Location Bangalore, Karnataka, 560048 Category Engineering / Information Technology Job Type Full time Job Id 1183232 No Open Source COE Security Architect This role has been designed as ‘’Onsite’ with an expectation that you will primarily work from an HPE partner/customer office. Who We Are: Hewlett Packard Enterprise is the global edge-to-cloud company advancing the way people live and work. We help companies connect, protect, analyze, and act on their data and applications wherever they live, from edge to cloud, so they can turn insights into outcomes at the speed required to thrive in today’s complex world. Our culture thrives on finding new and better ways to accelerate what’s next. We know varied backgrounds are valued and succeed here. We have the flexibility to manage our work and personal needs. We make bold moves, together, and are a force for good. If you are looking to stretch and grow your career our culture will embrace you. Open up opportunities with HPE. Job Description: HPE Operations is our innovative IT services organization. It provides the expertise to advise, integrate, and accelerate our customers’ outcomes from their digital transformation. Our teams collaborate to transform insight into innovation. In today’s fast paced, hybrid IT world, being at business speed means overcoming IT complexity to match the speed of actions to the speed of opportunities. Deploy the right technology to respond quickly to market possibilities. Join us and redefine what’s next for you. What you will do BE/B. Tech with 10+ years of experience in the IT industry and 6+ years of experience in Information Security / Cyber Security field. Expert in IT/Cyber Security field. Should be CISSP/CISM/CCSP and CCSK and ISO27001 Certification are desired. Should have good knowledge of security assessment against different global Frameworks like NIST, MITRE and cloud security alliance etc. Should have good understanding of Compliance and regulatory requirements. Working with information security and devSecops teams in a CI/CD environment as well as comprehensive understanding of cloud security systems. Programming experience in C/C++, Python, JavaScript, Bash & PowerShell Scripting is desired. Hands-on expertise, Linux, Kernel, threads, processes, API etc. is desired. Provide Security Vision & Strategy to the Organization, strategic direction, development, and implementation of information security programs and projects to address risks relevant to the attainment of organizational strategic security goals based on open source tool/framework. Experience in advising leadership team regarding evolving of open source Security Technology landscape, product issues, security mitigations for identified risks and possible improvements Expertise in providing executive roadmaps for continual improvement in teams, technology, and processes, process across various security & DevSecOps teams based on open source tool/framework. Experienced in Information Security Risk Management, gap analysis, Audits. Hands-on Experience in formulating Cyber Security Policies, design and implementation of Security Technologies, DevSecOps. Working Knowledge in implementation of Cyber Security Solution in Open Source, Open Stack environment. Ability to provide strategies to increase the ability to withstand cyber-attacks, as measured by annual sophisticated attack simulations. Experience in upgrading, troubleshooting and tuning of Cyber Security Solutions. Thorough understanding and good knowledge of latest Cyber Security technologies, security Architectures, vulnerabilities, security threats. Ability to setup PoC for latest open source security solutions. Good understanding of Open-Source Technologies, Cloud security technologies. Additional Skills: Accountability, Accountability, Active Learning (Inactive), Active Listening, Bias, Business Growth, Client Expectations Management, Coaching, Creativity, Critical Thinking, Cross-Functional Teamwork, Customer Centric Solutions, Customer Relationship Management (CRM), Design Thinking, Empathy, Follow-Through, Growth Mindset, Information Technology (IT) Infrastructure, Infrastructure as a Service (IaaS), Intellectual Curiosity (Inactive), Long Term Planning, Managing Ambiguity, Process Improvements, Product Services, Relationship Building {+ 5 more} What We Can Offer You: Health & Wellbeing We strive to provide our team members and their loved ones with a comprehensive suite of benefits that supports their physical, financial and emotional wellbeing. Personal & Professional Development We also invest in your career because the better you are, the better we all are. We have specific programs catered to helping you reach any career goals you have — whether you want to become a knowledge expert in your field or apply your skills to another division. Unconditional Inclusion We are unconditionally inclusive in the way we work and celebrate individual uniqueness. We know varied backgrounds are valued and succeed here. We have the flexibility to manage our work and personal needs. We make bold moves, together, and are a force for good. Let's Stay Connected: Follow @HPECareers on Instagram to see the latest on people, culture and tech at HPE. #india #operations Job: Services Job Level: TCP_04 HPE is an Equal Employment Opportunity/ Veterans/Disabled/LGBT employer. We do not discriminate on the basis of race, gender, or any other protected category, and all decisions we make are made on the basis of qualifications, merit, and business need. Our goal is to be one global team that is representative of our customers, in an inclusive environment where we can continue to innovate and grow together. Please click here: Equal Employment Opportunity. Hewlett Packard Enterprise is EEO Protected Veteran/ Individual with Disabilities. HPE will comply with all applicable laws related to employer use of arrest and conviction records, including laws requiring employers to consider for employment qualified applicants with criminal histories.

The incumbent shall have at least 5 years of experience with AWS security components, cloud security design, and architecture, with a focus on assessing and implementing security measures in AWS environments. The individual must have experience handling cloud security independently and be capable of working collaboratively with cross-functional teams. The incumbent will work under the supervision of the Cybersecurity Officer - Security Architecture SME, within the Cybersecurity Assurance Team of the ICC Cybersecurity Division, and will be in collaboration with other relevant teams across ICC. The incumbent will undertake the following duties and deliverables: Design and implement incident response processes and workflows in AWS environments. Collaborate with stakeholders to perform root cause analysis and remediation of security incidents. Integrate incident response tools with AWS services, including AWS CloudTrail, Amazon GuardDuty, and AWS Security Hub. Configure and manage logging services using AWS CloudTrail, Amazon CloudWatch, and AWS Config for continuous monitoring. Set up real-time alerts and dashboards for anomaly detection and incident notification. Implement security baselines and compliance monitoring with AWS Config Rules. Design and deploy secure network architectures in AWS, including Virtual Private Cloud (VPC) configurations, security groups, NACLs, and private subnets. Implement secure access to AWS infrastructure using bastion hosts, VPNs, or AWS Client VPN. Perform regular vulnerability assessments using tools like Amazon Inspector and third-party integrations. Develop and implement IAM policies, roles, and permissions to enforce least privilege access. Configure AWS IAM Identity Center (SSO) for centralized identity management. Manage authentication using MFA, federated identities, and AWS Cognito. Implement encryption mechanisms for data at rest and in transit using AWS KMS, S3 encryption, and SSL/TLS. Secure sensitive data stored in S3 buckets, DynamoDB, and RDS with encryption and access controls. Conduct key rotation and lifecycle management using AWS KMS and AWS Secrets Manager. Develop and maintain security controls aligned with AWS Well-Architected Framework, NIST, CIS Benchmarks, and ISO 27001. Automate compliance checks using AWS Config, AWS Audit Manager, and AWS Security Hub. Prepare documentation and evidence for security audits and assessments. Collaborate with DevOps teams to secure CI/CD pipelines implementing ICC DevSecOps best practices Implement containers security best practices for Amazon EKS, ECS environments. Provide training to internal teams on AWS security best practices. Maintain updated documentation and knowledge repositories for AWS security implementations. Required Technical Skills: The resource MUST have the following skills and experience: Deep knowledge of the AWS Security Reference Architecture (SRA). Experience with AWS services for incident detection and response, including AWS GuardDuty, Detective, Inspector, and Security Hub. Ability to analyze and respond to security incidents effectively using AWS-native tools. Proficiency in setting up and managing AWS CloudTrail, CloudWatch, and AWS Config for continuous monitoring and continuous compliance. Expertise in creating dashboards and alerts for real-time security monitoring. Hands-on experience designing and managing secure VPC architectures, including security groups, NACLs, and network segmentation. Experience with AWS WAF, AWS Shield, and Amazon Inspector for infrastructure protection. Deep understanding of IAM policies, roles, and permission management. Experience implementing advanced authentication mechanisms like MFA, SSO, and federated access. Knowledge of encryption technologies, including AWS KMS, SSL/TLS, and S3 bucket policies. Experience implementing data protection strategies for cloud-native applications. Familiarity with AWS Well-Architected Framework, NIST, CIS, and other compliance frameworks. Proficiency in using AWS Config, Audit Manager, and Security Hub for governance and compliance. Expertise in automating security tasks using AWS SDKs, CLI, and scripting languages like Python or Bash. Strong knowledge of container security best practices for Amazon EKS, ECS. Experience integrating security tools into CI/CD pipelines The resource SHOULD also have the following additional skills: Hands on experience with third-party and open source cloud security tools such as Prowler, Zeus, CloudSploit scans, Lynis, OpenScap. Advanced understanding of AWS Lambda and securing serverless architectures. Required Soft Skills: Strong analytical and problem-solving skills to address complex cloud security challenges. Ability to work collaboratively with cross-functional teams to implement security best practices. Excellent communication and documentation skills to articulate security requirements and solutions. Proactive and innovative mindset to anticipate and mitigate security risks. High level of professionalism and integrity to manage sensitive security information. Desirable certifications: Preference will be given to candidates holding one or more of the following certifications: AWS Certified Security - Specialty Certified Information Systems Security Professional (CISSP) Certified Cloud Security Professional (CCSP) AWS Solutions Architect - Professional

As Relyance AI’s Technical Product Manager - Core Platform , you will help bring new products and improve existing foundational product offerings at Relyance AI. This role demands a deep understanding of system architecture, platforms and the evolving data security, privacy, and the AI landscape that addresses critical customer challenges. You’ll lead efforts to build new platform features and improve existing core services that serve as the backbone of our product suite. This role requires you to think critically and craft products with first principles. You will work closely with cross-functional teams, including Engineering, Customer Success, Sales, and Legal, to deliver high-quality, impactful products that empower our customers to protect their data and ensure compliance. As a Technical Product Manager, your role will include: Building and evolving foundational platform capabilities, such as common services, ingress/egress layers, telemetry pipelines, identity and access primitives, and developer-facing APIs that power all Relyance AI products. Deeply understand user needs by engaging with customers, mapping workflows, identifying pain points, and aligning on desired outcomes. Drive cross-functional collaboration by acting as the connective tissue between engineering, design, GTM, and leadership to ensure initiatives align with company priorities and timelines. Own end-to-end product lifecycle, from discovery and ideation to scoping, execution, launch, and iteration, especially for complex, technical platform features. Bringing structure to ambiguity by translating high-level strategy, OKRs, and stakeholder goals into clear product specs and prioritized backlogs. Measuring product success metrics and telemetry determined on value delivered, usage, and customer satisfaction. This role could be a fit for you if you bring: Have 3+ years of product management experience, including shipping technical products (e.g., APIs, platforms, infrastructure). Have directly interfaced with customers—whether through roadmap discussions, feedback loops, or support escalations—and thrive on turning their needs into platform capabilities. Have deep familiarity with APIs, developer platforms, and integrations, including authentication models (OAuth, API keys etc.), versioning strategies, and standard architectural patterns (REST, event-driven, etc.). B2B SaaS experience, technical fluency, and an ability to understand modern software systems (microservices, APIs, client-server architecture, etc.) to help drive strategic and technical discussions. Excellent written and verbal communication skills for articulating product requirements, customer challenges, and GTM messaging. This role will require the ability to effectively convey complex product ideas and strategies to a range of stakeholders, including executives, engineering, GTM, and end-users. Ability to wear many hats and pivot based on company needs. Excitement about taking on new and varied responsibilities in a fast-growing, dynamic organization. Bonus points for: Experience working with cloud data ecosystems such as Amazon S3, Google Cloud Storage, Snowflake, BigQuery, or similar platforms. Experience with security tools, standard security practices for sensitive data protection, and frameworks (e.g., NIST, etc.) Experience with data privacy regulations (like GDPR, CPRA, etc.), security practices and frameworks, or data governance. Experience with python, Java, Go, or Ruby. Experience with Machine Learning or AI. Bringing curiosity and a growth mindset to the work you do. Who are we? At Relyance AI, we create an unreasonably hospitable and data-driven culture. We prioritize exceeding customer, and each other’s, expectations in every interaction. This means empowered team members solving problems proactively based on information, crafting personalized experiences, and radiating enthusiasm. Behind the scenes, trust and freedom allow team members to find creative solutions, while shared purpose and recognition fuel a spirit of greatness to truly wow customers and each other. We deconstruct failures to learn from them and take great pride in our successes; celebrating both. Relyance AI is proud to be an equal-opportunity employer. We celebrate representation and are committed to creating an inclusive environment for all employees. We are committed to fair and equitable compensation practices. We use data-driven pay practices with the goal of ensuring offerings are competitive to the market and our team members are being compensated correctly based on their roles, experience, and location. Show more Show less

