776 Iso 27001 Jobs - Page 10

About Us Diligent is the AI leader in governance, risk and compliance (GRC) SaaS solutions, helping more than 1 million users and 700,000 board members to clarify risk and elevate governance. The Diligent One Platform gives practitioners, the C-Suite and the board a consolidated view of their entire GRC practice so they can more effectively manage risk, build greater resilience and make better decisions, faster. At Diligent, were building the future with people who think boldly and move fast. Whether youre designing systems that leverage large language models or part of a team reimaging workflows with AI, youll help us unlock entirely new ways of working and thinking. Curiosity is in our DNA, we look for individuals willing to ask the big questions and experiment fearlessly - those who embrace change not as a challenge, but as an opportunity. The future belongs to those who keep learning, and we are building it together. At Diligent, you re not just building the future - you re an agent of positive change, joining a global community on a mission to make an impact. Learn more at diligent.com or follow us on LinkedIn and Facebook Position Overview: As a Senior Staff Security Analyst, you will be a key member of the Security GRC team that identifies, tracks, monitors and advises on security compliance risk both operationally and for third-party vendors. You will have a range of tools for delivery and automation at your disposal and will engage with groups across Security, Engineering, Technology, and Commercial to identify, assess, measure, and treat security and compliance risk. You will also participate in security audits, perform continuous monitoring of controls, and be expected to make recommendations for process improvement. As part of this role, you will have the opportunity to develop key metrics for monitoring control performance and communicating risk, and you will present these to management stakeholders. You will also be expected to independently manage projects and business processes for the group. Key Responsibilities Perform control assessments for design and effectiveness and assess cyber risk Identify, review, assess, and recommend treatment options for control failures Gather, analyze, and report on risk assessment metrics Communicate risk and control objectives to business stakeholders Develop treatment plans with controls owners to mitigate risks and meet compliance needs Contribute to departmental and company-wide documentation for risk management processes Design and implement automated control monitoring and evidence collection processes Identify areas for program improvement or automation Provide mentorship or guidance to junior team members Manage projects and business processes for risk management across product and corporate environments Required Experience/Skills 5+ years of experience of GRC and/or cyber risk management Excellent written and communication skills Experience automating control assessments Strong critical thinking and problem-solving abilities Ability to operate with a high degree of independence Demonstrable experience assessing technical controls for cloud/SaaS environments such as AWS Expertise with NIST Cyber Security Framework, SOC 2, and ISO 27001. Preferred Experience/Skills Working knowledge of secure software development lifecycles, AWS (Amazon Web Services), infrastructure security, and/or security audit Understanding of security control frameworks such as SOC 2, NIST (National Institute of Standards and Technology), or ISO and control harminization BS/BA in Computer Science, Information Technology, or a related field; professional certification (e.g., CompTIA Security+, CISSP) is a plus AWS Certified Cloud Practitioner or equivalent is a plus What Diligent Offers You Creativity is ingrained in our culture. We are innovative collaborators by nature. We thrive in exploring how things can be differently both in our internal processes and to help our clients We care about our people. Diligent offers a flexible work environment, global days of service, comprehensive health benefits, meeting free days, generous time off policy and wellness programs to name a few We have teams all over the world . We may be headquartered in New York City, but we have office hubs in Washington D.C., Vancouver, London, Galway, Budapest, Munich, Bengaluru, Singapore, and Sydney. Diversity is important to us. Growing, maintaining and promoting a diverse team is a top priority for us. We foster and encourage diversity through our Employee Resource Groups and provide access to resources and education to support the education of our team, facilitate dialogue, and foster understanding. Diligent created the modern governance movement. Our world-changing idea is to empower leaders with the technology, insights and connections they need to drive greater impact and accountability - to lead with purpose. Our employees are passionate, smart, and creative people who not only want to help build the software company of the future, but who want to make the world a more sustainable, equitable and better place. Headquartered in New York, Diligent has offices in Washington D.C., London, Galway, Budapest, Vancouver, Bengaluru, Munich, Singapore and Sydney. To foster strong collaboration and connection, this role will follow a hybrid work model. If you are within a commuting distance to one of our Diligent office locations, you will be expected to work onsite at least 50% of the time. We believe that in-person engagement helps drive innovation, teamwork, and a strong sense of community. We are a drug free workplace. Diligent is proud to be an equal opportunity employer. We do not discriminate based on race, color, religious creed, sex, national origin, ancestry, citizenship status, pregnancy, childbirth, physical disability, mental disability, age, military status, protected veteran status, marital status, registered domestic partner or civil union status, gender (including sex stereotyping and gender identity or expression), medical condition (including, but not limited to, cancer related or HIV/AIDS related), genetic information, or sexual orientation in accordance with applicable federal, state and local laws. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. See also Diligents EEO Policy and Know Your Rights . We are committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans in our job application procedures. . To all recruitment agencies: Diligent does not accept unsolicited agency resumes. Please do not forward resumes to our jobs alias, Diligent employees or any other organization location. Diligent is not responsible for any fees related to unsolicited resumes.

About US We at Sails, assist leading companies in designing, developing, and operating the products and services that will define tomorrows world. we specialize on envisioning, designing, engineering and managing digital goods and experiences for high-growth organizations striving to disrupt through innovation and velocity. Our experience helps businesses in fast-growing areas including Hi-tech, manufacturing, banking & financial services, insurance, consumer services, public services, and healthcare to achieve their goals. Our USP s Digital Innovation Passionate Approach Transparent Business Model Job Summary We are looking for an experienced and driven Senior Site Reliability Engineer (SRE) to architect, implement, and maintain robust cloud infrastructure. This role demands a deep understanding of AWS, Kubernetes, ECS, and the ability to build scalable, secure, and highly available infrastructure from scratch. The ideal candidate will be a strong advocate for DevOps principles, automation, and reliability, and will possess the skills to support and optimize complex microservices-based architectures. Key Responsibilities Infrastructure Design & Implementation Design and build highly scalable, fault-tolerant, and secure cloud infrastructure using AWS, Kubernetes, and ECS. Lead efforts in infrastructure as code (IaC) using tools like Terraform or CloudFormation. Develop and enforce best practices for infrastructure provisioning, security, and cost optimization. System Reliability & Performance Ensure availability, performance, scalability, and security of production systems. Implement observability strategies including monitoring, logging, and alerting using tools such as Prometheus, Grafana, ELK, or Datadog. Analyse system performance metrics and proactively identify potential issues and bottlenecks. DevOps & Automation Build and maintain CI/CD pipelines to streamline code deployments across environments. Drive automation in infrastructure provisioning, configuration management, and operational tasks. Ensure repeatable and reliable deployments using containers and orchestration tools like Kubernetes and ECS. Service Management Own the SRE lifecycle, including incident management, postmortems, root cause analysis, and runbook creation. Collaborate closely with development and QA teams to ensure seamless microservices integration, deployment, and lifecycle management. Maintain service-level objectives (SLOs), service-level agreements (SLAs), and error budgets. Security & Compliance Implement and enforce cloud security best practices for networking, identity and access management, and data protection. Support audits, compliance assessments, and vulnerability remediation. Monitor for security anomalies and work with security teams to respond to threats. Technical Skills 6+ years of hands-on experience in Site Reliability Engineering, DevOps, or Cloud Engineering. Expertise in AWS services such as EC2, S3, RDS, IAM, VPC, Lambda, CloudWatch, etc. Strong knowledge of Kubernetes and container orchestration best practices. Experience managing services on Amazon ECS (Fargate or EC2). Proficient in infrastructure-as-code tools like Terraform, CloudFormation, or Pulumi. Skilled in scripting languages such as Python, Bash, or Go. Solid grasp of networking, load balancing, DNS, and firewall rules in cloud environments. Deep understanding of microservices architectures, API gateways, and service meshes. Soft Skills Proven leadership and cross-functional collaboration skills. Strong problem-solving and incident-resolution mindset. Clear communication, documentation, and stakeholder reporting abilities. Passion for continuous improvement and automation. Preferred Qualifications AWS certifications such as AWS Certified DevOps Engineer, Solutions Architect Professional, or equivalent. Familiarity with service meshes like Istio or Linkerd. Experience with serverless architectures and event-driven systems. Knowledge of regulatory compliance (SOC2, ISO 27001, GDPR) in cloud environments. Open Date: Jul-04-2025

