776 Iso 27001 Jobs - Page 15

For more than 40 years, Accelya has been the industry s partner for change, simplifying airline financial and commercial processes and empowering the air transport community to take better control of the future. Whether partnering with IATA on industry-wide initiatives or enabling digital transformation to simplify airline processes, Accelya drives the airline industry forward and proudly puts control back in the hands of airlines so they can move further, faster. Job Summary: The Specialist - DevOps will lead efforts to optimize and automate the organizations infrastructure and software delivery pipeline. This role requires a deep understanding of cloud services, automation tools, and best practices in CI/CD, with the aim to improve deployment speed, reduce manual processes, and enhance system reliability. Key Responsibilities: Infrastructure Automation & Management: o Design, implement, and maintain scalable infrastructure solutions, leveraging cloud platforms like AWS, Azure, or GCP. o Automate infrastructure provisioning using Infrastructure as Code (IaC) tools such as Terraform, Ansible, or CloudFormation. o Manage configuration and deployment of containerization tools such as Docker and orchestration tools like Kubernetes. Continuous Integration/Continuous Deployment (CI/CD): o Lead the design and management of CI/CD pipelines to ensure efficient, reliable, and scalable software delivery. o Collaborate with development and operations teams to improve automation, reduce release cycle times, and implement best practices. o Ensure the smooth integration of automated testing within CI/CD pipelines for quality assurance. Monitoring & Performance Optimization: o Develop and implement robust monitoring, logging, and alerting systems to ensure high availability and performance. o Monitor infrastructure and application performance using tools like Prometheus, Grafana, or Datadog. o Analyze performance bottlenecks and work on optimizing system performance for scalability and reliability. Security & Compliance: o Implement security best practices in infrastructure management and automation, ensuring compliance with industry standards (e.g., SOC 2, ISO 27001). o Collaborate with security teams to integrate security testing and compliance checks into the CI/CD pipelines. o Manage access controls, secrets management, and vulnerability scans as part of security and compliance measures. Collaboration & Leadership: o Serve as a technical lead and subject matter expert on DevOps practices, mentoring junior team members and collaborating across teams. o Work closely with development, operations, and security teams to establish a culture of DevOps and continuous improvement. o Provide input into project timelines, resource allocation, and risk management. Troubleshooting & Incident Management: o Lead troubleshooting efforts during incidents related to software delivery, infrastructure, or application performance. o Participate in on-call rotations, ensuring swift and effective resolution of critical issues and incidents. o Conduct post-mortems and provide actionable insights to prevent future incidents. Required Skills & Qualifications: Bachelor s degree in Computer Science, Engineering, or related field. 5+ years of experience in DevOps, infrastructure automation, or related roles. Proficiency in cloud platforms (AWS, Azure, GCP) and IaC tools (Terraform, Ansible, CloudFormation). Experience with containerization (Docker) and orchestration tools (Kubernetes). Strong experience in automating CI/CD pipelines using tools like Jenkins, GitLab CI, or CircleCI. Solid understanding of monitoring and logging tools (e.g., Prometheus, Grafana, ELK stack, Datadog). Excellent scripting skills in languages such as Python, Bash, or PowerShell. Familiarity with security best practices in infrastructure and software delivery. Strong problem-solving and communication skills. Preferred Qualifications: Master s degree in Computer Science or related field. Certifications in cloud platforms (AWS Certified DevOps Engineer, Google Cloud DevOps Engineer, etc.). Experience with microservices architecture and serverless computing. Knowledge of regulatory compliance (e.g., SOC 2, HIPAA, GDPR). What does the future of the air transport industry look like to you? Whether you re an industry veteran or someone with experience from other industries, we want to make your ambitions a reality!

With a legacy of over 30 years, Inspirisys has excelled in driving digital transformation through cutting-edge technologies and as a subsidiary of CAC Holdings Corporation Japan, we embrace the core tenets of Japanese work culture, prioritizing quality and attention to detail to ensure our solutions meet the highest standards. This expertise has solidified our position as a trusted partner for industry-leading OEMs in the digital age. We specialize in custom-tailored solutions in Infrastructure, Enterprise Security & Risk Services, Cloud, Banking and Product Engineering & Development, empowering clients to meet their digital objectives. Role Summary: As a Team Lead, you will support the quality team in PMO activities. This role demands a deep understanding of CMMI Dev ML 5 Appraisal and ISO 9001:2015, ISO 14001-2015, and ISO 27001-2013 audits for software development and services projects. Key Responsibilities: Strong experience in ISO 9001:2015 & CMMI Level 5 Dev & Services standards. Hands-on experience as an ATM for CMMI Level 5 Development certification. Experience in frameworks like Agile, SAFe Agile, Kanban and DevOps etc. Knowledge of Statistical Process Analysis methods and tools (Control Charts, Pareto Analysis, Minitab, Crystal Ball etc.) Strong expertise in handling PMO activities. Capability to understand business requirements and design suitable processes. Skilled in identifying gaps/improvement opportunities/risks in the existing QMS. Competence in planning, coordinating, and conducting internal audits. Ability to support business activities and projects as a process facilitator. Qualification: Minimum 8 years of experience in QA as Process facilitator, Auditor etc. A Professional bachelor s degree or postgraduate degree in Science (Regular Course) from an accredited university. Certifications such as ISO 9001:2015 Internal Auditor/LA, Certified ATM, CSM etc. Excellent communications skills. Proficient in MS Office.

Key Responsibilities Architect and Design: Lead the architectural design of highly available, scalable, and secure cloud infrastructure on AWS. Provide expert guidance on AWS best practices and standards, with a security-first mindset Infrastructure as Code (IaC): Develop and maintain sophisticated, reusable IaC modules and pipelines using tools like Terraform, AWS CloudFormation, and Ansible to automate the provisioning and management of our infrastructure CI/CD and DevOps: Design, implement, and manage robust and secure CI/CD pipelines for application and infrastructure deployments. Champion a DevSecOps culture across the organization Cost Optimization: Continuously monitor and optimize AWS resource utilization to manage costs effectively. Develop and implement strategies for cost savings and resource efficiency Monitoring and Observability: Establish and maintain comprehensive monitoring, logging, and alerting solutions using tools like AWS CloudWatch, Datadog, Prometheus, and Grafana to ensure high availability and performance Technical Leadership and Mentorship: Provide technical guidance and mentorship to junior and mid-level engineers. Lead by example in writing clean, efficient, and well-documented code Collaboration: Work closely with development, operations, and GRC (Governance, Risk, and Compliance) teams to ensure seamless and secure application deployments Strategic Planning: Contribute to the development of the long-term cloud strategy and roadmap. Evaluate new AWS services and technologies to drive innovation and efficiency Troubleshooting and Incident Response: Act as a final escalation point for complex technical and security issues. Lead incident response and root cause analysis efforts Ideal Candidate Bachelors or Masters degree in Computer Science, Information Technology, or a related field 10+ years of professional experience in a cloud engineering or infrastructure role with a primary focus on AWS Expert-level knowledge of core AWS services, including but not limited to: Compute: EC2, Lambda, EKS, ECS Storage: S3, EBS, Glacier, RDS, DynamoDB Networking: VPC, Route 53, ELB, API Gateway Extensive hands-on experience with Infrastructure as Code tools, with a strong preference for Terraform AWS Security Services: Deep, hands-on experience with a wide range of AWS security services, including AWS IAM (Identity and Access Management), AWS WAF (Web Application Firewall), AWS Shield, AWS KMS (Key Management Service), AWS Security Hub, Amazon GuardDuty, and AWS Config Proven experience in designing and managing CI/CD pipelines using tools such as Jenkins, GitLab CI, or AWS CodePipeline Strong proficiency in scripting languages such as Python, Bash, or PowerShell. In-depth knowledge of containerization and orchestration technologies, including Docker and Kubernetes Solid understanding of networking concepts (TCP/IP, DNS, VPN, firewalls). Security Architecture: Proven experience in designing and implementing a secure AWS architecture, including network security (VPC design, security groups, NACLs), and data protection strategies (encryption, key management) Compliance and Governance: Experience implementing and managing cloud environments compliant with industry standards such as ISO 27001, SOC 2, and PCI DSS Threat Detection and Incident Response: Demonstrable experience in developing and implementing threat detection mechanisms and leading incident response procedures within an AWS environment Vulnerability Management: Experience with vulnerability scanning and management for cloud infrastructure and applications DevSecOps: A strong background in integrating security into the CI/CD pipeline, including static and dynamic code analysis, and dependency scanning AWS Certified Security - Specialty certification is highly desirable AWS Certified Solutions Architect - Professional or other advanced AWS certifications Experience with multi-account AWS environments and AWS Organizations Familiarity with serverless architectures and frameworks Knowledge of database administration and optimization in a cloud environment

