16 Iot Security Jobs

Product Security Architect Job Overview: Product Security Architect shall lead the integration of cybersecurity into the product lifecycle , from design to deployment . This role defines secure architecture , drives secure development practices , and partners with engineering and business teams to manage cyber risks and deliver secure, resilient products . As a technical authority , you will enhance the overall security posture and support innovation through robust security solutions. Key Responsibilities: Lead and support all phases of secure engineering, product support, and development of lifecycles Drive secure development principles and implement cybersecurity practices across engineering and production teams Define cybersecurity requirements, perform gap analysis, and establish roadmaps to manage and remediate residual risk Architect secure solutions, define security control frameworks, and integrate cybersecurity features into product designs Conduct and support threat modeling, risk assessments, security assurance testing, and vulnerability assessments Lead security design reviews and provide oversight for secure architecture implementation Serve as a subject matter expert to resolve complex product cybersecurity challenges Mentor engineering teams provide training and promote secure coding and design practices Participate in audit and compliance activities for certifications, governance, and standards. Collaborate on ad hoc cybersecurity initiatives to support secure operations and product innovation Ensure alignment of security strategies with overall product and business objectives Required Skills: Strong background in cybersecurity principles, secure software/hardware design, and development practices In-depth experience with risk management, threat modeling, security testing, and vulnerability assessments Solid understanding of industry security standards (e.g., NIST, ISO 27001/62443, OWASP) Excellent analytical, problem-solving, and decision-making capabilities Demonstrated ability to lead cross-functional teams and influence stakeholders Technical Skills: Secure Development Lifecycle (SDLC) frameworks Architecture risk analysis and mitigation strategies Embedded system and IoT security Cryptographic protocols and key management Threat modeling tools (e.g., STRIDE, DREAD, Microsoft Threat Modeling Tool) SAST/DAST tools and techniques Security compliance and regulatory standards (e.g., IEC 62443, NIST 800-53) Dev SecOps integration Cloud security (AWS, Azure) and container security principles Familiarity with secure firmware and hardware-level security controls Mandatory Certifications: OSCP Offensive Security Certified Professional Good to Have Certifications: CSSLP - Certified Secure Software Lifecycle Professional

Capco, a Wipro company, is a global technology and management consulting firm. Awarded with Consultancy of the year in the British Bank Award and has been ranked Top 100 Best Companies for Women in India 2022 by Avtar & Seramount. With our presence across 32 cities across globe, we support 100+ clients acrossbanking, financial and Energy sectors. We are recognized for our deep transformation execution and delivery. WHY JOIN CAPCO You will work on engaging projects with the largest international and local banks, insurance companies, payment service providers and other key players in the industry. The projects that will transform the financial services industry. MAKE AN IMPACT Innovative thinking, delivery excellence and thought leadership to help our clients transform their business. Together with our clients and industry partners, we deliver disruptive work that is changing energy and financial services. #BEYOURSELFATWORK Capco has a tolerant, open culture that values diversity, inclusivity, and creativity. CAREER ADVANCEMENT With no forced hierarchy at Capco, everyone has the opportunity to grow as we grow, taking their career into their own hands. DIVERSITY & INCLUSION We believe that diversity of people and perspective gives us a competitive advantage. Location-Pune Exp-6-10 Years : Engage with end users to determine requirement and use cases. Implement algorithms on the edge using Python Design, build and deploy apps for the Edge Gateway Build reusable code and libraries for future use Collaborate with other team members and stakeholders Qualifications and Experience: Bachelor of Science in Software Engineering, Computer Science or related field Masters or Post Graduate degree a plus 5+ years of experience in developing applications in Python Good understanding and hands on experience Software development lifecycle and principles of OOPs, SOLID, Abstraction, Encapsulation, Modularity. Good understanding and experience in communication protocols (MQTT, Kafka) Good understanding of container technologies such as Docker and Kubernetes Knowledge and experience in Continuous Integration and Continuous Experience in Agile methodologies, Git source code management, Test-Driven Development and integration testing Knowledge in code optimization to work in reduced resources in real-time (GPU, TPU) Knowledge of IoT architecture, network topologies, IoT security are a bonus. Experience working with Linux and Bash scripting Experience with small single-board computers (Raspberry Pi) is a plus Experience with virtual machines (Virtual Box, VMWare, etc.) is a plus Self-starter. Work independently in a highly dynamic start-up environment.