Vulnerability Management - Job Title Vulnerability Management x 1 Role Description Responsible for facilitating end to end vulnerability management responsibilities with internal employees and AT&Ts external auditing firms for Service Provider PCI, SOC, and ISO 27001 audits. Key Role and Responsibilities: 1. Schedule and ensure weekly scans are conducted, results are provided to the appropriate Remediation Owners and applicable Critical, High, and medium security risk vulnerabilities are addressed in a timely manner. 2. Schedule and facilitate meetings with internal employees to obtain, review, and analyze device inventory for assets supporting AT&T services in scope for a PCI, SOC, or ISO 27001 audits. 3. Schedule and facilitate meetings with internal employees covering vulnerability scan results providing Remediation Owners with information to help address in scope vulnerabilities to be compliant with PCI and ASPR requirements. 4. Schedule and provide training for internal employees covering vulnerability scanning and remediation for the latest PCI and ASPR requirements. 5. Perform security analysis, drive technical security assessments, and monitor and report on remediation progress. 6. Provide guidance to remediation teams to ensure compliance with regulatory, contractual, and legal requirements. 7. Perform scanning reconciliations to quickly identify in scope devices that were not properly scanned. 8. Follow-up with appropriate representatives to gain an understanding why in scope devices were not scanned and schedule rescans to ensure scanning of all in scope devices. 9. Assist with and perform penetration and segmentation testing for AT&T services. 10. Meet with external auditors as needed to review required audit evidence. 11. Contribute to the overall success of the team by identifying and documenting process improvements and creating and maintaining process documentation. Required Skills 1. Advance project management, time management, Microsoft PowerPoint, Excel, Outlook, and Word skills are required. 2. Advanced verbal and written skills are required. 3. ServiceNow experience using the vulnerability response module. Desired Skills 1. Bachelors degree in Computer Science with an emphasis in information systems is preferred. 2. Minimum of 5 years of experience in IT Operations, external PCI DSS audits, and 3 years of IT Security is preferred. 3. The following certifications are an asset, CISSP, CISM, CCSK, CCSP, PMP, and CISA. Service supported Vulnerability Management Location- Bangalore/Hyderabad Yrs of Exp-5+Yrs

About the Role: We are looking for a skilled and passionate Full Stack Developer with hands-on experience in TypeScript, Angular, Node.js, Express.js, and MySQL to join our product development team. The ideal candidate will be responsible for developing and delivering scalable and high-performance features that directly contribute to our product roadmap. Key Responsibilities: Design, develop, test, and deploy scalable web applications using Angular on the frontend and Node.js with Express.js on the backend. Write clean, maintainable, and efficient code in TypeScript. Build new product features end-to-end from technical design to deployment with a strong focus on usability and performance. Develop and maintain RESTful APIs and backend services. Write complex queries, design and manage schemas, and optimize performance in MySQL databases. Ensure the performance, security, and responsiveness of applications. Desired Candidate Profile: 2 - 4 years of full-stack development experience with strong proficiency in TypeScript, Angular, Node.js, Express.js, and MySQL. Solid understanding of web application architecture, design patterns, and best practices. Experience with building and consuming RESTful APIs. Experience in building scalable products or platforms is a strong plus. About Liminal : Liminal is a compliant and insured digital asset custody and wallet infrastructure provider. Launched in April 2021, Liminal Custody is a CCSS Level 3, SOC Type 2, and ISO 27001 & 27701 certified organization. Based in Singapore, Liminal has operations spread across APAC, MENA, and Europe, along with offices in Singapore,Taiwan , India, and UAE. The company has received an initial approval from VARA. Liminal takes pride in supporting businesses with its qualified and insured custody (self and institutional) that enables stress-free safekeeping of digital assets for institutions. It also provides a cutting-edge wallet infrastructure platform that is secure, compliant, and automated and comes with a plug-and-play architecture for faster onboarding of developers, business partners, and government agencies. Our website - https://www.liminalcustody. com/ Note : This is a work-from-office role based out of our HITEC City office in Hyderabad

About the Role: We are looking for a skilled and passionate Full Stack Developer with hands-on experience in TypeScript, Angular, Node.js, Express.js, and MySQL to join our product development team. The ideal candidate will be responsible for developing and delivering scalable and high-performance features that directly contribute to our product roadmap. Key Responsibilities: Design, develop, test, and deploy scalable web applications using Angular on the frontend and Node.js with Express.js on the backend. Write clean, maintainable, and efficient code in TypeScript. Build new product features end-to-end from technical design to deployment with a strong focus on usability and performance. Develop and maintain RESTful APIs and backend services. Write complex queries, design and manage schemas, and optimize performance in MySQL databases. Ensure the performance, security, and responsiveness of applications. Desired Candidate Profile: 5+ years of full-stack development experience with strong proficiency in TypeScript, Angular, Node.js, Express.js, and MySQL. Solid understanding of web application architecture, design patterns, and best practices. Experience with building and consuming RESTful APIs. Experience in building scalable products or platforms is a strong plus. About Liminal : Liminal is a compliant and insured digital asset custody and wallet infrastructure provider. Launched in April 2021, Liminal Custody is a CCSS Level 3, SOC Type 2, and ISO 27001 & 27701 certified organization. Based in Singapore, Liminal has operations spread across APAC, MENA, and Europe, along with offices in Singapore,Taiwan , India, and UAE. The company has received an initial approval from VARA. Liminal takes pride in supporting businesses with its qualified and insured custody (self and institutional) that enables stress-free safekeeping of digital assets for institutions. It also provides a cutting-edge wallet infrastructure platform that is secure, compliant, and automated and comes with a plug-and-play architecture for faster onboarding of developers, business partners, and government agencies. Our website - https://www.liminalcustody. com/ Note : This is a work-from-office role based out of our HITEC City office in Hyderabad

