2693 Information Security Jobs - Page 45

The MTF team is looking for a Software Development Engineer in Test II to drive our customer experience strategy forward by consistently innovating and problem-solving. The ideal candidate is passionate about the customer experience journey, highly motivated, intellectually curious, analytical, and possesses an quality driven mindset. Role In this position , You will: Primarily work as a manual functional tester while proactively identifying opportunities for automation and contributing to their implementation. Translates complex system requirements and specs into test requirements and testing methods. Participates in requirements review and testing activities; monitors resolutions and retains documentation Follow the QA standards, processes, tools and methodologies; partners with other functions to gather the testing requirements Be a vital part of scrum team and participate in requirements review/story elaborations and testing activities to deliver high quality products Translate high-level business requirements into test scenarios to cover the Integration flows and customer journeys Work with software developers and domain experts in designing, performing, and improving verification tests Identify automation need and develop test scripts Work collaboratively and effectively in a very fast paced environment. Identify early defects to improve quality of the products Follow the SDLC and STLC process with quality management and Agile tools like ALM Proactively monitor customer insights and production issues to seek quality feedback and improve processes to enhance quality of the product/capability. Play a crucial part in helping drive Quality to help build and ship better products. All About You Working knowledge on Card Payment systems. [Must] Working knowledge of payment simulation tools such as T3/similar or and ISO payment protocols (8583) & (20022) (must) [Must] Understanding on Unix Commands, SQL Experience on Tandem HP non stop, Mainframe will be added advantage Understanding of any programming language. [Must] Knowledge of software testing life cycle [Test planning, Test design and execution, Defect Management, Test Reporting] [Must] Hands on experience on Functional, Regression, System, UAT Testing[Must] Any experience with TDD and/or BDD will be an added advantage Experience in automation testing using any of the tool like JBehave, TestNG, SOAP UI, Appium, Selenium, mobile automation tools will be added advantage. Excellent defect finding, debugging, root cause analysis capabilities Excellent communication skill Experience of testing solutions for large scale deployments including large enterprises or service providers, banking or payment solutions. Experience of working in payments application Domain. Hands on experience of working with tools like Confluence, JIRA, and Rally. Good at test strategy analysis systematically and delivery focused Strong organizational and problem-solving skills with great attention to detail, critical thinking, solid communication skills. Ability to be flexible, accountable, reliable and industrious. Ability to manage multiple priority efforts in parallel and ensure Quality Assurance standards are followed. High-energy, detail-oriented and proactive with the ability to function under pressure in an independent environment Strong oral and written communication skills Bachelor s Degree in Computer Science or related field

Our Purpose Title and Summary Senior Accountant - CA/CPA/CA Inter, Intercompany Accounting Job Description Summary Overview: Are you motivated to work in a team that provides global services? Do you like to simplify, standardize, and transform existing processes? Are you passionate about working within a great team? If so, we have an exciting opportunity in our global Intercompany team. Role: Responsible for execution of intercompany processes, including intercompany settlement, global reconciliation, and monthly reporting. Responsible for execution of transfer pricing and service fee accounting Cross-functional communications (w/ Tax, Treasury, Controllership) to help influence and determine settlement method and hold teams accountable. Maintain service level agreements (SLA s), performance targets, and measure performance Partner with regional teams and financial systems for implementation of local requirements and reporting needs Seek automation and efficiency improvements in all processes and measure progress Provide guidance and support to the regions and business units Perform and/or review account reconciliations Support SOX control compliance Contribute to the special projects as the need arises Other duties as required All About You: Education/Certification CA/CPA/CA-Inter, preferred Knowledge/Experience/Skills Excellent technical knowledge of US GAAP and current accounting concepts Experience in intercompany processing and accounting preferred Experience identifying and implementing process improvement activities Mastery and comfort navigating financial systems and subledgers Progressive accounting experience Previous work in a large global environment Strong analytical and problem-solving skills Strong verbal and written communication skills Strong customer service and business acumen Strong sense of urgency and ability to prioritize under tight deadlines

Accountable for designing, planning and coordinating the sourcing efforts; ensure the talent acquisition programs are scalable to support local, regional and global activities Monitor progress against the goals for time-to-fill, cost per hire, diverse candidate slates and talent pipelines for the region Develop diverse and ready to hire pipelines of candidates as designated Develop market intelligence and work on key strategic projects at regional and/or global scale Own the talent - hunt, engage, farm, bring it to the business and add them to the workforce Develops sourcing strategies through detailed market research and data mining, using resources such as LinkedIn or social media pertaining to prospective candidates Executes marketing and branding talent acquisition strategies (e.g. timed social media postings, segmentation driven visuals), and collaborates with Communications to achieve designated objectives Coordinate phases of the talent acquisition process for assigned talent pipeline and evaluates team recommendations of candidates Follow talent acquisition specific processes and systems All About You: Strong background in Talent Acquisition in managing high volume recruitment efforts preferably from Fintech company Strong people management skills, should have worked in E2E & sourcing led recruiting model Ability to work as an individual contributor with the help of sourcing and interview coordinating team Extensive experience in building sourcing strategies including direct sourcing, agency usage, etc Experience managing high volume recruiting processes Experience managing candidate life cycle through an applicant tracking system, preferably Workday In-depth understanding of technology landscape and hiring trends in India Strong background in IT hiring, preferably in Java and related technologies Experience implementing talent acquisition programs/processes including candidate screening, assessment and selection in a fast-paced, high volume and matrixed environment Track record delivering hiring results that meet business needs and expectations Develop recruitment sourcing strategy including direct sourcing, agency usage, campus programs, etc. Manage vendor relationships to support high volume recruiting efforts Build partnerships with the leadership team to identify important talent needs and develop creative strategies to attract and assess talent Ensure accurate records and reporting concerning all phases of the recruitment process

Our Purpose Title and Summary Director Platform Engineering Job Title: Director Platform Engineering - Databases Location: Pune Job Type: Full-time About the Role: We are seeking a highly skilled and experienced Director of Database Engineering to lead our database team. This role requires a blend of technical expertise and strong people management skills. The ideal candidate will be responsible for overseeing the design, implementation, and maintenance of our database systems, managing stakeholders, cost, quality, compliances while also managing and mentoring a team of database engineers. Key Responsibilities: Technical Responsibilities: Lead the design, development, and optimization of database architectures to ensure high performance, scalability, and reliability. Oversee the implementation of database solutions, including data modeling, schema design, and query optimization. Ensure the security and integrity of database systems through best practices and compliance with industry standards. Collaborate with software development teams to integrate database solutions into applications and services. Monitor and troubleshoot database performance issues, providing timely resolutions and improvements. Stay updated with the latest database technologies and trends, recommending and implementing innovative solutions. Manage scale and capacity keeping operational state healthy People Managerial Responsibilities: Manage and mentor a team of database engineers, providing guidance, support, and professional development opportunities. Foster a collaborative and inclusive team environment, encouraging open communication and knowledge sharing. Set clear goals and expectations for the team, conducting regular performance evaluations and providing constructive feedback. Develop and implement training programs to enhance the technical skills and knowledge of the team. Coordinate with other departments and stakeholders to ensure alignment and effective communication on database-related projects. Lead recruitment efforts to attract and retain top talent in the field of database engineering. Strategy Responsibilities: Define strategy for team incorporating inputs from application, infrastructure, security, regions and markets and define yearly sustained goals Drive group towards achieving goals and identify bottlenecks Articulate strategic vision to wider stakeholders Develop talent plan utilizing upskilling and cross skilling methodologies Develop strong partnership with stakeholder ecosystem and cocreate roadmaps Build new while sustaining the current infrastructure Qualifications: Bachelor s or master s degree in computer science, Information Technology, or a related field. Proven experience in database engineering, with a strong background in SQL, NoSQL, and cloud-based database solutions. Skilled in Postgres or Cassandra with nice to have skills in Oracle and Redis Demonstrated leadership and people management skills, with experience in managing and mentoring technical teams. Excellent problem-solving and analytical skills, with the ability to troubleshoot complex database issues. Strong communication and interpersonal skills, with the ability to collaborate effectively with cross-functional teams. Knowledge of industry best practices and emerging trends in database technologies. .

