631 Fortify Jobs

We’re hiring on the Blackbaud Application Security team! As a member of the Cyber Security organization at Blackbaud, the Application Security Engineer is a specialized position that plays a key role in securing software built and/or used by Blackbaud. You can expect to work closely with software development teams as well as third-party organizations to ensure that security, privacy, and compliance requirements are planned for, designed, and built into software applications at Blackbaud. In addition to securing software, you will be expected to stay up to date on what’s happening in the Cyber Security industry to optimize and align our application security processes and systems throughout the Software Development Life Cycle (SDLC) at Blackbaud. The Application Security Engineering team focuses on building automation for security self-service and vulnerability management to reduce unnecessary toil. What you will be doing: Identifying solutions for difficult security problems while participating in a broader agile Application Security team. Building comprehensive solutions to conduct consolidation, aggregation, and notification of security findings to respective stakeholders. Conducting threat modeling, secure design reviews, and providing direct guidance to development teams. Promoting, designing, and evaluating application security in all phases of the SDLC and constantly looking for innovative ways to improve processes. Influencing, building, and assisting with information security challenges within applications. What we'll want you to have: You are either a security-minded software engineer who has been building modern services using a microservice architecture in an agile development environment or a development-interested security practitioner who understands security best practices but wants to get closer to development and engineering. 5+ plus years of experience with application security and relevant testing tools for: DAST: Burp Suite, OWASP Zap, Invicti, AppScan SAST/SCA: Fortify, Checkmarx, Coverity, Semgrep, OWASP Dependency Check, Mend, Blackduck Attack Surface Management: OWASP Amass, Spiderfoot, CyCognito 3+ years of experience with Python, Bash, and/or PowerShell. 3+ years of experience in DevSecOps integrating security solutions into CI-CD pipelines and automated tooling orchestration. Relevant certifications include CompTIA Security+ or CASP+, EC Council CEH, ISC2 CSSLP are a plus. Experience partnering with development and systems engineers on impactful security initiatives. Understanding of software development; how applications and systems are designed, built, and break is critical. Understand DevSecOps cultural mindsets, and an engineering-focused approach to solving complex security problems. Strong verbal and written communication skills to translate security objectives and requirements to specific engineering outcomes. The Application Security team at Blackbaud is committed to ensuring security issues are prevented, discovered, and remediated in collaboration with our engineering partners across the business. Stay up to date on everything Blackbaud, Blackbaud is a digital-first company which embraces a flexible remote or hybrid work culture. Blackbaud supports hiring and career development for all roles from the location you are in today! Blackbaud is proud to be an equal opportunity employer and is committed to maintaining an inclusive work environment. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, physical or mental disability, age, or veteran status or any other basis protected by federal, state, or local law.

Job Reference # 323129BR Job Type Full Time Your role The individual in this role will be accountable for successful and timely delivery of projects in an agile environment where digital products are designed and built using cutting-edge technology for WMA clients and Advisors.. It is a devops role that entails working with teams located in Budapest – Hungary, Wroclaw - Poland, Pune - India and New Jersey, US. This role will include, but not be limited to, the following: maintain and build ci/cd pipelines migrate applications to cloud environment build scripts and dashboards for monitoring health of application build tools to reduce occurrence of errors and improve customer experience deployment of changes in prod and non-prod environments follow release management processes for application releases maintain stability of non-prod environments work with development, qa and support groups in trouble shooting environment issues Your team You'll be working as an engineering leader in the Client Data and Onboarding Team in India. We are responsible for WMA (Wealth Management Americas) client facing technology applications. This leadership role entails working with teams in US and India. You will play an important role of ensuring scalable development methodology is followed across multiple teams and participate in strategy discussions with business, and technology strategy discussions with architects. Our culture centers around innovation, partnership, transparency, and passion for the future. Diversity helps us grow, together. That’s why we are committed to fostering and advancing diversity, equity, and inclusion. It strengthens our business and brings value to our clients. Your expertise should carry 8+ years of experience to develop, build and maintain gitlab CI/CD pipelines use containerization technologies, orchestration tools (k8s), build tools (maven, gradle), VCS (gitlab), Sonar, Fortify tools to build robust deploy and release infrastructure deploy changes in prod and non prod Azure cloud infrastructure using helm, terraform, ansible and setup appropriate observability measures build scripts (bash, python, puppet) and dashboards for monitoring health of applications (AppDynamics, Splunk, AppInsights) possess basic networking knowledge (load balancing, ssh, certificates), middleware knowledge (MQ, Kafka, Azure Service Bus, Event hub) follow release management processes for application releases Maintain stability of non-prod environments Work with development, QA and support groups in trouble shooting environment issues About Us UBS is the world’s largest and the only truly global wealth manager. We operate through four business divisions: Global Wealth Management, Personal & Corporate Banking, Asset Management and the Investment Bank. Our global reach and the breadth of our expertise set us apart from our competitors. We have a presence in all major financial centers in more than 50 countries. How We Hire We may request you to complete one or more assessments during the application process. Learn more Join us At UBS, we know that it's our people, with their diverse skills, experiences and backgrounds, who drive our ongoing success. We’re dedicated to our craft and passionate about putting our people first, with new challenges, a supportive team, opportunities to grow and flexible working options when possible. Our inclusive culture brings out the best in our employees, wherever they are on their career journey. We also recognize that great work is never done alone. That’s why collaboration is at the heart of everything we do. Because together, we’re more than ourselves. We’re committed to disability inclusion and if you need reasonable accommodation/adjustments throughout our recruitment process, you can always contact us. Disclaimer / Policy Statements UBS is an Equal Opportunity Employer. We respect and seek to empower each individual and support the diverse cultures, perspectives, skills and experiences within our workforce.

Are you obsessed with data, partner success, taking action, and changing the game? If you have a whole lot of hustle and a touch of nerd, come work with Pattern! We want you to use your skills to push one of the fastest-growing companies in the US to the top of the list. Pattern is the premier partner for global e-commerce acceleration and is headquartered in Utah's Silicon Slopes tech hub—with offices in Asia, Australia, Europe, the Middle East, and North America. Valued at $2 billion, Pattern has been named one of the fastest-growing tech companies in North America by Deloitte and one of the best-led companies in America by Inc. More than 100 global brands—like Nestle, Sylvania, Kong, Panasonic, and Sorel —rely on Pattern's global e-commerce acceleration platform to scale their business around the world. We place employee experience at the center of our business model and have been recognized as one of America's Most Loved Workplaces®. We need a Customer Support Professional to manage our day-to-day administrative and organizational tasks and be there for any inquiries our customers might have in a friendly and timely manner. This is a full-time role and will work a hybrid schedule. What does a day in the life of a Customer Support Specialist look like? Planning and executing day-to-day administrative and operational tasks Collaborating with team members on various tasks and projects Daily correspondence with customers through Zendesk Resolving customer issues and inquiries in a timely and organized manner Creating reports regarding monthly job-related activities What will I need to thrive in this role? Proficiency in both spoken and written English communication is required The ability to empathize, actively listen, and communicate clearly with customers and maintain a high level of customer satisfaction and a positive customer experience Experience working in seller central platforms such as Amazon and Shopify is preferred Experience working in a ticketing system like Zendesk is highly desirable Experience working with AI tools related to the customer experience is highly desirable Proficiency in Google Sheets/Excel Proficiency in time management, great attention to detail, and strong organizational skills What does high performance look like? You communicate clearly and effectively You are confident at speaking up, asking questions, and offering alternative solutions when necessary You are proactive and look for opportunities to assist the team and customers You follow through with all assignments on time You give 100% to all tasks and projects you are given You will take full ownership of your projects and follow through to completion You can work with a small, high-performing, autonomous, and fast-paced team What is my potential for career growth? Being a member of a team that provides service to brand partners, customers, and marketplaces provides the opportunity for fast professional growth. Fast-growing brand partners and marketplaces are great environments to fortify your knowledge in the field of e-commerce and learn new techniques and technologies that will help you grow professionally. What is the team like? You will work with the other Customer Support Professional and be supervised by a Senior Team Lead. The team is data-driven and results-oriented. You will collaborate regularly with members of your team to implement actionable solutions. Ideas and inputs are encouraged by all members. Sounds great! What’s the company culture? We are looking for individuals who are: Game Changers - A game changer is someone who looks at problems with an open mind and shares new ideas with team members, regularly reassesses existing plans and attaches a realistic timeline to goals, makes profitable, productive, and innovative contributions, and actively pursues improvements to Pattern’s processes and outcomes. Data Fanatics - A data fanatic is someone who recognizes problems and seeks to understand them through data, draws unbiased conclusions based on data that lead to actionable solutions and continues to track the effects of the solutions using data. Partner Obsessed - An individual who is partner obsessed clearly explains the status of projects to partners and relies on constructive feedback, actively listens to partner’s expectations, delivers results that exceed them, prioritizes the needs of your partners, and takes the time to create a personable experience for those interacting with Pattern. Team of Doers - Someone who is a part of a team of doers uplifts team members and recognizes their specific contributions, takes initiative to help in any circumstance, actively contributes to supporting improvements, and holds themselves accountable to the team as well as to partners. What is the hiring process? Initial phone interview with Pattern’s talent acquisition team Zoom interview with the department hiring managers and team leads Interview with the team in India Professional reference checks Executive review Offer How can I stand out as an applicant? Be prepared to talk about professional accomplishments with specific data to quantify examples Be ready to talk about how you can add value and be the best addition to the team Focus on mentioning how you would be partner-obsessed at Pattern Be prepared to talk about any side projects related to data and analytics Pattern is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.

We are seeking an experienced Application Security Manager to lead our security initiatives and ensure the integrity, confidentiality, and availability of our systems and data. This role is crucial in safeguarding our digital assets and maintaining compliance with industry standards. Themanageroftheapplicationsecurityprogramwillberesponsible for - 1. To Integratesecuritytools,standards,andprocessesintothe productlifecycle(PLC). 2. EnsurethatdevelopersandQApersonnelaretrainedwiththeappropriatele velofsecurityknowledgetoperformtheir dailyactivities. 3. Improveandsupportapplicationsecuritytooldeploymentsincludingstaticanal ysisandruntimetestingtools and securedevelopmentstandards. 4. Conduct and manage periodic penetration testing exercises through expert consulting, internal technology team, and managed services to identify the gaps and fulfill audit/ regulator requirements. 5. Create, Integrate and manage threat modelling process/ practices, following SSDLC and application framework. 6. Manage the secure configuration/ hardening guidelines and compliance. 7. Should create and manage application security KPIs. KRIs compliance reports and dashboards. 8. Should have strong hand-on experience of different tools, processes related to SAST, DAST, API Security and Threat Modelling. 9. Should take care of Infosec functions by coordinating with various stakeholders (App Team, Vendors, Auditors, Regulators). 10. Should have knowledge of best practices like OWASP, Microsoft SDL, SANS, NIST. 11. Should have a good espouser to cloud environment (AWS) and WAF (Imperva, Akamai) 12. Knowledge of Network and Data Security is a plus. Qualifications and Experience: 1. 8-10 years of hands-on experience in application security. 2. Strong understanding of application security best practices, frameworks, and security technologies, like Checkmarx, Fortify, Burp Suite, OWASP ZAP, Acunetix etc. 3. Proven experience in managing VA, PT, Code review, SAST, DAST, SSDLC, Threat Modelling, and Audit processes. 4. Familiarity with regulatory requirements and compliance standards (e.g., RBI, SEBI). 5. Excellent communication, interpersonal, analytical and problem-solving skills. 6. Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. Masters degree or relevant certifications preferred.

