29 Guardduty Jobs

Essential Qualifications :- Any Graduate, preferably bachelors degree in computer science or information technology. Overall Working Experience of 6-8 Years Minimum 4 years of experience in DevOps with AWS and security automation AWS Certified DevOps Engineer / AWS Security Specialty (preferred) Preferred Key Skill /Qualifications :- Deep understanding of AWS services (EC2, S3, IAM, RDS, Lambda, CloudTrail, CloudWatch, Config, GuardDuty, VPC, EKS, CloudFormation) Infrastructure as Code (Terraform, AWS CDK, CloudFormation) • Network security, firewall configuration, security groups, VPC subnetting • Identity & Access Management (IAM, RBAC, MFA, SSO) Vulnerability assessment, penetration testing, patch management CI/CD tools (Jenkins, GitHub Actions, GitLab CI/CD) Scripting (Python, Bash, Shell) • Containerization (Docker, Kubernetes/EKS) • Security-as-Code and automated compliance tools (e.g., Checkov, TFSec, Open Policy Agent) Secrets management (HashiCorp Vault, AWS Secrets Manager) SAST/DAST tools (SonarQube, OWASP ZAP, Snyk, Fortify) • IAM roles, policies, encryption, KMS, and secure configurations Centralized logging and monitoring (CloudWatch, ELK Stack, Prometheus, Grafana) Excellent documentation, communication, and collaboration skills Essential Experience :- Automating security checks in CI/CD pipelines • Implementing least privilege access control and identity federation Securing infrastructure provisioning and deployments • Conducting threat modeling and vulnerability remediation • Enforcing compliance and audit readiness (ISO, HIPAA, etc.) Working knowledge of secure networking (VPCs, firewalls, VPNs, NACLs, etc.) • Incident response and root cause analysis for infrastructure issues Partnering with infosec teams to roll out security best practices • Supporting development teams to adopt security-by-design Competencies :- Strong analytical, problem-solving, and debugging skills Security-first mindset across DevOps practices Effective communicator and team collaborator Continuous learning and proactive approach Decision Making Control :- * Choice of security tools and DevSecOps frameworks Cloud architecture decisions aligned with compliance Key Roles/Responsibilities: • Build and maintain AWS cloud environments with infrastructure as code • Integrate security controls into CI/CD pipelines and DevOps workflows • Automate security scans, testing, and compliance validation • Support secure deployment of applications in containers and serverless setups • Implement cloud-native logging, monitoring, and alerting systems • Manage secrets, certificates, and access securely • Work closely with development, infosec, and operations teams to enforce DevSecOps best practices • Document all configurations, procedures, and known issues • Conduct internal training on DevOps, secure coding and best security practices • Respond to security incidents and participate in audits and reviews • Ensure adherence to SLAs, compliance mandates, and performance KPIs

Job Description: Senior GRC Analyst Location: Mumbai, India Department: Information Security, Risk & Compliance Reports To: CISO ? About Si Creva Capital Services Si Creva Capital Services Pvt. Ltd. is a leading NBFC engaged in digital lending, supported by OnEMI Technology Solutions as its Lending Service Provider. With a strong focus on compliance, operational resilience, and customer trust, we are ISO 27001 and SOC 2 compliant and adhere to RBIs Master Directions on IT Outsourcing, Digital Lending, and other regulatory frameworks. ? Role Overview The Senior GRC Analyst will play a key role in strengthening the Governance, Risk, and Compliance (GRC) function at Si Creva. The individual will oversee compliance with regulatory frameworks (RBI Digital Lending Directions, IT Outsourcing Directions, DPDP Act, ISO 27001, SOC 2), conduct risk assessments, manage audits, and enhance our security and compliance posture. This role requires strong analytical skills, regulatory knowledge, and the ability to coordinate with multiple stakeholders (tech, business, legal, and third-party vendors) to ensure a robust risk management framework. ? Key Responsibilities Governance & Compliance Ensure compliance with RBI Master Directions on IT Outsourcing, Digital Lending, and Cybersecurity for NBFCs. Maintain and update internal policies (Information Security, Data Privacy, BCP-DR, Access Control, Asset Management, etc.) aligned with ISO 27001 & SOC 2. Support implementation and compliance with the Digital Personal Data Protection (DPDP) Act, 2023. Conduct periodic compliance reviews of internal processes and third-party vendors. Risk Management Perform Risk Assessments, Risk Treatment Plans, and Risk Registers across information assets, applications, and third-party relationships. Map risks to Confidentiality, Integrity, and Availability (CIA) and criticality of assets. Monitor and report on Key Risk Indicators (KRIs) and prepare dashboards for management review. Support enterprise-wide IT and Operational Risk Management Frameworks. Audit & Assurance Coordinate and manage internal and external audits (ITGC, VAPT, SOC 2, ISO 27001 surveillance, statutory audits). Prepare and maintain evidence for AWS Artifact, vendor attestations, bridging letters, and regulatory inspections. Draft and track management responses to audit observations. Drive closure of non-compliance findings and report status to senior management. Third-Party Risk Management Conduct vendor due diligence and periodic security assessments of LSPs, DLAs, and technology partners. Ensure outsourcing agreements contain information security and data privacy clauses as mandated by RBI. Track and monitor vendor compliance (penetration test reports, data localization attestations, certifications). Business Continuity & Incident Management Support BCP/DR drills (AWS Mumbai as Primary, Hyderabad as DR site, RPO 0, RTO 60 min). Participate in Incident Response handling, root cause analysis, and regulatory reporting. Maintain playbooks for Crisis Management, Data Breach Notifications, and CERT-In coordination. ? Qualifications & Skills Education & Certifications Bachelors degree in Information Security, Computer Science, or related field. Preferred certifications: ISO 27001 LA, CISA, CISM, CISSP, CCSK, or RBI Cybersecurity Framework knowledge. Experience 36 years of experience in Information Security / GRC / Risk / Compliance within BFSI, NBFC, or Fintech sector. Strong understanding of regulatory frameworks (RBI, DPDP Act, IT Act, SPDI Rules, PCI-DSS optional). Hands-on experience in ISO 27001, SOC 2 audits, vendor risk management, and ITGC reviews. Core Competencies Strong knowledge of AWS security controls (IAM, encryption, CloudWatch, GuardDuty, Macie). Excellent skills in audit management, risk assessments, and policy documentation. Strong interpersonal and communication skills for working with auditors, regulators, and internal teams. Analytical thinker with ability to interpret regulations into actionable controls. ? What We Offer Exposure to a dynamic and fast-growing digital lending ecosystem. Opportunities to work on growing compliance and data protection frameworks. Collaborative work environment with focus on professional growth and certifications. Show more Show less

Position Overview We are seeking a highly skilled Senior Cloud Network & Security Consultant with proven expertise in designing and implementing cloud networking solutions on AWS and Azure. The candidate must also have strong background in cloud and network security, as well as Linux administration and automation skills. This is a consulting-focused role, requiring the ability to engage with enterprise customers, understand business requirements, and deliver secure, scalable, and resilient hybrid networking solutions. Key Responsibilities Consulting & Solution Design ? Engage with enterprise customers to assess requirements and design end-to-end cloud networking and security architectures. ? Develop cloud networking blueprints, migration strategies, and implementation roadmaps. ? Conduct workshops, PoCs, and technical presentations with customer stakeholders. ? Provide capacity planning, performance optimization, and best practice recommendations for AWS and Azure networking. Implementation & Delivery ? Deploy and configure AWS networking: VPCs, Transit Gateway, Direct Connect, PrivateLink, VPNs, Route 53, Security Groups, NACLs. ? Deploy and configure Azure networking: VNets, ExpressRoute, Azure Firewall, Application Gateway, Load Balancers, NSGs. ? Implement hybrid connectivity (on-premises to cloud) via VPN, ExpressRoute, or Direct Connect. ? Deploy cloud-native security services such as AWS WAF, GuardDuty, Security Hub, and Azure Defender, Sentinel. ? Use Linux expertise for automation, scripting (Python, Bash, Ansible, Terraform), and troubleshooting network components. Security & Governance ? Define and implement zero-trust security models across AWS and Azure environments. ? Design micro-segmentation, workload isolation, and cloud firewall policies. ? Ensure compliance with enterprise security standards (ISO 27001, PCI-DSS, HIPAA, NIST, GDPR). ? Develop runbooks, playbooks, and operational standards for secure cloud networking. Customer Enablement & Support ? Deliver knowledge transfer sessions and documentation for customer IT/security teams. ? Act as a trusted advisor for cloud networking and security best practices. ? Provide L3 consulting support for post-implementation optimization and troubleshooting. Required Skills & Experience ? Cloud Networking Expertise ? Hands-on experience with AWS networking services (VPC, TGW, DX, PrivateLink, Route 53). ? Hands-on experience with Azure networking services (VNets, ExpressRoute, Azure Firewall, NSGs, Application Gateway). ? Experience with hybrid/multi-cloud networking and secure workload connectivity. ? Security Expertise ? Strong understanding of cloud-native security services (AWS WAF, GuardDuty, Security Hub; Azure Defender, Sentinel). ? Deep knowledge of firewalls, VPNs, IDS/IPS, PKI, IAM, SIEM. ? Proven experience in zero-trust and micro-segmentation architectures. ? Linux & Automation ? Strong Linux administration skills. ? Scripting and automation using Python, Bash, Ansible, Terraform. ? Familiarity with containers and Kubernetes networking is a plus. ? Preferred Certifications ? AWS: AWS Certified Advanced Networking Specialty / Solutions Architect. ? Azure: Azure Network Engineer Associate / Solutions Architect Expert. ? Security: CISSP, CCSP, or cloud security certifications. ? Linux: RHCSA / RHCE. ? Soft Skills ? Strong consulting and customer engagement experience. ? Excellent communication, documentation, and presentation skills. ? Ability to lead workshops, design sessions, and technical PoCs. Educational Qualification ? Bachelor's degree in Computer Science, Information Technology, or equivalent Location & Travel ? Location: [Insert location / Remote / Hybrid]. ? Willingness to travel for customer consulting engagements. Interested candidate can share their resume with : [HIDDEN TEXT]

