150 Ethical Hacking Jobs - Page 6

The Cyber Security E2 role involves working with relevant technologies, ensuring smooth operations, and contributing to business objectives. Responsibilities include analysis, development, implementation, and troubleshooting within the Cyber Security E2 domain.

The Cyber Security role involves working with relevant technologies, ensuring smooth operations, and contributing to business objectives. Responsibilities include analysis, development, implementation, and troubleshooting within the Cyber Security domain.

The Cyber Security role involves working with relevant technologies, ensuring smooth operations, and contributing to business objectives. Responsibilities include analysis, development, implementation, and troubleshooting within the Cyber Security domain.

The Pen Testers role involves working with relevant technologies, ensuring smooth operations, and contributing to business objectives. Responsibilities include analysis, development, implementation, and troubleshooting within the Pen Testers domain.

The Penetration Testing role involves working with relevant technologies, ensuring smooth operations, and contributing to business objectives. Responsibilities include analysis, development, implementation, and troubleshooting within the Penetration Testing domain.

Project Role : Application Lead Project Role Description : Lead the effort to design, build and configure applications, acting as the primary point of contact. Must have skills : SAP Security Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As an Application Lead, you will lead the effort to design, build, and configure applications, acting as the primary point of contact. Your typical day will involve collaborating with various teams to ensure that application requirements are met, overseeing the development process, and providing guidance to team members. You will also engage in problem-solving activities, ensuring that the applications are aligned with business objectives and user needs, while maintaining a focus on quality and efficiency throughout the project lifecycle. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Facilitate knowledge sharing and training sessions to enhance team capabilities.- Monitor project progress and implement necessary adjustments to meet deadlines. Professional & Technical Skills: - Must To Have Skills: Proficiency in SAP Security.- Good To Have Skills: Experience with identity and access management solutions.- Strong understanding of application security best practices.- Experience in configuring and managing user roles and authorizations.- Familiarity with compliance standards related to data security. Additional Information:- The candidate should have minimum 7.5 years of experience in SAP Security.- This position is based at our Hyderabad office.- A 15 years full time education is required. Qualification 15 years full time education

Department: Information Technology Location: Ahmedabad, Gujarat Experience: 10+ Years Education: Bachelors/Masters degree in Computer Science, Cybersecurity, or a related field Certifications Preferred: OSCP, OSCE, OSEP, CRTP, CRTE, GPEN, GXPN, or equivalent Job Summary: We are seeking a highly experienced and skilled Red Team Specialist to join our cybersecurity team. The ideal candidate will lead advanced adversary simulations and penetration testing efforts to evaluate and strengthen the organization’s security posture. This role involves simulating real-world attack scenarios, identifying vulnerabilities, collaborating with Blue Teams, and recommending remediation strategies to enhance threat detection and response capabilities. Key Responsibilities: Adversary Simulation & Attack Execution Conduct full-scale Red Team assessments, emulating advanced persistent threat (APT) tactics, techniques, and procedures (TTPs). Simulate real-world attacks using frameworks and tools like MITRE ATT&CK, Cobalt Strike, Empire, Metasploit, and BloodHound. Exploit vulnerabilities across network infrastructure, cloud platforms, and web applications. Perform lateral movement, privilege escalation, and data exfiltration while evading detection mechanisms. Penetration Testing & Exploitation Perform internal and external penetration testing across enterprise systems. Identify and exploit misconfigurations and security gaps. Assess Active Directory security, including Kerberoasting, NTLM relay, and credential dumping. Develop custom payloads, exploits, and offensive methodologies. Evasion & Anti-Detection Techniques Employ techniques to bypass endpoint detection systems (EDR/XDR), SIEM tools, and behavioral analytics. Test the resilience of Blue Team monitoring capabilities. Implement obfuscation strategies and evasion tactics. Red Team & Blue Team Collaboration Participate in Purple Team exercises to enhance incident detection and response. Collaborate with SOC and threat intelligence teams to refine adversary emulation and response strategies. Contribute to improving incident response playbooks. Reporting & Documentation Document attack chains, vulnerabilities, and testing outcomes in detailed reports. Present technical findings and remediation recommendations to stakeholders. Create post-engagement reports, including MITRE ATT&CK mapping and kill chain analysis. Key Skills & Competencies: Proficient with offensive security tools: Cobalt Strike, Metasploit, Mimikatz, Empire, Covenant Deep understanding of frameworks: MITRE ATT&CK, Cyber Kill Chain, TIBER-EU Advanced expertise in Active Directory attacks , Kerberos exploitation , and lateral movement Strong scripting and automation skills: Python, PowerShell, Bash, C# Hands-on experience with cloud environments (Azure, AWS, GCP) and cloud exploitation Skilled in EDR/XDR evasion and SIEM bypass techniques Proven experience with Red Team / Blue Team collaboration and adversary emulation Analytical mindset with excellent problem-solving and documentation skills

