JOB DESCRIPTION ———————————————————————— Assistant Manager - IT & OT Infrastructure, Data and Applications Security Godrej Agrovet Limited (GAVL) Mumbai, Maharashtra, India ————————————————————————————————————— Job Title: Assistant Manager - IT & OT Infrastructure, Data and Applications Security Job Type: Permanent, Full-time Function: IT Business: Godrej Agrovet Limited - Corporate Location: Mumbai, Maharashtra, India About Godrej Industries Group (GIG) At the Godrej Industries Group, we are privileged to serve over 1.1 billion consumers globally through our businesses with market leadership positions in the consumer products, real estate, agriculture, financial services and chemicals industries. https://www.godrejindustries.com/ About Godrej Agrovet Limited (GAVL) Godrej Agrovet is a food and agri conglomerate, dedicated to improving the productivity of Indian farmers by innovating products and services that sustainably increase crop and livestock yields. www.godrejagrovet.com About the role We are seeking a highly skilled and experienced IT & OT Infrastructure, Data, and Applications Security Manager to lead the security strategy and implementation for IT & OT (Operational Technology) environments. This role is responsible for ensuring that critical infrastructure, network systems, and applications are secure from cyber threats while ensuring operational continuity in both the IT and OT domains. The position requires a deep understanding of both IT and OT security frameworks, as well as an ability to collaborate with cross-functional teams to safeguard digital assets and operations. Roles & Responsibilities: 1. IT & OT Infrastructure Security: Develop, implement, and maintain security policies, procedures, and controls to protect IT & OT infrastructure components, including servers, networks, industrial control systems (ICS), SCADA, and cloud environments. Collaborate with IT teams to ensure secure integration between IT and OT systems, addressing the unique security requirements of each domain. Conduct regular risk assessments, vulnerability scans, and penetration tests to identify and mitigate threats in IT & OT infrastructures. Manage the security of industrial networks, SCADA systems, and IIoT (Industrial Internet of Things) devices to prevent cyber threats and ensure safe operations. Implement and maintain security for cloud services, on-premises data centers, and critical OT assets, ensuring compliance with industry standards. 2. Data Security : Implement data encryption, tokenization, and masking techniques to protect sensitive and proprietary data across systems, databases, and storage devices. Oversee data classification processes and ensure data protection in compliance with legal and regulatory requirements (GDPR,CCPA, HIPAA, etc.). Ensure proper data backup, disaster recovery, and business continuity planning related to data security. Conduct data loss prevention (DLP) assessments and implement preventative controls. Manage access control policies for databases and ensure segregation of duties for sensitive information. 3. Network Security: Develop and maintain robust network security architecture for IT & OT networks, ensuring protection against unauthorized access, data breaches, and cyber-attacks. Monitor and analyze network traffic and logs to detect potential threats, vulnerabilities, and anomalous activities across IT & OT networks. Implement network segmentation to isolate IT and OT environments while ensuring controlled data exchange between systems. Configure and manage firewalls, intrusion detection/prevention systems (IDS/IPS), and secure VPNs to protect networks from external and internal threats. Manage secure communication channels for IT/OT devices and ensure the proper functioning of secure remote access protocols for IT/OT systems. 4. Applications Security: Lead the implementation of secure application development practices for OT applications. Work with development and OT engineering teams to incorporate secure coding practices into OT software systems. Conduct regular security assessments and code reviews for applications, ensuring that vulnerabilities are identified and mitigated. Oversee security testing of OT applications, including SCADA systems, human-machine interfaces (HMIs), and industrial control software, to ensure that security controls are in place. Implement security controls around application access, user authentication, and data integrity for OT applications. 5. Incident Response & Threat Management: Lead and coordinate response efforts to security incidents involving OT systems, ensuring that containment, investigation, and remediation processes are followed efficiently. Develop and maintain incident response plans that address OT-specific risks, ensuring minimal disruption to critical operations. Conduct post-incident analysis to identify root causes, recommend improvements, and apply corrective actions to prevent future occurrences. Collaborate with internal and external teams (e.g., law enforcement, vendors) during security incidents that may impact OT systems. 6. Security Governance and Compliance: Ensure compliance with relevant industry regulations, standards, and frameworks (e.g., NIST, ISO 27001, IEC 62443, NERC CIP) in OT environments. Implement and enforce security governance, risk management, and compliance strategies across OT assets. Perform regular audits and assessments of OT security controls to ensure compliance with security policies and regulatory requirements. Maintain comprehensive security documentation, including risk assessments, incident reports, and security project plans. 7. Security Awareness and Training: Develop and conduct security awareness training programs for OT staff, ensuring that they are educated on security best practices, emerging threats, and organizational policies. Provide ongoing education to the OT team about the importance of cybersecurity in the context of industrial operations and critical infrastructure. Stay current with emerging security trends, threats, and vulnerabilities specific to OT environments and incorporate new knowledge into security practices. Key Requirements: Education : Bachelor's degree in computer science, Information Security, Cybersecurity, Engineering, or a related field (Master’s preferred). Experience : Minimum of 5 to 6 years of experience in IT & OT security, Data security, and application security. Extensive experience securing both OT (industrial control systems, SCADA, ICS, IIoT) environments. Proven experience with network segmentation, firewalls, IDS/IPS, VPNs, and application security frameworks. Familiarity with securing operational technology, including understanding of industrial protocols (Modbus, OPC, DNP3, etc.). Hands-on experience with OT vulnerability management, incident response, and threat intelligence processes. Certifications : CISSP, CISM, CISA, or similar certifications are preferred. OT-specific certifications such as Certified SCADA Security Architect (CSSA) or IEC 62443 certification a plus. Network security certifications such as CCSP, AWS Certified Security Specialty, or CCNA Security are beneficial. Application security certifications (e.g., CEH, OWASP) are a bonus. Technical Skills: Expertise in securing network and infrastructure devices, systems, and industrial control systems (ICS). Deep knowledge of network protocols and security mechanisms (e.g., IP, TCP/IP, VPNs, firewalls). Proficiency in securing cloud environments (AWS, Azure, Google Cloud) as well as on-premises systems. Experience with tools for vulnerability scanning, penetration testing, and risk assessments (e.g., Nessus, Qualys, Burp Suite). Knowledge of SCADA systems, PLCs, and industrial protocols commonly used in OT environments. Personal Attributes: Strong analytical, problem-solving, and decision-making skills with the ability to think critically under pressure. Excellent communication and collaboration skills, able to work with both IT and OT teams to implement security solutions. Ability to manage multiple projects, prioritize tasks, and meet deadlines in a fast-paced environment. Proactive and forward-thinking, with a passion for staying ahead of emerging cybersecurity threats and trends. What’s in it for you? Be an equal parent Maternity support, including paid leave ahead of statutory guidelines, and flexible work options on return Paternity support, including paid leave New mothers can bring a caregiver and children under a year old, on work travel Adoption support; gender neutral and based on the primary caregiver, with paid leave options No place for discrimination at Godrej Gender-neutral anti-harassment policy Same sex partner benefits at par with married spouses Gender transition support We are selfish about your wellness Comprehensive health insurance plans, as well as accident coverage for you and your family, with top-up options Uncapped sick leave Mental wellness and self-care programmes, resources and counselling Celebrating wins, the Godrej Way Structured recognition platforms for individual, team and business-level achievements Performance-based earning opportunities https://www.godrejcareers.com/benefits/ If this sounds like a role for you, apply now! We look forward to meeting you. Show more Show less

Leadership and Management: Lead and manage a team of technical resources located offshore, ensuring high performance, motivation, and professional development. Oversee Security Operations Center (SOC), incident response, vulnerability management, threat intelligence, and endpoint protection. Direct the development and implementation of security architecture, tools, and frameworks across cloud, on-premises, and hybrid environments. Education: Bachelor’s degree in computer science, Information Technology, or a related field. A master’s degree is preferred. Experience: 12+ years of progressive experience in cyber security, including at least 5 years in senior leadership roles. Technical Skills: Deep understanding of cyber security frameworks (NIST CSF, NIST 800-53, MITRE ATT&CK) Leadership Skills: Demonstrated experience building and managing enterprise security programs in complex, regulated environments. Proven ability to influence at all levels, including executives and board members. Excellent leadership, communication, and stakeholder engagement skills. Problem-Solving: Strong technical foundation in network security, cloud security (GCP, AWS, Azure, OCI), security engineering, and incident response. Cultural Awareness: Ability to work effectively in a multicultural environment and manage teams across different time zones. Preferred Qualifications: Experience working in a global organization with distributed teams. Certification in (CISSP, CISM, CISA, CCSP, etc.) strongly preferred. Experience and Certifications in ITIL, Agile and DevOps practices. Experience working in Retail & Manufacturing. Knowledge of managing regulatory environments such as HIPAA, SOX, PCI-DSS, GDPR. Show more Show less

Job Summary: As a Security Software Designer, you will be responsible for designing, developing, and implementing software solutions that protect systems and networks from cyber threats. You will work closely with cross-functional teams to ensure that security is integrated into every phase of the software development lifecycle. Primary responsibilities: 1. Carry security assessment Complying to requirements on Embedded Product Using Threat Model , Threat & Risk Analysis and vulnerability analysis. 2. Bring up the Security Architecture and Design as per the Need of the project to mitigate/Remediate the threats and Get final Cybersecurity approval for Release. 3. Design and Develop the Secure Embedded software applications 4. Analyze and propose mitigation for Security scan results - SAST,DAST,SCA and FST requirements. 5. Collaborate with Development team of Different Product lines to propose and integrate the secure Practices in product design lifecycle Qualification / Requirement: • Bachelor’s/Master’s degree in CS/E&C/IS with Overall Working experience of 8+ Years in Embedded System with Cybersecurity • Proven experience in Secure software design development with security practices. • Strong understanding of security protocols, cryptography, and secure coding techniques. • Excellent problem-solving skills and attention to detail. Essential Requirements: • Very strong technical knowledge on Secure Embedded system Design and Implementation in Bear Metal & Embedded Linux – Secure Boot, Serial, USB, Ethernet and IoT • Hands experience with Programming Language C, C++ and Python • Secure Design Patterns & Principles, Standards IEC62443, NIST 800 Standard OWSAP, CWE • Working experience with Network Protocols, network Infrastructure and services in Embedded LinuxFirewalls, Router, Switches, VPN, HTTP, SSH,SFTP,FTP,TFTP,SNMP,DHCP,MQTT,MQTTS,NTP etc • Cryptographic Concept - Storage of passwords, accounts, keys, Certificates use, Crypto Key Management, Key Generation and Key Usage Desired Requirements : • Sound Knowledge on the Network Security Protocols HTTPS, SSL,TLS • Authentication and Authorization • Gitlab Repository and Pipeline Concept • Design and Development experience in FPGA,PLC,Cloud and IOT based secure systems • Study and Propose best Security design Solution to meet the project needs • Understand and Comply to customer proposed security Requirements and Standards • Risk Assessment • Security Scan tools Knowledge Polaris, Blackduck etc… • Ability to perceive the system knowledge and Analyse the Threat Surface and Vector of threat • Proficient enough to Propose and Conceptualize the Security solution based on the Technology domain Show more Show less