As a Senior SecOps Engineer specializing in AWS architecture, you will be a technical leader and problem solver, responsible for ensuring the security posture of our cloud infrastructure. Leveraging your deep understanding of AWS services, security frameworks, and automation tools, you will implement and maintain a secure and compliant environment. Your ability to collaborate with cross-functional teams and stay abreast of evolving security threats will be critical to your success. Design and implement secure AWS infrastructure architectures, including VPCs, subnets, security groups, IAM policies, and network access control lists (ACLs). Develop and enforce security best practices for AWS services such as EC2, S3, RDS, and Lambda. Implement and manage security controls in multi-account and multi-region AWS environments. Lead the identification, investigation, and resolution of security incidents and vulnerabilities. Develop and maintain incident response plans and procedures. Conduct vulnerability assessments and penetration testing of AWS environments. Develop and maintain security automation scripts using tools like Python, Bash, and AWS CLI. Implement and manage security monitoring tools such as CloudWatch, GuardDuty, Security Hub, and third-party SIEM solutions. Automate security compliance checks and reporting. Collaborate with development and operations teams to integrate security controls into CI/CD pipelines. Ensure security policies and best practices are consistently followed across the organization. Provide security training and awareness to development and operations teams. Perform risk assessments of AWS cloud environments and identify potential security risks. Recommend and implement security improvements to mitigate identified risks. Ensure compliance with industry standards and regulations (e.g., PCI DSS, HIPAA, GDPR). Stay updated with the latest security threats and vulnerabilities affecting cloud infrastructure. Research and evaluate new security technologies and tools. Provide threat intelligence and vulnerability analysis to relevant teams. Utilize Infrastructure as Code (IaC) tools like Terraform and CloudFormation to automate security infrastructure deployment and management. Implement and manage configuration management tools for security hardening. Qualifications: - Extensive experience in SecOps engineering, with a focus on AWS architecture. - Proven experience in designing and implementing secure AWS infrastructure. - Experience in incident response and vulnerability management. Technical Skills: - Strong expertise in AWS architecture and security services (IAM, VPC, CloudTrail, GuardDuty, Security Hub, etc.). - In-depth knowledge of security operations, incident response, and threat management. - Experience with Infrastructure as Code (Terraform, CloudFormation). - Proficiency in scripting and automation tools (Python, Bash, AWS CLI). - Experience with security monitoring and SIEM tools. - Strong attention to detail and commitment to quality.,

About G2 - The Company When you join G2, youre joining the team that helps businesses reach their peak potential by powering decisions and strategies with trusted insights from real software users. G2 is the world&aposs largest and most trusted software marketplace. More than 100 million people annually including employees at all Fortune 500 companies use G2 to make smarter software decisions based on authentic peer reviews. Thousands of software and services companies of all sizes partner with G2 to build their reputation and grow their business including Salesforce, HubSpot, Zoom, and Adobe. To learn more about where you go for software, visit www.g2.com and follow us on LinkedIn. As we continue on our growth journey, we are striving to be the most trusted data source in the age of AI for informing software buying decisions and go-to-market strategies. Does that sound exciting to you Come join us as we try to reach our next PEAK! About G2 - Our People At G2, we have big goals, but we stay grounded in our PEAK ( P erformance + E ntrepreneurship + A uthenticity + K indness) values. Youll be part of a value-driven, growing global community that climbs PEAKs together. We cheer for each others successes, learn from our mistakes, and support and lean on one another during challenging times. With ambition and entrepreneurial spirit we push each other to take on challenging work, which will help us all to grow and learn. You will be part of a global, diverse team of smart, dedicated, and kind individuals - each with unique talents, aspirations, and life experiences. At the heart of our community and culture are our people-led ERGs, which celebrate and highlight the diverse identities of our global team. As an organization, we are intentional about our DEI and philanthropic work (like our G2 Gives program) because it encourages us all to be better people. About The Role The AWS Security Engineer is responsible for designing, implementing, and managing cloud security controls to protect infrastructure, data, and workloads running on AWS. This role ensures secure cloud operations aligned with industry best practices, compliance requirements, and the organizations risk posture. In This Role, You Will Responsibility Area: Cloud Security Architecture & Configuration Design and implement secure architectures for AWS environments, including VPCs, IAM, encryption, and networking controls (30%) Configure and enforce security guardrails using AWS Config, SCPs, and Service Control Policies (15%) Evaluate and implement cloud-native security tools such as AWS Security Hub, GuardDuty, Macie, and Inspector (10%) Design and implement security controls for other cloud environments like GCP, Snowflake, Looker, Sigma, Salesforce, and others. Responsibility Area: Detection, Monitoring, and Incident Response Build and maintain security monitoring, alerting, and logging pipelines using CloudTrail, CloudWatch, and centralized log aggregation tools (15%) Investigate and respond to security alerts, vulnerabilities, and incidents within AWS accounts (10%) Integrate detection and response capabilities into the broader SOC or SIEM platforms (e.g., Splunk, Datadog, Graylog) (5%) Integrate and instrument monitoring and controls for other critical cloud infrastructure including GCP, Snowflake, Looker, Sigma, Salesforce, and others. Responsibility Area: Governance, Compliance & Automation Develop and enforce automated compliance checks aligned to frameworks such as SOC 2, CIS AWS Foundations, and NIST (10%) Partner with DevOps and engineering teams to integrate security into CI/CD pipelines (DevSecOps) and infrastructure as code (Terraform, CloudFormation) (3%) Support audit evidence gathering, risk assessments, and security documentation for cloud environments (2%) Minimum Qualifications We realize applying for jobs can feel daunting at times. Even if you dont check all the boxes in the job description, we encourage you to apply anyway. 58 years of hands-on experience securing AWS environments Deep knowledge of AWS services, including IAM, S3, EC2, VPC, KMS, CloudTrail, Config, Lambda Experience with AWS security services (e.g., Security Hub, GuardDuty, Macie, Inspector, Detective) Familiarity with cloud security principles, including least privilege, encryption, network segmentation, and shared responsibility Scripting or IaC experience with Terraform, Python, or CloudFormation Understanding of security compliance frameworks such as SOC 2, ISO 27001, or NIST 800-53 Ability to learn security best practices for other cloud environments including, Salesforce, GCP, Snowflake, Looker. What Can Help Your Application Stand Out AWS Security Specialty or Solutions Architect certification Experience integrating AWS security with third-party tools (e.g., CrowdStrike, Wiz, Lacework) Experience with container security (ECS, EKS, Docker) Familiarity with CI/CD pipelines and DevSecOps practices Our Commitment to Inclusivity and Diversity At G2, we are committed to creating an inclusive and diverse environment where people of every background can thrive and feel welcome. We consider applicants without regard to race, color, creed, religion, national origin, genetic information, gender identity or expression, sexual orientation, pregnancy, age, or marital, veteran, or physical or mental disability status. Learn more about our commitments here. -- For job applicants in California, the United Kingdom, and the European Union, please review this applicant privacy notice before applying to this job. How We Use AI Technology In Our Hiring Process G2 incorporates AI-powered technology to enhance our candidate evaluation process. These tools may assist with initial application screening, skills assessment analysis, and identifying candidates whose qualifications align with specific role requirements. While AI technology supports our recruitment workflow, all final hiring decisions remain under human oversight and judgment. Your Choice Matters: If you would prefer that your application be reviewed without AI assistance, you can opt out by entering your email address in the email entry field at the bottom of the Automated Processing Legal Notice. Choosing to opt out will not disadvantage your application in any waywe will ensure your materials receive a thorough manual review by our hiring team. For additional details about how we handle your information throughout the application process, please review G2&aposs Applicant Privacy Notice. Show more Show less