Volvo India is looking for Senior IT Security Officer to join our dynamic team and embark on a rewarding career journey. Ensure the security, safety and well-being of all personnel, visitors and the premises Provide excellent customer service Adhere to all company service and operating standards Remain in compliance with local, state and federal regulations Immediately respond to emergencies to provide necessary assistance to employees and customers Protect the companys assets relative to theft, assault, fire and other safety issues Follow procedures for various initiatives, including fire prevention, property patrol, traffic control and accident investigations

Dear Friends, We have excellent opening for Cyber Security Consultant to Lead our Organisations Security strategy and ensure the Protection of Digital assets network and Data. Manage and oversee security infrastructure, including firewalls, IDS/IPS Required Candidate profile Bachelor degree in Cybersecurity, information Technology, or related field 5-10 yrs of experiences in Cybersecurity Strong knowldge of security frameworks Certifications such CISSP, CISM CEH

Performing critical operations on our Development and Production environments to meet Security and Compliance requirements. Maintaining Security and Compliance by monitoring, scanning, configuring, and patching a vast variety of cloud devices including various Windows and Linux OS systems, VMs, VMware ESXi, K8s nodes/clusters, cloud storage, and networking devices. Maintaining tooling and automation for managing security and compliance process for our internal and client environments. Deploying new architecture, devices, and automation for Security needs. Managing access and change controls for our development and production environments. Maintaining logging, performing analysis, and compiling evidence for Securityand Compliance reviews of our environments. The role is very important in our ability to deliver valuable automated and integrated solutions as a premier offering in IBM Cloud. With this, we have an extremely high demand for meeting the most stringent Security and Compliance standards. In our fast-paced and expanding organization, we foster an environment of continuous innovation and working in agile teams, to deliver the latest technology and provide excellent support to our clients. Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional expertise 8+ years of Overall experience as Security/Compliance Engineer. 3+ years of experience with system automation, scripting, and development 1+ years of experience with Linux system administration or development 1+ years of experience with Windows system administration or development 1+ years of experience with secure engineering practices and standards 1+ years of experience with software engineering and testing 1+ years of experience with Python Strong communication skills in English Preferred technical and professional experience 1+ years of experience with IBM SOS process and tooling, e.g. Nessus, QRadar, Uptycs, CrowdStrike, etc. 1+ years of experience with Windows Active Directory administration or development 1+ years of experience with Microsoft Windows Update or Group Policy Objects (GPO) 1+ years of experience with Access Control with IBM AccessHub 1+ years of experience with ServiceNow, e.g. for Change Management 1+ years of experience with GitHub issue and code management 1+ years of experience with IBM Cloud Risk Management process 1+ years of experience with IBM PSIRT process 1+ years of experience with data privacy and handling 1+ years of experience with ethical hacking and Pentesting 1+ years of experience with Jenkins build and platforms 1+ years of experience with networking, and network security components, firewalls, gateways 1+ years of experience with security standards, authentication, authorization, and encryption protocols 1+ years of experience with VMware administration 1+ years of experience with VMware API integration development 1+ years of experience with IBM Cloud API integration development Experience with Compliance needs across Industry verticals - ISO 27001, SOC2, PCI, HIPAA, etc.

Will be working on Application security testing Skills. Strategize and plan static and dynamic application security testing (SAST/DAST / SCA) tools. Will be responsible for Secure Coding Practices Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional expertise BE / B Tech in any stream, M.Sc. (Computer Science/IT) / M.C.A, with Minimum 5 plus years of experience. Application Security TestingExperience with static and dynamic application security testing (SAST/DAST/ SCA) tools. Secure Coding PracticesKnowledge of secure coding standards (e.g., OWASP Top Ten) and experience in reviewing code for security vulnerabilities. Threat ModelingAbility to conduct threat modeling sessions to identify and mitigate security risks Preferred technical and professional experience Vulnerability AssessmentExperience in conducting vulnerability assessments and penetration testing Application Security TestingExperience with static and dynamic application security testing (SAST/DAST) tools Security ToolsProficiency in using security tools like Burp Suite, Nessus, or Fortify

