verbal and written communication skills. To qualify for the role, you must have Azure certifications (e.g., AZ-400, AZ-104, or AZ-305). Experience with monitoring and logging tools in Azure. Exposure to DevSecOps practices and cloud governance frameworks. What working at EY offers At EY, we’re dedicated to helping our clients, from start–ups to Fortune 500 companies — and the work we do with them is as varied as they are. You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer: Support, coaching and feedback from some of the most engaging colleagues around Opportunities to develop new skills and progress your career The freedom and flexibility to handle your role in a way that’s right for you EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

What you’ll do: We at Eaton are innovating future products with a focus on global sustainability megatrends: Energy Transition, Electrification, and Digital Enablement. We are seeking a highly skilled and experienced Manufacturing Execution System (MES) System Architect to join our IT team and drive digital solutions within our plants. In this role, you will be responsible for the design, development, and implementation of Apriso technology. You will define MES-specific architectural standards, guiding cross-functional teams in delivering scalable, secure, and future-ready solutions, and ensuring alignment with enterprise digital manufacturing goals. You will work closely with cross-functional teams to ensure that the MES solutions align with business objectives and operational requirements. This role will be ideal for a technical Apriso expert with a focus on future state technologies. Develop comprehensive system designs and architectures for Apriso-based MES solutions, ensuring scalability, reliability, and performance Define and maintain the architectural vision for MES solutions, ensuring alignment with digital manufacturing strategy and business goals Design scalable, modular, and secure MES architectures that integrate with ERPs, PLM, and shop floor systems Establish and enforce MES-specific architectural standards, governance frameworks, and best practices Collaborate with Enterprise and Solution Architects to align MES architecture with enterprise integration strategies, respecting role boundaries Evaluate and recommend MES platforms, tools, and vendors that support performance, scalability, and innovation Provide input on MES innovation opportunities (e.g., IIoT, edge computing, AI/ML) in coordination with Enterprise Architecture/Solution Architecture teams Guide cross-functional teams through architecture reviews, solution validation, and technical decision-making Ensure MES solutions meet cybersecurity, data governance, and compliance requirements Mentor technical teams on architectural principles and integration best practices Represent MES architecture in enterprise forums and vendor engagements, supporting alignment and visibility Qualifications: Requirement: Bachelor's degree from an accredited institution Minimum 8 years of professional experience in IT or manufacturing systems, with a focus on MES architecture, integration, and digital transformation. Minimum of 3 years in Apriso MES architecture, including system configuration, customization, and integration with other enterprise systems. Eaton will not consider applicants for employment immigration sponsorship or support for this position. This means that Eaton will not support any CPT, OPT, or STEM OPT plans, F-1 to H-1B, H-1B cap registration, O-1, E-3, TN status, I-485 job portability, etc. Preferred : Minimum 5 years of experience in MES and manufacturing systems, with a focus on architecture, integration, and enterprise-scale deployments. MESA (Manufacturing Enterprise Solutions Association) certification or equivalent is highly desirable. Experience with other MES technologies and manufacturing systems. Skills: Proven experience leading MES strategy and solution design across global manufacturing environments Track record of aligning technical architecture with business goals and driving innovation in manufacturing systems for large-scale, multi-site manufacturing environments Demonstrated ability to collaborate with Enterprise and Solution Architects to align MES solutions with enterprise integration strategies Technical expertise in Apriso, with additional experience in Ignition, GE Proficy, and Siemens Opcenter Deep integration knowledge across MES, ERP, PLM, and plant control systems (e.g., SCADA, OPC, PLC, Historian) Solid grasp of architecture principles: modularity, scalability, security, and cloud-native design across system, solution, and enterprise layers Skilled in data integration, modeling, and industrial standards such as ISA-95 and OPC UA. Hands-on experience with DevSecOps practices including version control and environment management (dev/test/prod) Proficient in performance tuning and troubleshooting MES applications in production environments Familiar with cybersecurity frameworks and compliance in manufacturing contexts Demonstrates a creative approach to solving complex technical problems and implementing innovative solutions Exhibits a high level of attention to detail, ensuring accuracy and thoroughness in technical work Possesses strong leadership qualities, with the ability to inspire and motivate team members Commitment to continuous learning and professional development to stay current with industry trends and technologies Strong written and verbal communication skills, with the ability to effectively communicate technical concepts to both technical and non-technical stakeholders across different global cultures Comfortable engaging with senior leadership, cross-functional teams, and global partners to drive alignment and informed decision-making Excellent judgment, time management, and prioritization skills in dynamic, high-stakes environments Skilled in building consensus, resolving conflicts, and influencing outcomes without direct authority Demonstrated ability to mentor and guide technical teams toward architectural excellence, while fostering collaboration with Enterprise and Solution Architects

We are looking for an experienced and passionate AWS & DevOps Trainer to deliver high-quality training to students, professionals, or corporate teams. The ideal candidate will have strong hands-on experience with AWS services and DevOps tools, combined with the ability to explain complex technical concepts clearly and effectively. Key Responsibilities: Design and deliver engaging training sessions (live online or classroom) on AWS and DevOps topics. Create training materials, hands-on labs, case studies, and assessments. Explain cloud computing concepts, AWS services, infrastructure as code, CI/CD pipelines, and DevOps practices in a clear and understandable way. Stay updated with the latest AWS services and DevOps trends/tools. Provide guidance to learners on certification preparation (e.g., AWS Solutions Architect, DevOps Engineer). Conduct doubt-clearing sessions and provide post-training support as needed. Evaluate trainee performance and provide constructive feedback. Topics You’ll Cover: AWS core services: EC2, S3, IAM, VPC, Lambda, RDS, CloudFormation, etc. DevOps tools: Git, Jenkins, Docker, Kubernetes, Terraform, Ansible, GitHub Actions, etc. CI/CD pipeline setup and automation. Infrastructure as Code (IaC). Monitoring and logging tools: CloudWatch, ELK, Prometheus, Grafana, etc. DevSecOps basics and best practices. Required Qualifications: 1+ years of experience in AWS cloud and DevOps roles. Prior experience in delivering technical training or mentoring. In-depth knowledge of AWS architecture and DevOps lifecycle. Strong communication and presentation skills. Familiarity with live classroom tools (Zoom, Google Meet, etc.) and LMS platforms. Preferred Qualifications: AWS Certified (Solutions Architect, DevOps Engineer, or similar). DevOps certifications (Docker, Kubernetes, CKA/CKAD, etc.). Experience in corporate or institutional training environments. Experience with content creation and curriculum design. Contact Person: Name: [Jeevitha D] Designation: [Business Development Manager] Phone: [+91-96777 04785] Job Types: Full-time, Part-time, Fresher Pay: From ₹15,000.00 per month Expected hours: 5 per week Benefits: Leave encashment Schedule: Day shift Supplemental Pay: Commission pay Performance bonus Yearly bonus Work Location: In person Speak with the employer +91 9677704785

Your IT Future, Delivered Software Engineer With a global team of 5600+ IT professionals, DHL IT Services connects people and keeps the global economy running by continuously innovating and creating sustainable digital solutions . We work beyond global borders and push boundaries across all dimensions of logistics . You can leave your mark shaping the technology backbone of the biggest logistics company of the world. Our locations, Malaysia, Czech Republic and India earned the #GreatPlaceToWork certification, reflecting our commitment to exceptional employee experience. Digitalization. Simply delivered. At IT Services, we are passionate about technology . Our product team is continuously expanding. No matter your level of proficiency, you can always grow within our diverse environment. #DHL #DHLITServices #GreatPlace #angular #UI #frontenddev #GenerativeAI Grow together! At DHL Group, we prioritize the punctual delivery of packages worldwide, while maintaining the highest level of customer data security. Our expertise lies in ensuring swift and trouble-free clearance from customs organizations across the globe. We empower our customers to seamlessly manage their shipments and provide all necessary customs clearance documentation through a streamlined and dynamic process. With a global perspective at the heart of our operations, our product philosophy is built around flexibility and customization, all with a strong emphasis on customer-centricity. Your primary responsibilities will include: Designing and developing customer-centric, scalable, and secure web applications using the Angular framework. Writing efficient code and creating libraries that adhere to best practices in performance, security, testability, reusability, and browser compatibility. Crafting UI/UX mockups to visually represent capabilities to the business team. Demonstrating end-to-end ownership of the product collaborating with other applications/system in the ecosystem. Embrace a DevSecOps mindset, taking requirements from implementation to production deployment and support. Rapidly respond to and troubleshoot issues arising from production. Communicating in clear, concise, and timely manner. Working in a multinational environment, you can expect cross-region collaboration with teams around the globe. Excellent spoken and written English language skills will come in handy. Collaborating effectively with all team members, embodying the spirit of a team player. Cultivating a growth mindset, ready to learn and adapt in alignment with the organization's direction. In depth understanding of Software Development Methodologies and DevSecOps process and tools You can work independently, prioritize, and organize your tasks under time and workload pressure. Ready to embark on the journey? Here is what we are looking for: At least 4 years of firsthand implementation knowledge of Angular and Typescript . Exceptionally good knowledge of JavaScript, HTML5, CSS3, Angular v8 and above Proficient in Jasmine/JEST, npm, UX performance analysis, Jenkins, Proficient in prompt engineering for leveraging the best from the AI tools and LLMs for code generation, code reviews, code optimizations etc. Knowledge of Python. Basic knowledge in Generative AI models and use cases. Familiarity with version control systems (e.g., Git) and project management tools, OpenShift and Azure basics will be essential for succeeding in this role. Here is an array of benefits for you: Annual Leave – 42 days off apart from Public / National Holidays Medical Insurance - Self + Spouse + 2 children. An option to opt for Voluntary Parental Insurance (Parents / Parent -in-laws) at a nominal premium covering preexisting diseases. In House training programs - professional and technical training certifications Flexible Work options

Avant de postuler à un emploi, sélectionnez votre langue de préférence parmi les options disponibles en haut à droite de cette page. Découvrez votre prochaine opportunité au sein d'une organisation qui compte parmi les 500 plus importantes entreprises mondiales. Envisagez des opportunités innovantes, découvrez notre culture enrichissante et travaillez avec des équipes talentueuses qui vous poussent à vous développer chaque jour. Nous savons ce qu’il faut faire pour diriger UPS vers l'avenir : des personnes passionnées dotées d’une combinaison unique de compétences. Si vous avez les qualités, de la motivation, de l'autonomie ou le leadership pour diriger des équipes, il existe des postes adaptés à vos aspirations et à vos compétences d'aujourd'hui et de demain. Fiche De Poste Application Architect – Java About This Role Application Architect will be responsible for defining architecture for Hybrid Cloud applications, involved in evaluation technical frameworks, SaaS solutions. Will participate in UPS Solution Architecture review process, produce solution architect artifacts (high and low level design, integration design etc.) , and hold architecture reviews. The Applications Architect influences the development and implementation of UPS Information Services (I.S.) strategy, initiatives, and governing policies. He/She conceives solutions, build consensus, and sells and executes solutions across business areas. This position assists in defining the direction for projects and solution architecture. The Applications Architect supports I.S. leadership by planning and championing the execution of broad initiatives aimed at delivering value to internal and external stakeholders. He/She leverages data, technical, and business knowledge to drive the development of technical frameworks and solutions at portfolio and enterprise levels. This position is involved throughout the project life cycle with emphasis on the initiation, feasibility, and analysis phases. Position will require hours overlap with US hours periodically (2-3 times a week , until US noon timeframe) to collaborate with US based enterprise architects and application architects. Minimum Qualifications Minimum 8 to 13 Years of experience with Object Oriented Development using Java with knowledge of all tiers of development 5+ Experience architecting large scale enterprise systems, Hybrid cloud architecture 5+ years of experience with cloud services and cloud ecosystems. Microsoft Azure (AKS, Azure Service Bus, App Services, Azure Functions, Azure AD etc.) and Angular 5+ years of experience in delivering, designing services/solutions for distributed systems, virtualization and/or cloud Database Architecture experience Oracle and Oracle ERP, Cosmos DB. Experience in working with operating systems, server client architecture. Integration architecture experience with solutions such as IBM MQ, REST API, Azure Service Bus Experience in CI/CD and DevSecOps practices and OWASP Experience in designing solutions based on Microservices and Event Driven Architecture Experience tuning and managing Azure services and configurations Experience with application frameworks like MVC, WCF, PubSub, etc. Experience with Web Services (SOAP/REST) architecture including API development and deployment. Prior experience with Supply Chain and Logistics is a plus. PM tasks/abilities Coordinate meetings or working sessions Attend meetings and represent architecture Draft/document summarized information This position offers an exceptional opportunity to work for a Fortune 50 industry leader. If you are selected, you will join our dynamic technology team in making a difference to our business and customers. Do you think you have what it takes? Prove it! At UPS, ambition knows no time zone. Basic Qualifications If required and where permitted by applicable law, employees must be fully vaccinated for COVID-19 by their date of hire/placement to be considered for employment. Fully vaccinated means two weeks after receiving the second shot for Pfizer and Moderna, or two weeks after Johnson & Johnson Other Criteria UPS is an equal opportunity employer. UPS does not discriminate on the basis of race/color/religion/sex/national origin/veteran/disability/age/sexual orientation/gender identity or any other characteristic protected by law. Type De Contrat en CDI Chez UPS, égalité des chances, traitement équitable et environnement de travail inclusif sont des valeurs clefs auxquelles nous sommes attachés.

