333 Ips Jobs - Page 10

Position: Azure DevOps Lead Experience: 8-10 years Location : Chennai Position Type: Full time Qualification: Any graduate Technical Skills: Azure cloud, Azure DevOps, CI/CD, YAML, GCP, Terraform, ARM, Kubernetes, API gateway, Azure Pipelines and Azure DevOps, Cloud Security, Load Balancer, Prometheus, Grafana, Dynatrace, Cloudfare, Hashi Corp Vault. Requirements: Evaluate and recommend Azure/GCP services and components for various Azure Services Monitor cloud infrastructure, identify performance bottlenecks, and implement solutions for optimization. Lead the planning and implementation of Azure/GCP infrastructure, considering best practices for security, performance, and reliability. Stay updated with the latest Azure / GCP features, trends, and industry best practices. Designed, Developed and Delivered Scalable and high Availability Application End to End Expertise in Azure/Google Cloud Platform services and components, including Compute Engine, Kubernetes Engine, Storage, Bigdata components preferably in GCP Proven experience as a Azure/GCP or similar role, with a strong background in designing and implementing cloud solutions preferably in GCP Has performed Resource utilization monitoring and right sizing , Cost optimization, Performance optimization exercises Worked in Event Driven Architecture (like Kafka) Confluent cloud Infrastructure Auto Scaling , Utilization based alerting Experience with designing and implementing CI/CD pipelines for cloud deployments. Knowledge of cloud security principles and best practices for securing cloud environments Familiarity with networking concepts and configuration in a cloud environment. Knowledge of microservices architecture and serverless computing Infra Pricing estimation for new requirement Roles and Responsibilities : Extensive experience (12+ years) building, deploying, and securing Azure cloud infrastructure with Terraform. Experience expressing secure by design and shift left principles through Infrastructure as Code (Terraform) Enthusiasm for automation and creative technical ability to identify time-saving or novel automation workflows. Proven ability to enhance security through automation, continuous integration/deployment pipelines, and challenge existing processes/norms. Ability to enhance security through automation, continuous integration/deployment pipelines, and challenge existing processes/norms. Experience building & maintaining container-based / Kubernetes-based workloads; understanding of container security threats and best practices. Experience building & maintaining cloud networking & cloud-based security controls, such as SSL certificate management, API gateway, Web Application Firewall (WAF), Intrusion Prevention System (IPS) and associated security best practices. Experience working with YAML pipelines/Azure Pipelines/Azure DevOps. Experience configuring secure IAM, such as least privilege, zero trust, privileged identity management. The habit of staying current on cloud security policies, standards, regulations, and best practices, as well as strong understanding of cloud-focused security risks and threats. Support the Information Security & core DevOps teams with other cloud-based security tasks as needed, and willingness to work outside of standard business hours during critical incidents.

Cisco s Security Business Group crafts build and deliver out-standing security products that form the foundation of Cisco s innovative security architecture. We are seeking a Senior Technical Lead to join our agile and fast-paced team, driving innovation in our next-generation Firewall Management SaaS product on AWS. This role involves leading architecture, design, development, and testing to build high-performance, scalable, and secure solutions. You will work closely with cross-functional teams to craft the future of network security. Your Impact Lead end-to-end architecture, design, and development of our firewall management product. Design and implement highly scalable, multi-threaded, and distributed applications. Ensure high performance, reliability, and security in cloud-based deployments. Work closely with Product Managers, UX Designers, QA & Technical Marketing to translate business needs into scalable, secure solutions. Conduct code reviews and provide constructive feedback to the development team. Identify technology trends and incorporate them into the product roadmap for competitive advantage. Continuously innovate and optimize execution to improve developer productivity. Stay ahead of emerging security technologies and AI/ML advancements, sharing knowledge with the broader team. Shape the future of firewall management products in a SaaS-first, cloud-native environment. Drive business impact by delivering high-value solutions that enhance top-line revenue and optimize bottom-line performance Minimum Qualifications: 12+ years of software development experience, with strong expertise in Java, React, and Angular. Hands-on experience with microservices architectures, web development, and REST APIs, RDBMS principles, and database access layers. Proficient in developing applications in a Linux/Unix environment with CI/CD tools like Jenkins, Bitbucket, and Git. Deep knowledge of containerization technologies (Docker, Kubernetes) and cloud platforms like AWS. Proven ability to work in cross-functional teams and optimally collaborate with stakeholders. Preferred Qualifications: Experience with Security Products with Networking concepts, including TCP/IP, UDP, DNS, HTTP, TLS, VPNs, and firewalls. Expertise in Generative AI (GenAI) technologies or AI/ML frameworks such as TensorFlow, PyTorch, or Hugging Face Transformers. Basic understanding of cybersecurity principles, network security best practices, and threat models. Knowledge with intrusion detection/prevention systems (IDS/IPS), packet inspection, and security policies is a bonus

Job Description The L2 Network Engineer, specializing in Wireless and Switching, is responsible for the daily operations, maintenance, and support of network infrastructure. This role includes troubleshooting network issues, assisting with the deployment of network solutions, and providing second-level support for wireless and switching environments. The L2 Network Engineer collaborates with L1 support teams and L3 engineers to maintain network stability and security. The position requires flexibility to work in 24x7 shifts. Strong knowledge of IP routing and switching is required. Good in Security technology domain with demonstrated expertise in the following areas - Firewall, Cisco ISE, IPS/IDS, Admission Control, encryption, VPN etc. Design, implement, and maintain wireless networks using Cisco DNAC. Hands-On experience with Cisco Wireless Products - WLC (Wireless LAN Controllers), Access Points (AP), MSE, Prime Infrastructure (PI) etc. Deep understanding of IEEE 802.11 standards (a,b,g), 802.1x, Wi-Fi . Knowledge of WLAN Security in the areas of authentication, encryption, IDS/IPS using Radius, AAA authentication, EAP, LEAP, PEAP, PSK. WEP encryption (Wired Equivalent Privacy,WPA (Wi-Fi Protocol Access), WPA2. Examine requirements and provide solutions within the constraints specified. Follows the agile methodology for fast solution delivery, testing, and value realization. Presentation Skills:Executive level presentation skills, able to communicate complex solutions to nontechnical audience successfully to help drive business growth and outcomes. Basic programming language and should be able to automate tasks leveraging AI where possible. Cisco certification (CCNA, CCNP Security, or higher) is preferred.