The Role Were seeking a security professional with 4-6 years of experience in securing cloud infrastructure, automating compliance processes, and managing risks to support SOC 2, ISO 27001, and GDPR standards. This role emphasizes integrating security into CI/CD pipelines, mitigating vulnerabilities, and ensuring AWS environments maintain the highest security benchmarks. Key Responsibilities Integrate security measures within AWS CI/CD pipelines (e.g., Code Pipeline, Code Build, Code Deploy). Manage Infrastructure as Code (IaC) using Terraform and CloudFormation with encryption and least privilege principles. Deploy and monitor AWS security tools such as GuardDuty, WAF, Shield, Security Hub, and Inspector. Ensure container security across ECS/EKS environments. Automate vulnerability management, patching, and antimalware solutions. Enforce robust IAM policies, SSO, MFA, and secrets management practices. Support SOC 2, ISO 27001, and GDPR compliance audits and risk assessments. Implement and manage monitoring and logging tools like CloudWatch, CloudTrail, and SIEM systems. Develop risk management frameworks and automate incident response processes. Draft, review, and implement cybersecurity and information security policies. Collaborate with stakeholders to ensure readiness of controls for non-security domains such as HR systems, application infrastructure, and data engineering infrastructure. Qualification 4-6 years of experience in securing cloud infrastructure, automating compliance processes, and managing risks to support SOC 2, ISO 27001, and GDPR standards Cloud Security: Proficiency in AWS Security services, including GuardDuty, WAF, Inspector, Security Hub,VPC, IAM Infrastructure as Code: Hands-on experience with Terraform, CloudFormation, AWS Config, Control Tower CI/CD Tools: Familiarity with AWS Code Pipeline, Jenkins, and GitHub for secure software delivery Compliance Frameworks: Strong understanding of SOC 2, ISO 27001, GDPR, NIST, CIS AWS Benchmarks Antimalware Solutions: Experience with TrendMicro, and GuardDuty for threat detection and prevention

Design, develop, and maintain security-focused backend services and APIs in Python. Implement authentication and authorization mechanisms, including IAM policies, roles, and service permissions. Build tools and frameworks to secure customer-built data pipelines, ensuring consistent, enforced security policies across the platform. Integrate with AWS security services such as IAM, KMS, Secrets Manager, CloudTrail, and GuardDuty to provide robust, automated security controls. Develop monitoring and alerting for security events, misconfigurations, and policy violations. Conduct security reviews of platform features, API designs, and infrastructure changes. Collaborate with platform engineers, data engineers, and frontend teams to deliver secure-by-default user experiences. Participate in threat modeling, architecture discussions, sprint planning, and code reviews. Contribute to automation, testing, and CI/CD pipelines to enforce security best practices in deployments. What should you bring along Strong experience with Python development, ideally in a cloud-native, serverless context. Solid understanding of AWS security services and best practices (IAM, KMS, Secrets Manager, CloudTrail, GuardDuty, SCPs, Organizations). Experience designing and consuming REST APIs with secure authentication and authorization. Familiarity with infrastructure as code (e.g. Terraform) for defining and enforcing security policies. Understanding of secure software development practices, including threat modeling, secure code reviews, and vulnerability management. Commitment to writing well-tested, maintainable code, with unit and integration testing. Familiarity with version control (Git) and CI/CD best practices. Strong communication skills and a collaborative, security-first mindset. Detail-oriented mindset. Strong problem-solving skills. Work often in CET timezone. Outstanding Analytical and Communication Skills MUST Must have technical skills Python, ideally in a cloud-native, serverless context AWS security services and best practices (IAM, KMS, Secrets Manager, CloudTrail, GuardDuty, SCPs, Organizations) Good to have technical skills Experience with AWS Organizations and SCP policy design. Background in data platform security, including protecting data lakes, catalogs, and data pipelines. Knowledge of compliance frameworks (e.g. ISO 27001, SOC 2) and audit readiness. Experience integrating monitoring and security tooling (e.g. AWS Security Hub, SIEMs, custom dashboards).

Role & responsibilities: Perform security monitoring of Pega Cloud commercial environments using multiple security tools/dashboards Perform security investigations to identify indicators of compromise (IOCs) and better protect Pega Cloud and our clients from unauthorized or malicious activity Actively contribute to incident response activities as we identify, contain, eradicate, and recover Contribute to standard operating procedure (SOP) and policy development for CSOC detection and analysis tools and methodologies Assist in enhancing security incident response plans, conducting thorough investigations, and recommending remediation measures to prevent future incidents. Perform threat hunts for adversarial activities within Pega Cloud to identify evidence of attacker presence that may have not been identified by existing detection mechanisms Assist the threat detection team in developing high confidence Splunk notables focused on use cases for known and emerging threats, based on hypotheses derived from the Pega threat landscape Assist in the development of dashboards, reports, and other non-alert based content to maintain and improve situational awareness of Pega Cloud's security posture Assist in the development of playbooks for use by analysts to investigate both high confidence and anomalous activity Preferred candidate profile: SANS, Offensive Security, or other top-tier industry recognized technical security certifications focused on analysis, detection, and/or incident response Industry recognition for identifying security gaps to secure applications or products What You've Accomplished: Minimum of 6+ years of industry-relevant experience, with a demonstrated working knowledge of cloud architecture, infrastructure, and resources, along with the associated services, threats, and mitigations. Minimum of 4+ years in operational SIEM (Security Information and Event Management) roles, focusing on analysis, investigations, and incident response, with experience in Google Chronicle SIEM being an added advantage. 3+ years of operational cloud security experience preferably AWS and/or GCP including knowledge and analysis of various cloud logs such as CloudTrail, Cloud Audit, GuardDuty, Security Command Center, CloudWatch, Cloud Ops, Trusted Advisor, Recommender, VPCFIow, and WAF logs. 4+ years of operational experience with EDR/XDR platforms and related analysis and response techniques Operational experience performing investigations and incident response within Linux and Windows hosts as well as AWS, GCP, and related Kubernetes environments (EKS/GKE) Solid working knowledge of MITRE ATT&CK framework and the associated TTP's and how to map detections against it, particularly the cloud matrix portion Familiarity with the OWASP Top 10 vulnerabilities and best practices for mitigating these security risks. A solid foundational understanding of computer, OS (Linux/Windows), and network architecture concepts, and various related exploits/attacks Experience developing standard operating procedures (SOPs), incident response plans, runbooks/playbooks for repeated actions, and security operations policies Experience with Python, Linux shell/bash, and PowerShell scripting is a plus Excellent verbal and written communication skills, including poise in high pressure situations A demonstrated ability to work in a team environment and foster a healthy, productive team culture A Bachelor's degree in Cybersecurity, Computer Science, Data Science, or related field

Security Operations (SecOps) Engineer Location: Bangalore Team: Security & Compliance Reports to: Engineering Manager Platform & Security About Josys Josys is on a mission to redefine enterprise IT operations through automation, visibility, and security. As we continue to scale globally, securing our cloud-native infrastructure and application ecosystem is more critical than ever. We are looking for a passionate Security Operations Engineer to join our security team and help strengthen our defenses and practices across the cloud. Job Summary As a Senior SecOps Engineer , you&aposll lead the design and implementation of security controls across cloud infrastructure, CI/CD pipelines, and application layers. Youll act as a subject matter expert in both preventive and detective controls, vulnerability management, and compliance enforcement. We are looking for someone hands-on with a deep understanding of cloud and application security especially across AWS, data privacy, and regulatory frameworks . Key Responsibilities 1. Cloud Security Monitoring & Compliance Configure and optimize AWS-native security tools like Security Hub, GuardDuty, Config, CloudTrail for real-time detection and compliance. Drive Cloud Gap Assessments and security posture reviews across multi-account AWS environments. Ensure alignment with standards like CIS, ISO 27001, SOC 2 , and regulatory requirements including GDPR and data residency controls . 2. Incident Response & Remediation Lead investigation and remediation efforts in partnership with L1 support and SRE teams . Perform root cause analysis , implement fixes, and establish preventive controls. Build runbooks, define escalation processes, and improve incident response automation . 3. Secure DevOps & CI/CD Integration Integrate automated security tools in CI/CD for both infrastructure and applications (e.g., SAST, DAST, IaC scanning). Implement IaC policy enforcement using tools such as tfsec, Checkov, or OPA . Embed security gates and practices early in the software development lifecycle. 4. Penetration Testing & Vulnerability Management Conduct or coordinate regular penetration testing using tools like Burp Suite, OWASP ZAP , or via third-party assessors. Manage end-to-end vulnerability lifecycle , from discovery through remediation. Translate findings into developer-friendly guidance and track fixes to closure. 5. Continuous Improvement & Security Awareness Stay current with cloud security trends, vulnerabilities, and threats . Drive security awareness training and contribute to improving engineering security hygiene. Influence architectural decisions by embedding security principles into project planning. Required Qualifications 58 years of experience in cloud security, application security, or security operations roles. Deep knowledge of AWS security architecture, IAM, networking, and encryption practices . Hands-on experience with security testing tools like Burp Suite, OWASP ZAP , Nmap, and cloud-native monitoring tools. Strong grasp of compliance frameworks including GDPR, SOC 2, ISO 27001 , and data residency considerations . Solid scripting or automation skills (e.g., Python, Bash, Terraform). Must hold at least one relevant certification: AWS Certified Security Specialty CISSP (Certified Information Systems Security Professional) CCSP (Certified Cloud Security Professional) Nice to Have Experience with container security (e.g., EKS, Docker) and runtime protection tools . Familiarity with security operations platforms (e.g., Splunk, ELK, or SIEM tools ). Experience working in fast-paced SaaS or DevOps-centric environments . Why Join Us Work on a global SaaS platform at the cutting edge of IT automation and cloud security. Lead initiatives that shape how modern enterprises manage risk. Join a culture of ownership, innovation, and collaboration. Remote-friendly work culture with high-impact opportunities. Show more Show less