Job Title : Cybersecurity Analyst Fortinet, SIEM, and SOAR Expert Location : Chennai Experience : 5 to 8 Years Employment Type : Contract Job Summary : We are looking for an experienced Cybersecurity Analyst with a strong background in Fortinet firewall configuration , SIEM tools (like Splunk, QRadar, or SentinelOne), and SOAR platforms . The ideal candidate will be highly skilled in threat detection, incident response automation, and log analysis. A basic understanding of OT/IoT security concepts is desirable. Key Responsibilities : Configure and audit firewall rules in Fortinet environments Work with SIEM tools (e.g., Splunk, QRadar, SentinelOne) to: Monitor and analyze logs and security events Create and tune correlation rules and alerts Manage incident detection workflows Develop and manage automated playbooks in SOAR/XSOAR platforms Integrate security tools and enable automation for incident response Understand OT/IoT security threats and risk areas (hands-on experience not mandatory) Required Skills : Hands-on experience with Fortinet firewall configuration and policy audits Strong knowledge of at least one SIEM tool (Splunk, QRadar, or SentinelOne) Practical experience in log analysis , threat detection, and workflow creation Familiarity with SOAR tools and playbook development Basic understanding of OT/IoT security environments Good analytical and troubleshooting skills Ability to work in a fast-paced environment Preferred Qualifications : Certifications such as Fortinet NSE , Splunk Certified , etc. Experience in scripting/automation using Python , PowerShell , or similar tools Exposure to MITRE ATT&CK framework and incident response procedures

KPMG is hiring , We have an urgent opening for an IoT / SCADA / OT security positions. Experience:5 years experience Domain knowledge: Knowledge of leading IoT platforms and preferably have worked with IoT platform providers Experience with ICS/OTN/SCADA technologies Experience in UNIX and PLC host network configurations Experience in RTU / PLC microcontroller programming and development environments Knowledge of a broad range of ICS software (e.g., OSI PI, Camstar, etc.), MSMQ message queuing technologies, databases Experience in PCN network, SCADA system design, control implementation or integration Knowledge of communication protocols such as Modbus, ROC, PCCC, BSAP, OPC, etc. and APIs in industrial systems Understanding of ICS infrastructure safety and control requirements Understanding of ICS network devices (firewalls, routers, IDS, IPS, etc.) configuration and deployment architecture Understanding of VAPT tools in SCADA environment such as Modscan, PLCInject, Samurai STFU, mbtget, smod etc. Understanding on overall IoT communication protocols such as WirelessHART, Zigbee and interfacing with popular network protocols Exhibit ability to analyse, evaluate, exploit and propose solutions to secure firmware, hardware, radio and conventional (web, mobile, network) Showcase capability of understanding underlying IoT architecture and/or designing one Excellent client facing skills with ability to understand IoT opportunities, develop business and use case for IoT Work with a technical architect to develop proposal and solutions for the IoT opportunities. Skills Required: Education-Any Technical Graduate with below skills Background in cyber security, IoT security or knowledge of leading industry practices/frameworks for embedded systems Understanding of Embedded Systems architecture and design Technology: C, C++, Linux, Git, AWS, DevOps, BurpSuite, WireShark, Monicom, Moserial, Arduino, Raspberry Pi Understanding of communication protocols such as Zigbee, WirelessHART Understanding OAUTH and MUD Understanding of FID [Radio Frequency Code] tags and EPC [Electronic Product Code], NFC [Near Field Communication], Bluetooth and Z-Wave Experience with the full lifecycle of IoT including device provisioning, commissioning, and remote device management layers Familiarity with IIOT concepts Demonstrate a team-oriented and collaborative approach Excellent oral and written communication skills Ability to plan and deliver effectively with minimal supervision and guidance