Job Summary This role encompasses a broad range of security responsibilities, including advanced offensive security operations, application security reviews, secure code reviews, and implementation of the Secure Software Development Lifecycle (SSDLC). The successful candidate will simulate sophisticated attacks, conduct secure code reviews, and contribute to the development of security tools. Responsibilities also include ensuring cloud security and Kubernetes security. The ideal candidate will possess the ability to conduct offensive security operations and apply their expertise to application security. They will perform threat modeling exercises with an attacker's mindset, leveraging their experience in bug bounty programs and red teaming simulations. The candidate will implement mitigations at the code level and support the Blue Team in improving detection capabilities using SIEM tools. This role requires a unique blend of skills and knowledge across multiple security domains. Job Requirements Conduct Red Team exercises, simulating APTs in cloud, container, and AD environments. Develop and execute adversary simulations based on the MITRE ATT&CK framework, focusing on assume breach scenarios. Simulate attacks on software supply chains and CI/CD pipelines. Perform in-depth penetration testing (both black-box and white-box) for web applications, APIs, and networks. Conduct secure code reviews in collaboration with development teams to identify, exploit and implement mitigations on code level. Integrate security tools and practices into the CI/CD pipeline, emphasizing DevSecOps methodologies. Conduct threat modeling, design, and architectural reviews to identify potential security risks in the software development lifecycle. Provide security guidance to development teams, assisting in risk mitigation and secure development practices. Collaborate with the Blue Team to improve detection capabilities and test defensive measures. Utilize SIEM tools for incident detection and response, providing insights to enhance monitoring and alerting mechanisms. Develop and maintain custom security tools and frameworks to automate security testing and monitoring. Stay informed about emerging threats, attack techniques, and security technologies. Education Bachelor’s degree in computer science, information security, or a related field (or equivalent experience). At least 4+ years of experience in offensive security and Application security. Proven experience in offensive security, with a strong understanding of attack vectors and techniques. Relevant certifications such as OSWE, OSCP, CRTO, or similar. Significant contributions to security through Bug bounty programs, CVEs or recognized security research. Recognized public acknowledgments in security research. Experience with scripting or programming languages like Python, Go, or Ruby for developing custom attack tools/exploits. Familiarity with CI/CD tools such as GitHub Actions, Jenkins, or TeamCity. Knowledge of security practices of cloud computing platforms like AWS, Azure, GCP, as well as k8s. At NetApp, we embrace a hybrid working environment designed to strengthen connection, collaboration, and culture for all employees. This means that most roles will have some level of in-office and/or in-person expectations, which will be shared during the recruitment process. Equal Opportunity Employer NetApp is firmly committed to Equal Employment Opportunity (EEO) and to compliance with all laws that prohibit employment discrimination based on age, race, color, gender, sexual orientation, gender identity, national origin, religion, disability or genetic information, pregnancy, and any protected classification. Why NetApp? We are all about helping customers turn challenges into business opportunity. It starts with bringing new thinking to age-old problems, like how to use data most effectively to run better - but also to innovate. We tailor our approach to the customer's unique needs with a combination of fresh thinking and proven approaches. We enable a healthy work-life balance. Our volunteer time off program is best in class, offering employees 40 hours of paid time off each year to volunteer with their favourite organizations. We provide comprehensive benefits, including health care, life and accident plans, emotional support resources for you and your family, legal services, and financial savings programs to help you plan for your future. We support professional and personal growth through educational assistance and provide access to various discounts and perks to enhance your overall quality of life. If you want to help us build knowledge and solve big problems, let's talk.

Job Title: DevOps Engineer Job ID: POS-15573 Primary Skill: DevOps – CI/CD Location: Hyderabad Experience: 4.00 Secondary skills: DevOps principles, CI/CD pipelines, and automation tools such as Jenkins, GitLab CI/CD, or AWS CodePipeline. Job Location: Hyderabad and Pune Mode of Work: Work From Office Experience : 5-8 Years About The Job We are looking for a seasoned Guidewire Senior Dev-SecOps Engineer with 6–10 years of experience to join our offshore team. In this role, you will be responsible for designing and maintaining robust CI/CD pipelines, automating infrastructure, and enhancing the security and reliability of Guidewire applications. You’ll collaborate with cross-functional teams to streamline development and deployment processes, implement monitoring solutions, and ensure compliance with industry best practices. This is a long-term opportunity (18 months) with a preferred full-time engagement, offering a dynamic work environment aligned with modern DevSecOps principles. Know Your Team At ValueMomentum’s Technology Solution Centers , we are a team of passionate engineers who thrive on tackling complex business challenges with innovative solutions while transforming the P&C insurance value chain. We achieve this through a strong engineering foundation and by continuously refining our processes, methodologies, tools, agile delivery teams, and core engineering archetypes. Our core expertise lies in six key areas: Platforms, Infra/Cloud, Application, Data, Core, and Quality Assurance. Join a team that invests in your growth. Our Infinity Program empowers you to build your career with role-specific skill development, leveraging immersive learning platforms. You'll have the opportunity to showcase your talents by contributing to impactful projects. Responsibilities Design, implement, and maintain CI/CD pipelines for Guidewire applications using tools like TeamCity and GitLab CI. Automate infrastructure provisioning and configuration using Terraform, Ansible, or CloudFormation. Set up and manage monitoring and logging solutions (e.g., DynaTrace, Datadog, Splunk) to ensure system reliability and performance. Collaborate with development, QA, and operations teams to streamline deployment and operational workflows. Strengthen infrastructure security and ensure compliance with industry standards. Troubleshoot and resolve infrastructure and application issues to minimize downtime. Maintain clear documentation of configurations, processes, and procedures. Requirements 5-8 years of experience in DevOps or systems engineering roles. Bachelor’s degree in computer science, IT, or a related field. Hands-on experience with cloud platforms (AWS, Azure, GCP). Proficiency in scripting languages like Python or PowerShell. Experience with CI/CD tools such as Jenkins or GitLab CI. Strong understanding of networking, system administration, and security practices. Familiarity with Agile development methodologies. Experience with monitoring tools like DynaTrace, Datadog, or Splunk. Strong problem-solving, communication, and teamwork skills. Ability to work independently and manage tasks effectively. Good To Have Candidates with these extra skills on their resumes have an added advantage while getting their profiles assessed. Some of them are as follows: Knowledge of containerization technologies (Docker, Kubernetes). Guidewire platform experience in a DevSecOps context. AWS certification or equivalent cloud credentials. About The Company ValueMomentum is a leading solutions provider for the global property and casualty insurance industry. The company helps insurers stay ahead with sustained growth and high performance, enhancing stakeholder value and fostering resilient societies. Having served over 100 insurers, ValueMomentum is one of the largest services providers exclusively focused on the insurance industry. Benefits We at ValueMomentum offer you a congenial environment to work and grow in the company of experienced professionals. Some benefits that are available to you are: Competitive compensation package. Career Advancement: Individual Career Development, coaching and mentoring programs for professional and leadership skill development. Comprehensive training and certification programs. Performance Management: Goal Setting, continuous feedback and year-end appraisal. Reward & recognition for the extraordinary performers.

Your IT Future, Delivered Software Engineer With a global team of 5600+ IT professionals, DHL IT Services connects people and keeps the global economy running by continuously innovating and creating sustainable digital solutions . We work beyond global borders and push boundaries across all dimensions of logistics . You can leave your mark shaping the technology backbone of the biggest logistics company of the world. Our locations, Malaysia, Czech Republic and India earned the #GreatPlaceToWork certification, reflecting our commitment to exceptional employee experience. Digitalization. Simply delivered. At IT Services, we are passionate about technology . Our product team is continuously expanding. No matter your level of proficiency, you can always grow within our diverse environment. #DHL #DHLITServices #GreatPlace #angular #UI #frontenddev #GenerativeAI Grow together! At DHL Group, we prioritize the punctual delivery of packages worldwide, while maintaining the highest level of customer data security. Our expertise lies in ensuring swift and trouble-free clearance from customs organizations across the globe. We empower our customers to seamlessly manage their shipments and provide all necessary customs clearance documentation through a streamlined and dynamic process. With a global perspective at the heart of our operations, our product philosophy is built around flexibility and customization, all with a strong emphasis on customer-centricity. Your primary responsibilities will include: Designing and developing customer-centric, scalable, and secure web applications using the Angular framework. Writing efficient code and creating libraries that adhere to best practices in performance, security, testability, reusability, and browser compatibility. Crafting UI/UX mockups to visually represent capabilities to the business team. Demonstrating end-to-end ownership of the product collaborating with other applications/system in the ecosystem. Embrace a DevSecOps mindset, taking requirements from implementation to production deployment and support. Rapidly respond to and troubleshoot issues arising from production. Communicating in clear, concise, and timely manner. Working in a multinational environment, you can expect cross-region collaboration with teams around the globe. Excellent spoken and written English language skills will come in handy. Collaborating effectively with all team members, embodying the spirit of a team player. Cultivating a growth mindset, ready to learn and adapt in alignment with the organization's direction. In depth understanding of Software Development Methodologies and DevSecOps process and tools You can work independently, prioritize, and organize your tasks under time and workload pressure. Ready to embark on the journey? Here is what we are looking for: At least 4 years of firsthand implementation knowledge of Angular and Typescript. Exceptionally good knowledge of JavaScript, HTML5, CSS3, Angular v8 and above Proficient in Jasmine/JEST, npm, UX performance analysis, Jenkins, Proficient in prompt engineering for leveraging the best from the AI tools and LLMs for code generation, code reviews, code optimizations etc. Knowledge of Python. Basic knowledge in Generative AI models and use cases. Familiarity with version control systems (e.g., Git) and project management tools, OpenShift and Azure basics will be essential for succeeding in this role. Here is an array of benefits for you: Annual Leave – 42 days off apart from Public / National Holidays Medical Insurance - Self + Spouse + 2 children. An option to opt for Voluntary Parental Insurance (Parents / Parent -in-laws) at a nominal premium covering preexisting diseases. In House training programs - professional and technical training certifications Flexible Work options

