Role 1SOC Engineer (L1 / L2) About The Role Identifying, monitoring and responding to events and incidents that occur in the network Monitoring alerts from SIEM Creating and handling ticket related in security Ensuring SLAs are met; escalate the incident when SLAs are not met Investigating and analyzing network threats, and performing root cause analysis of incidents that occur in the network; Identifying and collecting data associated with initial security investigation finding. Collects data and context necessary to be relayed later to IR team. Hands on experience triaging security alerts, events, logs and artifacts Creates and maintains standard operating procedures and other similar documentation. Work in a team of 24/7 members 2 4 years experience as SOC Analyst At least 1 year hands on experience with SOAR platform, SIEM tools and log management tool In depth knowledge of security concepts such as security operations center (SOC), cyber attacks and techniques, threat vectors Hands on experience triaging security alerts, events, logs and artifacts Excellent analytical and problem solving skills as well as interpersonal skills to interact with team members, vendors and upper management Familiarity in malware and attack techniques Forensics experience is advantage Knowledge in Basic Linux is advantage Qualifications Experience of working within medium to large scale complex IT environments in telecommunication industry Strong oral and written communication skills Forensics experience is advantage Excellent attention to detail Resilient and approachable with the ability to work successfully in a dynamic, fast paced environment Ability to operate as a team player, with a flexible and positive attitude Strong analytical and problem solving skills Ability to work under pressure A self starter able to work independently but comfortable and effective working in a team environment. Commitment to accuracy and precision with all outcomes At least Bachelors degree in Network Engineering, Computer Science, Computer Information System or any equivalent degree/experiences. Ability to communicate written and verbally in English and Japanese (preferred). CertificationsPreferred Splunk, CEH, CompTIA+, Analyst Fundamentals Training, Security Analytics Training Acceptance Criteria for SelectionWith due selection process of Customer

Lead and manage a team of backend and Frontend developers, providing technical guidance and mentoring Develop high-quality, efficient, and scalable code that meets business requirements and design specifications Collaborate with front-end developers, project managers, and other stakeholders to ensure the seamless integration of front-end and backend systems Design and implement data storage solutions, including databases and caching mechanisms Ensure the reliability, scalability, and security of backend systems Manage deployments and infrastructure, working closely with DevOps teams to ensure the availability and performance of backend systems Keep up-to-date with emerging trends and technologies in backend development and integrate new technologies where appropriate Requirements Bachelors or Masters degree in Computer Science or a related field, Proven experience as a Full stack developer, with 8 years of experience in a similar role Strong knowledge of Java , programming language Experience with relational and non-relational databases, such as MySQL , MongoDB, or Cassandra Experience with web application frameworks, such as Spring , Flask, or Django Experience with cloud computing platforms, such as AWS or Azure Experience with DevOps tools and practices, such as Docker,

Key Responsibilities: Product Strategy: Collaborate with cross-functional teams to define and execute the product strategy, aligning with business goals and market demands. Market Research: Conduct thorough market research to identify trends, customer needs, and competitive landscape, providing valuable insights for product development. Feature Definition: Clearly define and prioritize product features, ensuring they meet the requirements of B2B clients and contribute to the overall success of the product. Roadmap Planning: Develop and communicate a comprehensive product roadmap, outlining key milestones and timelines for product releases. User Experience: Work closely with UX/UI teams to create intuitive and user-friendly interfaces, enhancing the overall user experience for business customers. Stakeholder Collaboration: Engage with internal and external stakeholders to gather feedback, address concerns, and ensure alignment between product development and business objectives. Risk Management: Understand and mitigate potential risks associated with product development, compliance, and market changes in the B2B financial landscape. Metrics and Analytics: Define key performance indicators (KPIs) and regularly analyze product performance, making data-driven decisions to optimize product features and user engagement. Qualifications: 4+ years of proven experience in the B2B financial services sector. Strong understanding of financial products and services. Excellent communication and collaboration skills. Demonstrated ability to translate complex technical concepts into simple, understandable language. Experience in the implementation of integrations with internal and 3rd party client systems Experience with agile development methodologies.

We are seeking a skilled and experienced Lead Engineer to join our team. In this role, you will be responsible for leading a team of backend and frontend developers and ensuring the successful delivery of software solutions. You will be responsible for developing high-quality, efficient, and scalable code that meets business requirements and design specifications. Responsibilities : Lead and manage a team of backend and Frontend developers, providing technical guidance and mentoring Develop high-quality, efficient, and scalable code that meets business requirements and design specifications Collaborate with front-end developers, project managers, and other stakeholders to ensure the seamless integration of front-end and backend systems Design and implement data storage solutions, including databases and caching mechanisms Ensure the reliability, scalability, and security of backend systems Manage deployments and infrastructure, working closely with DevOps teams to ensure the availability and performance of backend systems Keep up-to-date with emerging trends and technologies in backend development and integrate new technologies where appropriate Requirements Bachelors or Masters degree in Computer Science or a related field, Proven experience as a Full stack developer, with 8 years of experience in a similar role Strong knowledge of Java , programming language Experience with relational and non-relational databases, such as MySQL , MongoDB, or Cassandra Experience with web application frameworks, such as Spring , Flask, or Django Experience with cloud computing platforms, such as AWS or Azure Experience with DevOps tools and practices, such as Docker, Kubernetes, or Ansible Strong leadership and project management skills Excellent communication and interpersonal skills