We are seeking a dedicated and experienced Security Engineer to bolster our Security Operations and Incident Response capabilities. In this role, you will play a pivotal part in fortifying our global Information Systems security infrastructure and responding effectively to potential security threats. Your responsibilities will encompass the daily operations of our security technologies, alongside proactive analysis, and response to security incidents. Collaboration with our Information Services team will be integral to maintaining and enhancing our organizations security posture and safeguarding our data assets. About the Team: As a valued member of our Cyber Intelligence Centre/Security Operations team, you will advocate a pragmatic approach to proposing and implementing security solutions. You will actively contribute to the continual analysis of our security logs and posture to uphold our organizations security and situational awareness regarding potential threats. What youll do Automation of Security Processes: Develop, implement, and manage automated workflows for incident detection, investigation, and remediation. Automate routine security tasks such as log analysis, vulnerability scanning, and patch management. Integrate security tools (SIEM, SOAR, endpoint protection, threat intelligence platforms) to create seamless, automated workflows. Incident Response Automation: Work with the Incident Response team to identify opportunities for automation in response procedures. Develop automated playbooks for various incident types (e.g., phishing, malware, DDoS attacks) to reduce response time and human error. Implement automated alert triage systems to prioritize and categorize security incidents based on severity. Threat Intelligence Integration: Automate the ingestion and processing of threat intelligence feeds (e.g., IOCs, TTPs) into security monitoring systems. Enhance threat detection capabilities by integrating real-time threat intelligence into automated workflows. Continuous Improvement: Continuously evaluate and improve automated security processes for efficiency, effectiveness, and scalability. Identify gaps in automation and develop new solutions to improve response times and security coverage. Monitor automation processes and tools to ensure they operate effectively and without interruption. Collaboration Communication: Work closely with the SOC team to ensure automation initiatives align with the organization s security policies and standards. Collaborate with IT, DevOps, and Engineering teams to ensure automated security solutions are integrated across the infrastructure. Provide documentation and training to security teams on new automated processes and tools. Security Monitoring and Reporting: Develop dashboards and reports to track the performance of automated security processes and identify areas for improvement. Ensure that key security metrics (e.g., mean time to detect, mean time to respond) are optimized via automation. Security Tool Management: Manage and maintain automation tools, ensuring they are up to date and optimized for maximum performance. Evaluate and implement new security automation tools and technologies as appropriate. What youll bring: Bachelor s degree in Computer Science, Information Security, or a related field (or equivalent work experience). Minimum of 5-10 years of experience in a Security Operations role (SOC, Incident Response, or Threat Intelligence). Proven experience with security automation tools, SIEM platforms (e.g., MS Sentinel). Experience with scripting languages (Python, PowerShell, Bash) and automation frameworks (e.g., Ansible, Terraform, or similar). Hands-on experience with security technologies such as IDS/IPS, endpoint protection, firewalls, and vulnerability management tools. Technical Skills: Expertise in implementing and managing security automation processes and systems. Familiarity with cloud environments (AWS, Azure, GCP) and cloud-native security tools. Experience in building and maintaining automated incident response playbooks. Proficiency in security monitoring tools such as SIEM, EDR, NDR, and IDS/IPS. Soft Skills: Strong problem-solving and analytical skills. Excellent communication skills and ability to collaborate with cross-functional teams. Ability to prioritize tasks, manage time effectively, and work under pressure. Strong attention to detail and commitment to continuous learning. Desirable: Certifications such as CISSP, CEH, CISM, or similar are highly desirable. Familiarity with DevSecOps practices and CI/CD pipeline security. Experience with threat hunting and proactive security measures.

We are looking for an experienced Cloud Operations (Site Reliability Engineering) professional who is passionate about implementing and operating Cloud infrastructure and Security services . You will join a dynamic and fast-paced environment and work with cross-functional teams to design, build , and roll out products that deliver the company s vision and strategy. Experience 3+ Years Pune Alright, so youre sold. But who are we Diversity and humility are not just big words hung up on the walls. At CredAble, we put people at the heart of everything we do and our core values are the driving force behind our success. CredAble is an NBFC technology-powered supply chain funding solutions company Leveraging our trade finance expertise, technology platform, and access to 3rd party capital, we arrange funding programs for enterprise supply chains and do direct lending to SMEs. Led by a team of industry experts, CredAble is at the forefront of powering tech-enabled working capital financing. Programs are anchored around enterprise clients, where we provide funding linked to transactions with suppliers (payables) and distributors (receivables). We are series B funded startup with Axis Bank limited as a strategic investor. You will be responsible for: Partner with Cloud Security Operations Lead and CISO to implement and operate a secure hosting infrastructure. Establish and enforce cloud hosting best practices and guidelines for the hosting infrastructure, maintain system configurations, upholding, and documentation system standards. Plan, and implement automation, cost savings, and service quality improvement. Implement monitoring and alerting services for all the hosted platforms for coverage, availability, and performance. Support Product and Technology teams with platform deployments and release management responsibilities. Own hardening and patch management for infrastructure and improve the security posture of the hosted platforms. Participate in the formulation and implementation of DevSecOps practices, cost optimization initiatives, performance improvement, and overall efficiency of the cloud platforms. Implement and operate enterprise security standards and controls and the security operations governance process. Work with the GRC function to close/remediate any audit findings. Operate cloud security services including SIEM, MDR/XDR, CNAPP, CASB, CWP, FIM, WAF, IDS/IPS, etc., through SOC to improve the security posture. Conduct vendor evaluations to deliver similar projects. You will be reporting to: Cloud Security Operations Lead. What will you bring to the table 5 or more years of related experience in DevOps and cloud security operations for organizations. Hands-on experience with infrastructure as code Terraform, Kubernetes, Docker, CI/CD pipeline, Cloud Primary: AWS, Secondary: Azure or GCP. Strong cloud infrastructure implementation and automation background with a consistent record of delivering results, communication as well as critical thinking skills, creative and flexible problem solver. Strong interpersonal skills and the ability to interact strategically and confidently with internal partners to develop ideas, find opportunities, and influence outcomes. Ability to align complex architecture to business strategies and initiatives. The educational qualification you ll need: Bachelor s or Master s degree in Computer Science , Engineering, or a related field. Besides making the best move of your career, what s in it for you Working in a highly entrepreneurial setup with a visionary team passionate to help scale new heights of business success. Exposure to exploring limitless possibilities and ideas no matter how impossible they may seem today. CredAble thrives on transparency and a culture to nurture growth. Being part of CredAble enables you to push beyond the ordinary.