About Gruve Gruve is an innovative software services startup dedicated to transforming enterprises to AI powerhouses. We specialize in cybersecurity, customer experience, cloud infrastructure, and advanced technologies such as Large Language Models (LLMs). Our mission is to assist our customers in their business strategies utilizing their data to make more intelligent decisions. As a well-funded early-stage startup, Gruve offers a dynamic environment with strong customer and partner networks. About The Role We are seeking a highly skilled Security Analyst (Level 2) to join our MSSP SOC team. The ideal candidate will have expertise in SIEM (Splunk, QRadar), XDR/EDR solutions, and security analysis with hands-on experience in investigating and responding to security alerts. This role requires proficiency in reviewing and analyzing Level 1 alerts, providing detailed recommendations, and engaging with customers for incident handling. The candidate should also have basic SIEM administration knowledge and Python scripting skills for troubleshooting and playbook development. Key Responsibilities Threat Detection & Response: Analyze and investigate security alerts, events, and incidents generated by SIEM, XDR, and EDR solutions. Incident Investigation & Handling: Conduct in-depth security incident investigations, assess impact, and take appropriate actions. Incident Escalation & Communication: Escalate critical incidents to Level 3 analysts or senior security teams while maintaining detailed documentation. Content Management: Develop and fine-tune correlation rules, use cases, and alerts in SIEM/XDR platforms to improve detection accuracy. Malware Analysis: Perform basic malware analysis and forensic investigation to assess threats. Customer Request Handling: Collaborate with customers to address security concerns, provide recommendations, and respond to inquiries. SIEM Administration: Assist in the administration and maintenance of SIEM tools like Splunk or QRadar, ensuring smooth operations. Automation & Playbooks: Utilize Python scripting for automation, troubleshooting, and playbook development to enhance SOC efficiency. Reporting & Documentation: Prepare detailed reports on security incidents, trends, and mitigation strategies. Basic Qualifications B.E/B. Tech degree in computer science, Information Technology, Masters in Cybersecurity 3+ years of experience in a SOC or cybersecurity operations role. Strong knowledge of SIEM tools (Splunk, QRadar) and XDR/EDR solutions. Hands-on experience in threat detection, security monitoring, and incident response. Knowledge of network security, intrusion detection, malware analysis, and forensics. Basic experience in SIEM administration (log ingestion, rule creation, dashboard management). Proficiency in Python scripting for automation and playbook development. Good understanding of MITRE ATT&CK framework, security frameworks (NIST, ISO 27001), and threat intelligence. Strong analytical, problem-solving, and communication skills. Ability to work in a 24x7 SOC environment (if applicable) Preferred Qualifications Certified SOC Analyst (CSA) Certified Incident Handler (GCIH, ECIH) Splunk Certified Admin / QRadar Certified Analyst CompTIA Security+ / CEH / CISSP (preferred but not mandatory Why Gruve At Gruve, we foster a culture of innovation, collaboration, and continuous learning. We are committed to building a diverse and inclusive workplace where everyone can thrive and contribute their best work. If you’re passionate about technology and eager to make an impact, we’d love to hear from you. Gruve is an equal opportunity employer. We welcome applicants from all backgrounds and thank all who apply; however, only those selected for an interview will be contacted. Show more Show less

The Key Skills Required. Hands-on experience with M365, AD DS, DNS, DHCP, backup process. Hands-on experience on firewalls, IDS/IPS, SIEM, EDR, antivirus, and vulnerability scanning tools. At least 10 years’ working with large Infrastructure. Advanced knowledge about Windows Server, Windows Clients, Linux Server. Understanding of attack vectors, Familiarity with different network topologies and protocols such as TCP/IP, DNS, HTTP(S), SMTP, VLANs, VPNs, WLAN and routing/switching. Firm knowledge of technical details of SMTP / e-mail in general and therefore to analyze e-mail headers in order to determine additional data such as real origin etc. Expert regarding the operation of Outlook & Exchange from a user’s perspective Firm grasp of phishing techniques and e-mail based attack patterns Commitment to continuous learning. Familiarity with security-related regulations, such as GDPR, HIPAA, and PCI-DSS. Excellent verbal, written, and interpersonal communication skills, especially ability to break down complex technical information to non-technical stakeholders and articulate the impact of security design flaws, attack surfaces and vulnerabilities Should possess very good knowledge in the areas of : Understanding of IT security (and related) compliance frameworks like NIST, ISO, SOC 2, HIPAA. Deploy and maintain security tools and systems. Implement security policy, standards, guidelines, processes, and procedures to ensure ongoing security posture. This role requires a deep understanding of endpoint security, network protocols, server virtualization, and data transfer processes to ensure the smooth and secure operation of the company's IT systems. Perform run the business SAN administrative duties including Backup Management Participate in large scale component upgrades datacenter migrations and similar enterprise initiatives. Develop communicate and monitor the operational standards and procedures for backups. Perform all routine administrative and operational tasks Manage current storage environment. Incorporates disk /SAN and storage software. Resolve storage short falls. Alert and resolve performance issues and advise end users. High availability of data to all applications. Hyper -V Data Migrations & Replication. Work with application developers to determine storage requirements. Work with existing programmers System Administrators and DBAs to optimize storage. Maintain proper backup schedules. Restore and recover data as requested. Extensive experience deploying mission critical servers in a 24 by 7 production environment. Mentor and create documentation knowledge base articles for routine tasks and troubleshoot on the infrastructure under support. Align job policy for retention and compliance by mandated legal and agency data handling requirements. Operate hardware software for the Backup and Recovery infrastructure Show more Show less