The role at KPMG in India involves providing professional services as a member of the affiliated Indian entities with KPMG International Limited. Since its establishment in August 1993, KPMG has been dedicated to leveraging a global network of firms and maintaining a deep understanding of local laws, regulations, markets, and competition. With offices across various cities in India, including Ahmedabad, Bengaluru, Chandigarh, Chennai, Gurugram, Jaipur, Hyderabad, Jaipur, Kochi, Kolkata, Mumbai, Noida, Pune, Vadodara, and Vijayawada, the professionals at KPMG cater to national and international clients across different sectors. The responsibilities associated with this position include conducting cyber security assessments, Red Teaming, designing security architecture, performing infrastructure and application security assessments, carrying out vulnerability assessment and penetration testing, reviewing security of traditional IT and non-IT network environments such as Telecom and OT networks, addressing ICS Security, IOT Security, and API Security Testing. As an equal opportunity employer, KPMG in India is committed to providing a diverse and inclusive work environment.,

Develop comprehensive IoT strategies and roadmaps tailored to client needs. Design and architect cloud-based IoT solutions, ensuring scalability, security, and performance. Oversee the deployment and integration of IoT solutions with existing business systems. Ensure seamless data flow and connectivity between IoT devices and cloud platforms Provide expert guidance on IoT technologies, cloud platforms (e.g., AWS, Azure, Google Cloud), and best practices. Stay updated with the latest trends and advancements in IoT and cloud computing. Lead and manage IoT projects from inception to completion, ensuring timely delivery and adherence to quality standards. Implement robust security measures to protect IoT data and infrastructure. 9. Ensure compliance with relevant industry standards and regulations.

Role Purpose The purpose of this role is to analyse, identify, rectify & recommend specific improvement measures that help in the security posture of the organization by protecting the sensitive information Do Ensuring customer centricity by providing apt cybersecurity Monitoring and safeguarding the log sources and security access Planning for disaster recovery in the event of any security breaches Monitor for attacks, intrusions and unusual, unauthorized or illegal activity Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems Conduct security assessments, risk analysis and root cause analysis of security incidents Handling incidents escalated by the L1 team in 24x7 rotational shifts Use advanced analytics tools to determine emerging threat patterns and vulnerabilities Completing all tactical security operations tasks associated with this engagement. Analyses all the attacks and come up with remedial attack analysis Conduct detailed analysis of incidents and create reports and dashboards Stakeholder coordination & audit assistance Liaise with stakeholders in relation to cyber security issues and provide future recommendations Maintain an information security risk register and assist with internal and external audits relating to information security Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues Advice and guidance to employees on issues such as spam and unwanted or malicious emails Deliver No. Performance Parameter Measure 1. Customer centricity Timely security breach solutioning to end users, Internal stakeholders & external customers experience 2. Process Adherence Adherence to SLAs (90-95%), response time and resolution time TAT Mandatory Skills: OT/IOT Security Operations Centre (SOC). Experience1-3 Years.

Roles : IoT/Embedded Security Engineer Location: Whitefield Bangalore Position Overview: We are seeking a highly skilled and motivated IoT / Embedded Security Engineer to join our team. The ideal candidate must have a strong background in IoT / embedded systems security, with a proven track record in identifying vulnerabilities and implementing robust security measures. Roles and Responsibilities: Conduct security assessments and risk analysis of embedded medical devices. Develop and implement security protocols and solutions for medical devices. Design and execute penetration testing and vulnerability assessments. Research and stay updated on emerging threats, vulnerabilities, and security trends in IoT and embedded systems. Collaborate with cross-functional teams to integrate security measures into the development lifecycle of products. Provide technical guidance and support to internal teams on security best practices. Participate in the design and architecture of secure IoT and embedded systems. Mandatory Skills: Bachelor's or Master's degree in Electrical Engineering, Computer Science or Electronic field. Proven experience (5 years) in IoT and embedded systems security. Strong knowledge of IoT protocols (e.g., UART, I2C, JTAG, MQTT, CoAP, HTTP) and embedded system architecture Experience with reverse engineering ARM/MIPS/x86 code architecture. Hands on with hardware attacks such as PCB reversing, Component identification,Side channel attacks,memory extraction methods. Knowledge of radio frequency (RF) protocols and related security implications such as BLE, WIFI, LoRa,DSP, SDR, etc. Understanding of industrial IoT (IIoT) security considerations. Experience with various hardware security assessment tools/frameworks. Familiarity with hardware security concepts such as secure boot, encryption, and secure firmware updates. Proficiency in programming languages commonly used in embedded systems (C/C++, Python). Proactive, problem-solver and the ability to work independently and within a team. Good to Have: Understanding of cryptographic algorithms and protocols. Knowledge of exploit development techniques, buffer overflows, and other memory corruption vulnerabilities applicable to embedded systems. Knowledge of secure coding practices and principles specific to embedded systems, including memory management and input validation. Familiarity with regulatory compliance and standards in IoT security. Any certification in IoT security, Embedded device security or similar, is a plus. Notice Period- Immediate Joiner to 15 Days Maximum Interested candidates kindly share your updated cv at sanchit@mounttalent.com