Overview The Information Security Assessment Lead is responsible for safeguarding PepsiCo's digital assets by assessing the cyber risk and compliance of new and changing systems against information security requirements and managing risks associated with IT and Information Security systems throughout the project lifecycle. The ISA Lead will collaborate with various security teams and businesses to facilitate compliance with Information Security standards, provide technical guidance for key strategic initiatives, and drive the secure delivery of technology solutions within PepsiCo. The role heavily focuses on security risk-based assessments, and data-driven decision-making and automation. Responsibilities Security Design Expertise: Proven track record in assessing security designs, including data flow diagrams, architectural blueprints, low-level designs, networking diagrams, authentication mechanisms, and authorization schemes. Must demonstrate experience in aligning these designs with industry standards such as NIST 800-53, ISO 27002, CIS, and OWASP to ensure robust security postures. Skilled at identifying potential security gaps and implementing best practices to fortify system architectures against emerging threats. Familiarity with the latest security tools and technologies, as well as experience in integrating security measures into complex IT environments, is essential. Compliance Assessment: Assess new and changing application designs and requirements to ensure compliance with PepsiCo information security standards. Risk Communication: Identify, quantify, and communicate technology risks impacting the business, recommending resolutions and identifying root causes. Explain scan results (infrastructure, applications, databases) and pen testing results to stakeholders. Threat Modeling: Utilize expert knowledge in threat modeling techniques and methodologies to proactively identify, assess, and prioritize security risks, enabling the organization to implement targeted mitigation strategies and maintain a robust information security posture. Project Lifecycle Reviews: Review IT and Information Security systems throughout the project lifecycle, identifying risks and security requirements, and recommending paths to eliminate identified risks and implement compensating controls. Automated Risk Assessments: Conduct risk-based assessments using automated tools and techniques to prioritize and address security risks. Collaboration and Education: Collaborate with various IT and Business teams to ensure they are knowledgeable about Information Security processes and requirements, influencing them to eliminate or reduce risks. ServiceNow Utilization: Experience using ServiceNow to gather necessary information and data, automating security assessment processes to enhance efficiency and effectiveness. Metrics Management and Reporting: Manage operational metrics related to the ISA and GRC processes, utilizing Power BI for advanced reporting, tracking project progress, and developing corrective action plans. Process Improvement and Proactive Security: Govern Information Security services from the ISA, tracking process metrics, identifying issues, and driving process improvement initiatives. Stay updated with threat intelligence, leverage Azure and cloud security knowledge, and implement Agile and DevSecOps methodologies to integrate security into the development process. Qualifications A minimum of 8 years of experience in Information Security, IT Risk Management, or a similar role. Mandatory Technical Skills: In-depth technical experience and knowledge of infrastructure technologies, networks, web, computing, cloud services, manufacturing equipment, mobile devices, and information (cyber) security. Strong understanding of information security frameworks, regulations, and standards such as NIST 800-53, CIS, and ISO 27002. Proficient in ServiceNow, with the ability to leverage its modules for information gathering, data analysis, and automation of the ISA service. Experience in threat modeling and applying threat modeling methodologies in previous roles. Proficient in Power BI for developing reports and dashboards to support data-driven decision-making. Strong skills in developing ad hoc reports and managing metrics. Knowledge of Azure and general cloud security principles. Ability to read and explain scan (infrastructure, applications, databases) and pen testing results to technical and non-technical stakeholders, guiding them on risk and vulnerability remediation. Mandatory Non-Technical Skills: Proficient in influencing and educating stakeholders on security best practices and policies, ensuring understanding and adherence to security standards. Established a reputation as a trusted adviser, providing expert guidance on information security matters. Strong presence to represent PepsiCo Information Security in complex situations with business and IT partners. Ability to collaborate with various stakeholders, including business units and product managers.

As a Manager Information Security (Release Management) with over 6 years of experience, you will be based in Hyderabad and expected to demonstrate expertise in the insurance industry. Working seamlessly with various vendors and global teams is a vital aspect of this role. Your technical proficiency should encompass tools such as JIRA, ServiceNow, Fortify, and vulnerability management platforms. Additionally, having a foundational understanding of Java, Linux, and HTML will be beneficial. Your responsibilities will include executing scans, generating reports, and adeptly resolving tool-related issues. Experience in release and change management is essential, alongside familiarity with ISO and SOC audit processes. Monitoring and ensuring SLA compliance for L1 and L2 tickets, coordinating production releases, and conducting post-implementation reviews are among your operational duties. You will oversee application access, manage license renewals, and be responsible for the ServiceNow access/removal request process. Guiding teams to address access and vulnerability concerns will be part of your daily routine. Your role will also involve active participation in change advisory board meetings, collaborating with stakeholders to ensure seamless release execution, and taking the lead in scan template reviews and vulnerability assessments. If you are looking to leverage your skills in information security and release management within a dynamic and collaborative environment, this position offers a platform for professional growth and impact. Regards, Infosys BPM Recruitment team,

JOB DESCRIPTION The Application Security Developer IV will work closely with both engineering (development) teams and the Information Security group to make sure that RealPage applications are developed with security in mind. Deep awareness of the OWASP Top 10 project and practices for preventing vulnerabilities when developing applications in any tech stack is a key success factor. This person will help to ensure Static Application Security Testing (SAST) occurs during the development lifecycle and that reported vulnerabilities are properly remediated. This person will also help train developers on how to remediate the vulnerabilities and what those vulnerabilities are when needed, Implement OWASP Application Security Verification Standards (ASVS). Additionally, this person role-models for a small team (1-5 others) of persons with similar responsibilities. Excellent communication skills and a good familiarity with DevOps pipelines are key success factors for this role. PRIMARY RESPONSIBILITIES • Shift-Left security in Software Development Life Cycle (SDLC) for various applications. • Provide guidelines, tooling, best practices and implement for: o SAST o Dynamic Application Security Testing (DAST) o Software Composition Analysis (SCA) o Runtime Application Self-Protection (RASP) • Provide guidance and coaching to teams regarding security remediation efforts • Provide guidance to teams on how to properly integrate SAST, DAST, SCA scans into their pipelines • Work with teams to ensure dependency scans are also part of their development process and pipelines • Provide ongoing improvements and awareness training on new application threats and remediation techniques • Provide guidance on OpenID Connect (OIDC) and OAuth2 and other identity-related best practices and practical approaches for client implementation • Help engineering teams plan long term remediation solutions when deep changes are required for remediation activities • Collaborate with the Information Security (InfoSec) team on prioritizing both applications and vulnerabilities based on risk • Provide guidance to teams on proper storage and retrieval of application secrets REQUIRED SKILLS AND EXPERIENCE • 5+ years C# .NET • Web API • SQL • Deep familiarity with the OWASP Top 10 and other security concerns for web applications • Familiarity with OWASP Application Security Verification Standards (ASVS) • Familiarity with SAST, DAST, SCA Scans • Preferred: python or java NICE TO HAVE SKILLS AND EXPERIENCE fortify on demand invicti net sparker

Job Title: Sales Director – Salesforce Experience: 14+ years Skills: Cloud Salesforce, Consulting, MuleSoft, Service Cloud, Marketing Cloud Location: Hyderabad/Mumbai, India Coforge is seeking a dynamic Salesforce and MuleSoft Sales Lead to drive new growth, fortify the partnership with Salesforce India and spearhead the GTM strategy for the region. The role necessitates profound expertise in the Salesforce and MuleSoft business, a proven track record of driving revenue growth and a robust capability to scale the Salesforce business. Requirement: Bachelor’s degree in Business, IT, or related fields; an MBA is preferred 14+ years of experience in enterprise sales Proven track record of meeting or exceeding sales targets in the IT services industry. Deep understanding of enterprise IT solutions, especially Salesforce & MuleSoft, Strong network and relationships with key stakeholders across enterprise accounts in India. Exceptional communication, negotiation, and presentation skills. Strategic mindset with the ability to drive growth and navigate complex sales cycles. Entrepreneurial spirit and ability to thrive in a fast-paced, results-driven environment. Job Description: Sales Strategy & Leadership: Develop and execute the sales strategy to achieve revenue targets for the IMEA market. Market Expansion : Identify new business opportunities, penetrate untapped markets, and drive growth across industries Client Engagement : Build strong relationships with CXOs and decision-makers at enterprise accounts to understand their needs and position Coforge as the preferred IT solutions partner Team Management: Recruit, mentor, and lead a high-performing sales team, fostering a culture of accountability, innovation, and excellence Revenue Growth: Drive consistent revenue growth by creating a robust sales pipeline, closing large enterprise deals, and ensuring long-term account retention Collaboration : Work closely with delivery, pre-sales, and marketing teams to design and deliver value-driven solutions for clients Market Intelligence: Stay ahead of market trends, competitor activities, and emerging technologies to ensure Coforge remains competitive and innovative Partner Relationship: Regular contact and relationship build with Salesforce & MuleSoft teams in IMEA.

About BNP Paribas India Solutions Established in 2005, BNP Paribas India Solutions is a wholly owned subsidiary of BNP Paribas SA, European Union’s leading bank with an international reach. With delivery centers located in Bengaluru, Chennai and Mumbai, we are a 24x7 global delivery center. India Solutions services three business lines: Corporate and Institutional Banking, Investment Solutions and Retail Banking for BNP Paribas across the Group. Driving innovation and growth, we are harnessing the potential of over 10000 employees, to provide support and develop best-in-class solutions. About BNP Paribas Group BNP Paribas is the European Union’s leading bank and key player in international banking. It operates in 65 countries and has nearly 185,000 employees, including more than 145,000 in Europe. The Group has key positions in its three main fields of activity: Commercial, Personal Banking & Services for the Group’s commercial & personal banking and several specialised businesses including BNP Paribas Personal Finance and Arval; Investment & Protection Services for savings, investment, and protection solutions; and Corporate & Institutional Banking, focused on corporate and institutional clients. Based on its strong diversified and integrated model, the Group helps all its clients (individuals, community associations, entrepreneurs, SMEs, corporates and institutional clients) to realize their projects through solutions spanning financing, investment, savings and protection insurance. In Europe, BNP Paribas has four domestic markets: Belgium, France, Italy, and Luxembourg. The Group is rolling out its integrated commercial & personal banking model across several Mediterranean countries, Turkey, and Eastern Europe. As a key player in international banking, the Group has leading platforms and business lines in Europe, a strong presence in the Americas as well as a solid and fast-growing business in Asia-Pacific. BNP Paribas has implemented a Corporate Social Responsibility approach in all its activities, enabling it to contribute to the construction of a sustainable future, while ensuring the Group's performance and stability. Commitment to Diversity and Inclusion At BNP Paribas, we passionately embrace diversity and are committed to fostering an inclusive workplace where all employees are valued, respected and can bring their authentic selves to work. We prohibit Discrimination and Harassment of any kind and our policies promote equal employment opportunity for all employees and applicants, irrespective of, but not limited to their gender, gender identity, sex, sexual orientation, ethnicity, race, colour, national origin, age, religion, social status, mental or physical disabilities, veteran status etc. As a global Bank, we truly believe that inclusion and diversity of our teams is key to our success in serving our clients and the communities we operate in. About Business Line /Function At BNP Paribas Deutschland, we are working on the next stage of banking and trading to allow our customers access to our services through modern third-party offerings. APIs enable us to work more closely with partners to create new solutions with added value for our customers. In addition to our existing APIs, we want to develop and implement new ideas, build a platform for developers and continuously work on the developer experience. In this way, we want to extend cooperation with large and small enterprises with the goal to build an ecosystem. Job Title Java API Developer Date 19-Aug-2024 Department ISPL – PI Germany Location: Chennai Reports To Business Line / Function: (Direct) Grade (if applicable) (Functional) Number Of Direct Reports Directorship / Registration: NA Position Purpose The developer helps with the development of API-related information systems and contributes to ensuring its continuity through personal effort as part of a team or to a limited extent within the department to achieve short-term and occasionally medium-term goals. They help in the development and realization of the software architecture as a contribution to high-quality software solutions in accordance with the applicable best practices (maintainable, safe, documented, scalable, testable and in accordance with the needs of the business area). Responsibilities Direct Responsibilities Participating in API activities of BNP Paribas Developing API products in banking, trading and beyond banking Co-designing technical implementation of API strategy Ensuring the timeliness of documentation, processes, and tool landscape Maintenance and development of the API platform Ensuring continuous delivery processes via automated pipelines Implementing and co-designing architectural specifications,ensuring software quality, test automation, and integration of tools (e.g., Sonar, Fortify) into development process Contributing Responsibilities Supporting design and implementation of internal APIs Supporting co-creation with partners with technical expertise Supporting implementation and maintenance of BNP Paribas API Policy Supporting requirements elicitation Co-designing API guidelines for internal software development Co-designing API lifecycle management Technical & Behavioral Competencies Bachelor’s Degree in computer science or computer engineering At least 7+ years of hands-on experience on Advance API development 6+ years of experience as software engineer Java EE including (Web Services, REST, JPA) Strong in Design Patterns, Hands on in Java 8,11 or 17 Hands on in Spring , Spring Boot, Spring Security, Spring Cloud, Spring Data JPA Webservices : RestFull webservcie, REST API , Hands on in openAPI/Swagger Databases : Oracle/PostgreSqL CICD : Docker, Kubernetes , Jenkins, Maven, Pod Man Design , Develop and Maintain robust and Complex client facing applications that interacts with one to many interfaces. Core Skill Sets Strong Java technical Expertise Strong critical thinker with problem solving aptitude. Good written and oral communication skills Hands-on experience on API related activities: requirement analysis, design, resource-based API modeling, micro-services architecture Knowledge about API design standards, patterns and best-practices Hands-on experience in API security standards and implementation Hibernate or JOOQ Microservice Architecture Testing Junit & Mockito Specific Additional Skill Sets Working Knowledge on Angular, Web Design , CSS, TypeScript, EcmaScript 6. Cloud exp. with at least one of the following: OpenShift, AWS, Azure or Google Cloud Monitoring & Logging with at least one of the following: Prometheus, Grafana, ELK Stack or Cloud Watch WebFlux OPA (Open Policy Agent) Skills Referential Specific Qualifications (if required) Behavioural Skills: (Please select up to 4 skills) Ability to collaborate / Teamwork Client focused Attention to detail / rigor Ability to deliver / Results driven Transversal Skills: (Please select up to 5 skills) Ability To Develop Others & Improve Their Skills Ability to understand, explain and support change Choose an item. Choose an item. Choose an item. Education Level Bachelor Degree or equivalent Experience Level At least 7 years