Required Skills Technology | Incident Response Design SME | Level 4 Support Technology | Certified Ethical Hacking Design SME | Level 4 Support Technology | Penetration Testing and Adversarial Thinking | Level 4 Support Technology | Security Assessment and Scenario Planning | Level 4 Support Technology | Security Assessment and Scenario Planning | Level 2 Support Education Qualification : Engineer - B.E / B.Tech / MCA Certification Mandatory / Desirable : Technology | Offensive Security Certified Expert/Certified Red Team Professional/Certified Purple Team Leader/GDSA/MITRE ATT&CK Defender/GIAC CIH/GIAC CFA / CISSP / CISM / CISA / CEH / CTIA / GMON Delivery Skills required are: - Advanced Technical Skills: - Expertise in conducting and managing penetration tests, red team exercises, and simulated attacks. Deep understanding of network security protocols, architecture, and defense mechanisms. Ability to automate security operations tasks using scripting languages (e.g., Python, PowerShell). Analytical and Problem-Solving Skills: - Capability to collect, analyze, and apply threat intelligence to enhance security measures. Integration of threat intelligence feeds and indicators of compromise (IOCs) into security operations. Skills in conducting comprehensive risk assessments and developing mitigation strategies. Communication and Leadership Skills: - Effective communication of technical security findings and recommendations to non-technical stakeholders. Clear and concise reporting on security incidents, vulnerabilities, and remediation efforts. Ability to lead and mentor a team of security professionals, including red and purple team members. Continuous Learning and Adaptability: - Continuous learning and staying abreast of emerging cybersecurity threats, trends, and technologies. Participation in industry conferences, training programs, and certifications to enhance skills and knowledge. Ability to adapt to evolving threats and changes in the cybersecurity landscape. Value Proposition: - Understand the existing environment and propose any opportunity of improvement. Look at nagging issues in the environment and come out with Get Around solutions by working with vendors and industry experts

Lead and manage the AppSec team consisting of L1 and L2 resources. Serve as the primary point of contact between the Bank and the team for all project-related activities. Monitor daily operations, ensure resource optimization, and address any issues that arise during the engagement. Application & Security Review - Oversee the review of application security including web, mobile, API, and other banking applications. Perform comprehensive reviews of Network Architecture, Source Code, VAPT reports, and configuration audits. Review deliverables from L1 and L2 resources, ensuring completeness and quality. Compliance and Risk Management Reporting Stakeholder Management B.Sc (IT/CS) / B.Tech in Computer Science, Information Technology, or related field. CISSP, CISA, CISM, CRISC 10-15 years of experience in Application Security, Network Security, and IT Risk & Compliance, with hands-on expertise in security assessments, process audits, and application reviews. Experience in BFSI is preferred. Skills Vulnerability Assessment, Manual Penetration Testing using OWASP checklists, Penetration Testing, OWASP Top 10, OWASP ZAP, Ethical Hacking, Static/dynamic testing of mobile applications, Vulnerability Mitigation Education - BE/B Tech, BCA,BSC IT/Since, M Tech/ME/MS/MSC/MCA

Web and Network PT Consultant Roles & responsibilities Perform manual application penetration tests on one or more of the following to discover and exploit vulnerabilities: web applications, internal applications, APIs, internal and external networks, and mobile applications Plan and execute network penetration testing and Red teaming assessments to simulate real-world attack scenarios. Perform manual network and application penetration tests on internal network, Active Directory environment, web applications. Perform social engineering assessment to assess the security awareness and physical security controls of the organization. Ability to independently research for new vulnerabilities in systems and software and modify and customize tools, known exploits, POCs and scripts to meet operational requirement. Research and stay up-to-date with the latest attack techniques, tools, and emerging threats. Present technical reports to clients, explaining the outcomes of the testing and providing detailed insights and recommendations. Collaborate effectively with cross-functional teams, including developers, IT operations, and business stakeholders to integrate security best practices seamlessly into project workflows. Provide mentorship and guidance to junior security staff and foster a culture of proactive security awareness within the organization. This role is for you if you have the below We are seeking an experienced and highly skilled Consultant with over 5+ years of working experience in the field of cybersecurity, including network penetration testing, vulnerability assessment, Active directory testing, phishing assessment and web application penetration testing. The ideal candidate will possess a strong working knowledge of Network protocols, performing OSINT to identify publicly available information and testing and exploiting Microsoft services like Windows Servers, Active directory, Certificate Services. Mandatory technical & functional skills Perform manual application penetration tests on one or more of the following to discover and exploit vulnerabilities: web applications, internal applications, APIs,internal and external networks, and mobile applications 5+ years of professional experience in cybersecurity, with a focus on Network penetration testing and Red teaming. Strong understanding of Network protocols, web applications, cryptography various operating systems and security technologies. Strong understanding of exploitation of Microsoft platform used in enterprise environment such as windows Servers, Active Directory Certificate Service, Azure, etc. • Experience in one or more of the following a plus: Web application penetration testing, mobile application penetration testing application architecture and business logic analysis. Relevant certifications, such as GWAPT, OSCP, OSEP, CRTP, CRTO OSWA, are strongly preferred.