Job requisition ID :: 83149 Date: Jun 12, 2025 Location: Delhi Designation: Associate Director Entity: Your potential, unleashed. India’s impact on the global economy has increased at an exponential rate and Deloitte presents an opportunity to unleash and realize your potential amongst cutting edge leaders, and organizations shaping the future of the region, and indeed, the world beyond. At Deloitte, your whole self to work, every day. Combine that with our drive to propel with purpose and you have the perfect playground to collaborate, innovate, grow, and make an impact that matters. The team Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure, vigilant, and resilient—not only by looking at how to prevent and respond to attacks, but at how to manage cyber risk in a way that allows you to unleash new opportunities. Embed cyber risk at the start of strategy development for more effective management of information and technology risks. Your work profile As part of our Cyber Team, you’ll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations: - Roles and Responsibilities: Working knowledge in one or more security and privacy domains such as: security governance policies and procedures, risk management, compliance, access control, network security, security architecture, security incident response, disaster recovery, business continuity management, privacy and data protection Experience in leveraging industry standards and frameworks such as PCI-DSS, ISO/IEC 17799, ISO/IEC 27001, COBIT, ITIL, etc. Demonstrates in-depth knowledge of security and privacy controls and risk management process For Manager/DM/AM: Experience in data protection technologies such as encryption, data discovery, data masking, data redaction, etc. Possesses certifications such as CEH, ISO27001 LA/ LI, ISO22301 LA/LI, CISSP, CISA, CISM certification- preferred For Consultant: Should have basic understanding of cyber security controls such as encryption, hashing, CIA Traits, network security, data security, NIST etc The key skills required are as follows: Responsible for ISO 27001 based Information Security Management System implementation and sustenance Assess client information security posture, identify the gaps/risks in the existing environment and develop solutions to mitigate the identified gaps/risk Responsible to assist client in review / implement Information Security controls in areas as mentioned, but not limited to: Change management process, Incident management process, Backup process, User identity and access management, Antivirus management, SLA performance and monitoring, Media handling & Exchange of information, Physical and environmental Security, and Media & Information Handling Responsible to assist client in developing information assets inventory and classification Responsible for advising and assisting clients to develop and implement Information classification framework Conduct Information Systems audits covering IT infrastructure assets Advice clients on data privacy, data leakage prevention, identity and access management Serves as technical lead or subject matter specialist on security and privacy implementation projects, responsible for design, build, testing and deployment of solutions Desired qualifications IT education or related fields PCI-DSS, ISO 27001 LA/LI, ISO 31000 LA/LI, ISO 22301 LA/LI, CISA, ITIL, or equivalent certification preferred CISSP, GSEC, GCIH, CEH, LPT, CCSK, certifications would be preferred Location and way of working Base location: Bangalore This profile involves frequent / occasional travelling to client locations. Hybrid is our default way of working. Each domain has customized the hybrid approach to their unique needs. Your role as a Consultant/Assistant/Manager/Deputy Manager/Manager We expect our people to embrace and live our purpose by challenging themselves to identify issues that are most important for our clients, our people, and for society. In addition to living our purpose, Senior Executive across our organization must strive to be: Inspiring - Leading with integrity to build inclusion and motivation. Committed to creating purpose - Creating a sense of vision and purpose. Agile - Achieving high-quality results through collaboration and Team unity. Skilled at building diverse capability - Developing diverse capabilities for the future. Persuasive / Influencing - Persuading and influencing stakeholders. Collaborating - Partnering to build new solutions. Delivering value - Showing commercial acumen Committed to expanding business - Leveraging new business opportunities. Analytical Acumen - Leveraging data to recommend impactful approach and solutions through the power of analysis and visualization. Effective communication – Must be well abled to have well-structured and well-articulated conversations to achieve win-win possibilities. Engagement Management / Delivery Excellence - Effectively managing engagement(s) to ensure timely and proactive execution as well as course correction for the success of engagement(s) Managing change - Responding to changing environment with resilience Managing Quality & Risk - Delivering high quality results and mitigating risks with utmost integrity and precision Strategic Thinking & Problem Solving - Applying strategic mindset to solve business issues and complex problems. Tech Savvy - Leveraging ethical technology practices to deliver high impact for clients and for Deloitte. Empathetic leadership and inclusivity - creating a safe and thriving environment where everyone's valued for who they are, use empathy to understand others to adapt our behaviors and attitudes to become more inclusive. How you’ll grow Connect for impact Our exceptional team of professionals across the globe are solving some of the world’s most complex business problems, as well as directly supporting our communities, the planet, and each other. Know more in our Global Impact Report and our India Impact Report. Empower to lead You can be a leader irrespective of your career level. Our colleagues are characterised by their ability to inspire, support, and provide opportunities for people to deliver their best and grow both as professionals and human beings. Know more about Deloitte and our One Young World partnership. Inclusion for all At Deloitte, people are valued and respected for who they are and are trusted to add value to their clients, teams and communities in a way that reflects their own unique capabilities. Know more about everyday steps that you can take to be more inclusive. At Deloitte, we believe in the unique skills, attitude and potential each and every one of us brings to the table to make an impact that matters. Drive your career At Deloitte, you are encouraged to take ownership of your career. We recognise there is no one size fits all career path, and global, cross-business mobility and up / re-skilling are all within the range of possibilities to shape a unique and fulfilling career. Know more about Life at Deloitte. Everyone’s welcome… entrust your happiness to us Our workspaces and initiatives are geared towards your 360-degree happiness. This includes specific needs you may have in terms of accessibility, flexibility, safety and security, and caregiving. Here’s a glimpse of things that are in store for you. Interview tips We want job seekers exploring opportunities at Deloitte to feel prepared, confident and comfortable. To help you with your interview, we suggest that you do your research, know some background about the organisation and the business area you’re applying to. Check out recruiting tips from Deloitte professionals.

Job requisition ID :: 83060 Date: Jun 12, 2025 Location: Delhi Designation: Assistant Manager Entity: Your potential, unleashed. India’s impact on the global economy has increased at an exponential rate and Deloitte presents an opportunity to unleash and realize your potential amongst cutting edge leaders, and organizations shaping the future of the region, and indeed, the world beyond. At Deloitte, your whole self to work, every day. Combine that with our drive to propel with purpose and you have the perfect playground to collaborate, innovate, grow, and make an impact that matters. The team Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure, vigilant, and resilient—not only by looking at how to prevent and respond to attacks, but at how to manage cyber risk in a way that allows you to unleash new opportunities. Embed cyber risk at the start of strategy development for more effective management of information and technology risks. Your work profile As part of our Cyber Team, you’ll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations: - Roles and Responsibilities: Working knowledge in one or more security and privacy domains such as: security governance policies and procedures, risk management, compliance, access control, network security, security architecture, security incident response, disaster recovery, business continuity management, privacy and data protection Experience in leveraging industry standards and frameworks such as PCI-DSS, ISO/IEC 17799, ISO/IEC 27001, COBIT, ITIL, etc. Demonstrates in-depth knowledge of security and privacy controls and risk management process For Manager/DM/AM: Experience in data protection technologies such as encryption, data discovery, data masking, data redaction, etc. Possesses certifications such as CEH, ISO27001 LA/ LI, ISO22301 LA/LI, CISSP, CISA, CISM certification- preferred For Consultant: Should have basic understanding of cyber security controls such as encryption, hashing, CIA Traits, network security, data security, NIST etc The key skills required are as follows: Responsible for ISO 27001 based Information Security Management System implementation and sustenance Assess client information security posture, identify the gaps/risks in the existing environment and develop solutions to mitigate the identified gaps/risk Responsible to assist client in review / implement Information Security controls in areas as mentioned, but not limited to: Change management process, Incident management process, Backup process, User identity and access management, Antivirus management, SLA performance and monitoring, Media handling & Exchange of information, Physical and environmental Security, and Media & Information Handling Responsible to assist client in developing information assets inventory and classification Responsible for advising and assisting clients to develop and implement Information classification framework Conduct Information Systems audits covering IT infrastructure assets Advice clients on data privacy, data leakage prevention, identity and access management Serves as technical lead or subject matter specialist on security and privacy implementation projects, responsible for design, build, testing and deployment of solutions Desired qualifications IT education or related fields PCI-DSS, ISO 27001 LA/LI, ISO 31000 LA/LI, ISO 22301 LA/LI, CISA, ITIL, or equivalent certification preferred CISSP, GSEC, GCIH, CEH, LPT, CCSK, certifications would be preferred Location and way of working Base location: Bangalore This profile involves frequent / occasional travelling to client locations. Hybrid is our default way of working. Each domain has customized the hybrid approach to their unique needs. Your role as a Consultant/Assistant/Manager/Deputy Manager/Manager We expect our people to embrace and live our purpose by challenging themselves to identify issues that are most important for our clients, our people, and for society. In addition to living our purpose, Senior Executive across our organization must strive to be: Inspiring - Leading with integrity to build inclusion and motivation. Committed to creating purpose - Creating a sense of vision and purpose. Agile - Achieving high-quality results through collaboration and Team unity. Skilled at building diverse capability - Developing diverse capabilities for the future. Persuasive / Influencing - Persuading and influencing stakeholders. Collaborating - Partnering to build new solutions. Delivering value - Showing commercial acumen Committed to expanding business - Leveraging new business opportunities. Analytical Acumen - Leveraging data to recommend impactful approach and solutions through the power of analysis and visualization. Effective communication – Must be well abled to have well-structured and well-articulated conversations to achieve win-win possibilities. Engagement Management / Delivery Excellence - Effectively managing engagement(s) to ensure timely and proactive execution as well as course correction for the success of engagement(s) Managing change - Responding to changing environment with resilience Managing Quality & Risk - Delivering high quality results and mitigating risks with utmost integrity and precision Strategic Thinking & Problem Solving - Applying strategic mindset to solve business issues and complex problems. Tech Savvy - Leveraging ethical technology practices to deliver high impact for clients and for Deloitte. Empathetic leadership and inclusivity - creating a safe and thriving environment where everyone's valued for who they are, use empathy to understand others to adapt our behaviors and attitudes to become more inclusive. How you’ll grow Connect for impact Our exceptional team of professionals across the globe are solving some of the world’s most complex business problems, as well as directly supporting our communities, the planet, and each other. Know more in our Global Impact Report and our India Impact Report. Empower to lead You can be a leader irrespective of your career level. Our colleagues are characterised by their ability to inspire, support, and provide opportunities for people to deliver their best and grow both as professionals and human beings. Know more about Deloitte and our One Young World partnership. Inclusion for all At Deloitte, people are valued and respected for who they are and are trusted to add value to their clients, teams and communities in a way that reflects their own unique capabilities. Know more about everyday steps that you can take to be more inclusive. At Deloitte, we believe in the unique skills, attitude and potential each and every one of us brings to the table to make an impact that matters. Drive your career At Deloitte, you are encouraged to take ownership of your career. We recognise there is no one size fits all career path, and global, cross-business mobility and up / re-skilling are all within the range of possibilities to shape a unique and fulfilling career. Know more about Life at Deloitte. Everyone’s welcome… entrust your happiness to us Our workspaces and initiatives are geared towards your 360-degree happiness. This includes specific needs you may have in terms of accessibility, flexibility, safety and security, and caregiving. Here’s a glimpse of things that are in store for you. Interview tips We want job seekers exploring opportunities at Deloitte to feel prepared, confident and comfortable. To help you with your interview, we suggest that you do your research, know some background about the organisation and the business area you’re applying to. Check out recruiting tips from Deloitte professionals.

Job requisition ID :: 78476 Date: Jun 12, 2025 Location: Delhi Designation: Manager Entity: Your potential, unleashed. India’s impact on the global economy has increased at an exponential rate and Deloitte presents an opportunity to unleash and realize your potential amongst cutting edge leaders, and organizations shaping the future of the region, and indeed, the world beyond. At Deloitte, your whole self to work, every day. Combine that with our drive to propel with purpose and you have the perfect playground to collaborate, innovate, grow, and make an impact that matters. The team Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure, vigilant, and resilient—not only by looking at how to prevent and respond to attacks, but at how to manage cyber risk in a way that allows you to unleash new opportunities. Embed cyber risk at the start of strategy development for more effective management of information and technology risks. Your work profile As part of our Cyber Team, you’ll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations: - Roles and Responsibilities: Working knowledge in one or more security and privacy domains such as: security governance policies and procedures, risk management, compliance, access control, network security, security architecture, security incident response, disaster recovery, business continuity management, privacy and data protection Experience in leveraging industry standards and frameworks such as PCI-DSS, ISO/IEC 17799, ISO/IEC 27001, COBIT, ITIL, etc. Demonstrates in-depth knowledge of security and privacy controls and risk management process For Manager/DM/AM: Experience in data protection technologies such as encryption, data discovery, data masking, data redaction, etc. Possesses certifications such as CEH, ISO27001 LA/ LI, ISO22301 LA/LI, CISSP, CISA, CISM certification- preferred For Consultant: Should have basic understanding of cyber security controls such as encryption, hashing, CIA Traits, network security, data security, NIST etc The key skills required are as follows: Responsible for ISO 27001 based Information Security Management System implementation and sustenance Assess client information security posture, identify the gaps/risks in the existing environment and develop solutions to mitigate the identified gaps/risk Responsible to assist client in review / implement Information Security controls in areas as mentioned, but not limited to: Change management process, Incident management process, Backup process, User identity and access management, Antivirus management, SLA performance and monitoring, Media handling & Exchange of information, Physical and environmental Security, and Media & Information Handling Responsible to assist client in developing information assets inventory and classification Responsible for advising and assisting clients to develop and implement Information classification framework Conduct Information Systems audits covering IT infrastructure assets Advice clients on data privacy, data leakage prevention, identity and access management Serves as technical lead or subject matter specialist on security and privacy implementation projects, responsible for design, build, testing and deployment of solutions Desired qualifications IT education or related fields PCI-DSS, ISO 27001 LA/LI, ISO 31000 LA/LI, ISO 22301 LA/LI, CISA, ITIL, or equivalent certification preferred CISSP, GSEC, GCIH, CEH, LPT, CCSK, certifications would be preferred Location and way of working Base location: Bangalore This profile involves frequent / occasional travelling to client locations. Hybrid is our default way of working. Each domain has customized the hybrid approach to their unique needs. Your role as a Consultant/Assistant/Manager/Deputy Manager/Manager We expect our people to embrace and live our purpose by challenging themselves to identify issues that are most important for our clients, our people, and for society. In addition to living our purpose, Senior Executive across our organization must strive to be: Inspiring - Leading with integrity to build inclusion and motivation. Committed to creating purpose - Creating a sense of vision and purpose. Agile - Achieving high-quality results through collaboration and Team unity. Skilled at building diverse capability - Developing diverse capabilities for the future. Persuasive / Influencing - Persuading and influencing stakeholders. Collaborating - Partnering to build new solutions. Delivering value - Showing commercial acumen Committed to expanding business - Leveraging new business opportunities. Analytical Acumen - Leveraging data to recommend impactful approach and solutions through the power of analysis and visualization. Effective communication – Must be well abled to have well-structured and well-articulated conversations to achieve win-win possibilities. Engagement Management / Delivery Excellence - Effectively managing engagement(s) to ensure timely and proactive execution as well as course correction for the success of engagement(s) Managing change - Responding to changing environment with resilience Managing Quality & Risk - Delivering high quality results and mitigating risks with utmost integrity and precision Strategic Thinking & Problem Solving - Applying strategic mindset to solve business issues and complex problems. Tech Savvy - Leveraging ethical technology practices to deliver high impact for clients and for Deloitte. Empathetic leadership and inclusivity - creating a safe and thriving environment where everyone's valued for who they are, use empathy to understand others to adapt our behaviors and attitudes to become more inclusive. How you’ll grow Connect for impact Our exceptional team of professionals across the globe are solving some of the world’s most complex business problems, as well as directly supporting our communities, the planet, and each other. Know more in our Global Impact Report and our India Impact Report. Empower to lead You can be a leader irrespective of your career level. Our colleagues are characterised by their ability to inspire, support, and provide opportunities for people to deliver their best and grow both as professionals and human beings. Know more about Deloitte and our One Young World partnership. Inclusion for all At Deloitte, people are valued and respected for who they are and are trusted to add value to their clients, teams and communities in a way that reflects their own unique capabilities. Know more about everyday steps that you can take to be more inclusive. At Deloitte, we believe in the unique skills, attitude and potential each and every one of us brings to the table to make an impact that matters. Drive your career At Deloitte, you are encouraged to take ownership of your career. We recognise there is no one size fits all career path, and global, cross-business mobility and up / re-skilling are all within the range of possibilities to shape a unique and fulfilling career. Know more about Life at Deloitte. Everyone’s welcome… entrust your happiness to us Our workspaces and initiatives are geared towards your 360-degree happiness. This includes specific needs you may have in terms of accessibility, flexibility, safety and security, and caregiving. Here’s a glimpse of things that are in store for you. Interview tips We want job seekers exploring opportunities at Deloitte to feel prepared, confident and comfortable. To help you with your interview, we suggest that you do your research, know some background about the organisation and the business area you’re applying to. Check out recruiting tips from Deloitte professionals.