Summary Position Summary ApplicationSecurity—Solution Delivery Lead Deloitte’s CyberRiskServices helpourclientstobesecure,vigilant,andresilientinthefaceofanever-increasing array of cyber threats and vulnerabilities. Our Cyber Risk practice helps organizations with the management of information and technology risks by delivering end-to-end solutions using proven methodologies and tools in a consistent manner.Ourserviceshelporganizationsto address,in atimelymanner,pervasiveissues,suchasidentity theft, data security breaches, data leakage, cyber security, and system outages across organizations of various sizes and industries with the goal of enabling ongoing, secure, and reliable operations across the enterprise. Deloitte’sCyberRiskServiceshavebeenrecognizedasaleaderbyanumberofindependentanalystfirms. Kennedy Consulting Research & Advisory, a leading analyst firm, recently named Deloitte a global leader in cyber security consulting. Source: Kennedy Consulting Research & Advisory; Cyber Security Consulting 2013; Kennedy Consulting Research & Advisory estimates © 2013 Kennedy Information, LLC. Reproduced under license. Workyouwill do As a Senior Consultant in the hybrid operate business, you are responsible for adhering to the defined operatingproceduresandguidelinesinoperatingthe applicationsecurityservicesintheManagedServicesmodel, which includes the following: UnderstandandbecompliantwiththeServiceLevelAgreementsdefinedfortheDevSecOps services; Understand and deep knowledge of application security engineering principles, and helping client’s development team and function to follow secure development practices which includes primarily monitoringandperformingthe securitydesignreview,architecturereview,threatmodeling, security testing, secure code review, secure build processes; Well versed with the application deployment and configuration baselines, and understanding of how theapplicationenvironmentoperatesinasecureenvironmentandhowexceptionsarehandledduring operations; Facilitateuseoftechnology-basedtoolsormethodologiestocontinuouslyimprovethemonitoring, management and reliability of the service; Performmanualandautomatedsecurityassessmentofthe applications; Involvedintriaginganddefecttrackingprocesswiththedevelopmentteamandhelpingtheteamto fix issues at the code level based on the priority of the tickets; BealiaisonbetweentheApplicationdevelopmentandinfrastructureteam,andintegratethe processes between infrastructure monitoring and operations processes with the secure development/testing and management processes; Identifying,researchingandanalyzingapplicationsecurityeventswhichmayincludeemergingand existing persistent threats to the client's environment; and Performingactivemonitoringandtrackingofapplicationrelatedthreatactorsandtactics,techniques and procedures (TTPs), that could likely cause an impact to client organization The team Deloitte’s DevSecOps is a standardized process, to help clients with large development functions, and application dependenciesfortheirday-to-dayoperations.Theprocessenablestheclienttoaddresskeyvulnerabilitiesandrisks associated with their various application environment at different stages of their development lifecycle. At the core of our Application Security Managed Services Team professionals monitors, collects and analyses security related issues on application environment (both at code level and infrastructure level), that may potentially become a threattoanorganization.Thisdetectionofapplicationthreats/vulnerabilitiesiscarriedoutusingauniqueblendofour applicationsecuritytestingandmonitoringtoolsandintelligencedatacollectedthroughourvastexperiencewithinthe Advice and Implement business. Required: Minimumof5-7 years’experienceinapplicationsecuritydevelopment,securitytesting,deploymentand security management phases; Deepinterestinapplicationspecificvulnerabilities,codedevelopmentandinfrastructure knowledge; Investigativeandanalyticalproblem-solving skills; Experienceincollecting,analyzing,andinterpretingqualitativeandquantitativedatafromdefinedapplication security services related sources (tools, monitoring techniques etc.) KnowledgeandexperienceofOWASPTop10,SANSSecureProgramming,SecurityEngineering Principles; Hands-onexperienceinperformingcodereviewofdotNet,JavaandSwiftand objectiveC code; Hands-onexperienceinrunning,installingandmanagingSAST,DAST , SCA andIASTsolutions,suchasCheckmarx, Fortify and Contrast in large enterprise Understandingofleadingvulnerabilityscoringstandards,suchasCVSS,andabilitytotranslatevulnerability severity as security risk; Hands-onexperienceonatleastoneCI/CDtoolsetandbuildingpipelines usingTeamcity,Bamboo,Jenkins, Chef, Puppet, selenium, AWS and AZURE DevOps; HandsonexperienceoncontainertechnologysuchasKubernetes,Dockers,AKS, EKS. Knowledgeofcloudenvironmentsanddeploymentsolutionssuchasserverless computing; Handsonexperiencein penetrationtestingofmobile,desktopandweb applications; Musthaveexperienceinwritingcustomexploitationscriptsand utilities; Possessionofexcellentoralandwrittencommunication skill; Knowledgeofoneormorescriptinglanguagesforautomationandcomplex searches; MusthavecloudsecurityspecializationinSecurity; and Certificationsuchas EC-Council CEH (Certified Ethical Hacker), DevSecOps Professional (CDP) , ISC2 Certified Cloud Security Professional (CCSP), Certified API Security Professional (CASP) , CTMP (Certified Threat Modeling Professional) etc.are preferred. Preferred: Bachelor’sincomputerscience orothertechnical fields; Experienceincloud service providerssuchasAWS, GCP, Azure, Oracleare preferred Experience in implementing and managing security measures within Kubernetes environments, designing and enforcing advanced security protocols for API infrastructure, managing and optimizing our containerized applications using Docker, automating and managing our infrastructure as code using Terraform, automating IT processes and configurations using Ansible, and identifying and mitigating potential security threats through comprehensive threat modeling practices. SolidanddemonstrablecomprehensionofInformationSecurityincludingOWASP/SANS,SecurityTestCase development(ormis-usecase). Understandingofsecurityessentialsincluding;networkingconcepts,defensestrategies,andcurrentsecurity technologies Abilitytoresearchandcharacterizesecuritythreatstoincludeidentificationandclassificationofapplicationrelated threat indicators Howyouwill Grow At Deloitte,we have invested a great deal to create arich environment in whichour professionals can grow.We want all ourpeopleto developin theirown way,playingto theirown strengthsastheyhonetheirleadershipskills.And,as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities—including exposuretoleaders,sponsors,coaches,andchallengingassignments—tohelpacceleratetheircareersalongtheway. No two people learn in exactly the same way. So, we provide a range of resources, including live classrooms, team-basedlearning,andeLearning.DeloitteUniversity(DU):TheLeadershipCenterinIndia,ourstate-of-the-art, world-classlearningcenterintheHyderabadoffice,isanextensionoftheDUinWestlake,Texas,andrepresents a tangiblesymbolofourcommitmenttoourpeople’sgrowthanddevelopment. ExploreDU:TheLeadershipCenterin India . Benefits AtDeloitte,weknowthatgreatpeoplemakeagreatorganization.Wevalueourpeopleandofferemployeesabroad range of benefits. Learn more about what working at Deloitte can mean for you. Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy,centered,confident,andaware.Weofferwell-beingprogramsandare continuouslylookingfornewwaysto maintainaculturethatisinclusive,invitesauthenticity,leveragesour diversity,andwhereourpeopleexcelandlead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationshipswithourclients,ourpeople,andourcommunities.Webelievethatbusinesshasthepowertoinspireand transform.We focus on education,giving,skill-basedvolunteerism,and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. #CA-LD Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 301449

Summary Position Summary ApplicationSecurity—Solution Delivery Lead Deloitte’s CyberRiskServices helpourclientstobesecure,vigilant,andresilientinthefaceofanever-increasing array of cyber threats and vulnerabilities. Our Cyber Risk practice helps organizations with the management of information and technology risks by delivering end-to-end solutions using proven methodologies and tools in a consistent manner.Ourserviceshelporganizationsto address,in atimelymanner,pervasiveissues,suchasidentity theft, data security breaches, data leakage, cyber security, and system outages across organizations of various sizes and industries with the goal of enabling ongoing, secure, and reliable operations across the enterprise. Deloitte’sCyberRiskServiceshavebeenrecognizedasaleaderbyanumberofindependentanalystfirms. Kennedy Consulting Research & Advisory, a leading analyst firm, recently named Deloitte a global leader in cyber security consulting. Source: Kennedy Consulting Research & Advisory; Cyber Security Consulting 2013; Kennedy Consulting Research & Advisory estimates © 2013 Kennedy Information, LLC. Reproduced under license. Workyouwill do As a Senior Consultant in the hybrid operate business, you are responsible for adhering to the defined operatingproceduresandguidelinesinoperatingthe applicationsecurityservicesintheManagedServicesmodel, which includes the following: UnderstandandbecompliantwiththeServiceLevelAgreementsdefinedfortheDevSecOps services; Understand and deep knowledge of application security engineering principles, and helping client’s development team and function to follow secure development practices which includes primarily monitoringandperformingthe securitydesignreview,architecturereview,threatmodeling, security testing, secure code review, secure build processes; Well versed with the application deployment and configuration baselines, and understanding of how theapplicationenvironmentoperatesinasecureenvironmentandhowexceptionsarehandledduring operations; Facilitateuseoftechnology-basedtoolsormethodologiestocontinuouslyimprovethemonitoring, management and reliability of the service; Performmanualandautomatedsecurityassessmentofthe applications; Involvedintriaginganddefecttrackingprocesswiththedevelopmentteamandhelpingtheteamto fix issues at the code level based on the priority of the tickets; BealiaisonbetweentheApplicationdevelopmentandinfrastructureteam,andintegratethe processes between infrastructure monitoring and operations processes with the secure development/testing and management processes; Identifying,researchingandanalyzingapplicationsecurityeventswhichmayincludeemergingand existing persistent threats to the client's environment; and Performingactivemonitoringandtrackingofapplicationrelatedthreatactorsandtactics,techniques and procedures (TTPs), that could likely cause an impact to client organization The team Deloitte’s DevSecOps is a standardized process, to help clients with large development functions, and application dependenciesfortheirday-to-dayoperations.Theprocessenablestheclienttoaddresskeyvulnerabilitiesandrisks associated with their various application environment at different stages of their development lifecycle. At the core of our Application Security Managed Services Team professionals monitors, collects and analyses security related issues on application environment (both at code level and infrastructure level), that may potentially become a threattoanorganization.Thisdetectionofapplicationthreats/vulnerabilitiesiscarriedoutusingauniqueblendofour applicationsecuritytestingandmonitoringtoolsandintelligencedatacollectedthroughourvastexperiencewithinthe Advice and Implement business. Required: Minimumof5-7 years’experienceinapplicationsecuritydevelopment,securitytesting,deploymentand security management phases; Deepinterestinapplicationspecificvulnerabilities,codedevelopmentandinfrastructure knowledge; Investigativeandanalyticalproblem-solving skills; Experienceincollecting,analyzing,andinterpretingqualitativeandquantitativedatafromdefinedapplication security services related sources (tools, monitoring techniques etc.) KnowledgeandexperienceofOWASPTop10,SANSSecureProgramming,SecurityEngineering Principles; Hands-onexperienceinperformingcodereviewofdotNet,JavaandSwiftand objectiveC code; Hands-onexperienceinrunning,installingandmanagingSAST,DAST , SCA andIASTsolutions,suchasCheckmarx, Fortify and Contrast in large enterprise Understandingofleadingvulnerabilityscoringstandards,suchasCVSS,andabilitytotranslatevulnerability severity as security risk; Hands-onexperienceonatleastoneCI/CDtoolsetandbuildingpipelines usingTeamcity,Bamboo,Jenkins, Chef, Puppet, selenium, AWS and AZURE DevOps; HandsonexperienceoncontainertechnologysuchasKubernetes,Dockers,AKS, EKS. Knowledgeofcloudenvironmentsanddeploymentsolutionssuchasserverless computing; Handsonexperiencein penetrationtestingofmobile,desktopandweb applications; Musthaveexperienceinwritingcustomexploitationscriptsand utilities; Possessionofexcellentoralandwrittencommunication skill; Knowledgeofoneormorescriptinglanguagesforautomationandcomplex searches; MusthavecloudsecurityspecializationinSecurity; and Certificationsuchas EC-Council CEH (Certified Ethical Hacker), DevSecOps Professional (CDP) , ISC2 Certified Cloud Security Professional (CCSP), Certified API Security Professional (CASP) , CTMP (Certified Threat Modeling Professional) etc.are preferred. Preferred: Bachelor’sincomputerscience orothertechnical fields; Experienceincloud service providerssuchasAWS, GCP, Azure, Oracleare preferred Experience in implementing and managing security measures within Kubernetes environments, designing and enforcing advanced security protocols for API infrastructure, managing and optimizing our containerized applications using Docker, automating and managing our infrastructure as code using Terraform, automating IT processes and configurations using Ansible, and identifying and mitigating potential security threats through comprehensive threat modeling practices. SolidanddemonstrablecomprehensionofInformationSecurityincludingOWASP/SANS,SecurityTestCase development(ormis-usecase). Understandingofsecurityessentialsincluding;networkingconcepts,defensestrategies,andcurrentsecurity technologies Abilitytoresearchandcharacterizesecuritythreatstoincludeidentificationandclassificationofapplicationrelated threat indicators Howyouwill Grow At Deloitte,we have invested a great deal to create arich environment in whichour professionals can grow.We want all ourpeopleto developin theirown way,playingto theirown strengthsastheyhonetheirleadershipskills.And,as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities—including exposuretoleaders,sponsors,coaches,andchallengingassignments—tohelpacceleratetheircareersalongtheway. No two people learn in exactly the same way. So, we provide a range of resources, including live classrooms, team-basedlearning,andeLearning.DeloitteUniversity(DU):TheLeadershipCenterinIndia,ourstate-of-the-art, world-classlearningcenterintheHyderabadoffice,isanextensionoftheDUinWestlake,Texas,andrepresents a tangiblesymbolofourcommitmenttoourpeople’sgrowthanddevelopment. ExploreDU:TheLeadershipCenterin India . Benefits AtDeloitte,weknowthatgreatpeoplemakeagreatorganization.Wevalueourpeopleandofferemployeesabroad range of benefits. Learn more about what working at Deloitte can mean for you. Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy,centered,confident,andaware.Weofferwell-beingprogramsandare continuouslylookingfornewwaysto maintainaculturethatisinclusive,invitesauthenticity,leveragesour diversity,andwhereourpeopleexcelandlead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationshipswithourclients,ourpeople,andourcommunities.Webelievethatbusinesshasthepowertoinspireand transform.We focus on education,giving,skill-basedvolunteerism,and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. #CA-LD Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 301449