Our Purpose Title and Summary Senior Analyst, Digital Marketing Compliance Overview: Mastercard is seeking a Senior Analyst to join our Global Business Solutions team. This individual will partner with Mastercard s Global Digital Marketing organization to ensure our digital presence is compliant with global privacy regulations to eliminate risk to our brand reputation, and/or financial impacts. The qualified candidate will be a member of a highly visible team working closely with key internal customers to support privacy regulatory and compliance of Mastercard s websites & campaign landing pages. Success in this role requires the ability to work cross-functionally with other key functions such as global and regional marketing teams, Data Privacy & Strategy, and Risk Management, among others. Role: Day to day monitoring (including auditing) of our 200+ sites for compliance issues. Identifying, documenting, and notifying site owners on instances the team is out of compliance. Ensure that integrity and compliance for site cookies is maintained along with site developer updates. Liaise with privacy teams and business/site owners to remediate the websites which are detected with un-approved cookies. Identify, investigate, and manage potential risks or issues through resolution. Initiate, build, and maintain strong relationships with internal partners and external customers to identify and measure potential risk to Mastercard business. Identify, participate in, or manage process improvement initiatives. Perform routine analysis over team metrics and data for use in performance reporting and business improvement initiatives. Review stakeholder feedback to evaluate and implement process improvements. All About You: Strong analytical skills with the ability to collect, organize, and disseminate significant amounts of information. Understanding of HTML framework and cookies. Experience with marketing automation software and Intelligence Platform technology - i.e., OneTrust, ServiceNow, MetricStream, etc. Experience presenting data findings in a readable and insight driven format, building support decks or dashboards. Demonstrated ability to multi-task and prioritize multiple requests concurrently, while meeting deadlines. Strong problem-solving skills, attention to detail, and accuracy. Experience working across multiple levels, functions, and regions. Ability to clearly communicate complex information to effectively deliver messages, both verbally and in writing. Self-motivated, and ability to operate with a sense of urgency.

Our Purpose Title and Summary Director, Software Engineering Overview Payment Resiliency develops customer-facing products designed to prevent disruption of payments and ensure uninterrupted commerce for Mastercard cardholders and business partners. A member of the Security Solutions Organization, Payment Resiliency empowers customers with self-service tools to manage on-behalf transaction processing, transaction blocking, and reporting. As Director of Software Engineering, you will play a critical role in the coordination and development of new functionality within the product portfolio. Role Formally lead multiple engineering teams to build, enhance, and support our products Work with business owners while ideating, developing and delivering new services Continuously build a strong network across the company for collaboration on technical and business solutions Recruit and hire the right talent, always bringing in the best individuals available for the role Provide and facilitate timely feedback, coaching in the moment, and mentoring for staff at all levels Emulate and drive Mastercard Way behaviors through their behavior, recognitions, coaching, and employee engagement Provide strategic thinking and leadership related to a wide range of applications and systems, or software-development methodologies Benchmark and drive engineering productivity, quality, and technology policy compliance in the areas of ownership Proactively share and seek knowledge within Guilds/Programs to drive reuse of practices and enhance productivity All About You Substantial IT experience with successful track record in managing a development organization with demonstrated thought-leadership and cross-aisle influence Progressively grown career with proven design and development experiences in modern programming languages, secure coding standards, and vulnerability management Experience with best practices and engineering usage of AI assisted code development leveraging tooling such as Copilot and CodeWhisperer Superior knowledge of automation test development, test suite management, and quality gating to ensure quality code and releases Refined skills in building applications using open frameworks to achieve reuse and reduce development times such as Spring Boot, Steeltoe, React, and DXP Possesses ability to document and coach team on the development practices and coding guidelines such as branching, peer reviews, library use, logging, scanning rules, test-driven development, and error handling Understands and elaborates technical debt and operational issues to drive prioritization discussions with stakeholders to improve the run experience Understands system architecture to plan for platform and infrastructure capacity (database, compute, network, storage) and drives the dependency prioritization to reduce the delivery lead time Understands customer journeys and ensure good customer experience by continuously reducing mean time to mitigate for incidents and ensuring high availability with 99.95% as a starting point Can define, organize, and report on test runs for major, minor, and hotfix releases including unit, component level, system level, customer journeys, past customer issues, and regulatory controls

Our Purpose Title and Summary Executive Assistant Overview: Mastercard is looking for an Executive Assistant to support an Executive Vice President and SVP in their Pune Office. A high energy, creative, tech savvy professional with strong attention to detail, integrity and trust is desired. The role includes performing general administrative duties such as scheduling of meetings, complex travel arrangements, expense reporting, calendar management, and maintaining department records, among other core responsibilities. The incumbent will also work on projects supporting the team and contribute to the overall performance of the function. You will be working in Global Customer Delivery and Care (GCDC),a team that brings together Global Customer Care (GCC), Global Customer Delivery (GCD) as well as Operation Triage & Collaboration (OTC) to form one comprehensive team, dedicated to ensuring our customer s end-2-end experience with Mastercard Technology is smooth, seamless and industry leading. You will need to be an expert multi-tasker and able to work at a fast pace in a thriving and friendly office. Role: Responsible for all administrative and operational activities, which includes, but is not limited to scheduling complex in-person and virtual meetings and conference calls across time zones, global travel arrangements confirming visa and other travel requirements, project management support, expense reporting, departmental record keeping, and managing supplies Developing and/or preparing correspondence; reports, presentations or other key communication materials for the team; may research special topics as needed Manages internal and external inquiries by screening calls, answering questions, and redirecting to appropriate personnel Ad-hoc support for Direct Reports including duties such as tracking team work flow and building and managing reporting systems for such tasks. Coordinates logistics for more complex meetings/activities, i.e., internal and external meetings including various business events and handling ad hoc projects where assigned. Organize team events and conferences, coordinate agendas, collect and collate required documentation, provide IT support as and when required, source/book/monitor offsite venues. Uses discretion and care on a regular basis when working with sensitive/confidential data pertaining to the department or Mastercard Works as a team with other Executive Assistants in Mastercard to ensure alignment and operational coverage, serving as an administrative liaison with others inside and outside of the company Organize and oversee special projects, ensuring timely completion and attention to detail. Maintain department records and documents, ensuring accurate and up-to-date information. Implement organizational systems and process improvements to enhance overall efficiency. Provide basic IT support to the Manager and team in London, maintain active relationship with the Facilities team for any issues with office equipment and generic office upkeep All about you: Executive administrative experience in a global corporate environment interfacing with senior and executive level management Impeccable attention to detail, with the ability to catch and resolve errors proactively. Must be able to self-direct and work effectively with others at all levels of an organization with team members, senior leaders, executive management and clients Demonstrated ability to work independently, making informed decisions and prioritizing tasks effectively. Strong communication and interpersonal skills to collaborate with colleagues and stakeholders at all levels. Ability to maintain confidentiality and handle sensitive information with professionalism. Proficient in using office software and tools to streamline workflow. Proficient knowledge of the MS Office Suite, including Excel spreadsheets and functions, Word and PowerPoint skills. Proficient in Outlook. A motivated and detail-oriented professional looking to contribute to the Mastercard mission and support the team objectives. A team-player who thrives in a fast-paced environment and can demonstrate the ability to manage several tasks simultaneously while maintaining high attention to detail. A critical thinker willing to explore and develop process improvements to streamline team operations, organization, and increase bandwidth and efficiency. Ability to function as a team member in a time-compressed, highly dynamic and ambiguous environment to ensure deliverables are achieved.