Implement and maintain network security policies, firewalls, and access controls . Monitor network traffic for anomalies, volumetric spikes, and security breaches . Utilize Akamai Security Operations Command Center (SOCC) for real-time threat intelligence and alerting. Conduct vulnerability assessments and penetration testing to identify risks. 2. DDoS Attack Mitigation (L3/L7Protection) Identify and mitigate L3 volumetric attacks (TCP SYN floods, UDP floods, ICMP floods, amplification attacks). Mitigate L7 application-layer attacks targeting APIs, HTTP/S endpoints, and critical services. Implement traffic scrubbing, geo-blocking, rate limiting, and ACLs for DDoS prevention. Work with ISPs and enterprise clients to counter large-scale network attacks. 3. Web Application Firewall (WAF)Management Configure, tune, and optimize Akamai WAF to block application-layer threats. Monitor and mitigate OWASP Top 10 vulnerabilities (SQL Injection, XSS, CSRF, etc.). Perform log analysis and security rule updates to adapt to evolving threats. 4. Microsegmentation (Guardicore) Zero Trust Security Implement network microsegmentation using Akamai Guardicore to restrict lateral movement. Design and manage zero-trust security architectures for enterprise environments. Continuously optimize segmentation policies to enhance network isolation and compliance . 5. Incident Response SecurityOptimization Develop and execute incident response plans for DDoS, WAF, and network security breaches. Conduct root cause analysis (RCA) and forensic investigations after security incidents. Create security reports, dashboards, and threat intelligence briefs for stakeholders. Improve network and application security policies based on lessons learned. Required Skills Experience: 5+ years of experience in network security, DDoS mitigation, and WAF administration . Hands-on expertise with Akamai L3/L7 DDoS, Akamai WAF, and Guardicore Microsegmentation . Strong understanding of network protocols (TCP/IP, HTTP/S, DNS, BGP, SSL/TLS, IPSec, etc.) . Experience with firewalls (Palo Alto, Cisco ASA, Fortinet, Check Point) and IDS/IPS solutions . Proficiency in threat intelligence, traffic analysis, and SIEM integration (e.g., Splunk, QRadar). Hands-on experience with security automation (Python, Bash, PowerShell, Terraform, Ansible) . Strong knowledge of incident response frameworks and compliance standards (ISO 27001, NIST, PCI-DSS, GDPR, etc.) .

We are seeking an experienced Senior SOC L3 Analyst with deep expertise in Microsoft Sentinel SIEM to lead security monitoring, threat detection, and incident response. This role involves handling advanced cyber threats, fine-tuning SIEM capabilities, mentoring SOC teams, and driving security automation. Key Responsibilities: Advanced Threat Detection Incident Response: - Act as the final escalation point for critical security incidents. - Perform deep forensic analysis, malware analysis, and threat hunting across hybrid environments. - Investigate Advanced Persistent Threats (APT), zero-day exploits, and insider threats. - Develop and optimize custom KQL queries, detection rules, and Sentinel analytics for precise threat detection. - Lead post-incident forensics, root cause analysis (RCA), and corrective action plans. - Automate and streamline incident response using SOAR playbooks. SIEM Administration Optimization: - Configure, optimize, and fine-tune Microsoft Sentinel SIEM for maximum visibility and efficiency. - Design and implement custom detection rules, log parsers, and alerting mechanisms. - Integrate Azure Defender, Microsoft Defender, and third-party threat intelligence feeds into Sentinel. - Enhance log collection, correlation, and anomaly detection using AI/ML-based techniques. Threat Hunting Threat Intelligence: - Conduct proactive threat hunting using behavioral analytics and KQL-based queries. - Leverage MITRE ATTCK, Cyber Kill Chain, and Diamond Model frameworks for adversary tracking. - Implement Threat Intelligence Platforms (TIPs) and integrate with SIEM/SOAR solutions. - Identify and mitigate emerging threats, including fileless attacks, privilege escalation, and supply chain attacks. Compliance Security Governance: - Ensure compliance with industry standards (ISO 27001, NIST, PCI-DSS, GDPR, SOC2). - Develop and maintain SIEM reporting dashboards for executive and compliance reporting. - Assist in audit preparation, risk assessments, and security posture improvement plans. Leadership Mentoring: - Guide and mentor SOC L1 L2 analysts in advanced security investigation techniques. - Develop incident response playbooks, runbooks, and SOPs for the SOC team. - Conduct cybersecurity training, tabletop exercises, and red/blue team drills. - Collaborate with CISOs, IT, DevOps, and risk teams to enhance overall security posture. Required Skills Qualifications: 7+ years of hands-on experience in SOC operations, incident response, and threat hunting. Expertise in Microsoft Sentinel SIEM (rule creation, automation, integration). Strong knowledge of EDR, IDS/IPS, firewalls, network security, and cloud security (Azure, AWS, GCP). Proficiency in Kusto Query Language (KQL), PowerShell, Python for security automation. Deep understanding of MITRE ATTCK, Cyber Kill Chain, TTP-based threat modeling. Experience in threat intelligence, malware reverse engineering, and forensic investigations. Hands-on experience with SOAR platforms and security automation workflows. Certifications preferred: SC-200, CISSP, CISM, CISA, GIAC (GCFA, GCIH, GCIA), CEH, OSCP. Requirements > Hands-on experience in SOC operations, incident response, and threat hunting. Expertise in Microsoft. >Expertise in Microsoft Sentinel SIEM (rule creation, automation, integration). >Strong knowledge of EDR, IDS/IPS, firewalls, network security, and cloud security (Azure, AWS, GCP). >Proficiency in Kusto Query Language (KQL), PowerShell, Python for security automation. >Deep understanding of MITRE ATTCK, Cyber Kill Chain, TTP-based threat modeling. >Experience in threat intelligence, malware reverse engineering, and forensic investigations. >Hands-on experience with SOAR platforms and security automation workflows.

Job details: Exp - 3+years Work Location - Mumbai(Kandivali) Roles and Responsibilities: Hands on experience of incident analysis malware research, SOC, or any other similar security incident response experience. Hands on Experience with any SIEM Solution (LogRhythm, Qradar, Splunk, etc) Fundamental understanding of security tools such as IDS/IPS, web proxies, DLP, CASB, DNS security, DDoS protection, firewalls, and cloud alerts/events Knowledge of NIST and MITRE ATTCK security frameworks Knowledge of Microsoft Windows systems including active directory and Unix/Linux systems Experience analyzing and inspecting log files, network packets, and any other security tool information output from multiple system types Familiar with basic reverse engineering principles and understand of malware, rootkits, TCP/UDP packets, network protocols Team-oriented and skilled in working within a collaborative environment Ability to effectively multi-task, prioritize and execute tasks in a high-pressure environment Required flexibility to work in a 24x7 environment. Experience with technical analysis of email headers, links, and attachments to determine if an email is malicious, and then executing remediation techniques to protect the environment.