HCLTech is a global technology company operating in 60 countries, specializing in digital, engineering, cloud, and AI solutions. Our diverse workforce of 161 nationalities is dedicated to driving proactive value creation and problem-solving for clients in various industries such as Financial Services, Manufacturing, Life Sciences, Healthcare, Technology, Telecom, Media, Retail, CPG, and Public Services. Our mission is to harness the power of technology and our talented team to accelerate progress globally. We are committed to advancing our Environmental, Social, and Governance (ESG) agenda and delivering sustainable, technology-driven solutions in collaboration with our clients and partners. Our goal is to achieve net zero by 2040. As the Tower Lead for Support & Operations, you will play a crucial role in managing escalations and ensuring smooth operational performance within AWS Security and Cisco ASA frameworks. Your responsibilities will include optimizing services to generate tower-level revenue, resolving escalations promptly, monitoring operational hygiene, enhancing customer satisfaction, and implementing profit improvement plans through automation strategies. Key Responsibilities: 1. Drive tower-level revenue by effectively managing and optimizing AWS Security and Cisco ASA services in alignment with financial goals. 2. Oversee the resolution of escalations to ensure operational continuity and adherence to SLA norms. 3. Validate reports and monitor operational hygiene to ensure service delivery meets the agreed Statement of Work (SOW) and industry best practices. 4. Enhance customer satisfaction by developing new initiatives and frameworks within AWS Security and Cisco ASA. 5. Implement Profit Improvement Plan (PIP) through automation strategies to drive efficiency and cost savings in support operations. Skill Requirements: 1. Proficiency in AWS Security best practices and tools such as IAM, CloudTrail, and GuardDuty. 2. Strong understanding of Cisco ASA security features and configurations for effective network protection. 3. In-depth knowledge of operational metrics, SLA management, and reporting frameworks. 4. Exceptional problem-solving skills and effective escalation management. 5. Excellent communication and stakeholder management skills to build positive customer relationships. Certification: - AWS Certified Security Specialty (Optional but valuable) - Cisco Certified Network Associate (CCNA) Security (Optional but valuable) This is a full-time position that offers the opportunity to drive operational excellence and customer satisfaction within a dynamic global technology company. To learn more about how we can supercharge progress together, visit our website.,

We are looking for an experienced Information Security professional with certifications like CISSP or CISA, and a strong background in leading compliance initiatives for SOC 2 Type II, ISO 27001, PCI DSS, and IOCFR. Direct experience working with RBI regulations and auditors is mandatory . The ideal candidate should have hands-on knowledge of AWS cloud security, and familiarity with tools such as GuardDuty, Wiz/Orca, Splunk, Crowdstrike, and Vanta. Experience in fast-paced sectors like FinTech, E-commerce, or Payment Solutions is a strong plus. What You&aposll Do: Governance & Compliance: Develop and maintain information security policies and drive compliance with ISO 27001, SOC 2, and RBI guidelines. Act as the primary contact for audits and inspections. Risk Management: Conduct risk assessments, manage risk registers, and oversee third-party/vendor security reviews. Security Operations: Oversee tools and processes for SIEM, DLP, EDR, patch management, and incident response. Lead security incident simulations and resolution. Cloud & App Security: Manage AWS security architecture, implement CSPM programs, and embed secure coding and DevSecOps practices across CI/CD pipelines. Business Continuity & DR: Maintain and test disaster recovery and continuity plans (RTO: 60 mins; near-zero RPO). Awareness & Culture: Run regular security training, phishing drills, and promote a security-aware culture across the organization. Reporting & Strategy: Present security metrics, dashboards, and risk reports to leadership and participate in strategic IT governance forums. What Were Looking For: 8+ years in cybersecurity or information security roles; at least 3 years in a leadership capacity. Background in fintech, NBFC, or regulated financial services preferred. Proven track record in managing audits (ISO 27001, SOC 2), incident response, and cloud security (AWS). Strong knowledge of cybersecurity tools and frameworks: AWS, SIEM, CSPM, IAM, patch management, DLP, EDR. Familiar with secure SDLC, DevSecOps, threat modeling, and regulatory compliance. Effective communicator with experience working across cross-functional teams. Certifications (preferred): CISSP, CISM, CISA, ISO 27001 Lead Auditor/Implementer, AWS Security Specialty. Bonus: DCPP, CIPP/E, or other data privacy/RBI-focused certifications. About Kissht: Kissht, a Great Place to Work certified organization, is a consumer-first credit app that is transforming the landscape of consumer credit. As one of the fastest-growing and most respected FinTech companies, Kissht is a pioneer in data and machine-based lending. With over 15 million customers, including 40% from tier 2 cities and beyond, we offer both short and long-term loans for personal consumption, business needs, and recurring expenses. Founded by Ranvir and Krishnan, alumni of IIT and IIM, and backed by renowned investors like Endiya Partners, the Brunei Investment Authority, and the Singapore Government, Kissht is synonymous with excellence in the industry. Join us and be a part of a dynamic, innovative company that is changing the future of financial technology. Show more Show less

Who are we FalconX is a pioneering team of operators, investors, and builders committed to revolutionizing institutional access to the crypto markets. Operating at the intersection of traditional finance and ?cutting-edge technology, FalconX addresses the industry&aposs foremost challenges: Navigating the digital asset market can be complex and fragmented, with limited products and services that support trading strategies, structures, and liquidity found in conventional financial markets. As a comprehensive solution for all digital asset strategies from start to scale, FalconX operates as the connective tissue empowering clients with seamless navigation through the ever-?evolving cryptocurrency landscape. We are seeking a highly skilled Senior DevSecOps Engineer to join our team. This role is responsible for embedding security at every stage of our cloud infrastructure lifecycle, with a strong focus on hands-on implementation, automation, and DevSecOps best practices. You will work closely with development, operations, and security teams to ensure our AWS-based environments are secure, compliant, and resilient. Key Responsibilities Cloud Infrastructure Security Design, implement, and maintain security controls within cloud-based systems, focusing on AWS technologies and best practices. Integrate security scanning and compliance checks into CI/CD pipelines to ensure continuous security throughout the development lifecycle. Conduct regular vulnerability assessments and patching of virtual instances using Ansible and other cloud-native tools. Develop and maintain Infrastructure as Code (IaC) using Terraform for IAM, Cloudflare, and AWS components, ensuring security by design. Collaborate with cross-functional teams to embed security controls into development and deployment workflows. Deploy and manage cloud security tools (e.g., AWS Security Hub, GuardDuty, Inspector) to enhance cloud security posture. Automation and Scripting Develop and maintain scripts, tools, and automation workflows to streamline security operations, incident response, and compliance checks. Create and update Ansible playbooks for consistent, automated security configurations across cloud resources. Kubernetes and Container Security Apply foundational knowledge of container security, including best practices for Kubernetes clusters and workloads. Support the secure deployment and management of containerized applications, ensuring Kubernetes environments adhere to security guidelines. Assist with vulnerability scanning, secrets management, and policy enforcement in Kubernetes as needed. Compliance and Best Practices Ensure cloud infrastructure adheres to industry security standards and compliance requirements (SOC 2, ISO 27001, PCI DSS, etc.). Stay up to date with the latest cloud and container security threats, vulnerabilities, and tools, implementing proactive measures to mitigate risk. Collaboration and Documentation Work closely with DevOps and development teams to integrate security practices into the CI/CD pipeline and SDLC. Educate and train teams on secure coding, DevSecOps, and Kubernetes/container security practices. Maintain comprehensive documentation of security processes, configurations, and incident response procedures. Qualifications Bachelors degree in Computer Science, Information Security, or a related field. 6-8 years of experience in cloud engineering, DevOps, or security engineering, with a strong focus on AWS technologies. Hands-on experience with Terraform, Ansible, and AWS services (EC2, IAM, Cloudflare, Kubernetes, etc.). Proficiency in scripting languages such as Python or Bash for automation and security tooling. In-depth knowledge of cloud security best practices, threat modeling, and common vulnerabilities. Experience with cloud security tools and integrating security into CI/CD pipelines. Foundational knowledge of Kubernetes security and container security principles. Excellent problem-solving skills, attention to detail, and ability to collaborate across teams. Preferred Qualifications AWS Certified Security - Specialty or equivalent cloud security certifications. Experience with advanced Kubernetes security (e.g., network policies, RBAC, Pod Security Policies). Knowledge of compliance frameworks (SOC 2, ISO 27001, PCI DSS, etc.). Notice at Collection and Privacy Policy Applicants located in California and/or applying to a role based in California, please refer to our Notice at Collection and Privacy Policy here. Inclusivity Statement FalconX is committed to building a diverse, inclusive, equitable, and safe workspace for all people. Our roles are intended for people from all walks of life. We encourage all those interested in applying to our organization to submit an application regardless if you are missing some of the listed background requirements, skills, or experiences! As part of our commitment to inclusivity, FalconX would like to acknowledge that the EEOC survey has limited potential responses that you can select. For legal reasons, FalconX must use this language to align with federal requirements, however, we want to ensure that you are able to provide a response to our own voluntary survey questions about your identity that best aligns with your most true self. FalconX is an equal opportunity employer and will not discriminate against an applicant or employee based on race, color, religion, national origin, ancestry, ethnicity, sex (including gender, pregnancy, sexual orientation, and gender identity), age, physical or mental disability, veteran or military status, genetic information, citizenship, or any other legally-recognized protected basis under federal, state, or local law. Applicants with disabilities may be entitled to reasonable accommodation under the Americans with Disabilities Act and other applicable state or local laws. A reasonable accommodation is a change in the way things are normally done which will ensure an equal employment opportunity without imposing undue hardship on FalconX. Please inform FalconXs People team at [HIDDEN TEXT], if you need assistance with participating in the application process. Show more Show less