Work Flexibility: Hybrid Job Description What you will do: Provide technical leadership and guidance to a team of Web, Embedded and IoT Security engineers. Execute and oversee Penetration Testing and Vulnerability Assessment activities for Embedded Systems and IoT devices. Leverage DevSecOps to embed security testing (SAST, DAST, Host Scanning, ATO Scanning, SBOM Generation) into all phases of SDLC. Develop/review technical documentation (procedures/work instructions/guidance documents) for technical services. Develop and maintain comprehensive test plans, methodologies, and tools for security testing. Conduct in-depth analysis of security vulnerabilities and propose mitigation strategies. Collaborate with cross-functional teams to design and implement secure Embedded and IoT solutions. Lead the SBOM Management program, ensuring accurate identification and documentation of software components and dependencies. Drive continuous improvement initiatives related to Embedded and IoT security, testing, and vulnerability management. What you need: Required Qualifications: Bachelors or Master s in Computer Science Engineering 4 to 7 years of experience Experience with threat modeling, risk assessment, and security architecture reviews for Embedded Systems and IoT solutions. Proficiency in C, CPP & Python programming language Familiarity with relevant standards and frameworks such as OWASP, NIST Cybersecurity Framework, and ISO 27001. Solid understanding of software development lifecycles and methodologies, particularly in the Embedded Systems and IoT context. Preferred Qualifications: Proficiency in using security testing tools such as Burp Suite, Wireshark, Nessus, and Metasploit and DevSecOps principles. Experience in automation of routine tasks using tools like Jenkins and/or scripting languages such as PowerShell, Ruby, or Python. Understanding of Cloud based environments like Azure and AWS. At least one professional certification like ECSA Practical / CPENT / LPT / OSCP / OSWE / OSCE or similar involving practical exams. Travel Percentage: 10%

Lead internal/external security audits (HITRUST, ISO27001, SOC2) collect evidence, map controls, Maintain compliance docs, risk registers, track remediation. Coordinate cross-functional teams, review policies, assess vendors.

** Immediate joiner** The ideal candidate is detail-oriented, collaborative, and passionate about cybersecurity and compliance, with a strong understanding of industry frameworks such as ISO 27001, PCI DSS, and AICPA SOC.

Job Title: Sr GRC Analyst Duration: Full time role Location: Bengaluru (Hybrid) Note: Looking for immediate joiners OR who can join in at least 20-30 days of notice. Job Description: Duties: Perform vendor risk assessments against all security domains Perform technical implementation assessments from a security perspective related to vendor integrations (i.e. API integrations, SFTP integrations, etc.) to validate the secure implementation of the third party service at the client Maintain and expand Customer Trust knowledge base Support customer security assessment requests Support customer audits Skills: Excellent understanding and practical application of industry security frameworks including SANS Critical Security Controls, CIS Controls, ISO 27001, NIST SP 800-53, PCI DSS, and SOC2. Great understanding of IT control frameworks (COBIT) and IT general controls Strong knowledge of information security concepts, risk and controls concepts Strong knowledge of standards such as ISO 27001/2, NIST CSF, NIST 800-53, TSC 2017 (SOC2), PCI DSS, etc. Strong knowledge of security control domains such as Asset Management, Configuration Management, SDLC, Logging and Monitoring, Data Security, Network Security, Security Governance, Identity Access Management, Vulnerability Management, etc. Proficiency in a wide spectrum of technical security controls encompassing logical access control, encryption , data loss prevention, secure coding practices, security architecture, vulnerability management, and network security technologies. Expert in conducting Vendor risk assessments and understand risk exposure of technology deficiencies and translating them to business impact Strong domain experience in security risk assessments Working knowledge of risk treatment and exception processes Strong knowledge of Security architecture design and review including key security controls related to authorization, authentication, and encryption of data in transit/at rest Ability to configure and/or maintain 3rd party customer audit management tools (such as OneTrust Compliance Automation or a similar tool) for automated evidence collection to support customer audits is a plus Ability to configure and/or maintain 3rd party vendor risk management tools (such as OneTrust vendor assessment or a similar tool) for third party risk assessments is a plus One or more certifications such as CISSP, CISA, CISM, CEH, ISO 27001 Lead Auditor and Lead Implementer Open to learning and working on new domains and technology Good written and spoken communications skills to explain and articulate technical concepts effectively to stakeholders including system engineers, and auditors Strong attention to detail and diligence

Contract Job Summary: We are seeking a highly experienced SAP GRC Consultant to join our team remotely. The ideal candidate will have deep expertise in SAP GRC modules, particularly Access Control (AC), Process Control (PC), and Risk Management (RM), along with a strong understanding of security concepts and regulatory compliance. You will play a key role in design, implementation, and support of GRC solutions across enterprise landscapes. Key Responsibilities: Lead and manage end-to-end implementation and support of SAP GRC Access Control (ARM, ARA, EAM, BRM), Process Control , and Risk Management modules. Design and implement workflows, rule sets, and mitigation controls. Perform risk analysis, access request configuration, and emergency access management. Integrate SAP GRC with ECC, S/4HANA, and non-SAP systems. Work with business stakeholders to gather requirements and translate them into technical solutions. Perform GRC upgrades, patches, and performance tuning. Conduct training and knowledge transfer sessions for end-users and administrators. Ensure alignment with SOX, GDPR, and other compliance frameworks. Work collaboratively with SAP Security, Audit, and Functional teams. Create detailed technical documentation and functional specifications. Required Skills & Qualifications: Bachelor s degree in IT, Computer Science, or a related field. 8+ years of hands-on experience in SAP GRC implementation and support. Strong expertise in GRC 12.0/10.x modules (Access Control, Risk Management, Process Control). In-depth understanding of SAP security concepts and role design. Hands-on experience with S/4HANA and Fiori authorization is a plus. Familiarity with compliance standards: SOX, GDPR, ISO 27001, etc. Good analytical, communication, and documentation skills. Ability to work independently in a remote setup and manage client communication effectively. Nice to Have: SAP Security certification or SAP GRC certification Experience with SAP IDM , SAP BTP Security , or SAP Cloud Security Exposure to automation or scripting in GRC processes