Job requisition ID :: 82919 Date: Jun 12, 2025 Location: Delhi Designation: Assistant Manager Entity: Your potential, unleashed. India’s impact on the global economy has increased at an exponential rate and Deloitte presents an opportunity to unleash and realize your potential amongst cutting edge leaders, and organizations shaping the future of the region, and indeed, the world beyond. At Deloitte, your whole self to work, every day. Combine that with our drive to propel with purpose and you have the perfect playground to collaborate, innovate, grow, and make an impact that matters. The team Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure, vigilant, and resilient—not only by looking at how to prevent and respond to attacks, but at how to manage cyber risk in a way that allows you to unleash new opportunities. Embed cyber risk at the start of strategy development for more effective management of information and technology risks. Your work profile As part of our Cyber Team, you’ll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations: - Roles and Responsibilities: Working knowledge in one or more security and privacy domains such as: security governance policies and procedures, risk management, compliance, access control, network security, security architecture, security incident response, disaster recovery, business continuity management, privacy and data protection Experience in leveraging industry standards and frameworks such as PCI-DSS, ISO/IEC 17799, ISO/IEC 27001, COBIT, ITIL, etc. Demonstrates in-depth knowledge of security and privacy controls and risk management process For Manager/DM/AM: Experience in data protection technologies such as encryption, data discovery, data masking, data redaction, etc. Possesses certifications such as CEH, ISO27001 LA/ LI, ISO22301 LA/LI, CISSP, CISA, CISM certification- preferred For Consultant: Should have basic understanding of cyber security controls such as encryption, hashing, CIA Traits, network security, data security, NIST etc The key skills required are as follows: Responsible for ISO 27001 based Information Security Management System implementation and sustenance Assess client information security posture, identify the gaps/risks in the existing environment and develop solutions to mitigate the identified gaps/risk Responsible to assist client in review / implement Information Security controls in areas as mentioned, but not limited to: Change management process, Incident management process, Backup process, User identity and access management, Antivirus management, SLA performance and monitoring, Media handling & Exchange of information, Physical and environmental Security, and Media & Information Handling Responsible to assist client in developing information assets inventory and classification Responsible for advising and assisting clients to develop and implement Information classification framework Conduct Information Systems audits covering IT infrastructure assets Advice clients on data privacy, data leakage prevention, identity and access management Serves as technical lead or subject matter specialist on security and privacy implementation projects, responsible for design, build, testing and deployment of solutions Desired qualifications IT education or related fields PCI-DSS, ISO 27001 LA/LI, ISO 31000 LA/LI, ISO 22301 LA/LI, CISA, ITIL, or equivalent certification preferred CISSP, GSEC, GCIH, CEH, LPT, CCSK, certifications would be preferred Location and way of working Base location: Bangalore This profile involves frequent / occasional travelling to client locations. Hybrid is our default way of working. Each domain has customized the hybrid approach to their unique needs. Your role as a Consultant/Assistant/Manager/Deputy Manager/Manager We expect our people to embrace and live our purpose by challenging themselves to identify issues that are most important for our clients, our people, and for society. In addition to living our purpose, Senior Executive across our organization must strive to be: Inspiring - Leading with integrity to build inclusion and motivation. Committed to creating purpose - Creating a sense of vision and purpose. Agile - Achieving high-quality results through collaboration and Team unity. Skilled at building diverse capability - Developing diverse capabilities for the future. Persuasive / Influencing - Persuading and influencing stakeholders. Collaborating - Partnering to build new solutions. Delivering value - Showing commercial acumen Committed to expanding business - Leveraging new business opportunities. Analytical Acumen - Leveraging data to recommend impactful approach and solutions through the power of analysis and visualization. Effective communication – Must be well abled to have well-structured and well-articulated conversations to achieve win-win possibilities. Engagement Management / Delivery Excellence - Effectively managing engagement(s) to ensure timely and proactive execution as well as course correction for the success of engagement(s) Managing change - Responding to changing environment with resilience Managing Quality & Risk - Delivering high quality results and mitigating risks with utmost integrity and precision Strategic Thinking & Problem Solving - Applying strategic mindset to solve business issues and complex problems. Tech Savvy - Leveraging ethical technology practices to deliver high impact for clients and for Deloitte. Empathetic leadership and inclusivity - creating a safe and thriving environment where everyone's valued for who they are, use empathy to understand others to adapt our behaviors and attitudes to become more inclusive. How you’ll grow Connect for impact Our exceptional team of professionals across the globe are solving some of the world’s most complex business problems, as well as directly supporting our communities, the planet, and each other. Know more in our Global Impact Report and our India Impact Report. Empower to lead You can be a leader irrespective of your career level. Our colleagues are characterised by their ability to inspire, support, and provide opportunities for people to deliver their best and grow both as professionals and human beings. Know more about Deloitte and our One Young World partnership. Inclusion for all At Deloitte, people are valued and respected for who they are and are trusted to add value to their clients, teams and communities in a way that reflects their own unique capabilities. Know more about everyday steps that you can take to be more inclusive. At Deloitte, we believe in the unique skills, attitude and potential each and every one of us brings to the table to make an impact that matters. Drive your career At Deloitte, you are encouraged to take ownership of your career. We recognise there is no one size fits all career path, and global, cross-business mobility and up / re-skilling are all within the range of possibilities to shape a unique and fulfilling career. Know more about Life at Deloitte. Everyone’s welcome… entrust your happiness to us Our workspaces and initiatives are geared towards your 360-degree happiness. This includes specific needs you may have in terms of accessibility, flexibility, safety and security, and caregiving. Here’s a glimpse of things that are in store for you. Interview tips We want job seekers exploring opportunities at Deloitte to feel prepared, confident and comfortable. To help you with your interview, we suggest that you do your research, know some background about the organisation and the business area you’re applying to. Check out recruiting tips from Deloitte professionals.

Location Bangalore, Karnataka, 560048 Category Engineering / Information Technology Job Type Full time Job Id 1183232 No Open Source COE Security Architect This role has been designed as ‘’Onsite’ with an expectation that you will primarily work from an HPE partner/customer office. Who We Are: Hewlett Packard Enterprise is the global edge-to-cloud company advancing the way people live and work. We help companies connect, protect, analyze, and act on their data and applications wherever they live, from edge to cloud, so they can turn insights into outcomes at the speed required to thrive in today’s complex world. Our culture thrives on finding new and better ways to accelerate what’s next. We know varied backgrounds are valued and succeed here. We have the flexibility to manage our work and personal needs. We make bold moves, together, and are a force for good. If you are looking to stretch and grow your career our culture will embrace you. Open up opportunities with HPE. Job Description: HPE Operations is our innovative IT services organization. It provides the expertise to advise, integrate, and accelerate our customers’ outcomes from their digital transformation. Our teams collaborate to transform insight into innovation. In today’s fast paced, hybrid IT world, being at business speed means overcoming IT complexity to match the speed of actions to the speed of opportunities. Deploy the right technology to respond quickly to market possibilities. Join us and redefine what’s next for you. What you will do BE/B. Tech with 10+ years of experience in the IT industry and 6+ years of experience in Information Security / Cyber Security field. Expert in IT/Cyber Security field. Should be CISSP/CISM/CCSP and CCSK and ISO27001 Certification are desired. Should have good knowledge of security assessment against different global Frameworks like NIST, MITRE and cloud security alliance etc. Should have good understanding of Compliance and regulatory requirements. Working with information security and devSecops teams in a CI/CD environment as well as comprehensive understanding of cloud security systems. Programming experience in C/C++, Python, JavaScript, Bash & PowerShell Scripting is desired. Hands-on expertise, Linux, Kernel, threads, processes, API etc. is desired. Provide Security Vision & Strategy to the Organization, strategic direction, development, and implementation of information security programs and projects to address risks relevant to the attainment of organizational strategic security goals based on open source tool/framework. Experience in advising leadership team regarding evolving of open source Security Technology landscape, product issues, security mitigations for identified risks and possible improvements Expertise in providing executive roadmaps for continual improvement in teams, technology, and processes, process across various security & DevSecOps teams based on open source tool/framework. Experienced in Information Security Risk Management, gap analysis, Audits. Hands-on Experience in formulating Cyber Security Policies, design and implementation of Security Technologies, DevSecOps. Working Knowledge in implementation of Cyber Security Solution in Open Source, Open Stack environment. Ability to provide strategies to increase the ability to withstand cyber-attacks, as measured by annual sophisticated attack simulations. Experience in upgrading, troubleshooting and tuning of Cyber Security Solutions. Thorough understanding and good knowledge of latest Cyber Security technologies, security Architectures, vulnerabilities, security threats. Ability to setup PoC for latest open source security solutions. Good understanding of Open-Source Technologies, Cloud security technologies. Additional Skills: Accountability, Accountability, Active Learning (Inactive), Active Listening, Bias, Business Growth, Client Expectations Management, Coaching, Creativity, Critical Thinking, Cross-Functional Teamwork, Customer Centric Solutions, Customer Relationship Management (CRM), Design Thinking, Empathy, Follow-Through, Growth Mindset, Information Technology (IT) Infrastructure, Infrastructure as a Service (IaaS), Intellectual Curiosity (Inactive), Long Term Planning, Managing Ambiguity, Process Improvements, Product Services, Relationship Building {+ 5 more} What We Can Offer You: Health & Wellbeing We strive to provide our team members and their loved ones with a comprehensive suite of benefits that supports their physical, financial and emotional wellbeing. Personal & Professional Development We also invest in your career because the better you are, the better we all are. We have specific programs catered to helping you reach any career goals you have — whether you want to become a knowledge expert in your field or apply your skills to another division. Unconditional Inclusion We are unconditionally inclusive in the way we work and celebrate individual uniqueness. We know varied backgrounds are valued and succeed here. We have the flexibility to manage our work and personal needs. We make bold moves, together, and are a force for good. Let's Stay Connected: Follow @HPECareers on Instagram to see the latest on people, culture and tech at HPE. #india #operations Job: Services Job Level: TCP_04 HPE is an Equal Employment Opportunity/ Veterans/Disabled/LGBT employer. We do not discriminate on the basis of race, gender, or any other protected category, and all decisions we make are made on the basis of qualifications, merit, and business need. Our goal is to be one global team that is representative of our customers, in an inclusive environment where we can continue to innovate and grow together. Please click here: Equal Employment Opportunity. Hewlett Packard Enterprise is EEO Protected Veteran/ Individual with Disabilities. HPE will comply with all applicable laws related to employer use of arrest and conviction records, including laws requiring employers to consider for employment qualified applicants with criminal histories.