Description Job Responsibilities: Internal Audit: Develop an annual audit plan based on a thorough risk assessment and in alignment with organizational goals and regulatory requirements. Lead and coordinate internal audit engagements to evaluate the effectiveness of GRC controls, policies, and procedures around ISO 27001, 27701, NIST800-53, PCI/DSS, SOC2, IRAP, Conduct audits across various departments and functions to assess compliance with company policies, industry standards, and regulatory requirements. Identify and assess key risks related to governance, risk management, and compliance. Collaborate with stakeholders to develop risk mitigation strategies and action plans. Monitor and report on the implementation of risk mitigation initiatives to ensure effectiveness. Ensure compliance with relevant laws, regulations, standards, and internal policies. Focus on SOC2, ISO 27001, ISO 27701, PCI DSS, HIPAA, NIST and IRAP. Stay abreast of regulatory changes and industry trends to update audit procedures and compliance programs accordingly. Provide guidance and support to business units on compliance-related matters. Prepare clear and concise audit reports detailing findings, recommendations, and corrective actions. Present audit findings and recommendations to senior management and audit committee members. Facilitate discussions with stakeholders to address audit findings and promote continuous improvement in GRC practices. Supervise and mentor audit team members, providing guidance and professional development opportunities. Foster a culture of integrity, accountability, and continuous learning within the audit team. Conduct performance evaluations and provide constructive feedback to team members. PCI/DSS Conduct thorough assessments and audits of systems, processes, and controls to evaluate compliance with PCI/DSS (Payment Card Industry Data Security Standard) requirements. Identify gaps, vulnerabilities, and areas of non-compliance, and provide recommendations for remediation. Prepare detailed assessment reports documenting findings, observations, and recommendations for improving PCI/DSS compliance. Communicate assessment results to clients, including technical and non-technical stakeholders, in a clear and understandable manner. Provide expert guidance and advisory services to clients on PCI/DSS requirements, controls, and best practices. Assist clients in developing and implementing remediation plans to address identified compliance deficiencies. Assess and evaluate risks associated with payment card data processing and storage within client environments. Recommend risk mitigation strategies and controls to enhance security posture and compliance with PCI/DSS standards. Collaborate effectively with clients, internal teams, and external auditors to facilitate the PCI/DSS assessment process. Serve as a trusted advisor and subject matter expert on PCI/DSS compliance matters. ISO 27001: Lead the implementation of the ISO 27001/27701 standard across the organization, including scoping, planning, and executing ISMS initiatives. Develop and maintain project plans, timelines, and deliverables to ensure successful implementation of ISO 27001/27701 requirements. Conduct comprehensive risk assessments to identify information security risks and vulnerabilities. Develop risk treatment plans and controls to mitigate identified risks in alignment with ISO 27001/27701 guidelines. Develop, review, and update information security policies, procedures, and guidelines to comply with ISO 27001/27701 standards. Ensure policies and procedures are communicated effectively to all employees and stakeholders. Develop and deliver training programs on information security policies, procedures, and best practices for employees and stakeholders. Promote awareness of information security requirements and responsibilities throughout the organization. Plan and conduct internal audits of the ISMS to assess compliance with ISO 27001/27701 standards and organizational policies. Monitor and track corrective and preventive actions (CAPAs) to address audit findings and improve ISMS effectiveness. Maintain documentation of ISMS activities, including risk assessments, policies, procedures, audit reports, and records of compliance activities. Prepare regular reports and presentations for senior management on the status of ISMS implementation, compliance, and improvement initiatives. SOC2 IRAP HIPAA Qualifications : Bachelor’s degree in Accounting, Finance, Business Administration, or a related field. Advanced degree (e.g., MBA, Master of Accounting) preferred. Certified Internal Auditor (CIA), Certified Information Systems Auditor (CISA), or similar certification preferred. Certified Information Systems Security Professional (CISSP), Certified PCI-DSS Professional (PCIP), or similar certifications highly desirable. 10+ years of experience in internal auditing, with specific experience in GRC audit management. Certified Information Security Manager (CISM), or ISO 27001 Lead Auditor/Implementer certification required. 10+ years of experience in implementing and managing Information Security Management Systems (ISMS) based on ISO 27001/27701 standards. Strong understanding of ISO 27001/27701 requirements, controls, and implementation best practices. Strong understanding of governance frameworks, risk management practices, and regulatory requirements. Excellent analytical skills and attention to detail. Effective communication skills, with the ability to interact confidently with stakeholders at all levels of the organization. Requirements Job Responsibilities: Internal Audit: Develop an annual audit plan based on a thorough risk assessment and in alignment with organizational goals and regulatory requirements. Lead and coordinate internal audit engagements to evaluate the effectiveness of GRC controls, policies, and procedures around ISO 27001, 27701, NIST800-53, PCI/DSS, SOC2, IRAP, Conduct audits across various departments and functions to assess compliance with company policies, industry standards, and regulatory requirements. Identify and assess key risks related to governance, risk management, and compliance. Collaborate with stakeholders to develop risk mitigation strategies and action plans. Monitor and report on the implementation of risk mitigation initiatives to ensure effectiveness. Ensure compliance with relevant laws, regulations, standards, and internal policies. Focus on SOC2, ISO 27001, ISO 27701, PCI DSS, HIPAA, NIST and IRAP. Stay abreast of regulatory changes and industry trends to update audit procedures and compliance programs accordingly. Provide guidance and support to business units on compliance-related matters. Prepare clear and concise audit reports detailing findings, recommendations, and corrective actions. Present audit findings and recommendations to senior management and audit committee members. Facilitate discussions with stakeholders to address audit findings and promote continuous improvement in GRC practices. Supervise and mentor audit team members, providing guidance and professional development opportunities. Foster a culture of integrity, accountability, and continuous learning within the audit team. Conduct performance evaluations and provide constructive feedback to team members. PCI/DSS Conduct thorough assessments and audits of systems, processes, and controls to evaluate compliance with PCI/DSS (Payment Card Industry Data Security Standard) requirements. Identify gaps, vulnerabilities, and areas of non-compliance, and provide recommendations for remediation. Prepare detailed assessment reports documenting findings, observations, and recommendations for improving PCI/DSS compliance. Communicate assessment results to clients, including technical and non-technical stakeholders, in a clear and understandable manner. Provide expert guidance and advisory services to clients on PCI/DSS requirements, controls, and best practices. Assist clients in developing and implementing remediation plans to address identified compliance deficiencies. Assess and evaluate risks associated with payment card data processing and storage within client environments. Recommend risk mitigation strategies and controls to enhance security posture and compliance with PCI/DSS standards. Collaborate effectively with clients, internal teams, and external auditors to facilitate the PCI/DSS assessment process. Serve as a trusted advisor and subject matter expert on PCI/DSS compliance matters. ISO 27001: Lead the implementation of the ISO 27001/27701 standard across the organization, including scoping, planning, and executing ISMS initiatives. Develop and maintain project plans, timelines, and deliverables to ensure successful implementation of ISO 27001/27701 requirements. Conduct comprehensive risk assessments to identify information security risks and vulnerabilities. Develop risk treatment plans and controls to mitigate identified risks in alignment with ISO 27001/27701 guidelines. Develop, review, and update information security policies, procedures, and guidelines to comply with ISO 27001/27701 standards. Ensure policies and procedures are communicated effectively to all employees and stakeholders. Develop and deliver training programs on information security policies, procedures, and best practices for employees and stakeholders. Promote awareness of information security requirements and responsibilities throughout the organization. Plan and conduct internal audits of the ISMS to assess compliance with ISO 27001/27701 standards and organizational policies. Monitor and track corrective and preventive actions (CAPAs) to address audit findings and improve ISMS effectiveness. Maintain documentation of ISMS activities, including risk assessments, policies, procedures, audit reports, and records of compliance activities. Prepare regular reports and presentations for senior management on the status of ISMS implementation, compliance, and improvement initiatives. SOC2 IRAP HIPAA Qualifications : Bachelor’s degree in Accounting, Finance, Business Administration, or a related field. Advanced degree (e.g., MBA, Master of Accounting) preferred. Certified Internal Auditor (CIA), Certified Information Systems Auditor (CISA), or similar certification preferred. Certified Information Systems Security Professional (CISSP), Certified PCI-DSS Professional (PCIP), or similar certifications highly desirable. 10+ years of experience in internal auditing, with specific experience in GRC audit management. Certified Information Security Manager (CISM), or ISO 27001 Lead Auditor/Implementer certification required. 10+ years of experience in implementing and managing Information Security Management Systems (ISMS) based on ISO 27001/27701 standards. Strong understanding of ISO 27001/27701 requirements, controls, and implementation best practices. Strong understanding of governance frameworks, risk management practices, and regulatory requirements. Excellent analytical skills and attention to detail. Effective communication skills, with the ability to interact confidently with stakeholders at all levels of the organization. Job responsibilities Job Responsibilities: Internal Audit: Develop an annual audit plan based on a thorough risk assessment and in alignment with organizational goals and regulatory requirements. Lead and coordinate internal audit engagements to evaluate the effectiveness of GRC controls, policies, and procedures around ISO 27001, 27701, NIST800-53, PCI/DSS, SOC2, IRAP, Conduct audits across various departments and functions to assess compliance with company policies, industry standards, and regulatory requirements. Identify and assess key risks related to governance, risk management, and compliance. Collaborate with stakeholders to develop risk mitigation strategies and action plans. Monitor and report on the implementation of risk mitigation initiatives to ensure effectiveness. Ensure compliance with relevant laws, regulations, standards, and internal policies. Focus on SOC2, ISO 27001, ISO 27701, PCI DSS, HIPAA, NIST and IRAP. Stay abreast of regulatory changes and industry trends to update audit procedures and compliance programs accordingly. Provide guidance and support to business units on compliance-related matters. Prepare clear and concise audit reports detailing findings, recommendations, and corrective actions. Present audit findings and recommendations to senior management and audit committee members. Facilitate discussions with stakeholders to address audit findings and promote continuous improvement in GRC practices. Supervise and mentor audit team members, providing guidance and professional development opportunities. Foster a culture of integrity, accountability, and continuous learning within the audit team. Conduct performance evaluations and provide constructive feedback to team members. PCI/DSS Conduct thorough assessments and audits of systems, processes, and controls to evaluate compliance with PCI/DSS (Payment Card Industry Data Security Standard) requirements. Identify gaps, vulnerabilities, and areas of non-compliance, and provide recommendations for remediation. Prepare detailed assessment reports documenting findings, observations, and recommendations for improving PCI/DSS compliance. Communicate assessment results to clients, including technical and non-technical stakeholders, in a clear and understandable manner. Provide expert guidance and advisory services to clients on PCI/DSS requirements, controls, and best practices. Assist clients in developing and implementing remediation plans to address identified compliance deficiencies. Assess and evaluate risks associated with payment card data processing and storage within client environments. Recommend risk mitigation strategies and controls to enhance security posture and compliance with PCI/DSS standards. Collaborate effectively with clients, internal teams, and external auditors to facilitate the PCI/DSS assessment process. Serve as a trusted advisor and subject matter expert on PCI/DSS compliance matters. ISO 27001: Lead the implementation of the ISO 27001/27701 standard across the organization, including scoping, planning, and executing ISMS initiatives. Develop and maintain project plans, timelines, and deliverables to ensure successful implementation of ISO 27001/27701 requirements. Conduct comprehensive risk assessments to identify information security risks and vulnerabilities. Develop risk treatment plans and controls to mitigate identified risks in alignment with ISO 27001/27701 guidelines. Develop, review, and update information security policies, procedures, and guidelines to comply with ISO 27001/27701 standards. Ensure policies and procedures are communicated effectively to all employees and stakeholders. Develop and deliver training programs on information security policies, procedures, and best practices for employees and stakeholders. Promote awareness of information security requirements and responsibilities throughout the organization. Plan and conduct internal audits of the ISMS to assess compliance with ISO 27001/27701 standards and organizational policies. Monitor and track corrective and preventive actions (CAPAs) to address audit findings and improve ISMS effectiveness. Maintain documentation of ISMS activities, including risk assessments, policies, procedures, audit reports, and records of compliance activities. Prepare regular reports and presentations for senior management on the status of ISMS implementation, compliance, and improvement initiatives. SOC2 IRAP HIPAA Qualifications : Bachelor’s degree in Accounting, Finance, Business Administration, or a related field. Advanced degree (e.g., MBA, Master of Accounting) preferred. Certified Internal Auditor (CIA), Certified Information Systems Auditor (CISA), or similar certification preferred. Certified Information Systems Security Professional (CISSP), Certified PCI-DSS Professional (PCIP), or similar certifications highly desirable. 10+ years of experience in internal auditing, with specific experience in GRC audit management. Certified Information Security Manager (CISM), or ISO 27001 Lead Auditor/Implementer certification required. 10+ years of experience in implementing and managing Information Security Management Systems (ISMS) based on ISO 27001/27701 standards. Strong understanding of ISO 27001/27701 requirements, controls, and implementation best practices. Strong understanding of governance frameworks, risk management practices, and regulatory requirements. Excellent analytical skills and attention to detail. Effective communication skills, with the ability to interact confidently with stakeholders at all levels of the organization. What we offer Culture of caring. At GlobalLogic, we prioritize a culture of caring. Across every region and department, at every level, we consistently put people first. From day one, you’ll experience an inclusive culture of acceptance and belonging, where you’ll have the chance to build meaningful connections with collaborative teammates, supportive managers, and compassionate leaders. Learning and development. We are committed to your continuous learning and development. You’ll learn and grow daily in an environment with many opportunities to try new things, sharpen your skills, and advance your career at GlobalLogic. With our Career Navigator tool as just one example, GlobalLogic offers a rich array of programs, training curricula, and hands-on opportunities to grow personally and professionally. Interesting & meaningful work. GlobalLogic is known for engineering impact for and with clients around the world. As part of our team, you’ll have the chance to work on projects that matter. Each is a unique opportunity to engage your curiosity and creative problem-solving skills as you help clients reimagine what’s possible and bring new solutions to market. In the process, you’ll have the privilege of working on some of the most cutting-edge and impactful solutions shaping the world today. Balance and flexibility. We believe in the importance of balance and flexibility. With many functional career areas, roles, and work arrangements, you can explore ways of achieving the perfect balance between your work and life. Your life extends beyond the office, and we always do our best to help you integrate and balance the best of work and life, having fun along the way! High-trust organization. We are a high-trust organization where integrity is key. By joining GlobalLogic, you’re placing your trust in a safe, reliable, and ethical global company. Integrity and trust are a cornerstone of our value proposition to our employees and clients. You will find truthfulness, candor, and integrity in everything we do. About GlobalLogic GlobalLogic, a Hitachi Group Company, is a trusted digital engineering partner to the world’s largest and most forward-thinking companies. Since 2000, we’ve been at the forefront of the digital revolution – helping create some of the most innovative and widely used digital products and experiences. Today we continue to collaborate with clients in transforming businesses and redefining industries through intelligent products, platforms, and services. Show more Show less

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Integrated Security Risk Management Good to have skills : Security Architecture Design Minimum 3 Year(s) Of Experience Is Required Educational Qualification : 15 years full time education Summary: As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to assess security needs, documenting security controls, and transitioning to cloud security-managed operations, all while ensuring compliance with industry standards and best practices. Roles & Responsibilities: - Expected to perform independently and become an SME. - Required active participation/contribution in team discussions. - Contribute in providing solutions to work related problems. - Engage in continuous learning to stay updated with the latest security trends and technologies. - Assist in the development of security policies and procedures to enhance organizational security posture. Professional & Technical Skills: - Must To Have Skills: Proficiency in Integrated Security Risk Management. - Good To Have Skills: Experience with Security Architecture Design. - Strong understanding of risk assessment methodologies and frameworks. - Experience in implementing security controls in cloud environments. - Familiarity with compliance standards such as ISO 27001, NIST, and GDPR. Additional Information: - The candidate should have minimum 3 years of experience in Integrated Security Risk Management. - This position is based at our Noida office. - A 15 years full time education is required. Show more Show less

JOB DESCRIPTION We are seeking a Senior Cloud Security Architect with deep expertise in securing cloud infrastructures in AWS and Azure. This role will drive secure cloud adoption, design security architectures, and implement proactive threat detection and risk mitigation strategies. The ideal candidate will be a technical leader with hands-on experience securing complex cloud environments, integrating automation, DevSecOps, and compliance frameworks into scalable cloud security solutions. Key Responsibilities Cloud Security Architecture & Implementation: - Design and implement secure, scalable cloud architectures in AWS and Azure. - Develop security frameworks, policies, and standards. - Architect IAM, RBAC, and CIEM solutions. - Secure cloud-native services (serverless, Kubernetes, containers). - Deploy and secure network security controls (firewalls, VPNs, IPS). Threat Detection & Response: - Manage SIEM, SOAR, and EDR/XDR solutions. - Implement real-time threat detection and automated response. - Analyze network traffic, logs, and security events. - Use threat intelligence platforms and CSPM solutions. DevSecOps & CI/CD Security: - Secure CI/CD pipelines (Jenkins, GitHub Actions, GitLab CI/CD). - Integrate automated security testing (SAST, DAST, SCA). - Implement API security best practices. Offensive Security & Compliance: - Conduct penetration testing and security assessments. - Implement data security controls (encryption, DLP). - Ensure compliance with NIST 800-53, ISO 27001, PCI DSS, HIPAA, GDPR. - Perform risk assessments and develop remediation plans. REQUIRED SKILLS AND EXPERIENCE - 10+ years of security experience, with 4+ years in cloud security architecture and engineering - Expert knowledge of AWS and Azure security architectures, cloud-native services, and security controls - Deep expertise in cloud networking, cryptography, and security protocols (TLS, OAuth, OIDC, Zero Trust, etc.) - Experience with Infrastructure as Code (Terraform, CloudFormation, Bicep) for secure cloud deployments - Proficiency in automation and scripting (Python, PowerShell, Bash) for security orchestration - Strong understanding of Kubernetes security, including Open Policy Agent (OPA), Kyverno, Kubernetes Pod Security Standards (PSS), and service mesh technologies NICE TO HAVE SKILLS AND EXPERIENCE - Cloud Certifications, such as AWS Certified Solutions Architect - Professional, AWS Certified Security - Specialty, Microsoft Certified Azure Solutions Architect Expert, Azure Security Engineer Associate, Google Cloud Architect, CISSP, CCSP, CISM Compensation : $18/hr to $20/hr. Exact compensation may vary based on several factors, including skills, experience, and education. Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law. Show more Show less