We are seeking an experienced Application Security Manager to lead our security initiatives and ensure the integrity, confidentiality, and availability of our systems and data. This role is crucial in safeguarding our digital assets and maintaining compliance with industry standards. Themanageroftheapplicationsecurityprogramwillberesponsible for - 1. To Integratesecuritytools,standards,andprocessesintothe productlifecycle(PLC). 2. EnsurethatdevelopersandQApersonnelaretrainedwiththeappropriatele velofsecurityknowledgetoperformtheir dailyactivities. 3. Improveandsupportapplicationsecuritytooldeploymentsincludingstaticanal ysisandruntimetestingtools and securedevelopmentstandards. 4. Conduct and manage periodic penetration testing exercises through expert consulting, internal technology team, and managed services to identify the gaps and fulfill audit/ regulator requirements. 5. Create, Integrate and manage threat modelling process/ practices, following SSDLC and application framework. 6. Manage the secure configuration/ hardening guidelines and compliance. 7. Should create and manage application security KPIs. KRIs compliance reports and dashboards. 8. Should have strong hand-on experience of different tools, processes related to SAST, DAST, API Security and Threat Modelling. 9. Should take care of Infosec functions by coordinating with various stakeholders (App Team, Vendors, Auditors, Regulators). 10. Should have knowledge of best practices like OWASP, Microsoft SDL, SANS, NIST. 11. Should have a good espouser to cloud environment (AWS) and WAF (Imperva, Akamai) 12. Knowledge of Network and Data Security is a plus. Qualifications and Experience: 1. 8-10 years of hands-on experience in application security. 2. Strong understanding of application security best practices, frameworks, and security technologies, like Checkmarx, Fortify, Burp Suite, OWASP ZAP, Acunetix etc. 3. Proven experience in managing VA, PT, Code review, SAST, DAST, SSDLC, Threat Modelling, and Audit processes. 4. Familiarity with regulatory requirements and compliance standards (e.g., RBI, SEBI). 5. Excellent communication, interpersonal, analytical and problem-solving skills. 6. Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. Masters degree or relevant certifications preferred.

Job Description Senior Specialist, Emerging Talent Rotation Lead The Opportunity Based in Hyderabad, join a global healthcare biopharma company and be part of a 130- year legacy of success backed by ethical integrity, forward momentum, and an inspiring mission to achieve new milestones in global healthcare. Be part of an organization driven by digital technology and data-backed approaches that support a diversified portfolio of prescription medicines, vaccines, and animal health products. Drive innovation and execution excellence. Be a part of a team with passion for using data, analytics, and insights to drive decision-making, and which creates custom software, allowing us to tackle some of the world's greatest health threats. Our Technology Centers focus on creating a space where teams can come together to deliver business solutions that save and improve lives. An integral part of our company’s IT operating model, Tech Centers are globally distributed locations where each IT division has employees to enable our digital transformation journey and drive business outcomes. These locations, in addition to the other sites, are essential to supporting our business and strategy. Role Overview The incumbent is responsible for strategizing and operationalizing core business processes associated with Our Company's Hyderabad IT Emerging Talent Rotation (ETR) Program, a rapidly expanding 2-year, 3 rotation program for full-time, entry-level employees, with the intent of identifying and developing the future generation of IT employees. The IT Emerging Talent Rotation Program is a part of IT’s Talent Programs (ETP). These programs cultivate the technical, business, and professional experience of student and entry-level technologists. What Will You Do In This Role Hiring and Onboarding Hire entry-level, full-time, Hyderabad based employees annually as a part of the IT Emerging Talent Rotation Program Manage onboarding and pre-onboarding logistics and activities for program members annually Leadership, Program Operations Management, and Planning Process stewardship including definition, execution, and continuous improvement of core business processes associated with the program such as the pre-onboarding/onboarding processes, rotation matching, rotation supervisors' engagement, end of the year performance process, post-program job placement process, training and support for program members and affiliates Collaborate with Senior Leaders to define valuable and meaningful assignments for rotation roles and the final placement process at the end of program. Identify and match employees to these opportunities Plan and execute multi-day virtual and in-person program meetings that advance program members’ learning and development such as ETR onboarding, commencement, staff meetings/ ETR townhalls, and training opportunities for both ETRs and supervisors Guide volunteer ETR leadership teams in delivering goals for the program e.g. Global Newsletter Committee, Onboarding Team, Townhalls etc. Track program budget Employee Development and Performance Management Responsible for employee performance management including consequence management, differentiation (feedback collection, year-end review process), HR transactional support etc. Collaborate with HR as needed Develop ETR program member proficiency within the core competencies to fortify technical and professional skills through partnership with a coaching team that includes rotation assignment manager. Proactively identify development opportunities for ETRs and coach them to deliver business results. Collaborate with Senior Leaders to manage employee transition from the program to regular employment Program Metrics and Process Improvements Work with Global ETR Program Lead to establish and track program metrics, benchmark against programs across our company and other industries. Continuously improve program processes to be more efficient and sustainable as the program expands Relationship Management Manage relationship with Recruiting and University Relations Teams, IT Divisional Leaders and IT areas, HR Business Partners, support for ETR Assignment Supervisors, global ETR program leads and global ETRs What you should have Qualification Education Minimum Requirement A degree in business, management, information technology, HR or project management preferred. Required Experience and Skills A minimum 7 years of professional experience in HR and/or IT development programs, preferably in talent program/project management and leadership. Must possess excellent interpersonal, deliberate communication, collaboration, negotiation, influencing and project management skills. Preferred Experience and Skills Working knowledge of development of new hires at the university level and experience with Next Generation talent Experience in multiple areas across the pharmaceutical business or IT or Leadership experience with the digital transformation strategy across the enterprise preferred. Ability to motivate others towards continuous improvement. Who we are We are known as Merck & Co., Inc., Rahway, New Jersey, USA in the United States and Canada and MSD everywhere else. For more than a century, we have been inventing for life, bringing forward medicines and vaccines for many of the world's most challenging diseases. Today, our company continues to be at the forefront of research to deliver innovative health solutions and advance the prevention and treatment of diseases that threaten people and animals around the world. What We Look For Imagine getting up in the morning for a job as important as helping to save and improve lives around the world. Here, you have that opportunity. You can put your empathy, creativity, digital mastery, or scientific genius to work in collaboration with a diverse group of colleagues who pursue and bring hope to countless people who are battling some of the most challenging diseases of our time. Our team is constantly evolving, so if you are among the intellectually curious, join us—and start making your impact today. Current Employees apply HERE Current Contingent Workers apply HERE Search Firm Representatives Please Read Carefully Merck & Co., Inc., Rahway, NJ, USA, also known as Merck Sharp & Dohme LLC, Rahway, NJ, USA, does not accept unsolicited assistance from search firms for employment opportunities. All CVs / resumes submitted by search firms to any employee at our company without a valid written search agreement in place for this position will be deemed the sole property of our company. No fee will be paid in the event a candidate is hired by our company as a result of an agency referral where no pre-existing agreement is in place. Where agency agreements are in place, introductions are position specific. Please, no phone calls or emails. Employee Status Regular Relocation VISA Sponsorship Travel Requirements Flexible Work Arrangements Hybrid Shift Valid Driving License Hazardous Material(s) Required Skills Preferred Skills Job Posting End Date 08/15/2025 A job posting is effective until 11 59 59PM on the day BEFORE the listed job posting end date. Please ensure you apply to a job posting no later than the day BEFORE the job posting end date. Requisition ID R335911

Experience:- 3+ Years Job Description: WordPress Developer will be responsible for both front-end and back-end development—everything from theme integration to plug-ins and security updates. You need to establish and guide website architecture so that sites are both attractive and user-friendly. Typical Duties and Responsibilities: 1. Design, implement, and manage websites using WordPress 2. Collaborate with members of a creative team 3. Manage front-end and back-end website development 4. Integrate WordPress plug-ins and themes 5. Maintain well-documented, reusable, and transferable code 6. Troubleshoot and resolve website problems for clients and co-workers Skillsets Required: 1. Proficiency using WordPress 2. Expertise in HTML5, CSS3, JavaScript, and jQuery 3. Experience using debugging tools such as Firebug and Chrome Inspector 4. Strong understanding of front-end and back-end website development 5. Keen attention to detail, Company Intro Nliven Technologies Pvt. Ltd. is an Information Technology Consulting company with offices in Indore, India, and Atlanta, USA. Founded in the year 2002, we go beyond conventional IT services. We specialize in crafting avant-garde AI-driven, affordable solutions that revamp business operations, elevate efficiency through automation, and fortify the online presence. We provide our services in various domains of Information Technology, viz. Software Application Development (Web and Mobile ), Website Development and Designing, Web Services Development and integration, Manual and Automation Testing, User Interface and User Experience, Server Administration (including Cloud Servers ), Amazon Web Services, SEO, Digital Marketing, etc. Our Expertise Encompasses projects based on Artificial Intelligence, Data Analytics and Insights, Data Scraping, Location Intelligence and GPS Tracking, and Online Digital Publishing.