Do you want to work in a fun and supportive environment? At One Identity we know that companies with a strong positive culture perform so much better. That is why every day we strive to create a collaborative and inclusive working environment where our people can feel empowered to succeed. We are seeking a n experienced and customer-focused Product Owner to help drive the product vision, roadmap, and execution for One Identity SaaS solutions. You will act as the key liaison between business stakeholders and the engineering team, ensuring delivery of secure, scalable, and user-friendly identity and access management (IAM) capabilities in the cloud. This is a high-impact role that requires a strong understanding of identity governance, cloud technologies, and Agile product development. Responsibilities Own the product backlog for One Identity SaaS scrum teams: prioritizing features, enhancements, and technical debt, and balancing both short-term and long-term objectives -Define and communicate the product vision and roadmap aligned with company goals and customer needs -Work closely with engineering, UX, architecture, Ops, and QA teams to deliver high-quality product increments -Collaborate with stakeholders across the organization to gather requirements and feedback -Serve as the voice of the customer in Agile ceremonies (e.g., sprint planning, reviews, retrospectives) -Write clear and actionable user stories and acceptance criteria -Ensure that features meet business goals, security requirements, and usability standards -Ensure the SaaS solution adheres to industry compliance and security standards such as SOC 2, GDPR, PCI-DSS, and ISO 27001 -Collaborate with security and compliance teams on audit readiness and risk management Qualifications -Degree in computer science, information systems, business, or a related field, and/or 5+ years of equivalent experience -3+ years of experience as a Product Owner or Product Manager in a SaaS or enterprise software environment -Strong understanding of IAM concepts (identity governance, access management, provisioning, etc.) -Experience with Agile/Scrum methodologies, tools like ADO, Confluence, and product analytics platforms -Excellent communication, analytical thinking, and stakeholder management skills -Strong negotiation and prioritization skills to balance technical debt, customer needs, and business goals -Experience working with globally distributed teams and managing products across multiple time zones Nice-to-have -Background in cybersecurity, compliance, or IT infrastructure -Experience with Azure AD, LDAP, SCIM, SAML, and OAuth protocols -Product Owner certification (CSPO, POPM, or equivalent) -Experience with customer-centric product development or design thinking -Familiarity with One Identity products (e.g., OneLogin, One Identity Manager, Active Roles) is highly preferred -Hands-on experience with IAM tools such as SailPoint, Okta, ForgeRock, or CyberArk (in addition to One Identity) Experience with Identity Governance and Administration (IGA) , Privileged Access Management (PAM), or Access Request workflows Company Description One Identity enables organizations of all sizes to better secure, manage, monitor, protect, and analyze information and infrastructure to help fuel innovation and drive their businesses forward. With team members around the globe, we intend to continue to grow revenues and add value to customers. When you join our team, you will have the opportunity to build and develop products at a scale few others can provide. Our product portfolio serves a large base of customers and we are addressing the strategic imperatives for enterprise businesses. Working with some of the most talented employees the industry has to offer, we provide enhanced career opportunities for team members to learn and grow in a rapidly changing environment. Why work with us? -Life at One Identity means collaborating with dedicated professionals with a passion for technology. -When we see something that could be improved, we get to work inventing the solution. -Our people demonstrate our winning culture through positive and meaningful relationships. -We invest in our people and offer a series of programs that enables them to pursue a career that fulfills their potential. -Our team members health and wellness is our priority as well as rewarding them for their hard work. Come join us. For more information, visit us on the web at One Identity Careers | Explore Opportunities with the OI Team Job seekers should be aware of fraudulent job offers from online scammers and only apply to roles listed on quest.com/careers using our applicant system. Note: We do not use text messaging or third-party messaging apps like Telegram to communicate with applicants, so please exercise caution if you are approached in this way and only interact with people claiming to be Quest employees if they have an email address ending in @quest.com or @oneidentity.com #LI-NS1

Oversee daily operations of cloud infrastructure, ensuring high availability, scalability, and security . Monitor and optimize cloud resources for cost efficiency and performance. Implement and maintain backup, disaster recovery, and business continuity plans . Leverage Terraform, CloudFormation, and Ansible for automated provisioning and infrastructure management. Implement and maintain security policies , Ensure compliance with industry standards like PCI-DSS, ISO 27001, and SOC 2 . Ensure system reliability, availability, and scalability using SRE best practices . Establish error budgets, SLIs, SLOs, and SLAs for effective incident management and post-mortems. Develop and execute program plans aligned with organizational goals and customer needs. Collaborate with cross-functional teams (Engineering, Product, Security, and Business) for seamless execution. Define and track Key Performance Indicators (KPIs) for cloud performance, cost optimization, and incident response. Monitor Operational Metrics: Uptime and Availability (e.g., 99.99% SLA compliance) Incident Response Time & Resolution Time MTTR (Mean Time to Recovery), MTBF (Mean Time Between Failures) Cost Efficiency and Resource Utilization Ensure adherence to SLAs for uptime, incident response, and resolution times . Manage escalations and incidents, ensuring root cause analysis and preventive measures . Coordinate with support teams to ensure 24x7 operational support and on-call rotation . Develop and maintain Disaster Recovery (DR) strategies and runbooks . Conduct BCDR drills and simulations to ensure preparedness and minimize downtime. Act as the primary point of contact for customers, ensuring clear communication of operational status, incidents, and resolutions. Conduct regular business reviews to present performance metrics, SLAs, and improvement initiatives. Address customer concerns, gather feedback, and ensure high customer satisfaction and retention . Collaborate with Solution Architects and Cloud Engineers to ensure seamless customer onboarding. Provide guidance and best practices for cloud adoption, cost optimization, and security compliance . Lead a team of Cloud Engineers, DevOps Engineers, and SREs , driving productivity and engagement. Foster a culture of continuous improvement, collaboration, and innovation . Conduct performance reviews, goal setting, and professional development for team members. Identify opportunities for process automation and operational efficiencies . Implement AI-driven monitoring and predictive analytics for proactive incident management. Drive cost optimization initiatives Stay updated on emerging cloud technologies, DevOps tools, and industry best practices Create and maintain operational dashboards for real-time visibility into cloud performance and incidents. Prepare weekly/monthly operational reports for leadership reviews. Maintain detailed SOPs, runbooks, and incident reports . Contribute to strategic planning sessions to align operations with organizational goals. Participate in budget planning and cost optimization initiatives . Key Skills Required: Cloud Platforms: AWS Azure, GCP DevOps Tools: Jenkins, GitHub, Terraform, Ansible, Kubernetes, Prometheus, Grafana Programming/Scripting: Python, Bash, YAML, JSON Security & Compliance: IAM, GuardDuty, CloudTrail, Security Hub Monitoring & Logging: CloudWatch, ELK Stack, Splunk, Prometheus Agile Methodologies: Scrum, Kanban, CI/CD Practices Leadership & Communication: Team Leadership, Customer Interaction, Strategic Planning Join the Cloud4c Talent Community If youre looking for a place that elevates creativity with humanity, work that is as innovative as it is fun, and people who lead with both head and heart, youve found it and our doors are open for you. Click to register with our Talent Community. Well keep your information and reach out to you when we post opportunities in the future that might be a fit. Sign Up