About Us UnitedLex (erstwhile iRunway India Pvt Ltd) is a data and professional services company delivering outcomes that create value and competitive advantage for legal and the business. Our business is anchored by a passion for innovation brought to life by a global community of diverse individuals determined to deliver on the promise of data mastery, legal acumen, and human ingenuity JOB DESCRIPTION Title: Senior Associate Location - Gurgaon (Fully Onsite) Job Profile: Primary day to day focus is commercial review of contracts and support services across client industries (Manufacturing, Retail & Consumer, Public sector (Including Government), Healthcare, Automotive and Banking & Insurance) , while supporting the client s contracting needs. The role requires the individual to be well skilled in redlining, negotiation, contract interpretation, understanding of the key risks and obligations of contracting and an ability to leverage the contract to be maximum advantage including elements of profit / margin optimization. Candidates should have strengths in teamwork (internal & external customers), contract risk/liability assessment and problem-solving. They must also have the interpersonal skills to build strong relationships with internal clients. Candidates should be experienced in working autonomously/remotely from the team/clients but open to seeking advice from senior team members when needed. The role may include local, regional, or global support and may also require travel from time to time. Responsibilities Provide advice and support in connection with a range of contract types, including drafting and reviewing, negotiating, escalating and at times, approving. Work in tandem with a Team Lead, to assess and draft contractual provisions. Adherence to client policies, procedures, and processes. Ensure that contracts and proposals are properly entered into organizational databases and securely maintained. Perform appropriate clinical, administrative and operational research to support proposal and contract development. Engage relevant stakeholders in negotiation decisions involving legal or regulatory requirements, contract standards and cost targets. Maintain deadlines on deliverables and communicate on an ongoing basis with business partners and internal clients about contractual issues. UnitedLex is committed to preserving the confidentiality, integrity and availability of all the physical and electronic information assets throughout the organization. Consistent with the UnitedLex ISMS policy and the ISO 27001 standard, every employee is responsible for complying with UnitedLex information security policies and reporting all security concerns, weaknesses and breaches. Qualifications LLB required (or regional equivalent education). 4+ years of experience in law firm and/or global corporation. Outsourcing/supplier experience desirable. Redlining experience is must. Contract and commercial drafting and assessment experience required, including exposure to high levels of client (internal or external) engagement. Ability to work remotely and within a team, build relationships with other business functions (legal, finance, compliance etc.). Good written and verbal communication skills in the local language and English. Demonstrable knowledge and judgment about contractual and commercial risks/issues in transactions. Demonstrate ability to think outside the box. Good working knowledge of the fundamental legal provisions of commercial contracts. Focused on results. Analytical approach. Please refer to our Privacy Policy at UnitedLex for information, https: / / unitedlex.com / privacy-policy /

Summary Associate with strong expertise in Identity and Access Management (IAM) across AWS and Azure platforms. Associate will independently manage IAM operations, take proactive ownership of projects, and engage effectively with stakeholders. Additionally, the role requires leadership in SOX compliance, as well as internal and external audit activities to ensure adherence to regulatory and organizational standards. About the Role We are looking for a highly skilled Associate with deep expertise in Identity and Access Management (IAM) across both AWS and Azure cloud environments. The candidate will be responsible for independently lead day-to-day IAM operations, including user access provisioning, role management, and policy enforcement to ensure secure and compliant access controls. This role demands proactive ownership of IAM-related projects, from planning and execution to monitoring and optimization, ensuring alignment with Novartis business objectives and IMF standards. The Associate will actively engage with cross-functional stakeholders, including ISC, Service Management, Cloud Platform (AWS & Azure), SOX Methodology team and other business teams, to address access management needs and provide expert guidance. A critical aspect of this position is leading and coordinating SOX compliance activities and internal and external audits related to access governance. The candidate will be expected to develop and maintain documentation, implement remediation actions, and ensure audit readiness. Associate is expected to be detail-oriented, self-driven, and capable of navigating complex environments with a strong focus on compliance, security best practices, and continuous improvement. Leadership Skills and Responsibilities: Lead and coordinate cross-functional teams during SOX compliance and audit cycles, ensuring clear communication and accountability. Drive continuous improvement initiatives, identifying gaps in current IAM processes and implementing effective solutions. Facilitate stakeholder engagement sessions to align IAM strategies with business needs and security policies. Act as the primary point of contact for escalations related to IAM operations and compliance audits. Mentor team members and provide guidance on IAM best practices and compliance requirements. Promote a culture of security awareness and compliance within the team and broader organization. Certifications: (Good to have) AWS Security Specialty Azure Security Engineer (Az-500) CCSK or CCSP CEH, ISO 27001 Our purpose is to reimagine medicine to improve and extend people s lives and our vision is to become the most valued and trusted medicines company in the world. How can we achieve this? With our people. It is our associates that drive us each day to reach our ambitions. Be a part of this mission and join us! Learn more here: https://www. novartis. com / about / strategy / people-and-culture You ll receive: You can find everything you need to know about our benefits and rewards in the Novartis Life Handbook. Commitment to Diversity and Inclusion: Join our Novartis Network: If this role is not suitable to your experience or career goals but you wish to stay connected to hear more about Novartis and our career opportunities, join the Novartis Network here: https://talentnetwork. novartis. com/network Why Novartis: Helping people with disease and their families takes more than innovative science. It takes a community of smart, passionate people like you. Collaborating, supporting and inspiring each other. Combining to achieve breakthroughs that change patients lives. Ready to create a brighter future together? https://www. novartis. com / about / strategy / people-and-culture Join our Novartis Network: Not the right Novartis role for you? Sign up to our talent community to stay connected and learn about suitable career opportunities as soon as they come up: https://talentnetwork. novartis. com/network Benefits and Rewards: Read our handbook to learn about all the ways we ll help you thrive personally and professionally:

Job_Description":" Join Tsaaro as a Senior Data Protection Consultant Lead with Purpose. Deliver Impact. Shape Privacy. Are you an experienced privacy and security professional looking to take the next big step in your career? At Tsaaro , we dont just deliver compliance we redefine how data privacy and security are implemented across industries. Were growing rapidly and are looking for a Senior Data Protection Consultant who thrives in dynamic environments, understands complex regulatory frameworks, and has a track record of delivering real-world, high-impact solutions to clients. About Tsaaro At Tsaaro, privacy and security are not side functions they are our core. Our team includes dedicated data privacy consultants and cybersecurity specialists, all collaborating to empower organizations with tailored, effective, and cost-conscious solutions. We bring a practical, risk-based consulting approach, offering clients actionable insights and hands-on support to help them manage privacy risks, demonstrate compliance, and strengthen their data protection posture. Your Role: Senior Data Protection Consultant As a Senior Consultant, you will serve as a strategic advisor to our clients, leading engagements across privacy governance, compliance readiness, and risk management. Key Responsibilities: Design, implement, and oversee privacy and data protection programs tailored to client needs. Evaluate clients privacy and security controls, identifying gaps and building actionable roadmaps. Lead privacy gap assessments, PIAs , RoPA , DPIAs , and audits across diverse sectors. Provide strategic guidance on regulations including GDPR , CCPA , DPDP Act , and emerging global laws. Develop and review privacy policies, training materials, and compliance documentation. Drive implementation of ISO 27001, ISO 27701, NIST , and other global frameworks. Support incident response planning, breach notification, and Data Subject Rights processes. Conduct internal audits, risk assessments, and ISMS documentation in alignment with certification requirements. Collaborate with cross-functional client teams to deliver end-to-end privacy solutions . Contribute to cybersecurity initiatives including GRC strategy , policy development , and audit readiness . Requirements 2\u20134 years of hands-on experience in data privacy, protection, or cybersecurity consulting. Strong understanding of global privacy laws such as GDPR, CCPA , and others. Solid grasp of ISO 27001, 27701, NIST, and related standards. Experience in privacy assessments, compliance projects, ISMS implementation , and client communication. Certifications such as CIPP/E, CIPM, CIPT , ISO LA/LI (preferred). Excellent written and verbal communication skills, client-facing confidence, and analytical thinking. A mindset that is solution-oriented, collaborative, and growth-driven . Benefits Why Join Tsaaro? Work with one of the most specialized and fast-growing privacy consulting firms in India. Exposure to multinational clients and global regulations . A clear career path with opportunities to lead projects and mentor junior consultants . Ownership of high-impact, strategic engagements from day one. Flexible work culture \u2013 hybrid options available. Ongoing support for certifications, professional development, and learning. From the Tsaaro Team: "At Tsaaro, were building not just a consulting firm, but a community of privacy professionals who care about making a difference. If youre ready to move beyond checklists and become a true advisor, we want you on our team." Ready to Elevate Your Privacy Career? Apply now and be a part of Tsaaros mission to revolutionize privacy and cybersecurity consulting . ","