You have an exciting opportunity to join as a DevSecOps in Sydney. As a DevSecOps, you should have 3+ years of extensive Python proficiency and 3+ years of Java Experience. Your role will also require extensive exposure to technologies such as Javascript, Jenkins, Code Pipeline, CodeBuild, and AWS" ecosystem including AWS Well Architected Framework, Trusted Advisor, GuardDuty, SCP, SSM, IAM, and WAF. It is essential for you to have a deep understanding of automation, quality engineering, architectural methodologies, principles, and solution design. Hands-on experience with Infrastructure-As-Code tools like CloudFormation and CDK will be preferred for automating deployments in AWS. Moreover, familiarity with operational observability, including log aggregation, application performance monitoring, deploying auto-scaling and load-balanced / Highly Available applications, and managing certificates (client-server, mutual TLS, etc) is crucial for this role. Your responsibilities will include improving the automation of security controls, working closely with the consumer showback team on defining processes and system requirements, and designing and implementing updates to the showback platform. You will collaborate with STO/account owners to uplift the security posture of consumer accounts, work with the Onboarding team to ensure security standards and policies are correctly set up, and implement enterprise minimum security requirements from the Cloud Security LRP, including Data Masking, Encryption monitoring, Perimeter protections, Ingress / Egress uplift, and Integration of SailPoint for SSO Management. If you have any questions or need further clarification, feel free to ask.,

As an Enterprise IT Security Analyst Cloud and Endpoints, you will play a crucial role in ensuring the security of our cloud environments, specifically across AWS or Azure. Your primary responsibilities will revolve around collaborating with DevOps and IT teams to implement and oversee security measures, identify and mitigate risks, and ensure compliance with industry standards. Your key responsibilities will include: - Utilizing Microsoft Defender for Cloud and EDR tools like SentinelOne, CrowdStrike, or Microsoft Defender for Endpoint to enhance security measures. - Applying AI coding techniques for anomaly detection, threat prediction, and automated response systems. - Managing Microsoft Defender for Cloud to safeguard Azure environments. - Leveraging Endpoint Detection and Response (EDR) tools for threat detection and response. - Designing, implementing, and managing security solutions across AWS, Azure, and GCP. - Employing AWS security capabilities such as AWS Inspector, WAF, GuardDuty, and IAM for cloud infrastructure protection. - Implementing Azure security features including Azure Security Center, Azure Sentinel, and Azure AD. - Managing security configurations and policies across GCP using tools like Google Cloud Armor, Security Command Center, and IAM. - Conducting regular security assessments and audits to ensure vulnerability identification and compliance. - Developing and maintaining security policies, procedures, and documentation. - Collaborating with cross-functional teams to integrate security best practices into the development lifecycle. - Monitoring and responding to security incidents and alerts. - Implementing and managing Cloud Security Posture Management (CSPM) solutions with tools like Prisma Cloud, Dome9, and AWS Security Hub to continuously enhance cloud security posture. - Utilizing Infrastructure as Code (IaC) tools such as Terraform, CloudFormation, and ARM templates for cloud infrastructure automation and management. Qualifications: Must Have Qualifications: - Bachelor's degree in computer science, Information Technology, or a related field. - 1-3 years of experience in cloud security engineering. - Proficiency in AWS security capabilities. - Strong skills in Terraform for Infrastructure as Code (IaC). - Experience with Cloud Security Posture Management (CSPM) tools. - Familiarity with Web Application Firewall (WAF). - Relevant certification such as CISSP or AWS Certified Security Specialty or similar. Good to Have Qualifications: - Additional experience with AWS security capabilities. - Strong understanding of cloud security frameworks and best practices. - Proficiency in Infrastructure as Code (IaC) tools like CloudFormation and ARM templates. - Experience with AI coding and applying machine learning techniques to security. - Excellent problem-solving skills and attention to detail. - Strong communication and collaboration skills. This role will be based at The Leela Office on Airport Road, Kodihalli, Bangalore. The position follows a hybrid work model with office presence on Tuesdays, Wednesdays, and Thursdays, and remote work on Mondays and Fridays. The work timings are from 1 PM to 10 PM IST, with cab pickup and drop facility available. Candidates based in Bangalore are preferred.,

As an Enterprise IT Security Analyst Cloud and Endpoints, you will play a crucial role in ensuring the security of the cloud environments in either AWS or Azure. Your responsibilities will involve collaborating closely with the DevOps and IT teams to implement and manage security measures, identify risks, and ensure compliance with industry standards. You will be expected to have experience with Microsoft Defender for Cloud and Endpoint Detection and Response (EDR) tools such as SentinelOne, CrowdStrike, or Microsoft Defender for Endpoint. Furthermore, you will apply AI coding techniques to enhance security measures, implement Microsoft Defender for Cloud for Azure protection, and utilize EDR tools for threat detection and response. Designing, implementing, and managing security solutions across various cloud platforms like AWS, Azure, and GCP will be a key part of your role. Utilizing security capabilities specific to each platform, such as AWS Inspector, WAF, GuardDuty, Azure Security Center, Sentinel, and IAM, will be essential in safeguarding the cloud infrastructure. Regular security assessments, audits, and the development of security policies and documentation will also fall within your responsibilities. Collaborating with cross-functional teams to integrate security best practices into the development lifecycle, monitoring and responding to security incidents, and managing Cloud Security Posture Management (CSPM) solutions using tools like Prisma Cloud and AWS Security Hub will be crucial aspects of your role. You should hold a Bachelor's degree in computer science, Information Technology, or a related field, along with 1-3 years of experience in cloud security engineering. Proficiency in AWS security capabilities, Azure AD, Microsoft Defender, M365, Exchange security, and Terraform for Infrastructure as Code (IaC) is required. Relevant certifications such as CISSP or AWS Certified Security Specialty will be beneficial. Additional qualifications that would be advantageous include experience with cloud security frameworks, Infrastructure as Code (IaC) tools like CloudFormation and ARM templates, AI coding, and machine learning techniques applied to security. Strong problem-solving skills, attention to detail, and effective communication and collaboration abilities are also desired. This position is based at The Leela Office in Bangalore, with a hybrid work model of 3 days in the office and 2 days remote work. The work timings are from 1 pm to 10 pm IST, with cab pickup and drop facilities available. Candidates based in Bangalore are preferred for this role.,

Role Overview As an AWS DevOps Engineer, youll own the end-to-end infrastructure lifecyclefrom design and provisioning through deployment, monitoring, and optimization. Youll collaborate closely with development teams to implement Infrastructure as Code, build robust CI/CD pipelines, enforce security and compliance guardrails, and integrate next-gen tools like Google Gemini for automated code-quality and security checks. Summary DevOps Engineer with 3+ years of experience in AWS infrastructure, CI/CD, and IaC, capable of designing secure, production-grade systems with zero-downtime deployments. The ideal candidate excels in automation, observability, and compliance within a collaborative engineering environment. Top Preferred Technologies: Terraform – core IaC tool for modular infrastructure design Amazon ECS/EKS (Fargate) – container orchestration and deployment GitHub Actions / AWS CodePipeline + CodeBuild – modern CI/CD pipelines Amazon CloudWatch – observability, custom metrics, and centralized logging IAM, KMS & GuardDuty – for access control, encryption, and threat detection SSM Parameter Store – for secure config and secret management Python / Bash / Node.js – for scripting, automation, and Lambda integration Key Responsibilities Infrastructure as Code (IaC): Design, build, and maintain Terraform (or CloudFormation) modules for VPCs, ECS/EKS clusters, RDS, ElastiCache, S3, IAM, KMS, and networking across multiple Availability Zones. Produce clear architecture diagrams (Mermaid or draw.io) and documentation. CI/CD Pipeline Development: Implement GitHub Actions or AWS CodePipeline/CodeBuild workflows to run linting, unit tests, Terraform validation, Docker builds, and automated deployments (zero-downtime rolling updates) to ECS/EKS. Integrate unit tests (Jest, pytest) and configuration-driven services (SSM Parameter Store). Monitoring & Alerting: Define custom CloudWatch metrics (latency, error rates), create dashboards, and centralize application logs in CloudWatch Logs with structured outputs and PII filtration. Implement CloudWatch Alarms with SNS notifications for key thresholds (CPU, replica lag, 5xx errors). Security & Compliance: Enable and configure GuardDuty and AWS Config rules (e.g., public-CIDR security groups, unencrypted S3 or RDS). Enforce least-privilege IAM policies, key-management with KMS, and secure secret storage in SSM Parameter Store. Innovative Tooling Integration: Integrate Google Gemini (or similar) into the CI pipeline for automated Terraform security scans and generation of actionable “security reports” as PR comments. Documentation & Collaboration: Maintain clear README files, module documentation, and step-by-step deployment guides. Participate in code reviews, design discussions, and post-mortems to continuously improve our DevOps practices. Required Qualifications Experience: 3+ years in AWS DevOps or Site Reliability Engineering roles, designing and operating production-grade cloud infrastructure. Technical Skills: Terraform (preferred) or CloudFormation for IaC. Container orchestration: ECS/Fargate or EKS with zero-downtime deployments. CI/CD: GitHub Actions, AWS CodePipeline, and CodeBuild (linting, testing, Docker, Terraform). Monitoring: CloudWatch Dashboards, custom metrics, log centralization, and alarm configurations. Security & Compliance: IAM policy design, KMS, GuardDuty, AWS Config, SSM Parameter Store. Scripting: Python, Bash, or Node.js for automation and Lambda functions. Soft Skills: Strong problem-solving mindset and attention to detail. Excellent written and verbal communication for documentation and cross-team collaboration. Ability to own projects end-to-end and deliver under tight timelines. Wil have to attend Coimbatore office on request (Hybrid) Preferred Qualifications Hands-on experience integrating third-party security or code-analysis APIs (e.g., Google Gemini, Prisma Cloud). Familiarity with monitoring and observability best practices, including custom metric creation. Exposure to multi-cloud environments or hybrid cloud architectures. Certification: AWS Certified DevOps Engineer – Professional or AWS Certified Solutions Architect – Associate.