Diligently monitoring our IT infrastructure and quickly responding to security incidents. Analyzing sophisticated security data and deriving actionable intelligence to avert potential security breaches. Refining our incident response strategies in collaboration with various business units and the Global Information Technology team. Applying your skills across various operating systems and proficiency in security tools like SIEM, email, networking, and endpoint technologies to bolster our security measures in both on-premise and cloud environments, including GCP. Engaging with individuals and teams across Colgate-Palmolive, you will articulate key security issues and drive our comprehensive cybersecurity agenda. Your role is pivotal in upholding Colgate-Palmolive s standards for cyber hygiene and in defending the companys resources against dynamic cyber threats. This role presents both a challenge and an opportunity to enhance the protection of Colgate-Palmolive s global digital infrastructure. Who are you You are a function expert, able to: Monitor and analyze security events from various sources, such as SIEM, IDS/IPS, firewalls, and endpoint protection systems. Investigate security incidents to determine impact and root cause, implementing and refining investigation and incident response procedures. Conduct sophisticated threat analysis and proactive threat hunting to detect and remediate advanced persistent threats (APTs). Ensure continuous monitoring of the organizations networks and systems, generating detailed documentation on security incidents, including findings, remediation steps, and recommendations. Maintain and improve SOC documentation and operating procedures. You connect the dots by: Reviewing and analyzing incoming alerts from various security tools. Correlating alerts with logs from other sources to identify patterns or anomalies. Gathering contextual information about affected systems, users, and networks. Integrating threat intelligence to enhance detection and response capabilities. Analyzing user and entity behavior to identify deviations from normal patterns. Constructing timelines of events and developing hypotheses about potential threats. Collecting and preserving evidence, ensuring its integrity for further investigation. Documenting all findings in detailed incident reports and escalating incidents when necessary. Recommending actions to contain and mitigate threats and implementing remediation steps. Conducting post-incident analyses to identify gaps and continuously improving detection rules and security measures. You are a collaborator who can: Work closely with other IT and security teams to address security issues and implement best practices. Provide guidance and support to junior SOC analysts. Communicate effectively with the Global SOC Manager, Team Lead, and other senior leaders on security incidents and status updates. You are an innovator who will: Stay ahead of the latest cybersecurity trends, technologies, and threats. Find opportunities for process improvements and automation within the SOC. Participate in post-incident reviews to identify lessons learned and areas for improvement. What you ll need (Required) Bachelor s or Master s degree in Computer Science, Information Technology, Cybersecurity, or a related field (or equivalent experience). At least 3 years of experience in a SOC environment, with demonstrable experience in incident detection, response, and threat analysis. Solid grasp of cybersecurity principles, threat landscape, and incident response methodologies. Proficiency with security tools and technologies such as SIEM, IDS/IPS, firewalls, and endpoint protection. Excellent analytical and problem-solving skills. Effective communication and interpersonal skills. What you ll need (Preferred): Relevant cybersecurity certifications (e.g., CompTIA Security+, CySA+, ISC(2) CC, CISSP, GSEC, GCHI, CEH, etc.) are highly desirable.

Engage in Cyber Transformation projects in the capacity of execution of deliverables Work effectively as a team member, sharing responsibility, providing support, maintaining communication and updating senior team members on progress Help prepare reports and schedules that will be delivered to clients and other parties Demonstrate an application and solution-based approach to the problem solving technique Review of working papers and client folders. Suggest ideas on improving engagement productivity and identify opportunities for improving client service Manage the engagement budgets and support superiors in developing marketing collaterals, business proposals and new solution / methodology development Willing to travel to the customers locations on need basis People responsibilities Being a part of and driving the quality culture at GTH Contribute to people related initiatives Understand and follow workplace policies and procedures Foster teamwork by supporting the team Skills and attributes for success Knowledge of TCP/IP, concepts of OSI layer and protocols, networking and security concepts Knowledge of OS (Windows / Linux) security, Database security Knowledge of cyber / information security concepts, risk and controls concepts Knowledge of IT infrastructure (switches, routers, firewalls, IDS, IPS, etc.) Understanding of architectures Knowledge of cyber threats and vulnerabilities related to platform and infrastructure is a plus Basic knowledge of encryption Preferred skills Knowledge of standards such as ISO 27001/2, ISO 22301, ISO 27018, PCI - DSS, NIST standards on Cyber Security, HITRUST, etc. is a plus Knowledge on tools like Nessus, Backtrack, NMAP, BurpSuite, etc. is a definite plus To qualify for the role you must have Graduates / BE - B. Tech / MCA / M. Sc. (Stats, Maths, Computer Science) / MBA with background in computer science and programming and 0 - 4 years of experience CEH, ISO 27001 Lead Auditor and Lead Implementer Ideally you ll also have Strong communication, facilitation, relationship-building, presentation and negotiation skills. Be highly flexible, adaptable, and creative. Comfortable interacting with senior executives (within the firm and at the client) Strong leadership skills and supervisory responsibility. People with the ability to work in a collaborative way to provide services across multiple client departments while adhering to commercial and legal requirements. You will need a practical approach to solving issues and complex problems with the ability to deliver insightful and practical solutions.

Client responsibilities Engage in Cyber Transformation projects in the capacity of execution of deliverables Work effectively as a team member, sharing responsibility, providing support, maintaining communication and updating senior team members on progress Help prepare reports and schedules that will be delivered to clients and other parties Demonstrate an application and solution-based approach to the problem solving technique Review of working papers and client folders. Suggest ideas on improving engagement productivity and identify opportunities for improving client service Manage the engagement budgets and support superiors in developing marketing collaterals, business proposals and new solution / methodology development Willing to travel to the customers locations on need basis People responsibilities Being a part of and driving the quality culture at GTH Contribute to people related initiatives Understand and follow workplace policies and procedures Foster teamwork by supporting the team Skills and attributes for success Knowledge of TCP/IP, concepts of OSI layer and protocols, networking and security concepts Knowledge of OS (Windows / Linux) security, Database security Knowledge of cyber / information security concepts, risk and controls concepts Knowledge of IT infrastructure (switches, routers, firewalls, IDS, IPS, etc.) Understanding of architectures Knowledge of cyber threats and vulnerabilities related to platform and infrastructure is a plus Basic knowledge of encryption Preferred skills Knowledge of standards such as ISO 27001/2, ISO 22301, ISO 27018, PCI - DSS, NIST standards on Cyber Security, HITRUST, etc. is a plus Knowledge on tools like Nessus, Backtrack, NMAP, BurpSuite, etc. is a definite plus To qualify for the role you must have Graduates / BE - B. Tech / MCA / M. Sc. (Stats, Maths, Computer Science) / MBA with background in computer science and programming and 0 - 4 years of experience CEH, ISO 27001 Lead Auditor and Lead Implementer Ideally you ll also have Strong communication, facilitation, relationship-building, presentation and negotiation skills. Be highly flexible, adaptable, and creative. Comfortable interacting with senior executives (within the firm and at the client) Strong leadership skills and supervisory responsibility.