Join us as a Technology Controls Testing Analyst We ll look to you to protect the bank by assuring that our applications and technology infrastructure is adequate, effective and fit for purpose on an end-to-end basis You ll clearly document any control weaknesses identified within the adequacy and effectiveness assessments and testing undertaken This is a chance to join a talented and supportive team that will help you achieve great exposure as you develop with us Were offering this role at associate level What youll do In this role, you ll work with Information Technology General Controls, including complex Automated Controls and contribute to the ongoing design and development of assurance processes and methodology. You ll also maintain detailed test documentation and reports for the technology you assess, keeping stakeholders informed of testing progress and results, in line with quality expectations. We ll look to you to clearly communicate any identified control weaknesses to the team, relevant business contact or SME. In addition, you ll: Contribute to the development and delivery of an annual risk-based assurance programme Collaborate with business teams, at relevant level, to ensure a comprehensive understanding of controls and their testing procedures Perform walkthroughs with stakeholders on the technology you assess, documenting high quality control testing workpapers Stay up to date with regulatory requirements and industry best practices for technology controls Undertake adequacy and effectiveness assessments of technology controls The skills youll need To excel in this role, you ll have a proven experience of developing and executing test plans on technology with IT General Controls and complex Automated Controls, including adequacy and effectiveness of technology controls. You ll also have: Experience in developing and executing test plans for IT General Controls and complex Automated Controls. Strong understanding control frameworks (e.g., COSO, COBIT) and relevant regulations (e.g., SOX, GDPR, CCPA) and industry standards (e.g., NIST, ISO 27001) and their application in technology and financial processes. Proven ability to perform control testing activities. Excellent communication skills, with the ability to present findings to technical and non-technical audiences. A proactive mindset with a focus on continuous improvement and collaboration. Hours 45 Job Posting Closing Date: 07/07/2025

About Rockwell Automation Rockwell Automation is a global technology leader dedicated to helping the worlds manufacturers become more productive, sustainable, and agile. With over 28,000 employees worldwide, we are proud to support companies that feed the world, deliver life-saving medicine, and drive clean water and green mobility initiatives. We welcome all makers, forward-thinkers, and problem-solvers who are looking for a place to do their best work. If thats you, wed love to have you join us! Job Description The Problem Manager is responsible for owning the end-to-end problem management lifecycle across global NOC/SOC operations. This role ensures effective root cause analysis (RCA), eliminates recurring incidents, and enhances the stability of services spanning Data Center, Network, and Cybersecurity managed services. Location: Noida, India (Hybrid Schedule) Reports to: Manager, Poland Your Responsibilities Lead RCA investigations for major incidents; document and track corrective actions. Develop and maintain a Known Error Database (KEDB). Analyze incident trends and recurring issues to drive systemic improvements. Collaborate with Engineering, Service Delivery, and Vendor teams for permanent fixes. Present problem reviews to customers and internal leadership. Monitor effectiveness of preventive measures and problem resolution plans. Contribute to audit readiness and compliance reporting (e.g., ISO 27001, NIST). The Essentials - You Will Have: 5+ years of experience in problem management or incident response in IT operations. Strong technical understanding of enterprise networks, data centers, and cybersecurity environments. Familiarity with ITIL framework Strong analytical, facilitation, and communication skills. Experience with tools like ServiceNow, Jira, or Remedy. Proficiency in English (minimum B2 level). The Preferred - You Might Also Have: ITIL 4 Practitioner: Problem Management certification Experience with virtualization platforms (VMware, Nutanix). Knowledge of server hardware (Dell, HP, Cisco). Familiarity with network switches (Cisco, HPE, Dell). Experience with Microsoft Windows Servers (2008-2025). Knowledge of backup solutions (Veeam, BackupExec, Cove, etc.). Exposure to MSR solutions (e.g., Cyolo, Claroty). Experience with infrastructure monitoring platforms. Familiarity with firewalls (Cisco, Palo Alto, Fortinet). What We Offer Comprehensive mindfulness programs, including premium Calm membership. Volunteer Paid Time Off (available after 6 months of employment). Company volunteer and donation matching programs. Employee Assistance Program. Personalized wellbeing programs through our OnTrack platform. On-demand digital course library for professional development. ...and other local benefits! Our Commitment At Rockwell Automation, we are committed to building a diverse, inclusive, and authentic workplace. If youre excited about this role but dont meet every qualification, we still encourage you to apply. You might be the perfect fit for this or another role. Note: Employees are expected to work on-site at least on Mondays, Tuesdays, and Thursdays unless business obligations require otherwise. #LI-Hybrid #LI-MS2 Rockwell Automation s hybrid policy aligns that employees are expected to work at a Rockwell location at least Mondays, Tuesdays, and Thursdays unless they have a business obligation out of the office.

About our opportunity We are part of the global CIO function tasked to deliver world-class built-in security in Ericsson. Our 100+ employees organization is global with the main hubs located in Sweden (HQ), India, USA, and the Philippines. We are inviting the application for Head of IT Sec AS Attack Surface Management. In this role, you will have the chance to be part of a passionate global team dedicated to fulfilling Ericsson s emerging journey building a strong, resilient, purposed and sustainable IT Security capability. Mandated to protect our company assets from emerging threats and risks, you will together with your colleagues lead the way to develop the future IT Security concepts and technology roadmaps in Ericsson You will Define and execute the enterprise-wide strategy for attack surface management aligned with the broader cybersecurity roadmap. Build and lead a high-performing ASM team covering asset discovery, vulnerability management, cloud security, penetration testing, and red teaming. Partner with business, IT, DevOps, and architecture teams to embed ASM principles in solution design and lifecycle. Oversee continuous asset discovery and inventory (including shadow IT, rogue systems, and exposed services). Manage vulnerability identification, classification, prioritization, and remediation across infrastructure, applications, and cloud environments. Lead API and third-party attack surface monitoring and ensure proactive risk reduction. Drive adoption of ASM platforms, exposure management tools, and threat intelligence integrations. Define KPIs, KRIs, and reporting for ASM effectiveness and risk posture across business units. Ensure alignment with security frameworks (e.g., NIST CSF, ISO 27001, MITRE ATT&CK) and regulatory compliance. Lead red/purple team exercises to validate security posture and feed improvements into the ASM program. Drive coordination with vulnerability management, SOC, architecture, DevSecOps, and compliance teams. Continuously evaluate ASM capabilities through tabletop exercises and exposure simulations. The Skills You Bring: Bachelor s or master s degree in computer science, Information Security, or related field. 10+ years in cybersecurity with at least 4 years in a leadership role managing attack surface or vulnerability management programs. Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or equivalent. Proven experience in managing hybrid IT environments including cloud (AWS, Azure, GCP), SaaS, and on-premises assets. Expertise in tools such as ASM platforms (e.g., CyCognito, Randori, Microsoft Defender ASM), VM platforms (Tenable, Crowdstrike, Qualys, Rapid7), and API security tools. Deep understanding of cloud security controls, CI/CD pipelines, external threat modeling, and exposure management. Familiarity with MITRE ATT&CK, NIST 800-53/CSF, OWASP Top 10, CIS Benchmarks. Strong leadership, stakeholder management, and team development skills. Ability to communicate technical risks and attack surface exposures in business language to executives and board members. Excellent leadership and people management skills, with the ability to inspire and guide a team of security professionals. Why join Ericsson? What happens once you apply? Primary country and city: India (IN) || Gurgaon Req ID: 768823