Experience, education, skills, licensure, or training required: Threat intelligence Key member of the first line of defense threat intelligence team Collect, process, and analyze threat information Manage the relationship with any external providers of threat intelligence Communicate threat intelligence to relevant stakeholders to support evidence-based decision making Support the firm s mission to build client trust and confidence regarding information security generally and threat intelligence specifically Stay abreast of industry best practices in relation to threat intelligence Knowledge of threat intelligence sources and analysis methodologies preferred Knowledge of information security standards (e.g., Cyber Essentials, ISF Standard of Good Practice for Information Security, ISO 27001, NIST Cybersecurity Framework, CIS Top 20 Controls) Maintain awareness of the cyber threat landscape and leverage automation to build better detection capabilities Analyze and validate the feasibility of exploits and their impact to Prime based on the difficulty of development/exploitation Recommend patching priorities and timelines based on proof of concepts (POCs), exploits, and the Nike threat landscape Identify, develop, and maintain access to non-standard intel sourcesWHAT YOU BRING Bachelor s degree in Information Technology, Information Security/Assurance, Engineering, or related field of study Have 6-9years of Cyber Threat Intelligence experience Experience in and understanding cyber threat modeling (eg, STRIDE) to identify potential threats Experience in intelligence frameworks and collaboration platforms (MITRE ATTCK, CAPEC, MISP, Malpedia, STIX) Expertise in honeypots/honeynets, canaries, and other active deception tools to identify network attacks Intimate knowledge about information security threat intelligence and thrive on the details of threat analysis, what s possible and what s not, how to determine what s relevant Excellent written and verbal communication skills required, communicate details in a clear, business relevant manner. Experienced in threat validation, incident response Working level knowledge of the following: Python, C, C , Assembly language (ASM) Comfortable creating YARA rules for hunting purposes Has connections within the cyber threat intelligence community, Customer-oriented focus. Take pride in being diligent and self-driven, ethics and ability to manage sensitive material are unquestionable Experience, education, skills, licensure, or training required: Threat intelligence Key member of the first line of defense threat intelligence team Collect, process, and analyze threat information Manage the relationship with any external providers of threat intelligence Communicate threat intelligence to relevant stakeholders to support evidence-based decision making Support the firm s mission to build client trust and confidence regarding information security generally and threat intelligence specifically Stay abreast of industry best practices in relation to threat intelligence Knowledge of threat intelligence sources and analysis methodologies preferred Knowledge of information security standards (e.g., Cyber Essentials, ISF Standard of Good Practice for Information Security, ISO 27001, NIST Cybersecurity Framework, CIS Top 20 Controls) Maintain awareness of the cyber threat landscape and leverage automation to build better detection capabilities Analyze and validate the feasibility of exploits and their impact to Prime based on the difficulty of development/exploitation Recommend patching priorities and timelines based on proof of concepts (POCs), exploits, and the Nike threat landscape Identify, develop, and maintain access to non-standard intel sources WHAT YOU BRING Bachelor s degree in Information Technology, Information Security/Assurance, Engineering, or related field of study Have 6-9years of Cyber Threat Intelligence experience Experience in and understanding cyber threat modeling (eg, STRIDE) to identify potential threats Experience in intelligence frameworks and collaboration platforms (MITRE ATTCK, CAPEC, MISP, Malpedia, STIX) Expertise in honeypots/honeynets, canaries, and other active deception tools to identify network attacks Intimate knowledge about information security threat intelligence and thrive on the details of threat analysis, what s possible and what s not, how to determine what s relevant Excellent written and verbal communication skills required, communicate details in a clear, business relevant manner. Experienced in threat validation, incident response Working level knowledge of the following: Python, C, C , Assembly language (ASM) Comfortable creating YARA rules for hunting purposes Has connections within the cyber threat intelligence community, Customer-oriented focus. Take pride in being diligent and self-driven, ethics and ability to manage sensitive material are unquestionable

Location : Greater Noida (Hybrid) Experience Required : 8+ Years Type : Full-time | Immediate Joiners Preferred Industry : SaaS | Cybersecurity | eKYC | Digital Signatures About Rannlab Technologies At Rannlab, we are on a mission to build intelligent, scalable, and secure technology solutions for businesses and government institutions. Our flagship project a cloud-based Digital Signature Certificate (DSC) platform is transforming how organizations manage eKYC, digital identity, and legally valid document signing. As the product scales, we are seeking experienced engineers who can drive technical excellence and take ownership of mission-critical systems. About the Role We are looking for a Senior .NET Full Stack Developer with deep experience in building secure, scalable SaaS platforms using ASP.NET Core, Angular, and PostgreSQL. This role requires strong fundamentals in system design, database optimization, and third-party API integration. Experience with AI/ML integration and digital signature algorithms will make you an ideal fit. You will work closely with leadership and engineering teams to stabilize the current platform, enhance its performance, and ensure it is ready for enterprise-scale deployments. Key Responsibilities Lead full-stack development using ASP.NET Core, C#, and Angular (v10+) Architect and enhance a multi-tenant SaaS platform with security and scalability in mind Optimize and manage PostgreSQL databases (indexes, slow queries, schema refactoring) Integrate and manage third-party APIs for identity verification, eKYC, payment, and signing workflows Implement robust exception handling, monitoring, and logging practices Collaborate on AI integration efforts to automate workflows such as fraud detection, document parsing, and smart validations Ensure compliance with digital security standards, including secure data transmission, encryption, and digital signing algorithms (e.g., RSA, SHA256) Promote clean, testable, and modular code by applying SOLID principles and clean architecture Lead code reviews, mentor junior developers, and uphold engineering best practices Participate in deployment planning and CI/CD pipeline improvements Required Skills and Experience 8+ years of full-stack development experience in a product or SaaS-based environment Expertise in ASP.NET Core (Web API), C#, and Entity Framework Core Strong frontend development experience using Angular and TypeScript Advanced experience with PostgreSQL, including performance tuning and large dataset handling Solid understanding of eKYC workflows, digital signature algorithms, and data security Proven experience integrating and managing third-party APIs (REST/GraphQL) Familiarity with AI/ML APIs, tools, or libraries for document intelligence or workflow automation Strong knowledge of design patterns, SOLID principles, and secure coding practices Experience with Git, CI/CD tools, and deployment automation Nice to Have Experience working on Digital Certificate Authority, Aadhaar eSign, or identity verification platforms Exposure to cloud services (Azure, AWS) and containerization tools (Docker, Kubernetes) Knowledge of compliance frameworks like ISO 27001, SOC 2, or IT Act regulations Experience with unit testing, test automation, and QA collaboration workflows What We Offer A high-impact role in a fast-growing technology product with national relevance Ownership of architecture and platform quality Fast-paced startup environment with rapid growth opportunities Flexible work culture, collaborative team, and a chance to work on AI + Cybersecurity convergence Job Category: Developer Job Type: Full Time Job Location: Greater Noida Notice Period: 90 Days Monthly Salary: 70K-100K