OVERALL PURPOSE OF THE ROLE: The primary responsibility of the specialist security Operationsis to ensure security risks are identified and managed within acceptable limits. The Security specialist will work closely with Design Authority, Solution Architects, IS Design,IS&T operations and Business teams to manage security of the organization RESPONSIBILITIES: To analyse and update critical and non critical log sources and their health status check for redundant log sources and take necessary steps working with right stake holders daily health check and monitoring of SOC infra Co-relationship, framework management for SOC use cases responsible for analytics and data crunching or data analysis and represenation of outcome for leadeship to make next decisions KPI definition, revision and imprvement for SOC infra, health and use cases TECHNICAL COMPETENCIES & EXPERIENCE To be considered for this role, candidate need to demonstrate the following skills experience and attributes: Bachelors/Masters degree in Engineering/Technology or related field Minimum 6-8 years of relevant IT experience Professional industry standard certifications like CISSP, CEH, GIAC, CISM, ISO 27002 etc. will be an added advantage Experience with various IT / Security technologies including, Active Directory, DNS, Messaging, Firewalls/ VPN Gateways, IPS, Proxy, WAF, PKI, IAM,etc. Good understanding of tools like CyberArk, PingIdentity, Sailpoint, Qualys, Veracode Proficient handson experience and understanding of various security tools and technologies. Experience in an operational role working directly with internal and external customers, trouble ticketing systems, and incident management Solid understanding of ITIL process framework Must understand and have worked in an operational environment such as a NOC or SOC for 2- 4 years Demonstrated leadership experience in the area of Security Operations Proven planning, prioritization, and organizational skills Demonstrated drive for continuous learning, results orientation, and teamwork Ability to drive change through innovation & process improvement Ability to manage projects and drive action items with customers and crossfunctional peers Proven crisis management skills Professional & concise communication (written & verbal) Ability and flexibility to adapt to change, including shifting and competing priorities Demonstrated ability to be a big picture thinker, strategist, and long term planner Strong analytical skills with demonstrated problem solving ability Project management skills with a proven ability to design workable solutions will be an added advantage Exposure to ISO 27002 and ISO 27005

Responsibilities Cybersecurity Engineer Immediate to 15 days Work on Threat mitigation, Thread Intelligence, Intrusion Prevention, Digital forensics, incident response, and threat analysis to mitigate cyber threats Configured, and implemented operational support, troubleshooting for Firewall, IPS, and VPN devices, ensuring 99% uptime Conducted security assessments & validations of Firewall, IPS, VPN, and networking devices, mitigating risks Implemented and managed Endpoint Protection software for desktops and servers, for Business Continuity Software & Tools: Nessus, Wireshark, NMAP, OpenVAS, OWASP, Burp Suite, Tripwire, Encase, UFED, Access Data Forensic Toolkit (FTK 6.4), F.R.E.D., Axiom, Media Clone, Solo-4 and Oxygen Forensic Investigator, Postman.

Minimum 9 years of experience in Network security and 6 years in WAF and Load balancer. Having hands on over F5 is added advantage Requires to have sound understanding of F5 irule scripting language Requires to have sound experience in ASM, LTM Requires to have sound experience in F5 WAF signature review and log analysis. Requires to have expertise in Virtual server creation, SSL profile creation and certificate management. Requires to very sound experience in F5 device version upgrade and update. Very sound understanding over web applications architecture and WAF rules alignment. Add on Firewall Proxy IPS PKI

Hello Candidate, Greetings from Hungry Bird IT Consulting Services Pvt. Ltd.! We are hiring a Cyber Security Engineer for our client. Location: Hyderabad Industry: IT - Hardware / Networking / IT Security No Of Working Days : 6 days working Timings : 08:00 AM to 05:00 PM Experience: 3+ years in Cyber Security or Computer Networking (if B.Tech), 5+ years in Cyber Security or Computer Networking (if not B.Tech) Key Responsibilities (KRAs) Knowledge of security products from leading OEMs such as Firewall, 2FA, DLP, SIEM, Backup etc. Understanding of cloud security solutions Product OEM and Partner Relationship Management Knowledge and understanding of the IT industry especially System Integrations Strong knowledge and understanding of the cyber security industry and security solutions landscape Strong knowledge and understanding of the security industry and ability to eliminate sales obstacles through creative and adaptive approaches. Knowledge of Routing, Switching with network security devices/systems such as firewalls, IDS, and IPS. Hands-on experience configuring security devices is preferred Should also have security product hands-on experience Good understanding of cloud security solutions and Security architecture and design experience Key Skills & Abilities: Netskope , FortiGate firewalls Strong knowledge of cybersecurity solutions & industry trends Experience with system integration in IT security . Application Process: (Interested candidates can share their CV at aradhana@hungrybird.in or call +91 9959417171.) Please furnish the below-mentioned details that would help us expedite the process. PLEASE MENTION THE RELEVANT POSITION IN THE SUBJECT LINE OF THE EMAIL. Example: KRISHNA, HR MANAGER, 7 YEARS, 20 DAYS NOTICE Name: Position applying for: Total experience: Notice period: Current Salary: Expected Salary: Thanks and Regards Aradhana +91 9959417171

Mandatory Skill Must Have : - Network Security Lead + Checkpoint + Firewall + Fortigate + Web Proxy + Cloud WAF Job Detail : - Profile for Managed Security Device Service Job description: Tech Mahindra is looking for talented security professionals for MSS in India and abroad for the enterprises in different Security Tools like EDR, Proxy, Email Security, IDS/IPS, Identity Security. The technical specialist is expected to effectively manage client expectations, align security program to meet business objectives, work independently, gain buy-in to ideas, and execute project plans and associated milestones. Essential Requirements: In depth hands-on experience in security products like Checkpoint, CISCO ASA, firewall, Checkpoint provider 1 , Cisco ISE , Fortigate, Web Proxy, Prophase (Cloud WAF). Hands Experience with Algosec Firewall Assurance Solution with expertise in configuration and management. Should have implemented, Forcepoint Proxy & Firewall configurations, rules, policies, VPN, High availability, Content Filtering etc. Deep knowledge of security architecture methodologies, Industry best practices and generally accepted information security principles Knowledge of security architecture methodologies, ISO 27001, COBIT, ITIL Responsibilities include: Responsible for security processes, standards and related requirements. Strong knowledge in network security design, architecture and implementation and troubleshooting skills in a large-scale network environment. Strong understanding of contemporary Routing, Firewall, and Load Balancing functions and products Configuration-level experience with Routers, Firewalls, Proxies and Load Balancers from multiple vendors e.g. F5, Cisco. Experience in security products like Proxy, Firewalls, IDS, IPS, Anti-spam, IPSec VPN, SSL VPN, Content Filtering Solution, and Authentication service. Handling critical support calls Should have understanding of implementation of security policies. Experience in facing internal and external Audits ISO27001, PCIDSS, ISMS, ITGC etc. Collaborate with cross-functional teams to drive adherence to program objectives and security processes, and take responsibility for achieving team deliverables, hitting target milestones. Maintain documentation of project data, plan, progress, issues, resolution, risks, task completion, and lessons learned Identify and resolve issues in a timely manner, set clear expectations, inspire and motivate others to perform well. Event correlation and trending to identify threats or risk to operating infrastructure Ability to identify issues, develops and analyzes alternative solutions. Work with internal/external teams to understand business requirements and deliver against project plans. Recommends solutions and implements them as approved. SHOULD be ready to work in shifts Skills Requirements: Should have very good communication skills Min 10 years Information Security/Information Technology/Network Security experience Min 5 years experience as a Team Leader Technical & Security Competence in defined areas. Experience in various security products, methodologies and processes Technical & Security Competence in defined areas. Ability to assist team in technical and professional growth. Network IDS/IPS experience Network event management and event correlation, aggregation and trending experience In-depth knowledge of various security products, methodologies and processes. Must possess the technical/functional skills necessary to understand and manage project engagements Experience in software or hardware product implementations is a plus Education : BE / B.Tech / ME / M.Tech / MCA Experience: 10 – 12 Years Experience Range : - 8-11 Years"