Our Purpose Title and Summary Software Engineer II Who is Mastercard? Mastercard is a global technology company in the payments industry. Our mission is to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart, and accessible. Using secure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments, and businesses realize their greatest potential. Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our company. With connections across more than 210 countries and territories, we are building a sustainable world that unlocks priceless possibilities for all. The Core Authentication team is responsible for MasterCard s safety and security related product development efforts to protect the integrity of the electronic payment system as well as ensure payments are convenient yet secure. The products are primarily focused on Cyber Security, authentication, fraud prevention, risk mitigation and dispute resolution across all payment channels as well as all stakeholders - issuers, acquirers, merchants, processors, and consumers. The key objectives of the solutions are to prove identity, reduce abandonments, reduce fraud, increase approval rates, and secure the payments ecosystem. We are looking for a Software Engineer II to support the Identity Check application. Role . Develop a basic understanding of end to end technical architecture and dependent systems. . Estimate and own delivery tasks (design, dev, test, deployment, configuration, documentation) to meet the business requirements. . Develop high quality, secure, scalable software solutions based on technical requirements specifications and design artifacts within expected time and budget. . Support collection and reporting of project and software metrics. . Identify opportunities to improve an overall process and eliminate waste. . Mentor and guide new and less experienced team members. . Collaborate with cross-teams to get required support/inputs. All About you . Bachelor of Engineering / Technology in Information Technology / Computer Science or Master s degree in related discipline. . 3 to 6 years of experience in the software engineering field. . Experience in Java/J2EE technologies with Spring boot framework, JUnit, Hibernate, Messaging, Web Services, REST APIs. . Basic knowledge of micro services architecture & development is preferred. . Experience in web stack such as JavaScript, CSS, JSON/XML, Angular JS or similar framework, Web & Application Server. . Working knowledge of SQL, PL SQL, Oracle/Postgres, & Redis is required. . Possess skills in test driven and behavior driven development (TDD and BDD) to build just enough code and collaborate on the desired functionality. . Experience in implementing CI/CD build pipelines with tools like Git/BitBucket, Jenkins, Maven, Artifactory, and Chef. . Basic knowledge of cloud based application development is desirable. . Knowledge of payment domain (especially card payments) domain is plus. . Knowledge of IT Security tools, information security principles, and PCI DSS Compliance is plus. . Experience of working in Agile environment like Scrum/Kanban/SAFe would be plus. . Must be high energy & proactive. . Ability to understand new technologies, application appropriate frameworks, and tools. . Ability to accomplish tasks with minimum guidance. . Able to work as a member of matrix based diverse and geographically distributed project team.

Our Purpose Title and Summary Executive Assistant Who is Mastercard? Mastercard is a global technology company in the payments industry. We work to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart and accessible. Using secure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments, and businesses realize their greatest potential. Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our company. With connections across more than 210 countries and territories, we are building a sustainable world that unlocks priceless possibilities for all. Overview: We are seeking a highly organized and proactive Executive Assistant to provide comprehensive administrative and operational support to a fast-paced executive and their leadership team. This role is crucial in ensuring smooth day-to-day department operations, enabling our leaders to focus on strategic initiatives. The ideal candidate will be a meticulous planner, an exceptional communicator, and a trusted partner who can anticipate needs, manage complex schedules, and maintain the highest standards of professionalism and confidentiality. The Role: * Efficiently manage complex calendars for the assigned executive, including scheduling internal and external meetings, appointments, and conferences across multiple time zones. Anticipate scheduling conflicts and proactively propose solutions, prioritizing commitments effectively. * Prepare and distribute pre-meeting materials and agendas, ensuring executives are well-prepared for all engagements. * Makes travel arrangements, both domestic and international, for senior staff including booking flights, cars and hotels. Processes visa applications when necessary. * Plans and coordinates events, on or off site, with both internal and external participants. Coordinates with guest speakers, catering, venue booking and other event specific needs. * Manages expense reporting in-line with company Travel and Entertainment policy. * Creates and edits presentations, and other communications. * Researches complex issues on behalf of the executive. * Manages adhoc administrative programs for the department and utilizes spreadsheets or databases to monitor departmental information and generate reports. * Supports the onboarding of new team members. * Serve as administrative liaison with others within and outside the company. * May monitor and coordinate work of other employees or temporaries. All About You and What you need to bring: * Minimum of 5-7 years of progressive experience as an Executive Assistant, preferably supporting senior-level executives in a fast-paced, complex corporate environment. * Proven ability to manage multiple priorities, strong attention to detail, and a high degree of accuracy. * Outstanding written and verbal communication skills, with the ability to interact professionally and articulately with all levels of staff and external contacts. * Expert-level proficiency with Microsoft Office Suite (Outlook, Word, Excel, PowerPoint) and experience with various collaboration tools (e.g., Microsoft Teams, Zoom, SharePoint), and expense reporting. * A true people person who fosters positive relationships and collaborates effectively with internal teams and external partners. * Demonstrates a collaborative spirit, actively contributes to team goals, and supports colleagues to achieve shared success. * Demonstrated ability to handle sensitive information with the utmost discretion and maintain strict confidentiality. * A self-starter who anticipates needs, identifies potential issues, and proposes solutions without constant supervision.

Our Purpose Title and Summary Director, Modelling & Insights Director, Data Modelling and Insights Who is Mastercard? Mastercard is a global technology company in the payments industry. Our mission is to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart, and accessible. Using secure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments, and businesses realize their greatest potential. Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our company. With connections across more than 210 countries and territories, we are building a sustainable world that unlocks priceless possibilities for all. Overview The Global Business Solutions Center team is looking for a hands-on data leader to partner with the Product & Process Transformation team to drive deep analytical insights and build robust data models that improve product execution and strategic decision-making. As Director of Data Modelling and Insights, you will apply advanced Excel, Power Query, and Power BI skills to structure, clean, and transform data into meaningful dashboards, forecasts, and performance measures. The ideal candidate brings a high degree of rigor and creativity, capable of bridging operational questions with advanced modeling techniques such as Bayesian forecasting, crosstab analysis, and time-series insights. You will partner closely with product teams to uncover friction points, identify patterns, and shape performance targets that are tied to business outcomes. Role In this position, you will: Build and maintain robust data models in Power BI to support strategic decision-making across product and process initiatives. Use Power Query to extract, transform, and clean large datasets from multiple systems. Design and implement DAX measures to calculate metrics, track performance, and surface key business insights. Lead analytical deep dives into product velocity, pipeline friction, and development timelines using timestamp analysis. Develop Bayesian forecasting models to predict outcomes such as launch timing, completion risk, or capacity gaps. Construct crosstab analyses and experimental frameworks to assess impact of interventions or process changes. Define measurement frameworks and partner with teams to set meaningful targets that drive accountability. Collaborate cross-functionally with product managers, engineers, and finance leads to embed data thinking into everyday decisions. All About You The ideal candidate for this position: Bachelor s or Master s degree in Data Science, Engineering, Mathematics, Economics, or related field. 8+ years of experience in data analytics, business intelligence, or applied statistical modeling. Expert-level experience with Microsoft Excel (including Power Query and advanced functions). Deep proficiency in Power BI, including data modeling, DAX, and building interactive dashboards. Demonstrated experience applying statistical and probabilistic methods (e.g., Bayesian modeling) in a business context. Strong communication skills with the ability to translate analytical findings into actionable recommendations. Analytical problem solver with a passion for exploring patterns and making data-driven decisions. Highly organized systems thinker who can distill complexity into structured models and clear insights. Proactive collaborator who thrives in cross-functional environments and builds trust through accuracy and delivery. Corporate Security Responsibility Every person working for, or on behalf of, Mastercard is responsible for information security. All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and therefore, it is expected that the successful candidate for this position must: Abide by Mastercard s security policies and practices; Ensure the confidentiality and integrity of the information being accessed; Report any suspected information security violation or breach, and Complete all periodic mandatory security trainings in accordance with Mastercard s guidelines.