Summary Position Summary ApplicationSecurity—Solution Delivery Advisor Deloitte’s CyberRiskServices helpourclientstobesecure,vigilant,andresilientinthefaceofanever-increasing array of cyber threats and vulnerabilities. Our Cyber Risk practice helps organizations with the management of information and technology risks by delivering end-to-end solutions using proven methodologies and tools in a consistent manner.Ourserviceshelporganizationsto address,in atimelymanner,pervasiveissues,suchasidentity theft, data security breaches, data leakage, cyber security, and system outages across organizations of various sizes and industries with the goal of enabling ongoing, secure, and reliable operations across the enterprise. Deloitte’sCyberRiskServiceshavebeenrecognizedasaleaderbyanumberofindependentanalystfirms. Kennedy Consulting Research & Advisory, a leading analyst firm, recently named Deloitte a global leader in cyber security consulting. Source: Kennedy Consulting Research & Advisory; Cyber Security Consulting 2013; Kennedy Consulting Research & Advisory estimates © 2013 Kennedy Information, LLC. Reproduced under license. Workyouwill do As a Consultant in the hybrid operate business, you are responsible for adhering to the defined operatingproceduresandguidelinesinoperatingthe applicationsecurityservicesintheManagedServicesmodel, which includes the following: UnderstandandbecompliantwiththeServiceLevelAgreementsdefinedfortheDevSecOps services; Understand and deep knowledge of application security engineering principles, and helping client’s development team and function to follow secure development practices which includes primarily monitoringandperformingthe securitydesignreview,architecturereview,threatmodeling, security testing, secure code review, secure build processes; Well versed with the application deployment and configuration baselines, and understanding of how theapplicationenvironmentoperatesinasecureenvironmentandhowexceptionsarehandledduring operations; Facilitateuseoftechnology-basedtoolsormethodologiestocontinuouslyimprovethemonitoring, management and reliability of the service; Performmanualandautomatedsecurityassessmentofthe applications; Involvedintriaginganddefecttrackingprocesswiththedevelopmentteamandhelpingtheteamto fix issues at the code level based on the priority of the tickets; BealiaisonbetweentheApplicationdevelopmentandinfrastructureteam,andintegratethe processes between infrastructure monitoring and operations processes with the secure development/testing and management processes; Identifying,researchingandanalyzingapplicationsecurityeventswhichmayincludeemergingand existing persistent threats to the client's environment; and Performingactivemonitoringandtrackingofapplicationrelatedthreatactorsandtactics,techniques and procedures (TTPs), that could likely cause an impact to client organization The team Deloitte’s DevSecOps is a standardized process, to help clients with large development functions, and application dependenciesfortheirday-to-dayoperations.Theprocessenablestheclienttoaddresskeyvulnerabilitiesandrisks associated with their various application environment at different stages of their development lifecycle. At the core of our Application Security Managed Services Team professionals monitors, collects and analyses security related issues on application environment (both at code level and infrastructure level), that may potentially become a threattoanorganization.Thisdetectionofapplicationthreats/vulnerabilitiesiscarriedoutusingauniqueblendofour applicationsecuritytestingandmonitoringtoolsandintelligencedatacollectedthroughourvastexperiencewithinthe Advice and Implement business. Required: Minimumof3-5years’experienceinapplicationsecuritydevelopment,securitytesting,deploymentand security management phases; Deepinterestinapplicationspecificvulnerabilities,codedevelopmentandinfrastructure knowledge; Investigativeandanalyticalproblem-solving skills; Experienceincollecting,analyzing,andinterpretingqualitativeandquantitativedatafromdefinedapplication security services related sources (tools, monitoring techniques etc.) KnowledgeandexperienceofOWASPTop10,SANSSecureProgramming,SecurityEngineering Principles; Hands-onexperienceinperformingcodereviewofdotNet,JavaandSwiftand objectiveC code; Hands-onexperienceinrunning,installingandmanagingSAST,DAST , SCA andIASTsolutions,suchasCheckmarx, Fortify and Contrast in large enterprise Understandingofleadingvulnerabilityscoringstandards,suchasCVSS,andabilitytotranslatevulnerability severity as security risk; Hands-onexperienceonatleastoneCI/CDtoolsetandbuildingpipelines usingTeamcity,Bamboo,Jenkins, Chef, Puppet, selenium, AWS and AZURE DevOps; HandsonexperienceoncontainertechnologysuchasKubernetes,Dockers,AKS, EKS. Knowledgeofcloudenvironmentsanddeploymentsolutionssuchasserverless computing; Handsonexperiencein penetrationtestingofmobile,desktopandweb applications; Musthaveexperienceinwritingcustomexploitationscriptsand utilities; Possessionofexcellentoralandwrittencommunication skill; Knowledgeofoneormorescriptinglanguagesforautomationandcomplex searches; MusthavecloudsecurityspecializationinSecurity; and Certificationsuchas EC-Council CEH (Certified Ethical Hacker), DevSecOps Professional (CDP) , ISC2 Certified Cloud Security Professional (CCSP), Certified API Security Professional (CASP) , CTMP (Certified Threat Modeling Professional) etc.are preferred. Preferred: Bachelor’sincomputerscience orothertechnical fields; Experienceincloud service providerssuchasAWS, GCP, Azure, Oracleare preferred Experience in implementing and managing security measures within Kubernetes environments, designing and enforcing advanced security protocols for API infrastructure, managing and optimizing our containerized applications using Docker, automating and managing our infrastructure as code using Terraform, automating IT processes and configurations using Ansible, and identifying and mitigating potential security threats through comprehensive threat modeling practices. SolidanddemonstrablecomprehensionofInformationSecurityincludingOWASP/SANS,SecurityTestCase development(ormis-usecase). Understandingofsecurityessentialsincluding;networkingconcepts,defensestrategies,andcurrentsecurity technologies Abilitytoresearchandcharacterizesecuritythreatstoincludeidentificationandclassificationofapplicationrelated threat indicators Howyouwill Grow At Deloitte,we have invested a great deal to create arich environment in whichour professionals can grow.We want all ourpeopleto developin theirown way,playingto theirown strengthsastheyhonetheirleadershipskills.And,as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities—including exposuretoleaders,sponsors,coaches,andchallengingassignments—tohelpacceleratetheircareersalongtheway. No two people learn in exactly the same way. So, we provide a range of resources, including live classrooms, team-basedlearning,andeLearning.DeloitteUniversity(DU):TheLeadershipCenterinIndia,ourstate-of-the-art, world-classlearningcenterintheHyderabadoffice,isanextensionoftheDUinWestlake,Texas,andrepresents a tangiblesymbolofourcommitmenttoourpeople’sgrowthanddevelopment. ExploreDU:TheLeadershipCenterin India . Benefits AtDeloitte,weknowthatgreatpeoplemakeagreatorganization.Wevalueourpeopleandofferemployeesabroad range of benefits. Learn more about what working at Deloitte can mean for you. Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy,centered,confident,andaware.Weofferwell-beingprogramsandare continuouslylookingfornewwaysto maintainaculturethatisinclusive,invitesauthenticity,leveragesour diversity,andwhereourpeopleexcelandlead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationshipswithourclients,ourpeople,andourcommunities.Webelievethatbusinesshasthepowertoinspireand transform.We focus on education,giving,skill-basedvolunteerism,and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. #CA-LD Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 301444

Description Position at Wind River Wind River Systems is seeking for a experienced high-performing Senior Software Developer for a position developing a cloud-based platform that spans across all products. The successful candidate will join a highly skilled development team delivering internal and external tools and technologies across a complete DevSecOps platform, pioneering many new industry leading capabilities. The successful candidate must have experience in cloud-native software development and be a highly adaptable team player who can quickly ramp up on new technologies and accomplish goals in a fast-paced agile environment. A combination of strong technical and communication skills is a must. In a company with significant growth and the leader in embedded platforms, you will be part of a team developing and supporting the tools infrastructure used by all engineering teams. This position requires proven skills in software development tools and excellent English oral and written communication skills. The ability to consider multiple operating systems while designing and implementing a feature is essential. You will likely need to work with a variety of tools, operating systems, and products to ensure delivery of high-quality code. Responsibilities You will be responsible for creating and maintaining new features for a web application deployed to a cloud-based platform. Deliver features and updates to a web application using your Angular, Typescript, HTML5, CSS skills. Provide several levels of automated testing for your code (unit and functional). Design, develop, test, deploy, maintain and improve software. About You Core Competencies & Demonstrated Success Excellent communication skills, both written and verbal. Advanced knowledge of microservices, data access, event sourcing and stream processing. Strong Experience with microservices using NodeJs and Data Streams. Strong experience with Jenkins, DevOps, Containers and Agile practices. Solid experience working in software development including the application of best practices and SOLID design principles. Solid Experience supporting Junior Engineers to develop best practices in software development. Solid experience with nodejs Experience with GIT, Jira, code review tools. Experience with OpenAPI/Swagger. Experience with IaaC like Terraform and Helm Charts. Experience with clean web design, CSS, Angular, JavaScript. Experience working with large scale microservice architecture backends using message brokers, data pipelines, several data sources, etc. Manage individual project priorities, deadlines, and deliverables. Strong Experience with Postgres, Mongo and Kafka are a plus. Qualifications B.Tech or equivalent experience

Summary Position Summary ApplicationSecurity—Solution Delivery Lead Deloitte’s CyberRiskServices helpourclientstobesecure,vigilant,andresilientinthefaceofanever-increasing array of cyber threats and vulnerabilities. Our Cyber Risk practice helps organizations with the management of information and technology risks by delivering end-to-end solutions using proven methodologies and tools in a consistent manner.Ourserviceshelporganizationsto address,in atimelymanner,pervasiveissues,suchasidentity theft, data security breaches, data leakage, cyber security, and system outages across organizations of various sizes and industries with the goal of enabling ongoing, secure, and reliable operations across the enterprise. Deloitte’sCyberRiskServiceshavebeenrecognizedasaleaderbyanumberofindependentanalystfirms. Kennedy Consulting Research & Advisory, a leading analyst firm, recently named Deloitte a global leader in cyber security consulting. Source: Kennedy Consulting Research & Advisory; Cyber Security Consulting 2013; Kennedy Consulting Research & Advisory estimates © 2013 Kennedy Information, LLC. Reproduced under license. Workyouwill do As a Senior Consultant in the hybrid operate business, you are responsible for adhering to the defined operatingproceduresandguidelinesinoperatingthe applicationsecurityservicesintheManagedServicesmodel, which includes the following: UnderstandandbecompliantwiththeServiceLevelAgreementsdefinedfortheDevSecOps services; Understand and deep knowledge of application security engineering principles, and helping client’s development team and function to follow secure development practices which includes primarily monitoringandperformingthe securitydesignreview,architecturereview,threatmodeling, security testing, secure code review, secure build processes; Well versed with the application deployment and configuration baselines, and understanding of how theapplicationenvironmentoperatesinasecureenvironmentandhowexceptionsarehandledduring operations; Facilitateuseoftechnology-basedtoolsormethodologiestocontinuouslyimprovethemonitoring, management and reliability of the service; Performmanualandautomatedsecurityassessmentofthe applications; Involvedintriaginganddefecttrackingprocesswiththedevelopmentteamandhelpingtheteamto fix issues at the code level based on the priority of the tickets; BealiaisonbetweentheApplicationdevelopmentandinfrastructureteam,andintegratethe processes between infrastructure monitoring and operations processes with the secure development/testing and management processes; Identifying,researchingandanalyzingapplicationsecurityeventswhichmayincludeemergingand existing persistent threats to the client's environment; and Performingactivemonitoringandtrackingofapplicationrelatedthreatactorsandtactics,techniques and procedures (TTPs), that could likely cause an impact to client organization The team Deloitte’s DevSecOps is a standardized process, to help clients with large development functions, and application dependenciesfortheirday-to-dayoperations.Theprocessenablestheclienttoaddresskeyvulnerabilitiesandrisks associated with their various application environment at different stages of their development lifecycle. At the core of our Application Security Managed Services Team professionals monitors, collects and analyses security related issues on application environment (both at code level and infrastructure level), that may potentially become a threattoanorganization.Thisdetectionofapplicationthreats/vulnerabilitiesiscarriedoutusingauniqueblendofour applicationsecuritytestingandmonitoringtoolsandintelligencedatacollectedthroughourvastexperiencewithinthe Advice and Implement business. Required: Minimumof5-7 years’experienceinapplicationsecuritydevelopment,securitytesting,deploymentand security management phases; Deepinterestinapplicationspecificvulnerabilities,codedevelopmentandinfrastructure knowledge; Investigativeandanalyticalproblem-solving skills; Experienceincollecting,analyzing,andinterpretingqualitativeandquantitativedatafromdefinedapplication security services related sources (tools, monitoring techniques etc.) KnowledgeandexperienceofOWASPTop10,SANSSecureProgramming,SecurityEngineering Principles; Hands-onexperienceinperformingcodereviewofdotNet,JavaandSwiftand objectiveC code; Hands-onexperienceinrunning,installingandmanagingSAST,DAST , SCA andIASTsolutions,suchasCheckmarx, Fortify and Contrast in large enterprise Understandingofleadingvulnerabilityscoringstandards,suchasCVSS,andabilitytotranslatevulnerability severity as security risk; Hands-onexperienceonatleastoneCI/CDtoolsetandbuildingpipelines usingTeamcity,Bamboo,Jenkins, Chef, Puppet, selenium, AWS and AZURE DevOps; HandsonexperienceoncontainertechnologysuchasKubernetes,Dockers,AKS, EKS. Knowledgeofcloudenvironmentsanddeploymentsolutionssuchasserverless computing; Handsonexperiencein penetrationtestingofmobile,desktopandweb applications; Musthaveexperienceinwritingcustomexploitationscriptsand utilities; Possessionofexcellentoralandwrittencommunication skill; Knowledgeofoneormorescriptinglanguagesforautomationandcomplex searches; MusthavecloudsecurityspecializationinSecurity; and Certificationsuchas EC-Council CEH (Certified Ethical Hacker), DevSecOps Professional (CDP) , ISC2 Certified Cloud Security Professional (CCSP), Certified API Security Professional (CASP) , CTMP (Certified Threat Modeling Professional) etc.are preferred. Preferred: Bachelor’sincomputerscience orothertechnical fields; Experienceincloud service providerssuchasAWS, GCP, Azure, Oracleare preferred Experience in implementing and managing security measures within Kubernetes environments, designing and enforcing advanced security protocols for API infrastructure, managing and optimizing our containerized applications using Docker, automating and managing our infrastructure as code using Terraform, automating IT processes and configurations using Ansible, and identifying and mitigating potential security threats through comprehensive threat modeling practices. SolidanddemonstrablecomprehensionofInformationSecurityincludingOWASP/SANS,SecurityTestCase development(ormis-usecase). Understandingofsecurityessentialsincluding;networkingconcepts,defensestrategies,andcurrentsecurity technologies Abilitytoresearchandcharacterizesecuritythreatstoincludeidentificationandclassificationofapplicationrelated threat indicators Howyouwill Grow At Deloitte,we have invested a great deal to create arich environment in whichour professionals can grow.We want all ourpeopleto developin theirown way,playingto theirown strengthsastheyhonetheirleadershipskills.And,as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities—including exposuretoleaders,sponsors,coaches,andchallengingassignments—tohelpacceleratetheircareersalongtheway. No two people learn in exactly the same way. So, we provide a range of resources, including live classrooms, team-basedlearning,andeLearning.DeloitteUniversity(DU):TheLeadershipCenterinIndia,ourstate-of-the-art, world-classlearningcenterintheHyderabadoffice,isanextensionoftheDUinWestlake,Texas,andrepresents a tangiblesymbolofourcommitmenttoourpeople’sgrowthanddevelopment. ExploreDU:TheLeadershipCenterin India . Benefits AtDeloitte,weknowthatgreatpeoplemakeagreatorganization.Wevalueourpeopleandofferemployeesabroad range of benefits. Learn more about what working at Deloitte can mean for you. Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy,centered,confident,andaware.Weofferwell-beingprogramsandare continuouslylookingfornewwaysto maintainaculturethatisinclusive,invitesauthenticity,leveragesour diversity,andwhereourpeopleexcelandlead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationshipswithourclients,ourpeople,andourcommunities.Webelievethatbusinesshasthepowertoinspireand transform.We focus on education,giving,skill-basedvolunteerism,and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. #CA-LD Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 301449