Job Description:- We are hiring a Network Engineer to work in our growing IT Security team. You will be the single point of contact for all new locations Network and security implementation. To do well in this role you should have a bachelor degree in computer science and experience in the Network & security field. Role & responsibilities Hands on Experience in IT network & Security infrastructure- Switches, Routers & SDWAN technologies Good experience in Switching & Routing Certified in Cisco/Fortigate/HPe Aruba Good Analytical and problem solving skills Experience in IPS, IDS, VPN, & Application url filtering Good knowledge about network Infrastructure and application monitoring tools Experience in vlans, routing tables BGP, VRRP, link aggr etc. Experience in provisioning ILL, MPLS & P2P links Understanding about SDWAN technologies Good knowledge and hands on in Wireless network and security Excellent communication skills Good knowledge in Firewall architecture and Load balancer functioning Preferred candidate profile Hands on Experience in IT network & Security infrastructure- Switches, Routers & SDWAN technologies Good experience in Switching & Routing Certified in Cisco/Fortigate/HPe Aruba Good Analytical and problem solving skills Experience in IPS, IDS, VPN, & Application url filtering Good knowledge about network Infrastructure and application monitoring tools Experience in vlans, routing tables BGP, VRRP, link aggr etc. Experience in provisioning ILL, MPLS & P2P links Understanding about SDWAN technologies Good knowledge and hands on in Wireless network and security Excellent communication skills Good knowledge in Firewall architecture and Load balancer functioning Interested candidates pls share CV on smita.r@dmartindia.com or share CV on WhatsApp on 8828228227 HR Team.

Description Position at GroupM GroupM is the world s largest media investment company and are a part of WPP. In fact, we are responsible for one in every three ads you see globally. We are currently looking for a Group Head - Activations to join us. At GroupM APAC, our people are our strength, which is why fostering a culture of diversity and inclusion is important to us. Reporting of the role This role reports to: Business Director (Events and Activations) 3 Best Things About The Job Working with brands across categories, ranging from traditional ones to more digitally evolved brands. Work with best in business media partners teams. Attain strong understanding of cross channel media strategy by working on diversified category teams In This Role, Your Goals Will Be In three months: Understanding of categories and brand objectives for the year Proactively take initiative towards the agencys goal for the year. In Six Months Successfully develop liaisons internally and externally with partners clients. Excellent trouble shooter and a backbone for the team. In depth understanding of the In-house and partner products/tools, to demonstrate the same during client conversations Oversee the day-to-day management of campaigns. Coordinate communication with the servicing team before, during, and after campaigns. In Twelve Months Worked on Award winning work Built high credibility with the team client What Your Day Job Looks Like Creating new assets, associating with existing IPs and maintaining assets to achieve our business goals in a sustainable fashion. Working closely with the reporting manager, business team and the client to understand, debrief and execute activation briefs with varying turnaround times. Managing relationships with external partners to ensure smooth flawless execution during projects. Develop strategy basis, client brief and understanding. Collaborate with internal external teams to plan and develop deliver Stay up-to-date with developments and generate new ideas to draw audience s attention Performing well under deadlines and being meticulous with detail What You ll Bring Proven work experience in experiential marketing as an client servicing / operations role. Professionals having a blend of strategic thought process, a creative point of view business quotient to drive projects Negotiate with partners to arrive at best possible budgets and drive profitability Attention to detail Should have a strong knowledge of the new innovations in the field of experiential marketing Good organizational and time-management skills Demonstrate initiative and drive Minimum Qualifications Minimum 8-10years of relevant experience Good communication skills Self-motivated and results-oriented, with a passion for driving growth. Flexibility to travel as needed to meet campaign objectives. More About GroupM OOH As a part of GroupM, powered by WPP, GroupM OOH Solutions encapsulates the entire spectrum of OOH practices including Cinema, Experiential, Activations and Rural advertising. A part of the largest and most innovative media planning agency, we use dynamic data and technology to transform consumer attention into active journeys.

Description Position at GroupM GroupM is the world s largest media investment company and are a part of WPP. In fact, we are responsible for one in every three ads you see globally. We are currently looking for a Group Head - Activations to join us. At GroupM APAC, our people are our strength, which is why fostering a culture of diversity and inclusion is important to us. Reporting of the role This role reports to: Business Director (Events and Activations) 3 Best Things About The Job Working with brands across categories, ranging from traditional ones to more digitally evolved brands. Work with best in business media partners teams. Attain strong understanding of cross channel media strategy by working on diversified category teams In This Role, Your Goals Will Be In three months: Understanding of categories and brand objectives for the year Proactively take initiative towards the agencys goal for the year. In Six Months Successfully develop liaisons internally and externally with partners clients. Excellent trouble shooter and a backbone for the team. In depth understanding of the In-house and partner products/tools, to demonstrate the same during client conversations Oversee the day-to-day management of campaigns. Coordinate communication with the servicing team before, during, and after campaigns. In Twelve Months Worked on Award winning work Built high credibility with the team client What Your Day Job Looks Like Creating new assets, associating with existing IPs and maintaining assets to achieve our business goals in a sustainable fashion. Working closely with the reporting manager, business team and the client to understand, debrief and execute activation briefs with varying turnaround times. Managing relationships with external partners to ensure smooth flawless execution during projects. Develop strategy basis, client brief and understanding. Collaborate with internal external teams to plan and develop deliver Stay up-to-date with developments and generate new ideas to draw audience s attention Performing well under deadlines and being meticulous with detail What You ll Bring Proven work experience in experiential marketing as an client servicing / operations role. Professionals having a blend of strategic thought process, a creative point of view business quotient to drive projects Negotiate with partners to arrive at best possible budgets and drive profitability Attention to detail Should have a strong knowledge of the new innovations in the field of experiential marketing Good organizational and time-management skills Demonstrate initiative and drive Minimum Qualifications Minimum 8-10years of relevant experience Good communication skills Self-motivated and results-oriented, with a passion for driving growth. Flexibility to travel as needed to meet campaign objectives. More About GroupM OOH As a part of GroupM, powered by WPP, GroupM OOH Solutions encapsulates the entire spectrum of OOH practices including Cinema, Experiential, Activations and Rural advertising. A part of the largest and most innovative media planning agency, we use dynamic data and technology to transform consumer attention into active journeys.