Will be working on Application security testing Skills. Strategize and plan static and dynamic application security testing (SAST/DAST / SCA) tools. Will be responsible for Secure Coding Practices Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional expertise BE / B Tech in any stream, M.Sc. (Computer Science/IT) / M.C.A, with Minimum 5 plus years of experience Application Security TestingExperience with static and dynamic application security testing (SAST/DAST/ SCA) tools. Secure Coding PracticesKnowledge of secure coding standards (e.g., OWASP Top Ten) and experience in reviewing code for security vulnerabilities. Threat ModelingAbility to conduct threat modeling sessions to identify and mitigate security risks Preferred technical and professional experience Vulnerability AssessmentExperience in conducting vulnerability assessments and penetration testing Application Security TestingExperience with static and dynamic application security testing (SAST/DAST) tools. Security ToolsProficiency in using security tools like Burp Suite, Nessus, or Fortify

Title: Offensive Security Engineer (Penetration Testing at system level) Location: Pune, 411045 (Hybrid) Job Details: Penetration testing experience at system level (This involves stuff like exploiting vulnerabilities, compromising accounts , gaining initial access , execution like hijacking inter process communication , persistence by locking out users by compromising the booting process of Linux operating systems , horizontal and vertical privilege escalation , etc).

Synergy IT is seeking an experienced Cybersecurity SOC Analyst to join our dynamic team. The ideal candidate will have a strong background in cybersecurity with a focus on Microsoft Sentinel, Azure Security, and Meraki Network solutions. As a Cybersecurity Analyst, you will play a critical role in safeguarding our organizations IT infrastructure by monitoring, analyzing, and responding to security incidents. Key Responsibilities: Security Monitoring & Incident Response: Utilize Microsoft Sentinel to monitor security events, analyze alerts, and manage incidents. Investigate and respond to security incidents using Azure Security tools and methodologies. Implement and manage security monitoring solutions, including those from Meraki for network security. Threat Intelligence & Analysis: Continuously evaluate and update threat intelligence to identify potential threats and vulnerabilities. Perform in-depth analysis of security events and incidents to determine their nature and impact. Security Management: Develop and implement security policies, procedures, and best practices for Microsoft Sentinel, Azure Security, and Meraki Networks. Ensure compliance with industry regulations and standards. System & Network Security: Configure, manage, and troubleshoot security solutions on Azure and Meraki Network environments. Conduct regular security assessments and vulnerability scans to identify and remediate potential security weaknesses. Collaboration & Reporting: Work closely with IT and cybersecurity teams to enhance overall security posture. Prepare and present detailed incident reports and security analyses to senior management. Continuous Improvement: Stay up-to-date with the latest cybersecurity trends, threats, and technologies. Recommend and implement improvements to security practices and tools. Qualifications: Experience: Proven experience as a Cybersecurity SOC Analyst or similar role with a strong focus on Microsoft Sentinel, Azure Security, and Meraki Network solutions. Demonstrated experience in incident detection, analysis, and response. Skills: Proficient in using Microsoft Sentinel for security information and event management (SIEM). Hands-on experience with Azure Security services and tools. Strong knowledge of Meraki Network solutions and their integration with security practices. Familiarity with other security tools and frameworks is a plus. Certifications: Relevant certifications such as CISSP, CISM, CEH, or Microsoft Certified: Azure Security Engineer Associate are highly desirable. Education: Bachelors degree in Computer Science, Information Technology, Cybersecurity, or a related field. Advanced degree or relevant certifications are a plus.