Summary Position Summary ApplicationSecurity—Solution Delivery Lead Deloitte’s CyberRiskServices helpourclientstobesecure,vigilant,andresilientinthefaceofanever-increasing array of cyber threats and vulnerabilities. Our Cyber Risk practice helps organizations with the management of information and technology risks by delivering end-to-end solutions using proven methodologies and tools in a consistent manner.Ourserviceshelporganizationsto address,in atimelymanner,pervasiveissues,suchasidentity theft, data security breaches, data leakage, cyber security, and system outages across organizations of various sizes and industries with the goal of enabling ongoing, secure, and reliable operations across the enterprise. Deloitte’sCyberRiskServiceshavebeenrecognizedasaleaderbyanumberofindependentanalystfirms. Kennedy Consulting Research & Advisory, a leading analyst firm, recently named Deloitte a global leader in cyber security consulting. Source: Kennedy Consulting Research & Advisory; Cyber Security Consulting 2013; Kennedy Consulting Research & Advisory estimates © 2013 Kennedy Information, LLC. Reproduced under license. Workyouwill do As a Senior Consultant in the hybrid operate business, you are responsible for adhering to the defined operatingproceduresandguidelinesinoperatingthe applicationsecurityservicesintheManagedServicesmodel, which includes the following: UnderstandandbecompliantwiththeServiceLevelAgreementsdefinedfortheDevSecOps services; Understand and deep knowledge of application security engineering principles, and helping client’s development team and function to follow secure development practices which includes primarily monitoringandperformingthe securitydesignreview,architecturereview,threatmodeling, security testing, secure code review, secure build processes; Well versed with the application deployment and configuration baselines, and understanding of how theapplicationenvironmentoperatesinasecureenvironmentandhowexceptionsarehandledduring operations; Facilitateuseoftechnology-basedtoolsormethodologiestocontinuouslyimprovethemonitoring, management and reliability of the service; Performmanualandautomatedsecurityassessmentofthe applications; Involvedintriaginganddefecttrackingprocesswiththedevelopmentteamandhelpingtheteamto fix issues at the code level based on the priority of the tickets; BealiaisonbetweentheApplicationdevelopmentandinfrastructureteam,andintegratethe processes between infrastructure monitoring and operations processes with the secure development/testing and management processes; Identifying,researchingandanalyzingapplicationsecurityeventswhichmayincludeemergingand existing persistent threats to the client's environment; and Performingactivemonitoringandtrackingofapplicationrelatedthreatactorsandtactics,techniques and procedures (TTPs), that could likely cause an impact to client organization The team Deloitte’s DevSecOps is a standardized process, to help clients with large development functions, and application dependenciesfortheirday-to-dayoperations.Theprocessenablestheclienttoaddresskeyvulnerabilitiesandrisks associated with their various application environment at different stages of their development lifecycle. At the core of our Application Security Managed Services Team professionals monitors, collects and analyses security related issues on application environment (both at code level and infrastructure level), that may potentially become a threattoanorganization.Thisdetectionofapplicationthreats/vulnerabilitiesiscarriedoutusingauniqueblendofour applicationsecuritytestingandmonitoringtoolsandintelligencedatacollectedthroughourvastexperiencewithinthe Advice and Implement business. Required: Minimumof5-7 years’experienceinapplicationsecuritydevelopment,securitytesting,deploymentand security management phases; Deepinterestinapplicationspecificvulnerabilities,codedevelopmentandinfrastructure knowledge; Investigativeandanalyticalproblem-solving skills; Experienceincollecting,analyzing,andinterpretingqualitativeandquantitativedatafromdefinedapplication security services related sources (tools, monitoring techniques etc.) KnowledgeandexperienceofOWASPTop10,SANSSecureProgramming,SecurityEngineering Principles; Hands-onexperienceinperformingcodereviewofdotNet,JavaandSwiftand objectiveC code; Hands-onexperienceinrunning,installingandmanagingSAST,DAST , SCA andIASTsolutions,suchasCheckmarx, Fortify and Contrast in large enterprise Understandingofleadingvulnerabilityscoringstandards,suchasCVSS,andabilitytotranslatevulnerability severity as security risk; Hands-onexperienceonatleastoneCI/CDtoolsetandbuildingpipelines usingTeamcity,Bamboo,Jenkins, Chef, Puppet, selenium, AWS and AZURE DevOps; HandsonexperienceoncontainertechnologysuchasKubernetes,Dockers,AKS, EKS. Knowledgeofcloudenvironmentsanddeploymentsolutionssuchasserverless computing; Handsonexperiencein penetrationtestingofmobile,desktopandweb applications; Musthaveexperienceinwritingcustomexploitationscriptsand utilities; Possessionofexcellentoralandwrittencommunication skill; Knowledgeofoneormorescriptinglanguagesforautomationandcomplex searches; MusthavecloudsecurityspecializationinSecurity; and Certificationsuchas EC-Council CEH (Certified Ethical Hacker), DevSecOps Professional (CDP) , ISC2 Certified Cloud Security Professional (CCSP), Certified API Security Professional (CASP) , CTMP (Certified Threat Modeling Professional) etc.are preferred. Preferred: Bachelor’sincomputerscience orothertechnical fields; Experienceincloud service providerssuchasAWS, GCP, Azure, Oracleare preferred Experience in implementing and managing security measures within Kubernetes environments, designing and enforcing advanced security protocols for API infrastructure, managing and optimizing our containerized applications using Docker, automating and managing our infrastructure as code using Terraform, automating IT processes and configurations using Ansible, and identifying and mitigating potential security threats through comprehensive threat modeling practices. SolidanddemonstrablecomprehensionofInformationSecurityincludingOWASP/SANS,SecurityTestCase development(ormis-usecase). Understandingofsecurityessentialsincluding;networkingconcepts,defensestrategies,andcurrentsecurity technologies Abilitytoresearchandcharacterizesecuritythreatstoincludeidentificationandclassificationofapplicationrelated threat indicators Howyouwill Grow At Deloitte,we have invested a great deal to create arich environment in whichour professionals can grow.We want all ourpeopleto developin theirown way,playingto theirown strengthsastheyhonetheirleadershipskills.And,as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities—including exposuretoleaders,sponsors,coaches,andchallengingassignments—tohelpacceleratetheircareersalongtheway. No two people learn in exactly the same way. So, we provide a range of resources, including live classrooms, team-basedlearning,andeLearning.DeloitteUniversity(DU):TheLeadershipCenterinIndia,ourstate-of-the-art, world-classlearningcenterintheHyderabadoffice,isanextensionoftheDUinWestlake,Texas,andrepresents a tangiblesymbolofourcommitmenttoourpeople’sgrowthanddevelopment. ExploreDU:TheLeadershipCenterin India . Benefits AtDeloitte,weknowthatgreatpeoplemakeagreatorganization.Wevalueourpeopleandofferemployeesabroad range of benefits. Learn more about what working at Deloitte can mean for you. Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy,centered,confident,andaware.Weofferwell-beingprogramsandare continuouslylookingfornewwaysto maintainaculturethatisinclusive,invitesauthenticity,leveragesour diversity,andwhereourpeopleexcelandlead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationshipswithourclients,ourpeople,andourcommunities.Webelievethatbusinesshasthepowertoinspireand transform.We focus on education,giving,skill-basedvolunteerism,and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. #CA-LD Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 301449