Location: Greater Noida Experience: 5 Years Type: Full-time | Immediate Joiners Preferred Industry: SaaS | Cybersecurity | eKYC | Digital Signatures About the Role Rannlab Technologies is looking for a highly skilled QA Engineer to take full ownership of testing our large-scale Digital Signature Certificate (DSC) platform. This is not a routine QA role we need someone who can think like a user, break systems like a hacker, and build test automation that scales. As the platform moves towards serving 10,000+ concurrent users , your mission is to ensure 100% reliability, security, and performance from UI to APIs to data layers. Key Responsibilities Design and execute end-to-end test plans for both manual and automated workflows Build and maintain automation test suites using tools like Selenium, Postman, JMeter, or Cypress Perform VAPT (Vulnerability Assessment and Penetration Testing) to identify security loopholes Conduct load, stress, and performance testing to validate platform readiness for 10,000+ concurrent users Collaborate with developers to ensure coverage of unit tests, integration tests, and regression tests Create reusable test templates, data sets, and documentation Own bug tracking , triaging, and sprint QA sign-off Monitor test coverage and continuously optimize test pipelines Verify API responses , authentication flows, and data integrity for digital signature workflows Test across devices and browsers for responsiveness, UI consistency, and accessibility Required Skills & Experience 5 years of QA experience in a product or SaaS environment Proficient in manual testing , test case writing , and bug reporting Hands-on experience with automation tools (Selenium, TestNG, Cypress, or similar) Strong knowledge of VAPT , OWASP top 10, SQL injection, XSS, and other common vulnerabilities Experience with performance testing tools like JMeter , Gatling , or LoadRunner Ability to simulate and test high-concurrency environments (10k+ users) Understanding of REST APIs , JWT , and secure authentication flows Familiarity with Git , CI/CD pipelines , and QA automation integration Knowledge of PostgreSQL basics for data validation Strong debugging skills and a proactive mindset to explore edge cases Nice to Have Experience testing systems involving eKYC , Digital Signatures , or government tech platforms Knowledge of compliance frameworks like ISO 27001 , SOC 2 , or IT Act security protocols Exposure to containerized environments (Docker, Kubernetes) Experience with monitoring tools like Grafana, Prometheus, or ELK stack What You ll Get A chance to test and secure a platform of national importance Ownership over all things QA automation, performance, and security A fast-paced, product-first culture where quality is a top priority Exposure to digital security, SaaS scaling, and high-load systems Job Category: Testing Job Type: Full Time Job Location: Greater Noida Notice Period: 90 Days Monthly Salary: 55K - 65K

About US We at Sails, assist leading companies in designing, developing, and operating the products and services that will define tomorrows world. we specialize on envisioning, designing, engineering and managing digital goods and experiences for high-growth organizations striving to disrupt through innovation and velocity. Our experience helps businesses in fast-growing areas including Hi-tech, manufacturing, banking & financial services, insurance, consumer services, public services, and healthcare to achieve their goals. Our USP s Digital Innovation Passionate Approach Transparent Business Model Job Summary We are looking for an experienced and driven Senior Site Reliability Engineer (SRE) to architect, implement, and maintain robust cloud infrastructure. This role demands a deep understanding of AWS, Kubernetes, ECS, and the ability to build scalable, secure, and highly available infrastructure from scratch. The ideal candidate will be a strong advocate for DevOps principles, automation, and reliability, and will possess the skills to support and optimize complex microservices-based architectures. Key Responsibilities Infrastructure Design & Implementation Design and build highly scalable, fault-tolerant, and secure cloud infrastructure using AWS, Kubernetes, and ECS. Lead efforts in infrastructure as code (IaC) using tools like Terraform or CloudFormation. Develop and enforce best practices for infrastructure provisioning, security, and cost optimization. System Reliability & Performance Ensure availability, performance, scalability, and security of production systems. Implement observability strategies including monitoring, logging, and alerting using tools such as Prometheus, Grafana, ELK, or Datadog. Analyse system performance metrics and proactively identify potential issues and bottlenecks. DevOps & Automation Build and maintain CI/CD pipelines to streamline code deployments across environments. Drive automation in infrastructure provisioning, configuration management, and operational tasks. Ensure repeatable and reliable deployments using containers and orchestration tools like Kubernetes and ECS. Service Management Own the SRE lifecycle, including incident management, postmortems, root cause analysis, and runbook creation. Collaborate closely with development and QA teams to ensure seamless microservices integration, deployment, and lifecycle management. Maintain service-level objectives (SLOs), service-level agreements (SLAs), and error budgets. Security & Compliance Implement and enforce cloud security best practices for networking, identity and access management, and data protection. Support audits, compliance assessments, and vulnerability remediation. Monitor for security anomalies and work with security teams to respond to threats. Technical Skills 6+ years of hands-on experience in Site Reliability Engineering, DevOps, or Cloud Engineering. Expertise in AWS services such as EC2, S3, RDS, IAM, VPC, Lambda, CloudWatch, etc. Strong knowledge of Kubernetes and container orchestration best practices. Experience managing services on Amazon ECS (Fargate or EC2). Proficient in infrastructure-as-code tools like Terraform, CloudFormation, or Pulumi. Skilled in scripting languages such as Python, Bash, or Go. Solid grasp of networking, load balancing, DNS, and firewall rules in cloud environments. Deep understanding of microservices architectures, API gateways, and service meshes. Soft Skills Proven leadership and cross-functional collaboration skills. Strong problem-solving and incident-resolution mindset. Clear communication, documentation, and stakeholder reporting abilities. Passion for continuous improvement and automation. Preferred Qualifications AWS certifications such as AWS Certified DevOps Engineer, Solutions Architect - Professional, or equivalent. Familiarity with service meshes like Istio or Linkerd. Experience with serverless architectures and event-driven systems. Knowledge of regulatory compliance (SOC2, ISO 27001, GDPR) in cloud environments. Open Date: Jul-04-2025

We are looking for highly motivated and technically skilled individuals to join our Cyber Security \u2013 VAPT team. This role offers an opportunity to gain hands-on experience in identifying vulnerabilities, performing penetration tests, and implementing security solutions to protect critical systems and data. As part of the Cyber Security team, you will be working on real-time security assessments, analyzing threat vectors, and providing actionable insights to enhance an organization\u2019s security posture. Requirements - Conduct Vulnerability Assessment & Penetration Testing (VAPT) on web applications, mobile apps, servers, cloud infrastructure, and networks. - Identify, exploit, and document security vulnerabilities using both automated and manual tools. - Prepare comprehensive technical reports with clear explanations of findings, risk levels, and mitigation strategies. - Collaborate with development and infrastructure teams to suggest remediation and patch management. - Perform risk assessments and help enforce security compliance as per industry standards (OWASP Top 10, ISO 27001, NIST). - Monitor new cyber threats and assist in creating incident response protocols. - Use tools like Burp Suite, Nessus, Nmap, Metasploit, Wireshark, Kali Linux, etc. - Stay updated with emerging threats, vulnerabilities, and mitigation techniques. - Education: Pass-out or final semester students awaiting results (2023/2024/2025) - Status: Pursuing students (still in college) are not eligible - Should have basic knowledge of networking, firewalls, ethical hacking, and cybersecurity tools - Good understanding of OWASP Top 10, malware analysis, phishing attacks, etc. - Strong analytical thinking and problem-solving skills - Willingness to learn and grow in the cybersecurity domain