Join our Team About this opportunity: We are now looking for a Senior Security Engineer professional for our Managed Security team. This job role has accountability for researching, designing, engineering, implementing, and supporting security solutions in partnership with the respective stakeholders within Ericsson and / or customer organization and / or 3rd Party Providers. The professional will work alongside a highly skilled, diverse team, making sure that the information assets, that we are responsible to protect, are secured. What you will do: Design, implement, manage, monitor, and troubleshoot cybersecurity defenses, including configuration management, network security, systems security, and monitoring systems / tools. Participate in planning and audit scope development as well as project execution as a critical team member on complex technology related assessments. Play an active role in the design and execution of infrastructure initiatives to ensure an evolving adherence to industry best practices for information security. Lead the execution of the assessment of specific technical areas of a project, supervising other team members and providing coaching where needed. Perform Security Incident Management, including but not limited to: supporting SIEM tools, integrating logs into the tool, creating and modifying rules, investigating and resolving alerts, automating tasks. Research new and emerging threats to gain insight into the evolving threat landscape, and share knowledge with the team. Promote new ideas and new ways of executing projects and internal infrastructure enhancements. Innovate and automate repetitive activities and corrective actions, including broader automation initiatives. Analyzes and recommends security controls and procedures in business processes related to use of information systems and assets, and monitors for compliance Responds to information security incidents, including investigation of countermeasures to and recovery from computer-based attacks, unauthorized access, and policy breaches; interacts and coordinates with third-party incident responders, including law enforcement The skills you bring: Strong knowledge of information security Strong knowledge of SIEM tools (such as McAfee ESM, QRadar, ArcSight, Splunk, etc.), scanning tools (Nessus, Qualys, IBM AppScan, etc.) and PAM tools (BeyondTrust, CyberArk, etc.) Strong knowledge of both Linux-based and MS Windows-based system platforms with a strong technical understanding and aptitude for analytical problem-solving Strong understanding of enterprise, network, system and application level security issues Strong understanding of enterprise computing environments, distributed applications, and a strong understanding of TCP/IP networks along with available security controls (technical & process controls) for respective layers Good understanding of the system hardening processes, tools, guidelines and benchmarks Fundamental understanding of encryption technologies Participate in the out-of-hours on call rotation, providing technical support to the business for incidents Strong knowledge sharing and collaboration skills Deliver results and meet customer expectations Excellent communication skills; English is a must Key Qualifications: Education: BE/ B.Tech (Telecommunication/ Computer Science) Minimum years of relevant experience: 8 to 15 years experience with at least 8 years in IT and 7 years in Security ITIL certification, CCSP, OSCP, Security +, CISSP or similar will be an advantage Basic knowledge of telecommunications networks will be an added advantage Why join Ericsson? What happens once you apply? Primary country and city: India (IN) || Bangalore Req ID: 768176

Join our Team About this opportunity: We are now looking for a Senior Security Engineer professional for our Managed Security team. This job role has accountability for researching, designing, engineering, implementing, and supporting security solutions in partnership with the respective stakeholders within Ericsson and / or customer organization and / or 3rd Party Providers. The professional will work alongside a highly skilled, diverse team, making sure that the information assets, that we are responsible to protect, are secured. What you will do: Design, implement, manage, monitor, and troubleshoot cybersecurity defenses, including configuration management, network security, systems security, and monitoring systems / tools. Participate in planning and audit scope development as well as project execution as a critical team member on complex technology related assessments. Play an active role in the design and execution of infrastructure initiatives to ensure an evolving adherence to industry best practices for information security. Lead the execution of the assessment of specific technical areas of a project, supervising other team members and providing coaching where needed. Perform Security Incident Management, including but not limited to: supporting SIEM tools, integrating logs into the tool, creating and modifying rules, investigating and resolving alerts, automating tasks. Research new and emerging threats to gain insight into the evolving threat landscape, and share knowledge with the team. Promote new ideas and new ways of executing projects and internal infrastructure enhancements. Innovate and automate repetitive activities and corrective actions, including broader automation initiatives. Analyzes and recommends security controls and procedures in business processes related to use of information systems and assets, and monitors for compliance Responds to information security incidents, including investigation of countermeasures to and recovery from computer-based attacks, unauthorized access, and policy breaches; interacts and coordinates with third-party incident responders, including law enforcement The skills you bring: Strong knowledge of information security Strong knowledge of SIEM tools (such as McAfee ESM, QRadar, ArcSight, Splunk, etc.), scanning tools (Nessus, Qualys, IBM AppScan, etc.) and PAM tools (BeyondTrust, CyberArk, etc.) Strong knowledge of both Linux-based and MS Windows-based system platforms with a strong technical understanding and aptitude for analytical problem-solving Strong understanding of enterprise, network, system and application level security issues Strong understanding of enterprise computing environments, distributed applications, and a strong understanding of TCP/IP networks along with available security controls (technical & process controls) for respective layers Good understanding of the system hardening processes, tools, guidelines and benchmarks Fundamental understanding of encryption technologies Participate in the out-of-hours on call rotation, providing technical support to the business for incidents Strong knowledge sharing and collaboration skills Deliver results and meet customer expectations Excellent communication skills; English is a must Key Qualifications: Education: BE/ B.Tech (Telecommunication/ Computer Science) Minimum years of relevant experience: 8 to 15 years experience with at least 8 years in IT and 7 years in Security ITIL certification, CCSP, OSCP, Security +, CISSP or similar will be an advantage Basic knowledge of telecommunications networks will be an added advantage Why join Ericsson? What happens once you apply? Primary country and city: India (IN) || Noida Req ID: 768174