Here's an updated version of the job description, incorporating your specified details: Staff Product Security Engineer (Embedded & IoT) Work Flexibility: Hybrid Work Mode: Hybrid Location: Bengaluru Work Flexibility Definitions: Remote Role allows you to work the majority to 100% of time from an alternate workplace. These roles could have travel expectations, and you must work within the country of the job requisition location. Field-based – You can expect to regularly work a majority to 100% of time at customer facilities and has a set territory or expectation to travel within a set boundary. Almost all sales roles would likely be qualified as field-based. Onsite – Role is 100% located at a company facility. Some ad hoc flexibility may be available depending on role, level, and job requirements. Manufacturing roles and any role that requires physical presence at the office would qualify under this category. Hybrid – You can expect to regularly work in both an alternate workplace and a company facility. Roles that are partially remote or co-located would qualify as hybrid, and the expectation to be on site would be defined and agreed upon by your manager/supervisor. What you will do: Provide technical leadership and guidance to a team of Web, Embedded, and IoT Security engineers. Execute and oversee Penetration Testing and Vulnerability Assessment activities for Embedded Systems and IoT devices. Leverage DevSecOps to embed security testing ( SAST, DAST, Host Scanning, ATO Scanning, SBOM Generation ) into all phases of the Software Development Life Cycle (SDLC). Develop/review technical documentation (procedures/work instructions/guidance documents) for technical services. Develop and maintain comprehensive test plans, methodologies, and tools for security testing. Conduct in-depth analysis of security vulnerabilities and propose mitigation strategies. Collaborate with cross-functional teams to design and implement secure Embedded and IoT solutions. Lead the Software Bill of Materials (SBOM) Management program , ensuring accurate identification and documentation of software components and dependencies. Drive continuous improvement initiatives related to Embedded and IoT security, testing, and vulnerability management. What you need: Required Qualifications: Bachelor's or Master’s in Computer Science Engineering or a related field. 4 to 10 years of experience in product security, with a strong focus on embedded systems and IoT . Experience with threat modeling, risk assessment , and security architecture reviews for Embedded Systems and IoT solutions. Proficiency in C, C++, and Python programming languages. Familiarity with relevant security standards and frameworks such as OWASP, NIST Cybersecurity Framework , and ISO 27001 . Solid understanding of software development lifecycles and methodologies, particularly in the Embedded Systems and IoT context. Preferred Qualifications: Proficiency in using security testing tools such as Burp Suite, Wireshark, Nessus, and Metasploit , and experience applying DevSecOps principles. Experience in automation of routine tasks using tools like Jenkins and/or scripting languages such as PowerShell, Ruby, or Python. Understanding of Cloud-based environments like Azure and AWS . At least one professional certification like ECSA Practical/CPENT/LPT/OSCP/OSWE/OSCE or similar involving practical exams. Additional Details: Travel Percentage: 10% Mode of Interview: Face-to-Face

Endpoint & Network Security: Leverage CrowdStrike, XDR, and Zscaler for endpoint and network protection. Email & API Security: Manage and secure email platforms using Proofpoint and safeguard API security with WAF solutions.