We are recruiting for our client, who is US based F100 GCC. Job Title: Associate Director, Cyber Security Location: Hyderabad, India Job Summary: The Associate Director of Cyber Security will serve as a key member of the Cyber Security leadership team, responsible for developing and executing the enterprise-wide cyber security strategy. This role leads multiple functional areas across security operations, engineering, governance, risk management, and compliance. Reporting directly to the Head of I/O & Cyber Security, the Associate Director will provide strategic direction, operational oversight, and technical leadership to protect the organization’s information assets, systems, and infrastructure from internal and external threats . Key Responsibilities: Leadership and Management: Lead and manage a team of technical resources located offshore, ensuring high performance, motivation, and professional development. Oversee Security Operations Center (SOC), incident response, vulnerability management, threat intelligence, and endpoint protection. Direct the development and implementation of security architecture, tools, and frameworks across cloud, on-premises, and hybrid environments. Partner with IT, legal, compliance, risk, privacy, and business stakeholders to manage security risk and ensure adherence to industry frameworks (e.g., NIST CSF, ISO 27001, CIS). Drive the maturity of identity and access management (IAM), data loss prevention (DLP), zero trust architecture, and secure DevOps initiatives. Develop and maintain security policies, standards, metrics, and reporting to executive leadership and audit bodies. Build, lead, and mentor a high-performing, diverse cybersecurity team across technical and GRC domains. Manage relationships with external vendors, partners, auditors, and regulatory entities. Support cyber incident response planning, tabletop exercises, and executive-level simulations. Stay informed of emerging threats, trends, and technologies to proactively guide strategy and investments. Project Deliverables: Oversee the planning, execution, and delivery of technical projects, ensuring they are completed on time, within scope, and within budget. Collaboration: Work closely with onshore teams, to align offshore activities with overall business objectives and project goals. Resource Allocation: Efficiently allocate and manage technical resources to meet project / operation demands and optimize productivity. Quality Assurance: Implement and maintain quality assurance processes to ensure the highest standards of technical delivery. Communication: Facilitate effective communication between offshore and onshore teams, ensuring transparency and alignment on project status, risks, and issues. Problem Solving: Proactively identify and resolve technical and operational challenges to ensure smooth project execution. Stakeholder Management: Build and maintain strong relationships with key stakeholders, providing regular updates and addressing any concerns or requirements. Qualifications: Education: Bachelor’s degree in computer science, Information Technology, or a related field. A master’s degree is preferred. Experience: 5–10+ years of progressive experience in cyber security, including at least 5 years in senior leadership roles. Technical Skills: Deep understanding of cyber security frameworks (NIST CSF, NIST 800-53, MITRE ATT&CK) Leadership Skills: Demonstrated experience building and managing enterprise security programs in complex, regulated environments. Proven ability to influence at all levels, including executives and board members. Excellent leadership, communication, and stakeholder engagement skills. Problem-Solving: Strong technical foundation in network security, cloud security (GCP, AWS, Azure, OCI), security engineering, and incident response. Cultural Awareness: Ability to work effectively in a multicultural environment and manage teams across different time zones. Preferred Qualifications: Experience working in a global organization with distributed teams. Certification in (CISSP, CISM, CISA, CCSP, etc.) strongly preferred. Experience and Certifications in ITIL, Agile and DevOps practices. Experience working in Retail & Manufacturing. Knowledge of managing regulatory environments such as HIPAA, SOX, PCI-DSS, GDPR. Experience integrating security in agile, DevOps, and CI/CD pipelines Show more Show less

Now Hiring: Senior Cyber Security Engineers Location: Bangalore (Preferred) | Open to Remote Candidates Across India Engagement Type: 8–12 Months Contract OR Full-Time (Direct Hire) Salary: Open – Based on Experience (DoE) Are you a seasoned Cyber Security Engineer with a strong track record in cloud security, vulnerability management, DLP, and IAM ? We are hiring for immediate openings to support a key project for a top-tier enterprise client. This is a high-impact role for professionals who bring both strategic insight and hands-on expertise to secure cloud environments, protect critical data, and manage access controls. Key Responsibilities: Implement and manage end-to-end cloud security across AWS, Azure, or GCP environments Conduct vulnerability assessments , analyze threat reports, and drive mitigation strategies Design and enforce Data Loss Prevention (DLP) policies and tools Manage Identity and Access Management (IAM) systems including provisioning, de-provisioning, RBAC, and SSO integrations Collaborate with IT, DevOps, Infrastructure, and Compliance teams to ensure robust security posture Support audits, risk assessments , and compliance initiatives (ISO, SOC2, etc.) Document and update security architectures, standards, and operational procedures Required Skills & Experience: 8–10 years of experience in Cyber Security Engineering or Information Security roles Hands-on expertise with: Cloud security tools (AWS Security Hub, Azure Security Center, etc.) Vulnerability management (Qualys, Nessus, Tenable, etc.) DLP platforms (Symantec, Forcepoint, McAfee, etc.) IAM platforms (Okta, Azure AD, Ping Identity, SailPoint, etc.) Strong knowledge of security frameworks (NIST, CIS Controls, etc.) Excellent communication , problem-solving , and stakeholder management skills Certifications like CISSP, CISM, CEH, AWS/Azure Security are a plus Show more Show less

Level: Consultant/ Assistant Manager Skills: IT Audit + ITGC + ITAC + Code Review Experience: 3-7 Years Job Location: Bangalore Role & responsibilities Perform testing of IT Application Controls, IPE, and Interface Controls through code reviews , IT General Controls review covering areas such as Change Management, Access Management, Backup Management, Incident and Problem Management, SDLC, Data Migration, Batch Job scheduling/monitoring and Business Continuity and Disaster Recovery Risk Based IT Internal Audit for Financial Services Entities IT SOX 404 Controls Testing, Quality Assurance Internal Financial Controls related to IT General Controls as part of Financial Statements Audits Business Systems Controls / IT Application Controls IT Risk & Control Self-Assessment Auditing Emerging Technologies such as Cloud Security, Intelligent Automation, RPA, IoT etc. Working knowledge of programming languages(C/C++/Java/SQL) Preferred candidate profile A Bachelor's degree in engineering and approximately 3-7 years of related work experience; or a masters or MBA degree in business, computer science, information systems, engineering Expertise in code review skills (e.g., Java, C++, C, SQL, Oracle) Experience in performing IT audits of banking/financial sector applications Good to have knowledge of other IT regulations, standards and benchmarks used by the IT industry (e.g., NIST, PCI-DSS, ITIL, OWASP, SOX, COBIT, SSAE18/ISAE 3402 etc.) Show more Show less

About The Role Grade Level (for internal use): 13 Location: Gurgaon, Hyderabad and Bangalore Job Description We are seeking a highly skilled and visionary Agentic AI Architect to lead the strategic design, development, and scalable implementation of autonomous AI systems within our organization. This role demands an individual with deep expertise in cutting-edge AI architectures, a strong commitment to ethical AI practices, and a proven ability to drive innovation. The ideal candidate will architect intelligent, self-directed decision-making systems that integrate seamlessly with enterprise workflows and propel our operational efficiency forward. Key Responsibilities As an Agentic AI Architect, you will: AI Architecture and System Design: Architect and design robust, scalable, and autonomous AI systems that seamlessly integrate with enterprise workflows, cloud platforms, and advanced LLM frameworks. Define blueprints for APIs, agents, and pipelines to enable dynamic, context-aware AI decision-making. Strategic AI Leadership: Provide technical leadership and strategic direction for AI initiatives focused on agentic systems. Guide cross-functional teams of AI engineers, data scientists, and developers in the adoption and implementation of advanced AI architectures. Framework and Platform Expertise: Evaluate, recommend, and implement leading AI tools and frameworks, with a strong focus on autonomous AI solutions (e.g., multi-agent frameworks, self-optimizing systems, LLM-driven decision engines). Drive the selection and utilization of cloud platforms (AWS SageMaker preferred, Azure ML, Google Cloud Vertex AI) for scalable AI deployments. Customization and Optimization: Design strategies for optimizing autonomous AI models for domain-specific tasks (e.g., real-time analytics, adaptive automation). Define methodologies for fine-tuning LLMs, multi-agent frameworks, and feedback loops to align with overarching business goals and architectural principles. Innovation and Research Integration: Spearhead the integration of R&D initiatives into production architectures, advancing agentic AI capabilities. Evaluate and prototype emerging frameworks (e.g., Autogen, AutoGPT, LangChain), neuro-symbolic architectures, and self-improving AI systems for architectural viability. Documentation and Architectural Blueprinting: Develop comprehensive technical white papers, architectural diagrams, and best practices for autonomous AI system design and deployment. Serve as a thought leader, sharing architectural insights at conferences and contributing to open-source AI communities. System Validation and Resilience: Design and oversee rigorous architectural testing of AI agents, including stress testing, adversarial scenario simulations, and bias mitigation strategies, ensuring alignment with compliance, ethical and performance benchmarks for robust production systems. Stakeholder Collaboration & Advocacy: Collaborate with executives, product teams, and compliance officers to align AI architectural initiatives with strategic objectives. Advocate for AI-driven innovation and architectural best practices across the organization. Qualifications Technical Expertise: 12+ years of progressive experience in AI/ML, with a strong track record as an AI Architect, ML Architect, or AI Solutions Lead. 7+ years specifically focused on designing and architecting autonomous/agentic AI systems (e.g., multi-agent frameworks, self-optimizing systems, or LLM-driven decision engines). Expertise in Python (mandatory) and familiarity with Node.js for architectural integrations. Extensive hands-on experience with autonomous AI tools and frameworks: LangChain, Autogen, CrewAI, or architecting custom agentic frameworks. Proficiency in cloud platforms for AI architecture: AWS SageMaker (most preferred), Azure ML, or Google Cloud Vertex AI, with a deep understanding of their AI service offerings. Demonstrable experience with MLOps pipelines (e.g., Kubeflow, MLflow) and designing scalable deployment strategies for AI agents in production environments. Leadership & Strategic Acumen Proven track record of leading the architectural direction of AI/ML teams, managing complex AI projects, and mentoring senior technical staff. Strong understanding and practical application of AI governance frameworks (e.g., EU AI Act, NIST AI RMF) and advanced bias mitigation techniques within AI architectures. Exceptional ability to translate complex technical AI concepts into clear, concise architectural plans and strategies for non-technical stakeholders and executive leadership. Ability to envision and articulate a long-term strategy for AI within the business, aligning AI initiatives with business objectives and market trends. Foster collaboration across various practices, including product management, engineering, and marketing, to ensure cohesive implementation of AI strategies that meet business goals. What’s In It For You? Our Purpose Progress is not a self-starter. It requires a catalyst to be set in motion. Information, imagination, people, technology–the right combination can unlock possibility and change the world. Our world is in transition and getting more complex by the day. We push past expected observations and seek out new levels of understanding so that we can help companies, governments and individuals make an impact on tomorrow. At S&P Global we transform data into Essential Intelligence®, pinpointing risks and opening possibilities. We Accelerate Progress. Our People We're more than 35,000 strong worldwide—so we're able to understand nuances while having a broad perspective. Our team is driven by curiosity and a shared belief that Essential Intelligence can help build a more prosperous future for us all. From finding new ways to measure sustainability to analyzing energy transition across the supply chain to building workflow solutions that make it easy to tap into insight and apply it. We are changing the way people see things and empowering them to make an impact on the world we live in. We’re committed to a more equitable future and to helping our customers find new, sustainable ways of doing business. We’re constantly seeking new solutions that have progress in mind. Join us and help create the critical insights that truly make a difference. Our Values Integrity, Discovery, Partnership At S&P Global, we focus on Powering Global Markets. Throughout our history, the world's leading organizations have relied on us for the Essential Intelligence they need to make confident decisions about the road ahead. We start with a foundation of integrity in all we do, bring a spirit of discovery to our work, and collaborate in close partnership with each other and our customers to achieve shared goals. Benefits We take care of you, so you can take care of business. We care about our people. That’s why we provide everything you—and your career—need to thrive at S&P Global. Our Benefits Include Health & Wellness: Health care coverage designed for the mind and body. Flexible Downtime: Generous time off helps keep you energized for your time on. Continuous Learning: Access a wealth of resources to grow your career and learn valuable new skills. Invest in Your Future: Secure your financial future through competitive pay, retirement planning, a continuing education program with a company-matched student loan contribution, and financial wellness programs. Family Friendly Perks: It’s not just about you. S&P Global has perks for your partners and little ones, too, with some best-in class benefits for families. Beyond the Basics: From retail discounts to referral incentive awards—small perks can make a big difference. For more information on benefits by country visit: https://spgbenefits.com/benefit-summaries Global Hiring And Opportunity At S&P Global At S&P Global, we are committed to fostering a connected and engaged workplace where all individuals have access to opportunities based on their skills, experience, and contributions. Our hiring practices emphasize fairness, transparency, and merit, ensuring that we attract and retain top talent. By valuing different perspectives and promoting a culture of respect and collaboration, we drive innovation and power global markets. Equal Opportunity Employer S&P Global is an equal opportunity employer and all qualified candidates will receive consideration for employment without regard to race/ethnicity, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, marital status, military veteran status, unemployment status, or any other status protected by law. Only electronic job submissions will be considered for employment. If you need an accommodation during the application process due to a disability, please send an email to: EEO.Compliance@spglobal.com and your request will be forwarded to the appropriate person. US Candidates Only: The EEO is the Law Poster http://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf describes discrimination protections under federal law. Pay Transparency Nondiscrimination Provision - https://www.dol.gov/sites/dolgov/files/ofccp/pdf/pay-transp_%20English_formattedESQA508c.pdf 10 - Officials or Managers (EEO-2 Job Categories-United States of America), IFTECH103.2 - Middle Management Tier II (EEO Job Group), SWP Priority – Ratings - (Strategic Workforce Planning) Job ID: 316525 Posted On: 2025-06-11 Location: Gurgaon, Haryana, India Show more Show less