Role Overview We are looking for experienced DevOps Engineers (8+ years) with a strong background in cloud infrastructure , automation , and CI/CD processes. The ideal candidate will have hands-on experience in building , deploying , and maintaining cloud solutions using Infrastructure-as-Code (IaC) best practices. The role requires expertise in containerization , cloud security , networking and monitoring tools to optimize and scale enterprise-level applications. Key Responsibilities Design , implement , and manage cloud infrastructure solutions on AWS , Azure , or GCP. Develop and maintain Infrastructure-as-Code (IaC) using Terraform , CloudFormation ,or similar tools. Implement and manage CI/CD pipelines using tools like GitHub Actions , Jenkins ,GitLab CI/CD , BitBucket Pipelines , or AWS CodePipeline. Manage and orchestrate containers using Kubernetes , OpenShift , AWS EKS , AWS ECS , and Docker. Work on cloud migrations , helping organizations transition from on-premises data centers to cloud-based infrastructure. Ensure system security and compliance with industry standards such as SOC 2 , PCI ,HIPAA , GDPR , and HITRUST. Set up and optimize monitoring , logging , and alerting using tools like Datadog ,Dynatrace , AWS CloudWatch , Prometheus , ELK , or Splunk. Automate deployment , configuration , and management of cloud-native applications using Ansible , Chef , Puppet , or similar configuration management tools. Troubleshoot complex networking , Linux/Windows server issues , and cloud-related performance bottlenecks. Collaborate with development , security , and operations teams to streamline the DevSecOps process. Must-Have Skills 3+ years of experience in DevOps , cloud infrastructure , or platform engineering. Expertise in at least one major cloud provider: AWS , Azure , or GCP. Strong experience with Kubernetes , ECS , OpenShift , and container orchestration technologies. Hands-on experience in Infrastructure-as-Code (IaC) using Terraform , AWS CloudFormation , or similar tools. Proficiency in scripting/programming languages like Python , Bash , or PowerShell for automation. Strong knowledge of CI/CD tools such as Jenkins , GitHub Actions , GitLab CI/CD , or BitBucket Pipelines. Experience with Linux operating systems (RHEL , SUSE , Ubuntu , Amazon Linux) and Windows Server administration. Expertise in networking (VPCs , Subnets , Load Balancing , Security Groups ,Firewalls). Experience in log management and monitoring tools like Datadog , CloudWatch , Prometheus , ELK , Dynatrace. Strong communication skills to work with cross-functional teams and external customers. Knowledge of Cloud Security best practices , including IAM , WAF , GuardDuty , CVE scanning , vulnerability management. Good-to-Have Skills Knowledge of cloud-native security solutions (AWS Security Hub , Azure Security Center , Google Security Command Center). Experience in compliance frameworks (SOC 2 , PCI , HIPAA , GDPR , HITRUST). Exposure to Windows Server administration alongside Linux environments. Familiarity with centralized logging solutions (Splunk , Fluentd , AWS OpenSearch). GitOps experience with tools like ArgoCD or Flux. Background in penetration testing , intrusion detection , and vulnerability scanning. Experience in cost optimization strategies for cloud infrastructure. Passion for mentoring teams and sharing DevOps best practices.

Ready to shape the future of work At Genpact, we don&rsquot just adapt to change&mdashwe drive it. AI and digital innovation are redefining industries, and we&rsquore leading the charge. Genpact&rsquos , our industry-first accelerator, is an example of how we&rsquore scaling advanced technology solutions to help global enterprises work smarter, grow faster, and transform at scale. From large-scale models to , our breakthrough solutions tackle companies most complex challenges. If you thrive in a fast-moving, tech-driven environment, love solving real-world problems, and want to be part of a team that&rsquos shaping the future, this is your moment. Genpact (NYSE: G) is an advanced technology services and solutions company that delivers lasting value for leading enterprises globally. Through our deep business knowledge, operational excellence, and cutting-edge solutions - we help companies across industries get ahead and stay ahead. Powered by curiosity, courage, and innovation , our teams implement data, technology, and AI to create tomorrow, today. Get to know us at and on , , , and . Inviting applications for the role of L ead Consultant - C loud Engineer! In this role, you will be responsible for designing, provisioning, and securing scalable cloud infrastructure to support AI/ML and Generative AI workloads. A key focus will be ensuring high availability, cost efficiency, and performance optimization of infrastructure through best practices in architecture and automation. Responsibilities Design and implement secure VPC architecture, subnets, NAT gateways, and route tables. Build and maintain IAC modules for repeatable infrastructure provisioning. Build CI/CD pipelines that support secure, auto-scalable AI deployments using GitHub Actions, AWS CodePipeline , and Lambda triggers. Monitor and tune infrastructure health using AWS CloudWatch, GuardDuty , and custom alerting. Track and optimize cloud spend using AWS Cost Explorer, Trusted Advisor, and usage dashboards. Deploy and manage cloud-native services including SageMaker, Lambda, ECR, API Gateway etc. Implement IAM policies, Secrets Manager, and KMS encryption for secure deployments. Enable logging and monitoring using CloudWatch and configure alerts and dashboards. Set up and manage CloudTrail, GuardDuty , and AWS Config for audit and security compliance. Assist with cost optimization strategies including usage analysis and budget alerting. Support multi-cloud or hybrid integration patterns (e.g., data exchange between AWS and Azure/GCP). Collaborate with MLOps and Data Science teams to translate ML/ GenAI requirements into production-grade, resilient AWS environments. Maintain multi-cloud compatibility as needed (e.g., data egress readiness, common abstraction layers). Be engaging in the design, development and maintenance of data pipelines for various AI use cases Required to actively contribution to key deliverables as part of an agile development team Be collaborating with others to source, analyse, test and deploy data processes. Qualifications we seek in you! Minimum Qualifications AWS infrastructure experience in production environments. Degree/qualification in Computer Science or a related field, or equivalent work experience Proficiency in Terraform, AWS CLI, and Python or Bash scripting. Strong knowledge of IAM, VPC, ECS/EKS, Lambda, and serverless computing. Experience supporting AI/ML or GenAI pipelines in AWS (especially for compute and networking). Hands on experience to multiple AI / ML /RAG/LLM workloads and model deployment infrastructure. Exposure to multi-cloud architecture basics (e.g., SSO, networking, blob exchange, shared VPC setups). AWS Certified DevOps Engineer or Solutions Architect - Associate/Professional. Experience in developing, testing, and deploying data pipelines using public cloud. Clear and effective communication skills to interact with team members, stakeholders and end users Preferred Qualifications/ Skills Experience deploying infrastructure in both AWS and another major cloud provider (Azure or GCP). Familiarity with multi-cloud tools (e.g., HashiCorp Vault, Kubernetes with cross-cloud clusters). Strong understanding of DevSecOps best practices and compliance requirements. Exposure to RAG/LLM workloads and model deployment infrastructure. Knowledge of governance and compliance policies, standards, and procedures Why join Genpact Be a transformation leader - Work at the cutting edge of AI, automation, and digital innovation Make an impact - Drive change for global enterprises and solve business challenges that matter Accelerate your career - Get hands-on experience, mentorship, and continuous learning opportunities Work with the best - Join 140,000+ bold thinkers and problem-solvers who push boundaries every day Thrive in a values-driven culture - Our courage, curiosity, and incisiveness - built on a foundation of integrity and inclusion - allow your ideas to fuel progress Come join the tech shapers and growth makers at Genpact and take your career in the only direction that matters: Up. Let&rsquos build tomorrow together. Genpact is an Equal Opportunity Employer and considers applicants for all positions without regard to race, color , religion or belief, sex, age, national origin, citizenship status, marital status, military/veteran status, genetic information, sexual orientation, gender identity, physical or mental disability or any other characteristic protected by applicable laws. Genpact is committed to creating a dynamic work environment that values respect and integrity, customer focus, and innovation. Furthermore, please do note that Genpact does not charge fees to process job applications and applicants are not required to pay to participate in our hiring process in any other way. Examples of such scams include purchasing a %27starter kit,%27 paying to apply, or purchasing equipment or training.