Conducting research using a variety of online sources, especially commercial registries and corporatedatabases, legal databases and media sources Conducting desktop-based research using a combination of other specialist research tools designedfor online due diligence reports and databases such as Factiva and Lexis-Nexis Demonstrate in-depth technical capabilities and professional knowledge. Demonstrate ability toassimilate new knowledge Summarizing the information obtained into concise and accurate reportsMonitor progress and ensure that key stakeholders are informed about progress and expectedoutcomes Successful completion of client engagement deliverables in line with project plan, ensuring highquality work delivery within appropriate time scales and adhering to pre-defined methodologiestowards preparing due diligence reports and researching specific targets to highlight red flags.Remain current on new developments within the industryAdvisory- ForensicCounterparty Due Diligence THE INDIVIDUALStrong written and verbal communication skills to interact cross-functionally and/or with seniors, withan ability to convey messages in a clear and structured mannerStrong analytical and problem solving skillsAttention to detailAdaptability to a dynamic environment often accompanied by shifting priorities and stringent deadlinesHave discretion and an ability to maintain confidentialityDrive and commitment to deliver high quality serviceAbility to work well in teamsBasic understanding of IT systems, Knowledge of MS office ( MS Excel, PowerPoint, Word etc)Have the ability to work under pressure stringent deadlines and tough client conditions which maydemand extended working hoursDemonstrate integrity, values, principles, and work ethicQUALIFICATION Graduate in any Commerce or Economics or Arts (B.A, B.Com, Economics)Knowledge of at least one foreign language will be preferable (e.g., German, Spanish, Italian,French, Portuguese, Arabic, Chinese, and Japanese).SELECTION PROCESSHR discussion followed by a technical interaction with the line Manager and a final round with theDirector / Partner of the practice (1 Case Study administered by Hiring Manager during theseinterviews)PEOPLE BENEFITSA strong learning cultureQuarterly rewards and recognition programme - Encore Comprehensive medical insurance coverage for staff and familyExpansive general and accidental coverage for staff

Skill required: Risk & Compliance - Risk Management Designation: Risk and Compliance Specialist Qualifications: Any Graduation Years of Experience: 7 to 11 years What would you do? A risk compliance professional need to ensure processes are in compliance with laws and regulations, professional standards, international standards, and accepted business practices. Perform audits at regular intervals and execute design control systems, advising the management on possible risks that might occur, and organization policies. Experience in Fraud Investigation/forensic would be added advantage. An experience in Global Procurement will be added advantage. What are we looking for? Expectations:Below are the expectations for all employees in this role. Complexity: Requires analysis and solving of High-complexity problems. Multitude of experience and knowledge along with ability to think around varied processes across Accenture. Working with Leadership team in India and GlobalAuthority: Requires less level of instruction on daily work tasks and detailed instructions on new assignmentsImpact or Decision Impact: Decisions impact own work and may impact the work of othersScope: Individual contributor as a part of a team, with a focused scope of work Roles and Responsibilities: CA/MBA/LLB/CFE with 0- 7+ years of experienceKey Responsibilities: To oversee and co-ordinate the successful deployment of Risk Management & Compliance activities Performing the full audit cycle including Risk management and Control management over operation effectiveness. Obtaining, analyzing and evaluating accounting documentation ,reports ,data,flowchart etc. Financial Fraud Risk Assessment and suggesting on analytics around business and investigating outliers Ensure compliance with internal policies (audit methodology and risk management) and regulatory requirements Provide timely and accurate reporting and documentation to management on all key parameters as needed. To manage the support function in a multi-stakeholder environment, ensuring all stakeholders are informed, involved and appropriately supportive of initiatives and projects. To ensure all required controls are implemented, documented and monitored so as to ensure full audit compliance. Regular interaction with project teams to close dependencies Regular interaction with stakeholders To demonstrate a practical approach to the task in hand and to promote and implement best practices. To ensure an effective communication process is in place with line management and team members Internal Controls effectiveness analysis. Ensuring regulatory compliance, financial analysis and contractual review Financial Forensic investigation and analysis Developing ideas around Fraud Analytics and reviewing outliers and GAPS Qualifications Any Graduation

About The Role : Role Purpose The purpose of this role is to analyse, identify, rectify & recommend specific improvement measures that help in the security posture of the organization by protecting the sensitive information Do Ensuring customer centricity by providing apt cybersecurity Monitoring and safeguarding the log sources and security access Planning for disaster recovery in the event of any security breaches Monitor for attacks, intrusions and unusual, unauthorized or illegal activity Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems Conduct security assessments, risk analysis and root cause analysis of security incidents Handling incidents escalated by the L1 team in 24x7 rotational shifts Use advanced analytics tools to determine emerging threat patterns and vulnerabilities Completing all tactical security operations tasks associated with this engagement. Analyses all the attacks and come up with remedial attack analysis Conduct detailed analysis of incidents and create reports and dashboards Stakeholder coordination & audit assistance Liaise with stakeholders in relation to cyber security issues and provide future recommendations Maintain an information security risk register and assist with internal and external audits relating to information security Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues Advice and guidance to employees on issues such as spam and unwanted or malicious emails Deliver No. Performance Parameter Measure 1. Customer centricity Timely security breach solutioning to end users, Internal stakeholders & external customers experience 2. Process Adherence Adherence to SLAs (90-95%), response time and resolution time TAT