Summary Position Summary ApplicationSecurity—Solution Delivery Advisor Deloitte’s CyberRiskServices helpourclientstobesecure,vigilant,andresilientinthefaceofanever-increasing array of cyber threats and vulnerabilities. Our Cyber Risk practice helps organizations with the management of information and technology risks by delivering end-to-end solutions using proven methodologies and tools in a consistent manner.Ourserviceshelporganizationsto address,in atimelymanner,pervasiveissues,suchasidentity theft, data security breaches, data leakage, cyber security, and system outages across organizations of various sizes and industries with the goal of enabling ongoing, secure, and reliable operations across the enterprise. Deloitte’sCyberRiskServiceshavebeenrecognizedasaleaderbyanumberofindependentanalystfirms. Kennedy Consulting Research & Advisory, a leading analyst firm, recently named Deloitte a global leader in cyber security consulting. Source: Kennedy Consulting Research & Advisory; Cyber Security Consulting 2013; Kennedy Consulting Research & Advisory estimates © 2013 Kennedy Information, LLC. Reproduced under license. Workyouwill do As a Consultant in the hybrid operate business, you are responsible for adhering to the defined operatingproceduresandguidelinesinoperatingthe applicationsecurityservicesintheManagedServicesmodel, which includes the following: UnderstandandbecompliantwiththeServiceLevelAgreementsdefinedfortheDevSecOps services; Understand and deep knowledge of application security engineering principles, and helping client’s development team and function to follow secure development practices which includes primarily monitoringandperformingthe securitydesignreview,architecturereview,threatmodeling, security testing, secure code review, secure build processes; Well versed with the application deployment and configuration baselines, and understanding of how theapplicationenvironmentoperatesinasecureenvironmentandhowexceptionsarehandledduring operations; Facilitateuseoftechnology-basedtoolsormethodologiestocontinuouslyimprovethemonitoring, management and reliability of the service; Performmanualandautomatedsecurityassessmentofthe applications; Involvedintriaginganddefecttrackingprocesswiththedevelopmentteamandhelpingtheteamto fix issues at the code level based on the priority of the tickets; BealiaisonbetweentheApplicationdevelopmentandinfrastructureteam,andintegratethe processes between infrastructure monitoring and operations processes with the secure development/testing and management processes; Identifying,researchingandanalyzingapplicationsecurityeventswhichmayincludeemergingand existing persistent threats to the client's environment; and Performingactivemonitoringandtrackingofapplicationrelatedthreatactorsandtactics,techniques and procedures (TTPs), that could likely cause an impact to client organization The team Deloitte’s DevSecOps is a standardized process, to help clients with large development functions, and application dependenciesfortheirday-to-dayoperations.Theprocessenablestheclienttoaddresskeyvulnerabilitiesandrisks associated with their various application environment at different stages of their development lifecycle. At the core of our Application Security Managed Services Team professionals monitors, collects and analyses security related issues on application environment (both at code level and infrastructure level), that may potentially become a threattoanorganization.Thisdetectionofapplicationthreats/vulnerabilitiesiscarriedoutusingauniqueblendofour applicationsecuritytestingandmonitoringtoolsandintelligencedatacollectedthroughourvastexperiencewithinthe Advice and Implement business. Required: Minimumof3-5years’experienceinapplicationsecuritydevelopment,securitytesting,deploymentand security management phases; Deepinterestinapplicationspecificvulnerabilities,codedevelopmentandinfrastructure knowledge; Investigativeandanalyticalproblem-solving skills; Experienceincollecting,analyzing,andinterpretingqualitativeandquantitativedatafromdefinedapplication security services related sources (tools, monitoring techniques etc.) KnowledgeandexperienceofOWASPTop10,SANSSecureProgramming,SecurityEngineering Principles; Hands-onexperienceinperformingcodereviewofdotNet,JavaandSwiftand objectiveC code; Hands-onexperienceinrunning,installingandmanagingSAST,DAST , SCA andIASTsolutions,suchasCheckmarx, Fortify and Contrast in large enterprise Understandingofleadingvulnerabilityscoringstandards,suchasCVSS,andabilitytotranslatevulnerability severity as security risk; Hands-onexperienceonatleastoneCI/CDtoolsetandbuildingpipelines usingTeamcity,Bamboo,Jenkins, Chef, Puppet, selenium, AWS and AZURE DevOps; HandsonexperienceoncontainertechnologysuchasKubernetes,Dockers,AKS, EKS. Knowledgeofcloudenvironmentsanddeploymentsolutionssuchasserverless computing; Handsonexperiencein penetrationtestingofmobile,desktopandweb applications; Musthaveexperienceinwritingcustomexploitationscriptsand utilities; Possessionofexcellentoralandwrittencommunication skill; Knowledgeofoneormorescriptinglanguagesforautomationandcomplex searches; MusthavecloudsecurityspecializationinSecurity; and Certificationsuchas EC-Council CEH (Certified Ethical Hacker), DevSecOps Professional (CDP) , ISC2 Certified Cloud Security Professional (CCSP), Certified API Security Professional (CASP) , CTMP (Certified Threat Modeling Professional) etc.are preferred. Preferred: Bachelor’sincomputerscience orothertechnical fields; Experienceincloud service providerssuchasAWS, GCP, Azure, Oracleare preferred Experience in implementing and managing security measures within Kubernetes environments, designing and enforcing advanced security protocols for API infrastructure, managing and optimizing our containerized applications using Docker, automating and managing our infrastructure as code using Terraform, automating IT processes and configurations using Ansible, and identifying and mitigating potential security threats through comprehensive threat modeling practices. SolidanddemonstrablecomprehensionofInformationSecurityincludingOWASP/SANS,SecurityTestCase development(ormis-usecase). Understandingofsecurityessentialsincluding;networkingconcepts,defensestrategies,andcurrentsecurity technologies Abilitytoresearchandcharacterizesecuritythreatstoincludeidentificationandclassificationofapplicationrelated threat indicators Howyouwill Grow At Deloitte,we have invested a great deal to create arich environment in whichour professionals can grow.We want all ourpeopleto developin theirown way,playingto theirown strengthsastheyhonetheirleadershipskills.And,as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities—including exposuretoleaders,sponsors,coaches,andchallengingassignments—tohelpacceleratetheircareersalongtheway. No two people learn in exactly the same way. So, we provide a range of resources, including live classrooms, team-basedlearning,andeLearning.DeloitteUniversity(DU):TheLeadershipCenterinIndia,ourstate-of-the-art, world-classlearningcenterintheHyderabadoffice,isanextensionoftheDUinWestlake,Texas,andrepresents a tangiblesymbolofourcommitmenttoourpeople’sgrowthanddevelopment. ExploreDU:TheLeadershipCenterin India . Benefits AtDeloitte,weknowthatgreatpeoplemakeagreatorganization.Wevalueourpeopleandofferemployeesabroad range of benefits. Learn more about what working at Deloitte can mean for you. Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy,centered,confident,andaware.Weofferwell-beingprogramsandare continuouslylookingfornewwaysto maintainaculturethatisinclusive,invitesauthenticity,leveragesour diversity,andwhereourpeopleexcelandlead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationshipswithourclients,ourpeople,andourcommunities.Webelievethatbusinesshasthepowertoinspireand transform.We focus on education,giving,skill-basedvolunteerism,and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. #CA-LD Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 301444

Company Description OpenBlockAI is India’s first AI + Blockchain-powered compliance platform revolutionizing the fight against financial crimes. We are building a real-time AML (Anti-Money Laundering) infrastructure designed for banks, fintechs, and government ecosystems. Our hybrid AI + Blockchain solution enables real-time fraud detection, transaction monitoring, and regulatory intelligence—before money laundering happens. Backed by a product-first vision, OpenBlockAI is co-founded by experienced entrepreneurs and is in active conversations with leading banks and regulatory bodies. We are now looking for a CTO with deep tech expertise and vision to lead the engineering and innovation roadmap. Role Description We are seeking a Chief Technology Officer (CTO) to join our founding team and lead the end-to-end technology strategy of a next-gen AI and blockchain platform built for the financial sector. The ideal candidate is a hands-on technology leader with a strong engineering foundation, start-up experience, and a passion for building innovative, secure, and scalable products. Your Responsibilities Will Include: Define and execute the long-term technical vision and architecture. Build and lead a high-performing engineering and AI/ML team. Design and oversee a secure, scalable, and modular cloud-native infrastructure. Drive development and deployment of AI/ML systems, blockchain frameworks, and real-time APIs. Ensure robust implementation of MFA, IAM, authorization, and secure communication protocols. Collaborate cross-functionally with product, compliance, and business stakeholders. Stay abreast of evolving regulatory technologies and ensure tech compliance readiness. Qualifications: 5+ years of proven experience in AI/ML, Blockchain, or Fintech architecture. Strong hands-on background in: Node.js, PostgreSQL, MongoDB AWS infrastructure, Docker, Kubernetes Deep understanding of AI model lifecycle, including: Model training and deployment REST/GraphQL prediction APIs Feedback collection and versioning Model drift detection and explainability Hands-on expertise with blockchain frameworks such as Ethereum, Hyperledger, or similar. Familiarity with data security, compliance standards, and regulatory frameworks (e.g., RBI, GDPR, ISO/PCI). Strong grasp of system design, distributed architecture, and DevSecOps best practices. Excellent communication, leadership, and decision-making abilities. Preferred (Good to Have): Exposure to RegTech, AML/KYC compliance, or banking infrastructure. Experience scaling products in multi-tenant or SaaS environments. Contributions to open-source, patents, or published research in AI or blockchain. Compensation: Equity-based role

Summary Position Summary ApplicationSecurity—Solution Delivery Lead Deloitte’s CyberRiskServices helpourclientstobesecure,vigilant,andresilientinthefaceofanever-increasing array of cyber threats and vulnerabilities. Our Cyber Risk practice helps organizations with the management of information and technology risks by delivering end-to-end solutions using proven methodologies and tools in a consistent manner.Ourserviceshelporganizationsto address,in atimelymanner,pervasiveissues,suchasidentity theft, data security breaches, data leakage, cyber security, and system outages across organizations of various sizes and industries with the goal of enabling ongoing, secure, and reliable operations across the enterprise. Deloitte’sCyberRiskServiceshavebeenrecognizedasaleaderbyanumberofindependentanalystfirms. Kennedy Consulting Research & Advisory, a leading analyst firm, recently named Deloitte a global leader in cyber security consulting. Source: Kennedy Consulting Research & Advisory; Cyber Security Consulting 2013; Kennedy Consulting Research & Advisory estimates © 2013 Kennedy Information, LLC. Reproduced under license. Workyouwill do As a Senior Consultant in the hybrid operate business, you are responsible for adhering to the defined operatingproceduresandguidelinesinoperatingthe applicationsecurityservicesintheManagedServicesmodel, which includes the following: UnderstandandbecompliantwiththeServiceLevelAgreementsdefinedfortheDevSecOps services; Understand and deep knowledge of application security engineering principles, and helping client’s development team and function to follow secure development practices which includes primarily monitoringandperformingthe securitydesignreview,architecturereview,threatmodeling, security testing, secure code review, secure build processes; Well versed with the application deployment and configuration baselines, and understanding of how theapplicationenvironmentoperatesinasecureenvironmentandhowexceptionsarehandledduring operations; Facilitateuseoftechnology-basedtoolsormethodologiestocontinuouslyimprovethemonitoring, management and reliability of the service; Performmanualandautomatedsecurityassessmentofthe applications; Involvedintriaginganddefecttrackingprocesswiththedevelopmentteamandhelpingtheteamto fix issues at the code level based on the priority of the tickets; BealiaisonbetweentheApplicationdevelopmentandinfrastructureteam,andintegratethe processes between infrastructure monitoring and operations processes with the secure development/testing and management processes; Identifying,researchingandanalyzingapplicationsecurityeventswhichmayincludeemergingand existing persistent threats to the client's environment; and Performingactivemonitoringandtrackingofapplicationrelatedthreatactorsandtactics,techniques and procedures (TTPs), that could likely cause an impact to client organization The team Deloitte’s DevSecOps is a standardized process, to help clients with large development functions, and application dependenciesfortheirday-to-dayoperations.Theprocessenablestheclienttoaddresskeyvulnerabilitiesandrisks associated with their various application environment at different stages of their development lifecycle. At the core of our Application Security Managed Services Team professionals monitors, collects and analyses security related issues on application environment (both at code level and infrastructure level), that may potentially become a threattoanorganization.Thisdetectionofapplicationthreats/vulnerabilitiesiscarriedoutusingauniqueblendofour applicationsecuritytestingandmonitoringtoolsandintelligencedatacollectedthroughourvastexperiencewithinthe Advice and Implement business. Required: Minimumof5-7 years’experienceinapplicationsecuritydevelopment,securitytesting,deploymentand security management phases; Deepinterestinapplicationspecificvulnerabilities,codedevelopmentandinfrastructure knowledge; Investigativeandanalyticalproblem-solving skills; Experienceincollecting,analyzing,andinterpretingqualitativeandquantitativedatafromdefinedapplication security services related sources (tools, monitoring techniques etc.) KnowledgeandexperienceofOWASPTop10,SANSSecureProgramming,SecurityEngineering Principles; Hands-onexperienceinperformingcodereviewofdotNet,JavaandSwiftand objectiveC code; Hands-onexperienceinrunning,installingandmanagingSAST,DAST , SCA andIASTsolutions,suchasCheckmarx, Fortify and Contrast in large enterprise Understandingofleadingvulnerabilityscoringstandards,suchasCVSS,andabilitytotranslatevulnerability severity as security risk; Hands-onexperienceonatleastoneCI/CDtoolsetandbuildingpipelines usingTeamcity,Bamboo,Jenkins, Chef, Puppet, selenium, AWS and AZURE DevOps; HandsonexperienceoncontainertechnologysuchasKubernetes,Dockers,AKS, EKS. Knowledgeofcloudenvironmentsanddeploymentsolutionssuchasserverless computing; Handsonexperiencein penetrationtestingofmobile,desktopandweb applications; Musthaveexperienceinwritingcustomexploitationscriptsand utilities; Possessionofexcellentoralandwrittencommunication skill; Knowledgeofoneormorescriptinglanguagesforautomationandcomplex searches; MusthavecloudsecurityspecializationinSecurity; and Certificationsuchas EC-Council CEH (Certified Ethical Hacker), DevSecOps Professional (CDP) , ISC2 Certified Cloud Security Professional (CCSP), Certified API Security Professional (CASP) , CTMP (Certified Threat Modeling Professional) etc.are preferred. Preferred: Bachelor’sincomputerscience orothertechnical fields; Experienceincloud service providerssuchasAWS, GCP, Azure, Oracleare preferred Experience in implementing and managing security measures within Kubernetes environments, designing and enforcing advanced security protocols for API infrastructure, managing and optimizing our containerized applications using Docker, automating and managing our infrastructure as code using Terraform, automating IT processes and configurations using Ansible, and identifying and mitigating potential security threats through comprehensive threat modeling practices. SolidanddemonstrablecomprehensionofInformationSecurityincludingOWASP/SANS,SecurityTestCase development(ormis-usecase). Understandingofsecurityessentialsincluding;networkingconcepts,defensestrategies,andcurrentsecurity technologies Abilitytoresearchandcharacterizesecuritythreatstoincludeidentificationandclassificationofapplicationrelated threat indicators Howyouwill Grow At Deloitte,we have invested a great deal to create arich environment in whichour professionals can grow.We want all ourpeopleto developin theirown way,playingto theirown strengthsastheyhonetheirleadershipskills.And,as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities—including exposuretoleaders,sponsors,coaches,andchallengingassignments—tohelpacceleratetheircareersalongtheway. No two people learn in exactly the same way. So, we provide a range of resources, including live classrooms, team-basedlearning,andeLearning.DeloitteUniversity(DU):TheLeadershipCenterinIndia,ourstate-of-the-art, world-classlearningcenterintheHyderabadoffice,isanextensionoftheDUinWestlake,Texas,andrepresents a tangiblesymbolofourcommitmenttoourpeople’sgrowthanddevelopment. ExploreDU:TheLeadershipCenterin India . Benefits AtDeloitte,weknowthatgreatpeoplemakeagreatorganization.Wevalueourpeopleandofferemployeesabroad range of benefits. Learn more about what working at Deloitte can mean for you. Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy,centered,confident,andaware.Weofferwell-beingprogramsandare continuouslylookingfornewwaysto maintainaculturethatisinclusive,invitesauthenticity,leveragesour diversity,andwhereourpeopleexcelandlead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationshipswithourclients,ourpeople,andourcommunities.Webelievethatbusinesshasthepowertoinspireand transform.We focus on education,giving,skill-basedvolunteerism,and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. #CA-LD Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 301449