Job : Azure Data Engineer Jobs in Mumbai (J49197)- Job in Mumbai Azure Data Engineer (Job Code : J49197) Job Summary BCA, BCS, BE-Comp/IT, BE-Other, BSc-Comp/IT, BSc-Other, BTech-Comp/IT, BTech-Other Key Skills: Company Description It is a global technology enterprise, focused on delivering excellence in complex digital environment primarily in banking, insurance, capital market ecosystem and online examinations. Our three distinct business units Digital Transformation, DEX, Aujas- Cyber Security & Cloudxchange. io are built on the three base principles of Passion for Excellence , Customer Centricity and Ownership and powered by a 1500+ highly specialized workforce comprising certified technology & business domain experts. With over 20+ years of expertise across large scale complex digital implementations for industries like banking, insurance & capital market, we have been recognized as the Trusted Technology & Knowledge Partner for 150+ customers across India, US and Middle East. We have been assessed at Maturity Level 5 in Capability Maturity Model Integration for Development (CMMI - DEV) and certified for ISO 9001:2015 and ISO 27001:2013 for our information security management systems. Job Description Job Title: Junior Azure Data Engineer Location: Mumbai (Thane) / Ahmedabad Department: Data Analytics Job Overview: We are seeking a Junior Azure Data Engineer to join our data engineering team responsible for building and optimizing scalable cloud-based data platforms. The successful candidate will work closely with cross-functional teams to design and implement data solutions using Azure, Databricks, Python, PySpark, and SQL. The role demands a highly motivated professional with a strong foundation in real-time data processing and cloud-based data lakehouse architecture. You will have the opportunity to work on modern data stack technologies, gain in-depth exposure to enterprise data workflows, and contribute to strategic data initiatives. Key Responsibilities: Data Engineering & Development Develop and maintain cloud-native data pipelines and analytics solutions on Azure and Databricks. Implement ETL/ELT processes using Databricks Delta Lakehouse architecture. Build real-time structured streaming pipelines using PySpark. Database & Modelling Perform data modeling and schema design for relational databases, preferably PostgreSQL. Write optimized and reusable SQL queries for data extraction, transformation, and analysis. Automation & CI/CD Integration Design and deploy CI/CD pipelines to support automated builds, testing, and deployment of data pipelines. Security & Compliance Ensure all solutions adhere to security-first development principles and organizational data governance policies. Qualifications: Education: Bachelor s degree in Computer Science, Information Technology, or a related field. Experience: 3 to 5 years of experience in data engineering with a focus on Azure and Databricks. Skills: Mandatory Skills: Databricks Python PySpark SQL Preferred Skills: Experience in data modeling with PostgreSQL Understanding of Delta Lake architecture Exposure to real-time processing with Structured Streaming Familiarity with secure coding practices and compliance in data environments Strong problem-solving and analytical abilities Ability to work in a fast-paced, collaborative environment

Job Description Job Title: Node. js Developer Location: Mumbai (Thane) / Ahmedabad Department: App Modernization Job Overview: We are looking for skilled Node. js Developers to join our team supporting TATA AIA s digital initiatives. The selected candidate(s) will be involved in designing and developing scalable microservices-based applications with a focus on Node. js, JavaScript, PostgreSQL, and cloud-native DevOps practices. The role offers opportunities to work on a modern technology stack including Prometheus, Grafana, Azure, and CI/CD pipelines, while contributing to real-time digital transformation projects. Key Responsibilities: Backend Development Design and implement RESTful APIs and backend services using Node. js (Express/Fastify). Develop scalable microservices with performance and reliability in mind. Monitoring and Performance Implement observability using Prometheus and Grafana for metrics collection, alerting, and monitoring. Database Data Handling Work with PostgreSQL or other relational databases for data modeling and efficient query handling. CI/CD DevOps Participate in Azure DevOps workflows, including build, deploy, and testing pipelines. Ensure zero-touch deployment and follow modern CI/CD practices. Collaboration Version Control Collaborate using JIRA, Bitbucket, GIT, and contribute to an Agile development environment. Qualifications: Education: Bachelor s degree in Computer Science, Information Technology, or a related field. Experience: 3 to 10 years of hands-on experience in Node. js development based on the role band. Skills: Primary: Node. js Prometheus Microservices Grafana Good Knowledge In: PostgreSQL Azure DevOps Additional Skills: Proficiency in project management tools like JIRA Experience with version control systems such as Bitbucket and GIT Familiarity with CI/CD pipelines and automation tools

We are seeking an experienced Information Security Officer to lead and manage our organization s information security and data compliance functions. The Individual will be central in ensuring data integrity, regulatory compliance, and enterprise-wide security across all business functions. Key Responsibilities: 1. Regulatory & Technical Expertise Maintain a deep understanding of key regulations: DPDP Act, IT Act, SEBI, KRA, IRDAI and ISO 27001. Oversee data classification and handling protocols for sensitive information (e. g. , KYC, Aadhaar, financial records) Evaluate third-party risk and data flow responsibilities (data controllers/processors). Monitor internal systems for vulnerabilities and drive breach incident response processes. Stay current with evolving legal and cybersecurity threats impacting the organization. 2. Security Architecture & Enforcement Design and implement access controls, credential management and 2FA protocols. Enforce device and network security: MDM solutions, VPN-only access, USB and domain restrictions. Ensure full auditing capability (Authentication, Authorization, Accounting) to detect anomalies and trace incidents. 3. Governance & Accountability Set and enforce data security and compliance policies across all departments. Act as the final authority on security decisions, especially during escalations and breaches. Conduct regular employee training, certification, and ensure adherence to a security code of conduct Qualifications & Skills: 8-12 years of experience in cybersecurity, information security, or compliance roles. Proven knowledge of data privacy laws and enterprise-grade security standards. Strong understanding of infrastructure security, access management, and audit systems. Excellent communication skills to influence cross-functional teams and leadership. Ability to lead with authority while balancing business and regulatory needs. Preferred Certifications: CISSP, CISM, ISO 27001 Lead Implementer/Auditor, or equivalent.

Job Summary : We are seeking a skilled and detail-oriented Information Security Specialist to join our team. This role will focus on implementing and maintaining security measures to protect our organizations digital assets, ensuring compliance with industry standards and mitigating security risks. Key Responsibilities : Develop and enforce security policies, standards, and procedures across the organization. Conduct regular security audits, vulnerability assessments. Identify, investigate, and respond to security incidents and breaches. Manage identity and access controls to safeguard data privacy. Monitor security events and manage incident responses. Collaborate with IT to implement security upgrades and patches. Conduct risk assessments, define security controls, and ensure the organization is compliant with industry standards (ISO 27001, NIST). Establish metrics and reporting for ongoing security assessments and improvements.

Hiring Requirements: • Experience: 35 years of hands-on experience in Information Security or a related field. • Certifications: ISO 27001 or ISACA certifications (such as CISA, CISM) preferred. Skills: • Excellent verbal and written communication skills. • Strong professional attitude and collaborative mindset. Knowledge: • Familiarity with Third Party Risk Management (TPRM) processes. • Understanding of IT/security-related contracting is a plus.