Picture Yourself at Pega: As a Senior Cloud Security Operations Analyst, you will play a critical role in ensuring the confidentiality, integrity, and availability of Pega's commercial cloud infrastructure and assets. You will be key in the continuous monitoring and protection of all global cloud security operations at Pega as well as an active participant in incident response efforts. As a key member of a team consisting of highly capable and talented problem-solving analysts and engineers, you'll help develop processes that drive proactive, automated detection and incident response tactics to support the quick resolution of cloud security events and incidents. You will accomplish this by collaborating with cross-functional teams including other security analysts, threat detection engineers, vulnerability analysts, security engineers, system administrators, and developers to proactively identify potential security risks and vulnerabilities within our cloud environment. You will leverage your strong analytical skills to assess and prioritize threats, applying your knowledge of industry best practices and cloud security frameworks. As a Senior Cloud Security Operations Analyst at Pega, you'll contribute to the success of our globally recognized brand. Your efforts will directly impact the security and trust our clients place in us, as we help them transform their business processes and drive meaningful digital experiences. So, picture yourself at Pega, where your expertise in cloud security is valued, and your passion for protecting data is celebrated. join us in shaping the future of secure cloud operations and make a lasting impact on the world of technology. What You'll Do at Pega: Perform security monitoring of Pega Cloud commercial environments using multiple security tools/dashboards Perform security investigations to identify indicators of compromise (IOCs) and better protect Pega Cloud and our clients from unauthorized or malicious activity Actively contribute to incident response activities as we identify, contain, eradicate, and recover Contribute to standard operating procedure (SOP) and policy development for CSOC detection and analysis tools and methodologies Assist in enhancing security incident response plans, conducting thorough investigations, and recommending remediation measures to prevent future incidents. Perform threat hunts for adversarial activities within Pega Cloud to identify evidence of attacker presence that may have not been identified by existing detection mechanisms Assist the threat detection team in developing high confidence Splunk notables focused on use cases for known and emerging threats, based on hypotheses derived from the Pega threat landscape Assist in the development of dashboards, reports, and other non-alert based content to maintain and improve situational awareness of Pega Cloud's security posture Assist in the development of playbooks for use by analysts to investigate both high confidence and anomalous activity Who You Are: You have an insatiable curiosity with an inborn tenacity for finding creative ways to deter, detect, deny, delay, and defend against bad actors of all shapes and sizes. You have been in the security trenches and you know what an efficient security operations center looks like. You have conducted in-depth analyses of various security events/alerts, contributed to incident response efforts, and developed new methods for detecting and mitigating badness wherever you see it. You bring a wealth of cloud security experience to the table and are ready to harness that expertise to dive into cloud-centric, technical analysis and incident response to make Pega Cloud the most secure it can be. You have a history of success in the information security industry. Your list of accolades include : SANS, Offensive Security, or other top-tier industry recognized technical security certifications focused on analysis, detection, and/or incident response Industry recognition for identifying security gaps to secure applications or products What You've Accomplished: Minimum of 6+ years of industry-relevant experience, with a demonstrated working knowledge of cloud architecture, infrastructure, and resources, along with the associated services, threats, and mitigations. Minimum of 4+ years in operational SIEM (Security Information and Event Management) roles, focusing on analysis, investigations, and incident response, with experience in Google Chronicle SIEM being an added advantage. 3+ years of operational cloud security experience preferably AWS and/or GCP including knowledge and analysis of various cloud logs such as CloudTrail, Cloud Audit, GuardDuty, Security Command Center, CloudWatch, Cloud Ops, Trusted Advisor, Recommender, VPCFIow, and WAF logs. 4+ years of operational experience with EDR/XDR platforms and related analysis and response techniques Operational experience performing investigations and incident response within Linux and Windows hosts as well as AWS, GCP, and related Kubernetes environments (EKS/GKE) Solid working knowledge of MITRE ATT&CK framework and the associated TTP's and how to map detections against it, particularly the cloud matrix portion Familiarity with the OWASP Top 10 vulnerabilities and best practices for mitigating these security risks. A solid foundational understanding of computer, OS (Linux/Windows), and network architecture concepts, and various related exploits/attacks Experience developing standard operating procedures (SOPs), incident response plans, runbooks/playbooks for repeated actions, and security operations policies Experience with Python, Linux shell/bash, and PowerShell scripting is a plus Excellent verbal and written communication skills, including poise in high pressure situations A demonstrated ability to work in a team environment and foster a healthy, productive team culture A Bachelor's degree in Cybersecurity, Computer Science, Data Science, or related field

Ready to shape the future of work At Genpact, we don&rsquot just adapt to change&mdashwe drive it. AI and digital innovation are redefining industries, and we&rsquore leading the charge. Genpact&rsquos , our industry-first accelerator, is an example of how we&rsquore scaling advanced technology solutions to help global enterprises work smarter, grow faster, and transform at scale. From large-scale models to , our breakthrough solutions tackle companies most complex challenges. If you thrive in a fast-moving, tech-driven environment, love solving real-world problems, and want to be part of a team that&rsquos shaping the future, this is your moment. Genpact (NYSE: G) is an advanced technology services and solutions company that delivers lasting value for leading enterprises globally. Through our deep business knowledge, operational excellence, and cutting-edge solutions - we help companies across industries get ahead and stay ahead. Powered by curiosity, courage, and innovation , our teams implement data, technology, and AI to create tomorrow, today. Get to know us at and on , , , and . Inviting applications for the role of Lead Consultant - Cloud Engineer! In this role, you will be responsible for designing, provisioning, and securing scalable cloud infrastructure to support AI/ML and Generative AI workloads. A key focus will be ensuring high availability, cost efficiency, and performance optimization of infrastructure through best practices in architecture and automation. Responsibilities Design and implement secure VPC architecture, subnets, NAT gateways, and route tables. Build and maintain IAC modules for repeatable infrastructure provisioning. Build CI/CD pipelines that support secure, auto-scalable AI deployments using GitHub Actions, AWS CodePipeline , and Lambda triggers. Monitor and tune infrastructure health using AWS CloudWatch, GuardDuty , and custom alerting. Track and optimize cloud spend using AWS Cost Explorer, Trusted Advisor, and usage dashboards. Deploy and manage cloud-native services including SageMaker, Lambda, ECR, API Gateway etc. Implement IAM policies, Secrets Manager, and KMS encryption for secure deployments. Enable logging and monitoring using CloudWatch and configure alerts and dashboards. Set up and manage CloudTrail, GuardDuty , and AWS Config for audit and security compliance. Assist with cost optimization strategies including usage analysis and budget alerting. Support multi-cloud or hybrid integration patterns (e.g., data exchange between AWS and Azure/GCP). Collaborate with MLOps and Data Science teams to translate ML/ GenAI requirements into production-grade, resilient AWS environments. Maintain multi-cloud compatibility as needed (e.g., data egress readiness, common abstraction layers). Be engaging in the design, development and maintenance of data pipelines for various AI use cases Required to actively contribution to key deliverables as part of an agile development team Be collaborating with others to source, analyse, test and deploy data processes. Qualifications we seek in you! Minimum Qualifications Good years of hands-on AWS infrastructure experience in production environments. Degree/qualification in Computer Science or a related field, or equivalent work experience Proficiency in Terraform, AWS CLI, and Python or Bash scripting. Strong knowledge of IAM, VPC, ECS/EKS, Lambda, and serverless computing. Experience supporting AI/ML or GenAI pipelines in AWS (especially for compute and networking). Hands on experience to multiple AI / ML /RAG/LLM workloads and model deployment infrastructure. Exposure to multi-cloud architecture basics (e.g., SSO, networking, blob exchange, shared VPC setups). AWS Certified DevOps Engineer or Solutions Architect - Associate/Professional. Experience in developing, testing, and deploying data pipelines using public cloud. Clear and effective communication skills to interact with team members, stakeholders and end users Preferred Qualifications/ Skills Experience deploying infrastructure in both AWS and another major cloud provider (Azure or GCP). Familiarity with multi-cloud tools (e.g., HashiCorp Vault, Kubernetes with cross-cloud clusters). Strong understanding of DevSecOps best practices and compliance requirements. Exposure to RAG/LLM workloads and model deployment infrastructure. Knowledge of governance and compliance policies, standards, and procedures Why join Genpact Be a transformation leader - Work at the cutting edge of AI, automation, and digital innovation Make an impact - Drive change for global enterprises and solve business challenges that matter Accelerate your career - Get hands-on experience, mentorship, and continuous learning opportunities Work with the best - Join 140,000+ bold thinkers and problem-solvers who push boundaries every day Thrive in a values-driven culture - Our courage, curiosity, and incisiveness - built on a foundation of integrity and inclusion - allow your ideas to fuel progress Come join the tech shapers and growth makers at Genpact and take your career in the only direction that matters: Up. Let&rsquos build tomorrow together. Genpact is an Equal Opportunity Employer and considers applicants for all positions without regard to race, color , religion or belief, sex, age, national origin, citizenship status, marital status, military/veteran status, genetic information, sexual orientation, gender identity, physical or mental disability or any other characteristic protected by applicable laws. Genpact is committed to creating a dynamic work environment that values respect and integrity, customer focus, and innovation. Furthermore, please do note that Genpact does not charge fees to process job applications and applicants are not required to pay to participate in our hiring process in any other way. Examples of such scams include purchasing a %27starter kit,%27 paying to apply, or purchasing equipment or training.