The incumbent shall have at least 5 years of experience with AWS security components, cloud security design, and architecture, with a focus on assessing and implementing security measures in AWS environments. The individual must have experience handling cloud security independently and be capable of working collaboratively with cross-functional teams. The incumbent will work under the supervision of the Cybersecurity Officer - Security Architecture SME, within the Cybersecurity Assurance Team of the ICC Cybersecurity Division, and will be in collaboration with other relevant teams across ICC. The incumbent will undertake the following duties and deliverables: Design and implement incident response processes and workflows in AWS environments. Collaborate with stakeholders to perform root cause analysis and remediation of security incidents. Integrate incident response tools with AWS services, including AWS CloudTrail, Amazon GuardDuty, and AWS Security Hub. Configure and manage logging services using AWS CloudTrail, Amazon CloudWatch, and AWS Config for continuous monitoring. Set up real-time alerts and dashboards for anomaly detection and incident notification. Implement security baselines and compliance monitoring with AWS Config Rules. Design and deploy secure network architectures in AWS, including Virtual Private Cloud (VPC) configurations, security groups, NACLs, and private subnets. Implement secure access to AWS infrastructure using bastion hosts, VPNs, or AWS Client VPN. Perform regular vulnerability assessments using tools like Amazon Inspector and third-party integrations. Develop and implement IAM policies, roles, and permissions to enforce least privilege access. Configure AWS IAM Identity Center (SSO) for centralized identity management. Manage authentication using MFA, federated identities, and AWS Cognito. Implement encryption mechanisms for data at rest and in transit using AWS KMS, S3 encryption, and SSL/TLS. Secure sensitive data stored in S3 buckets, DynamoDB, and RDS with encryption and access controls. Conduct key rotation and lifecycle management using AWS KMS and AWS Secrets Manager. Develop and maintain security controls aligned with AWS Well-Architected Framework, NIST, CIS Benchmarks, and ISO 27001. Automate compliance checks using AWS Config, AWS Audit Manager, and AWS Security Hub. Prepare documentation and evidence for security audits and assessments. Collaborate with DevOps teams to secure CI/CD pipelines implementing ICC DevSecOps best practices Implement containers security best practices for Amazon EKS, ECS environments. Provide training to internal teams on AWS security best practices. Maintain updated documentation and knowledge repositories for AWS security implementations. Required Technical Skills: The resource MUST have the following skills and experience: Deep knowledge of the AWS Security Reference Architecture (SRA). Experience with AWS services for incident detection and response, including AWS GuardDuty, Detective, Inspector, and Security Hub. Ability to analyze and respond to security incidents effectively using AWS-native tools. Proficiency in setting up and managing AWS CloudTrail, CloudWatch, and AWS Config for continuous monitoring and continuous compliance. Expertise in creating dashboards and alerts for real-time security monitoring. Hands-on experience designing and managing secure VPC architectures, including security groups, NACLs, and network segmentation. Experience with AWS WAF, AWS Shield, and Amazon Inspector for infrastructure protection. Deep understanding of IAM policies, roles, and permission management. Experience implementing advanced authentication mechanisms like MFA, SSO, and federated access. Knowledge of encryption technologies, including AWS KMS, SSL/TLS, and S3 bucket policies. Experience implementing data protection strategies for cloud-native applications. Familiarity with AWS Well-Architected Framework, NIST, CIS, and other compliance frameworks. Proficiency in using AWS Config, Audit Manager, and Security Hub for governance and compliance. Expertise in automating security tasks using AWS SDKs, CLI, and scripting languages like Python or Bash. Strong knowledge of container security best practices for Amazon EKS, ECS. Experience integrating security tools into CI/CD pipelines The resource SHOULD also have the following additional skills: Hands on experience with third-party and open source cloud security tools such as Prowler, Zeus, CloudSploit scans, Lynis, OpenScap. Advanced understanding of AWS Lambda and securing serverless architectures. Required Soft Skills: Strong analytical and problem-solving skills to address complex cloud security challenges. Ability to work collaboratively with cross-functional teams to implement security best practices. Excellent communication and documentation skills to articulate security requirements and solutions. Proactive and innovative mindset to anticipate and mitigate security risks. High level of professionalism and integrity to manage sensitive security information. Desirable certifications: Preference will be given to candidates holding one or more of the following certifications: AWS Certified Security - Specialty Certified Information Systems Security Professional (CISSP) Certified Cloud Security Professional (CCSP) AWS Solutions Architect - Professional

As Relyance AI’s Technical Product Manager - Core Platform , you will help bring new products and improve existing foundational product offerings at Relyance AI. This role demands a deep understanding of system architecture, platforms and the evolving data security, privacy, and the AI landscape that addresses critical customer challenges. You’ll lead efforts to build new platform features and improve existing core services that serve as the backbone of our product suite. This role requires you to think critically and craft products with first principles. You will work closely with cross-functional teams, including Engineering, Customer Success, Sales, and Legal, to deliver high-quality, impactful products that empower our customers to protect their data and ensure compliance. As a Technical Product Manager, your role will include: Building and evolving foundational platform capabilities, such as common services, ingress/egress layers, telemetry pipelines, identity and access primitives, and developer-facing APIs that power all Relyance AI products. Deeply understand user needs by engaging with customers, mapping workflows, identifying pain points, and aligning on desired outcomes. Drive cross-functional collaboration by acting as the connective tissue between engineering, design, GTM, and leadership to ensure initiatives align with company priorities and timelines. Own end-to-end product lifecycle, from discovery and ideation to scoping, execution, launch, and iteration, especially for complex, technical platform features. Bringing structure to ambiguity by translating high-level strategy, OKRs, and stakeholder goals into clear product specs and prioritized backlogs. Measuring product success metrics and telemetry determined on value delivered, usage, and customer satisfaction. This role could be a fit for you if you bring: Have 3+ years of product management experience, including shipping technical products (e.g., APIs, platforms, infrastructure). Have directly interfaced with customers—whether through roadmap discussions, feedback loops, or support escalations—and thrive on turning their needs into platform capabilities. Have deep familiarity with APIs, developer platforms, and integrations, including authentication models (OAuth, API keys etc.), versioning strategies, and standard architectural patterns (REST, event-driven, etc.). B2B SaaS experience, technical fluency, and an ability to understand modern software systems (microservices, APIs, client-server architecture, etc.) to help drive strategic and technical discussions. Excellent written and verbal communication skills for articulating product requirements, customer challenges, and GTM messaging. This role will require the ability to effectively convey complex product ideas and strategies to a range of stakeholders, including executives, engineering, GTM, and end-users. Ability to wear many hats and pivot based on company needs. Excitement about taking on new and varied responsibilities in a fast-growing, dynamic organization. Bonus points for: Experience working with cloud data ecosystems such as Amazon S3, Google Cloud Storage, Snowflake, BigQuery, or similar platforms. Experience with security tools, standard security practices for sensitive data protection, and frameworks (e.g., NIST, etc.) Experience with data privacy regulations (like GDPR, CPRA, etc.), security practices and frameworks, or data governance. Experience with python, Java, Go, or Ruby. Experience with Machine Learning or AI. Bringing curiosity and a growth mindset to the work you do. Who are we? At Relyance AI, we create an unreasonably hospitable and data-driven culture. We prioritize exceeding customer, and each other’s, expectations in every interaction. This means empowered team members solving problems proactively based on information, crafting personalized experiences, and radiating enthusiasm. Behind the scenes, trust and freedom allow team members to find creative solutions, while shared purpose and recognition fuel a spirit of greatness to truly wow customers and each other. We deconstruct failures to learn from them and take great pride in our successes; celebrating both. Relyance AI is proud to be an equal-opportunity employer. We celebrate representation and are committed to creating an inclusive environment for all employees. We are committed to fair and equitable compensation practices. We use data-driven pay practices with the goal of ensuring offerings are competitive to the market and our team members are being compensated correctly based on their roles, experience, and location. Show more Show less

About Gruve Gruve is an innovative software services startup dedicated to transforming enterprises to AI powerhouses. We specialize in cybersecurity, customer experience, cloud infrastructure, and advanced technologies such as Large Language Models (LLMs). Our mission is to assist our customers in their business strategies utilizing their data to make more intelligent decisions. As a well-funded early-stage startup, Gruve offers a dynamic environment with strong customer and partner networks. About The Role We are seeking a highly skilled Security Analyst (Level 2) to join our MSSP SOC team. The ideal candidate will have expertise in SIEM (Splunk, QRadar), XDR/EDR solutions, and security analysis with hands-on experience in investigating and responding to security alerts. This role requires proficiency in reviewing and analyzing Level 1 alerts, providing detailed recommendations, and engaging with customers for incident handling. The candidate should also have basic SIEM administration knowledge and Python scripting skills for troubleshooting and playbook development. Key Responsibilities Threat Detection & Response: Analyze and investigate security alerts, events, and incidents generated by SIEM, XDR, and EDR solutions. Incident Investigation & Handling: Conduct in-depth security incident investigations, assess impact, and take appropriate actions. Incident Escalation & Communication: Escalate critical incidents to Level 3 analysts or senior security teams while maintaining detailed documentation. Content Management: Develop and fine-tune correlation rules, use cases, and alerts in SIEM/XDR platforms to improve detection accuracy. Malware Analysis: Perform basic malware analysis and forensic investigation to assess threats. Customer Request Handling: Collaborate with customers to address security concerns, provide recommendations, and respond to inquiries. SIEM Administration: Assist in the administration and maintenance of SIEM tools like Splunk or QRadar, ensuring smooth operations. Automation & Playbooks: Utilize Python scripting for automation, troubleshooting, and playbook development to enhance SOC efficiency. Reporting & Documentation: Prepare detailed reports on security incidents, trends, and mitigation strategies. Basic Qualifications B.E/B. Tech degree in computer science, Information Technology, Masters in Cybersecurity 3+ years of experience in a SOC or cybersecurity operations role. Strong knowledge of SIEM tools (Splunk, QRadar) and XDR/EDR solutions. Hands-on experience in threat detection, security monitoring, and incident response. Knowledge of network security, intrusion detection, malware analysis, and forensics. Basic experience in SIEM administration (log ingestion, rule creation, dashboard management). Proficiency in Python scripting for automation and playbook development. Good understanding of MITRE ATT&CK framework, security frameworks (NIST, ISO 27001), and threat intelligence. Strong analytical, problem-solving, and communication skills. Ability to work in a 24x7 SOC environment (if applicable) Preferred Qualifications Certified SOC Analyst (CSA) Certified Incident Handler (GCIH, ECIH) Splunk Certified Admin / QRadar Certified Analyst CompTIA Security+ / CEH / CISSP (preferred but not mandatory Why Gruve At Gruve, we foster a culture of innovation, collaboration, and continuous learning. We are committed to building a diverse and inclusive workplace where everyone can thrive and contribute their best work. If you’re passionate about technology and eager to make an impact, we’d love to hear from you. Gruve is an equal opportunity employer. We welcome applicants from all backgrounds and thank all who apply; however, only those selected for an interview will be contacted. Show more Show less

The Key Skills Required. Hands-on experience with M365, AD DS, DNS, DHCP, backup process. Hands-on experience on firewalls, IDS/IPS, SIEM, EDR, antivirus, and vulnerability scanning tools. At least 10 years’ working with large Infrastructure. Advanced knowledge about Windows Server, Windows Clients, Linux Server. Understanding of attack vectors, Familiarity with different network topologies and protocols such as TCP/IP, DNS, HTTP(S), SMTP, VLANs, VPNs, WLAN and routing/switching. Firm knowledge of technical details of SMTP / e-mail in general and therefore to analyze e-mail headers in order to determine additional data such as real origin etc. Expert regarding the operation of Outlook & Exchange from a user’s perspective Firm grasp of phishing techniques and e-mail based attack patterns Commitment to continuous learning. Familiarity with security-related regulations, such as GDPR, HIPAA, and PCI-DSS. Excellent verbal, written, and interpersonal communication skills, especially ability to break down complex technical information to non-technical stakeholders and articulate the impact of security design flaws, attack surfaces and vulnerabilities Should possess very good knowledge in the areas of : Understanding of IT security (and related) compliance frameworks like NIST, ISO, SOC 2, HIPAA. Deploy and maintain security tools and systems. Implement security policy, standards, guidelines, processes, and procedures to ensure ongoing security posture. This role requires a deep understanding of endpoint security, network protocols, server virtualization, and data transfer processes to ensure the smooth and secure operation of the company's IT systems. Perform run the business SAN administrative duties including Backup Management Participate in large scale component upgrades datacenter migrations and similar enterprise initiatives. Develop communicate and monitor the operational standards and procedures for backups. Perform all routine administrative and operational tasks Manage current storage environment. Incorporates disk /SAN and storage software. Resolve storage short falls. Alert and resolve performance issues and advise end users. High availability of data to all applications. Hyper -V Data Migrations & Replication. Work with application developers to determine storage requirements. Work with existing programmers System Administrators and DBAs to optimize storage. Maintain proper backup schedules. Restore and recover data as requested. Extensive experience deploying mission critical servers in a 24 by 7 production environment. Mentor and create documentation knowledge base articles for routine tasks and troubleshoot on the infrastructure under support. Align job policy for retention and compliance by mandated legal and agency data handling requirements. Operate hardware software for the Backup and Recovery infrastructure Show more Show less