Job details: Exp - 3+years Work Location - Mumbai(Kandivali) Roles and Responsibilities: Hands on experience of incident analysis malware research, SOC, or any other similar security incident response experience. Hands on Experience with any SIEM Solution (LogRhythm, Qradar, Splunk, etc) Fundamental understanding of security tools such as IDS/IPS, web proxies, DLP, CASB, DNS security, DDoS protection, firewalls, and cloud alerts/events Knowledge of NIST and MITRE ATTCK security frameworks Knowledge of Microsoft Windows systems including active directory and Unix/Linux systems Experience analyzing and inspecting log files, network packets, and any other security tool information output from multiple system types Familiar with basic reverse engineering principles and understand of malware, rootkits, TCP/UDP packets, network protocols Team-oriented and skilled in working within a collaborative environment Ability to effectively multi-task, prioritize and execute tasks in a high-pressure environment Required flexibility to work in a 24x7 environment. Experience with technical analysis of email headers, links, and attachments to determine if an email is malicious, and then executing remediation techniques to protect the environment.

Job Summary: We are looking for a seasoned Cybersecurity Solution Architect to join our team. The ideal candidate will have a deep understanding of cybersecurity principles, extensive experience in designing secure IT infrastructure solutions, and a proven track record in driving security initiatives. This role will involve collaborating with clients to understand their security needs and architecting solutions that align with their business goals. Key Responsibilities: Design and implement comprehensive cybersecurity solutions for IT infrastructure. Conduct security assessments and gap analysis to identify vulnerabilities and recommend remediation strategies. Develop and maintain security architecture artifacts (models, templates, standards, and procedures). Collaborate with cross-functional teams to ensure seamless integration of security solutions. Stay updated on the latest cybersecurity threats, technologies, and regulatory requirements. Provide technical leadership and guidance to clients and internal teams. Support pre-sales activities by providing technical expertise and designing security solutions for proposals. Conduct risk assessments and develop risk management strategies. Ensure compliance with industry standards and best practices (e.g., ISO 27001, NIST). Mentor and train junior staff on cybersecurity practices and principles. Qualifications: Bachelor s degree in computer science, Information Technology, or a related field. Master s degree preferred. Minimum of 5 years of experience in cybersecurity, with at least 3 years in a solution architect role. Professional certifications such as CISSP, CISM, CEH, or equivalent. Strong knowledge of cybersecurity frameworks, protocols, and best practices. Experience with security technologies such as firewalls, IDS/IPS, SIEM, DLP, and endpoint protection. Familiarity with cloud security (AWS, Azure, GCP) and hybrid cloud environments. Excellent problem-solving skills and the ability to think strategically. Strong communication and interpersonal skills. Ability to work independently and as part of a team. Preferred Skills: Experience in IT infrastructure design and implementation. Knowledge of software development and secure coding practices. Understanding of regulatory requirements and industry standards. Experience with network security and architecture. Why Join Us: Be part of a dynamic and innovative team. Opportunity to work on cutting-edge cybersecurity projects. Competitive salary and benefits package. Professional growth and development opportunities

Job Summary: We are looking for a seasoned Cybersecurity Solution Architect to join our team. The ideal candidate will have a deep understanding of cybersecurity principles, extensive experience in designing secure IT infrastructure solutions, and a proven track record in driving security initiatives. This role will involve collaborating with clients to understand their security needs and architecting solutions that align with their business goals. Key Responsibilities: Design and implement comprehensive cybersecurity solutions for IT infrastructure. Conduct security assessments and gap analysis to identify vulnerabilities and recommend remediation strategies. Develop and maintain security architecture artifacts (models, templates, standards, and procedures). Collaborate with cross-functional teams to ensure seamless integration of security solutions. Stay updated on the latest cybersecurity threats, technologies, and regulatory requirements. Provide technical leadership and guidance to clients and internal teams. Support pre-sales activities by providing technical expertise and designing security solutions for proposals. Conduct risk assessments and develop risk management strategies. Ensure compliance with industry standards and best practices (e.g., ISO 27001, NIST). Mentor and train junior staff on cybersecurity practices and principles. Qualifications: Bachelor s degree in computer science, Information Technology, or a related field. Master s degree preferred. Minimum of 5 years of experience in cybersecurity, with at least 3 years in a solution architect role. Professional certifications such as CISSP, CISM, CEH, or equivalent. Strong knowledge of cybersecurity frameworks, protocols, and best practices. Experience with security technologies such as firewalls, IDS/IPS, SIEM, DLP, and endpoint protection. Familiarity with cloud security (AWS, Azure, GCP) and hybrid cloud environments. Excellent problem-solving skills and the ability to think strategically. Strong communication and interpersonal skills. Ability to work independently and as part of a team. Preferred Skills: Experience in IT infrastructure design and implementation. Knowledge of software development and secure coding practices. Understanding of regulatory requirements and industry standards. Experience with network security and architecture. Why Join Us: Be part of a dynamic and innovative team. Opportunity to work on cutting-edge cybersecurity projects. Competitive salary and benefits package. Professional growth and development opportunities