As a Software Engineer-II (PL/SQL) at Prepaid Management Services, a division of Mastercard specializing in Prepaid Solutions, you will be part of the Global Technology Services (GTS) team within the Mastercard Operations & Technologies group. Your role involves working in an Agile team to deliver innovative solutions for both internal and external customers in Prepaid Management Services. In this role, you will actively participate in sprint planning, daily stand-ups, demonstrations, and retrospectives. Your responsibilities include translating technical designs into high-quality code, independently developing scalable solutions using Java technology, and ensuring the development of readable and maintainable code with appropriate unit tests. You will review existing configurations and installations, provide design decisions for platform environment improvements, and actively seek to simplify architecture and minimize code. Additionally, you will support test and build automation, produce high-level and detailed feature estimations, and adhere to the development process while suggesting improvements where necessary. Collaboration with team members is essential, as you will work closely with others to ensure individual and team tasks are completed on time. You will participate in peer code reviews, produce technical design documentation, and ensure that your work complies with the architectural roadmap. To excel in this role, you should have good database development knowledge, particularly in Oracle v10+ and PLSQL. Exposure to the Oracle ecosystem, JAVA development (including Spring Boot, Hibernate, and Sprint Batch), microservices, and Pivotal Cloud Foundry will be advantageous. Experience with test-driven development practices, Agile development methods, version control systems (GIT), and CI tools (Jenkins, Fortify, Sonar) is also desirable. If you are a proactive and detail-oriented individual with a passion for delivering high-quality solutions in a collaborative Agile environment, this role offers an exciting opportunity to contribute to the growth and success of the Prepaid Management Services business at Mastercard.,

Back to Careers Page Executive Lease Accounting (Gurgaon) Full Time Gurugram Key Responsibilities Lease & Lessor Accounting Maintain and reconcile lease schedules for both operating and finance leases. Ensure accurate classification of leases under applicable accounting standards. Record lease liabilities and right-of-use assets in SAP. Monitor lease modifications, renewals, and terminations. Handle lessor accounting including recognition of lease income and asset depreciation. Capitalisation & Decapitalisation of Interest Capitalize interest expense on lease-related CWIP assets. Decapitalize interest upon asset commissioning or lease termination. Record interest income on lease receivables where applicable. Ensure correct treatment of interest under Ind AS 23 and Ind AS 116. CWIP Accounting Track lease-related CWIP projects and ensure proper asset tagging. Monitor project completion and transfer to fixed assets. Reconcile CWIP balances monthly and ensure accurate reporting SAP Monthly Accounting Entries Post monthly lease amortization, interest expense, and depreciation entries. Ensure accurate SAP configuration for lease modules. Perform monthly reconciliations of lease-related GL accounts. Generate and review SAP reports for lease accounting compliance. Farmer Lease Deed Advances Record advances paid to farmers for lease agreements. Clear advances upon execution of lease deeds. Monitor and reconcile advance accounts regularly. Ensure proper documentation and compliance with internal controls. Sale Deed Accounting Record sale deed transactions including asset disposal and revenue recognition. Calculate and post gain/loss on sale of leased assets. Ensure compliance with applicable tax and legal requirements. Coordinate with legal and operations teams for documentation. Non-Negotiable Skills And Abilities Bachelor’s/master’s degree in accounting, Finance, or related field. CA Semi qualified/ CA Drop Out preferred. 3–5 years of experience in lease accounting, preferably in SAP environment. Working experience for leazeOn software would be preferred. Strong understanding of Ind AS 116, Ind AS 23, and related standards. Experience with CWIP and asset accounting. Proficiency in SAP FI/AA modules. Persona Strong communication Analytical and reconciliation skills Team Player Detail – Oriented Education And Experience Required Bachelor’s/master’s degree in accounting, Finance, or related field. CA Semi qualified/ CA Drop Out preferred. 3–5 years of experience in lease accounting, preferably in SAP environment. THE SUNSURE ADVANTAGE At Sunsure Energy, we wholeheartedly embrace diversity in our workforce and proudly uphold our status as an Equal Opportunity Employer. Our unwavering commitment to nurturing excellence among our employees is evident through our support for a myriad of learning and growth opportunities, as well as the cultivation of entrepreneurial capabilities. Across the year, we intricately weave the Sunsure family fabric through a series of meaningful engagements that fortify the invisible threads binding us together., employee relations, performance management, and training, is beneficial. About Us Sunsure stands as India’s leading Independent Power Producer, boasting exceptional capabilities in solar and wind technologies. With expertise in utility scale and distributed RE projects, Sunsure caters to commercial and industrial (C&I) clients through open access and behind the meter solutions and leads the nation’s sustainable energy revolution as a premier renewable energy company. Supported by a $400 million investment from Partners Group AG, Sunsure’s growth trajectory is bolstered by strategic partnerships and a commitment to shaping a greener India. Our mission and vision We are on a mission to deliver high performing renewable energy assets to meet the green power demand of India’s largest commercial and industrial corporates and in turn lead the charge for creating India’s clean energy powered future. We aim to reach 5 GW of production capacity by 2028 using our expertise in solar, wind and battery storage technologies, and become India’s largest renewable independent power producer.

Position Purpose Provide a brief description of the overall purpose of the position, why this position exists and how it will contribute to achieving the teams goal. Responsibilities Direct Responsibilities Strong expertise in application security concepts and activities like Source Code Review (SAST) & Dynamic application vulnerability scanning (DAST). Good understanding of Information Security concepts and strategies. Knowledge of Secure Development methodologies and frameworks. Hands-on experience in penetration testing and tools like Apisan, WebInspect, Fortify, AppSpider, BurpSuite, Qualys, Checkmarx, Coverity Well-versed in conducting Security Review, Assessments and providing recommendations. Knowledge of OWASP, SANS standards. Executing IT risk assessment reviews, identifying controls gaps and working in collaboration with subject matter experts to devise appropriate mitigation plans. Experience in Process Improvement, Controls Enhancement and Reporting. Identifying key risk trends, issues and other insights requiring further investigation and following up with Technology as appropriate. Providing independent expert advice to the IT areas on application & data risk issues. Engaging with organization wide risk and control groups, including internal audit and territory control teams. Working with Technology stakeholders (including Production Support and Development teams) to identify the IT risks affecting the organization and formulate appropriate remediation strategies based on a full understanding of business exposure and compensating controls. Contributing Responsibilities Monitoring and oversight of existing IT risks, working collaboratively with stakeholders in ensuring plans are managed within timescales and escalating where appropriate. Managing relationships with Business and IT teams, chairing periodic meetings and being a point of contact for escalating to wider team members. Assistance with drafting of risk acceptance statements and coordinating sign-off from business and IT stakeholders. SPOC for security architecture meetings. Technical & Behavioral Competencies Excellent Interpersonal and presentation skills Strong in verbal and written communication Ability to liaise with cross-functional stakeholders globally Clear understanding of application and data security Must be flexible, independent, self-motivated Good analytical skills. Specific Qualifications (if required) CEH, SSCP, OSCP certified. Technical Graduate (Computer Science) Preferable.

Summary Position Summary Job title: DevSecOps - Consultant About At Deloitte, we do not offer you just a job, but a career in the highly sought-after risk Management field. We are one of the business leaders in the risk market. We work with a vision to make the world more prosperous, trustworthy, and safe. Deloitte’s clients, primarily based outside of India, are large, complex organizations that constantly evolve and innovate to build better products and services. In the process, they encounter various risks and the work we do to help them address these risks is increasingly important to their success—and to the strength of the economy and public security. By joining us, you will get to work with diverse teams of professionals who design, manage, and implement risk-centric solutions across a variety of domains. In the process, you will gain exposure to the risk-centric challenges faced in today’s world by organizations across a range of industry sectors and become subject matter experts in those areas. Our Risk and Financial Advisory services professionals help organizations effectively navigate business risks and opportunities—from strategic, reputation, and financial risks to operational, cyber, and regulatory risks—to gain competitive advantage. We apply our experience in ongoing business operations and corporate lifecycle events to help clients become stronger and more resilient. Our market-leading teams help clients embrace complexity to accelerate performance, disrupt through innovation, and lead in their industries. We use cutting-edge technology like AI/ML techniques, analytics, and RPA to solve Deloitte’s clients ‘most complex issues. Working in Risk and Financial Advisory at Deloitte US-India offices has the power to redefine your ambitions. The Team Cyber & Strategic Risk Deloitte's DevSecOps team is responsible for a transformational shift which incorporates secure culture, practices, and tools to drive visibility, collaboration, and agility of security, into each phase of the DevOps pipeline. The team collaborates closely with development, operations, quality assurance, and security stakeholders to deliver secure, scalable, and high-quality solutions at speed. Work you’ll do Roles & Responsibilities: As a Consultant, you are responsible for performing following activities as a DevSecOps professional: Understand and be compliant with the Service Level Agreements defined for the DevSecOps services; Understand and deep knowledge of application security engineering principles, and helping client’s development team and function to follow secure development practices which includes primarily monitoring and performing the security design review, architecture review, threat modeling, security testing, secure code review, secure build processes; Well versed with the application deployment and configuration baselines, and understanding of how the application environment operates in a secure environment and how exceptions are handled during operations; Facilitate use of technology-based tools or methodologies to continuously improve the monitoring, management and reliability of the service; Perform manual and automated security assessment of the applications; Involved in triaging and defect tracking process with the development team and helping the team to fix issues at the code level based on the priority of the tickets; Be a liaison between the Application development and infrastructure team, and integrate the processes between infrastructure monitoring and operations processes with the secure development/testing and management processes; Identifying, researching and analyzing application security events which may include emerging and existing persistent threats to the client's environment; and Performing active monitoring and tracking of application related threat actors and tactics, techniques and procedures (TTPs), that could likely cause an impact to client organization Required Skills Minimum of 3-5 years’ experience in application security development, security testing, deployment and security management phases; Deep interest in application specific vulnerabilities, code development and infrastructure knowledge; Investigative and analytical problem-solving skills; Experience in collecting, analyzing, and interpreting qualitative and quantitative data from defined application security services related sources (tools, monitoring techniques etc.) Knowledge and experience of OWASP Top 10, SANS Secure Programming, Security Engineering Principles; Hands-on experience in performing code review of dot Net, Java and Swift and objective C code; Hands-on experience in running, installing and managing SAST, DAST , SCA and IAST solutions, such as Checkmarx, Fortify and Contrast in large enterprise Understanding of leading vulnerability scoring standards, such as CVSS, and ability to translate vulnerability severity as security risk; Hands-on experience on at least one CI/CD tool set and building pipelines using Team city, Bamboo, Jenkins, Chef, Puppet, selenium, AWS and AZURE DevOps; Hands on experience on container technology such as Kubernetes, Dockers, AKS, EKS. Knowledge of cloud environments and deployment solutions such as server less computing; Hands on experience in penetration testing of mobile, desktop and web applications; Must have experience in writing custom exploitation scripts and utilities; Possession of excellent oral and written communication skill; Knowledge of one or more scripting languages for automation and complex searches; Must have cloud security specialization in Security; and Certification such as EC-Council CEH (Certified Ethical Hacker), DevSecOps Professional (CDP) , ISC2 Certified Cloud Security Professional (CCSP), Certified API Security Professional (CASP) , CTMP (Certified Threat Modeling Professional) etc. are preferred. Qualification Bachelor's degree or higher in Computer Science, or equivalent experience. Experience in cloud service providers such as AWS, GCP, Azure, Oracle are preferred Experience in implementing and managing security measures within Kubernetes environments, designing and enforcing advanced security protocols for API infrastructure, managing and optimizing our containerized applications using Docker, automating and managing our infrastructure as code using Terraform, automating IT processes and configurations using Ansible, and identifying and mitigating potential security threats through comprehensive threat modeling practices. Solid and demonstrable comprehension of Information Security including OWASP/SANS, Security Test Case development (or mis-use case). Understanding of security essentials including; networking concepts, defense strategies, and current security technologies Experience with securing IaC templates (e.g., Terraform, CloudFormation) and integrating IaC scanning tools into pipelines to detect misconfigurations and vulnerabilities early in the provisioning process Familiarity with container security best practices, including image scanning, runtime protection, and orchestration security (e.g., Docker, Kubernetes) Ability to conduct threat modeling exercises to identify and mitigate potential risks in application and infrastructure design. Ability to research and characterize security threats to include identification and classification of application related threat indicators Good to have: Hands-on experience with industry-standard DevOps tools for automation, configuration management, and orchestration (e.g., Jenkins, GitLab CI/CD, Bamboo, CircleCI, Ansible, Terraform, Chef, Puppet) Proficiency in scripting languages (e.g., Python, Bash, PowerShell) for automation and pipeline customization. Practical knowledge of cloud-native CI/CD services and deployment automation (e.g., AWS CodePipeline, Azure DevOps, Google Cloud Build). Ability to design and manage cloud-based deployment pipelines, leveraging Infrastructure as Code (IaC) tools (e.g., AWS CloudFormation, Azure Resource Manager, Google Deployment Manager) Experience tuning security tools and pipelines to reduce noise and improve actionable findings. Ability to collaborate with development and security teams to investigate, triage, and resolve false positives efficiently. How You’ll Grow At Deloitte, we’ve invested a great deal to create a rich environment in which our professionals can grow. We want all our people to develop in their own way, playing to their own strengths as they hone their leadership skills. And, as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities—including exposure to leaders, sponsors, coaches, and challenging assignments—to help accelerate their careers along the way. No two people learn in the same way. So, we provide a range of resources including live classrooms, team-based learning, and eLearning. DU: The Leadership Center in India, our state-of-the-art, world-class learning Center in the Hyderabad offices is an extension of the Deloitte University (DU) in Westlake, Texas, and represents a tangible symbol of our commitment to our people’s growth and development. Explore DU: The Leadership Center in India . Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. Deloitte is committed to achieving diversity within its workforce, and encourages all qualified applicants to apply, irrespective of gender, age, sexual orientation, disability, culture, religious and ethnic background. We offer well-being programs and are continuously looking for new ways to maintain a culture that is inclusive, invites authenticity, leverages our diversity, and where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with Deloitte’s clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. Recruiting tips Finding the right job and preparing for the recruitment process can be tricky. Check out tips from our Deloitte recruiting professionals to set yourself up for success. Check out recruiting tips from Deloitte recruiters . Benefits We believe that to be an undisputed leader in professional services, we should equip you with the resources that can make a positive impact on your well-being journey. Our vision is to create a leadership culture focused on the development and well-being of our people. Here are some of our benefits and programs to support you and your family’s well-being needs. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you . Our people and culture Our people and our culture make Deloitte a place where leaders thrive. Get an inside look at the rich diversity of background, education, and experiences of our people. What impact will you make? Check out our professionals’ career journeys and be inspired by their stories. Professional development You want to make an impact. And we want you to make it. We can help you do that by providing you the culture, training, resources, and opportunities to help you grow and succeed as a professional. Learn more about our commitment to developing our people . © 2025. See Terms of Use for more information. Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee ("DTTL"), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as "Deloitte Global") does not provide services to clients. In the United States, Deloitte refers to one or more of the US member firms of DTTL, their related entities that operate using the "Deloitte" name in the United States and their respective affiliates. Certain services may not be available to attest clients under the rules and regulations of public accounting. Please see www.deloitte.com/about to learn more about our global network of member firms. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 306773