Role Purpose The purpose of this role is to analyse, identify, rectify & recommend specific improvement measures that help in the security posture of the organization by protecting the sensitive information Do Ensuring customer centricity by providing apt cybersecurity Monitoring and safeguarding the log sources and security access Planning for disaster recovery in the event of any security breaches Monitor for attacks, intrusions and unusual, unauthorized or illegal activity Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems Conduct security assessments, risk analysis and root cause analysis of security incidents Handling incidents escalated by the L1 team in 24x7 rotational shifts Use advanced analytics tools to determine emerging threat patterns and vulnerabilities Completing all tactical security operations tasks associated with this engagement. Analyses all the attacks and come up with remedial attack analysis Conduct detailed analysis of incidents and create reports and dashboards Stakeholder coordination & audit assistance Liaise with stakeholders in relation to cyber security issues and provide future recommendations Maintain an information security risk register and assist with internal and external audits relating to information security Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues Advice and guidance to employees on issues such as spam and unwanted or malicious emails Stakeholder Interaction Stakeholder Type Stakeholder Identification Purpose of Interaction Internal Technical Lead/ Project Lead Regular reporting & updates Security Intelligence (Practice) Coordination for security reasons External Customer To coordinate for all security breaches & resolutions Display Lists the competencies required to perform this role effectively: Functional Competencies/ Skill Leveraging Technology - Knowledge of current and upcoming technology (automation, tools and systems) to build efficiencies and effectiveness in own function/ Client organization - Expert Process Excellence - Ability to follow the standards and norms to produce consistent results, provide effective control and reduction of risk Expert Functional/Technical - Knowledge of Network Security devices, firewalls, end points, SIEM, application security, IPS/IDS, VA / PT skills Master Competency Levels Foundation Knowledgeable about the competency requirements. Demonstrates (in parts) frequently with minimal support and guidance. Competent Consistently demonstrates the full range of the competency without guidance. Extends the competency to difficult and unknown situations as well. Expert Applies the competency in all situations and is serves as a guide to others as well. Master Coaches others and builds organizational capability in the competency area. Serves as a key resource for that competency and is recognized within the entire organization. Behavioral Competencies Effective Communication Collaborative Working Execution Excellence Problem Solving & Analytical Skills Deliver No. Performance Parameter Measure 1. Customer centricity Timely security breach solutioning to end users, Internal stakeholders & external customers experience 2. Process Adherence Adherence to SLAs (90-95%), response time and resolution time TAT

About The Role : Role Purpose The purpose of this role is to analyse, identify, rectify & recommend specific improvement measures that help in the security posture of the organization by protecting the sensitive information Do Ensuring customer centricity by providing apt cybersecurity Monitoring and safeguarding the log sources and security access Planning for disaster recovery in the event of any security breaches Monitor for attacks, intrusions and unusual, unauthorized or illegal activity Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems Conduct security assessments, risk analysis and root cause analysis of security incidents Handling incidents escalated by the L1 team in 24x7 rotational shifts Use advanced analytics tools to determine emerging threat patterns and vulnerabilities Completing all tactical security operations tasks associated with this engagement. Analyses all the attacks and come up with remedial attack analysis Conduct detailed analysis of incidents and create reports and dashboards Stakeholder coordination & audit assistance Liaise with stakeholders in relation to cyber security issues and provide future recommendations Maintain an information security risk register and assist with internal and external audits relating to information security Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues Advice and guidance to employees on issues such as spam and unwanted or malicious emails Deliver No. Performance Parameter Measure 1. Customer centricity Timely security breach solutioning to end users, Internal stakeholders & external customers experience 2. Process Adherence Adherence to SLA??s (90-95%), response time and resolution time TAT

Key Responsibilities: Configuration, Monitoring Management: Primarily focusing on Web Application Firewalls (WAF) such as F5, AWS WAF, Cloudflare, and Imperva. Installation Troubleshooting: Hands-on experience with the installation, configuration, monitoring, and management of WAFs. Ticketing Tools: Independent handling and managing of ticketing tools like Symphony, CDC and Google Soar Daily Tasks: WAF Management: Configuration, updates, upgrades, and troubleshooting of WAFs. Health Checks: Conducting daily, weekly, and monthly health checks of WAFs and other network security devices. Interactions: Communicating with OEMs, vendors, partners, end users, and clients regarding WAF-related issues. Activity Updates: Keeping track of activities and updating tickets for incidents and service requests related to WAFs. Analysis Improvement: Analysing WAF-related tickets and participating in continuous improvement activities. Technical Skills: WAF Configuration and Management: Proficiency in configuring, managing, and optimizing WAF solutions. Web Security Protocols: Strong understanding of HTTP/HTTPS protocols and web application communication. OWASP Top Ten: Familiarity with common web application vulnerabilities such as SQL injection and cross-site scripting (XSS). Security Policies and Rulesets: Ability to develop and enforce security policies and rulesets tailored to specific web applications. Vulnerability Testing: Experience with vulnerability testing tools and techniques to identify and mitigate security weaknesses. Analytical Skills: Traffic Analysis: Monitoring and analysing network traffic to detect and respond to suspicious activities. Incident Response: Conducting incident response and forensic analysis in the event of a security breach. Continuous Monitoring: Regularly monitoring WAF security logs and s to stay ahead of potential threats.