Job Description GLBITM/HR/TA/JD-0425 GL Bajaj (Institute of Technology & Mgmt.) A Glimpse! Passionate education provider in multi disciplines at undergraduate and postgraduate level (B.Tech, MBA, MCA) Vibrant Learning Ecosystem on the campus, has inspired and brilliant students. GL Bajaj Group was incepted in year 1997 , carrying a winning legacy of 12 institutions running diverse higher education programs. GL Bajaj Group, has +14,000 students , +800 faculty members , 12 institutions, and 6 campuses with +300 acres of land. NAAC A+ accredited , 4 stars from Ministry of Education, NIRF rank holder, Research & Incubation centre, Entrepreneurship development and top quality placement for students Vision to give globally competent & socially sensitive professionals to the society. Highly inquisitive students who take risks, experiment, and put novel ideas into action. Sharpens the Technical as well as Life Skills of students Developing young leaders. Have world class collaborative LEARNING infrastructure for teaching & learning practices. Hiring Distinguished faculty members from the Institutes of repute . We nurture versatile INTRAPRENEURs . Our core belief is in nurturing Diverse, inclusive, equity knowledge gems Hi Tech Campus has a beautiful , serene environment & students enjoy learning. Believes in relentless change and desire to improve . We are looking for passionate researchers/out of box thinkers/academicians who have a go-getter attitude, have fire to innovate , works with technology driven progressive mindset and execute the concept of sustainability in each task ( paperless ) in learning process delivery. We are offering to the right candidate an excellent compensation package along with the tools and the environment to foster intellect and new ideas. If you want to CONTRIBUTE meaningful to the society at large, join us & Find your SPARK! ABOUT JOB Designation: Technical Trainer for Centre for Career Development for Cybersecurity Job Purpose & Role: To train the students in new age technology (computer Science Engineering - Cybersecurity) to bridge the Industry & academia gap leading to increase in the employability of the students. Knowledge Proven experience in devising technical training programs to UG/PG Engineering students in Higher Education Institutions To be abreast in latest software as per Industry standard & having knowledge of modern training techniques and tools to deliver the technical subjects To prepare training material (presentations, worksheets etc.) To execute training sessions, webinars, workshops for students To administer, monitor and keep report data on completed courses, absences, issues etc. for effective outcome based subject delivery To observe and evaluate results of training programs To determine overall effectiveness of programs and make improvements Technical Skills (Subject Areas of Delivering Training with Practical Approach) Cybersecurity, Network Security, Cloud Security, Crptography, Vulnerability Assessment & Penetration Testing, Digital Forensics, DevSecOps, Application Security, AI &ML in Cybersecurity DSA, Advanced DSA, DBMS, OOPS, Programming Languages C, C++, JAVA C/C++, Data structure using C, OOPS Concepts, PL/SQL Advanced JAVA, Core JAVA, C#, (Full Stack using JAVA) UI (CSS, HTML, JAVA SCRIPT, REACT JS, ANGULAR JS Advanced DSA, DP, Competitive Coding Functional Skills Passionate Technical, aptitude Trainer Competency of Nurturing Students Excellent interpersonal & content delivery skills. Excellent Communication skills. Ability to engage students constructively. Academia & Industry connect Attributes Creative in delivering training. Dynamic, energetic, team player, thrives among strong colleagues. Ability to work in fast paced evolving environment . Be willing and able to exercise judgment and take risks. Accept criticism and constructive feedback , while being extremely adaptable and flexible. Reflection of an impeccable persona in walk-talk while dealing with academia High spiritual quotient (Social quotient -SQ, Intelligence quotient - IQ, Emotional Quotient - EQ) Qualification & Years of Experience as per norms: B.Tech & M.Tech IT/CSE OR MCA from Top tier Institutes & reputed universities PhD degree is desirable Industry & Global Experience is desirable. Salary as per norms Location: Greater Noida, Delhi/NCR Apply for the position by sending your CV on careers@glbitm.ac.in You may visit our websites career page at www.glbitm.ac.in www.GLBITM.AC.IN GLBITM/HR/TA/JD