About New Relic New Relic is a leader in observability, empowering engineers with real-time insights to build better software, faster. We are deeply committed to fostering an environment of innovation and collaboration, where our technology and people thrive. Our mission is to be the observability platform of choice & the system of intelligence for customers. As the Lead Product Security & Compliance Manager at New Relic, you will play a critical role in ensuring our innovative products meet global compliance standards and customer expectations. You will be a key partner to our product, engineering, legal, and security teams, providing guidance and oversight on a wide range of compliance and regulatory matters. This is an exciting opportunity to build and scale a product compliance program in a fast-paced, high-growth SaaS environment at the forefront of the observability and AI-powered analytics space. This role requires a deep understanding of the evolving regulatory landscape, a strong technical foundation, and proven experience in partnering with engineering teams to embed compliance into the software development lifecycle. What you ll do Serve as the central point of contact for product compliance, working closely with Product Management, Engineering, Legal, Security, and Sales to integrate compliance requirements into the entire product lifecycle, from design to launch and beyond. Shape product capabilities to proactively balance compliance requirements with speed-to-market. Review product features and internal architecture to assess against compliance requirements. Identify and evaluate risks, including oversight and monitoring of our risk program in relation to product features. Stay abreast of global regulatory trends and translate them into actionable insights and requirements for product teams. Identify automation opportunities to enhance the review process in partnership with security and legal teams, incorporating minimum requirements that all capabilities must meet. This role requires: Bachelors degree in Computer Science, Information Security, or related field. Minimum of 8 years of experience as a Security & Compliance Product Manager, Security and Compliance manager, audit experience, FedRAMP experience. Strong knowledge of and experience in security risk management and with frameworks including related regulatory compliance requirements (e.g., SOC 2, ISO 27001, HITRUST, HIPAA, PCI-DSS, and NIST). Knowledge of or experience working with, Cloud technologies/environments, AWS, Azure, GCP, or other related cloud experience. Use creative and critical-thinking skills and, through the development of automation and implementation of procedures that minimize operational overhead, help your stakeholders meet the spirit of security controls. Minimum of 8 years of experience as a Security & Compliance Product Manager, Security and Compliance manager, technical/engineering product manager, audit experience, FedRAMP experience Bonus points if you have List nice-to-have criteria, such as attributes/behavioral values, strongly desired qualifications, and working conditions. Experience with compliance in the context of AI/ML-powered products. Knowledge of government compliance standards such as FedRAMP. Knowledge of/experience working in heavily regulated software or software as a service industry. Familiarity with the observability and application performance monitoring (APM) market. Familiarity with New Relic products and capabilities Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), or other relevant certifications. Fostering a diverse, welcoming and inclusive environment is important to us. We work hard to make everyone feel comfortable bringing their best, most authentic selves to work every day. We celebrate our talented Relics different backgrounds and abilities, and recognize the different paths they took to reach us - including nontraditional ones. Their experiences and perspectives inspire us to make our products and company the best they can be. We re looking for people who feel connected to our mission and values, not just candidates who check off all the boxes. If you require a reasonable accommodation to complete any part of the application or recruiting process, please reach out to resume@newrelic.com . We believe in empowering all Relics to achieve professional and business success through a flexible workforce model. This model allows us to work in a variety of workplaces that best support our success, including fully office-based, fully remote, or hybrid. Our hiring process In compliance with applicable law, all persons hired will be required to verify identity and eligibility to work and to complete employment eligibility verification. Note: Our stewardship of the data of thousands of customers means that a criminal background check is required to join New Relic. We will consider qualified applicants with arrest and conviction records based on individual circumstances and in accordance with applicable law including, but not limited to, the San Francisco Fair Chance Ordinance . Headhunters and recruitment agencies may not submit resumes/CVs through this website or directly to managers. New Relic does not accept unsolicited headhunter and agency resumes, and will not pay fees to any third-party agency or company that does not have a signed agreement with New Relic. Candidates are evaluated based on qualifications, regardless of race, religion, ethnicity, national origin, sex, sexual orientation, gender expression or identity, age, disability, neurodiversity, veteran or marital status, political viewpoint, or other legally protected characteristics. Review our Applicant Privacy Notice at https: / / newrelic.com / termsandconditions / applicant-privacy-policy

Req ID: 328714 NTT DATA strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now. We are currently seeking a Systems Integration Specialist Advisor to join our team in Bengaluru, Karn taka (IN-KA), India (IN). Job Summary: Senior Vulnerability & DevSecOps Engineer We seek a highly skilled and technically proficient Senior Vulnerability & DevSecOps Engineer to join our security team. In this pivotal role, he/she will drive our end-to-end vulnerability management program, from comprehensive scanning and deep analysis to effective remediation and reporting. Leveraging expert-level experience with industry-leading tools like Qualys and Burp Suite, he/she will proactively identify, prioritize, and validate critical vulnerabilities across our expansive hybrid infrastructure, encompassing servers, workstations, and cloud environments (GCP, AWS, Azure). A significant focus of this position involves integrating robust security practices and automation into our CI/CD pipelines. He/she will be instrumental in building, maintaining, and improving automated security testing workflows using tools such as Jenkins, GitLab CI, Azure DevOps, SonarQube, Synk, and ZAP, ensuring security is "shifted left." Proficiency in scripting languages (Python, Bash, Terraform) and automation frameworks like Ansible is essential for developing custom tools, automating patching, configuration hardening, and streamlining compliance checks. He/she will collaborate closely with development and operations teams to embed secure coding principles and foster a DevSecOps culture, ultimately enhancing our security posture and reducing organizational risk. This role demands a deep understanding of vulnerability assessment methodologies (OWASP Top 10, NIST), networking concepts, and diverse operating systems (Windows, Linux). Exceptional analytical skills are required to interpret complex scan results, manually validate findings, and generate advanced reports and dashboards using Power BI and Excel for technical and executive audiences. A proactive problem-solver passionate about automation, application security, and continuous improvement in a dynamic technical landscape. Responsibilities: Vulnerability Scanning and Security Analysis: Perform regular vulnerability scans of servers, workstations, cloud infrastructure, and other assets using Qualys and Burp. Analyze scan results to identify critical vulnerabilities, misconfigurations, and compliance violations. Prioritize vulnerabilities based on risk and business impact. Manually validate and verify vulnerabilities to reduce false positives and refine scan settings. Basic understanding of OWASP Top 10 standards. Remediation and Reporting: Work closely with application teams, system administrators, and other stakeholders to communicate vulnerability findings and guide remediation efforts. Track remediation progress using Excel and other tracking tools. Generate detailed reports on vulnerability trends, remediation status, and overall security posture. Present findings to technical and management audiences. DevSecOps: CI/CD Pipelines: Implement, build, and maintain CI/CD pipelines with security integrated throughout the process. Familiarity with tools like Jenkins, GitLab CI, Azure DevOps Cloud, JFrog, SonarQube, Synk, and ZAP. Some understanding of Google Cloud. Automate vulnerability remediation tasks using Ansible playbooks. Collaborate with development teams to implement secure coding practices and improve application security. Work with DevSecOps engineers to build out automated security testing pipelines. Automation and Scripting: Develop and maintain Ansible playbooks to automate vulnerability patching, configuration hardening, and compliance checks. Use scripting languages (e.g., Python, Bash, Terraform) to create custom tools and scripts for vulnerability analysis and reporting. Continuous Improvement: Continuously evaluate and improve our vulnerability management processes and procedures. Research and recommend new security tools and technologies. Participate in security incident response activities. Technical Skills and Qualifications: Required: 3+ years of experience in security vulnerability scanning and analysis. Expert-level experience with Vulnerability Management Strong understanding of vulnerability assessment methodologies and tools (e.g., OWASP, NIST). Proven experience with automation and configuration management. Understand at least one scripting language (e.g., Python, Bash, PowerShell). Experience with integrating security tools into CI/CD pipelines. Excellent working knowledge of Power BI and Excel for data analysis and reporting. Ability to create complex dashboards and reports. Solid understanding of networking concepts, operating systems (Windows, Linux), and cloud environments (e.g., AWS, Azure, GCP). Excellent communication, collaboration, and problem-solving skills. Ability to work independently and as part of a team. Preferred: Some experience with other security tools such as Burp Suite, Invicti, SonarQube, Zap, etc. Experience with container security (e.g., Docker, Kubernetes). Knowledge of security frameworks such as NIST CSF or ISO 27001. Experience with security incident response. Some experience with SIEM tools (e.g., Splunk, QRadar). Knowledge of application security testing methodologies (SAST, DAST, IAST). At least one of the following Certifications (a plus): Qualys Certified Specialist (QCS) DevSecOps Foundation / Engineer / Professional Certified Information Systems Security Professional (CISSP) Certified Ethical Hacker (CEH)Offensive Security Certified Professional (OSCP) CompTIA Security+ Education: Bachelor s degree in computer science, Information Security, or a related field, or equivalent experience.