: Business Vertical CORPORATE OFFICE Role TM - Internal Audit Department Internal Audit State Name Gujarat City Name Ahmedabad Experience Required 5+ years Qualification Required B.Com / graduation in any discipline Inter CA (Preferred) Job Description 1 Execute commercial audit as per audit plan 2 Perform testing of internal financial controls in accordance with Risk contol matrix (RCM) /audit checklist 3 Ensure reliability of financial information and statutory compliance in accordance with all applicable directives and regulations 4 Provide inputs to improve effectiveness and efficiency of existing operations, and reduce wastages 5 Document key minutes of meetings emerged from site meetings and audit discussion with user departments 6 Draft audit reports and submit it to HoS for review 7 Follow proper escalation mechanism in case of disputes emerged from functional, project, forensic, compliance, follow-up audits Back

Description About The Role As a cloud solution design engineer you will be expected to develop options and recommendations for information technology designs and solutions to meet business requirements This will help to identify and resolve business problems within Barclays cloud environments Primary Responsibilities Review interpret and respond to detailed user stories business requirements specifications to ensure alignment between customer expectations and current or future Digital capabilities and the strategic plan Provide input to the strategic direction of technology investments to assist in the development of the enterprise architecture and maximise the return on technology investment Define and design technology solutions to assist the business in meeting their business objectives including technology solutions and changes to service process andor operating models Develop and implement technology solutions to ensure solutions are implemented as expected and to agreed timeframes Design and delivery projects from inception through functional analysis of user stories requirements the approval process for business case development project execution and operational handover to align technological solutions and transform the processes and systems to meet emerging business requirements Technical Skills Competencies Solution Design experience involving cloudon prem and multiple systems in particular system recovery patterns Prepares for the delivering of the application or system by evaluating and selecting the methodologies and tools Analyses available assets frameworks reference architectures etc to bridge the gap between the asis architecture and the tobe architecture Any knowledge or experience in Tanium Microsoft Defender for Endpoint MDE and Zscaler would be added benefit Knowledge of AzureM365 Identity and Access Management IAM Logging and Monitoring and system integration Security focused design that adhere to industry and highly regulated financial environments security standards Ability to effectively collaborate with business customers engineering teams security consultants and other project stakeholders Desirable Previous experience in the financial sector Bachelors degree or higher in a related discipline Desirable CISSP Certified Information Systems Security Professional ISO27001 Barclays banking knowledge Desirable experience in VolexityCloud Forensics Named Job Posting? (if Yes - needs to be approved by SCSC) Additional Details Global Grade C Level To Be Defined Named Job Posting? (if Yes - needs to be approved by SCSC) No Remote work possibility No Global Role Family To be defined Local Role Name To be defined Local Skills identity and access management;Microsoft 365;CISSP;ISO27001 Languages RequiredENGLISH Role Rarity To Be Defined

Carry out data analytics on large structured and unstructured datasets using a wide range of database management systems, BI reporting and visualization software Carry out investigative methodologies to identify issues and gather relevant evidence Assist in developing tools/solutions directed towards future prevention, continuous monitoring, detection and investigation of occupational fraud and financial crime Develop supporting material on the benefits of forensic data analytics for clients and fraud examiners, explaining how it can be applied to their issues Ensure proper execution of fieldwork as per work plan and adherence to assignment mandates Assist in drafting detailed reports on observations/findings within scheduled timelines Summarize and communicate analysis results with accuracy and attention to detail Liaise with clients and build on existing client relationships Ensure compliance to the firm's risk management policies and procedures KEY ATTRIBUTES Strong analytical and problem solving skills Strong quantitative ability with aptitude to manipulate, interpret, and present data Demonstrated track-record of efficient project execution In-depth understanding of Forensic investigation process and demonstrated capabilities of using Forensic Data Analytical tools for conducting analysis and gathering evidence Ability to work within tight deadlines and tough client conditions, which may require working for extended hours Experience of data extraction, analysis, cleaning, quality, and manipulation skills Experience of handling large data volumes (including efficiency and scalability concepts) Experience in big data analysis and manipulation with any of the following software: MySQL, ACL, IDEA, Tableau and Power BI. Knowledge of statistical techniques and analysis such as regression, clustering, sampling, social network analysis, etc. KEY EXPERIENCE PARAMETERS Qualified with a relevant degree in Computer Science, Engineering, Mathematics or related fields Post-qualification work experience of 4 to 5 years, with at least 3 years experience in Forensic Data Analytics Professional certificate/degree in Forensic Accounting would be an added advantage

Job Title: Acon/Scon/Consultant - Forensics & Integrity Services Location: Mumbai Qualifications: CA with 2-7 years of experience, or MBA in Finance or Commerce Graduate Knowledge of Corporate or SME Lending Frauds or Forensic Audit Strong understanding of accounting principles, financial statements, audit reports, and the nature of financial transactions Proficiency in Excel and PowerPoint Excellent analytical, problem-solving, and critical thinking skills Good interpersonal and communication skills Prior experience in conducting statutory/concurrent/internal audits for Banks is an added advantage Skill Set Requirements (in order of preference): Forensic experience in the Pharma sector Forensic experience in any industry Internal Audit/Risk Advisory experience in the Pharma sector Internal Audit/Risk Advisory experience in the Manufacturing sector Responsibilities: Conduct forensic audits and investigations Analyze financial statements and transactions to identify discrepancies Prepare detailed reports and presentations based on findings Collaborate with team members to develop strategies for fraud prevention and detection Provide insights and recommendations to clients based on audit results Additional Information: Early joining preferred Interested candidates can share their CV at arun.k.jadhav@in.ey.com