EC-Council is inviting Graduates from Engineering/ Computer Sciences/ Cyber security/IT domain to apply for an exciting opportunity in our Cyber security team. Position: Cyber Security Researcher/Cyber security Editor Location: Hyderabad & work onsite About EC Council EC-Council is the worlds largest cybersecurity technical certification body. We operate in 145 countries globally, and we are the owner and developer of various world- famous cybersecurity programs. We are proud to have trained and certified over 220,000 information security professionals globally that have influenced the cybersecurity mindset of countless organizations worldwide. www.eccouncil.org Job responsibilities: Research and analyze cyber security topics and data from various sources, such as reports, newsarticles, blogs, white papers, case studies, etc. Write clear, concise, and engaging content for different audiences and platforms Editi the content for accuracy, grammar, spelling, and punctuation. Collaborate with other writers, editors, designers, developers, and subject matter experts to ensure the quality and consistency of the content. Keep abreast of the latest developments and trends in cyber security. Manage multiple writing assignments simultaneously by prioritizing project deadlines. Follow the style guidelines and best practices of the organization Who Should Apply: Technical Graduates/Postgraduates with a flair for writing Candidates with strong command of the English language as well as the ability to write in different styles and tones. A good knowledge of cyber security concepts, trends, technologies, threats, and best practices, as well as the ability to research and verify information from credible sources. A passion for learning and staying updated on the latest developments and innovations in cyber security This is a full-time position for a Researcher who can write accurate technical content Students completing their graduation this year are also encouraged to apply. Why EC Council: EC-Council is a global organization that offers - Cybersecurity certifications & Industry-recognized credentials that demonstrate the competence and credibility of the certified professionals. Hands-on training and practical labs that simulate real-world scenarios and challenges. Access to a global network of peers, mentors, and experts who can provide guidance and support. Opportunities for professional advancement & access to a variety of world-class Cyber security certifications. Some of the certifications offered by EC-Council are: Certified Ethical Hacker (C|EH): Certified Network Defender (C|ND): Computer Hacking Forensic Investigator (C|HFI): Certified Chief Information Security Officer (C|CISO) Additional Information We are an equal opportunity workplace and an affirmative action employer. We are always committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status and we do not discriminate on the basis of such characteristics, or any other status protected by the laws or regulations in the locations where we work. EC-Council is committed to working with and providing reasonable accommodation to individuals with disabilities. If you have a medical condition or disability which inhibits your ability to complete any part of the application process and are in need of a reasonable accommodation to complete the process, please contact us ecchr@eccouncil.org and let us know how we may assist you. This notice together with our Privacy Policy and Terms of Use of this website and any other documents we mention here are meant to inform you on what personal data about you we collect, use, disclose, share or otherwise process when you are applying for a job at EC-Council or when EC-Council contacts you for recruitment purposes. Please read carefully to understand our views and practices on how we protect your personal data - Privacy Policy EC-Council (eccouncil.org).

Security test engineer having 4+ years experience in software/IT industry preferably with B.Tech./B.E./M.Tech (preferably in computer science)/ MCA Good experience doing the security/penetration Security test engineer having 4+ years experience in software/IT industry preferably with B.Tech./B.E./M.Tech (preferably in computer science)/MCA Good experience doing the security/ penetration testing for enterprise products Basic understanding in domain pf BPM, ECM and CCM products will be an additional advantage. Strong experience in using the DAST tools like Burp professional, Kali Linux, or any other industry recognized tools Experience in using SAST tools like Veracode, SonarQube, JFrog or CheckMarx would be the added advantage Strong understanding of protocols, SSL, transport layers, encryption and cryptography. Strong experience in manual penetration testing using different hacking techniques, Well versed in security standards like PCI-DSS, OWASP, HIPAA etc. Good Experience in Linux and SQL. API penetration testing. Knowledge of XSS, SQL Injection and multiple type of security payloads. Knowledge of cloud computing AWS, Azure and Openshift Certifications like CISSP, CEH, or GSEC are preferred. Ability to work as a team player in a target driven work environment meeting deadline. Adequate knowledge of web related technologies (Web applications, Web Services and Service Oriented Architectures) and of network/web related protocols Interest in all aspects of security research and development Key Skills: Ethical Hacking, Kali Linux, Penetration testing, Security testing.