About The Role Grade Level (for internal use): 12 Lead Agentic AI Developer Location: Gurgaon, Hyderabad and Bangalore Job Description A Lead Agentic AI Developer will drive the design, development, and deployment of autonomous AI systems that enable intelligent, self-directed decision-making. Their day-to-day operations focus on advancing AI capabilities, leading teams, and ensuring ethical, scalable implementations. Responsibilities AI System Design and Development: Architect and build autonomous AI systems that integrate with enterprise workflows, cloud platforms, and LLM frameworks. Develop APIs, agents, and pipelines to enable dynamic, context-aware AI decision-making. Team Leadership and Mentorship: Lead cross-functional teams of AI engineers, data scientists, and developers. Mentor junior staff in agentic AI principles, reinforcement learning, and ethical AI governance. Customization and Advancement: Optimize autonomous AI models for domain-specific tasks (e.g., real-time analytics, adaptive automation). Fine-tune LLMs, multi-agent frameworks, and feedback loops to align with business goals. Ethical AI Governance: Monitor AI behavior, audit decision-making processes, and implement safeguards to ensure transparency, fairness, and compliance with regulatory standards. Innovation and Research: Spearhead R&D initiatives to advance agentic AI capabilities. Experiment with emerging frameworks (e.g.,Autogen, AutoGPT, LangChain), neuro-symbolic architectures, and self-improving AI systems. Documentation and Thought Leadership: Publish technical white papers, case studies, and best practices for autonomous AI. Share insights at conferences and contribute to open-source AI communities. System Validation: Oversee rigorous testing of AI agents, including stress testing, adversarial scenario simulations, and bias mitigation. Validate alignment with ethical and performance benchmarks. Stakeholder Leadership: Collaborate with executives, product teams, and compliance officers to align AI initiatives with strategic objectives. Advocate for AI-driven innovation across the organization. Required Skills/Qualifications What We’re Looking For : Technical Expertise: 8+ years as a Senior AI Engineer, ML Architect, or AI Solutions Lead, with 5+ years focused on autonomous/agentic AI systems (e.g., multi-agent frameworks, self-optimizing systems, or LLM-driven decision engines). Expertise in Python (mandatory) and familiarity with Node.js. Hands-on experience with autonomous AI tools: LangChain, Autogen, CrewAI, or custom agentic frameworks. Proficiency in cloud platforms: AWS SageMaker (most preferred), Azure ML, or Google Cloud Vertex AI. Experience with MLOps pipelines (e.g., Kubeflow, MLflow) and scalable deployment of AI agents. Leadership: Proven track record of leading AI/ML teams, managing complex projects, and mentoring technical staff. Ethical AI: Familiarity with AI governance frameworks (e.g., EU AI Act, NIST AI RMF) and bias mitigation techniques. Communication: Exceptional ability to translate technical AI concepts for non-technical stakeholders. Nice To Have Contributions to AI research (published papers, patents) or open-source AI projects (e.g., TensorFlow Agents, AutoGen). Experience with DevOps/MLOps tools: Kubeflow, MLflow, Docker, or Terraform. Expertise in NLP, computer vision, or graph-based AI systems. Familiarity with quantum computing or neuromorphic architectures for AI. What’s In It For You? Our Purpose Progress is not a self-starter. It requires a catalyst to be set in motion. Information, imagination, people, technology–the right combination can unlock possibility and change the world. Our world is in transition and getting more complex by the day. We push past expected observations and seek out new levels of understanding so that we can help companies, governments and individuals make an impact on tomorrow. At S&P Global we transform data into Essential Intelligence®, pinpointing risks and opening possibilities. We Accelerate Progress. Our People We're more than 35,000 strong worldwide—so we're able to understand nuances while having a broad perspective. Our team is driven by curiosity and a shared belief that Essential Intelligence can help build a more prosperous future for us all. From finding new ways to measure sustainability to analyzing energy transition across the supply chain to building workflow solutions that make it easy to tap into insight and apply it. We are changing the way people see things and empowering them to make an impact on the world we live in. We’re committed to a more equitable future and to helping our customers find new, sustainable ways of doing business. We’re constantly seeking new solutions that have progress in mind. Join us and help create the critical insights that truly make a difference. Our Values Integrity, Discovery, Partnership At S&P Global, we focus on Powering Global Markets. Throughout our history, the world's leading organizations have relied on us for the Essential Intelligence they need to make confident decisions about the road ahead. We start with a foundation of integrity in all we do, bring a spirit of discovery to our work, and collaborate in close partnership with each other and our customers to achieve shared goals. Benefits We take care of you, so you can take care of business. We care about our people. That’s why we provide everything you—and your career—need to thrive at S&P Global. Our Benefits Include Health & Wellness: Health care coverage designed for the mind and body. Flexible Downtime: Generous time off helps keep you energized for your time on. Continuous Learning: Access a wealth of resources to grow your career and learn valuable new skills. Invest in Your Future: Secure your financial future through competitive pay, retirement planning, a continuing education program with a company-matched student loan contribution, and financial wellness programs. Family Friendly Perks: It’s not just about you. S&P Global has perks for your partners and little ones, too, with some best-in class benefits for families. Beyond the Basics: From retail discounts to referral incentive awards—small perks can make a big difference. For more information on benefits by country visit: https://spgbenefits.com/benefit-summaries Global Hiring And Opportunity At S&P Global At S&P Global, we are committed to fostering a connected and engaged workplace where all individuals have access to opportunities based on their skills, experience, and contributions. Our hiring practices emphasize fairness, transparency, and merit, ensuring that we attract and retain top talent. By valuing different perspectives and promoting a culture of respect and collaboration, we drive innovation and power global markets. Equal Opportunity Employer S&P Global is an equal opportunity employer and all qualified candidates will receive consideration for employment without regard to race/ethnicity, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, marital status, military veteran status, unemployment status, or any other status protected by law. Only electronic job submissions will be considered for employment. If you need an accommodation during the application process due to a disability, please send an email to: EEO.Compliance@spglobal.com and your request will be forwarded to the appropriate person. US Candidates Only: The EEO is the Law Poster http://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf describes discrimination protections under federal law. Pay Transparency Nondiscrimination Provision - https://www.dol.gov/sites/dolgov/files/ofccp/pdf/pay-transp_%20English_formattedESQA508c.pdf 10 - Officials or Managers (EEO-2 Job Categories-United States of America), IFTECH103.2 - Middle Management Tier II (EEO Job Group), SWP Priority – Ratings - (Strategic Workforce Planning) Job ID: 316524 Posted On: 2025-06-11 Location: Gurgaon, Haryana, India Show more Show less

Required Skills & Experience - 5+ years in detection engineering, threat hunting, or security operations. - Deep expertise with CrowdStrike Falcon Endpoint, Next-Gen SIEM, CS IDP, FUSION, and SOAR platforms. - Strong experience with cloud security (AWS, Azure). - Proficiency in CrowdStrike Query Language (FQL/CQL) and scripting (Python, PowerShell). - Proven ability to troubleshoot CrowdStrike sensor issues, agent health, and platform integration. - Familiarity with MITRE ATT&CK, NIST 800-53, and modern detection frameworks. - Expertise in CRBL and/or CRBL-like data optimization tools Nice to Have Skills & Experience - CrowdStrike certifications (e.g., CCFA, CCFH) - Experience with threat intelligence platforms and adversary emulation. - Familiarity with CI/CD pipelines, detection-as-code, and infrastructure-as-code practices. Job Description We are seeking a highly experienced Senior Detection Engineer to lead the development and optimization of advanced threat detection and response capabilities. This role requires deep expertise in CrowdStrike Falcon Endpoint, Next-Gen SIEM, CS Identity Protection (IDP), FUSION, SOAR platforms, and cloud security. The ideal candidate will serve as the subject matter expert (SME) for the entire CrowdStrike ecosystem, including sensor deployment, troubleshooting, automation, and query development. Key Responsibilities - Develop and maintain high-fidelity detection rules using CrowdStrike Falcon, Next-Gen SIEM, and FUSION. - Leverage CS IDP to detect identity-based threats and lateral movement. - Write and optimize queries using CrowdStrike Query Language (FQL/CQL) for threat hunting and detection validation. - Build and tune detections for cloud environments (AWS, Azure, GCP) and integrate with cloud-native logging tools. - Function as the primary SME for CrowdStrike, including Falcon, IDP, FUSION, and related modules. - Troubleshoot and resolve sensor deployment issues, agent health problems, and telemetry gaps. - Serve as the escalation point for CrowdStrike-related errors, automation failures, and detection tuning. - Design and implement automated response playbooks using SOAR platforms to reduce dwell time and automate/streamline triage. - Conduct threat modeling for enterprise systems, cloud platforms, and business-critical applications. Compensation : 30 LPA to 40 LPA Exact compensation may vary based on several factors, including skills, experience, and education. Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law. Show more Show less

Job Title: GRC Professional Location: Mohali Experience: 3+ Years Employment Type: Full-Time Job Summary: We are seeking a skilled and proactive GRC Professional to join our team in Mohali. The ideal candidate will play a pivotal role in developing and maintaining the organization’s Governance, Risk, and Compliance (GRC) framework, with a strong emphasis on Business Continuity Management (BCM) and the governance of security tools . This role serves as a bridge between security operations and compliance requirements, ensuring a resilient and well-governed IT environment. Key Responsibilities: GRC & Compliance Governance: Develop, implement, and maintain GRC policies, procedures, and standards aligned with industry best practices (e.g., ISO 27001, NIST) and applicable regulatory frameworks. Conduct regular assessments of internal controls, identify gaps, and recommend improvements. Support internal and external audit processes by preparing documentation and evidence of compliance. Business Continuity Management (BCM): Govern and continuously improve the organization's Business Continuity Management System (BCMS) . Lead efforts in Business Impact Analysis (BIA) , Business Continuity Planning (BCP) , and Disaster Recovery Planning (DRP) . Coordinate testing and review of continuity plans to ensure organizational resilience. Security Tool Governance: Oversee the governance of critical security tools including SIEM, DLP, EDR, IAM, and Firewalls . Define and enforce policies for the effective configuration, deployment, and monitoring of these tools. Establish accountability frameworks for tool ownership, usage, and compliance. Performance Metrics & Reporting: Develop and maintain dashboards and reports to track GRC, BCM, and security tool effectiveness. Present insights and recommendations to senior stakeholders. Cross-Functional Collaboration: Work closely with IT security, infrastructure, and business units to embed GRC practices into daily operations. Ensure security governance is aligned with business and IT strategies. Qualifications: Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related discipline. Minimum of 3 years of hands-on experience in GRC, with strong exposure to BCM and security tool governance . Sound understanding of security frameworks and regulatory requirements. Experience with tools such as SIEM, DLP, IAM, EDR, and firewalls. Strong analytical, documentation, and communication skills. Preferred Skills (Nice to Have): Relevant certifications such as ISO 27001 Lead Implementer/Auditor , CBCP , CISA , or CISSP . Experience in managing third-party risk or vendor assessments. Immediate joiners preferred. Show more Show less