Summary The Detection and Response Associate Director will be an integral part of the Novartis Cyber Security Operations Center (CSOC). The Novartis CSOC is an advanced security team that has reinvented Security Operations. It is comprised of a global team passionate about defending Novartis against modern and sophisticated IT security threats and attacks. The Detection and Response Associate Director will leverage a variety of tools and resources to detect, investigate, and mitigate threats impacting Novartis networks, systems, users, and applications. This role will involve coordination and communication with technical and nontechnical teams, including security leadership and business stakeholders. This is a position intended for an experienced professional, and will challenge and grow their technical investigation, IT security, and leadership skillsets. About the Role MAJOR ACCOUNTABILITIES In addition to accountabilities listed above in Job Purpose: Technical Team Lead Evaluate and review performance; provide coaching and mentoring; develop and track career improvement goals Instill and maintain cohesiveness and positive working culture Accountable for regional delivery around monitoring and incident response Security Monitoring and Triage Monitor in real time security controls and consoles from across the Novartis IT ecosystem Communicate with technical and non-technical end users who report suspicious activity Forensics and Incident Response Serve as escalation point for conducting investigations into security incidents involving advanced and sophisticated threat actors and TTPs Perform forensic collection and analysis of electronic assets and devices, scripts and malicious software, and log sources from a variety of systems and applications Manage incident response activities including scoping, communication, reporting, and long term remediation planning Respond to major incidents as part of larger major incident response team Big Data analysis and reporting: Utilizing SIEM/Big data to identify abnormal activity and extract meaningful insights. Research, develop, and enhance content within SIEM and other tools Technologies and Automation: Interface with engineering teams to design, test, and implement playbooks, orchestration workflows and automations Research and test new technologies and platforms; develop recommendations and improvement plans Day to day: Perform host based analysis, artifact analysis, network packet analysis, and malware analysis in support of security investigations and incident response Coordinate investigation, containment, and other response activities with business stakeholders and groups Develop and maintain effective documentation; including response playbooks, processes, and other supporting operational material Perform quality assurance review of analyst investigations and work product; develop feedback and development reports Provide mentoring of junior staff and serve as point of escalation for higher difficulty incidents Develop incident analysis and findings reports for management, including gap identification and recommendations for improvement Recommend or develop new detection logic and tune existing sensors / security controls Work with security solutions owners to assess existing security solutions array ability to detect / mitigate the abovementioned TTPs Creating custom SIEM queries and dashboards to support the monitoring and detection of advanced TTPs against Novartis network Participate in weekend/after hour on-call rotation to triage and/or respond to major incidents

Summary The Threat Detection Response Director will be an integral leader within the Novartis Cyber Security Operations Center (CSOC). The CSOC is an advanced global team passionate about the active defense against the most sophisticated cyber threats and attacks. The Threat Detection Response Director will assist the Global Head of CSOC to provide leadership and oversight over integral operational services including continuous security monitoring, triage, and incident response. The Threat Detection Response Director will contribute to the implementation of the overall Novartis information security strategy related to cyber security defense and operations. They will manage associated programs, develop and implement required processes, procedures and tools. They will actively encourage a positive culture and cohesiveness within the CSOC, while reporting qualified information about actual cyber threats to the senior management and stakeholders. In this role they will enable informed and consistent risk decisions and establish sustainable security capabilities to support business strategies in an efficient and effective way. About the Role Key Responsibilities: In addition to accountabilities listed above in Job Purpose: Technical Team Leader Supervise and manage a team of diverse skillsets and personalities Evaluate and review performance; provide coaching and mentoring; develop and track career improvement goals Instill and maintain cohesiveness and positive working culture Accountable for regional delivery around incident detection and response activities Talent Growth Manage and mentor junior and senior associates and team leaders. Plan and implement technical and nontechnical development strategies for continuous development of CSOC analysts and leaders. Security Monitoring and Triage Monitor in real time security controls and consoles from across the Novartis IT ecosystem Communicate with technical and non-technical end users who report suspicious activity Tooling Capabilities Ensure security detection, protection, response, and recovery standards, processes and procedures are up-to-date, maintained and followed. Responsible for recommending, configuring, operating, maintaining and enhancing relevant security systems and tools globally, based on contextual information and current threat landscape. Forensics and Incident Response Serve as escalation point for conducting investigations into security incidents involving advanced and sophisticated threat actors and TTPs Perform forensic collection and analysis of electronic assets and devices, scripts and malicious software, and log sources from a variety of systems and applications Manage incident response activities including scoping, communication, reporting, and long term remediation planning Respond to major incidents as part of larger major incident response team Performance KPIs Establish key security performance indicators that ensure proper service delivery and continuous CSOC service improvements. Define metrics, gather and regularly report to CISO, ITLT and identified stakeholders on risks and cyber security threats, as well as state, maturity and value derived from the CSOC services. Perform analyses against large data sets to identify potential deficiencies in information security. Day to day: Perform host based analysis, artifact analysis, network packet analysis, and malware analysis in support of security investigations and incident response Coordinate monitoring, hunting, investigation, containment, and other response activities with business stakeholders and groups Develop and maintain effective documentation; including monitoring, hunting, and response playbooks, processes, and other supporting operational material Perform quality assurance review of analyst investigations and work product; develop feedback and development reports Provide mentoring of associates and managers and serve as point of escalation for higher severity incidents Develop incident analysis and findings reports for management, including gap identification and recommendations for improvement Recommend or develop new detection logic and tune existing sensors / security controls Work with security solutions owners to assess existing security solutions array ability to detect / mitigate the abovementioned TTPs Creating custom SIEM queries and dashboards to support the monitoring and detection of advanced TTPs against Novartis network Participate in weekend/after hour on-call rotation to triage and/or respond to major incidents