Project Role : Security Engineer Project Role Description : Apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Must have skills : Node.js Good to have skills : NA Minimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Engineer, you will apply security skills to design, build, and protect enterprise systems, applications, data, assets, and people. You will provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Your day will involve ensuring the security of critical assets and systems. Roles & Responsibilities: Expected to be an SME Collaborate and manage the team to perform Responsible for team decisions Engage with multiple teams and contribute on key decisions Provide solutions to problems for their immediate team and across multiple teams Implement security measures to protect systems and data Conduct security assessments and audits Develop security policies and procedures Professional & Technical Skills: Must To Have Skills: Proficiency in Node.js Strong understanding of cybersecurity principles Experience with security tools and technologies Knowledge of network security protocols Familiarity with cloud security best practices Additional Information: The candidate should have a minimum of 5 years of experience in Node.js This position is based at our Bengaluru office A 15 years full-time education is required Qualification 15 years full time education

Responsibilities: Deliver engaging cybersecurity training (offline) Simplify core topics for beginners Guide learners in exam prep and concept clarity Address student queries and provide mentorship Support learners toward certification success

About the Opportunity Job TypePermanent Application Deadline31 May 2025 About The Role Title Technical Analyst Application Security Department Global Cyber & Information Security Location Bengaluru, India Reports To Senior Technical Consultant - Application Security Level Security Analyst -2 Were proud to have been helping our clients build better financial futures for over 50 years. How have we achieved this? By working together - and supporting each other - all over the world. So, join our GCIS - Application Security team and feel like youre part of something bigger. Department / Team Description The Global Cyber & Information Security (GCIS) department is a part of the Global Technology department. The Technology function globally provides IT services to the Fidelity International business. These include development and support of business applications that underpin our revenue, operational, compliance, finance, legal, marketing and customer service functions. The broader organisation incorporates Applications, and Infrastructure services that the FIL relies on to operate on a day to day basis including data centre, networks, proximity services, security, voice, incident management and remediation. About role As Technical Analyst, one would be responsible to understand technical and architectural implementation. Use this understanding to conduct the Design, Code review and Penetration Testing. The role will involve working closely with development groups to securely design, develop and implement services and components. This role demands interaction with development groups, Enterprise Architecture, Information Security Officer (ISO) and vendors. Aim is to ensure applications are compliant with FIL Information Security Standards. The successful candidate will be able to demonstrate an innovative and enthusiastic approach to technology, implementation, adoption and problem solving. The candidate shall display good interpersonal skills and show confidence and ability to interact professionally with people at all levels. Key Responsibilities Review Software applications for potential security vulnerabilities by conducting application security reviews i.e. Requirements review, Code Review, Software Composition Analysis, Penetration testing (Ethical Hacking), Vendor Risk Assessment. Liaise with Developers, Architects, Project Managers and Vendors to understand the working of an application, how effectively they are implemented and where security mechanisms are employed. Understand the business requirements, evaluate potential products / solutions and provide technical recommendations. Be hands on with technology and to contribute to the design, development and support of projects with the Security recommendations. Review design and development artefacts to ensure security quality in the products being developed. Evolve security review processes in accordance with Information Security Standards and market best practices. Protect Fidelity information assets by promoting the understanding and acceptance of Information Security Policy and Standards. Experience and Qualifications Required Must Have 2-3 years of conducting application security assessments i.e. Code Review and Penetration testing (Ethical Hacking) and Vendor Risk Assessment. Knowledge of attack vectors from OWASP, WASC and mitigation of the same, open-source software security assessment tools. Knowledge of web technologies (Java/J2EE/Struts/ .NET / PHP / Java Script etc.). Good understanding of HTTP, HTTPS, SSL, TLS, SFTP Protocols Working knowledge of Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST) Working knowledge of executing source code analysers to unearth security vulnerabilities in the source code Run and analyse security Penetration testing and pinpoint security issues and suggest mitigations. Capable of understanding end user requirements from security perspective Sound business and technical acumen Good to Have Excellent problem-solving and critical-thinking skills Understanding of emerging technologies and corresponding security threats Self-motivated, flexible, with a can do attitude. Feel rewarded For starters, well offer you a comprehensive benefits package. Well value your wellbeing and support your development. And well be as flexible as we can about where and when you work finding a balance that works for all of us. Its all part of our commitment to making you feel motivated by the work you do and happy to be part of our team. For more about our work, our approach to dynamic working and how you could build your future here, visit careers.fidelityinternational.com. For more about our work, our approach to dynamic working and how you could build your future here, visit careers.fidelityinternational.com.