Hello! Youve landed on this page, which means youre interested in working with us. Lets take a sneak peek at what its like to work at Innovaccer. Engineering at Innovaccer With every line of code, we accelerate our customers success, turning complex challenges into innovative solutions. Collaboratively, we transform each data point we gather into valuable insights for our customers. Join us and be part of a team thats turning dreams of better healthcare into reality, one line of code at a time. Together, we re shaping the future and making a meaningful impact on the world. About The Role We at Innovaccer are looking for a Security Engineer-I who will be a part of our eyes on the glass team i.e. individual would be responsible to perform real time monitoring and analysis of the security events. This role will encompass the use of a broad range of security domains (Event Monitoring, Endpoint Security, Incident Management). This role is not a typical monitoring environment, however, would be a great opportunity to learn and grow as you would be exposed to multiple security domains at single time. A Day in the Life This role requires being available on call during weekends and off hours. Perform monitoring and incident response of cyber security events as part of a highly available Security Operation Center (SecOps) Familiarization with multi-cloud setup i.e. AWS, Azure, GCP Ability to read and interpret security related logs from disparate sources Perform real-time monitoring, vulnerability management, security incident handling, investigation, analysis, reporting and escalations of security events generated through various security solutions deployed like SIEM, IDS/IPS, FIM etc. Administration and Contribution to the configuration and maintenance of security solutions such as XDR, Data Leak Prevention, Host Intrusion Detection Systems (HIDS), Network Intrusion Detection Systems (NIDS), and Security Information and Event Management (SIEM). Integration of devices like Linux and Windows machines, Antivirus, Firewalls, IDS/IPS, Web Servers etc. Triage, Investigate, document, and report on information security events. Develop and follow detailed operational processes, procedures and playbooks to appropriately analyze, escalate and assist in the remediation of information security related incidents Understanding of TCP/IP, IPSEC, Syslog and other network protocols Work closely with DevOps, SRE, Engineering, Product departments to remediate security related issues and incidents Good to have Scripting & Automation skills CEH, AWS Cloud Practitioner, AZ-900 or similar certification is desirable What You Need Bachelor s degree in Information Technology, Computer Science Engineering preferred Minimum of 2 to 5 years of prior experience as a Security Analyst Prior experience with core security technologies (SIEM, Firewalls, IDS/IPS, AV, DLP etc.). Understanding of NIST & CIS Benchmarks, OWASP Top 10 & SANS Top 25 Strong understanding of TCP/IP Protocols, network analysis, security applications and devices, vulnerability management, and standard Internet protocols and applications. Experience in one or more security information and event monitoring tools (SIEM). Familiar with AWS Security Hub, Azure Security Center, AWS S3, AWS Inspector, Azure Security Center, EKS, ECS, AKS, etc. Familiar with Amazon AWS/Microsoft Azure services as an IaaS/PaaS containers (Dockers/Kubernetes) Able to work independently, being a team player, ability to work well under pressure Able to multi-task, prioritize, and manage time effectively Collaborates effectively and communicates efficiently Proficient in open source tools & technologies Work in a 24x7 environment and willing to work in all shifts. Ready to take up more responsibilities along-with existing role Capable to understand tools & their backend logic and be open to work with open source solutions We offer competitive benefits to set you up for success in and outside of work. Here s What We Offer Generous Leave Benefits: Enjoy generous leave benefits of up to 40 days. Parental Leave: Experience one of the industrys best parental leave policies to spend time with your new addition. Sabbatical Leave Policy: Want to focus on skill development, pursue an academic career, or just take a break? Weve got you covered. Health Insurance: We offer health benefits and insurance to you and your family for medically related expenses related to illness, disease, or injury. Pet-Friendly Office*: Spend more time with your treasured friends, even when youre away from home. Bring your furry friends with you to the office and let your colleagues become their friends, too. *Noida office only Creche Facility for children*: Say goodbye to worries and hello to a convenient and reliable creche facility that puts your childs well-being first. *India offices

Regional Responsibilities: The primary objective of the Security & Loss Prevention Coordinator is to ensure the loss prevention aspects and save guard the customer experience as per company Policies. The role is cross-functional and requires deep collaboration and influencing ability with stakeholders. The role would also entail to involve regional level engagement and involvement in ensuring operational excellence along with Ops level execution and close coordination with cross functional teams. Encourage and promote Loss Prevention within the workforce exercising integrity and ethical methods. The role would also necessitate to assist the reporting manager, in day to day activities, planning, sourcing and executing the process and procedure. The Security coordinator will work together to ensure and maintain high quality and timely support to the Operations of the organization. Process Improvement & Loss Prevention Program management: Process review & necessary Improvisation. Cross functional collaboration with Ops and cross functional teams. Weekly review the loss level matrices. Effectively partner with operations and support functions in evaluating current and future business processes and initiatives. Serve as a member of a coordinated team of Loss Prevention executives in relentlessly pursuing improvements to company-wide loss prevention program efforts. Process Review & Necessary Improvements. Audits: Keeping the plans and SOPs updated, Periodical check of documentation. Perform interior and exterior Loss Prevention compliance related to 3P store business, being alert to and responding to any security of Loss Prevention issues noted. Process review and necessary Improvements. Loss Prevention Analysis: Quick Completion Investigation and submission of reports. Liaise and cooperate with law enforcement and industry bodies to support Amazon interests. Close follow up on various loss buckets and deriving mechanism to control the shrink. Effectively address safety and security incidents including potential and actual work place violence incidents as per policy as well as conducting testing of the incident response plans. Enhance, track, and report on metrics, which are key performance indicators. Coordinate with various support teams such as the Worldwide Operations Security Team, IT Security as and when needed. Weekly call with respective Stakeholders/Ops to inform weekly planning and plan of what work completed and what are pending. Assisting with investigations of internal and external theft or fraud and conducting interviews. Ensuring that you understand, align performance and actions with, and can clearly articulate the vision and values of the organization and their department. Process checks: Enhancing, tracking, and reporting on key performance-indicating metrics, allowing for performance improvements so that the desired outcomes are achieved to plan and in a timely manner. Ensure random process check related audit are timely carried out on a daily/weekly basis and ensue the tight control on processes. Reports: Daily, Weekly and Monthly reports. Reports and follow ups of suspected movements/Process violation related to 3P store business. University degree level or equivalent through experience and professional certification. A minimum of 7-10 years in Security and Loss prevention role, law enforcement or security-related profession. Extensive and up to date knowledge of Shrink management and Data Analysis. Experience in managing or coordinating security investigations of complex nature. Knowledge of information security processes and systems. Experience in security auditing Loss Prevention Investigation/Security related Certifications. Preferably from Military/Law enforcement or Studies related to criminology or forensics background. Emergency Response / Crisis Management Training & Development. Auditing and security investigations

Total Experience: Experience 5 8 years Job Skills: Keep track of APTs groups (advanced persistent threats). Know APT Groups motivation, their tools & techniques, the malware they write, and C&C (command and control center), identify their targets. Threat intelligence analyst must have professional experience in cybersecurity. A Threat Researcher is responsible for identifying and analyzing potential threats to an organizations network and systems. They work to understand the tactics, techniques, and procedures (TTPs) used by threat actors to compromise systems and steal sensitive data. Threat Researchers are also responsible for developing and implementing strategies to detect, prevent, and mitigate these threats. Conducting research on emerging threats and Vulnerabilities. Analyzing Threat intelligence data to identify potential threats. Developing and implementing strategies to detect and prevent threats. Collaborating with other cybersecurity professionals to develop and implement security measures. Creating reports and presentations to communicate findings to management and other stakeholders. Ensure all the advisories received from regulatory and strategy partners are analyzed and processed in timely manner. All TI trackers are updated in near real time. Create reports/Dashboard for higher management. Collects data types and sources of information in addition to commonly collecting forms of threat data, i.e., malicious IPs and domains. Information from news and social media sources. Vulnerability data such as personally identifiable information. Performs sorting, filtering, indexing on raw data. Format and structure raw data. Take the result of several tools, data sources and combines those data points on a per-host basis, performing, investigating, and analyzing data. DisseminationDeliver the intelligence to the intended consumers at different levelsStrategic, Tactical, Operational, Technical. Provide Contextual Intel feeds to all the stacks which requires priority attention to protect HDFC assets. Regular training and knowledge sharing with the team. Collaboration with TH and RT and provide threat intel to SOC CD to create use case. There should be no audit points to come from the defined and existing process. Audit requirements should be fulfilled. Efficacy testing for new product as per industry best practice. Timely tracking and follow-ups on all open alerts/advisories. Timely escalation on open issues/tasks. Responding to all intelligence received from our Threat Intel partners and inform seniors or required escalation where required like Bank data leak/breach alerts. Doing in-house threat research from the open sources along with the help of our existing Threat Intel portal.