Description Job Responsibilities: Internal Audit: Develop an annual audit plan based on a thorough risk assessment and in alignment with organizational goals and regulatory requirements. Lead and coordinate internal audit engagements to evaluate the effectiveness of GRC controls, policies, and procedures around ISO 27001, 27701, NIST800-53, PCI/DSS, SOC2, IRAP, Conduct audits across various departments and functions to assess compliance with company policies, industry standards, and regulatory requirements. Identify and assess key risks related to governance, risk management, and compliance. Collaborate with stakeholders to develop risk mitigation strategies and action plans. Monitor and report on the implementation of risk mitigation initiatives to ensure effectiveness. Ensure compliance with relevant laws, regulations, standards, and internal policies. Focus on SOC2, ISO 27001, ISO 27701, PCI DSS, HIPAA, NIST and IRAP. Stay abreast of regulatory changes and industry trends to update audit procedures and compliance programs accordingly. Provide guidance and support to business units on compliance-related matters. Prepare clear and concise audit reports detailing findings, recommendations, and corrective actions. Present audit findings and recommendations to senior management and audit committee members. Facilitate discussions with stakeholders to address audit findings and promote continuous improvement in GRC practices. Supervise and mentor audit team members, providing guidance and professional development opportunities. Foster a culture of integrity, accountability, and continuous learning within the audit team. Conduct performance evaluations and provide constructive feedback to team members. PCI/DSS Conduct thorough assessments and audits of systems, processes, and controls to evaluate compliance with PCI/DSS (Payment Card Industry Data Security Standard) requirements. Identify gaps, vulnerabilities, and areas of non-compliance, and provide recommendations for remediation. Prepare detailed assessment reports documenting findings, observations, and recommendations for improving PCI/DSS compliance. Communicate assessment results to clients, including technical and non-technical stakeholders, in a clear and understandable manner. Provide expert guidance and advisory services to clients on PCI/DSS requirements, controls, and best practices. Assist clients in developing and implementing remediation plans to address identified compliance deficiencies. Assess and evaluate risks associated with payment card data processing and storage within client environments. Recommend risk mitigation strategies and controls to enhance security posture and compliance with PCI/DSS standards. Collaborate effectively with clients, internal teams, and external auditors to facilitate the PCI/DSS assessment process. Serve as a trusted advisor and subject matter expert on PCI/DSS compliance matters. ISO 27001: Lead the implementation of the ISO 27001/27701 standard across the organization, including scoping, planning, and executing ISMS initiatives. Develop and maintain project plans, timelines, and deliverables to ensure successful implementation of ISO 27001/27701 requirements. Conduct comprehensive risk assessments to identify information security risks and vulnerabilities. Develop risk treatment plans and controls to mitigate identified risks in alignment with ISO 27001/27701 guidelines. Develop, review, and update information security policies, procedures, and guidelines to comply with ISO 27001/27701 standards. Ensure policies and procedures are communicated effectively to all employees and stakeholders. Develop and deliver training programs on information security policies, procedures, and best practices for employees and stakeholders. Promote awareness of information security requirements and responsibilities throughout the organization. Plan and conduct internal audits of the ISMS to assess compliance with ISO 27001/27701 standards and organizational policies. Monitor and track corrective and preventive actions (CAPAs) to address audit findings and improve ISMS effectiveness. Maintain documentation of ISMS activities, including risk assessments, policies, procedures, audit reports, and records of compliance activities. Prepare regular reports and presentations for senior management on the status of ISMS implementation, compliance, and improvement initiatives. SOC2 IRAP HIPAA Qualifications : Bachelor’s degree in Accounting, Finance, Business Administration, or a related field. Advanced degree (e.g., MBA, Master of Accounting) preferred. Certified Internal Auditor (CIA), Certified Information Systems Auditor (CISA), or similar certification preferred. Certified Information Systems Security Professional (CISSP), Certified PCI-DSS Professional (PCIP), or similar certifications highly desirable. 10+ years of experience in internal auditing, with specific experience in GRC audit management. Certified Information Security Manager (CISM), or ISO 27001 Lead Auditor/Implementer certification required. 10+ years of experience in implementing and managing Information Security Management Systems (ISMS) based on ISO 27001/27701 standards. Strong understanding of ISO 27001/27701 requirements, controls, and implementation best practices. Strong understanding of governance frameworks, risk management practices, and regulatory requirements. Excellent analytical skills and attention to detail. Effective communication skills, with the ability to interact confidently with stakeholders at all levels of the organization. Requirements Job Responsibilities: Internal Audit: Develop an annual audit plan based on a thorough risk assessment and in alignment with organizational goals and regulatory requirements. Lead and coordinate internal audit engagements to evaluate the effectiveness of GRC controls, policies, and procedures around ISO 27001, 27701, NIST800-53, PCI/DSS, SOC2, IRAP, Conduct audits across various departments and functions to assess compliance with company policies, industry standards, and regulatory requirements. Identify and assess key risks related to governance, risk management, and compliance. Collaborate with stakeholders to develop risk mitigation strategies and action plans. Monitor and report on the implementation of risk mitigation initiatives to ensure effectiveness. Ensure compliance with relevant laws, regulations, standards, and internal policies. Focus on SOC2, ISO 27001, ISO 27701, PCI DSS, HIPAA, NIST and IRAP. Stay abreast of regulatory changes and industry trends to update audit procedures and compliance programs accordingly. Provide guidance and support to business units on compliance-related matters. Prepare clear and concise audit reports detailing findings, recommendations, and corrective actions. Present audit findings and recommendations to senior management and audit committee members. Facilitate discussions with stakeholders to address audit findings and promote continuous improvement in GRC practices. Supervise and mentor audit team members, providing guidance and professional development opportunities. Foster a culture of integrity, accountability, and continuous learning within the audit team. Conduct performance evaluations and provide constructive feedback to team members. PCI/DSS Conduct thorough assessments and audits of systems, processes, and controls to evaluate compliance with PCI/DSS (Payment Card Industry Data Security Standard) requirements. Identify gaps, vulnerabilities, and areas of non-compliance, and provide recommendations for remediation. Prepare detailed assessment reports documenting findings, observations, and recommendations for improving PCI/DSS compliance. Communicate assessment results to clients, including technical and non-technical stakeholders, in a clear and understandable manner. Provide expert guidance and advisory services to clients on PCI/DSS requirements, controls, and best practices. Assist clients in developing and implementing remediation plans to address identified compliance deficiencies. Assess and evaluate risks associated with payment card data processing and storage within client environments. Recommend risk mitigation strategies and controls to enhance security posture and compliance with PCI/DSS standards. Collaborate effectively with clients, internal teams, and external auditors to facilitate the PCI/DSS assessment process. Serve as a trusted advisor and subject matter expert on PCI/DSS compliance matters. ISO 27001: Lead the implementation of the ISO 27001/27701 standard across the organization, including scoping, planning, and executing ISMS initiatives. Develop and maintain project plans, timelines, and deliverables to ensure successful implementation of ISO 27001/27701 requirements. Conduct comprehensive risk assessments to identify information security risks and vulnerabilities. Develop risk treatment plans and controls to mitigate identified risks in alignment with ISO 27001/27701 guidelines. Develop, review, and update information security policies, procedures, and guidelines to comply with ISO 27001/27701 standards. Ensure policies and procedures are communicated effectively to all employees and stakeholders. Develop and deliver training programs on information security policies, procedures, and best practices for employees and stakeholders. Promote awareness of information security requirements and responsibilities throughout the organization. Plan and conduct internal audits of the ISMS to assess compliance with ISO 27001/27701 standards and organizational policies. Monitor and track corrective and preventive actions (CAPAs) to address audit findings and improve ISMS effectiveness. Maintain documentation of ISMS activities, including risk assessments, policies, procedures, audit reports, and records of compliance activities. Prepare regular reports and presentations for senior management on the status of ISMS implementation, compliance, and improvement initiatives. SOC2 IRAP HIPAA Qualifications : Bachelor’s degree in Accounting, Finance, Business Administration, or a related field. Advanced degree (e.g., MBA, Master of Accounting) preferred. Certified Internal Auditor (CIA), Certified Information Systems Auditor (CISA), or similar certification preferred. Certified Information Systems Security Professional (CISSP), Certified PCI-DSS Professional (PCIP), or similar certifications highly desirable. 10+ years of experience in internal auditing, with specific experience in GRC audit management. Certified Information Security Manager (CISM), or ISO 27001 Lead Auditor/Implementer certification required. 10+ years of experience in implementing and managing Information Security Management Systems (ISMS) based on ISO 27001/27701 standards. Strong understanding of ISO 27001/27701 requirements, controls, and implementation best practices. Strong understanding of governance frameworks, risk management practices, and regulatory requirements. Excellent analytical skills and attention to detail. Effective communication skills, with the ability to interact confidently with stakeholders at all levels of the organization. Job responsibilities Job Responsibilities: Internal Audit: Develop an annual audit plan based on a thorough risk assessment and in alignment with organizational goals and regulatory requirements. Lead and coordinate internal audit engagements to evaluate the effectiveness of GRC controls, policies, and procedures around ISO 27001, 27701, NIST800-53, PCI/DSS, SOC2, IRAP, Conduct audits across various departments and functions to assess compliance with company policies, industry standards, and regulatory requirements. Identify and assess key risks related to governance, risk management, and compliance. Collaborate with stakeholders to develop risk mitigation strategies and action plans. Monitor and report on the implementation of risk mitigation initiatives to ensure effectiveness. Ensure compliance with relevant laws, regulations, standards, and internal policies. Focus on SOC2, ISO 27001, ISO 27701, PCI DSS, HIPAA, NIST and IRAP. Stay abreast of regulatory changes and industry trends to update audit procedures and compliance programs accordingly. Provide guidance and support to business units on compliance-related matters. Prepare clear and concise audit reports detailing findings, recommendations, and corrective actions. Present audit findings and recommendations to senior management and audit committee members. Facilitate discussions with stakeholders to address audit findings and promote continuous improvement in GRC practices. Supervise and mentor audit team members, providing guidance and professional development opportunities. Foster a culture of integrity, accountability, and continuous learning within the audit team. Conduct performance evaluations and provide constructive feedback to team members. PCI/DSS Conduct thorough assessments and audits of systems, processes, and controls to evaluate compliance with PCI/DSS (Payment Card Industry Data Security Standard) requirements. Identify gaps, vulnerabilities, and areas of non-compliance, and provide recommendations for remediation. Prepare detailed assessment reports documenting findings, observations, and recommendations for improving PCI/DSS compliance. Communicate assessment results to clients, including technical and non-technical stakeholders, in a clear and understandable manner. Provide expert guidance and advisory services to clients on PCI/DSS requirements, controls, and best practices. Assist clients in developing and implementing remediation plans to address identified compliance deficiencies. Assess and evaluate risks associated with payment card data processing and storage within client environments. Recommend risk mitigation strategies and controls to enhance security posture and compliance with PCI/DSS standards. Collaborate effectively with clients, internal teams, and external auditors to facilitate the PCI/DSS assessment process. Serve as a trusted advisor and subject matter expert on PCI/DSS compliance matters. ISO 27001: Lead the implementation of the ISO 27001/27701 standard across the organization, including scoping, planning, and executing ISMS initiatives. Develop and maintain project plans, timelines, and deliverables to ensure successful implementation of ISO 27001/27701 requirements. Conduct comprehensive risk assessments to identify information security risks and vulnerabilities. Develop risk treatment plans and controls to mitigate identified risks in alignment with ISO 27001/27701 guidelines. Develop, review, and update information security policies, procedures, and guidelines to comply with ISO 27001/27701 standards. Ensure policies and procedures are communicated effectively to all employees and stakeholders. Develop and deliver training programs on information security policies, procedures, and best practices for employees and stakeholders. Promote awareness of information security requirements and responsibilities throughout the organization. Plan and conduct internal audits of the ISMS to assess compliance with ISO 27001/27701 standards and organizational policies. Monitor and track corrective and preventive actions (CAPAs) to address audit findings and improve ISMS effectiveness. Maintain documentation of ISMS activities, including risk assessments, policies, procedures, audit reports, and records of compliance activities. Prepare regular reports and presentations for senior management on the status of ISMS implementation, compliance, and improvement initiatives. SOC2 IRAP HIPAA Qualifications : Bachelor’s degree in Accounting, Finance, Business Administration, or a related field. Advanced degree (e.g., MBA, Master of Accounting) preferred. Certified Internal Auditor (CIA), Certified Information Systems Auditor (CISA), or similar certification preferred. Certified Information Systems Security Professional (CISSP), Certified PCI-DSS Professional (PCIP), or similar certifications highly desirable. 10+ years of experience in internal auditing, with specific experience in GRC audit management. Certified Information Security Manager (CISM), or ISO 27001 Lead Auditor/Implementer certification required. 10+ years of experience in implementing and managing Information Security Management Systems (ISMS) based on ISO 27001/27701 standards. Strong understanding of ISO 27001/27701 requirements, controls, and implementation best practices. Strong understanding of governance frameworks, risk management practices, and regulatory requirements. Excellent analytical skills and attention to detail. Effective communication skills, with the ability to interact confidently with stakeholders at all levels of the organization. What we offer Culture of caring. At GlobalLogic, we prioritize a culture of caring. Across every region and department, at every level, we consistently put people first. From day one, you’ll experience an inclusive culture of acceptance and belonging, where you’ll have the chance to build meaningful connections with collaborative teammates, supportive managers, and compassionate leaders. Learning and development. We are committed to your continuous learning and development. You’ll learn and grow daily in an environment with many opportunities to try new things, sharpen your skills, and advance your career at GlobalLogic. With our Career Navigator tool as just one example, GlobalLogic offers a rich array of programs, training curricula, and hands-on opportunities to grow personally and professionally. Interesting & meaningful work. GlobalLogic is known for engineering impact for and with clients around the world. As part of our team, you’ll have the chance to work on projects that matter. Each is a unique opportunity to engage your curiosity and creative problem-solving skills as you help clients reimagine what’s possible and bring new solutions to market. In the process, you’ll have the privilege of working on some of the most cutting-edge and impactful solutions shaping the world today. Balance and flexibility. We believe in the importance of balance and flexibility. With many functional career areas, roles, and work arrangements, you can explore ways of achieving the perfect balance between your work and life. Your life extends beyond the office, and we always do our best to help you integrate and balance the best of work and life, having fun along the way! High-trust organization. We are a high-trust organization where integrity is key. By joining GlobalLogic, you’re placing your trust in a safe, reliable, and ethical global company. Integrity and trust are a cornerstone of our value proposition to our employees and clients. You will find truthfulness, candor, and integrity in everything we do. About GlobalLogic GlobalLogic, a Hitachi Group Company, is a trusted digital engineering partner to the world’s largest and most forward-thinking companies. Since 2000, we’ve been at the forefront of the digital revolution – helping create some of the most innovative and widely used digital products and experiences. Today we continue to collaborate with clients in transforming businesses and redefining industries through intelligent products, platforms, and services. Show more Show less