prRole & responsibilities: : 1. Software Development & Integration Develop firmware/software for IoT and embedded systems. Integrate IoT devices with cloud platforms and APIs. 2. Data Management Manage and process large volumes of IoT data. Implement data analytics and visualization tools. 3. System Architecture & Design Design scalable and secure IoT system architectures. Test, debug, and optimize system performance. 4. Security & Compliance Implement encryption, authentication, and secure protocols. Ensure compliance with data privacy standards. 5. Collaboration & Documentation Coordinate with hardware teams for seamless integration. Create technical documentation and participate in code reviews. 6. Performance Optimization Optimize for low-power, high-efficiency IoT environments. Resolve system performance issues. Preferred candidate profile : Education: Bachelors or Masters in Computer Science or related field. Experience: 34 years in software development, preferably in IoT. Technical Skills: Proficient in C/C++, Python, or Java Experience with IoT protocols (MQTT, CoAP), cloud platforms (AWS, Azure) Familiar with embedded systems, RTOS, and data management (SQL/NoSQL) Strong grasp of security protocols (TLS/SSL, encryption, OAuth) Preferred Skills (Bonus): Mobile app development (iOS/Android) AI/ML for IoT analytics Knowledge of IoT hardware and containerization tools like Docker Attributes: Strong communication and teamwork Innovative, independent problem-solver Passionate about cutting-edge IoT technology

Our company is seeking a skilled and energetic Software Engineer to help develop our products and services. This position will be responsible for the Software Design and development of : Multi-threaded and Re-entrant safe software in Real-time and Embedded Linux Systems Linux Kernel Drivers, Linux user space components, Middleware/Software Development Kit Debug and identify the root cause for any critical system issue like crash, system lock, abnormal reset etc. A successful candidate will have demonstrated these skills besides the Qualifications: Good problem solving - Mathematical acumen and Analytical thinking Can do attitude, Complementary in team work, Winning spirit Role & responsibilities Design and develop software systems on Embedded HW platforms and achieve Edge Computing Run tests; Triage and Resolve issues reported in the test Documenting the software architecture, user guides and API reference Manuals Understand software engineering processes and methodologies. Be able to write and communicate clearly with other engineers. Preferred candidate profile 2-7 years in the following areas required: Design and development of Linux user/Kernel space components Middleware/Software Development Kit (SDK). Experience with ARM processors and assembly programming is a plus. Strong communication skills (written and verbal), working with teams across multiple time zones. Experience in creating Secure and Intelligent Systems for IoT or Automotive is a plus.

Key Responsibilities: Drive end-to-end cybersecurity integration across the medical device product development life cycle, ensuring security is embedded from concept to release. Develop and maintain cybersecurity for medical products, including security requirements specifications, risk assessments, threat models, and product security architecture documentation. Conduct thorough gap assessments to evaluate compliance with IEC 81001-5-1, IEC 60601-4-5, AAMI TIR 57, and AAMI TIR 97 standards, and implement remediation measures. Perform hands-on vulnerability assessments, penetration testing, and secure code reviews of embedded devices, IoMT (Internet of Medical Things) components, and connected systems. Collaborate closely with development, compliance, and regulatory teams to ensure product security measures meet both internal security policies and external regulatory expectations. Support SBOM management, software supply chain risk evaluations, and third- party component analysis to maintain software transparency and mitigate risks. Provide expert input on secure communication protocols, encryption standards, data protection for both at-rest and in-transit data, and cloud-based connectivity of medical systems. Assist in developing incident response strategies and bring working knowledge of HIPAA, GDPR, and HL7 to address data privacy and healthcare-specific regulatory concerns. Contribute to the continuous enhancement of internal secure development processes, tools, and methodologies, while championing security best practices within product teams. Required Skills and Qualifications: Minimum of 6 years of experience in cybersecurity, including at least 3 years focused on medical devices, embedded systems, or IoT security. Proven track record in authoring security design, defining technical requirements, and documenting security architectures aligned with regulatory needs. Hands-on experience in embedded system security including secure boot, firmware security, threat modeling techniques (e.g., STRIDE, DREAD), and product-level risk assessments. Strong understanding of IEC 81001-5-1, IEC 60601-4-5, AAMI TIR 57, and AAMI TIR 97, along with working knowledge of the medical device product development lifecycle and quality standards like ISO 14971. Demonstrated expertise in vulnerability management and penetration testing of connected products across device and cloud ecosystems. Familiarity with data privacy and interoperability standards such as HIPAA, GDPR, and HL7 is highly desirable. Excellent problem-solving skills, critical thinking, and ability to lead gap analysis and remediation activities in regulated environments. Strong collaboration skills with the ability to influence cross-functional teams including R&D, compliance, and product management.