Req ID: 328782 NTT DATA strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now. We are currently seeking a Technical Security Architect - Confluent Cloud / AWS Data Platform to join our team in Bangalore, Karntaka (IN-KA), India (IN). Technical Security Architect - Confluent Cloud / AWS Data Platform Job Overview A Technical Security Architect to support the security design, governance, and assurance activities for a Confluent Cloud and AWS-hosted data platform project. This role requires a strong foundation in cloud security architecture, experience with Kafka/Confluent platforms, and the ability to influence design decisions across infrastructure, data, and application layers. The ideal candidate will also bring strong project coordination skills and familiarity with Governance, Risk, and Compliance (GRC) frameworks. Key Responsibilities Security Architecture & Design Define and document secure architecture patterns and guardrails for Confluent Cloud, Kafka pipelines, and associated AWS infrastructure. Collaborate with platform engineers, data architects, and application teams to ensure security is embedded in solution design and deployment. Lead threat modelling and risk assessments for key components and integrations. Documentation & Technical Reviews Review and write high-quality technical design and security documentation, including HLDs, LLDs, and data flow diagrams. Ensure designs adhere to internal security policies, industry best practices, and compliance requirements. GRC & Compliance Map security control requirements to organizational policies and regulatory frameworks.. Contribute to the development of platform-specific security controls and operational playbooks. Project Management Support Act as a key security stakeholder supporting the delivery of the Data platform project. Track security deliverables, identify risks and blockers, and communicate effectively with project managers and stakeholders. Provide oversight of security backlog and remediation activities. Skills & Experience Mandatory: Overall 10+ years of experience in cloud technologies of which 5+ years into security architect role. Proven experience as a Security Architect on cloud-native platforms (preferably AWS). Experience with AWS security services (e.g. IAM, KMS, VPC, GuardDuty, Security Hub). Strong understanding of security principles across identity, network, data, and application layers. Knowledge of Confluent Cloud, Apache Kafka, and secure data streaming practices. Ability to write and review technical documentation clearly and concisely. Experience working with cross-functional DevOps, data and infrastructure teams. Desirable: Experience in Agile project environments and tools (e.g. Jira, Confluence). Previous involvement in enterprise data platform or streaming data projects. About NTT DATA NTT DATA is a $30 billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long term success. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure and connectivity. We are one of the leading providers of digital and AI infrastructure in the world. NTT DATA is a part of NTT Group, which invests over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. Visit us at NTT DATA endeavors to make accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact us at . This contact information is for accommodation requests only and cannot be used to inquire about the status of applications. NTT DATA is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status. For our EEO Policy Statement, please click . If you'd like more information on your EEO rights under the law, please click . For Pay Transparency information, please click.

8+ years of relevant Cyber Security experience. Expertise in leveraging Ansible and Terraform for infrastructure management using Python and Command Line Interface. Experience with AWS and commercial cloud security tools and technologies. Required Candidate profile Excellent communication and collaboration skills, with the ability to work with technical and non-technical stakeholders. Cloud certifications (e.g., AWS Certified Security).

Roles & Responsibilities:- Design and implement secure AWS cloud architectures aligned with business and compliance requirements. Automate security controls and integrate them into CI/CD pipelines Manage and monitor AWS security tools such as GuardDuty, Security Hub, and CloudTrail Develop and enforce IAM policies using least privilege principles Conduct threat modeling, vulnerability assessments, and cloud security posture evaluations Ensure compliance with standards like SOC 2, ISO 27001, and NIST Support audit readiness and implement risk treatment plans Collaborate with DevOps teams to embed security in cloud deployments Promote DevSecOps culture across development and operations teams Create and maintain security-as-code using CloudFormation, Terraform, and scripting Automate detection, remediation, and incident response processes Provide security guidance during cloud migrations and new service adoptions Qualification:- Bachelors in Cybersecurity, Computer Science, or related field (Masters preferred) 7+ years in cybersecurity, with 5+ years in cloud security Strong expertise in AWS security tools (GuardDuty, Security Hub, IAM, KMS, CloudTrail) Familiar with cloud security frameworks (AWS Well-Architected, NIST CSF, CSA CCM) Experience in securing CI/CD pipelines and implementing IaC security (CloudFormation/Terraform) Hands-on with CSPM tools and automated security validation Deep understanding of IAM principles and DevSecOps practices Proficient in scripting (Python, Bash) for automation Strong knowledge of network, container, and serverless security Excellent communication skills (verbal and written) Certifications: AWS Security Specialty, CCSP, CISSP, or equivalent Preferred Qualifications :- Experience with multi-cloud (AWS, Azure, GCP) security Understanding of regulatory frameworks (e.g., GDPR, HIPAA, ISO) Hands-on with container security (Docker, Kubernetes, ECS/EKS) Experience with Zero Trust security models in cloud Familiarity with automated incident response and cloud-native tools Knowledge of Hashicorp Vault or similar tools for secrets management Experience securing data lakes and analytics platforms Worked with CWPP and serverless security best practices Cloud security experience in energy efficiency/sustainability domains Experience in cloud threat modeling and collaborating with global teams

Job Title: P r o g r a m M a n a g e r Business Unit: Piramal Swasthya Domain: Social Sector Location: PSMRI office, Hyderabad Big Bet: Shared Services Department: IT Design, implement, and maintain scalable, secure, and high-performance DevOps practices on AWS infrastructure. Drive the integration of security into every phase of the DevOps lifecycle. Support automation, deployment, monitoring, and security hardening to achieve agility, reliability, and compliance. Purpose of Job Essential Qualifications : *Any Graduate, preferably bachelor's degree in computer science or information technology. *Overall Working Experience of 6-8 Years *Minimum 4 years of experience in DevOps with AWS and security automation *AWS Certified DevOps Engineer / AWS Security Specialty (preferred) Preferred Key Skill /Qualifications : Deep understanding of AWS services (EC2, S3, IAM, RDS, Lambda, CloudTrail, CloudWatch, Config, GuardDuty, VPC, EKS, CloudFormation) Infrastructure as Code (Terraform, AWS CDK, CloudFormation) Network security, firewall configuration, security groups, VPC subnetting Identity & Access Management (IAM, RBAC, MFA, SSO) Vulnerability assessment, penetration testing, patch management CI/CD tools (Jenkins, GitHub Actions, GitLab CI/CD) Scripting (Python, Bash, Shell) Containerization (Docker, Kubernetes/EKS) Security-as-Code and automated compliance tools (e.g., Checkov, TFSec, Open Policy Agent) Preferred Key Skill /Qualifications : Secrets management (HashiCorp Vault, AWS Secrets Manager) SAST/DAST tools (SonarQube, OWASP ZAP, Snyk, Fortify) IAM roles, policies, encryption, KMS, and secure configurations Centralized logging and monitoring (CloudWatch, ELK Stack, Prometheus, Grafana) Excellent documentation, communication, and collaboration skills Essential Experience : • Automating security checks in CI/CD pipelines • Implementing least privilege access control and identity federation Securing infrastructure provisioning and deployments • Conducting threat modeling and vulnerability remediation • Enforcing compliance and audit readiness (ISO, HIPAA, etc.) Working knowledge of secure networking (VPCs, firewalls, VPNs, NACLs, etc.) • Incident response and root cause analysis for infrastructure issues Partnering with infosec teams to roll out security best practices Supporting development teams to adopt security-by-design Competencies • Strong analytical, problem-solving, and debugging skills Security-first mindset across DevOps practices Effective communicator and team collaborator Continuous learning and proactive approach Decision Making Choice of security tools and DevSecOps frameworks Cloud architecture decisions aligned with compliance Key Roles/Responsibilities: • Build and maintain AWS cloud environments with infrastructure as code • Integrate security controls into CI/CD pipelines and DevOps workflows • Automate security scans, testing, and compliance validation • Support secure deployment of applications in containers and serverless setups • Implement cloud-native logging, monitoring, and alerting systems • Manage secrets, certificates, and access securely • Work closely with development, infosec, and operations teams to enforce DevSecOps best practices • Document all configurations, procedures, and known issues • Conduct internal training on DevOps, secure coding and best security practices • Respond to security incidents and participate in audits and reviews • Ensure adherence to SLAs, compliance mandates, and performance KPIs

Cloud Security Lead/Architect(L3) Experience architecting security in cloud platforms like AWS, Azure. Experience creating High Level Designing (HLD) - Low-level Designing (LLD), reviewing the technical requirement document (TRD) for cloud security. Define data security policies through AIP,DLP,Etc Thereat hunting experiences with XRD,EDR,SIEM tools. Experience integrating cloud components with SIEM Planning, implementing, designing and reviewing security policies and other compliances. Experience leading SecOps teams. Guide the team on appropriate prioritization of qualified incidents, Notification through standard communication channel and opening of corresponding incident tickets on Ticketing platform Provide subject matter expertise on information security architecture and systems engineering to other IT and business teams Leading IR, Escalations towards closure. Responsible for automating security controls, data and processes to provide improved metrics and operational support Mandatory certifications on Azure,AWS platforms,CCSP,etc. Secondary skillset in Google cloud is Preferred.