Title: DFIR Analyst (Associate Consultant/Specialist) Location: Bangalore, Karnataka, India Job Experience: 2-5 years Job Type: Full-Time Job Description: We are seeking a skilled DFIR Analyst with 2-5 years of experience to join our team. The successful candidate will be responsible for conducting digital forensic investigations, responding to security incidents, and supporting RD activities. The candidate will work closely with other security professionals and stakeholders to identify, investigate, and remediate security incidents, as well as to enhance the organizations overall security posture. Key Responsibilities: Conduct digital forensic investigations to identify, collect, and analyze electronic data from various sources, such as workstations, laptops, and servers. Conduct incident response activities to detect, contain, and remediate security incidents, such as malware infections, data breaches, and other cyberattacks. Conduct forensic investigations of all major operating systems such as Windows, Linux, Mac OS, etc. Perform forensic analysis of system and application logs, web application logs, network traffic, and other digital artifacts to identify and track attacker activity. Collaborate with other security professionals and stakeholders to develop incident response plans and procedures. Provide technical expertise and guidance to stakeholders during incident response and forensic investigations. Develop and maintain detailed documentation of incident response and forensic investigation procedures, including reports, analyses, and recommendations for remediation and prevention. Stay up to date on industry trends and emerging technologies related to digital forensics and incident response. Possess strong RD skills and ability to self-learn Be flexible and available to work extended hours and weekends when necessary. Requirements: Bachelor/masters degree in digital Forensics or relevant field. 2-5 years of experience in digital forensics and incident response. Strong technical knowledge of digital forensics tools, techniques, and methodologies. Experience with incident response procedures, including detection, analysis, containment, and remediation. Experience with forensic analysis of system and application logs, web application logs, network traffic, and other digital artifacts. Strong analytical and problem-solving skills. Strong written and verbal communication skills. Flexibility to work extended hours and weekends when necessary.

Responsible for delivering forensic/compliance assessment engagements for the GPS sector. End to End delivery of projects - From Project planning till the delivery for GPS sector. Having good understanding of Government processes, functionaries, norms and policies Responsible for handling and delivering multiple projects at the same time. Build hypothesis and validate the same by following a structured and logical process. Take initiatives and undertake primary/secondary research to develop thought leadership/collaterals/Point of View (PoV) document. Project Leadership and client management - Manage project and ensure the delivery of consulting engagements from initial scoping discussions to implementation. Confidently present and communicate project outcomes at Senior Government officials Skills and attributes To qualify for the role you must have Qualification Minimum master s degree in management, computer science, data science, information systems, engineering, or another quantitative field (i.e. mathematics, statistics etc.) Experience At least 5 years experience in forensics, business intelligence, analytics, and/or data engineering

Date Posted: 2025-03-07 Country: India Location: Unit 2A & 2B (Octave Block), 6th floor, Parcel - 4, Salarpuria Sattva - Knowledge City, Madhapur, Hyderabad, Telangana, India, Zip/Postal Code: 500081 Job Title: Sr Technical Specialist- Product Cyber Security Architect Years Of Experience: 14+ Role Overview: The Senior Product Cyber Security Engineer/Architect works with product development teams across all regions globally to ensure commitment to the cyber security strategy of minimizing flaws and improving product resiliency to cyber-attacks by ensuring adherence to the integrated secure development lifecycle process, which embodies a secure-by-design defense in depth philosophy. You will be a strong technical expert in matters related to threat modeling and cyber controls and will report to a team manager responsible for product architecture review and testing. This role is part of the Product Cyber team (under the Global DT Cyber team) which focuses on continuously improving the cyber posture of products that are often installed in customers environments. On a typical day you will: Work with product development teams and carry out functional cyber risk assessments to support their cyber requirements throughout the entire development cycle. Develop standard work documents for cyber controls that meet technical requirements (for both systems and components) arising from standards such as IEC 62443 Coordinate with quality and product development teams to periodically update cyber security design policies and ensure that these policies are incorporated into product design, with requirements for traceability and system validation and verification. Interface with global teams and share best practices and lessons learned Refine and support the standard work associated with product cyber security incident response management Work closely with the product testing teams to validate recommended security controls Continually enhance the capabilities of the Cyber security team: Identification of technology and methodology gaps Participation and leading technical and industry committees Creation of discipline health score card. Work in an environment of continuous improvement and lean process and product development. Stay updated on latest cyber security hacking news, technologies and methodologies including: The latest attack methodologies include penetration testing and red-team methodologies. Latest forensic and incident response methodologies. Attend security or hacker conferences and stay on the cutting edge What You Will Need to be Successful: Bachelor of Science/Engineering in cyber security, computer science or a related engineering discipline 14+ years of product cyber security engineering and software systems development experience; at least 2 years hands-on experience with penetration testing methodologies and tools. In depth knowledge of IEC 62443 and related cybersecurity standards. In-depth knowledge of requirements captures, cyber security threat modeling and systematic discovery of threats, as part of Secure Development Lifecycle, with broad understanding of potential vulnerabilities at different layers of hierarchical systems Cyber security certifications such as OSCP, GSEC, CEH Knowledge of state-of-the-art security analysis tools and various product cyber security safeguards. These include threat modeling, source code analysis, dynamic analysis, penetration testing and audit/compliance tools Excellent written and verbal communication and presentation skills. Adept at communicating with globally disperse cross functional teams. (Preferred) Strong knowledge in various cryptographic systems and requirements for authentication, authorization and encryption for various types of systems (Preferred) Intimate knowledge and experience with incident response management and risk assessment If you live in a city, chances are we will give you a lift or play a role in keeping you moving every day. Otis is the world s leading elevator and escalator manufacturing, installation, and service company. W e move 2 billion people every day and maintain approximately 2.2 million customer units worldwide, the industrys largest Service portfolio . When you join Otis, you become part of a n innovative global industry leader with a resilient business model. You ll belong to a diverse, trusted, and caring community where your contributions, and the skills and capabilities you ll gain working alongside the best and brightest, keep us connected and on the cutting edge . We provide opportunities, training, and resources, that build leadership and capabilities in Sales, Field, Engineering and M ajor Projects and our Employee Scholar Program is a notable point of pride, through which Otis sponsors colleagues to pursue degrees or certification programs . Today, our focus more than ever is on people. As a global, people-powered company, we put people - passengers, customers, and colleagues - at the center of everything we do . We are guided by our values that we call our Three Absolutes - prioritizing Safety, Ethics, Quality in all that we do . If you would like to learn more about environmental, social and governance (ESG) at Otis click here . Become a part of the Otis team and help us #Buildwhatsnext! Privacy Policy and Terms: Click on this link to read the Policy and Terms