In This Role, Your Responsibilities Will Be: 1. Risk Assessment: Participate in periodic risk assessments to identify potential opportunities to reduce risk. Monitor and report on potential risk exposure and compliance status. 2. Compliance: Enable compliance with regulatory requirements such as ISO 27001, EU CRA, NIST SP 800-218, Emerson Policy and Privacy document and IEC62443 standards. Participate in and support internal audits and gap assessment exercises. Assist with monitoring compliance to internal policies and regulatory mandates. Maintain appropriate repository for audit evidence and compliance documentation within scope of responsibilities. Who You Are: You take initiatives and doesn t wait for instructions and proactively seek opportunities to contribute. You adapt quickly to new situations and apply knowledge effectively. Clearly convey ideas and actively listen to others to complete assigned task as planned. For This Role, You Will Need: Governance: Assist with development and maintenance of governance frameworks and policies in consultation with Enterprise Product Security Governance Leader. Provide guidance and maintain related documentation for exceptions and waivers to policies and standards. Assist with review of policies and standards for approval and publication process. Collaborate with Product Group to align GRC initiatives with business objectives and established strategies. Reporting and Communication: Assist with preparation and presentations for reporting GRC activities to Governance Leader Communicate important concerns and potential risk to relevant stakeholders. Provide guidance and support to Product Groups on compliance-related inquiries. Preferred Qualifications That Set You Apart: Bachelor s degree in computer engineering, cybersecurity, information security, risk management, governance, or a related field. 8+ years of experience in information security, with a focus on risk and compliance. Verified experience in conducting audits and assessments Knowledge of compliance requirements (ISO 27001, EU CRA, NIST, etc.). Familiarity with GRC tools and best practices. Strong analytical and problem-solving skills. Effective written and verbal communication skills. Our Culture & Commitment to You: . .

Job Description: Job Summary: We are seeking a talented Security Engineer to join our growing security team. In this role, you will play a critical part in designing, implementing, and managing security controls across key areas, including but not limited to Cloud Security, Endpoint Detection & Response (EDR), Vulnerability Management, SASE/Firewall, Data Leakage Prevention . Key Responsibilities: Design, implement, and maintain security solutions to safeguard cloud environments, endpoints, networks, and applications. Lead or support vulnerability assessments , coordinate remediation activities with IT and development teams, and track mitigation progress. Configure, maintain, and optimize firewall rules and network security policies , ensuring secure and compliant connectivity. Collaborate with cloud engineers and DevOps teams to embed security best practices in cloud infrastructure and deployments. Develop and maintain documentation, including security standards, procedures, and runbooks. Stay current with emerging threats, vulnerabilities, and regulatory requirements, and proactively recommend improvements. Participate in security audits and compliance efforts as needed. Qualifications Required: Bachelor s degree in Computer Science, Information Security, or related field; or equivalent practical experience. 3-5 years of experience working in information security area. Hands-on experience with at least one of the following areas: Cloud Security (AWS, Azure, security configurations and tools) EDR (e.g., CrowdStrike, SentinelOne, Microsoft Defender for Endpoint) Vulnerability Management (e.g., Qualys, Tenable, Rapid7) Firewall Management (e.g., Palo Alto Networks, Fortinet, Cisco ASA) Network Security / SASE / SSE (e.g. Cato, Zscaler, Netscope) Solid understanding of security principles, networking fundamentals, and common threat vectors. Strong problem-solving skills and attention to detail. Excellent communication and collaboration skills. Preferred: Relevant industry certifications (e.g., Security+, CEH, CISSP, Azure Security Engineer, AWS Security Specialty). Scripting or automation skills (e.g., Python, PowerShell) are a plus. Familiarity with compliance frameworks (e.g., ISO 27001, SOC 2, GDPR) is desirable.

We are looking for Quality Assurance Engineer who can manage end to end testing cycle and support in testing responsibilities. Key Responsibilities : Hands-on experience with Functional, Performance, Scalability and Reliability Testing Ability to test, validate and certify high volume datasets Experience in API testing and integration testing is must. Exposure on tools like POSTMAN is mandatory. Exposure to Cypress is a plus Experience in Report Testing (charts, Table, Graphs or any other Visualization) will be a plus Experience in Android Testing Provide regular reports on testing and resolution status, including metrics Review test strategy, test plans and test cases/scenarios for each platforms Using Test Management tools will be a plus. Experience in agile, managing the QA team with agile mindset, working across multiple projects having different scrum teams, helping the team transition to agile, provide advice on challenging situations. At least 2+ years Years of experience in QA Presently working in a CMM Level 5 organization or an ISO 27001 certified organization Thorough knowledge of methodologies of quality assurance and standards Excellent experience in manual and automation testing skills Have good people management skills Performance variable pay Flexible working hour Medical benefits Professional Development-Continuing education, up skilling Exciting Work Culture Organization s Growth Plan Datacultr s vision is to enable convenient financing opportunities for consumers, entrepreneurs and small merchants, helping them combat the Socio-economic problems this segment face due to restricted access to financing. We are on a mission to enable 30 million unbanked & under-served people, access financial services by 2025.

IT Infrastructure Compliance Manager job consist of creation of IT Compliance Framework, track all compliances as per regulatory requirements and to ensure IT Compliance adherence to regulatory requirements. To identify Technology Compliance requirement for IT Infrastructure Units To draft Compliance policies & procedure To work with IT Infra Units to implement compliance controls. To track Status of compliance To remediate noncompliance as per the governance structure To interface with External Auditors for all IT Infra Units To ensure all audit points are closed as per the defined TAT Key Decisions / Dimensions Compliance Status of Control as per the documented policy and procedure Major Challenges To identify all compliance requirement Create a horizontal control framework and track it across IT Infra Units Required Qualifications and Experience a) Qualifications Engineering / Computer Graduate with 3-5 years of Information Security Governance / IT Compliance Experience/IT Audit in BFSI organization Relevant Certifications like CISA/ISO 27001 LA b) Work Experience Prior Experience of RBI/SEBI/IRDA Regulatory requirements for Technology Compliances Prior experience of Implementation & Sustenance of Technology Compliance requirements Working Knowledge of Security Governance Practices across Datacenter, Cloud, Servers, Endpoints, Security Technologies, Application & Database Good Written and Verbal Communication with Presentation Skills Good Team Player and sound in stakeholder management

Rockwell Automation is a global technology leader focused on helping the world s manufacturers be more productive, sustainable, and agile. With more than 28, 000 employees who make the world better every day, we know we have something special. Behind our customers - amazing companies that help feed the world, provide life-saving medicine on a global scale, and focus on clean water and green mobility - our people are energized problem solvers that take pride in how the work we do changes the world for the better. We welcome all makers, forward thinkers, and problem solvers who are looking for a place to do their best work. And if that s you we would love to have you join us! Job Description About Rockwell Automation Rockwell Automation is a global technology leader dedicated to helping the worlds manufacturers become more productive, sustainable, and agile. With over 28, 000 employees worldwide, we are proud to support companies that feed the world, deliver life-saving medicine, and drive clean water and green mobility initiatives. We welcome all makers, forward-thinkers, and problem-solvers who are looking for a place to do their best work. If thats you, wed love to have you join us! Job Description The Problem Manager is responsible for owning the end-to-end problem management lifecycle across global NOC/SOC operations. This role ensures effective root cause analysis (RCA), eliminates recurring incidents, and enhances the stability of services spanning Data Center, Network, and Cybersecurity managed services. Location: Noida, India (Hybrid Schedule) Reports to: Manager, Poland Your Responsibilities Lead RCA investigations for major incidents; document and track corrective actions. Develop and maintain a Known Error Database (KEDB). Analyze incident trends and recurring issues to drive systemic improvements. Collaborate with Engineering, Service Delivery, and Vendor teams for permanent fixes. Present problem reviews to customers and internal leadership. Monitor effectiveness of preventive measures and problem resolution plans. Contribute to audit readiness and compliance reporting (e. g. , ISO 27001, NIST). The Essentials - You Will Have: 5+ years of experience in problem management or incident response in IT operations. Strong technical understanding of enterprise networks, data centers, and cybersecurity environments. Familiarity with ITIL framework Strong analytical, facilitation, and communication skills. Experience with tools like ServiceNow, Jira, or Remedy. Proficiency in English (minimum B2 level). The Preferred - You Might Also Have: ITIL 4 Practitioner: Problem Management certification Experience with virtualization platforms (VMware, Nutanix). Knowledge of server hardware (Dell, HP, Cisco). Familiarity with network switches (Cisco, HPE, Dell). Experience with Microsoft Windows Servers (2008-2025). Knowledge of backup solutions (Veeam, BackupExec, Cove, etc. ). Exposure to MSR solutions (e. g. , Cyolo, Claroty). Experience with infrastructure monitoring platforms. Familiarity with firewalls (Cisco, Palo Alto, Fortinet). What We Offer Comprehensive mindfulness programs, including premium Calm membership. Volunteer Paid Time Off (available after 6 months of employment). Company volunteer and donation matching programs. Employee Assistance Program. Personalized wellbeing programs through our OnTrack platform. On-demand digital course library for professional development. . . . and other local benefits! Our Commitment At Rockwell Automation, we are committed to building a diverse, inclusive, and authentic workplace. If youre excited about this role but dont meet every qualification, we still encourage you to apply. You might be the perfect fit for this or another role. Note: Employees are expected to work on-site at least on Mondays, Tuesdays, and Thursdays unless business obligations require otherwise. #LI-Hybrid #LI-MS2