Summary Position Summary ApplicationSecurity—Solution Delivery Advisor Deloitte’s CyberRiskServices helpourclientstobesecure,vigilant,andresilientinthefaceofanever-increasing array of cyber threats and vulnerabilities. Our Cyber Risk practice helps organizations with the management of information and technology risks by delivering end-to-end solutions using proven methodologies and tools in a consistent manner.Ourserviceshelporganizationsto address,in atimelymanner,pervasiveissues,suchasidentity theft, data security breaches, data leakage, cyber security, and system outages across organizations of various sizes and industries with the goal of enabling ongoing, secure, and reliable operations across the enterprise. Deloitte’sCyberRiskServiceshavebeenrecognizedasaleaderbyanumberofindependentanalystfirms. Kennedy Consulting Research & Advisory, a leading analyst firm, recently named Deloitte a global leader in cyber security consulting. Source: Kennedy Consulting Research & Advisory; Cyber Security Consulting 2013; Kennedy Consulting Research & Advisory estimates © 2013 Kennedy Information, LLC. Reproduced under license. Workyouwill do As a Consultant in the hybrid operate business, you are responsible for adhering to the defined operatingproceduresandguidelinesinoperatingthe applicationsecurityservicesintheManagedServicesmodel, which includes the following: UnderstandandbecompliantwiththeServiceLevelAgreementsdefinedfortheDevSecOps services; Understand and deep knowledge of application security engineering principles, and helping client’s development team and function to follow secure development practices which includes primarily monitoringandperformingthe securitydesignreview,architecturereview,threatmodeling, security testing, secure code review, secure build processes; Well versed with the application deployment and configuration baselines, and understanding of how theapplicationenvironmentoperatesinasecureenvironmentandhowexceptionsarehandledduring operations; Facilitateuseoftechnology-basedtoolsormethodologiestocontinuouslyimprovethemonitoring, management and reliability of the service; Performmanualandautomatedsecurityassessmentofthe applications; Involvedintriaginganddefecttrackingprocesswiththedevelopmentteamandhelpingtheteamto fix issues at the code level based on the priority of the tickets; BealiaisonbetweentheApplicationdevelopmentandinfrastructureteam,andintegratethe processes between infrastructure monitoring and operations processes with the secure development/testing and management processes; Identifying,researchingandanalyzingapplicationsecurityeventswhichmayincludeemergingand existing persistent threats to the client's environment; and Performingactivemonitoringandtrackingofapplicationrelatedthreatactorsandtactics,techniques and procedures (TTPs), that could likely cause an impact to client organization The team Deloitte’s DevSecOps is a standardized process, to help clients with large development functions, and application dependenciesfortheirday-to-dayoperations.Theprocessenablestheclienttoaddresskeyvulnerabilitiesandrisks associated with their various application environment at different stages of their development lifecycle. At the core of our Application Security Managed Services Team professionals monitors, collects and analyses security related issues on application environment (both at code level and infrastructure level), that may potentially become a threattoanorganization.Thisdetectionofapplicationthreats/vulnerabilitiesiscarriedoutusingauniqueblendofour applicationsecuritytestingandmonitoringtoolsandintelligencedatacollectedthroughourvastexperiencewithinthe Advice and Implement business. Required: Minimumof3-5years’experienceinapplicationsecuritydevelopment,securitytesting,deploymentand security management phases; Deepinterestinapplicationspecificvulnerabilities,codedevelopmentandinfrastructure knowledge; Investigativeandanalyticalproblem-solving skills; Experienceincollecting,analyzing,andinterpretingqualitativeandquantitativedatafromdefinedapplication security services related sources (tools, monitoring techniques etc.) KnowledgeandexperienceofOWASPTop10,SANSSecureProgramming,SecurityEngineering Principles; Hands-onexperienceinperformingcodereviewofdotNet,JavaandSwiftand objectiveC code; Hands-onexperienceinrunning,installingandmanagingSAST,DAST , SCA andIASTsolutions,suchasCheckmarx, Fortify and Contrast in large enterprise Understandingofleadingvulnerabilityscoringstandards,suchasCVSS,andabilitytotranslatevulnerability severity as security risk; Hands-onexperienceonatleastoneCI/CDtoolsetandbuildingpipelines usingTeamcity,Bamboo,Jenkins, Chef, Puppet, selenium, AWS and AZURE DevOps; HandsonexperienceoncontainertechnologysuchasKubernetes,Dockers,AKS, EKS. Knowledgeofcloudenvironmentsanddeploymentsolutionssuchasserverless computing; Handsonexperiencein penetrationtestingofmobile,desktopandweb applications; Musthaveexperienceinwritingcustomexploitationscriptsand utilities; Possessionofexcellentoralandwrittencommunication skill; Knowledgeofoneormorescriptinglanguagesforautomationandcomplex searches; MusthavecloudsecurityspecializationinSecurity; and Certificationsuchas EC-Council CEH (Certified Ethical Hacker), DevSecOps Professional (CDP) , ISC2 Certified Cloud Security Professional (CCSP), Certified API Security Professional (CASP) , CTMP (Certified Threat Modeling Professional) etc.are preferred. Preferred: Bachelor’sincomputerscience orothertechnical fields; Experienceincloud service providerssuchasAWS, GCP, Azure, Oracleare preferred Experience in implementing and managing security measures within Kubernetes environments, designing and enforcing advanced security protocols for API infrastructure, managing and optimizing our containerized applications using Docker, automating and managing our infrastructure as code using Terraform, automating IT processes and configurations using Ansible, and identifying and mitigating potential security threats through comprehensive threat modeling practices. SolidanddemonstrablecomprehensionofInformationSecurityincludingOWASP/SANS,SecurityTestCase development(ormis-usecase). Understandingofsecurityessentialsincluding;networkingconcepts,defensestrategies,andcurrentsecurity technologies Abilitytoresearchandcharacterizesecuritythreatstoincludeidentificationandclassificationofapplicationrelated threat indicators Howyouwill Grow At Deloitte,we have invested a great deal to create arich environment in whichour professionals can grow.We want all ourpeopleto developin theirown way,playingto theirown strengthsastheyhonetheirleadershipskills.And,as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities—including exposuretoleaders,sponsors,coaches,andchallengingassignments—tohelpacceleratetheircareersalongtheway. No two people learn in exactly the same way. So, we provide a range of resources, including live classrooms, team-basedlearning,andeLearning.DeloitteUniversity(DU):TheLeadershipCenterinIndia,ourstate-of-the-art, world-classlearningcenterintheHyderabadoffice,isanextensionoftheDUinWestlake,Texas,andrepresents a tangiblesymbolofourcommitmenttoourpeople’sgrowthanddevelopment. ExploreDU:TheLeadershipCenterin India . Benefits AtDeloitte,weknowthatgreatpeoplemakeagreatorganization.Wevalueourpeopleandofferemployeesabroad range of benefits. Learn more about what working at Deloitte can mean for you. Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy,centered,confident,andaware.Weofferwell-beingprogramsandare continuouslylookingfornewwaysto maintainaculturethatisinclusive,invitesauthenticity,leveragesour diversity,andwhereourpeopleexcelandlead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationshipswithourclients,ourpeople,andourcommunities.Webelievethatbusinesshasthepowertoinspireand transform.We focus on education,giving,skill-basedvolunteerism,and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. #CA-LD Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 301444

Flawit InfoSec Services Flawit InfoSec Services is a cybersecurity firm delivering comprehensive, end-to-end security solutions to enterprises, startups, and government organizations. Our core expertise includes vulnerability assessment and penetration testing (VAPT), red teaming, security operations center (SOC) implementation, risk and compliance advisory, cloud and DevSecOps security, identity and access management (IAM), and more. With a client-first approach, our certified professionals apply global frameworks like OWASP, NIST, and MITRE ATT&CK to secure digital environments and build long-term resilience against evolving threats. Role – Penetration Tester (On-site, Nashik) We are looking for a skilled Penetration Tester to join our team and lead offensive security engagements across diverse environments. The role involves simulating real-world attacks, identifying security flaws, and helping clients strengthen their cybersecurity posture through hands-on testing and tailored recommendations. Key Responsibilities: Conduct detailed vulnerability assessments and penetration tests on web applications, mobile apps, APIs, networks, wireless environments, cloud infrastructure, and thick client systems Perform red teaming exercises, social engineering assessments, and adversary simulations Reverse engineer malware and binaries to identify behavior and possible countermeasures Conduct secure code reviews to detect logic flaws, insecure implementations, and potential backdoors Prepare in-depth technical and executive reports, outlining vulnerabilities, impact, and remediation strategies Communicate findings to internal teams and client stakeholders, and support remediation discussions Develop custom scripts and tools to automate or enhance testing methodologies Stay updated with emerging threats, vulnerabilities, and attack vectors through continuous research Required Skills and Qualifications: Proven experience in web and mobile application penetration testing (OWASP Top 10, API Security) Proficient in tools such as Burp Suite, Metasploit, Nmap, Nessus, Nikto, sqlmap, Wireshark, and Dirbuster Understanding of red team operations, adversary tactics, and MITRE ATT&CK framework Hands-on knowledge of reverse engineering and malware analysis Familiarity with cloud platform security (AWS, Azure, GCP) and DevSecOps pipelines Good understanding of network protocols, operating system internals, and scripting languages (Python, Bash, PowerShell) Ability to write detailed documentation and deliver concise, clear reports to technical and non-technical audiences Bachelor's degree in Cybersecurity, Computer Science, or a related field Relevant certifications are a plus (OSCP, OSEP, OSCE, CRTP, eJPT, CEH, etc.)

Company Description ThreatXIntel is a startup cyber security company that offers customized, affordable solutions to protect businesses and organizations from cyber threats. The team provides services such as cloud security, web and mobile security testing, and DevSecOps. ThreatXIntel takes a proactive approach to security by continuously monitoring and testing clients' digital environments to identify vulnerabilities. Role Description We are seeking a Freelance Financial Analyst to provide data-driven insights that support financial and operational decision-making. This role requires expertise in financial modeling , Power BI , budgeting , and industry analysis — preferably within entertainment, hospitality, or similar service-driven industries . The ideal freelancer will support strategic initiatives by analyzing KPIs, streamlining reporting, and improving forecasting accuracy. This is a flexible freelance engagement , paid hourly. Key Responsibilities Conduct financial analysis , including forecasting, profitability assessment, and variance analysis. Develop and maintain financial models for budgeting and performance tracking. Assist with annual budgets , quarterly forecasts , and long-term financial planning . Monitor and analyze key performance indicators (KPIs) and recommend improvements. Design and maintain Power BI dashboards and clear financial reporting for stakeholders. Support strategic decision-making in areas like pricing, promotions, and capital investment. Collaborate with operations, marketing, and leadership to improve financial outcomes. Ensure alignment with financial best practices, internal controls, and company policies. Provide support for ad-hoc financial projects and analysis as needed. Required Skills & Experience 5+ years of experience as a Financial Analyst , preferably in service-based or multi-unit businesses . Strong proficiency in Power BI and advanced Excel . Proven experience in financial modeling , forecasting, and data analysis. Solid understanding of financial statements and KPI tracking. Excellent communication and reporting skills. Self-motivated with the ability to work independently in a remote freelance environment.