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Integrated Security Risk Management Good to have skills : Security Architecture Design Minimum 3 Year(s) Of Experience Is Required Educational Qualification : 15 years full time education Summary: As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to assess security needs, documenting security controls, and transitioning to cloud security-managed operations, all while ensuring compliance with industry standards and best practices. Roles & Responsibilities: - Expected to perform independently and become an SME. - Required active participation/contribution in team discussions. - Contribute in providing solutions to work related problems. - Engage in continuous learning to stay updated with the latest security trends and technologies. - Assist in the development of security policies and procedures to enhance organizational security posture. Professional & Technical Skills: - Must To Have Skills: Proficiency in Integrated Security Risk Management. - Good To Have Skills: Experience with Security Architecture Design. - Strong understanding of risk assessment methodologies and frameworks. - Experience in implementing security controls in cloud environments. - Familiarity with compliance standards such as ISO 27001, NIST, and GDPR. Additional Information: - The candidate should have minimum 3 years of experience in Integrated Security Risk Management. - This position is based at our Noida office. - A 15 years full time education is required. Show more Show less

JOB DESCRIPTION We are seeking a Senior Cloud Security Architect with deep expertise in securing cloud infrastructures in AWS and Azure. This role will drive secure cloud adoption, design security architectures, and implement proactive threat detection and risk mitigation strategies. The ideal candidate will be a technical leader with hands-on experience securing complex cloud environments, integrating automation, DevSecOps, and compliance frameworks into scalable cloud security solutions. Key Responsibilities Cloud Security Architecture & Implementation: - Design and implement secure, scalable cloud architectures in AWS and Azure. - Develop security frameworks, policies, and standards. - Architect IAM, RBAC, and CIEM solutions. - Secure cloud-native services (serverless, Kubernetes, containers). - Deploy and secure network security controls (firewalls, VPNs, IPS). Threat Detection & Response: - Manage SIEM, SOAR, and EDR/XDR solutions. - Implement real-time threat detection and automated response. - Analyze network traffic, logs, and security events. - Use threat intelligence platforms and CSPM solutions. DevSecOps & CI/CD Security: - Secure CI/CD pipelines (Jenkins, GitHub Actions, GitLab CI/CD). - Integrate automated security testing (SAST, DAST, SCA). - Implement API security best practices. Offensive Security & Compliance: - Conduct penetration testing and security assessments. - Implement data security controls (encryption, DLP). - Ensure compliance with NIST 800-53, ISO 27001, PCI DSS, HIPAA, GDPR. - Perform risk assessments and develop remediation plans. REQUIRED SKILLS AND EXPERIENCE - 10+ years of security experience, with 4+ years in cloud security architecture and engineering - Expert knowledge of AWS and Azure security architectures, cloud-native services, and security controls - Deep expertise in cloud networking, cryptography, and security protocols (TLS, OAuth, OIDC, Zero Trust, etc.) - Experience with Infrastructure as Code (Terraform, CloudFormation, Bicep) for secure cloud deployments - Proficiency in automation and scripting (Python, PowerShell, Bash) for security orchestration - Strong understanding of Kubernetes security, including Open Policy Agent (OPA), Kyverno, Kubernetes Pod Security Standards (PSS), and service mesh technologies NICE TO HAVE SKILLS AND EXPERIENCE - Cloud Certifications, such as AWS Certified Solutions Architect - Professional, AWS Certified Security - Specialty, Microsoft Certified Azure Solutions Architect Expert, Azure Security Engineer Associate, Google Cloud Architect, CISSP, CCSP, CISM Compensation : $18/hr to $20/hr. Exact compensation may vary based on several factors, including skills, experience, and education. Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law. Show more Show less

We are recruiting for our client, who is US based F100 GCC. Job Title: Associate Director, Cyber Security Location: Hyderabad, India Job Summary: The Associate Director of Cyber Security will serve as a key member of the Cyber Security leadership team, responsible for developing and executing the enterprise-wide cyber security strategy. This role leads multiple functional areas across security operations, engineering, governance, risk management, and compliance. Reporting directly to the Head of I/O & Cyber Security, the Associate Director will provide strategic direction, operational oversight, and technical leadership to protect the organization’s information assets, systems, and infrastructure from internal and external threats . Key Responsibilities: Leadership and Management: Lead and manage a team of technical resources located offshore, ensuring high performance, motivation, and professional development. Oversee Security Operations Center (SOC), incident response, vulnerability management, threat intelligence, and endpoint protection. Direct the development and implementation of security architecture, tools, and frameworks across cloud, on-premises, and hybrid environments. Partner with IT, legal, compliance, risk, privacy, and business stakeholders to manage security risk and ensure adherence to industry frameworks (e.g., NIST CSF, ISO 27001, CIS). Drive the maturity of identity and access management (IAM), data loss prevention (DLP), zero trust architecture, and secure DevOps initiatives. Develop and maintain security policies, standards, metrics, and reporting to executive leadership and audit bodies. Build, lead, and mentor a high-performing, diverse cybersecurity team across technical and GRC domains. Manage relationships with external vendors, partners, auditors, and regulatory entities. Support cyber incident response planning, tabletop exercises, and executive-level simulations. Stay informed of emerging threats, trends, and technologies to proactively guide strategy and investments. Project Deliverables: Oversee the planning, execution, and delivery of technical projects, ensuring they are completed on time, within scope, and within budget. Collaboration: Work closely with onshore teams, to align offshore activities with overall business objectives and project goals. Resource Allocation: Efficiently allocate and manage technical resources to meet project / operation demands and optimize productivity. Quality Assurance: Implement and maintain quality assurance processes to ensure the highest standards of technical delivery. Communication: Facilitate effective communication between offshore and onshore teams, ensuring transparency and alignment on project status, risks, and issues. Problem Solving: Proactively identify and resolve technical and operational challenges to ensure smooth project execution. Stakeholder Management: Build and maintain strong relationships with key stakeholders, providing regular updates and addressing any concerns or requirements. Qualifications: Education: Bachelor’s degree in computer science, Information Technology, or a related field. A master’s degree is preferred. Experience: 5–10+ years of progressive experience in cyber security, including at least 5 years in senior leadership roles. Technical Skills: Deep understanding of cyber security frameworks (NIST CSF, NIST 800-53, MITRE ATT&CK) Leadership Skills: Demonstrated experience building and managing enterprise security programs in complex, regulated environments. Proven ability to influence at all levels, including executives and board members. Excellent leadership, communication, and stakeholder engagement skills. Problem-Solving: Strong technical foundation in network security, cloud security (GCP, AWS, Azure, OCI), security engineering, and incident response. Cultural Awareness: Ability to work effectively in a multicultural environment and manage teams across different time zones. Preferred Qualifications: Experience working in a global organization with distributed teams. Certification in (CISSP, CISM, CISA, CCSP, etc.) strongly preferred. Experience and Certifications in ITIL, Agile and DevOps practices. Experience working in Retail & Manufacturing. Knowledge of managing regulatory environments such as HIPAA, SOX, PCI-DSS, GDPR. Experience integrating security in agile, DevOps, and CI/CD pipelines Show more Show less

Now Hiring: Senior Cyber Security Engineers Location: Bangalore (Preferred) | Open to Remote Candidates Across India Engagement Type: 8–12 Months Contract OR Full-Time (Direct Hire) Salary: Open – Based on Experience (DoE) Are you a seasoned Cyber Security Engineer with a strong track record in cloud security, vulnerability management, DLP, and IAM ? We are hiring for immediate openings to support a key project for a top-tier enterprise client. This is a high-impact role for professionals who bring both strategic insight and hands-on expertise to secure cloud environments, protect critical data, and manage access controls. Key Responsibilities: Implement and manage end-to-end cloud security across AWS, Azure, or GCP environments Conduct vulnerability assessments , analyze threat reports, and drive mitigation strategies Design and enforce Data Loss Prevention (DLP) policies and tools Manage Identity and Access Management (IAM) systems including provisioning, de-provisioning, RBAC, and SSO integrations Collaborate with IT, DevOps, Infrastructure, and Compliance teams to ensure robust security posture Support audits, risk assessments , and compliance initiatives (ISO, SOC2, etc.) Document and update security architectures, standards, and operational procedures Required Skills & Experience: 8–10 years of experience in Cyber Security Engineering or Information Security roles Hands-on expertise with: Cloud security tools (AWS Security Hub, Azure Security Center, etc.) Vulnerability management (Qualys, Nessus, Tenable, etc.) DLP platforms (Symantec, Forcepoint, McAfee, etc.) IAM platforms (Okta, Azure AD, Ping Identity, SailPoint, etc.) Strong knowledge of security frameworks (NIST, CIS Controls, etc.) Excellent communication , problem-solving , and stakeholder management skills Certifications like CISSP, CISM, CEH, AWS/Azure Security are a plus Show more Show less

Level: Consultant/ Assistant Manager Skills: IT Audit + ITGC + ITAC + Code Review Experience: 3-7 Years Job Location: Bangalore Role & responsibilities Perform testing of IT Application Controls, IPE, and Interface Controls through code reviews , IT General Controls review covering areas such as Change Management, Access Management, Backup Management, Incident and Problem Management, SDLC, Data Migration, Batch Job scheduling/monitoring and Business Continuity and Disaster Recovery Risk Based IT Internal Audit for Financial Services Entities IT SOX 404 Controls Testing, Quality Assurance Internal Financial Controls related to IT General Controls as part of Financial Statements Audits Business Systems Controls / IT Application Controls IT Risk & Control Self-Assessment Auditing Emerging Technologies such as Cloud Security, Intelligent Automation, RPA, IoT etc. Working knowledge of programming languages(C/C++/Java/SQL) Preferred candidate profile A Bachelor's degree in engineering and approximately 3-7 years of related work experience; or a masters or MBA degree in business, computer science, information systems, engineering Expertise in code review skills (e.g., Java, C++, C, SQL, Oracle) Experience in performing IT audits of banking/financial sector applications Good to have knowledge of other IT regulations, standards and benchmarks used by the IT industry (e.g., NIST, PCI-DSS, ITIL, OWASP, SOX, COBIT, SSAE18/ISAE 3402 etc.) Show more Show less