Position: Cyber Security Engineer Experience: 2 to 4 Yrs Location: Noida Education: B. E. / B. Tech. MCA Candidate Profile Strong experience in Vulnerability Management - vulnerability (infra and app) scans and remediation plans Strong knowledge in CERT-based Infrastructure Vulnerability Assessment & Management Audit support - support auditors mandate on the security system and artefacts Supprt in Governance (Security Operational Tasks support & governance). Compliance and Risk Management. Willing to work in Physical Security and Human Resource Security aspects Security incident management - Managing the end-to-end security incident lifecycle with corrective measures Security Reporting, Meetings & Communication - Prepare and develop security report as contractually required, attend client and Sopra Steria meetings to provide security expertise and advice Authorisation management - should have managed the accounts & controls in the Infra scope Security Patch management - end-to-end coordination and implementation Security product management - Antivirus Management, like TrendMicro, Defender, etc. . . Certification: CISM & ISO 27001 certification is a must

we're looking for a Associate Architect, Enterprise Security to lead the design of secure infrastructure and application architectures across our hybrid cloud environments. This role will focus on ensuring that public, private SaaS platforms and Resmed products are resilient, compliant, and aligned with Resmed s security strategy. you'll bring expertise in infrastructure, application, and API security - helping shape secure design patterns for a modern, distributed enterprise. Let s talk about responsibilities: Design and assess secure architectures across IaaS, PaaS, and SaaS platforms in public, private, and hybrid cloud environments. Collaborate with development, cloud, and enterprise architecture teams to embed security into infrastructure and application design. Lead threat modeling and architecture reviews for high-impact systems, including APIs, web applications, and microservices. Define and promote secure development patterns, including application-layer protections (eg, WAF, API gateways, secure SDLC, IaC scanning). Contribute to the implementation of zero trust principles across network, identity, and application layers. Develop and assess security controls leveraging technologies such as firewalls, ZTNA, SWG, segmentation, IDS/IPS, DNS security, and encryption. Support continuous cloud security posture management using CWPP, CSPM, and other cloud-native security tools. Drive the creation of standards and policies aligned with frameworks such as NIST, CIS, CSA CCM, and ISO 27001. Stay current on emerging threats, cloud vulnerabilities, AI/ML risks, and evolving regulations relevant to digital health and patient data. Mentor junior team members and support cross-functional knowledge-sharing. Let s talk about you: 5+ years of experience in cybersecurity, cloud security, or DevSecOps roles, including architectural leadership. Strong understanding of secure infrastructure and application design in cloud-native environments (AWS, Azure, GCP). Experience with web application firewalls (WAFs), API security (OAuth, JWT) and secure SDLC practices. Hands-on experience with technologies like Kubernetes, Terraform, Kafka, and scripting (Python, JavaScript). Familiarity with cloud security frameworks and controls: NIST, CIS Benchmarks, CSA-CCM, ISO 27017. Understanding of regulatory requirements such as HIPAA, GDPR, PCI DSS, and CCPA. Strong communication and collaboration skills, with the ability to influence both technical and business stakeholders.

Job Title: Lead Consultant- Trust by Design Engineers Career Level: E Introduction to role Are you ready to disrupt an industry and change lives? As a Lead Consultant in Trust by Design Engineering, youll play a pivotal role in embedding security controls and processes into our business systems and products. Your work will directly impact our ability to develop life-changing medicines by ensuring privacy, security, and trust are foundational to our solutions. Collaborate with engineering, product, compliance, and risk teams to enable secure innovation and drive exponential growth. Accountabilities Partner with development and architecture teams to integrate robust security and privacy controls throughout the product lifecycle. Conduct security-by-design reviews, threat modelling, and risk assessments for new and existing solutions. Contribute to the creation, adoption, and continuous improvement of secure development standards, patterns, and reusable components. Recommend and support the implementation of security controls aligned with business objectives and regulatory requirements. Collaborate on incident response plans and support root cause analysis for vulnerabilities or breaches. Promote awareness and adoption of trust-by-design principles across engineering and business teams. Essential Skills/Experience Experience in cyber security, application security, secure architecture, or related roles. Solid understanding of risk management, privacy by design, secure SDLC, and industry security frameworks (e.g., NIST, ISO 27001). Familiarity with cloud platforms (e.g., Azure, AWS, GCP) and implementing their security features. Excellent communication and stakeholder engagement abilities. Relevant certifications (e.g., CISSP, CCSP, CSSLP) are a plus. At AstraZeneca, youll be part of a dynamic environment where innovation thrives! Our work has a direct impact on patients, transforming our ability to develop life-changing medicines. With cutting-edge science combined with leading digital technology platforms and data, we empower the business to perform at its peak. Join us at a crucial stage of our journey in becoming a digital and data-led enterprise. Here, youll have the opportunity to explore new technologies in hackathons, challenge yourself with large data sets, and push new boundaries. Be part of a team that has the backing to innovate, disrupt an industry, and change lives. Ready to make a meaningful impact? Apply now and be part of our journey! 23-Jun-2025

We are hiring AWS DevOps Engineer WAF & FinOps Specialist.. AWS DevOps Engineer WAF & FinOps Specialist - Aabasoft Technologies Pvt. Ltd. AWS DevOps Engineer WAF & FinOps Specialist We are looking for a highly skilled AWS DevOps Engineer with deep expertise in network security , Web Application Firewall (WAF) implementations , and cloud financial management (FinOps) . The ideal candidate will design and manage secure, scalable, and cost-optimized AWS network architectures while ensuring effective protection against cyber threats and aligning with best-in-class cloud financial governance practices. Design, deploy, and manage WAF solutions across AWS and hybrid infrastructures. Configure and administer core AWS networking services including VPCs, Route Tables, Transit Gateway, VPN, and Direct Connect. Collaborate with DevOps, Security, and Infrastructure teams to enforce zero-trust architectures and granular traffic policies . Monitor, assess, and respond to application-layer threats using AWS WAF, Shield, and Firewall Manager. Implement FinOps principles to optimize cloud networking costs and promote cost transparency. Develop and maintain dashboards for network traffic analysis and cost reporting . Partner with cross-functional teams to forecast network usage and reduce data transfer/inter-region costs. Conduct vulnerability assessments and ensure compliance with security frameworks (CIS, NIST, etc.). Automate deployment of network configurations and security policies using Terraform , CloudFormation , or similar IaC tools. Advanced knowledge of AWS networking (VPC, NACLs, Security Groups, Transit Gateway, PrivateLink). Hands-on experience with AWS WAF , AWS Shield , and Firewall Manager . Deep understanding of cloud-native networking and security architectures . Experience in applying FinOps best practices for cost optimization in AWS. Familiarity with AWS billing tools including Cost Explorer, cost allocation tags, and budgets. Experience with CDNs such as CloudFront and application-layer security integrations. Proficiency in scripting languages (e.g., Python , Bash ) and Infrastructure as Code tools. Understanding of regulatory compliance standards (ISO 27001, PCI-DSS, HIPAA) is a plus. AWS Certified Advanced Networking Specialty AWS Certified Security Specialty FinOps Certified Practitioner (FinOps Foundation)