Summary Position Summary Job title: DevSecOps - Consultant About At Deloitte, we do not offer you just a job, but a career in the highly sought-after risk Management field. We are one of the business leaders in the risk market. We work with a vision to make the world more prosperous, trustworthy, and safe. Deloitte’s clients, primarily based outside of India, are large, complex organizations that constantly evolve and innovate to build better products and services. In the process, they encounter various risks and the work we do to help them address these risks is increasingly important to their success—and to the strength of the economy and public security. By joining us, you will get to work with diverse teams of professionals who design, manage, and implement risk-centric solutions across a variety of domains. In the process, you will gain exposure to the risk-centric challenges faced in today’s world by organizations across a range of industry sectors and become subject matter experts in those areas. Our Risk and Financial Advisory services professionals help organizations effectively navigate business risks and opportunities—from strategic, reputation, and financial risks to operational, cyber, and regulatory risks—to gain competitive advantage. We apply our experience in ongoing business operations and corporate lifecycle events to help clients become stronger and more resilient. Our market-leading teams help clients embrace complexity to accelerate performance, disrupt through innovation, and lead in their industries. We use cutting-edge technology like AI/ML techniques, analytics, and RPA to solve Deloitte’s clients ‘most complex issues. Working in Risk and Financial Advisory at Deloitte US-India offices has the power to redefine your ambitions. The Team Cyber & Strategic Risk Deloitte's DevSecOps team is responsible for a transformational shift which incorporates secure culture, practices, and tools to drive visibility, collaboration, and agility of security, into each phase of the DevOps pipeline. The team collaborates closely with development, operations, quality assurance, and security stakeholders to deliver secure, scalable, and high-quality solutions at speed. Work you’ll do Roles & Responsibilities: As a Consultant, you are responsible for performing following activities as a DevSecOps professional: Understand and be compliant with the Service Level Agreements defined for the DevSecOps services; Understand and deep knowledge of application security engineering principles, and helping client’s development team and function to follow secure development practices which includes primarily monitoring and performing the security design review, architecture review, threat modeling, security testing, secure code review, secure build processes; Well versed with the application deployment and configuration baselines, and understanding of how the application environment operates in a secure environment and how exceptions are handled during operations; Facilitate use of technology-based tools or methodologies to continuously improve the monitoring, management and reliability of the service; Perform manual and automated security assessment of the applications; Involved in triaging and defect tracking process with the development team and helping the team to fix issues at the code level based on the priority of the tickets; Be a liaison between the Application development and infrastructure team, and integrate the processes between infrastructure monitoring and operations processes with the secure development/testing and management processes; Identifying, researching and analyzing application security events which may include emerging and existing persistent threats to the client's environment; and Performing active monitoring and tracking of application related threat actors and tactics, techniques and procedures (TTPs), that could likely cause an impact to client organization Required Skills Minimum of 3-5 years’ experience in application security development, security testing, deployment and security management phases; Deep interest in application specific vulnerabilities, code development and infrastructure knowledge; Investigative and analytical problem-solving skills; Experience in collecting, analyzing, and interpreting qualitative and quantitative data from defined application security services related sources (tools, monitoring techniques etc.) Knowledge and experience of OWASP Top 10, SANS Secure Programming, Security Engineering Principles; Hands-on experience in performing code review of dot Net, Java and Swift and objective C code; Hands-on experience in running, installing and managing SAST, DAST , SCA and IAST solutions, such as Checkmarx, Fortify and Contrast in large enterprise Understanding of leading vulnerability scoring standards, such as CVSS, and ability to translate vulnerability severity as security risk; Hands-on experience on at least one CI/CD tool set and building pipelines using Team city, Bamboo, Jenkins, Chef, Puppet, selenium, AWS and AZURE DevOps; Hands on experience on container technology such as Kubernetes, Dockers, AKS, EKS. Knowledge of cloud environments and deployment solutions such as server less computing; Hands on experience in penetration testing of mobile, desktop and web applications; Must have experience in writing custom exploitation scripts and utilities; Possession of excellent oral and written communication skill; Knowledge of one or more scripting languages for automation and complex searches; Must have cloud security specialization in Security; and Certification such as EC-Council CEH (Certified Ethical Hacker), DevSecOps Professional (CDP) , ISC2 Certified Cloud Security Professional (CCSP), Certified API Security Professional (CASP) , CTMP (Certified Threat Modeling Professional) etc. are preferred. Qualification Bachelor's degree or higher in Computer Science, or equivalent experience. Experience in cloud service providers such as AWS, GCP, Azure, Oracle are preferred Experience in implementing and managing security measures within Kubernetes environments, designing and enforcing advanced security protocols for API infrastructure, managing and optimizing our containerized applications using Docker, automating and managing our infrastructure as code using Terraform, automating IT processes and configurations using Ansible, and identifying and mitigating potential security threats through comprehensive threat modeling practices. Solid and demonstrable comprehension of Information Security including OWASP/SANS, Security Test Case development (or mis-use case). Understanding of security essentials including; networking concepts, defense strategies, and current security technologies Experience with securing IaC templates (e.g., Terraform, CloudFormation) and integrating IaC scanning tools into pipelines to detect misconfigurations and vulnerabilities early in the provisioning process Familiarity with container security best practices, including image scanning, runtime protection, and orchestration security (e.g., Docker, Kubernetes) Ability to conduct threat modeling exercises to identify and mitigate potential risks in application and infrastructure design. Ability to research and characterize security threats to include identification and classification of application related threat indicators Good to have: Hands-on experience with industry-standard DevOps tools for automation, configuration management, and orchestration (e.g., Jenkins, GitLab CI/CD, Bamboo, CircleCI, Ansible, Terraform, Chef, Puppet) Proficiency in scripting languages (e.g., Python, Bash, PowerShell) for automation and pipeline customization. Practical knowledge of cloud-native CI/CD services and deployment automation (e.g., AWS CodePipeline, Azure DevOps, Google Cloud Build). Ability to design and manage cloud-based deployment pipelines, leveraging Infrastructure as Code (IaC) tools (e.g., AWS CloudFormation, Azure Resource Manager, Google Deployment Manager) Experience tuning security tools and pipelines to reduce noise and improve actionable findings. Ability to collaborate with development and security teams to investigate, triage, and resolve false positives efficiently. How You’ll Grow At Deloitte, we’ve invested a great deal to create a rich environment in which our professionals can grow. We want all our people to develop in their own way, playing to their own strengths as they hone their leadership skills. And, as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities—including exposure to leaders, sponsors, coaches, and challenging assignments—to help accelerate their careers along the way. No two people learn in the same way. So, we provide a range of resources including live classrooms, team-based learning, and eLearning. DU: The Leadership Center in India, our state-of-the-art, world-class learning Center in the Hyderabad offices is an extension of the Deloitte University (DU) in Westlake, Texas, and represents a tangible symbol of our commitment to our people’s growth and development. Explore DU: The Leadership Center in India . Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. Deloitte is committed to achieving diversity within its workforce, and encourages all qualified applicants to apply, irrespective of gender, age, sexual orientation, disability, culture, religious and ethnic background. We offer well-being programs and are continuously looking for new ways to maintain a culture that is inclusive, invites authenticity, leverages our diversity, and where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with Deloitte’s clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. Recruiting tips Finding the right job and preparing for the recruitment process can be tricky. Check out tips from our Deloitte recruiting professionals to set yourself up for success. Check out recruiting tips from Deloitte recruiters . Benefits We believe that to be an undisputed leader in professional services, we should equip you with the resources that can make a positive impact on your well-being journey. Our vision is to create a leadership culture focused on the development and well-being of our people. Here are some of our benefits and programs to support you and your family’s well-being needs. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you . Our people and culture Our people and our culture make Deloitte a place where leaders thrive. Get an inside look at the rich diversity of background, education, and experiences of our people. What impact will you make? Check out our professionals’ career journeys and be inspired by their stories. Professional development You want to make an impact. And we want you to make it. We can help you do that by providing you the culture, training, resources, and opportunities to help you grow and succeed as a professional. Learn more about our commitment to developing our people . © 2025. See Terms of Use for more information. Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee ("DTTL"), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as "Deloitte Global") does not provide services to clients. In the United States, Deloitte refers to one or more of the US member firms of DTTL, their related entities that operate using the "Deloitte" name in the United States and their respective affiliates. Certain services may not be available to attest clients under the rules and regulations of public accounting. Please see www.deloitte.com/about to learn more about our global network of member firms. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 306774