job requisition idR_288243 Company: MMC Corporate Description: We are seeking a talented individual to join our MMC Corporate team at AMSI. This role will be based in Gurgaon. This is a hybrid role that has a requirement of working at least three days a week in the office. We will count on you to Support daily production impacting incidents and implementation activities. This is an engineering role with responsibilities to provide production support, including be on-call on a rotation basis. Helps to investigate, triage, diagnose and resolve issues, working with clients (primarily internal, occasionally external), other IT departments and suppliers as appropriate; Helps to provide support until tickets are resolved. Assists in troubleshooting activities to resolve issues reported by users, as well as troubleshoot system-triggered alerts and triage issues to the appropriate technology groups. Supports business critical applications; ensures monitoring is in place, identifies and reports on service issues, and formulates proposals for problem resolutions and/or improvements. Ensures all relevant implementation, support, and change management processes are adhered to (i.e. Software Development Lifecycle and Change Management). Ensures appropriate support documentation is completed and maintained. Supports Project Teams ensuring cyber security related projects are implemented successfully and on time with minimal impact to the production environment. Execute and coordinate key strategic initiatives as determined with Global Information Security leadership. Work with cross-functional and cross-geographic teams to perform POCs to test new products, appliances and services working with vendors and tech teams across the company. Provide consultative support to cross-functional teams and application teams for Data Security-related initiatives as needed. Collaborate with internal and external groups to assemble the required information and data necessary to perform data security engineering related activities. Work with cross-functional teams to make them familiar with the Global Information Security -Data Security related policies and standards and address any questions. What you need to have Minimum of 8 years of experience (preferably consulting externally with clients or internally within large organizations). Cyber Security Experience required, minimum 5 years in data security preferred. Experience with security appliances such as Vormetric/Thales, OpenText/SecureData, AWS KMS, Azure KV,OKV preferred. Ideal candidate will have at a minimum bachelor's in computer science degree,. Industry standard certifications such as CISSP preferred. Other acceptable certifications are CompTIA Security+, GSEC, SSCP or similar. Experience with AWS or Azure Cloud is a good to have. AWS or Azure security certifications are preferred. Independent, self-starter able to work at a face pace and under pressure. Strong business acumen, problem solving and analytical mindset. Mastery of Excel and PowerPoint preferred, nice to have presentation skills. Very strong communication, interpersonal skills, and ability to work with application owners and cross functional teams across the company. Very high standards of quality, accuracy and timeliness. This is an engineering role, very strong analytic and problem-solving skills are required. Ability to work in a fast-paced environment and manage competing priorities. Motivated individual and strong team player. Innovative approach and enthusiasm to learn and explore. Have a think out of the box mentality and challenge the status quo. What makes you stand out Industry standard certifications such as CISSP preferred. Other acceptable certifications are CompTIA Security+, GSEC, SSCP or similar. Experience with AWS or Azure Cloud is good to have. AWS or Azure security certifications are preferred. Must be able to quickly and succinctly Engineer and create technical solution documentation. Must be a self-starter, work with limited supervision & be able to work well with others in a globally diverse IT environment. Understanding of cryptography as it relates to application, network, and cloud security.

The Senior Manager of Information Security (External Role Description Application / Product Security Architect) will report to the Chief Information Security Officer. As a leader in the Information Security organization, this role will lead the task of refining, managing and executing strategic product/application security roadmap that is based on industry standard software security frameworks. You will plan, implement and track key initiatives focused on product / application security strategy, metrics, compliance, policy, developer awareness, training and stakeholder engagement. You will work closely with multiple teams that make up Information Security, Product Management, Engineering, Legal, Risk and Compliance to improve product / application security controls and drive impactful change to the team and its members. Responsibilities: Bring a deep background and broad experience in Information Security, Application Security, & Application Development or related business areas. Lead a team of high performing individuals who create remediation plans, perform security reviews, and recommend security solutions to meet current and future needs for HMH products and applications. Drive the development and implementation of product and application standard security review processes that result in effective methods for reducing security risks before product releases. Demonstrate an ability to influence all project and portfolio stakeholders; communicate relevant security information to both executive leaders and individual contributors in an effective manner. Accountable for all aspects of staff management, hiring, coaching, training, performance reviews and recommending pay actions and promotions for the Security Engineering team Provide input into the Information Security strategy to ensure that future security investments are aligned appropriately when considering key priorities such as business requirements, industry threat landscape, and risk appetite of HMH. Collaborate closely with the Architecture teams Demonstrated experience handling the demand/supply of project and program resources and tracking allocation. Track policy exceptions and remediation dates through active engagement with development teams and operations teams. Partner with Audit teams to periodically audit controls and secure coding practices being followed by development teams. Staying abreast of latest cyber security threats both internal and external Oversee projects, program delivery, daily monitoring, response; review of cloud infrastructure, physical infrastructure, and the full life cycle of alerts through incident response; and the threat landscape to ensure ongoing and continued maturity of the organization's security controls in addition to service support Drive operational efficiency and excellence leveraging tools, process and automation with appropriate and transparency visibility and metrics that can meet SLAs/SLOs Support and implement controls and visibility to meet third party attestations (SOC2, ISO27001, GDPR, SOX) Balance being collaborative, open, and approachable while still being firm on security policies and in facilitating progress and compromise What you should have: 5 to 6+ years hands-on experience in application security utilizing SAST, DAST, IAST, RASP and WAF. 5+ years of application engineering, architecture or development management experience Proficient analyzing ambiguous problems, compelling communicator with the ability to receive and analyze information, translating security risk to business risk to driving actionable decisions across multiple levels and departments Experience in leading application security remediation work, leading the mitigation initiative to accommodate the developer community priority. Proficient experience with common web application attack vectors and related mitigation strategies that translate to controls within the organization You are highly organized. With many people doing many things in a fast-moving company, strong organizational skillsboth for yourself and for the teamwill be required

Summary Reporting to the Director of Info Sec and Cyber Operations, the Security Operations Centre (SOC) Analyst will be an integral part of the teams success. As a security operations center (SOC) engineer, you will help build and manage services that detect and automate the mitigation of cybersecurity threats across Waystone infrastructure. You will work with software engineers, DevOps engineers, IT Engineering, internal audit and compliance teams, and other security engineers across multiple teams to protect Waystone. ESSENTIAL DUTIES AND RESPONSIBILITIES Monitor and analyse security alerts from various sources, including AWS, Azure, O365, Okta, Zscaler and SIEM tools, to identify potential security threats. Perform incident detection, analysis, and response for cloud-native environments, utilizing Security Hub (AWS) and Defender for Cloud (Azure). Collaborate with internal teams to address security incidents and ensure timely resolution, including coordination with IT, Security Engineering, and other stakeholders. Develop and refine security monitoring policies, rules, and alerting configurations for enhanced detection capabilities. Conduct investigations into security incidents, identifying root causes and recommending remediation steps. Maintain and optimise DLP solutions for the organisation to prevent unauthorised data exposure. Generate regular reports on security incidents, key metrics, and recommendations for security improvements. Proactively identify security risks and work with various teams to mitigate potential threats. Participate in threat hunting activities to identify advanced threats and vulnerabilities within the cloud and on-premises environments. Provide input into the SOCs continuous improvement processes, including playbook development and toolset enhancement. REQUIREMENTS To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. Experience3+ years of experience in a Security Operations Centrr (SOC) or similar environment. Hands-on experience with AWS, Azure, Zscaler and O365 security tools and technologies. Strong familiarity with cloud native tools, cloud security posture management, and application security (Security Hub, Defender for Cloud). Experience with SIEM platforms (CrowdStrike NG-SIEM or similar) including alert tuning, query development, and integration with cloud environments. Proficient in data loss prevention (DLP) strategies and tools, with the ability to customise and maintain DLP policies. Strong understanding of incident response processes and best practices. Demonstrated ability to conduct thorough investigations and report on complex security incidents. Familiarity with cloud security principles, tools, and techniques, including identity and access management (IAM) and network security. Strong problem-solving skills, attention to detail, and ability to work under pressure in a fast-paced environment. EducationBachelors degree in information security, Computer Science, or related field (or equivalent work experience). CCSP AWS certification Azure Certification