Design and implement end-to-end security solutions using Microsoft security suite, including Microsoft Defender, Sentinel, and Defender for Endpoint. Integrate Microsoft security tools with other industry-leading SIEM, SOAR, UBA, EDR, and ticketing systems for a comprehensive security posture. Utilize Microsoft Copilot for AI-driven security insights, automation, and incident analysis to improve security response efficiency. SOC L3 Expertise Incident Response Lead SOC Level 3 investigations, incident response, threat hunting, and forensic analysis using Microsoft Sentinel Defender. Provide expert guidance on incident escalation, root cause analysis, and response strategies. Optimize SOC workflows using Microsoft Copilot, leveraging AI to automate investigations, generate reports, and enhance analyst efficiency. Develop and implement SOC processes, playbooks, and best practices to ensure an effective security operations framework. Threat Intelligence, SOAR, UBA AI Integration Implement User Behavior Analytics (UBA) to detect anomalies, insider threats, and behavioral deviations. Design and automate security workflows using SOAR solutions to reduce response time. Correlate threat intelligence feeds across Microsoft Defender, Sentinel, and third-party SIEM tools to proactively identify emerging threats. Use Microsoft Copilots AI-driven capabilities to assist in security event correlation, data analysis, and automated threat response. SOC Security Process Management Oversee SOC operations, ensuring 24/7 security monitoring, alert triage, and proactive threat mitigation. Define, document, and enforce SOC playbooks, security policies, and compliance guidelines aligned with industry best practices. Conduct security audits and assessments using Microsoft security tools, ensuring adherence to standards like MITRE ATTCK, NIST, and ISO 27001. Required Skills Experience: 8+ years of experience in cybersecurity, SOC management, and security architecture. Hands-on expertise in Microsoft security solutions (Microsoft Defender, Sentinel, Defender for Identity, Defender for Endpoint). Proven experience in SOC Level 3 operations, incident response, threat hunting, and forensic investigations. Strong understanding of SIEM, SOAR, UBA, and AI-driven security automation. Experience in integrating Microsoft security tools with third-party security solutions like EDR, SIEM, and ticketing systems. Familiarity with Microsoft Copilot and its application in SOC operations, security automation, and AI-driven threat detection. Ability to draft SOC processes, security playbooks, and incident response frameworks. Strong analytical skills with the ability to connect insights across different security modules.

The Detection and Response Associate Director will be an integral part of the Novartis Cyber Security Operations Center (CSOC). The Novartis CSOC is an advanced security team that has reinvented Security Operations. It is comprised of a global team passionate about defending Novartis against modern and sophisticated IT security threats and attacks. The Detection and Response Associate Director will leverage a variety of tools and resources to detect, investigate, and mitigate threats impacting Novartis networks, systems, users, and applications. This role will involve coordination and communication with technical and nontechnical teams, including security leadership and business stakeholders. This is a position intended for an experienced professional, and will challenge and grow their technical investigation, IT security, and leadership skillsets. Job Description MAJOR ACCOUNTABILITIES In addition to accountabilities listed above in Job Purpose: Technical Team Lead Evaluate and review performance; provide coaching and mentoring; develop and track career improvement goals Instill and maintain cohesiveness and positive working culture Accountable for regional delivery around monitoring and incident response Security Monitoring and Triage Monitor in real time security controls and consoles from across the Novartis IT ecosystem Communicate with technical and non-technical end users who report suspicious activity Forensics and Incident Response Serve as escalation point for conducting investigations into security incidents involving advanced and sophisticated threat actors and TTPs Perform forensic collection and analysis of electronic assets and devices, scripts and malicious software, and log sources from a variety of systems and applications Manage incident response activities including scoping, communication, reporting, and long term remediation planning Respond to major incidents as part of larger major incident response team Big Data analysis and reporting: Utilizing SIEM/Big data to identify abnormal activity and extract meaningful insights. Research, develop, and enhance content within SIEM and other tools Technologies and Automation: Interface with engineering teams to design, test, and implement playbooks, orchestration workflows and automations Research and test new technologies and platforms; develop recommendations and improvement plans Day to day: Perform host based analysis, artifact analysis, network packet analysis, and malware analysis in support of security investigations and incident response Coordinate investigation, containment, and other response activities with business stakeholders and groups Develop and maintain effective documentation; including response playbooks, processes, and other supporting operational material Perform quality assurance review of analyst investigations and work product; develop feedback and development reports Provide mentoring of junior staff and serve as point of escalation for higher difficulty incidents Develop incident analysis and findings reports for management, including gap identification and recommendations for improvement Recommend or develop new detection logic and tune existing sensors / security controls Work with security solutions owners to assess existing security solutions array ability to detect / mitigate the abovementioned TTPs Creating custom SIEM queries and dashboards to support the monitoring and detection of advanced TTPs against Novartis network Participate in weekend/after hour on-call rotation to triage and/or respond to major incidents Skills Desired Communication Skills, Cyber-Security Regulation, Cyber Threat Hunting, Cyber Threat Intelligence (Cti), Cyber Threat Management, Cyber Vulnerabilities, Decision Making Skills, Influencing Skills, Information Security Risk Management