Summary Position Summary Job title: DevSecOps - Manager About At Deloitte, we do not offer you just a job, but a career in the highly sought-after risk Management field. We are one of the business leaders in the risk market. We work with a vision to make the world more prosperous, trustworthy, and safe. Deloitte’s clients, primarily based outside of India, are large, complex organizations that constantly evolve and innovate to build better products and services. In the process, they encounter various risks and the work we do to help them address these risks is increasingly important to their success—and to the strength of the economy and public security. By joining us, you will get to work with diverse teams of professionals who design, manage, and implement risk-centric solutions across a variety of domains. In the process, you will gain exposure to the risk-centric challenges faced in today’s world by organizations across a range of industry sectors and become subject matter experts in those areas. Our Risk and Financial Advisory services professionals help organizations effectively navigate business risks and opportunities—from strategic, reputation, and financial risks to operational, cyber, and regulatory risks—to gain competitive advantage. We apply our experience in ongoing business operations and corporate lifecycle events to help clients become stronger and more resilient. Our market-leading teams help clients embrace complexity to accelerate performance, disrupt through innovation, and lead in their industries. We use cutting-edge technology like AI/ML techniques, analytics, and RPA to solve Deloitte’s clients ‘most complex issues. Working in Risk and Financial Advisory at Deloitte US-India offices has the power to redefine your ambitions. The Team Cyber & Strategic Risk Deloitte’s DevSecOps CI/CD Security Transformation and Secure Software Development Lifecycle engagement archetypes provide frameworks, templates, and leading practices for integrating security into software delivery pipelines. These resources include step-by-step workflows, staffing guidance, and project management tools to support DevSecOps roles and responsibilities The cyber risk services—Identity & access management (IAM) practice helps organizations in designing, developing, and implementing industry-leading IAM solutions to protect their information and confidential data, as well as help them build their businesses and supporting technologies to be more secure, vigilant, and resilient. The IAM team delivers service to clients through following key areas: User provisioning Access certification Access management and federation Entitlements management Work you’ll do Roles & Responsibilities: As a DevSecOps Manager, your core responsibility will be leading the implementation and ongoing management of DevSecOps practices across client's cloud and on-premises environments, which includes the following: Conduct interviews and assessments to understand client requirements, current state and DevSecOps practice maturity. Define strategy and take responsibility in driving adoption of security automation, continuous integration/continuous delivery (CI/CD), and compliance within the software development lifecycle of client's environment. Understand and be compliant with the Service Level Agreements defined for the DevSecOps services Oversee the development and integration of security tools and automation for services such as threat modeling, security architecture reviews, secure development practices, code analysis, vulnerability scanning, API security, configuration management etc. Manage and mentor DevSecOps team and client's cross-functional teams, setting goals and tracking performance. Report on DevSecOps metrics, security posture, and process improvements to leadership and client stakeholders. Stay current with emerging DevSecOps tools, security threats, and regulatory requirements. Facilitate use of technology-based tools or methodologies to continuously improve the monitoring, management and reliability of the services provided to client. Required Skills 9+ years of experience in application security development, security testing, integrating security tools, deployment and security management phases, with atleast 2+ years of leading the Devsecops projects. Strong understanding of security frameworks (e.g., NIST 800-53, PCI DSS,, ISO 27001, CIS Controls) and regulatory requirements (e.g., GDPR, HIPAA, PCI DSS) Investigative and analytical problem-solving skills along with excellent communication, project management, and stakeholder engagement skills. Experience in collecting, analyzing, and interpreting qualitative and quantitative data from defined application security services related sources (tools, monitoring techniques etc.) Understanding of solution designs and technical architectures to identify potential security risks and recommend mitigation strategies. Exposure to threat modeling exercise, zero trust architecture principles and secure by design practice. Knowledge and experience of OWASP Top 10, SANS Secure Programming, Security Engineering Principles; Hands-on experience in performing secure code reviews and penetration testing Hands-on experience in running, installing and managing SAST, DAST , SCA and IAST solutions, such as Checkmarx, Fortify and Contrast in large enterprise Understanding of leading vulnerability scoring standards, such as CVSS, and ability to translate vulnerability severity as security risk; Strong knowledge of CI/CD tools and hands on experience on at least one CI/CD tool set and building pipelines (including in cloud) using Team city, Bamboo, Jenkins, Chef, Puppet, selenium, AWS and AZURE DevOps; Hands on experience on container technology such as Kubernetes, Dockers, AKS, EKS. Knowledge of cloud environments and deployment solutions such as server less computing; Must have cloud security specialization in Security; and Certification such as EC-Council CEH (Certified Ethical Hacker), DevSecOps Professional (CDP) , ISC2 Certified Cloud Security Professional (CCSP), Certified API Security Professional (CASP) , CTMP (Certified Threat Modeling Professional) etc. are preferred. Qualification Bachelor's degree or higher in Computer Science, IT or equivalent experience. Experience in cloud service providers such as AWS, GCP, Azure, Oracle and multi-cloud DevSecOps implementations. Background in Agile or Scrum methodologies. Solid and demonstrable comprehension of Information Security including OWASP/SANS, Security Test Case development (or mis-use case). Understanding of security essentials including; networking concepts, defense strategies, and current security technologies Experience with securing IaC templates (e.g., Terraform, CloudFormation) and integrating IaC scanning tools into pipelines to detect misconfigurations and vulnerabilities early in the provisioning process Experience in implementing and managing security measures within Kubernetes environments, designing and enforcing advanced security protocols for API infrastructure, managing and optimizing our containerized applications using Docker, automating and managing our infrastructure as code using Terraform, automating IT processes and configurations using Ansible, and identifying and mitigating potential security threats through comprehensive threat modeling practices. Familiarity with container security best practices, including image scanning, runtime protection, and orchestration security (e.g., Docker, Kubernetes). Experience with secrets management tools (e.g., HashiCorp Vault, AWS Secrets Manager). Ability to research and characterize security threats to include identification and classification of application related threat indicators. Good to have: Skills in scripting languages (e.g., Groovy for Jenkins, Bash, Python) to customize pipeline steps and automate repetitive tasks. How You’ll Grow At Deloitte, we’ve invested a great deal to create a rich environment in which our professionals can grow. We want all our people to develop in their own way, playing to their own strengths as they hone their leadership skills. And, as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities—including exposure to leaders, sponsors, coaches, and challenging assignments—to help accelerate their careers along the way. No two people learn in the same way. So, we provide a range of resources including live classrooms, team-based learning, and eLearning. DU: The Leadership Center in India, our state-of-the-art, world-class learning Center in the Hyderabad offices is an extension of the Deloitte University (DU) in Westlake, Texas, and represents a tangible symbol of our commitment to our people’s growth and development. Explore DU: The Leadership Center in India . Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. Deloitte is committed to achieving diversity within its workforce, and encourages all qualified applicants to apply, irrespective of gender, age, sexual orientation, disability, culture, religious and ethnic background. We offer well-being programs and are continuously looking for new ways to maintain a culture that is inclusive, invites authenticity, leverages our diversity, and where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with Deloitte’s clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. Recruiting tips Finding the right job and preparing for the recruitment process can be tricky. Check out tips from our Deloitte recruiting professionals to set yourself up for success. Check out recruiting tips from Deloitte recruiters . Benefits We believe that to be an undisputed leader in professional services, we should equip you with the resources that can make a positive impact on your well-being journey. Our vision is to create a leadership culture focused on the development and well-being of our people. Here are some of our benefits and programs to support you and your family’s well-being needs. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you . Our people and culture Our people and our culture make Deloitte a place where leaders thrive. Get an inside look at the rich diversity of background, education, and experiences of our people. What impact will you make? Check out our professionals’ career journeys and be inspired by their stories. Professional development You want to make an impact. And we want you to make it. We can help you do that by providing you the culture, training, resources, and opportunities to help you grow and succeed as a professional. Learn more about our commitment to developing our people . © 2023. See Terms of Use for more information. Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee ("DTTL"), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as "Deloitte Global") does not provide services to clients. In the United States, Deloitte refers to one or more of the US member firms of DTTL, their related entities that operate using the "Deloitte" name in the United States and their respective affiliates. Certain services may not be available to attest clients under the rules and regulations of public accounting. Please see www.deloitte.com/about to learn more about our global network of member firms. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 306776

Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health optimization on a global scale. Join us to start Caring. Connecting. Growing together. Senior Software Engineer belongs to Self-Organizing and Cross Functional development team and is able to convert sprint backlog items to shippable product. He/she collectively owns end to end development responsibility for a given Agile Team / POD. He/she will design, code and test the user stories committed for a sprint. Works independently under limited supervision. Possess skills to effectively deal with issues, challenges within field of specialization to develop application solutions. Primary Responsibilities: Develop and automate business solutions by creating new and modifying existing software applications Collectively responsible for end to end product quality Participates and contributes in Sprint Ceremonies Promote and develop the culture of collaboration, accountability & quality Provides technical support to team. Helps team in resolving technical issues Closely working with Tech Lead, Onshore partners, deployment and infrastructure teams Independently drive some of the product and pillar level initiatives Comply with the terms and conditions of the employment contract, company policies and procedures, and any and all directives (such as, but not limited to, transfer and/or re-assignment to different work locations, change in teams and/or work shifts, policies in regards to flexibility of work benefits and/or work environment, alternative work arrangements, and other decisions that may arise due to the changing business environment). The Company may adopt, vary or rescind these policies and directives in its absolute discretion and without any limitation (implied or otherwise) on its ability to do so Required Qualifications: Bachelor's degree Technically hands-on and excellent in Design, Coding and Testing Experience working in multiple layer of technology Knowledge of Engineering Practices Agile: 6+ years of working experience in “Agile team” Data / Information Security: Good understanding of Data / Information security Good in Data Structure, Algorithms and Design Patterns Demonstrates excellent problem solving skills Knowledge of Common Technical Skills Application Development: Java Python Go Lang React DevOps: Working experience in IAC using Terraform Working experience in CI/CD pipeline (test, build, deployment and monitoring automation) Knowledge of software configuration management and packaging Knowledge of build tools such as Maven/Gradle Cloud: 5+ years of working Experience or good knowledge of cloud platform (e.g. OpenShift, Azure, AWS) Database: 5+ working experience of database (SQL or PL/SQL), Able to create database, write queries, stored procedures Open Source: Demonstrate hands-on knowledge of OpenSource adoption and use cases Knowledge of Product / Project / Program Related Tech Stack: Microsoft SQL Azure Cosmos DB Azure Kubernetes Services Azure SQL Microsoft SSIS Databricks Snowflake Testing using Data Quality Framework DevOps - Jenkins, GitHub, Docker, Redis, Sonar, Fortify Others - JMeter, Groovy, NewRelic Development Methodology / Engineering Practices - Agile (SCRUM / KANBAN / SAFe) Proven excellent verbal, written and interpersonal communication skills Proven team player in an Agile team within a Release Team/Value Stream Preferred Qualifications: Work experience in product engineering Knowledge of US Healthcare domain Modern Infrastructure: Knowledge in modern serverless and cloud managed infrastructure Proven excellent verbal, written and interpersonal communication skills Proven ability to work collaboratively in a global team with a positive team spirit At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone-of every race, gender, sexuality, age, location and income-deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes - an enterprise priority reflected in our mission.

Our Purpose Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we’re helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential. Title And Summary Senior Software Engineer Overview Mastercard is a global technology company in the payments industry. Our mission is to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart, and accessible. Using secure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments, and businesses realize their greatest potential. Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our company. With connections across more than 210 countries and territories, we are building a sustainable world that unlocks priceless possibilities for all. Services within Mastercard is responsible for acquiring, engaging, and retaining customers by managing fraud and risk, enhancing cybersecurity, and improving the digital payments experience. We provide value-added services and leverage expertise, data-driven insights, and execution. About Ethoca At Ethoca, you can join a team of top business and technology innovators who are transforming the industry. We are changing the payments landscape and reinventing the way global merchants and issuers combat fraud and reduce costs. Our services allow customers to focus on what really matters - increasing sales and creating a great customer experience. Our relentless customer focus is what makes us an award-winning company. Role As a Senior Software Engineer in Test / Senior Automation Engineer, you will: Play a crucial part in helping drive Quality initiatives across the teams Adhere to enterprise quality standards, processes and tools Responsible for developing and executing test plans for a single application, independently generating test data and recognizing test environment preparation needs Participate in project-level reviews, walkthroughs and inspections, and conducts test reviews, including test plans, requirements, cases and automation Achieve maximum coverage for test automation Responsible for automation and Continuous Integration (CI). Work closely with development team to identify defects early in the cycle through requirements analysis and code reviews. You Should Apply If Bachelor/Master’s Degree in Computer Science or equivalent work experience with exposure to quality engineering processes 6-8 years of overall experience. Sound knowledge of Java, Spring, JUnit, Eclipse IDE, Rest Assured, Appium, Jbehave/Cucumber frameworks, Databases, APIs (REST/SOAP), Continuous Delivery concepts and tools such as Jenkins/Bamboo, vulnerability tools such as Sonar, Checkmarx/Fortify, etc. Good knowledge of payments domain message flows, architecture, common design patterns, ISO message protocols, simulation/emulation tools highly desirable. Experience in multiple types of coding, software development, and/or using automation frameworks; Hands on experience in writing functional and integrational test cases; Exposure in building and using automation frameworks using technologies: Serenity, Cucumber, Browserstack, Selenium, others Experience testing APIs (REST) Experience in UI testing Well versed with writing complex database queries to validate data Ability to create good acceptance and integration test automation scripts and integrate with Continuous integration (Jenkins) Successfully developed high quality test strategies and text execution, recognized test environment preparation needs Experience in building automation frameworks, acceptance and integration test automation scripts, integrating with other tools. It Would Also Be Great If you have knowledge of working on cloud technology such as Azure, AWS you have knowledge of performance and security testing (e.g. Gatling , JMeter, Blazemeter). Corporate Security Responsibility All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must: Abide by Mastercard’s security policies and practices; Ensure the confidentiality and integrity of the information being accessed; Report any suspected information security violation or breach, and Complete all periodic mandatory security trainings in accordance with Mastercard’s guidelines.