Job Description We are seeking a Senior Cloud Security Architect with deep expertise in securing cloud infrastructures in AWS and Azure. This role will drive secure cloud adoption, design security architectures, and implement proactive threat detection and risk mitigation strategies. The ideal candidate will be a technical leader with hands-on experience securing complex cloud environments, integrating automation, DevSecOps, and compliance frameworks into scalable cloud security solutions. Required Skills & Experience - 10+ years of (cybersecurity) security experience, with 4+ years in cloud security architecture and engineering - Expert knowledge of AWS and Azure security architectures, cloud-native services, and security controls like (IAM, Firewalls, and Encryption) - Deep expertise in cloud networking, cryptography, and security protocols (TLS, OAuth, OIDC, Zero Trust, etc.) - Experience with Infrastructure as Code (Terraform, CloudFormation, Bicep) for secure cloud deployments - Proficiency in automation and scripting (Python, PowerShell, Bash) for security orchestration - Strong understanding of Kubernetes security, including Open Policy Agent (OPA), Kyverno, Kubernetes Pod Security Standards (PSS), and service mesh technologies Nice to Have Skills & Experience - Cloud Certifications, such as AWS Certified Solutions Architect - Professional, AWS Certified Security - Specialty, Microsoft Certified Azure Solutions Architect Expert, Azure Security Engineer Associate, Google Cloud Architect, CISSP, CCSP, CISM Key Responsibilities Cloud Security Architecture & Implementation: - Design and implement secure, scalable cloud architectures in AWS and Azure. - Develop security frameworks, policies, and standards. - Architect IAM, RBAC, and CIEM solutions. - Secure cloud-native services (serverless, Kubernetes, containers). - Deploy and secure network security controls (firewalls, VPNs, IPS). Threat Detection & Response: - Manage SIEM, SOAR, and EDR/XDR solutions. - Implement real-time threat detection and automated response. - Analyze network traffic, logs, and security events. - Use threat intelligence platforms and CSPM solutions. DevSecOps & CI/CD Security: - Secure CI/CD pipelines (Jenkins, GitHub Actions, GitLab CI/CD). - Integrate automated security testing (SAST, DAST, SCA). - Implement API security best practices. Offensive Security & Compliance: - Conduct penetration testing and security assessments. - Implement data security controls (encryption, DLP). - Ensure compliance with NIST 800-53, ISO 27001, PCI DSS, HIPAA, GDPR. - Perform risk assessments and develop remediation plans. Compensation : 30 LPA to 40 LPA Exact compensation may vary based on several factors, including skills, experience, and education. Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law. Show more Show less

When you join Verizon You want more out of a career. A place to share your ideas freely — even if they’re daring or different. Where the true you can learn, grow, and thrive. At Verizon, we power and empower how people live, work and play by connecting them to what brings them joy. We do what we love — driving innovation, creativity, and impact in the world. Our V Team is a community of people who anticipate, lead, and believe that listening is where learning begins. In crisis and in celebration, we come together — lifting our communities and building trust in how we show up, everywhere & always. Want in? Join the #VTeamLife. Job Description What you’ll be doing... We are seeking a highly skilled Enterprise Architect to lead the design and optimization of our secure network architecture across our hybrid IT environment - spanning both on-premises infrastructure and multiple-cloud platforms (e.g.AWS, Axure, GCP etc) & SASE/SSE products. This role focuses on enforcing robust security principles such as Zero Trust Architecture, network segmentation and intrusion detection and prevention, ensuring a consistent and secure access model across all environments. You will play a key role in modernizing network security, reducing attack surfaces, and ensuring that security scales with our global operations and digital transformation. Key Responsibilities Hybrid Network Security Architecture Architect and design secure network architecture across hybrid environments, encompassing data centers, campus, branch offices, and public/private cloud. Develop architecture patterns that ensure consistent security posture, traffic visibility, and policy enforcement across cloud and on-prem networks. Align networking and security design with zero trust principles, ensuring trust is continuously evaluated and enforced regardless of environment and location Zero Trust and Network Segmentation Define a zero trust model that includes identity-aware access, device trust, microsegmentation and continuous verification Architect and develop network segmentation strategies to isolate workloads, limit lateral movement and enforce least privilege across cloud and on-prem environments Establish trust zones, access control policies, and segmentation boundaries in hybrid architecture Intrusion Detection and Threat Monitoring Design and deploy intrusion detection and prevention systems tailed for hybrid environments Integrate network detection and response tools with cloud-native services and on-prem infrastructure to ensure end-to-end threat visibility Collaborate with SOC and threat intel teams to operationalize detection logic and incident response capability Policy Enforcement and Access Control Define ACLs and NAC systems for secure access across multiple trust zones Ensure consistent policy management and enforcement using next-gen firewalls, identity-aware proxy, network access brokers and zero trust gateways. Compliance and Risk Mitigation Ensure architectural decision meet internal and external compliance requirements Identify and mitigate risks associated with network design, configuration, third-party integration in a hybrid environment. Qualifications & Experience You’ll need to have: Bachelor's or six or more years of expereince. Six or more years of experience in enterprise network architecture and security. Strong expertise in security frameworks, CASB, SWG, ZTNA, and cloud security. Deep knowledge of cloud platforms (AWS, Azure, Google Cloud) and cloud-native security models. Experience designing and implementing zero trust architectures. Strong understanding of industry security standards such as NIST, ISO 27001, and CIS benchmarks. Excellent communication skills with the ability to articulate complex technical concepts to executives and stakeholders. Industry certifications such as CISSP, CCSP, CCIE, AWS/Azure Security, or SASE-related certifications are a plus. Self-motivated and forward-thinking Strong analytical and problem-solving skills, with the ability to work in a fast-paced, dynamic environment. Where you’ll be working In this hybrid role, you'll have a defined work location that includes work from home and assigned office days set by your manager. Scheduled Weekly Hours 40 Equal Employment Opportunity Verizon is an equal opportunity employer. We evaluate qualified applicants without regard to race, gender, disability or any other legally protected characteristics. Show more Show less

Line of Service Advisory Industry/Sector FS X-Sector Specialism Risk Management Level Director Job Description & Summary At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data. As a cybersecurity generalist at PwC, you will focus on providing comprehensive security solutions and experience across various domains, maintaining the protection of client systems and data. You will apply a broad understanding of cybersecurity principles and practices to address diverse security challenges effectively. Why PWC At PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes for our clients and communities. This purpose-led and values-driven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences for each other. Learn more about us. At PwC, we believe in providing equal employment opportunities, without any discrimination on the grounds of gender, ethnic background, age, disability, marital status, sexual orientation, pregnancy, gender identity or expression, religion or other beliefs, perceived differences and status protected by law. We strive to create an environment where each one of our people can bring their true selves and contribute to their personal growth and the firm’s growth. To enable this, we have zero tolerance for any discrimination and harassment based on the above considerations. " Job Description & Summary: We are seeking a professional to join our Cybersecurity and Privacy services team, where you will have the opportunity to help clients implement effective cybersecurity programs that protect against threats, drive transformation, and foster growth. As companies increasingly adopt digital business models, the generation and sharing of data among organizations, partners, and customers multiply. We play a crucial role in ensuring that our clients are protected by developing transformation strategies focused on security, efficiently integrating and managing new or existing technology systems, and enhancing their cybersecurity investments. As a Director, you will be responsible for overseeing regular operations, driving continuous improvement processes, and managing client and vendor interactions. This role involves managing complex incidents escalated from L2 analysts, operating the Security Incident process, and mentoring junior team members to build a cohesive and motivated unit. Responsibilities Review cybersecurity events analyzed by L2 security analysts, serving as the escalation point for detection, response, and remediation activities. Monitor and guide the team in triaging cybersecurity events, prioritizing, and recommending/performing response measures. Provide technical support for IT teams in response and remediation activities for escalated cybersecurity events/incidents. Follow up on cybersecurity incident tickets until closure. Guide L1 and L2 analysts in analyzing events and response activities. Expedite cyber incident response and remediation activities when delays occur, coordinating with L1 and L2 team members. Review and provide suggestions for information security policies and best practices in client environments. Ensure compliance with SLAs and contractual requirements, maintaining effective communication with stakeholders. Review and share daily, weekly, and monthly dashboard reports with relevant stakeholders. Update and review documents, playbooks, and standard operational procedures. Validate and update client systems and IT infrastructure documentation. Share knowledge on current security threats, attack patterns, and tools with team members. Create and review new use cases based on evolving attack trends. Analyze and interpret Windows, Linux OS, firewall, web proxy, DNS, IDS, and HIPS log events. Develop and maintain threat detection rules, parsers, and use cases. Understand security analytics and flows across SaaS applications and cloud computing tools. Validate use cases through selective testing and logic examination. Maintain continuous improvement processes and build/groom teams over time. Develop thought leadership within the SOC. Mandatory Skill Sets Bachelor’s degree (minimum requirement). 12+years of experience in SOC operations. Experience analyzing malicious traffic and building detections. Experience in application security, network security, and systems security. Knowledge of security testing tools (e.g., BurpSuite, Mimikatz, Cobalt Strike, PowerSploit, Metasploit, Nessus, HP Web Inspect). Proficiency in common programming and scripting languages (Python, PowerShell, Ruby, Perl, Bash, JavaScript, VBScript). Familiarity with cybersecurity frameworks and practices (OWASP, NIST CSF, PCI DSS, NY-DFS). Experience with traditional security operations, event monitoring, and SIEM tools. Knowledge of MITRE or similar frameworks and procedures used by adversaries. Ability to develop and maintain threat detection rules and use cases. Preferred Skill Sets Strong communication skills, both written and oral. Experience with SMB and large enterprise clients. Good understanding of ITIL processes (Change Management, Incident Management, Problem Management). Strong expertise in multiple SIEM tools and other SOC environment devices. Knowledge of firewalls, IDS/IPS, AVI, EDR, Proxy, DNS, email, AD, etc. Understanding of raw log formats of various security devices. Foundational knowledge of networking concepts (TCP/IP, LAN/WAN, Internet network topologies). Relevant certifications (CEH, CISA, CISM, etc.). Strong work ethic and time management skills. Coachability and dedication to consistent improvement. Ability to mentor and encourage junior teammates. Knowledge of regex and parser creation. Ability to deploy SIEM solutions in customer environments. Years Of Experience Required 12 + years Education Qualification B.Tech Education (if blank, degree and/or field of study not specified) Degrees/Field of Study required: Bachelor of Engineering Degrees/Field Of Study Preferred Certifications (if blank, certifications not specified) Required Skills Accenture Managed Detection and Response (MDR) Ops Security Engineering Optional Skills Accepting Feedback, Accepting Feedback, Active Listening, Agile Methodology, Analytical Thinking, Azure Data Factory, Coaching and Feedback, Communication, Creativity, Cybersecurity, Cybersecurity Framework, Cybersecurity Policy, Cybersecurity Requirements, Cybersecurity Strategy, Embracing Change, Emotional Regulation, Empathy, Encryption Technologies, Inclusion, Influence, Innovation, Intellectual Curiosity, Learning Agility, Managed Services, Optimism {+ 20 more} Desired Languages (If blank, desired languages not specified) Travel Requirements Not Specified Available for Work Visa Sponsorship? No Government Clearance Required? No Job Posting End Date Show more Show less

Job Title: Security Compliance Consultant Department: Information Technology / IT Governance & Process Standardization Reports To: IT Operations Head Location: Manesar, Haryana (On-site at Client Location) Employer: Summary: Third party is seeking a highly skilled and detail-oriented IT Process Engineer to support our client in Manesar by driving IT governance, process standardization, and compliance alignment within the organization. This role is crucial in ensuring IT operations follow industry best practices (ITIL, ISO 27001) and align with business objectives. The IT Process Engineer will be responsible for process mapping, policy formulation, compliance adherence, and continuous improvement of IT service management (ITSM) practices. The ideal candidate should have strong expertise in IT process automation, risk management, and service optimization. The successful candidate will be an employee of third party based out of Noida, but will be working full-time at the client’s Manesar location. Responsibilities: IT Governance & Compliance: • Establish and maintain IT governance frameworks aligning with ISO 27001, ITIL, and NIST standards. • Develop and enforce IT policies, SOPs, and regulatory compliance guidelines. • Conduct regular audits and risk assessments to ensure IT processes meet compliance requirements. • Coordinate with stakeholders to implement IT security, change management, and risk mitigation strategies. Process Standardization & Optimization: • Analyze, design, and optimize IT workflows to improve operational efficiency. • Implement IT Service Management (ITSM) best practices to enhance service delivery. • Define KPIs and SLAs to measure IT performance and ensure process efficiency. • Automate repetitive IT processes to reduce manual intervention and improve consistency. Change Management & Continuous Improvement: • Develop and maintain Change Management processes to minimize disruptions during IT deployments. • Establish a Continuous Improvement framework by gathering feedback and optimizing IT service strategies. • Work with IT teams to integrate process improvements with new technology implementations. • Collaborate with cross-functional teams to align IT processes with business needs. Incident & Problem Management: • Develop and enforce incident response and problem management frameworks to minimize system downtime. • Establish root cause analysis (RCA) protocols to prevent recurring IT issues. • Implement knowledge management systems to document and streamline IT issue resolutions. Training & Stakeholder Collaboration: • Train IT staff on new processes, policies, and best practices. • Facilitate IT governance awareness programs to align IT teams with compliance and risk management goals. • Act as a liaison between IT teams, management, and external auditors to ensure transparent reporting and policy adherence. Qualifications: • Bachelor’s degree in Information Technology, Computer Science, or a related field. • 8-12 years of experience in IT process engineering, IT governance, or IT service management. • Strong knowledge of ITIL frameworks, ISO 27001 compliance, and ITSM best practices. • Experience in process mapping, automation, and optimization techniques. • Hands-on experience with ITSM tools (e.g., ServiceNow, BMC Remedy, Jira Service Management). • Familiarity with risk assessment methodologies and regulatory compliance audits. • Excellent analytical, problem-solving, and communication skills. Preferred Qualifications: • ITIL v4 Certification or similar process management certification. • Experience with ISO 27001 implementation and audit processes. • Knowledge of process automation tools and scripting (Python, PowerShell, RPA tools). • Understanding of Cloud Governance (AWS, Azure, GCP) and IT process integration. • Experience working in automotive, manufacturing, or R&D environments. Benefits: • Opportunities for professional development and growth • Exposure to a dynamic client environment in the automotive sector. • Recognition to be associated with To Apply: Please submit your resume along with the cover letter Show more Show less