About The Role Grade Level (for internal use): 13 Location: Gurgaon, Hyderabad and Bangalore Job Description We are seeking a highly skilled and visionary Agentic AI Architect to lead the strategic design, development, and scalable implementation of autonomous AI systems within our organization. This role demands an individual with deep expertise in cutting-edge AI architectures, a strong commitment to ethical AI practices, and a proven ability to drive innovation. The ideal candidate will architect intelligent, self-directed decision-making systems that integrate seamlessly with enterprise workflows and propel our operational efficiency forward. Key Responsibilities As an Agentic AI Architect, you will: AI Architecture and System Design: Architect and design robust, scalable, and autonomous AI systems that seamlessly integrate with enterprise workflows, cloud platforms, and advanced LLM frameworks. Define blueprints for APIs, agents, and pipelines to enable dynamic, context-aware AI decision-making. Strategic AI Leadership: Provide technical leadership and strategic direction for AI initiatives focused on agentic systems. Guide cross-functional teams of AI engineers, data scientists, and developers in the adoption and implementation of advanced AI architectures. Framework and Platform Expertise: Evaluate, recommend, and implement leading AI tools and frameworks, with a strong focus on autonomous AI solutions (e.g., multi-agent frameworks, self-optimizing systems, LLM-driven decision engines). Drive the selection and utilization of cloud platforms (AWS SageMaker preferred, Azure ML, Google Cloud Vertex AI) for scalable AI deployments. Customization and Optimization: Design strategies for optimizing autonomous AI models for domain-specific tasks (e.g., real-time analytics, adaptive automation). Define methodologies for fine-tuning LLMs, multi-agent frameworks, and feedback loops to align with overarching business goals and architectural principles. Innovation and Research Integration: Spearhead the integration of R&D initiatives into production architectures, advancing agentic AI capabilities. Evaluate and prototype emerging frameworks (e.g., Autogen, AutoGPT, LangChain), neuro-symbolic architectures, and self-improving AI systems for architectural viability. Documentation and Architectural Blueprinting: Develop comprehensive technical white papers, architectural diagrams, and best practices for autonomous AI system design and deployment. Serve as a thought leader, sharing architectural insights at conferences and contributing to open-source AI communities. System Validation and Resilience: Design and oversee rigorous architectural testing of AI agents, including stress testing, adversarial scenario simulations, and bias mitigation strategies, ensuring alignment with compliance, ethical and performance benchmarks for robust production systems. Stakeholder Collaboration & Advocacy: Collaborate with executives, product teams, and compliance officers to align AI architectural initiatives with strategic objectives. Advocate for AI-driven innovation and architectural best practices across the organization. Qualifications Technical Expertise: 12+ years of progressive experience in AI/ML, with a strong track record as an AI Architect, ML Architect, or AI Solutions Lead. 7+ years specifically focused on designing and architecting autonomous/agentic AI systems (e.g., multi-agent frameworks, self-optimizing systems, or LLM-driven decision engines). Expertise in Python (mandatory) and familiarity with Node.js for architectural integrations. Extensive hands-on experience with autonomous AI tools and frameworks: LangChain, Autogen, CrewAI, or architecting custom agentic frameworks. Proficiency in cloud platforms for AI architecture: AWS SageMaker (most preferred), Azure ML, or Google Cloud Vertex AI, with a deep understanding of their AI service offerings. Demonstrable experience with MLOps pipelines (e.g., Kubeflow, MLflow) and designing scalable deployment strategies for AI agents in production environments. Leadership & Strategic Acumen Proven track record of leading the architectural direction of AI/ML teams, managing complex AI projects, and mentoring senior technical staff. Strong understanding and practical application of AI governance frameworks (e.g., EU AI Act, NIST AI RMF) and advanced bias mitigation techniques within AI architectures. Exceptional ability to translate complex technical AI concepts into clear, concise architectural plans and strategies for non-technical stakeholders and executive leadership. Ability to envision and articulate a long-term strategy for AI within the business, aligning AI initiatives with business objectives and market trends. Foster collaboration across various practices, including product management, engineering, and marketing, to ensure cohesive implementation of AI strategies that meet business goals. What’s In It For You? Our Purpose Progress is not a self-starter. It requires a catalyst to be set in motion. Information, imagination, people, technology–the right combination can unlock possibility and change the world. Our world is in transition and getting more complex by the day. We push past expected observations and seek out new levels of understanding so that we can help companies, governments and individuals make an impact on tomorrow. At S&P Global we transform data into Essential Intelligence®, pinpointing risks and opening possibilities. We Accelerate Progress. Our People We're more than 35,000 strong worldwide—so we're able to understand nuances while having a broad perspective. Our team is driven by curiosity and a shared belief that Essential Intelligence can help build a more prosperous future for us all. From finding new ways to measure sustainability to analyzing energy transition across the supply chain to building workflow solutions that make it easy to tap into insight and apply it. We are changing the way people see things and empowering them to make an impact on the world we live in. We’re committed to a more equitable future and to helping our customers find new, sustainable ways of doing business. We’re constantly seeking new solutions that have progress in mind. Join us and help create the critical insights that truly make a difference. Our Values Integrity, Discovery, Partnership At S&P Global, we focus on Powering Global Markets. Throughout our history, the world's leading organizations have relied on us for the Essential Intelligence they need to make confident decisions about the road ahead. We start with a foundation of integrity in all we do, bring a spirit of discovery to our work, and collaborate in close partnership with each other and our customers to achieve shared goals. Benefits We take care of you, so you can take care of business. We care about our people. That’s why we provide everything you—and your career—need to thrive at S&P Global. Our Benefits Include Health & Wellness: Health care coverage designed for the mind and body. Flexible Downtime: Generous time off helps keep you energized for your time on. Continuous Learning: Access a wealth of resources to grow your career and learn valuable new skills. Invest in Your Future: Secure your financial future through competitive pay, retirement planning, a continuing education program with a company-matched student loan contribution, and financial wellness programs. Family Friendly Perks: It’s not just about you. S&P Global has perks for your partners and little ones, too, with some best-in class benefits for families. Beyond the Basics: From retail discounts to referral incentive awards—small perks can make a big difference. For more information on benefits by country visit: https://spgbenefits.com/benefit-summaries Global Hiring And Opportunity At S&P Global At S&P Global, we are committed to fostering a connected and engaged workplace where all individuals have access to opportunities based on their skills, experience, and contributions. Our hiring practices emphasize fairness, transparency, and merit, ensuring that we attract and retain top talent. By valuing different perspectives and promoting a culture of respect and collaboration, we drive innovation and power global markets. Equal Opportunity Employer S&P Global is an equal opportunity employer and all qualified candidates will receive consideration for employment without regard to race/ethnicity, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, marital status, military veteran status, unemployment status, or any other status protected by law. Only electronic job submissions will be considered for employment. If you need an accommodation during the application process due to a disability, please send an email to: EEO.Compliance@spglobal.com and your request will be forwarded to the appropriate person. US Candidates Only: The EEO is the Law Poster http://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf describes discrimination protections under federal law. Pay Transparency Nondiscrimination Provision - https://www.dol.gov/sites/dolgov/files/ofccp/pdf/pay-transp_%20English_formattedESQA508c.pdf 10 - Officials or Managers (EEO-2 Job Categories-United States of America), IFTECH103.2 - Middle Management Tier II (EEO Job Group), SWP Priority – Ratings - (Strategic Workforce Planning) Job ID: 316525 Posted On: 2025-06-11 Location: Gurgaon, Haryana, India Show more Show less

About The Role Grade Level (for internal use): 12 Lead Agentic AI Developer Location: Gurgaon, Hyderabad and Bangalore Job Description A Lead Agentic AI Developer will drive the design, development, and deployment of autonomous AI systems that enable intelligent, self-directed decision-making. Their day-to-day operations focus on advancing AI capabilities, leading teams, and ensuring ethical, scalable implementations. Responsibilities AI System Design and Development: Architect and build autonomous AI systems that integrate with enterprise workflows, cloud platforms, and LLM frameworks. Develop APIs, agents, and pipelines to enable dynamic, context-aware AI decision-making. Team Leadership and Mentorship: Lead cross-functional teams of AI engineers, data scientists, and developers. Mentor junior staff in agentic AI principles, reinforcement learning, and ethical AI governance. Customization and Advancement: Optimize autonomous AI models for domain-specific tasks (e.g., real-time analytics, adaptive automation). Fine-tune LLMs, multi-agent frameworks, and feedback loops to align with business goals. Ethical AI Governance: Monitor AI behavior, audit decision-making processes, and implement safeguards to ensure transparency, fairness, and compliance with regulatory standards. Innovation and Research: Spearhead R&D initiatives to advance agentic AI capabilities. Experiment with emerging frameworks (e.g.,Autogen, AutoGPT, LangChain), neuro-symbolic architectures, and self-improving AI systems. Documentation and Thought Leadership: Publish technical white papers, case studies, and best practices for autonomous AI. Share insights at conferences and contribute to open-source AI communities. System Validation: Oversee rigorous testing of AI agents, including stress testing, adversarial scenario simulations, and bias mitigation. Validate alignment with ethical and performance benchmarks. Stakeholder Leadership: Collaborate with executives, product teams, and compliance officers to align AI initiatives with strategic objectives. Advocate for AI-driven innovation across the organization. Required Skills/Qualifications What We’re Looking For : Technical Expertise: 8+ years as a Senior AI Engineer, ML Architect, or AI Solutions Lead, with 5+ years focused on autonomous/agentic AI systems (e.g., multi-agent frameworks, self-optimizing systems, or LLM-driven decision engines). Expertise in Python (mandatory) and familiarity with Node.js. Hands-on experience with autonomous AI tools: LangChain, Autogen, CrewAI, or custom agentic frameworks. Proficiency in cloud platforms: AWS SageMaker (most preferred), Azure ML, or Google Cloud Vertex AI. Experience with MLOps pipelines (e.g., Kubeflow, MLflow) and scalable deployment of AI agents. Leadership: Proven track record of leading AI/ML teams, managing complex projects, and mentoring technical staff. Ethical AI: Familiarity with AI governance frameworks (e.g., EU AI Act, NIST AI RMF) and bias mitigation techniques. Communication: Exceptional ability to translate technical AI concepts for non-technical stakeholders. Nice To Have Contributions to AI research (published papers, patents) or open-source AI projects (e.g., TensorFlow Agents, AutoGen). Experience with DevOps/MLOps tools: Kubeflow, MLflow, Docker, or Terraform. Expertise in NLP, computer vision, or graph-based AI systems. Familiarity with quantum computing or neuromorphic architectures for AI. What’s In It For You? Our Purpose Progress is not a self-starter. It requires a catalyst to be set in motion. Information, imagination, people, technology–the right combination can unlock possibility and change the world. Our world is in transition and getting more complex by the day. We push past expected observations and seek out new levels of understanding so that we can help companies, governments and individuals make an impact on tomorrow. At S&P Global we transform data into Essential Intelligence®, pinpointing risks and opening possibilities. We Accelerate Progress. Our People We're more than 35,000 strong worldwide—so we're able to understand nuances while having a broad perspective. Our team is driven by curiosity and a shared belief that Essential Intelligence can help build a more prosperous future for us all. From finding new ways to measure sustainability to analyzing energy transition across the supply chain to building workflow solutions that make it easy to tap into insight and apply it. We are changing the way people see things and empowering them to make an impact on the world we live in. We’re committed to a more equitable future and to helping our customers find new, sustainable ways of doing business. We’re constantly seeking new solutions that have progress in mind. Join us and help create the critical insights that truly make a difference. Our Values Integrity, Discovery, Partnership At S&P Global, we focus on Powering Global Markets. Throughout our history, the world's leading organizations have relied on us for the Essential Intelligence they need to make confident decisions about the road ahead. We start with a foundation of integrity in all we do, bring a spirit of discovery to our work, and collaborate in close partnership with each other and our customers to achieve shared goals. Benefits We take care of you, so you can take care of business. We care about our people. That’s why we provide everything you—and your career—need to thrive at S&P Global. Our Benefits Include Health & Wellness: Health care coverage designed for the mind and body. Flexible Downtime: Generous time off helps keep you energized for your time on. Continuous Learning: Access a wealth of resources to grow your career and learn valuable new skills. Invest in Your Future: Secure your financial future through competitive pay, retirement planning, a continuing education program with a company-matched student loan contribution, and financial wellness programs. Family Friendly Perks: It’s not just about you. S&P Global has perks for your partners and little ones, too, with some best-in class benefits for families. Beyond the Basics: From retail discounts to referral incentive awards—small perks can make a big difference. For more information on benefits by country visit: https://spgbenefits.com/benefit-summaries Global Hiring And Opportunity At S&P Global At S&P Global, we are committed to fostering a connected and engaged workplace where all individuals have access to opportunities based on their skills, experience, and contributions. Our hiring practices emphasize fairness, transparency, and merit, ensuring that we attract and retain top talent. By valuing different perspectives and promoting a culture of respect and collaboration, we drive innovation and power global markets. Equal Opportunity Employer S&P Global is an equal opportunity employer and all qualified candidates will receive consideration for employment without regard to race/ethnicity, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, marital status, military veteran status, unemployment status, or any other status protected by law. Only electronic job submissions will be considered for employment. If you need an accommodation during the application process due to a disability, please send an email to: EEO.Compliance@spglobal.com and your request will be forwarded to the appropriate person. US Candidates Only: The EEO is the Law Poster http://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf describes discrimination protections under federal law. Pay Transparency Nondiscrimination Provision - https://www.dol.gov/sites/dolgov/files/ofccp/pdf/pay-transp_%20English_formattedESQA508c.pdf 10 - Officials or Managers (EEO-2 Job Categories-United States of America), IFTECH103.2 - Middle Management Tier II (EEO Job Group), SWP Priority – Ratings - (Strategic Workforce Planning) Job ID: 316524 Posted On: 2025-06-11 Location: Gurgaon, Haryana, India Show more Show less

Required Skills & Experience - 5+ years in detection engineering, threat hunting, or security operations. - Deep expertise with CrowdStrike Falcon Endpoint, Next-Gen SIEM, CS IDP, FUSION, and SOAR platforms. - Strong experience with cloud security (AWS, Azure). - Proficiency in CrowdStrike Query Language (FQL/CQL) and scripting (Python, PowerShell). - Proven ability to troubleshoot CrowdStrike sensor issues, agent health, and platform integration. - Familiarity with MITRE ATT&CK, NIST 800-53, and modern detection frameworks. - Expertise in CRBL and/or CRBL-like data optimization tools Nice to Have Skills & Experience - CrowdStrike certifications (e.g., CCFA, CCFH) - Experience with threat intelligence platforms and adversary emulation. - Familiarity with CI/CD pipelines, detection-as-code, and infrastructure-as-code practices. Job Description We are seeking a highly experienced Senior Detection Engineer to lead the development and optimization of advanced threat detection and response capabilities. This role requires deep expertise in CrowdStrike Falcon Endpoint, Next-Gen SIEM, CS Identity Protection (IDP), FUSION, SOAR platforms, and cloud security. The ideal candidate will serve as the subject matter expert (SME) for the entire CrowdStrike ecosystem, including sensor deployment, troubleshooting, automation, and query development. Key Responsibilities - Develop and maintain high-fidelity detection rules using CrowdStrike Falcon, Next-Gen SIEM, and FUSION. - Leverage CS IDP to detect identity-based threats and lateral movement. - Write and optimize queries using CrowdStrike Query Language (FQL/CQL) for threat hunting and detection validation. - Build and tune detections for cloud environments (AWS, Azure, GCP) and integrate with cloud-native logging tools. - Function as the primary SME for CrowdStrike, including Falcon, IDP, FUSION, and related modules. - Troubleshoot and resolve sensor deployment issues, agent health problems, and telemetry gaps. - Serve as the escalation point for CrowdStrike-related errors, automation failures, and detection tuning. - Design and implement automated response playbooks using SOAR platforms to reduce dwell time and automate/streamline triage. - Conduct threat modeling for enterprise systems, cloud platforms, and business-critical applications. Compensation : 30 LPA to 40 LPA Exact compensation may vary based on several factors, including skills, experience, and education. Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law. Show more Show less