Job Description Sales Engineer – Generator Sales We are in search of a dynamic and results-oriented Sales Engineer – Generator Sales to become a part of our team. The ideal candidate should possess a solid technical background and demonstrated expertise in the sales of diesel generators, specifically those powered by Perkins, Cummins, Kirloskar, and Mahindra engines, along with associated spare parts. This role demands a blend of technical proficiency, customer relationship management, and strategic business development to fortify our presence in the power generation sector. Key Responsibilities Generator Sales & Business Development Formulate and implement sales strategies for Perkins, Cummins, Kirloskar, and Mahindra generator sets. Identify and approach potential clients in pivotal industries such as construction, oil & gas, infrastructure, and commercial facilities. Generate leads, prepare proposals, conduct negotiations, and close sales deals to meet or surpass sales targets. Participate in industry exhibitions, trade shows, and client meetings to endorse products and gather market intelligence. Spare Parts Sales & Technical Support Manage inquiries and sales for diesel and gas generator spare parts, focusing on genuine and OEM components. Offer expert guidance to clients on part compatibility, usage, and stock availability. Collaborate with after-sales service teams to ensure client satisfaction and timely resolution of technical issues. Market Analysis & Expansion Research and analyze market trends, competitor offerings, and customer feedback to refine product positioning. Identify opportunities in new and emerging sectors or geographies. Develop pricing strategies in collaboration with internal stakeholders to remain competitive and profitable. Technical Liaison Coordinate with internal engineering and service teams to ensure the seamless installation, commissioning, and handover of generator systems. Deliver product presentations, technical demonstrations, and training sessions to clients. Stay updated on advancements in generator technology, regulatory standards, and environmental compliance. Requirements Experience: Minimum of 3–5 years of hands-on sales experience in diesel generator sales, particularly with Perkins, Cummins, Kirloskar, and Mahindra brands. Education: Diploma or Bachelor’s degree in Mechanical, Electrical, or Power Engineering is preferred. Technical Proficiency: In-depth knowledge of diesel generators, control systems, and genuine spare parts. Sales Skills: Demonstrated ability to achieve and exceed sales targets, with a strategic and consultative

Summary Position Summary Job title: SAST/DAST AppSec – Senior Consultant About At Deloitte, we do not offer you just a job, but a career in the highly sought-after risk Management field. We are one of the business leaders in the risk market. We work with a vision to make the world more prosperous, trustworthy, and safe. Deloitte’s clients, primarily based outside of India, are large, complex organizations that constantly evolve and innovate to build better products and services. In the process, they encounter various risks and the work we do to help them address these risks is increasingly important to their success—and to the strength of the economy and public security. By joining us, you will get to work with diverse teams of professionals who design, manage, and implement risk-centric solutions across a variety of domains. In the process, you will gain exposure to the risk-centric challenges faced in today’s world by organizations across a range of industry sectors and become subject matter experts in those areas. Our Risk and Financial Advisory services professionals help organizations effectively navigate business risks and opportunities—from strategic, reputation, and financial risks to operational, cyber, and regulatory risks—to gain competitive advantage. We apply our experience in ongoing business operations and corporate lifecycle events to help clients become stronger and more resilient. Our market-leading teams help clients embrace complexity to accelerate performance, disrupt through innovation, and lead in their industries. We use cutting-edge technology like AI/ML techniques, analytics, and RPA to solve Deloitte’s clients ‘most complex issues. Working in Risk and Financial Advisory at Deloitte US-India offices has the power to redefine your ambitions. The Team Cyber & Strategic Risk Deloitte's application security testing professionals review the test results output from various in-scope security services and take the appropriate actions to minimize developer effort and provide truly actionable results to provide protection spanning applications’ entire lifecycle in the client environment. Work you’ll do Roles & Responsibilities: Hands-on experience with leading SAST and DAST tools (e.g., Checkmarx, Veracode, Fortify, Burp Suite, OWASP ZAP). Strong understanding of secure software development lifecycle (SSDLC) principles and OWASP Top 10 vulnerabilities. Experience integrating security testing into CI/CD pipelines and cloud (e.g., Jenkins, Azure DevOps, GitLab CI). Ability to interpret and communicate vulnerability findings and remediation steps to technical and non-technical stakeholders. Familiarity with both black-box (DAST) and white-box (SAST) testing methodologies. Excellent collaboration, communication, and documentation skills. Required Skills Experience participating in or conducting security architecture reviews to identify design-level vulnerabilities and ensure alignment with security best practices and organizational standards. Proficiency in performing threat modeling exercises (e.g., using STRIDE, PASTA, or other frameworks) to systematically identify, document, and prioritize potential threats and attack vectors in applications and systems. Skill in translating threat model findings into actionable SAST/DAST test cases and ensuring that identified threats are adequately tested and mitigated. Qualification Bachelor's degree or higher in Computer Science, or equivalent experience. Security certifications such as CSSLP, CEH, or similar. Experience with cloud-native application security and container security. Knowledge of regulatory and compliance requirements related to application security. Good to have: Experience participating in or conducting security architecture reviews to identify design-level vulnerabilities and ensure alignment with security best practices and organizational standards. Proficiency in performing threat modeling exercises (e.g., using STRIDE, PASTA, or other frameworks) to systematically identify, document, and prioritize potential threats and attack vectors in applications and systems. Skill in translating threat model findings into actionable SAST/DAST test cases and ensuring that identified threats are adequately tested and mitigated. How You’ll Grow At Deloitte, we’ve invested a great deal to create a rich environment in which our professionals can grow. We want all our people to develop in their own way, playing to their own strengths as they hone their leadership skills. And, as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities—including exposure to leaders, sponsors, coaches, and challenging assignments—to help accelerate their careers along the way. No two people learn in the same way. So, we provide a range of resources including live classrooms, team-based learning, and eLearning. DU: The Leadership Center in India, our state-of-the-art, world-class learning Center in the Hyderabad offices is an extension of the Deloitte University (DU) in Westlake, Texas, and represents a tangible symbol of our commitment to our people’s growth and development. Explore DU: The Leadership Center in India . Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. Deloitte is committed to achieving diversity within its workforce, and encourages all qualified applicants to apply, irrespective of gender, age, sexual orientation, disability, culture, religious and ethnic background. We offer well-being programs and are continuously looking for new ways to maintain a culture that is inclusive, invites authenticity, leverages our diversity, and where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with Deloitte’s clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. Recruiting tips Finding the right job and preparing for the recruitment process can be tricky. Check out tips from our Deloitte recruiting professionals to set yourself up for success. Check out recruiting tips from Deloitte recruiters . Benefits We believe that to be an undisputed leader in professional services, we should equip you with the resources that can make a positive impact on your well-being journey. Our vision is to create a leadership culture focused on the development and well-being of our people. Here are some of our benefits and programs to support you and your family’s well-being needs. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you . Our people and culture Our people and our culture make Deloitte a place where leaders thrive. Get an inside look at the rich diversity of background, education, and experiences of our people. What impact will you make? Check out our professionals’ career journeys and be inspired by their stories. Professional development You want to make an impact. And we want you to make it. We can help you do that by providing you the culture, training, resources, and opportunities to help you grow and succeed as a professional. Learn more about our commitment to developing our people . © 2025. See Terms of Use for more information. Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee ("DTTL"), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as "Deloitte Global") does not provide services to clients. In the United States, Deloitte refers to one or more of the US member firms of DTTL, their related entities that operate using the "Deloitte" name in the United States and their respective affiliates. Certain services may not be available to attest clients under the rules and regulations of public accounting. Please see www.deloitte.com/about to learn more about our global network of member firms. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 304774

Summary Position Summary Job title: SAST/DAST AppSec - Consultant About At Deloitte, we do not offer you just a job, but a career in the highly sought-after risk Management field. We are one of the business leaders in the risk market. We work with a vision to make the world more prosperous, trustworthy, and safe. Deloitte’s clients, primarily based outside of India, are large, complex organizations that constantly evolve and innovate to build better products and services. In the process, they encounter various risks and the work we do to help them address these risks is increasingly important to their success—and to the strength of the economy and public security. By joining us, you will get to work with diverse teams of professionals who design, manage, and implement risk-centric solutions across a variety of domains. In the process, you will gain exposure to the risk-centric challenges faced in today’s world by organizations across a range of industry sectors and become subject matter experts in those areas. Our Risk and Financial Advisory services professionals help organizations effectively navigate business risks and opportunities—from strategic, reputation, and financial risks to operational, cyber, and regulatory risks—to gain competitive advantage. We apply our experience in ongoing business operations and corporate lifecycle events to help clients become stronger and more resilient. Our market-leading teams help clients embrace complexity to accelerate performance, disrupt through innovation, and lead in their industries. We use cutting-edge technology like AI/ML techniques, analytics, and RPA to solve Deloitte’s clients ‘most complex issues. Working in Risk and Financial Advisory at Deloitte US-India offices has the power to redefine your ambitions. The Team Cyber & Strategic Risk Deloitte's application security testing professionals review the test results output from various in-scope security services and take the appropriate actions to minimize developer effort and provide truly actionable results to provide protection spanning applications’ entire lifecycle in the client environment. Work you’ll do Roles & Responsibilities: As a Consultant, you are responsible for performing following activities as a SAST/DAST professional: Integrate SAST and DAST tools into CI/CD pipelines to automate security testing throughout the development lifecycle. Perform regular static (SAST) and dynamic (DAST) security assessments on applications to identify vulnerabilities such as SQL injection, cross-site scripting, and other OWASP Top 10 risks. Analyze scan results, triage findings, and provide actionable remediation guidance to development teams. Collaborate with developers to ensure secure coding practices and support secure design reviews. Define and maintain security roles, responsibilities, and ownership between Deloitte and client stakeholders for test preparation, execution, and support. Ensure that vulnerabilities are tracked, reported, and resolved in accordance with organizational policies and client requirements. Conduct root cause analysis (RCA) workshops and publish performance and security testing reports. Stay current with industry trends, emerging threats, and advancements in SAST/DAST tools and methodologies. Required Skills Hands-on experience with leading SAST and DAST tools (e.g., Checkmarx, Veracode, Fortify, Burp Suite, OWASP ZAP). Strong understanding of secure software development lifecycle (SSDLC) principles and OWASP Top 10 vulnerabilities. Experience integrating security testing into CI/CD pipelines (e.g., Jenkins, Azure DevOps, GitLab CI). Ability to interpret and communicate vulnerability findings and remediation steps to technical and non-technical stakeholders. Familiarity with both black-box (DAST) and white-box (SAST) testing methodologies. Qualification Bachelor's degree or higher in Computer Science, or equivalent experience. Security certifications such as CSSLP, CEH, or similar. Experience with cloud-native application security and container security. Knowledge of regulatory and compliance requirements related to application security. Good to have: Experience participating in or conducting security architecture reviews to identify design-level vulnerabilities and ensure alignment with security best practices and organizational standards. Proficiency in performing threat modeling exercises (e.g., using STRIDE, PASTA, or other frameworks) to systematically identify, document, and prioritize potential threats and attack vectors in applications and systems. Skill in translating threat model findings into actionable SAST/DAST test cases and ensuring that identified threats are adequately tested and mitigated. How You’ll Grow At Deloitte, we’ve invested a great deal to create a rich environment in which our professionals can grow. We want all our people to develop in their own way, playing to their own strengths as they hone their leadership skills. And, as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities—including exposure to leaders, sponsors, coaches, and challenging assignments—to help accelerate their careers along the way. No two people learn in the same way. So, we provide a range of resources including live classrooms, team-based learning, and eLearning. DU: The Leadership Center in India, our state-of-the-art, world-class learning Center in the Hyderabad offices is an extension of the Deloitte University (DU) in Westlake, Texas, and represents a tangible symbol of our commitment to our people’s growth and development. Explore DU: The Leadership Center in India . Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. Deloitte is committed to achieving diversity within its workforce, and encourages all qualified applicants to apply, irrespective of gender, age, sexual orientation, disability, culture, religious and ethnic background. We offer well-being programs and are continuously looking for new ways to maintain a culture that is inclusive, invites authenticity, leverages our diversity, and where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with Deloitte’s clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. Recruiting tips Finding the right job and preparing for the recruitment process can be tricky. Check out tips from our Deloitte recruiting professionals to set yourself up for success. Check out recruiting tips from Deloitte recruiters . Benefits We believe that to be an undisputed leader in professional services, we should equip you with the resources that can make a positive impact on your well-being journey. Our vision is to create a leadership culture focused on the development and well-being of our people. Here are some of our benefits and programs to support you and your family’s well-being needs. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you . Our people and culture Our people and our culture make Deloitte a place where leaders thrive. Get an inside look at the rich diversity of background, education, and experiences of our people. What impact will you make? Check out our professionals’ career journeys and be inspired by their stories. Professional development You want to make an impact. And we want you to make it. We can help you do that by providing you the culture, training, resources, and opportunities to help you grow and succeed as a professional. Learn more about our commitment to developing our people . © 2025. See Terms of Use for more information. Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee ("DTTL"), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as "Deloitte Global") does not provide services to clients. In the United States, Deloitte refers to one or more of the US member firms of DTTL, their related entities that operate using the "Deloitte" name in the United States and their respective affiliates. Certain services may not be available to attest clients under the rules and regulations of public accounting. Please see www.deloitte.com/about to learn more about our global network of member firms. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 304772