Job_Description":" Job Summary: The IT Compliance and Security Analyst is responsible for ensuringthe organization\u2019s IT infrastructure, policies, and processes comply withregulatory and industry security standards. This role involves conducting riskassessments, managing audits, enforcing security policies, and mitigatingpotential vulnerabilities to protect organizational assets. Key Responsibilities: 1. IT Compliance & Risk Management Ensure adherence to IT security compliance frameworks such as SOC 2, ISO 27001, NIST, HIPAA, GDPR, and PCI-DSS. Conduct risk assessments and gap analyses to identify compliance risks and recommend mitigation strategies. Assist in the development, implementation, and maintenance of IT security policies and procedures. Stay updated on evolving compliance regulations and security best practices. 2. Security Monitoring & Incident Response Review security alerts and investigate potential threats or incidents. Support incident response activities, including forensic analysis, reporting, and mitigation plans. Work with IT teams to ensure security controls are implemented and maintained effectively. 3. Audit & Documentation Own internal and external security audits from IT perspective, including evidence collection and audit coordination and track to closure. Maintain records and documentation related to security controls, compliance reports, and risk assessments. Liaise with stakeholders and follow up diligently until issues are fully resolved or mitigated. Take a 360-degree approach to identifying and prioritising required evidence, ensuring it is provided correctly the first time (FTR \u2013 First Time Right). Ensure all compliance tasks are completed on time and tracked properly, preventing any delays or breaches that could lead to non-compliance. Track audit findings and ensure timely remediation of identified gaps. Conduct rigorous follow-ups on all ongoing tasks, ensuring nothing is overlooked and providing timely updates to the respective stakeholders. 4. Security Awareness &Training Conduct compliance awareness training programs for employees. Educate teams on compliance best practices, requirements. 5. Vendor & Third-PartyCompliance Assess third-party vendors for compliance risks. Ensure vendor contracts align with IT security policies and regulatory requirements. Technical understanding of IT infrastructure-related compliances ensures adherence to compliance standards and all processes. Required Qualifications & Skills: Bachelor\u2019s degree in information security, IT, Computer Science, or a related field. 5+ years of experience in IT compliance, risk management, or audit functions. Able to discuss past role(s) to demonstrate capabilities for this role. Knowledge of security frameworks such as ISO 27001, SOC 2, NIST, GDPR, HIPAA, or PCI-DSS. Experience with IT governance, risk assessment, and regulatory compliance. Strong analytical, problem-solving, and communication skills. Certifications such as CISA, CEH, or Security+ are a plus. Preferred Skills: Familiarity with security tools such as SIEM, vulnerability scanners, patch management, and endpoint protection Experience in cloud security compliance (AWS, Azure, GCP). Understanding of Data Loss Prevention (DLP) and Identity & Access Management (IAM). Ability to work collaboratively with IT, Legal, and business teams. Requirements Job Summary: The IT Compliance and Security Analyst is responsible for ensuringthe organization\u2019s IT infrastructure, policies, and processes comply withregulatory and industry security standards. This role involves conducting riskassessments, managing audits, enforcing security policies, and mitigatingpotential vulnerabilities to protect organizational assets. Key Responsibilities: 1. IT Compliance & Risk Management Ensure adherence to IT security compliance frameworks such as SOC 2, ISO 27001, NIST, HIPAA, GDPR, and PCI-DSS. Conduct risk assessments and gap analyses to identify compliance risks and recommend mitigation strategies. Assist in the development, implementation, and maintenance of IT security policies and procedures. Stay updated on evolving compliance regulations and security best practices. 2. Security Monitoring & Incident Response Review security alerts and investigate potential threats or incidents. Support incident response activities, including forensic analysis, reporting, and mitigation plans. Work with IT teams to ensure security controls are implemented and maintained effectively. 3. Audit & Documentation Own internal and external security audits from IT perspective, including evidence collection and audit coordination and track to closure. Maintain records and documentation related to security controls, compliance reports, and risk assessments. Liaise with stakeholders and follow up diligently until issues are fully resolved or mitigated. Take a 360-degree approach to identifying and prioritising required evidence, ensuring it is provided correctly the first time (FTR \u2013 First Time Right). Ensure all compliance tasks are completed on time and tracked properly, preventing any delays or breaches that could lead to non-compliance. Track audit findings and ensure timely remediation of identified gaps. Conduct rigorous follow-ups on all ongoing tasks, ensuring nothing is overlooked and providing timely updates to the respective stakeholders. 4. Security Awareness &Training Conduct compliance awareness training programs for employees. Educate teams on compliance best practices, requirements. 5. Vendor & Third-PartyCompliance Assess third-party vendors for compliance risks. Ensure vendor contracts align with IT security policies and regulatory requirements. Technical understanding of IT infrastructure-related compliances ensures adherence to compliance standards and all processes. Required Qualifications & Skills: Bachelor\u2019s degree in information security, IT, Computer Science, or a related field. 5+ years of experience in IT compliance, risk management, or audit functions. Able to discuss past role(s) to demonstrate capabilities for this role. Knowledge of security frameworks such as ISO 27001, SOC 2, NIST, GDPR, HIPAA, or PCI-DSS. Experience with IT governance, risk assessment, and regulatory compliance. Strong analytical, problem-solving, and communication skills. Certifications such as CISA, CEH, or Security+ are a plus. Preferred Skills: Familiarity with security tools such as SIEM, vulnerability scanners, patch management, and endpoint protection Experience in cloud security compliance (AWS, Azure, GCP). Understanding of Data Loss Prevention (DLP) and Identity & Access Management (IAM). Ability to work collaboratively with IT, Legal, and business teams.

E Commerce Catalog Executive | Mandaala.com About Parent Company: PrintStop India Pvt Ltd. At PrintStop, we have an 18-year legacy of transforming the printing and customised gifting procurement processes for small to large enterprises. Our commitment to quality and service is reflected in our average customer rating of 4.5 and ISO 9001:2015 and ISO 27001:2022 certifications. We are also certified as a Great Place to Work, with a focus on excellence and employee well-being. Printstop India Pvt Ltd has 2 divisions: For Small and Medium Enterprises - PrintStop.co.in For Large Enterprise - Mandaala.com About Enterprise Solution Division: Mandaala.com At Mandaala, we digitally transform how large enterprises manage merchandise engagement programs for employees and other stakeholders through our #MerchTech Solutions. We ve partnered with over 150 leading brands, including Infosys, Capgemini, HDFC Bank, and Niva Bupa Health, to streamline their merchandise programs by combining company-branded merchandise (SWAG) with technology. Why Join Mandaala? At Mandaala - PrintStop, evolution isn t just what we do, it s who we are. For 18 years, we ve challenged the norm, reinventing ourselves time and again to stay ahead and create real impact. Innovation, agility, and ownership drive us as we shape the future of #MerchTech. Our culture is rooted in "I CARE FOR": Innovation, Customer Centricity, Agility, Recognition, Ethics, Fun, Openness, Ownership, and Respect. It s more than just words; it s the heartbeat of everything we do. Be Part of Something Bigger, The MerchTech Movement Join a fast-growing #MerchTech company that is transforming how large enterprises engage through merchandise. Create an Impact Work with Fortune 500 companies to build exceptional employee experiences with merchandise. Join a Passionate Team Collaborate with a passionate team pushing the boundaries of engagement through custom merchandise. Be part of a company that evolves, adapts, and innovates, always. Your Role: E Commerce Catalog Executive (Desk Role) We are looking for a detail-oriented and organized E-commerce Catalog Executive to manage product listings, attributes, and data on our e-commerce platform. This role ensures that product information is accurate, appealing, and optimized for both internal systems and customer experience. Type: Full-time role with exciting growth opportunities. Location: Prabhadevi/Parel - just a 5-minute walk from the station for an easy commute. Working Days: Monday to Saturday (one Saturday off per month) Key Responsibilties - Product Listing & Onboarding - Add new products to the website with complete specifications, pricing, tags, and images. Coordinate with design, inventory, and procurement teams to collect product data. Write and edit product descriptions with SEO-friendly content where required. Catalog Management - Update product information, availability status, categories, and filters as required. Manage bulk uploads through CSV or backend tools across marketplaces or platforms (e.g., Shopify, WooCommerce, Magento, Amazon, Flipkart). Ensure consistency of data across all SKUs (naming, format, tags, categorization). Content Accuracy & QC - Perform routine audits of product listings to ensure accuracy and fix discrepancies. Optimize product titles, meta tags, and content to improve visibility and conversion. Ensure proper product categorization and avoid duplication. Reporting & Insights - Track and report listing issues, product performance, and catalog health. Flag missing content, out-of-stock SKUs, or poor-performing listings to relevant teams. Key Skills & Tools: Catalog Tools Excel, Google Sheets, CSV Uploads, Backend CMS Platforms Shopify, Magento, WooCommerce, Amazon Seller Central (as applicable) Content Basic SEO, Product Copywriting, Keyword Tagging Soft Skills Attention to detail, coordination, problem-solving. Qualification - Bachelor s degree in Business, Commerce, Marketing, or related field. 1-3 years of experience in catalog/product management in an e-commerce setup. Bonus: Experience with marketplaces like Amazon, Flipkart, or D2C platforms. Ready to Join the Mandaala Merch Tech Movement? If you re a proactive communicator, relationship builder, and go-getter who loves creating new business opportunities, we want to hear from you! Just send us your resume and a quick note on why you d be a great fit.