The Associate Director Threat Hunting and Response will be an integral part of the Novartis Cyber Security Operations Center (CSOC). The CSOC is an advanced global team passionate about the active defense against the most sophisticated cyber threats and attacks. The Associate Director Threat Hunting and Responsewill is a principal engineer who will leverage a variety of tools and resources to proactively detect, investigate, and mitigate emerging and persistent threats impacting Novartis networks, systems, users, and applications. This role will involve coordination and communication with technical and nontechnical teams, including security leadership and business stakeholders. As an experienced skilled engineer, this role will also involve coaching and mentoring of more junior members of the CSOC. Job Description MAJOR ACCOUNTABILITIES In addition to accountabilities listed above in Job Purpose: Forensics and Incident response Serve as escalation point for conducting investigations into security incidents involving advanced and sophisticated threat actors and TTPs Perform forensic collection and analysis of electronic assets and devices, scripts and malicious software, and log sources from a variety of systems and applications Manage incident response activities including scoping, communication, reporting, and long term remediation planning Threat Hunting: Review incident and intelligence reports from a variety of internal and external sources and teams Develop hypotheses, analyze techniques, and execute hunts to identify threats across the environment Interface with security teams and business stakeholders to implement countermeasures and improve defenses Respond to major incidents as part of larger major incident response team Big Data analysis and reporting: Utilizing SIEM/Big data to identify abnormal activity and extract meaningful insights. Research, develop, and enhance content within SIEM and other tools Technologies and Automation: Interface with engineering teams to design, test, and implement playbooks, orchestration workflows and automations Research and test new technologies and platforms; develop recommendations and improvement plans Day to day: Perform host based analysis, artifact analysis, network packet analysis, and malware analysis in support of security investigations and incident response Coordinate investigation, containment, and other response activities with business stakeholders and groups Develop and maintain effective documentation; including response playbooks, processes, and other supporting operational material Provide mentoring of junior staff and serve as point of escalation for higher severity incidents Develop incident analysis and findings reports for management, including gap identification and recommendations for improvement Recommend or develop new detection logic and tune existing sensors / security controls Work with security solutions owners to assess existing security solutions array ability to detect / mitigate the abovementioned TTPs Creating custom SIEM queries and dashboards to support the monitoring and detection of advanced TTPs against Novartis network Participate in weekend/after hour on-call rotation to triage and/or respond to major incidents Skills Desired Communication Skills, Cyber-Security Regulation, Cyber Threat Hunting, Cyber Threat Intelligence (Cti), Cyber Threat Management, Cyber Vulnerabilities, Decision Making Skills, Influencing Skills, Information Security Risk Management

Conduct client due diligence (CDD) to gather information such as identity verification, source of funds, and beneficial ownership for different entity types like Banks, Trust, Funds, SPV etc Perform initial checks on client documents and data to ensure completeness and accuracy Support in conducting research using various databases and sources to verify client information Evaluate based on client risk levels which includes business activities, geographic location, and other relevant factors Conduct sanction screening and adverse media screening of customers using specialized tools and databases and analyze screening results to identify matches with sanctioned individuals, entities, or countries Maintain accurate documentation for all clients, including KYC profiles and ongoing monitoring records Mandatory skill sets Strong understanding of financial regulations, including but not limited to Bank Secrecy Act (BSA), AntiMoney Laundering (AML), and Know Your Customer (KYC) requirements Experienced analyst with a in depthknowledge of financial products, services, and industry regulations Excellent analytical skills with the ability to interpret complex financial data and identify potential risks Detailoriented with strong organizational and time management abilities Preferred skill sets Strong understanding of financial regulations, including but not limited to Bank Secrecy Act (BSA), AntiMoney Laundering (AML), and Know Your Customer (KYC) requirements

Maintaining all the records in system & excel depending upon the task. Validation of information & documents. Ascertain verification from sources as per client guidelines. Follow up through call or emails with HR SPOC / Institute / Colleges / Universities for closing verifications or calling the candidates to collection information or documents. Coordinate with verification sources and update internal database. Closures of verification checks as per the defined time. Coordination with other operations department for closures (if required) Good written and verbal communication skills (English Language) Analytical bent of mind. Focused Target Oriented Skills and attributes To qualify for the role you must have Qualification Any Graduate/Post Graduate/LLM/LLB Experience 0 to 2 Years Secondary Reserach,Comapny Profiling, Buisness Intelligence

Maintaining all the records in system & excel depending upon the task. Validation of information & documents. Ascertain verification from sources as per client guidelines. Follow up through call or emails with HR SPOC / Institute / Colleges / Universities for closing verifications or calling the candidates to collection information or documents. Coordinate with verification sources and update internal database. Closures of verification checks as per the defined time. Coordination with other operations department for closures (if required) Good written and verbal communication skills (English Language) Analytical bent of mind. Focused Target Oriented Skills and attributes To qualify for the role you must have Qualification Any Graduate/Post Graduate/LLM/LLB Experience 0 to 2 Years Secondary Reserach,Comapny Profiling, Buisness Intelligence