Summary Position Summary Job title: SAST/DAST AppSec – Senior Consultant About At Deloitte, we do not offer you just a job, but a career in the highly sought-after risk Management field. We are one of the business leaders in the risk market. We work with a vision to make the world more prosperous, trustworthy, and safe. Deloitte’s clients, primarily based outside of India, are large, complex organizations that constantly evolve and innovate to build better products and services. In the process, they encounter various risks and the work we do to help them address these risks is increasingly important to their success—and to the strength of the economy and public security. By joining us, you will get to work with diverse teams of professionals who design, manage, and implement risk-centric solutions across a variety of domains. In the process, you will gain exposure to the risk-centric challenges faced in today’s world by organizations across a range of industry sectors and become subject matter experts in those areas. Our Risk and Financial Advisory services professionals help organizations effectively navigate business risks and opportunities—from strategic, reputation, and financial risks to operational, cyber, and regulatory risks—to gain competitive advantage. We apply our experience in ongoing business operations and corporate lifecycle events to help clients become stronger and more resilient. Our market-leading teams help clients embrace complexity to accelerate performance, disrupt through innovation, and lead in their industries. We use cutting-edge technology like AI/ML techniques, analytics, and RPA to solve Deloitte’s clients ‘most complex issues. Working in Risk and Financial Advisory at Deloitte US-India offices has the power to redefine your ambitions. The Team Cyber & Strategic Risk Deloitte's application security testing professionals review the test results output from various in-scope security services and take the appropriate actions to minimize developer effort and provide truly actionable results to provide protection spanning applications’ entire lifecycle in the client environment. Work you’ll do Roles & Responsibilities: Hands-on experience with leading SAST and DAST tools (e.g., Checkmarx, Veracode, Fortify, Burp Suite, OWASP ZAP). Strong understanding of secure software development lifecycle (SSDLC) principles and OWASP Top 10 vulnerabilities. Experience integrating security testing into CI/CD pipelines and cloud (e.g., Jenkins, Azure DevOps, GitLab CI). Ability to interpret and communicate vulnerability findings and remediation steps to technical and non-technical stakeholders. Familiarity with both black-box (DAST) and white-box (SAST) testing methodologies. Excellent collaboration, communication, and documentation skills. Required Skills Experience participating in or conducting security architecture reviews to identify design-level vulnerabilities and ensure alignment with security best practices and organizational standards. Proficiency in performing threat modeling exercises (e.g., using STRIDE, PASTA, or other frameworks) to systematically identify, document, and prioritize potential threats and attack vectors in applications and systems. Skill in translating threat model findings into actionable SAST/DAST test cases and ensuring that identified threats are adequately tested and mitigated. Qualification Bachelor's degree or higher in Computer Science, or equivalent experience. Security certifications such as CSSLP, CEH, or similar. Experience with cloud-native application security and container security. Knowledge of regulatory and compliance requirements related to application security. Good to have: Experience participating in or conducting security architecture reviews to identify design-level vulnerabilities and ensure alignment with security best practices and organizational standards. Proficiency in performing threat modeling exercises (e.g., using STRIDE, PASTA, or other frameworks) to systematically identify, document, and prioritize potential threats and attack vectors in applications and systems. Skill in translating threat model findings into actionable SAST/DAST test cases and ensuring that identified threats are adequately tested and mitigated. How You’ll Grow At Deloitte, we’ve invested a great deal to create a rich environment in which our professionals can grow. We want all our people to develop in their own way, playing to their own strengths as they hone their leadership skills. And, as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities—including exposure to leaders, sponsors, coaches, and challenging assignments—to help accelerate their careers along the way. No two people learn in the same way. So, we provide a range of resources including live classrooms, team-based learning, and eLearning. DU: The Leadership Center in India, our state-of-the-art, world-class learning Center in the Hyderabad offices is an extension of the Deloitte University (DU) in Westlake, Texas, and represents a tangible symbol of our commitment to our people’s growth and development. Explore DU: The Leadership Center in India . Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. Deloitte is committed to achieving diversity within its workforce, and encourages all qualified applicants to apply, irrespective of gender, age, sexual orientation, disability, culture, religious and ethnic background. We offer well-being programs and are continuously looking for new ways to maintain a culture that is inclusive, invites authenticity, leverages our diversity, and where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with Deloitte’s clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. Recruiting tips Finding the right job and preparing for the recruitment process can be tricky. Check out tips from our Deloitte recruiting professionals to set yourself up for success. Check out recruiting tips from Deloitte recruiters . Benefits We believe that to be an undisputed leader in professional services, we should equip you with the resources that can make a positive impact on your well-being journey. Our vision is to create a leadership culture focused on the development and well-being of our people. Here are some of our benefits and programs to support you and your family’s well-being needs. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you . Our people and culture Our people and our culture make Deloitte a place where leaders thrive. Get an inside look at the rich diversity of background, education, and experiences of our people. What impact will you make? Check out our professionals’ career journeys and be inspired by their stories. Professional development You want to make an impact. And we want you to make it. We can help you do that by providing you the culture, training, resources, and opportunities to help you grow and succeed as a professional. Learn more about our commitment to developing our people . © 2025. See Terms of Use for more information. Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee ("DTTL"), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as "Deloitte Global") does not provide services to clients. In the United States, Deloitte refers to one or more of the US member firms of DTTL, their related entities that operate using the "Deloitte" name in the United States and their respective affiliates. Certain services may not be available to attest clients under the rules and regulations of public accounting. Please see www.deloitte.com/about to learn more about our global network of member firms. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 304773

Summary Position Summary Job title: SAST/DAST AppSec – Senior Consultant About At Deloitte, we do not offer you just a job, but a career in the highly sought-after risk Management field. We are one of the business leaders in the risk market. We work with a vision to make the world more prosperous, trustworthy, and safe. Deloitte’s clients, primarily based outside of India, are large, complex organizations that constantly evolve and innovate to build better products and services. In the process, they encounter various risks and the work we do to help them address these risks is increasingly important to their success—and to the strength of the economy and public security. By joining us, you will get to work with diverse teams of professionals who design, manage, and implement risk-centric solutions across a variety of domains. In the process, you will gain exposure to the risk-centric challenges faced in today’s world by organizations across a range of industry sectors and become subject matter experts in those areas. Our Risk and Financial Advisory services professionals help organizations effectively navigate business risks and opportunities—from strategic, reputation, and financial risks to operational, cyber, and regulatory risks—to gain competitive advantage. We apply our experience in ongoing business operations and corporate lifecycle events to help clients become stronger and more resilient. Our market-leading teams help clients embrace complexity to accelerate performance, disrupt through innovation, and lead in their industries. We use cutting-edge technology like AI/ML techniques, analytics, and RPA to solve Deloitte’s clients ‘most complex issues. Working in Risk and Financial Advisory at Deloitte US-India offices has the power to redefine your ambitions. The Team Cyber & Strategic Risk Deloitte's application security testing professionals review the test results output from various in-scope security services and take the appropriate actions to minimize developer effort and provide truly actionable results to provide protection spanning applications’ entire lifecycle in the client environment. Work you’ll do Roles & Responsibilities: Hands-on experience with leading SAST and DAST tools (e.g., Checkmarx, Veracode, Fortify, Burp Suite, OWASP ZAP). Strong understanding of secure software development lifecycle (SSDLC) principles and OWASP Top 10 vulnerabilities. Experience integrating security testing into CI/CD pipelines and cloud (e.g., Jenkins, Azure DevOps, GitLab CI). Ability to interpret and communicate vulnerability findings and remediation steps to technical and non-technical stakeholders. Familiarity with both black-box (DAST) and white-box (SAST) testing methodologies. Excellent collaboration, communication, and documentation skills. Required Skills Experience participating in or conducting security architecture reviews to identify design-level vulnerabilities and ensure alignment with security best practices and organizational standards. Proficiency in performing threat modeling exercises (e.g., using STRIDE, PASTA, or other frameworks) to systematically identify, document, and prioritize potential threats and attack vectors in applications and systems. Skill in translating threat model findings into actionable SAST/DAST test cases and ensuring that identified threats are adequately tested and mitigated. Qualification Bachelor's degree or higher in Computer Science, or equivalent experience. Security certifications such as CSSLP, CEH, or similar. Experience with cloud-native application security and container security. Knowledge of regulatory and compliance requirements related to application security. Good to have: Experience participating in or conducting security architecture reviews to identify design-level vulnerabilities and ensure alignment with security best practices and organizational standards. Proficiency in performing threat modeling exercises (e.g., using STRIDE, PASTA, or other frameworks) to systematically identify, document, and prioritize potential threats and attack vectors in applications and systems. Skill in translating threat model findings into actionable SAST/DAST test cases and ensuring that identified threats are adequately tested and mitigated. How You’ll Grow At Deloitte, we’ve invested a great deal to create a rich environment in which our professionals can grow. We want all our people to develop in their own way, playing to their own strengths as they hone their leadership skills. And, as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities—including exposure to leaders, sponsors, coaches, and challenging assignments—to help accelerate their careers along the way. No two people learn in the same way. So, we provide a range of resources including live classrooms, team-based learning, and eLearning. DU: The Leadership Center in India, our state-of-the-art, world-class learning Center in the Hyderabad offices is an extension of the Deloitte University (DU) in Westlake, Texas, and represents a tangible symbol of our commitment to our people’s growth and development. Explore DU: The Leadership Center in India . Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. Deloitte is committed to achieving diversity within its workforce, and encourages all qualified applicants to apply, irrespective of gender, age, sexual orientation, disability, culture, religious and ethnic background. We offer well-being programs and are continuously looking for new ways to maintain a culture that is inclusive, invites authenticity, leverages our diversity, and where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with Deloitte’s clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. Recruiting tips Finding the right job and preparing for the recruitment process can be tricky. Check out tips from our Deloitte recruiting professionals to set yourself up for success. Check out recruiting tips from Deloitte recruiters . Benefits We believe that to be an undisputed leader in professional services, we should equip you with the resources that can make a positive impact on your well-being journey. Our vision is to create a leadership culture focused on the development and well-being of our people. Here are some of our benefits and programs to support you and your family’s well-being needs. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you . Our people and culture Our people and our culture make Deloitte a place where leaders thrive. Get an inside look at the rich diversity of background, education, and experiences of our people. What impact will you make? Check out our professionals’ career journeys and be inspired by their stories. Professional development You want to make an impact. And we want you to make it. We can help you do that by providing you the culture, training, resources, and opportunities to help you grow and succeed as a professional. Learn more about our commitment to developing our people . © 2025. See Terms of Use for more information. Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee ("DTTL"), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as "Deloitte Global") does not provide services to clients. In the United States, Deloitte refers to one or more of the US member firms of DTTL, their related entities that operate using the "Deloitte" name in the United States and their respective affiliates. Certain services may not be available to attest clients under the rules and regulations of public accounting. Please see www.deloitte.com/about to learn more about our global network of member firms. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 304774