Job Title: Manager – SOAR Administration Department: Information Security Group (ISG) Duration: 6 months Reports To: VP – Head of Cyber Defense Center Location: REMOTE,India Job Purpose The Manager – SOAR Administration is responsible for the end-to-end administration and optimization of Security Orchestration, Automation, and Response (SOAR) solutions within the Cyber Defense Center. This role is critical to enhancing the efficiency and effectiveness of the organization’s security operations through the use of automation and orchestration. The role involves collaborating with the SOC team, integrating security tools, developing automated workflows, and improving incident response capabilities to bolster the overall cyber resilience of the organization. Key Result Areas Lead the implementation, configuration, and administration of SOAR platforms (e.g., Splunk SOAR, Palo Alto Cortex XSOAR, IBM Resilient). Design, build, and optimize automated playbooks for incident detection and response. Ensure orchestration and integration across various security tools (SIEM, threat intelligence platforms, etc.). Drive process automation using scripting languages (Python, PowerShell, Bash). Support the incident response lifecycle and coordinate with the SOC during incidents. Monitor and enhance the SOAR ecosystem to reduce mean time to detect and respond (MTTD/MTTR). Deliver projects related to SOAR optimization and innovation. Key Principles Business Alignment: Ensure SOAR initiatives are aligned with the bank’s strategic security objectives. Accountability: Own SOAR processes, outcomes, and reporting. Maturity Improvement: Continuously drive enhancements to cyber defense posture. Impact-Driven Approach: Focus on tangible results such as reduced response times and risk mitigation. Innovation & Automation: Promote scalable automation strategies and cutting-edge solutions. Continuous Improvement: Regularly review and upgrade SOAR processes and playbooks. Operating Environment & Relationships Collaborate with: Group-level CISOs, Cyber Defense Center staff Regulatory bodies, local and global teams First, Second, and Third Lines of Defense (e.g., DPP, IT, Risk, Audit, Compliance) Ensure alignment with: Cybersecurity standards and frameworks Bank-wide governance and regulatory mandates Problem Solving & Critical Thinking Analyze and resolve complex cybersecurity incidents through automation and orchestration. Develop innovative solutions where standard approaches fall short. Apply strong technical knowledge of security frameworks, protocols, and SOAR integrations. Decision-Making Authority & Responsibility Serve as the subject matter expert (SME) for all SOAR-related initiatives. Validate the adequacy of process controls against internal policies and regulatory requirements. Influence strategic direction for automation in incident response and security operations. Knowledge, Skills & Experience Essential Knowledge & Experience 8+ years in Information Security, including 4–6 years in Security Incident Response using SOAR. Proven hands-on experience with platforms such as Microsoft Sentinel, Splunk SOAR, Cortex XSOAR, or IBM Resilient. Familiar with advanced SOC tools, frameworks (NIST, CERT/CC, ISO 27035), and regulatory requirements. Strong background in the BFSI sector, preferably in a SOC function. In-depth understanding of governance, compliance, risk management, and incident response. Technical Skills & Application Expertise in scripting (Python, PowerShell, Bash) for playbook development. Ability to assess, design, and review SOAR use cases, automation logic, and integrations. Maintain up-to-date knowledge of evolving threat landscapes and defense mechanisms. Demonstrate resilience in enhancing security hygiene and monitoring capabilities. Other Requirements Bachelor’s degree in Computer Science, Information Security, or related discipline. Strong awareness of emerging technologies and evolving threat vectors. Professional certifications such as GCIH, CISSP, CEH are highly preferred. Show more Show less

Job Title: Consultant / Senior Consultant – Third-Party Risk Management (TPRM) Location: Remote – India Experience: 3+ years Shift Timing: Evening Shift (Start time: 5–6 PM IST, aligned with US hours) Industry: Cybersecurity, Risk Management Employment Type: Full-Time Job Summary: We are hiring a Consultant / Senior Consultant with 3+ years of experience in Third-Party Risk Management (TPRM) to work remotely with our global clients , primarily in the US region . This role requires solid knowledge of cybersecurity standards such as PCI DSS, ISO 27001, SOC 2, and NIST , as well as hands-on experience in conducting vendor risk assessments and ensuring compliance. Key Responsibilities: Perform third-party/vendor security risk assessments , evaluating information security practices of external vendors. Assess vendor compliance with PCI DSS, ISO 27001, SOC 2, NIST, and other regulatory frameworks . Review vendor documentation, including policies, audit reports, penetration test results, and risk assessments. Identify cybersecurity risks and assist in drafting risk reports and remediation plans . Liaise with internal stakeholders and vendor contacts to ensure timely risk issue resolution and follow-up . Support ongoing monitoring of vendors through risk ratings, reassessments, and tracking regulatory obligations. Maintain accurate records and dashboards related to TPRM activities. Participate in process improvement initiatives to enhance the effectiveness of the TPRM program. Collaborate with global teams, particularly in the US time zone . Qualifications and Skills: Minimum 3+ years of experience in TPRM, cyber risk assessments, compliance audits, or related cybersecurity domains. Strong understanding of regulatory and industry frameworks like PCI DSS, ISO 27001, NIST, SOC 2 , etc. Familiarity with tools used for TPRM, compliance tracking, and risk assessments. Bachelor’s degree in Information Security, Computer Science, Risk Management , or related field. Relevant certifications such as CISA, ISO 27001 LA, or CISSP (preferred but not mandatory). Excellent communication skills, with the ability to present risk findings and collaborate with international stakeholders. Must be comfortable working in evening shifts starting around 5–6 PM IST . Why Join Us? Opportunity to work with global clients and gain exposure to world-class cybersecurity standards. 100% remote role with flexibility in working from anywhere in India. Attractive compensation and career growth potential . Inclusive and collaborative team culture with a focus on learning and development . Show more Show less

Job Summary Reporting directly to the Senior Director of Legal and Corporate Administration Operations the Director of Strategic Operations develops workforce plans strategies and guidance to support workforce manpower personnel training and education requirements and to address changes to policy doctrine material force structure and education and training requirements for the 700+ associates in the Corporate Security organization. Responsibilities Key Responsibilities Financial Excellence Knowledge Management Design and implement Corporate Security service catalog and management practices. Monitor workforce capacity and critical roles for single point of failures concentration risk and/or skill set shortage. Acquire and manage the necessary resources including leadership support financial resources and key security personnel to support security goals and objectives and reduce overall organizational risk. Establish and maintain qualification standards for all roles in Corporate Security ensuring standards reflect organizational functional requirements and meet industry standards. Review and assess cyber workforce effectiveness and capability needs to adjust skill and/or qualification standards including identifying new skill sets required to meet emerging technologies and threats. Consult senior leadership team on cost/benefit analysis of information security program resource elements. Establish and collect metrics to monitor and validate workforce readiness including analysis of workforce data to assess the status of positions identified filled. Make recommendations for realignment and restructuring of the CSO organization based on workforce capacity skills and abilities. Establish and maintain communication channels with stakeholders. Establish career paths to allow career progression deliberate development and growth within and between career fields aligned to industry standards NIST Nice framework to include knowledge skills abilities and certifications required to advance in chosen fields ensuring that CS Associates are familiar with the process. Develop and implement standardized position descriptions based on established work roles. Advocate for adequate funding for cyber training resources to include both internal and industry-provided courses instructors and related materials. Basic Qualifications Bachelors degree in computer science information security or management systems engineering business administration or related field Masters degree preferred. At least 15 years of experience involving risk management information security and information technology. Show more Show less

Bangalore/ Gurgaon, India A security analyst role within the Global Technology Transversal Application Services (TAS) function, supporting the provision of a robust and consistent security scanning, remediation, and guidance service within the TAS Application Operations team. The team provides a global, centralized Operations, Governance, Audit, Risk & Security service across Application Delivery. What You’ll Be DOING What will your essential responsibilities include? Support the Application Operations (Security) team in all security related activities, forums and discussions. Perform application scanning across the Application Delivery estate using tools such as SonarQube, Checkmarx, JFrog Xray, CAST Highlight, Defender and Qualys. Assist in setting up Jenkins pipeline integration to CI/CD lifecycle. Perform Static Application Security Testing (SAST) and Software Composition Analysis (SCA), including analysis of components in applications to detect vulnerabilities and compliance issues. Work with Application Delivery teams to communicate the outcome of scanning and analysis, and agree remediation actions including target dates for completion, in alignment with Information Security Policy requirements. Assist in Risk Assessments, evaluating the severity of identified vulnerabilities and prioritizing remediation efforts based on potential impact to the organization. Assist in Policy development, contributing to the development and implementation of vulnerability management policies and procedures. Manage the production of reporting and metrics to both internal and external stakeholders. You will report to the Operations Lead. What You Will BRING We’re looking for someone who has these abilities and skills: Required Skills And Abilities Security First mindset. Understanding of vulnerability analysis, scanning and remediation processes. Understanding of CVEs, CVSS. Understanding of security industry compliancy benchmarks and standards i.e. CIS. Understanding of security best practices/standards i.e. OWASP, NIST. Preferable experience with at least 2 coding languages i.e. Java, .NET, C++, Python etc. Desired Skills And Abilities Outstanding analytical, critical thinking and organizational skills, ability to multitask and work to deadlines. Proficiency in Power BI, MS Work and MS Excel: We maintain and continually develop a number of Power BI Dashboards to support provision of critical data and use Excel to support our data capture and analysis and reporting. Excellent communication, interpersonal and relationship building skills (verbal and written) Who WE are AXA XL, the P&C and specialty risk division of AXA, is known for solving complex risks. For mid-sized companies, multinationals and even some inspirational individuals we don’t just provide re/insurance, we reinvent it. How? By combining a comprehensive and efficient capital platform, data-driven insights, leading technology, and the best talent in an agile and inclusive workspace, empowered to deliver top client service across all our lines of business − property, casualty, professional, financial lines and specialty. With an innovative and flexible approach to risk solutions, we partner with those who move the world forward. Learn more at axaxl.com What we OFFER Inclusion AXA XL is committed to equal employment opportunity and will consider applicants regardless of gender, sexual orientation, age, ethnicity and origins, marital status, religion, disability, or any other protected characteristic. At AXA XL, we know that an inclusive culture and a diverse workforce enable business growth and are critical to our success. That’s why we have made a strategic commitment to attract, develop, advance and retain the most diverse workforce possible, and create an inclusive culture where everyone can bring their full selves to work and can reach their highest potential. It’s about helping one another — and our business — to move forward and succeed. Five Business Resource Groups focused on gender, LGBTQ+, ethnicity and origins, disability and inclusion with 20 Chapters around the globe Robust support for Flexible Working Arrangements Enhanced family friendly leave benefits Named to the Diversity Best Practices Index Signatory to the UK Women in Finance Charter Learn more at axaxl.com/about-us/inclusion-and-diversity. AXA XL is an Equal Opportunity Employer. Total Rewards AXA XL’s Reward program is designed to take care of what matters most to you, covering the full picture of your health, wellbeing, lifestyle and financial security. It provides competitive compensation and personalized, inclusive benefits that evolve as you do. We’re committed to rewarding your contribution for the long term, so you can be your best self today and look forward to the future with confidence. Sustainability At AXA XL, Sustainability is integral to our business strategy. In an ever-changing world, AXA XL protects what matters most for our clients and communities. We know that sustainability is at the root of a more resilient future. Our 2023-26 Sustainability strategy, called “Roots of resilience”, focuses on protecting natural ecosystems, addressing climate change, and embedding sustainable practices across our operations. Our Pillars Valuing nature: How we impact nature affects how nature impacts us. Resilient ecosystems - the foundation of a sustainable planet and society - are essential to our future. We’re committed to protecting and restoring nature - from mangrove forests to the bees in our backyard - by increasing biodiversity awareness and inspiring clients and colleagues to put nature at the heart of their plans. Addressing climate change: The effects of a changing climate are far reaching and significant. Unpredictable weather, increasing temperatures, and rising sea levels cause both social inequalities and environmental disruption. We're building a net zero strategy, developing insurance products and services, and mobilizing to advance thought leadership and investment in societal-led solutions. Integrating ESG: All companies have a role to play in building a more resilient future. Incorporating ESG considerations into our internal processes and practices builds resilience from the roots of our business. We’re training our colleagues, engaging our external partners, and evolving our sustainability governance and reporting. AXA Hearts in Action: We have established volunteering and charitable giving programs to help colleagues support causes that matter most to them, known as AXA XL’s “Hearts in Action” programs. These include our Matching Gifts program, Volunteering Leave, and our annual volunteering day - the Global Day of Giving. For more information, please see axaxl.com/sustainability. Show more Show less