Summary Reporting to the Information Security & Cyber Operations Director, the Zscaler and Security Operations Engineer will be an integral part of the teams success. The role will be responsible for the design, implementation and management of Zscaler ZIA, APA, and Data Protection solutions to meet the Waystone organisations security requirements. The role will require the management of policies, access controls, threat protection, reporting, log management with Waystones SIEM solution. The role also requires assisting and assessing the network security posture (firewalls, Web Application Firewalls etc.) and managing the security toolset, SIEM, Okta, PAM integration. The role requires working as part of the wider technology team to collaborate with cloud, network, infrastructure, service delivery, application and development teams as appropriate, but must be able proactively work alone and make decisions based on company security policies. The role will require clear communication to business stakeholders where applicable. ESSENTIAL DUTIES AND RESPONSIBILITIES To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. Configure and manage Zscaler policies, including access controls, traffic forwarding, and threat protection. Monitor and analyse network traffic and user behaviour to identify and mitigate security risks. Collaborate with IT, security, and networking teams to integrate Zscaler solutions with existing infrastructure. Conduct troubleshooting and performance tuning of Zscaler services to ensure optimal operation. Develop and maintain documentation for ZIA/ZPA configurations, processes, and best practices. Stay up-to-date with Zscaler updates, features, and industry trends to continuously enhance security strategies. Provide training and support to internal teams on Zscaler functionalities and best practices. Monitoring SIEM and other security tools similar to Okta, Delinea where Zscaler integrates. Report on metrics into senior management. REQUIREMENTS Degree in Computer Science, Information Technology, related field. 3-5 years experience with Zscaler ZIA and ZPA solutions. Strong understanding of cloud security principles and best practices Strong understanding of networking concepts (TCP/IP, DNS, VPN) Experience with Identity and Access Management Excellent Problem Solving Skills Strong Communications skills, with the ability to convey complex technical concepts to non-technical stakeholders. Relevant certifications. Experience with SIEM and other security tools. Knowledge of SSO, MFA, and IAM solutions

About The Role Based in Hyderabad, join a global healthcare biopharma company and be part of a 130- year legacy of success backed by ethical integrity, forward momentum, and an inspiring mission to achieve new milestones in global healthcare. Be part of an organisation driven by digital technology and data-backed approaches that support a diversified portfolio of prescription medicines, vaccines, and animal health products. Drive innovation and execution excellence. Be a part of a team with passion for using data, analytics, and insights to drive decision-making, and which creates custom software, allowing us to tackle some of the world's greatest health threats. Our Technology Centers focus on creating a space where teams can come together to deliver business solutions that save and improve lives. An integral part of our companys IT operating model, Tech Centers are globally distributed locations where each IT division has employees to enable our digital transformation journey and drive business outcomes. These locations, in addition to the other sites, are essential to supporting our business and strategy. A focused group of leaders in each Tech Center helps to ensure we can manage and improve each location, from investing in growth, success, and well-being of our people, to making sure colleagues from each IT division feel a sense of belonging to managing critical emergencies. And together, we must leverage the strength of our team to collaborate globally to optimize connections and share best practices across the Tech Centers. Role Overview The IT Risk Analyst is responsible for independently identifying, assessing, and mitigating IT risks. This role requires a deeper understanding of risk management frameworks and methodologies. The IT Risk Analyst will conduct thorough risk assessments, implement risk mitigation strategies, and collaborates with other departments to ensure compliance with company policies and regulatory requirements. You will collaborate closely with business and IT stakeholders, ensuring that risk assessment transaction are comprehensive, timely, and compliant with organizational standards and best practices. What will you do in this role: Identify potential risks across various areas such as financial, operational, strategic, and compliance risks. Conduct risk assessments and analyses to evaluate the likelihood and impact of identified risks. Analyze data and trends to understand the nature and extent of risks. Use quantitative and qualitative methods to measure and prioritize risks. Develop strategies and action plans to mitigate or manage identified risks. Implement risk control measures and monitor their effectiveness. Prepare detailed reports and presentations on risk assessments and mitigation strategies. Communicate findings and recommendations to senior management and stakeholders. Ensure that the organization complies with relevant regulations and industry standards. Conduct audits and reviews to ensure adherence to risk management policies and procedures. Stay up-to-date with industry trends and best practices in risk management. Continuously review and improve risk management processes and frameworks. What should you have: Bachelors degree in Information Technology, Computer Science or any Technology stream. 3+ years of hands-on experience in IT risk assessments, vendor management, and regulatory compliance. In-depth knowledge of risk assessment frameworks and methodologies. Strong analytical skills to assess and interpret complex data. Ability to identify trends, patterns, and potential risks. Excellent verbal and written communication skills to convey risk findings and recommendations. Ability to present complex information to non-technical stakeholders clearly. Strong problem-solving skills to develop effective risk mitigation strategies. Proactive approach to identifying and addressing potential risks. Meticulous attention to detail to ensure accurate risk assessments and reporting. Understanding of relevant regulations and compliance standards. Ability to manage risk-related projects and coordinate with various teams. Strong organizational skills to handle multiple tasks and priorities effectively.

Information Security Engineer Vulnerability Management Analyst What you will do In this vital role is focused on identifying, assessing, prioritizing, and tracking the remediation of vulnerabilities across the organizations technology stack. The Vulnerability Management Analyst plays a key role in the security operations team by ensuring known vulnerabilities are managed through their lifecycle using structured processes and tools. The individual will analyze vulnerability scan data, correlate threat intelligence (e.g., KEV, EPSS), and work closely with infrastructure, application, and business teams to drive risk-based remediation. Roles & Responsibilities: Analyze vulnerability scan results from tools like Tenable, Qualys, or Rapid7 to identify security weaknesses across infrastructure and applications. Prioritize vulnerabilities using multiple criteria, including CVSS, KEV (Known Exploited Vulnerabilities), EPSS (Exploit Prediction Scoring System), asset criticality, and business context. Partner with IT and DevOps teams to track remediation progress and provide technical guidance on mitigation strategies. Monitor threat intelligence feeds to correlate vulnerabilities with current exploit activity. Create and maintain vulnerability metrics, dashboards, and reports for leadership and compliance teams. Support vulnerability assessment activities in cloud environments (AWS, Azure, etc.). Maintain documentation related to the vulnerability management lifecycle. Assist in policy and process development related to vulnerability and patch management. Participate in audits and compliance efforts (e.g., SOX, ISO, NIST, PCI). What we expect of you We are all different, yet we all use our unique contributions to serve patients. Masters degree and 1 to 3 years of experience in Cybersecurity, vulnerability management or information security operations OR Bachelors degree and 3 to 5 years of experience in Cybersecurity, vulnerability management or information security operations OR Diploma and 7 to 9 years of experience in Cybersecurity, vulnerability management or information security operations Must-Have Skills: Familiarity with vulnerability management tools (e.g., Tenable, Qualys, Rapid7). Understanding of CVSS scoring, vulnerability lifecycle, and remediation workflows. Basic knowledge of threat intelligence and how it applies to vulnerability prioritization. Working knowledge of network, operating system, and application-level security. Ability to analyze scan data and correlate it with business context and threat intelligence. Preferred Qualifications: Good-to-Have Skills: Experience with KEV, EPSS, and other threat-based scoring systems. Familiarity with patch management processes and tools. Exposure to cloud security and related scanning tools (e.g., Prisma Cloud, AWS Inspector). CompTIA Security+ GIAC GSEC / GCIH Qualys Vulnerability Management Specialist (QVMS) Tenable Certified Nessus Auditor (TCNA) Soft Skills: Analytical Thinking Ability to interpret complex data sets and assess risk effectively Attention to Detail Precision in identifying and tracking vulnerabilities and remediation status Communication Skills Ability to communicate technical findings to both technical and non-technical audiences Collaboration & Teamwork Able to work across IT, DevOps, and security teams to drive resolution Curiosity & Continuous Learning Willingness to know the latest with evolving threats and technologies Problem-Solving Approach Capability to identify solutions to security weaknesses in diverse environments

Total Experience: 5 years of experience Responsibilities: 1. Monitor network traffic and detect DDoS attack patterns at both Layer 3 and Layer 7. 2. Mitigate volumetric attacks such as TCP SYN floods, UDP floods, and amplification attacks. 3. Configure and optimize Akamai WAF to prevent OWASP Top 10 threats and other vulnerabilities. 4. Implement Akamai Guardicore Micro segmentation for Zero Trust Security. 5. Apply rate limiting, filtering, and access control mechanisms to prevent malicious traffic. 6. Collaborate with ISPs and stakeholders to mitigate large-scale cyber threats. 7. Conduct post-attack forensic investigations, root cause analysis (RCA), and more. 8. ZTNA, SWG, CASB, SSE skills (Checkpoint, Palo Alto, Zscaler).