About the Role: We are looking for an experienced Senior Engineering Manager to lead and scale our engineering team. This is a hands-on leadership role for someone who is passionate about system architecture, scalable frameworks, and cutting-edge technologies including blockchain. You will play a critical role in designing high-performance backend and frontend systems while mentoring engineering teams to deliver robust, reliable, and secure applications. Responsibilities: Lead, mentor, and manage a team of frontend and backend engineers. Architect and design scalable, maintainable, and secure applications using Typescript, Node.js, Express.js, Angular, and MySQL. Drive engineering best practices, coding standards, and high-quality delivery. Collaborate with Product, Design, and other cross-functional teams to deliver features and products. Conduct architecture reviews and provide technical leadership on complex systems. Guide the team through technical challenges, design decisions, and code reviews. Establish frameworks and reusable components to speed up development cycles. Support performance tuning, security enhancements, and infrastructure scalability. Desired Candidate Profile: Bachelor s/Master s degree in Computer Science, Engineering, or a related field. 15+ years of overall experience in software development with at least 5 years in an engineering leadership role. Strong expertise in architecture design, system frameworks, and distributed systems. Proficiency in Typescript, Node.js, Express.js, Angular, and MySQL. Proven track record in building scalable applications and microservices-based architectures. Deep understanding of software engineering lifecycle, CI/CD practices, and agile methodologies. Good understanding of blockchain technologies, including smart contracts, decentralization principles, and integration with blockchain protocols. Experience in working with cloud environments like AWS/GCP/Azure. Good to have Prior exposure to fintech, Web3, or blockchain-based applications. About Liminal : Liminal is a compliant and insured digital asset custody and wallet infrastructure provider. Launched in April 2021, Liminal Custody is a CCSS Level 3, SOC Type 2, and ISO 27001 & 27701 certified organization. Based in Singapore, Liminal has operations spread across APAC, MENA, and Europe, along with offices in Singapore,Taiwan , India, and UAE. The company has an initial approval from VARA. Liminal takes pride in supporting businesses with its qualified and insured custody (self and institutional) that enables stress-free safekeeping of digital assets for institutions. It also provides a cutting-edge wallet infrastructure platform that is secure, compliant, and automated and comes with a plug-and-play architecture for faster onboarding of developers, business partners, and government agencies. Our website - https://www.liminalcustody. com/

Do you relish the prospect of working with cutting-edge web security platforms? Would you enjoy translating security compliance into business and product requirements? Join our global InfoSec Security Compliance Team! The InfoSec Team safeguards Akamais infrastructure and fosters internal security practices. Security Compliance collaborates with product and platform teams to ensure systems meet safety and compliance standards. Partner with the best Compliance Advisors contribute to Akamais security audits. This role involves assessing vendor risks and explaining compliance measures. As a Security Compliance Specialist II, you will be responsible for: Conducting risk assessments and due diligence for third-party vendors to ensure regulatory and internal compliance. Developing, implement, and enhance third-party risk management frameworks, policies, and procedures. Monitoring and report on third-party risk exposure, ensuring timely mitigation of compliance gaps or control weaknesses. Coordinating with procurement, legal, IT security, and business units to evaluate and manage vendor risks. Supporting audits and regulatory exams related to vendor risk and compliance management activities. Maintaining accurate documentation of vendor risk profiles, assessments, and remediation plans in management systems. Do what you love To be successful in this role you will: 3-5+ years of experience in third-party risk management, compliance, vendor oversight, or a related risk function. Exhibit expertise in regulatory frameworks and industry standards regarding vendor risk, including SOC reports, ISO 27001. Demonstrate analytical, communication, and stakeholder management skills across technical and non-technical teams. Demonstrate exceptional organisational skills and effectively manage multiple vendors and deadlines simultaneously. Demonstrate capability to work independently and collaboratively in a dynamic, regulated environment. Relevant certifications advantageous. Work in a way that works for you Learn what makes Akamai a great place to work Connect with us on social and see what life at Akamai is like! We power and protect life online, by solving the toughest challenges, together. At Akamai, were curious, innovative, collaborative and tenacious. We celebrate diversity of thought and we hold an unwavering belief that we can make a meaningful difference. Our teams use their global perspectives to put customers at the forefront of everything they do, so if you are people-centric, youll thrive here. Working for you At Akamai, we will provide you with opportunities to grow, flourish, and achieve great things. Our benefit options are designed to meet your individual needs for today and in the future. We provide benefits surrounding all aspects of your life: Your health Your finances Your family Your time at work Your time pursuing other endeavors Our benefit plan options are designed to meet your individual needs and budget, both today and in the future. About us Join us Are you seeking an opportunity to make a real difference in a company with a global reach and exciting services and clients? Come join us and grow with a team of people who will energize and inspire you!

Job Title Vulnerability Management x 1 Role Description Responsible for facilitating end to end vulnerability management responsibilities with internal employees and AT&Ts external auditing firms for Service Provider PCI, SOC, and ISO 27001 audits. Key Role and Responsibilities: 1. Schedule and ensure weekly scans are conducted, results are provided to the appropriate Remediation Owners and applicable Critical, High, and medium security risk vulnerabilities are addressed in a timely manner. 2. Schedule and facilitate meetings with internal employees to obtain, review, and analyze device inventory for assets supporting AT&T services in scope for a PCI, SOC, or ISO 27001 audits. 3. Schedule and facilitate meetings with internal employees covering vulnerability scan results providing Remediation Owners with information to help address in scope vulnerabilities to be compliant with PCI and ASPR requirements. 4. Schedule and provide training for internal employees covering vulnerability scanning and remediation for the latest PCI and ASPR requirements. 5. Perform security analysis, drive technical security assessments, and monitor and report on remediation progress. 6. Provide guidance to remediation teams to ensure compliance with regulatory, contractual, and legal requirements. 7. Perform scanning reconciliations to quickly identify in scope devices that were not properly scanned. 8. Follow-up with appropriate representatives to gain an understanding why in scope devices were not scanned and schedule rescans to ensure scanning of all in scope devices. 9. Assist with and perform penetration and segmentation testing for AT&T services. 10. Meet with external auditors as needed to review required audit evidence. 11. Contribute to the overall success of the team by identifying and documenting process improvements and creating and maintaining process documentation. Required Skills 1. Advance project management, time management, Microsoft PowerPoint, Excel, Outlook, and Word skills are required. 2. Advanced verbal and written skills are required. 3. ServiceNow experience using the vulnerability response module. Desired Skills 1. Bachelors degree in Computer Science with an emphasis in information systems is preferred. 2. Minimum of 5 years of experience in IT Operations, external PCI DSS audits, and 3 years of IT Security is preferred. 3. The following certifications are an asset, CISSP, CISM, CCSK, CCSP, PMP, and CISA. Service supported Vulnerability Management Approx. vendor billing rate* (INR /Day) 7600 INR per day.