Hi, We are looking to expand our Cyber Security Team. Job Location is Faridabad Role & responsibilities Cyber security and network security testing including operation of test equipment in accordance with Regulatory Standards and requirements. use his/her expertise and experience for testing, planning and report writing. Responsible for contributing to accomplishment of department goals and objectives. Full ownership of timely delivery of project. collaborate with cross-Functional teams. Stay up to date with emerging threats, vulnerabilities, testing tools, guidelines. Recommend best practices. Provide training to other team members as needed. Conduct multiple projects within tight deadlines. Testing report preparation and review. Participate in incident response activities as needed. Preferred candidate profile Graduate in computer Science/Information Technology/ Cyber Security. Must be CEH (EC Council). Highly motivated and certified in Ethical hacking and Network Security/Cyber Security. Expertise in penetration tests, vulnerability assessments and security audits on various computer systems, networks and applications to identify potential security risks and vulnerabilities. Strong knowledge of network protocols, operating systems, and security technologies. Experience with security tools such as Metasploit, Nessus, burp Suite and Wireshark. Also, OWASP top 10. Excellent analytical, problem-solving, and communication skills. Teamwork and management. Willingness to travel if required. Salary and benefits: Salary will be based on competency Other Benefits Medical and Accidental Insurance Transport facility (Nearest Metro station) Food facility 5 days/week Interested candidate please share your updated resume to nikita.singh@nemko.com or apply to this job here on naukri.com

Position : Senior Cyber Security Engineer Location : Madurai Experience : 5+ Years Roles and Responsibilities: 1. Security Infrastructure Design: Develop and design security architectures for complex systems. Implement security solutions that effectively protect information systems and data. 2. Implementation of Security Measures: Deploy security technologies, including Firewalls, intrusion detection/prevention systems, antivirus software, and encryption solutions. Configure and manage security tools to detect and respond to security incidents. 3. Network Security: Implement and manage network security measures to protect against unauthorized access, attacks, and vulnerabilities. 4. Vulnerability Management: Conduct vulnerability assessments and penetration testing to identify and remediate security weaknesses. Develop and implement strategies for addressing vulnerabilities in a timely manner. 5. Identity and Access Management: Design and implement access controls to ensure only authorized users have appropriate access. Manage identity and access management solutions to protect against unauthorized access. 6. Security Policy and Compliance: Develop and enforce security policies, standards, and procedures. Ensure compliance with relevant laws, regulations, and industry standards. 7. Incident Response and Forensics: Participate in incident response activities, including investigation, analysis, and resolution of security incidents. Conduct digital forensics to identify the root cause of security incidents. 8. Security Awareness and Training: Provide security awareness training to employees to promote a security-conscious culture. Advise on best practices for maintaining security in daily operations. 9. Security Research and Evaluation: Stay informed about the latest security trends, threats, and technologies. Evaluate new security solutions and technologies for potential adoption. 10. Collaboration and Communication: Collaborate with other IT teams, departments, and stakeholders to implement security measures. Communicate security risks and recommendations to technical and non-technical audiences. 11. Impact study of various alerts and categorization based on priority. 12. Strong experience in managing Cyber Security within IT Application, Cloud, Network, IT Infrastructure, etc. 13. Having an active role in all aspects of the project - from first meeting with clients and identifying the Security issues to final recommendations and implementation of the Security change. 14. Good experience in troubleshooting and resolving issues related to Firewall, Cybersecurity Attack, Threat Management and etc 15. Good understanding of the current IT Security practices, threat analysis, privacy and risk policies especially covering Data Loss Prevention (DLP) and etc. 16. Consistently develop security procedures and standard operating documents related to IT Security Operations covering configuration, patching, troubleshooting guides etc. 17. Ability to handle high pressure situations with Good Analytical skills, Problem solving and Interpersonal skills. 18. Find cost-effective solutions to cyber security problems Required Skills and Qualifications: 1. More than 5 years of experience in the Cybersecurity of IT field 2. Strong understanding of network and systems security principles. 3. Proficiency in configuring and managing security technologies and tools. 4. Knowledge of encryption protocols, firewall configurations, and intrusion detection/prevention systems. 5. Experience with vulnerability assessment tools and methodologies. 6. Familiarity with security compliance frameworks (e.g., NIST, ISO 27001). 7. Understanding of identity and access management concepts. 8. Incident response and digital forensics skills. 9. Excellent problem-solving and analytical skills. 10. Strong communication and collaboration skills. Certifications: Certified Information Systems Security Professional (CISSP) Certified Ethical Hacker (CEH) Certified Information Security Manager (CISM) CompTIA Security+ Shift Timings: 8:30 AM to 5:30 PM / Monday to Friday Please share the CV with: careers@golden-hippo.com Website: www.golden-hippo.com