This role involves the development and application of engineering practice and knowledge in designing, managing and improving the processes for Industrial operations, including procurement, supply chain and facilities engineering and maintenance of the facilities. Project and change management of industrial transformations are also included in this role. - Grade Specific Focus on Industrial Operations Engineering. Develops competency in own area of expertise. Shares expertise and provides guidance and support to others. Interprets clients needs. Completes own role independently or with minimum supervision. Identifies problems and relevant issues in straight forward situations and generates solutions. Contributes in teamwork and interacts with customers. Skills (competencies)

The role is accountable for tactical and operational support for production services, across one or more areas of specific platform/domain. To ensure maximum service quality and stability through fast and effective response to technical incidents, and to be a catalyst for change via analysis and identification of continual service improvement opportunities. Depending on the area of technical specialisation, in addition to incident resolution and prevention, it may also be involved in a control capacity to ensure that new changes to the technology estate do not introduce instability. Manage technical resumption of high priority, S@R, medium/high severity incidents, provide end-to-end support and implement resolution to resolve incidents within SLA Provide root cause analysis for S@R, medium/high severity issues, ensure all follow up action points are carried out Responsible for the stability of the production system. Direct second and third level of support for problem diagnosis and resolution as per the agreed SLAs. Responsible for managing the production related changes, releases and rollouts with zero or minimal impact to the stability of the application. Review the dependent changes of the surround systems, infrastructure, networking etc. . . Responsible for ensuring proper technical plans are in place for all production changes (e. g. fallback plan, implementation plan, data conversion etc. . . ) Create and update Production Support documentation, contingency (DR/BCP) documentation and processes. Provide inputs to PSS manager for monthly dashboard that provide information on incident and problem trends along with SIP and RCA Action Items. Participate support in cross-training and knowledge transfer activities within support teams Key Responsibilities Strategy To be accountable to execute the strategy devised for the business unit Business Fully accountable in incident, problem, change and risk management which relates to the production application/system. Processes Create, Review and update Production Support documentation. Update of contingency (DR/BCP) documentation and processes People Talent Participate in cross-training and knowledge transfer activities within support teams Risk Management Responsible to proactively identify the risks in the application and manage the mitigation actions. Responsible for managing, tracking and timely closure of risks and other compliance related issues in Riskwise (Information Security risks) M7 (Operational Risks). Governance Provide inputs to management for monthly dashboard that provide information on incident and problem trends along with SIP and RCA Action Items. Regulatory Business Conduct Display exemplary conduct and live by the Group s Values and Code of Conduct. Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct. Lead to achieve the outcomes set out in the Bank s Conduct Principles: [Fair Outcomes for Clients; Effective Financial Markets; Financial Crime Compliance; The Right Environment. ] Effectively and collaboratively identify, escalate, mitigate and resolve risk, conduct and compliance matters. Key stakeholders SRE PO Hive PO SRE Lead Business Stakeholders CIO counterparts Other Responsibilities Embed Here for good and Group s brand and values in the Support team; Perform other responsibilities assigned under Group, Country, Business or Functional policies and procedures; Multiple functions (double hats); Skills and Experience AWS Oracle Linux Kubernetes API Qualifications AWS Certification SRE Certification ITIL Certification (Good to have) Competencies Action Oriented Collaborates Customer Focus Gives Clarity Guidance Manages Ambiguity Develops Talent Drives Vision Purpose Nimble Learning Decision Quality Courage Instills Trust Strategic Mindset Technical Competencies: This is a generic competency to evaluate candidate on role-specific technical skills and requirements About Standard Chartered Were an international bank, nimble enough to act, big enough for impact. For more than 170 years, weve worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If youre looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents and we cant wait to see the talents you can bring us. Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, youll see how we value difference and advocate inclusion. Together we: Do the right thing and are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do Never settle, continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well Are better together, we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term What we offer In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing. Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations. Time-off including annual leave, parental/maternity (20 weeks), sabbatical (12 months maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum. Flexible working options based around home and office locations, with flexible working patterns. Proactive wellbeing support through Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills, global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning. Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential. Recruitment Assessments Some of our roles use assessments to help us understand how suitable you are for the role youve applied to. If you are invited to take an assessment, this is great news. It means your application has progressed to an important stage of our recruitment process. Visit our careers website www. sc. com/careers www. sc. com/careers 30635

We re seeking a Container Security Engineer to join our EPEO - Security Services team and lead efforts to secure our containerized environments. You will be responsible for designing, implementing, and maintaining security controls across our Docker, Kubernetes, and other container-orchestration platforms. Your expertise will help ensure our development pipelines and production workloads remain resilient against emerging threats in the cloud-native landscape. Bachelor s degree in Computer Science, Information Security, or related field (or equivalent experience). 3+ years of hands-on experience securing containerized applications in production. Deep understanding of Docker and Kubernetes security primitives (Pod Security Policies, RBAC, Network Policies, etc. ). Proficiency with container-security tooling and vulnerability scanners. Familiarity with CI/CD systems (Jenkins, GitLab CI, Tekton, etc. ) and Infrastructure-as-Code (Terraform, Ansible, CloudFormation). Strong Linux administration skills and knowledge of host hardening best practices. Experience with cloud platforms (AWS, Azure, GCP) and their container services (EKS, AKS, GKE). Solid scripting skills (Bash, Python, Go, etc. ) to automate security checks and integrations. Preferred Skills Certifications Certified Kubernetes Security Specialist (CKS), Certified Kubernetes Administrator (CKA), or equivalent. Cloud security certification (CCSP, AWS Security Specialty, Azure Security Engineer). Experience with service meshes (Istio, Linkerd) and container networking security. Knowledge of container registry management and image signing (Cosign, Binary Authorization). Familiarity with Linux seccomp, AppArmor, SELinux, and other kernel-level security controls. Prior experience in threat hunting, incident response, or forensics within container environments. Develop and maintain security policies, standards, and best practices for container images, registries, and orchestration platforms (Docker, Kubernetes, OpenShift, etc. ). Integrate security scanning and vulnerability management tools into CI/CD pipelines (e. g. , Cycode, Mondoo, etc. , ). Harden container runtimes, host operating systems, network policies, and cluster configurations against misconfigurations and attacks. Perform threat modelling and risk assessments specific to containerized workloads (e. g. , privilege escalations, supply chain risks). Monitor container runtime and orchestration logs for suspicious activities; respond to and investigate security incidents. Collaborate with DevOps, Cloud, and Application teams to embed shift-left security practices and provide training on secure container development. Lead periodic penetration tests, red-team exercises, and configuration reviews of cluster environments. Evaluate and recommend emerging container-security solutions, keeping abreast of CNCF projects and industry trends. Document security architecture, runbooks, and remediation guidelines for engineering teams.