Job Title: GRC Professional Location: Mohali Experience: 3+ Years Employment Type: Full-Time Job Summary: We are seeking a skilled and proactive GRC Professional to join our team in Mohali. The ideal candidate will play a pivotal role in developing and maintaining the organization’s Governance, Risk, and Compliance (GRC) framework, with a strong emphasis on Business Continuity Management (BCM) and the governance of security tools . This role serves as a bridge between security operations and compliance requirements, ensuring a resilient and well-governed IT environment. Key Responsibilities: GRC & Compliance Governance: Develop, implement, and maintain GRC policies, procedures, and standards aligned with industry best practices (e.g., ISO 27001, NIST) and applicable regulatory frameworks. Conduct regular assessments of internal controls, identify gaps, and recommend improvements. Support internal and external audit processes by preparing documentation and evidence of compliance. Business Continuity Management (BCM): Govern and continuously improve the organization's Business Continuity Management System (BCMS) . Lead efforts in Business Impact Analysis (BIA) , Business Continuity Planning (BCP) , and Disaster Recovery Planning (DRP) . Coordinate testing and review of continuity plans to ensure organizational resilience. Security Tool Governance: Oversee the governance of critical security tools including SIEM, DLP, EDR, IAM, and Firewalls . Define and enforce policies for the effective configuration, deployment, and monitoring of these tools. Establish accountability frameworks for tool ownership, usage, and compliance. Performance Metrics & Reporting: Develop and maintain dashboards and reports to track GRC, BCM, and security tool effectiveness. Present insights and recommendations to senior stakeholders. Cross-Functional Collaboration: Work closely with IT security, infrastructure, and business units to embed GRC practices into daily operations. Ensure security governance is aligned with business and IT strategies. Qualifications: Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related discipline. Minimum of 3 years of hands-on experience in GRC, with strong exposure to BCM and security tool governance . Sound understanding of security frameworks and regulatory requirements. Experience with tools such as SIEM, DLP, IAM, EDR, and firewalls. Strong analytical, documentation, and communication skills. Preferred Skills (Nice to Have): Relevant certifications such as ISO 27001 Lead Implementer/Auditor , CBCP , CISA , or CISSP . Experience in managing third-party risk or vendor assessments. Immediate joiners preferred. Show more Show less

Job Description We are seeking a Senior Cloud Security Architect with deep expertise in securing cloud infrastructures in AWS and Azure. This role will drive secure cloud adoption, design security architectures, and implement proactive threat detection and risk mitigation strategies. The ideal candidate will be a technical leader with hands-on experience securing complex cloud environments, integrating automation, DevSecOps, and compliance frameworks into scalable cloud security solutions. Required Skills & Experience - 10+ years of (cybersecurity) security experience, with 4+ years in cloud security architecture and engineering - Expert knowledge of AWS and Azure security architectures, cloud-native services, and security controls like (IAM, Firewalls, and Encryption) - Deep expertise in cloud networking, cryptography, and security protocols (TLS, OAuth, OIDC, Zero Trust, etc.) - Experience with Infrastructure as Code (Terraform, CloudFormation, Bicep) for secure cloud deployments - Proficiency in automation and scripting (Python, PowerShell, Bash) for security orchestration - Strong understanding of Kubernetes security, including Open Policy Agent (OPA), Kyverno, Kubernetes Pod Security Standards (PSS), and service mesh technologies Nice to Have Skills & Experience - Cloud Certifications, such as AWS Certified Solutions Architect - Professional, AWS Certified Security - Specialty, Microsoft Certified Azure Solutions Architect Expert, Azure Security Engineer Associate, Google Cloud Architect, CISSP, CCSP, CISM Key Responsibilities Cloud Security Architecture & Implementation: - Design and implement secure, scalable cloud architectures in AWS and Azure. - Develop security frameworks, policies, and standards. - Architect IAM, RBAC, and CIEM solutions. - Secure cloud-native services (serverless, Kubernetes, containers). - Deploy and secure network security controls (firewalls, VPNs, IPS). Threat Detection & Response: - Manage SIEM, SOAR, and EDR/XDR solutions. - Implement real-time threat detection and automated response. - Analyze network traffic, logs, and security events. - Use threat intelligence platforms and CSPM solutions. DevSecOps & CI/CD Security: - Secure CI/CD pipelines (Jenkins, GitHub Actions, GitLab CI/CD). - Integrate automated security testing (SAST, DAST, SCA). - Implement API security best practices. Offensive Security & Compliance: - Conduct penetration testing and security assessments. - Implement data security controls (encryption, DLP). - Ensure compliance with NIST 800-53, ISO 27001, PCI DSS, HIPAA, GDPR. - Perform risk assessments and develop remediation plans. Compensation : 30 LPA to 40 LPA Exact compensation may vary based on several factors, including skills, experience, and education. Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law. Show more Show less

When you join Verizon You want more out of a career. A place to share your ideas freely — even if they’re daring or different. Where the true you can learn, grow, and thrive. At Verizon, we power and empower how people live, work and play by connecting them to what brings them joy. We do what we love — driving innovation, creativity, and impact in the world. Our V Team is a community of people who anticipate, lead, and believe that listening is where learning begins. In crisis and in celebration, we come together — lifting our communities and building trust in how we show up, everywhere & always. Want in? Join the #VTeamLife. Job Description What you’ll be doing... We are seeking a highly skilled Enterprise Architect to lead the design and optimization of our secure network architecture across our hybrid IT environment - spanning both on-premises infrastructure and multiple-cloud platforms (e.g.AWS, Axure, GCP etc) & SASE/SSE products. This role focuses on enforcing robust security principles such as Zero Trust Architecture, network segmentation and intrusion detection and prevention, ensuring a consistent and secure access model across all environments. You will play a key role in modernizing network security, reducing attack surfaces, and ensuring that security scales with our global operations and digital transformation. Key Responsibilities Hybrid Network Security Architecture Architect and design secure network architecture across hybrid environments, encompassing data centers, campus, branch offices, and public/private cloud. Develop architecture patterns that ensure consistent security posture, traffic visibility, and policy enforcement across cloud and on-prem networks. Align networking and security design with zero trust principles, ensuring trust is continuously evaluated and enforced regardless of environment and location Zero Trust and Network Segmentation Define a zero trust model that includes identity-aware access, device trust, microsegmentation and continuous verification Architect and develop network segmentation strategies to isolate workloads, limit lateral movement and enforce least privilege across cloud and on-prem environments Establish trust zones, access control policies, and segmentation boundaries in hybrid architecture Intrusion Detection and Threat Monitoring Design and deploy intrusion detection and prevention systems tailed for hybrid environments Integrate network detection and response tools with cloud-native services and on-prem infrastructure to ensure end-to-end threat visibility Collaborate with SOC and threat intel teams to operationalize detection logic and incident response capability Policy Enforcement and Access Control Define ACLs and NAC systems for secure access across multiple trust zones Ensure consistent policy management and enforcement using next-gen firewalls, identity-aware proxy, network access brokers and zero trust gateways. Compliance and Risk Mitigation Ensure architectural decision meet internal and external compliance requirements Identify and mitigate risks associated with network design, configuration, third-party integration in a hybrid environment. Qualifications & Experience You’ll need to have: Bachelor's or six or more years of expereince. Six or more years of experience in enterprise network architecture and security. Strong expertise in security frameworks, CASB, SWG, ZTNA, and cloud security. Deep knowledge of cloud platforms (AWS, Azure, Google Cloud) and cloud-native security models. Experience designing and implementing zero trust architectures. Strong understanding of industry security standards such as NIST, ISO 27001, and CIS benchmarks. Excellent communication skills with the ability to articulate complex technical concepts to executives and stakeholders. Industry certifications such as CISSP, CCSP, CCIE, AWS/Azure Security, or SASE-related certifications are a plus. Self-motivated and forward-thinking Strong analytical and problem-solving skills, with the ability to work in a fast-paced, dynamic environment. Where you’ll be working In this hybrid role, you'll have a defined work location that includes work from home and assigned office days set by your manager. Scheduled Weekly Hours 40 Equal Employment Opportunity Verizon is an equal opportunity employer. We evaluate qualified applicants without regard to race, gender, disability or any other legally protected characteristics. Show more Show less

Line of Service Advisory Industry/Sector FS X-Sector Specialism Risk Management Level Director Job Description & Summary At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data. As a cybersecurity generalist at PwC, you will focus on providing comprehensive security solutions and experience across various domains, maintaining the protection of client systems and data. You will apply a broad understanding of cybersecurity principles and practices to address diverse security challenges effectively. Why PWC At PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes for our clients and communities. This purpose-led and values-driven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences for each other. Learn more about us. At PwC, we believe in providing equal employment opportunities, without any discrimination on the grounds of gender, ethnic background, age, disability, marital status, sexual orientation, pregnancy, gender identity or expression, religion or other beliefs, perceived differences and status protected by law. We strive to create an environment where each one of our people can bring their true selves and contribute to their personal growth and the firm’s growth. To enable this, we have zero tolerance for any discrimination and harassment based on the above considerations. " Job Description & Summary: We are seeking a professional to join our Cybersecurity and Privacy services team, where you will have the opportunity to help clients implement effective cybersecurity programs that protect against threats, drive transformation, and foster growth. As companies increasingly adopt digital business models, the generation and sharing of data among organizations, partners, and customers multiply. We play a crucial role in ensuring that our clients are protected by developing transformation strategies focused on security, efficiently integrating and managing new or existing technology systems, and enhancing their cybersecurity investments. As a Director, you will be responsible for overseeing regular operations, driving continuous improvement processes, and managing client and vendor interactions. This role involves managing complex incidents escalated from L2 analysts, operating the Security Incident process, and mentoring junior team members to build a cohesive and motivated unit. Responsibilities Review cybersecurity events analyzed by L2 security analysts, serving as the escalation point for detection, response, and remediation activities. Monitor and guide the team in triaging cybersecurity events, prioritizing, and recommending/performing response measures. Provide technical support for IT teams in response and remediation activities for escalated cybersecurity events/incidents. Follow up on cybersecurity incident tickets until closure. Guide L1 and L2 analysts in analyzing events and response activities. Expedite cyber incident response and remediation activities when delays occur, coordinating with L1 and L2 team members. Review and provide suggestions for information security policies and best practices in client environments. Ensure compliance with SLAs and contractual requirements, maintaining effective communication with stakeholders. Review and share daily, weekly, and monthly dashboard reports with relevant stakeholders. Update and review documents, playbooks, and standard operational procedures. Validate and update client systems and IT infrastructure documentation. Share knowledge on current security threats, attack patterns, and tools with team members. Create and review new use cases based on evolving attack trends. Analyze and interpret Windows, Linux OS, firewall, web proxy, DNS, IDS, and HIPS log events. Develop and maintain threat detection rules, parsers, and use cases. Understand security analytics and flows across SaaS applications and cloud computing tools. Validate use cases through selective testing and logic examination. Maintain continuous improvement processes and build/groom teams over time. Develop thought leadership within the SOC. Mandatory Skill Sets Bachelor’s degree (minimum requirement). 12+years of experience in SOC operations. Experience analyzing malicious traffic and building detections. Experience in application security, network security, and systems security. Knowledge of security testing tools (e.g., BurpSuite, Mimikatz, Cobalt Strike, PowerSploit, Metasploit, Nessus, HP Web Inspect). Proficiency in common programming and scripting languages (Python, PowerShell, Ruby, Perl, Bash, JavaScript, VBScript). Familiarity with cybersecurity frameworks and practices (OWASP, NIST CSF, PCI DSS, NY-DFS). Experience with traditional security operations, event monitoring, and SIEM tools. Knowledge of MITRE or similar frameworks and procedures used by adversaries. Ability to develop and maintain threat detection rules and use cases. Preferred Skill Sets Strong communication skills, both written and oral. Experience with SMB and large enterprise clients. Good understanding of ITIL processes (Change Management, Incident Management, Problem Management). Strong expertise in multiple SIEM tools and other SOC environment devices. Knowledge of firewalls, IDS/IPS, AVI, EDR, Proxy, DNS, email, AD, etc. Understanding of raw log formats of various security devices. Foundational knowledge of networking concepts (TCP/IP, LAN/WAN, Internet network topologies). Relevant certifications (CEH, CISA, CISM, etc.). Strong work ethic and time management skills. Coachability and dedication to consistent improvement. Ability to mentor and encourage junior teammates. Knowledge of regex and parser creation. Ability to deploy SIEM solutions in customer environments. Years Of Experience Required 12 + years Education Qualification B.Tech Education (if blank, degree and/or field of study not specified) Degrees/Field of Study required: Bachelor of Engineering Degrees/Field Of Study Preferred Certifications (if blank, certifications not specified) Required Skills Accenture Managed Detection and Response (MDR) Ops Security Engineering Optional Skills Accepting Feedback, Accepting Feedback, Active Listening, Agile Methodology, Analytical Thinking, Azure Data Factory, Coaching and Feedback, Communication, Creativity, Cybersecurity, Cybersecurity Framework, Cybersecurity Policy, Cybersecurity Requirements, Cybersecurity Strategy, Embracing Change, Emotional Regulation, Empathy, Encryption Technologies, Inclusion, Influence, Innovation, Intellectual Curiosity, Learning Agility, Managed Services, Optimism {+ 20 more} Desired Languages (If blank, desired languages not specified) Travel Requirements Not Specified Available for Work Visa Sponsorship? No Government Clearance Required? No Job Posting End Date Show more Show less