We are seeking an IoT Engineer to design, develop, and refine IoT devices. You will integrate sensors, establish wireless networks, ensure data security, and optimize system performance. A Bachelors degree, experience with embedded systems, and proficiency in C/C++/Python are required. Familiarity with cloud platforms and IoT security is a plus.

About The Role Role Purpose The purpose of this role is to analyse, identify, rectify & recommend specific improvement measures that help in the security posture of the organization by protecting the sensitive information ? Do Ensuring customer centricity by providing apt cybersecurity Monitoring and safeguarding the log sources and security access Planning for disaster recovery in the event of any security breaches Monitor for attacks, intrusions and unusual, unauthorized or illegal activity Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems Conduct security assessments, risk analysis and root cause analysis of security incidents Handling incidents escalated by the L1 team in 24x7 rotational shifts Use advanced analytics tools to determine emerging threat patterns and vulnerabilities Completing all tactical security operations tasks associated with this engagement. Analyses all the attacks and come up with remedial attack analysis Conduct detailed analysis of incidents and create reports and dashboards Stakeholder coordination & audit assistance Liaise with stakeholders in relation to cyber security issues and provide future recommendations Maintain an information security risk register and assist with internal and external audits relating to information security Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues Advice and guidance to employees on issues such as spam and unwanted or malicious emails ? Deliver No. Performance Parameter Measure 1. Customer centricity Timely security breach solutioning to end users, Internal stakeholders & external customers experience 2. Process Adherence Adherence to SLA’s (90-95%), response time and resolution time TAT ? ? Mandatory Skills: OT/IOT Security Operations Centre (SOC). Experience1-3 Years. Reinvent your world. We are building a modern Wipro. We are an end-to-end digital transformation partner with the boldest ambitions. To realize them, we need people inspired by reinvention. Of yourself, your career, and your skills. We want to see the constant evolution of our business and our industry. It has always been in our DNA - as the world around us changes, so do we. Join a business powered by purpose and a place that empowers you to design your own reinvention. Come to Wipro. Realize your ambitions. Applications from people with disabilities are explicitly welcome.

Position Overview: We are seeking a highly skilled and motivated IoT / Embedded Security Engineer to join our team. The ideal candidate must have a strong background in IoT / embedded systems security, with a proven track record in identifying vulnerabilities and implementing robust security measures. Roles and Responsibilities: Conduct security assessments and risk analysis of embedded medical devices. Develop and implement security protocols and solutions for medical devices. Design and execute penetration testing and vulnerability assessments. Research and stay updated on emerging threats, vulnerabilities, and security trends in IoT and embedded systems. Collaborate with cross-functional teams to integrate security measures into the development lifecycle of products. Provide technical guidance and support to internal teams on security best practices. Participate in the design and architecture of secure IoT and embedded systems. Mandatory Skills: Bachelor's or Master's degree in Electrical Engineering, Computer Science or Electronic field. Proven experience (5 years) in IoT and embedded systems security. Strong knowledge of IoT protocols (e.g., UART, I2C, JTAG, MQTT, CoAP, HTTP) and embedded system architecture Experience with reverse engineering ARM/MIPS/x86 code architecture. Hands on with hardware attacks such as PCB reversing, Component identification,Side channel attacks,memory extraction methods. Knowledge of radio frequency (RF) protocols and related security implications such as BLE, WIFI, LoRa,DSP, SDR, etc. Understanding of industrial IoT (IIoT) security considerations. Experience with various hardware security assessment tools/frameworks. Familiarity with hardware security concepts such as secure boot, encryption, and secure firmware updates. Proficiency in programming languages commonly used in embedded systems (C/C++, Python). Proactive, problem-solver and the ability to work independently and within a team. Good to Have: Understanding of cryptographic algorithms and protocols. Knowledge of exploit development techniques, buffer overflows, and other memory corruption vulnerabilities applicable to embedded systems. Knowledge of secure coding practices and principles specific to embedded systems, including memory management and input validation. Familiarity with regulatory compliance and standards in IoT security. Any certification in IoT security, Embedded device security or similar, is a plus