A Lead Network Engineer is a senior-level position responsible for overseeing the design, implementation, and management of an organizations networking infrastructure. This role typically combines both technical expertise and leadership, and it often involves managing a team of network engineers. Key responsibilities of a Lead Network Engineer include: 1. Network Design and Architecture Designing and planning the organizations network infrastructure, including LANs, WANs, and cloud networks. Ensuring the network architecture is scalable, reliable, and secure. Evaluating and selecting networking equipment (routers, switches, firewalls, etc.) based on technical requirements. 2. Network Implementation and Configuration Leading the deployment of new network hardware and software. Configuring routers, switches, firewalls, and other network devices. Ensuring smooth integration of new technologies with the existing infrastructure. 3. Troubleshooting and Support Resolving complex network issues that arise during regular operations. Ensuring minimal network downtime and providing efficient solutions for technical problems. Providing on-call support for network-related issues. 4. Network Security Ensuring that network infrastructure is secure from potential threats. Implementing and maintaining firewalls, VPNs, intrusion detection/prevention systems (IDS/IPS), and other security measures. Conducting regular security audits and vulnerability assessments. 5. Team Leadership and Mentoring Managing a team of network engineers, assigning tasks, and guiding them in day-to-day operations. Mentoring junior engineers, sharing best practices, and developing their technical skills. Overseeing project timelines and resource allocation for network-related projects. 6. Performance Monitoring and Optimization Monitoring network performance using specialized tools to ensure optimal operation. Identifying bottlenecks and implementing strategies to enhance network performance. Managing bandwidth, latency, and network traffic optimization. 7. Collaboration with Other Departments Working with IT teams, system administrators, security teams, and management to ensure network integration with other systems. Coordinating with vendors and service providers for hardware, software, or service needs. 8. Documentation and Reporting Documenting network configurations, changes, and updates. Generating reports on network performance, usage, and security for upper management or clients. 9. Staying Updated with Emerging Technologies Continuously researching new networking technologies (e.g., SDN, 5G, Wi-Fi 6, etc.) to stay ahead of industry trends. Recommending and implementing innovative solutions to improve network efficiency and security.

Are you ready to elevate your career in the rapidly growing field of cloud security? Join our Aumni Cloud Security team, where your expertise in Infrastructure as Code (IaC), Kubernetes, and CI/CD security gates will drive innovation and protect our mission-critical systems. We offer unparalleled opportunities for career growth and a collaborative environment where you can thrive and contribute to meaningful projects. As a Lead Software Engineer at JPMorgan Chase within the Aumni Cloud Security team, your role will be instrumental in safeguarding the security, availability, and integrity of our cloud-based infrastructure and applications. You will work in collaboration with various teams to enforce robust security measures, pinpoint vulnerabilities, and effectively handle security incidents. Your pivotal role will ensure the protection of our organizations sensitive data and uphold a strong security stance in the constantly changing cloud environment. Job Responsibilities Design, write, implement, and review security controls for IaC frameworks (e.g., Terraform, CloudFormation) to ensure secure provisioning and management of cloud resources. Collaborate with development teams to integrate security best practices into the IaC and IaC pipelines. Develop and implement security controls for Kubernetes clusters, ensuring secure configuration, network policies, authentication, and authorization. Conduct regular vulnerability assessments and penetration tests on Kubernetes infrastructure and applications. Define and enforce security gates and best practices for continuous integration and continuous deployment (CI/CD) pipelines. Automate security checks and code analysis to identify and remediate vulnerabilities early in the development lifecycle. Participate in an on-call rotation for security incidents and respond to security events promptly. Conduct root cause analysis of security incidents, document lessons learned, and propose improvements to prevent future incidents. Assist in conducting security assessments, audits, and compliance reviews to ensure adherence to industry standards and regulatory requirements. Implement and maintain security monitoring and logging systems to detect and respond to security events in real-time. Required Qualifications, Capabilities, and Skills Formal training or certification in Cloud Security Engineer concepts with 5+ years of applied experience. Strong knowledge of cloud security principles, best practices, and technologies (AWS). Hands-on experience with IaC frameworks (Terraform, CloudFormation) and configuration management tools. Proficiency in securing Kubernetes clusters, containerization, and microservices architectures. Familiarity with CI/CD pipelines, automated security testing, and secure code review practices. In-depth understanding of incident response methodologies, including detection, analysis, containment, and recovery. Experience with security audits, compliance frameworks, and regulatory requirements. Knowledge of network security, firewalls, IDS/IPS, and vulnerability management tools. Excellent analytical and problem-solving skills, with a keen attention to detail. Preferred Qualifications, Capabilities, and Skills Proven experience interacting with major institutional Emerging investors. Experience with government bond obligations in the region. Bachelors degree in Engineering, Finance, Math, or a related quantitative field.

Are you ready to elevate your career in the rapidly growing field of cloud security? Join our Aumni Cloud Security team, where your expertise in Infrastructure as Code (IaC), Kubernetes, and CI/CD security gates will drive innovation and protect our mission-critical systems. We offer unparalleled opportunities for career growth and a collaborative environment where you can thrive and contribute to meaningful projects. As a Cloud Security Engineer at JPMorgan Chase within the Aumni Cloud Security team, your primary responsibility will be to safeguard the security, availability, and integrity of our cloud-based infrastructure and applications. You will work in collaboration with different teams to enforce stringent security protocols, detect potential vulnerabilities, and manage security incidents efficiently. Your role will be instrumental in preserving our organizations confidential data and upholding a strong security stance in the constantly changing cloud environment. Job Responsibilities Design, write, implement, and review security controls for IaC frameworks (e.g., Terraform, CloudFormation) to ensure secure provisioning and management of cloud resources. Collaborate with development teams to integrate security best practices into the IaC and IaC pipelines. Develop and implement security controls for Kubernetes clusters, ensuring secure configuration, network policies, authentication, and authorization. Conduct regular vulnerability assessments and penetration tests on Kubernetes infrastructure and applications. Define and enforce security gates and best practices for continuous integration and continuous deployment (CI/CD) pipelines. Automate security checks and code analysis to identify and remediate vulnerabilities early in the development lifecycle. Participate in an on-call rotation for security incidents and respond to security events promptly. Conduct root cause analysis of security incidents, document lessons learned, and propose improvements to prevent future incidents. Assist in conducting security assessments, audits, and compliance reviews to ensure adherence to industry standards and regulatory requirements. Implement and maintain security monitoring and logging systems to detect and respond to security events in real-time. Required Qualifications, Capabilities, and Skills Formal training or certification in Cloud Security Engineer concepts and 2+ years of applied experience. Strong knowledge of cloud security principles, best practices, and technologies (AWS). Hands-on experience with IaC frameworks (Terraform, CloudFormation) and configuration management tools. Proficiency in securing Kubernetes clusters, containerization, and microservices architectures. Familiarity with CI/CD pipelines, automated security testing, and secure code review practices. In-depth understanding of incident response methodologies, including detection, analysis, containment, and recovery. Experience with security audits, compliance frameworks, and regulatory requirements. Knowledge of network security, firewalls, IDS/IPS, and vulnerability management tools. Excellent analytical and problem-solving skills, with a keen attention to detail. Preferred Qualifications, Capabilities, and Skills Proven experience interacting with major institutional Emerging investors. Experience with government bond obligations in the region. Bachelors degree in Engineering, Finance, Math, or a related quantitative field.