The Deskside Support Engineer I provides end user support across the organization s desktop, network, telephony and application(s) environment. The candidate will maintain, analyze, troubleshoot and repair/replace/upgrade computer systems, hardware, software and computer peripherals, as well as serve as an escalation point to ensure tickets/incidents are resolved according to SLAs. The position requires excellent communication skills, attention to detail and problem-solving capabilities. Excellent proven skills on service management fundamentals with hands on expertise in Problem Management, Incident Management, RCA & Ticket Analysis for deskside scoped equipments. To support/trouble shooting the local servers and network devices with the help of Network and Servers team remotely. Intermediate knowledge and understanding of Network, Server & Voice infrastructure for strong troubleshooting & problem resolution skills. Adept at Ping & Tracert Analysis, voice infrastructure at deskside level, capturing AD GP test outputs for analysis, troubleshooting DNS resolution errors, use of net commands, IP config etc. & maintaining Hub room and Data Center Structured Cabling. Hands on experience on End user computing like Desktops, Laptops, Hard Phones, Wifi devices, etc. on both Hardware & Software aspects. Hardware - expertise in replacing motherboard, SMPS, RAM, Laptop LCD Screen, Laptop keyboard, Avaya hard phone config. Video Conferencing equipments etc. Software- OS level troubleshooting in Win 7 & Win 10, MS Office 2013 & Above package, Outlook config, Skype For Business, One Drive, Softphone, Antivirus troubleshooting, HDD to HDD Imaging / Ghosting, Printer, Scanner, Bio Metric, Data Encryptions, VPN troubleshooting, Wifi Config, Video Conferencing. Firmware updates for deskside equipment like Cisco & Avaya phones. Evaluate scenarios to effectively capture & recommend inputs to help make decision on process exceptions Trouble shooting & co-ordination for high impact/severity 1/2 issues & communicating real time updates to the BRC team. Hands on experience on IT Support / IT Operations & End to end IT Service Delivery, Shift Management Supporting onboarding New Accounts, managing Ramp Up & Ramp Downs, Account Movements. Manage BCP testing & failover by completing/coordinating checkouts on the floor. Ensuring compliance and security for the site. Maintaining systems compliance and audits as per COPC, ISO 27001 etc. standards & ensure 100% contract compliance Hands on handling of IT Ticket resolutions on ITIL based framework, maintaining systems compliance Location: IND Bangalore - Manyata Blk D4, 1st Flr Language Requirements:

Job Title: Associate SOC AnalystJob Location: Baner, Pune (WFO)Experience: 0-1 YearsShift: 24/7- 5 Days Rotation ShiftQualification: Bachelors degreeJob Description:Futurism Technologies is looking for a detail-oriented and proactive Associate SOC Analyst to join our Security Operations Center team The ideal candidate should have a strong foundation in cybersecurity principles, a keen eye for identifying threats, and a passion for continuous learning in the ever-evolving cybersecurity landscape As an Associate SOC Analyst, you will play a key role in monitoring, analyzing, and responding to security incidents to ensure the safety and integrity of our clients information systems Skills & Responsibilities:Monitoring & Analysis: Continuously monitor security alerts and events from SIEM tools and other monitoring systems Analyze logs and data from firewalls, intrusion detection/prevention systems (IDS/IPS), endpoints, and network devices to detect suspicious activity Identify potential security incidents and escalate as necessary following predefined procedures Incident Response: Assist in the triage, containment, and remediation of security incidents Document all incidents and responses in detail for auditing and future reference Support root cause analysis and help improve incident response plans Threat Intelligence: Stay updated with emerging threats, vulnerabilities, and attack techniques Collaborate with the security team to implement threat intelligence findings into monitoring and response processes Reporting & Documentation: Maintain up-to-date incident logs and case documentation in the ticketing system Generate regular reports on SOC activity, trends, and performance metrics Compliance & Best Practices: Adhere to industry-standard security practices and organizational policies Assist in the development and refinement of SOC processes, procedures, and playbooks Must-have Skills: Strong understanding of cybersecurity fundamentals, including networking, malware, vulnerabilities, and attack vectors Familiarity with SIEM tools (e g, Splunk, IBM QRadar, ArcSight, etc ) Basic knowledge of security frameworks and standards (NIST, ISO 27001, MITRE ATT&CK) Excellent verbal and written communication skills Analytical mindset with strong problem-solving abilities Ability to handle stress in high-pressure environments and make sound decisions quickly Team player with a commitment to continuous improvement and learning Proficient in Microsoft Office and documentation tools Willingness to work night shifts and adapt to a 24x7 environment as required

Company Profile: Job Title: Security Architect Position: Associate Consultant Experience:8+Years Category: Software Development/ Engineering Main location: Bangalore Position ID: J0625-0283 Employment Type: Full Time Job Description : Role description We are looking for a highly experienced Senior Security Architect to lead the design and governance of security solutions across infrastructure, application, and cloud environments, while ensuring alignment with GRC (Governance, Risk, and Compliance) frameworks and supporting Security Operations (SOC) initiatives. The ideal candidate will be responsible for developing holistic and scalable security architectures that proactively manage risks and meet evolving compliance requirements. Security Architecture Develop, document, and maintain enterprise-wide security architectures covering on-premise, cloud, and hybrid environments. Define security design principles and architecture patterns for infrastructure, applications, and APIs. Integrate security into enterprise architecture and solution development lifecycle (SDLC, CI/CD). GRC - Governance, Risk, and Compliance Lead security governance initiatives, establish policies, standards, and procedures. Perform risk assessments, control gap analysis, and mitigation planning. Ensure compliance with regulatory and industry standards (e.g., ISO 27001, NIST CSF, GDPR, HIPAA, PCI-DSS, SOC 2). Coordinate with internal audit, risk, and legal teams on security compliance activities. SOC & Threat Intelligence Collaborate with SOC teams on threat detection strategies and incident response plans. Provide architectural input on SOC tools including SIEM, SOAR, UEBA, EDR/XDR, and threat intel platforms. Develop threat models, security use cases, and logging/alerting architectures for enterprise monitoring. Infrastructure Security Architect security solutions for networks, servers, endpoints, storage, and data centers. Implement Zero Trust principles, network segmentation, and infrastructure hardening. Oversee security controls in virtualization and containerized environments (e.g., Docker, Kubernetes). Cloud Security Design and enforce security controls in AWS, Azure, and/or GCP environments. Implement Cloud Security Posture Management (CSPM), IAM, encryption, and secure workload designs. Ensure compliance with cloud shared responsibility models and perform cloud-specific risk assessments. Application Security Integrate security into SDLC and DevSecOps pipelines. Oversee static/dynamic code analysis (SAST/DAST), secure coding practices, and API security. Collaborate with development teams to resolve vulnerabilities and establish secure design patterns. Stakeholder Collaboration Act as a trusted security advisor to technology and business teams. Present security architecture and risk findings to senior management and executive stakeholders. Lead security design reviews and architectural governance forums. Qualifications & Skills Must-Have: Bachelors or Master s degree in Cybersecurity, Information Systems, Computer Science, or related field. 10+ years of experience in information security, with at least 5+ years in a security architecture role. Proven experience in security architecture across infrastructure, cloud, and applications. Strong understanding of GRC practices and SOC operations. Technical Expertise: Security technologies: SIEM, SOAR, IAM, DLP, EDR, CASB, VPN, WAF, firewalls. Standards: ISO 27001/2, NIST CSF/RMF, OWASP, MITRE ATT&CK. Tools: Splunk, Sentinel, CrowdStrike, Qualys, Tenable, Terraform, Jenkins, GitLab CI/CD. Cloud platforms: AWS, Azure, GCP (certification preferred). DevSecOps: SAST, DAST, IAST, SCA, container security, IaC scanning. Certifications (Preferred): Must Have: CISSP, CISM, or equivalent Preferred: AWS/Azure Security Specialty, CCSP, TOGAF, CRISC, OSCP, SABSA Key Competencies Strategic thinking with hands-on capability Strong analytical and problem-solving skills Excellent communication and stakeholder engagement Team leadership and mentoring abilities Behavioural Competencies : Proven experience of delivering process efficiencies and improvements Clear and fluent English (both verbal and written) Ability to build and maintain efficient working relationships with remote teams Demonstrate ability to take ownership of and accountability for relevant products and services Ability to plan, prioritise and complete your own work, whilst remaining a team player Willingness to engage with and work in other technologies Note: This job description is a general outline of the responsibilities and qualifications typically associated with the Virtualization Specialist role. Actual duties and qualifications may vary based on the specific needs of the organization. Skills: Vulnerability Assessment(IAVA) .