Job Summary: We are seeking a hands-on Senior Release Engineer with deep expertise in release orchestration, strong technical proficiency in Jenkins , and solid working knowledge of AWS infrastructure . This role requires someone who can not only manage and coordinate releases, but also build and optimize the infrastructure and pipelines that power them. The ideal candidate is detail-oriented, highly collaborative, and comfortable supporting early morning production releases in a fast-paced environment. Key Responsibilities: Lead end-to-end release management : planning, coordination, scheduling, execution, and post-release support. Own and maintain CI/CD pipelines using Jenkins and GitOps practices with ArgoCD . Build and manage AWS infrastructure required to support robust and scalable release processes. Integrate and maintain quality and security tools such as SonarQube , JaCoCo , and other DevSecOps components. Work closely with engineering, QA, product, and DevOps to ensure smooth deployments and rollback strategies. Set up and manage branching and merge strategies using Bitbucket . Maintain traceability and visibility of releases through Jira , ensuring alignment with sprint and delivery milestones. Support early morning production releases and provide hands-on troubleshooting and issue resolution. Lead go-live readiness assessments, go/no-go calls, and post-release reviews. Continuously improve release processes through automation, tooling, and process refinement. Required Qualifications: Bachelor’s degree in Computer Science, Engineering, or a related technical field. Expert-level knowledge in Release Management , with at least 6+ years of experience in complex software delivery environments. Expertise in Jenkins for CI automation and pipeline optimization. Strong working knowledge of AWS (EC2, IAM, S3, VPC, CloudFormation or Terraform, etc.). Proven experience building or managing AWS infrastructure to support release pipelines. Solid understanding of Bitbucket for code repository management and branching strategies. Proficient in Jira for tracking releases and managing change tickets. Experience with SonarQube , JaCoCo , and other security/quality scanning tools. Willingness and ability to support early morning or off-hours production deployments . Strong communication and coordination skills for cross-team collaboration. Preferred Qualifications: AWS certification (e.g., AWS Certified DevOps Engineer or Solutions Architect). Familiarity with Kubernetes and Helm charts. Experience in regulated environments (e.g., finance, healthcare, etc.). Comfortable with Agile methodologies and DevSecOps practices.

Seeking a seasoned and hands-on technical professional to lead the design, development, and delivery of scalable software solutions. This role involves both individual contribution and technical leadership guiding a team through best practices, architectural decisions, and Agile execution to deliver business-aligned results. Key Responsibilities: - End-to-End Ownership: Design, develop, test, and deploy secure and scalable solutions aligned with product and business goals. - Team Leadership & Mentorship: Provide direction through code reviews, setting measurable goals, sharing best practices, and offering constructive performance feedback. - Standards & Process Excellence: Define and uphold coding standards, CI/CD pipelines, configuration management, and quality practices across the team. - Architecture & Innovation: Evaluate new tools, frameworks, and practices to continuously improve existing systems and architecture. - Cross-Functional Collaboration: Partner with product managers, technical stakeholders, and teams to shape technical roadmaps and deliver high-impact solutions. - Operational Responsibility: Manage the defect lifecycle through root cause analysis, proactive monitoring, and rapid issue resolution. Track metrics such as defect counts and delivery timelines. - Governance & Certification: Ensure compliance with mandatory training and technical certifications for both self and team. - Client & Stakeholder Engagement: Communicate technical designs, influence key decisions, and maintain a focus on solution quality and stakeholder satisfaction. - Project Delivery: Drive successful Agile project execution, handling estimation, risk management, scheduling, and team coordination. - Domain & Process Leadership: Apply domain expertise to enhance technical solutions and promote best practices through internal communities of practice. Required Skills & Experience: - 10+ years of professional experience in software development - Proficient in Java, Spring Boot, and either React with TypeScript or Node.js - Strong expertise in Microservices, API design (REST/GraphQL), and message-based architecture (Kafka preferred) - Solid understanding of relational and NoSQL databases - Hands-on experience with at least one cloud platform (AWS, Azure, or GCP) - Experience designing and explaining complex distributed systems - Proven ability to lead Agile teams and communicate effectively with both technical and non-technical stakeholders Must-Have Skill Combinations: - Option 1: Java, Spring Boot, React, TypeScript - Option 2: Java, Microservices, API, Kafka Preferred Qualifications: - Experience in large-scale domains such as warehouse or retail platforms - Involvement in internal knowledge-sharing or technical community development - Exposure to DevSecOps or cloud-native practices Additional Information: - Immediate to 30-day joiners only - Career continuity and role stability are essential - Role excludes engagement with specified restricted clients (to be shared at a later stage),

LogiNext is looking for a Principal Engineer - Security to join our team! As a Principal Engineer - Security, you’ll lead the effort to design, implement, operate, support, and maintain the security infrastructure and supporting tools that are necessary to protect internal and external assets on networks that support our corporate infrastructure and applications. You’ll be the SME and primary technical resource for projects, and you’ll facilitate outstanding documentation of the architecture, configurations, processes, maintenance procedures, and service desk support functions. The well qualified candidate will possess the ability to integrate at a high level the knowledge of several areas including network security, IAM, DevSecOps, continuous monitoring, enterprise desktop security, zero-trust architecture principles, security incident remediation, red/blue team exercises, securing multi-cloud and private cloud environments, and more. As we embrace separation of duties, this role will be a critical check and balance that reviews changes in the environment developed by other cybersecurity teams and thereby ensures changes are appropriate and don’t introduce additional risk/liability. This is an extremely unique opportunity and allows an excellent engineer to build the most efficient processes, workflows, and methodologies for implementing, monitoring, managing, and maintaining the most critical components of the entire organization. The engineer chosen for this position should adapt quickly and manage constant change effectively. Responsibilities: Design, implement, and lead the build-out of security infrastructure and tools Function as the SME for security related infrastructure, architecture, and operations Take functional ownership of all security related architecture and design following standards set forth by the enterprise cybersecurity teams Ensure the quality and accuracy of implementations, upgrades, configuration changes, and break/fix activities Assist the Enterprise Cybersecurity teams with hardening initiatives which include monitoring for baseline configuration compliance across all pertinent systems and tools Identify and make recommendations citing strong evidence for material changes in policies, standards, established architecture, and best practices where necessary to further enhance security posture Work closely with application development teams to ensure a successful implementation of DevSecOps complete with automated testing using tools and processes you will create Requirements: Bachelor’s degree in Computer Science, Engineering, Cyber Security, or a directly related field. Education requirements may be replaced with previous related work experience and cyber security certifications (CISSP, CISM, CEH, Azure Security Engineer, etc.) 4 to 14 years working in the Cyber Security At least one professional level technical certification such as CCNP – Security, GIAC certifications, or another industry-recognized security-related certification Experience in SOC II, ISO and VAPT required 3+ years acting as the SME, architect, or principal engineer on large-scale security infrastructure projects Design and implementation experience with tools such as BigFix, InTune, Imperva, Snort, Nessus/Nexpose, and others that are similar Experience designing and implementing Enterprise wide -authentication and identity solutions Experience with Azure AD/Active Directory Single Sign-On (SSO), Multi-Factor Authentication (MFA), Application Registration, Identity Federation, Automation Experience with automation using PowerShell, Python, Bash, etc… Excellent troubleshooting and root cause diagnosis skills Strong writing and communication skills Strong leadership experience and team management skills. Experience creating and maintain accurate and detailed guidelines and procedures Experience with Agile Scrum Methodology and Azure DevOps

As Manager / Senior Manager Cloud Security at our company, you will play a crucial role in leading the implementation, monitoring, and enhancement of security architecture and controls across Mobileum's hybrid cloud environments. We are looking for a proactive and hands-on individual who can take ownership, drive solutions, and oversee cloud security programs end-to-end while collaborating effectively across teams to maintain a robust security posture. Your core responsibilities will include evaluating, recommending, and implementing key cloud security solutions such as Cloud Security Posture Management (CSPM), Cloud Workload Protection Platforms (CWPP), Identity and Access Management (IAM), Cloud Access Security Brokers (CASB), Web Application Firewalls (WAF), cloud encryption and key management services, Security Information and Event Management (SIEM), and DevSecOps security automation tools. Your focus will be on strengthening our hybrid cloud security posture across AWS, Azure, GCP, and on-premises environments. You will ensure the effective implementation and continuous improvement of vulnerability management and patching programs, enforce security hardening standards, assess and enhance cloud security controls, drive DevSecOps initiatives, lead investigations and resolution of security incidents, define and report on security metrics and KPIs, support audits, assist in customer security assessments, and undertake additional Information Security projects as required. In terms of stakeholder and collaboration management, you will work closely with various teams including Cloud Operations, IT, Engineering, Product, Legal, SOC, and Business units to align cloud security initiatives with organizational goals. Clear communication of cloud security risks, strategies, and remediation plans to technical teams, senior management, and other stakeholders will be crucial. Collaboration on risk assessments, mitigation strategies, incident response activities, and integration of cloud security monitoring capabilities with the Security Operations Center (SOC) will also be part of your responsibilities. As a leader, you will provide guidance, mentoring, and leadership to the Cloud Operations security team, drive a culture of security awareness, facilitate knowledge sharing, and encourage cross-team collaboration to enhance cloud security maturity. Your work style should be hands-on, proactive, solution-oriented, and focused on delivering practical security solutions aligned with business needs. Strong decision-making and problem-solving skills, along with the ability to work independently and as part of a team, will be essential. In terms of qualifications, we are looking for candidates with 7-12 years of experience in cloud security, hands-on expertise in hybrid and multi-cloud environments, strong technical knowledge of AWS, Azure, GCP, and on-premises security architectures and controls, proven ability to evaluate and implement cloud security technologies and processes, experience managing cloud security metrics, reporting, and audit readiness, excellent communication and stakeholder management skills, and familiarity with DevSecOps and secure CI/CD practices. If you possess a Bachelors or Masters degree in Computer Science, Cybersecurity, Information Technology, or a related discipline, along with the relevant certifications such as CCSP, AWS Certified Security Specialty, Azure Security Engineer Associate, Google Cloud Professional Cloud Security Engineer, CISSP, CISM, CISA, Certified DevSecOps Professional (CDP), or PMP, you are encouraged to apply for this position based in Gurgaon.,

As a Senior Release Engineer, you will be responsible for leading end-to-end release management activities including planning, coordination, scheduling, execution, and post-release support. Your role will involve owning and maintaining CI/CD pipelines using Jenkins and GitOps practices with ArgoCD. You will also be tasked with building and managing AWS infrastructure to support robust and scalable release processes. Additionally, integrating and maintaining quality and security tools such as SonarQube, JaCoCo, and other DevSecOps components will be part of your key responsibilities. Collaboration with engineering, QA, product, and DevOps teams will be essential to ensure smooth deployments and effective rollback strategies. You will set up and manage branching and merge strategies using Bitbucket, maintaining traceability and visibility of releases through Jira to align with sprint and delivery milestones. Your support for early morning production releases, hands-on troubleshooting, and issue resolution will be critical in this fast-paced environment. Furthermore, you will lead go-live readiness assessments, go/no-go calls, and post-release reviews. Continuous improvement of release processes through automation, tooling, and process refinement will be a key focus area for you. To qualify for this role, you must hold a Bachelor's degree in Computer Science, Engineering, or a related technical field. You should have expert-level knowledge in Release Management with at least 6+ years of experience in complex software delivery environments. Proficiency in Jenkins for CI automation and pipeline optimization, as well as a strong working knowledge of AWS services such as EC2, IAM, S3, VPC, CloudFormation, or Terraform is required. Experience in building or managing AWS infrastructure to support release pipelines is essential. Moreover, a solid understanding of Bitbucket for code repository management, proficiency in Jira for tracking releases and managing change tickets, and experience with SonarQube, JaCoCo, and other security/quality scanning tools are necessary. You should be willing and able to support early morning or off-hours production deployments, possess strong communication and coordination skills for cross-team collaboration. Preferred qualifications include AWS certification (e.g., AWS Certified DevOps Engineer or Solutions Architect), familiarity with Kubernetes and Helm charts, experience in regulated environments (e.g., finance, healthcare, etc.), and comfort with Agile methodologies and DevSecOps practices.,