About Agoda Agoda is an online travel booking platform for accommodations, flights, and more. We build and deploy cutting-edge technology that connects travelers with a global network of 4.7M hotels and holiday properties worldwide, plus flights, activities, and more . Based in Asia and part of Booking Holdings, our 7,100+ employees representing 95+ nationalities in 27 markets foster a work environment rich in diversity, creativity, and collaboration. We innovate through a culture of experimentation and ownership, enhancing the ability for our customers to experience the world. Our Purpose – Bridging the World Through Travel We believe travel allows people to enjoy, learn and experience more of the amazing world we live in. It brings individuals and cultures closer together, fostering empathy, understanding and happiness. We are a skillful, driven and diverse team from across the globe, united by a passion to make an impact. Harnessing our innovative technologies and strong partnerships, we aim to make travel easy and rewarding for everyone. Get to Know our Team The Security Department oversees security, compliance, GRC, and security operations for all Agoda. We are vigilant in ensuring there is no breach or vulnerability threatening our company or endangering our employees in order to keep Agoda safe and protected. This would be a great challenge for those who want to work with the best technology in a dynamic and advanced environment. The Opportunity We are looking for a industry experienced, highly motivated and self driven, Incident Response Specialist, someone who can rapidly address security incidents and threats as they appear with the ability to strategize and lead Incident engagements with all staffing levels. On the ground level, your job is to monitor the threats targeting Agoda and keeping attacks from occurring and/or prevent them from getting worse. In This Role, You’ll Get to: Perform end-to-end handling of all critical, high and medium cyber security incidents at Agoda Drafting incident reports & communicating incident summaries to senior leadership, end users, legal teams Write playbooks for different types of cyber security incidents and use automation to reduce MTTR time Automating repetitive tasks of incident response using automation platforms and/or programming Optimizing existing security controls to finetune the alerts & reduce false positives Gather open source and commercial threat intelligence and perform hunting across the enterprise for undetected threats Support the legal & regulatory teams as a technical SME for cyber incidents with regulatory requirements Evaluate new technologies and Driving POCs for new security products What you’ll Need to Succeed: 5+ years experience in Cyber Security specifically in Incident Response field and working with 24/7 SOC teams Must have strong understand of NIST, CSF, MITRE and other cyber security framework Skilled in programming or scripting skills (e.g., Python or C++) are required for automating incident response tasks and developing custom security tools. Ability to write and tune detection rules in different security platforms Must have hands-on knowledge of dealing with major security incidents Ability to automate using automation platforms or programming skills is a must Malware analysis experience and digital forensics experience is a plus Certification of Cyber Security, Forensic and Incident Response is a plus (CISSP, ECSA, GISP, GCIH, GCFE, GCFA) We need you to be flexible, fast moving, adaptable and down-to-earth and an expert in multi-tasking Very good communication skills in English (both oral and written) Relocation package is provided in case you prefer to relocate to Bangkok, Thailand. Our benefits are… Hybrid Working Model WFH Set Up Allowance 30 Days of Remote Working from anywhere globally every year Employee discount for accommodation globally Global team of 90+ nationalities 40+ offices and 25+ countries Annual CSR / Volunteer Time off Benevity Subscription for employee donations Volunteering opportunities globally Free Headspace subscription Free Odilo & Udemy subscriptions Access to Employee Assistance Program (third party for personal and workplace support) Enhanced Parental Leave Life, TPD & Accident Insurance #sanfrancisco #sanjose #losangeles #sandiego #oakland #denver #miami #orlando #atlanta #chicago #boston #detroit #newyork #portland #philadelphia #dallas #houston #austin #seattle #sydney #melbourne #perth #toronto #vancouver #montreal #shanghai #beijing #shenzhen #prague #Brno #Ostrava #cairo #alexandria #giza #estonia #paris #berlin #munich #hamburg #stuttgart #cologne #frankfurt #dusseldorf #dortmund #essen #Bremen #leipzig #dresden #hanover #nuremberg #athens #hongkong #budapest #jakarta #bali #dublin #telaviv #jerusalem #milan #rome #venice #florence #naples #turin #palermo #bologna #tokyo #osaka #yokohama #nagoya #okinawa #fukuoka #sapporo #kualalumpur #malta #amsterdam #oslo #manila #warsaw #krakow #bucharest #doha #alrayyan #moscow #saintpetersburg #riyadh #jeddah #mecca #medina #singapore #capetown #johannesburg #seoul #barcelona #madrid #stockholm #zurich #taipei #tainan #taichung #kaohsiung #bangkok #Phuket #istanbul #dubai #abudhabi #sharjah #london #manchester #edinburgh #kiev #hcmc #hanoi #amsterdam #bucharest #lodz #wroclaw #poznan #katowice #rio #salvador #newdelhi #Hyderabad #bangalore #Mumbai #Bengaluru #Chennai #Kolkata #Lucknow #bandung #yokohama #nagoya #okinawa #fukuoka #IT #4 Equal Opportunity Employer At Agoda, we pride ourselves on being a company represented by people of all different backgrounds and orientations. We prioritize attracting diverse talent and cultivating an inclusive environment that encourages collaboration and innovation. Employment at Agoda is based solely on a person’s merit and qualifications. We are committed to providing equal employment opportunity regardless of sex, age, race, color, national origin, religion, marital status, pregnancy, sexual orientation, gender identity, disability, citizenship, veteran or military status, and other legally protected characteristics. We will keep your application on file so that we can consider you for future vacancies and you can always ask to have your details removed from the file. For more details please read our privacy policy . Disclaimer We do not accept any terms or conditions, nor do we recognize any agency’s representation of a candidate, from unsolicited third-party or agency submissions. If we receive unsolicited or speculative CVs, we reserve the right to contact and hire the candidate directly without any obligation to pay a recruitment fee. Show more Show less

Job Description Oracle Customer Success Services Building on the mindset that "Who knows Oracle …. better than Oracle?" Oracle Customer Success Services assists customers with their requirements for some of the most cutting-edge applications and solutions by utilizing the strengths of more than two decades of expertise in developing mission-critical solutions for enterprise customers and combining it with cutting-edge technology to provide our customers' speed, flexibility, resiliency, and security to enable customers to optimize their investment, minimize risk, and achieve more. The business was established with an entrepreneurial mindset and supports a vibrant, imaginative, and highly varied workplace. We are free of obligations, so we'll need your help to turn it into a premier engineering hub that prioritizes quality. Why? Oracle Customer Success Services Engineering is responsible for designing, building, and managing cutting-edge solutions, services, and core platforms to support the managed cloud business including but not limited to Oracle Cloud Infrastructure (OCI), Oracle Cloud Applications (SaaS) & Oracle Enterprise Applications. This position is for CSS Architecture Team, and we are searching for the finest and brightest technologists as we begin on the road of cloud-native digital transformation. We operate under a garage culture, rely on cutting-edge technology in our daily work, and provide a highly innovative, creative, and experimental work environment. We prefer to innovate and move quickly, putting a strong emphasis on scalability and robustness. We need your assistance to build a top-tier engineering team that has a significant influence. What? We are seeking a hands-on fullstack Senior Software Developer who will be part of our Architecture Team that shares our passion and excitement of building and operating distributed systems at hyperscale serving thousands of customers using cloud native technologies and software architecture design principles. As a Senior Software Developer within our team; you’ll lead efforts in designing and building scalable, distributed, resilient services & platforms that run mission-critical services for our customers. As a Senior Software Developer, you will be responsible for the design and development of software systems and applications, ensuring they meet the needs of our clients and align with the company's strategic objectives. The ideal candidate will have extensive experience in software architecture, design patterns, and software development methodologies. We strongly believe in ownership and challenging the status quo. We expect you to bring critical thinking and long-term design impact while building solutions and products defining system integrations, and cross-cutting concerns. Being part of the architecture function also provides you with the unique ability to enforce new processes and design patterns that will be future-proof while building new services or products. As a thought leader, you will own and lead the complete SDLC from Architecture Design, Development, Test, Operational Readiness, and Platform SRE Responsibilities Responsibilities As a senior member of the architecture team, you will be in charge of designing software products, services, and platforms, as well as creating, testing, and managing the systems and applications we create in line with the architecture patterns and standards. As a core member of the Architecture Chapter, you will be expected to advocate for the adoption of software architecture and design patterns among cross-functional teams both within and outside of engineering roles. You will also be expected to act as a mentor and advisor to the team(s) within the software domain as a leader. As we push for digital transformation throughout the organization, you will constantly be expected to think creatively and optimize and harmonize business processes. Core Responsibilities include: Lead the development and implementation of software architecture and design strategies. Collaborate with product managers and development teams to identify software requirements and define project scopes. Develop and maintain technical documentation, including architecture diagrams, design specifications, and system diagrams. Analyze and recommend new software technologies and platforms to ensure the company stays ahead of the curve. Work with development teams to ensure software projects are delivered on time, within budget, and to the required quality standards. Provide guidance and mentorship to junior developers. Stay up-to-date with industry trends and developments in software architecture and development practices. Minimum Qualifications Bachelor's or Masters's Degree in Computer Science or equivalent. 8 + Years of experience in software development & design. Demonstrate ability in building, and operating enterprise-distributed applications and/ or cloud-native systems. Extensive knowledge of software development methodologies and design patterns. Strong experience in developing and implementing software architecture and design strategies. Experience in defining strategies for critical platforms and services for large digital transformation programs. Strong expertise in utilizing software design concepts, patterns such as 12 Factor Apps, and tools to create software and solutions that are founded on the principles of CNCF design. Demonstrated ability in building and deploying software applications on one or more public cloud providers such as OCI, AWS, Azure, GCP, or equivalent. Demonstrated ability in writing full-stack applications leveraging polyglot programming with languages/ frameworks such as Fast API Python, Golang, Helidon Java, Node JS, OJET, Web Components, React, Javascript & Typescript. Experience in designing API First systems with application stacks such as but not limited to FARM, MERN, and technologies such as gRPC and REST. Firm grasp of Design Thinking, Test Driven Development(TDD), BDD, and end-to-end SDLC. Experience in DevOps practices involving containers in Kubernetes, CI/CD, Blue Green, and Canary Deployments. Experience with Microservice architecture patterns such as but not limited to API Gateways, Event Driven & Reactive Architecture, CQRS, and SAGA. Experience in testing strategies involving Unit, Integration, Contract, Regression, UI & Browser, Performance, and Stress Tests. Good understanding of Secure by Design and knowledge of implementing security controls and patterns for compliance systems spanning across involving NIST, OWASP, PCI DSS, ISO & SOC, etc. Familiarity with implementing OOP system design principles such as SOLID, DRY, KISS, Common Closure, and Module Encapsulation. Demonstrated ability in designing software systems involving one or more design principles such as Creational Design Patterns, Structural Design Patterns, and Behavioural Design Patterns. Strong interpersonal skills involving business stakeholders with an ability to think on your feet. Demonstrated ability in driving technology evangelism in software and cloud technologies. Excellent analytical and problem-solving skills. Excellent communication and leadership skills. Qualifications Career Level - IC4 About Us As a world leader in cloud solutions, Oracle uses tomorrow’s technology to tackle today’s challenges. We’ve partnered with industry-leaders in almost every sector—and continue to thrive after 40+ years of change by operating with integrity. We know that true innovation starts when everyone is empowered to contribute. That’s why we’re committed to growing an inclusive workforce that promotes opportunities for all. Oracle careers open the door to global opportunities where work-life balance flourishes. We offer competitive benefits based on parity and consistency and support our people with flexible medical, life insurance, and retirement options. We also encourage employees to give back to their communities through our volunteer programs. We’re committed to including people with disabilities at all stages of the employment process. If you require accessibility assistance or accommodation for a disability at any point, let us know by emailing accommodation-request_mb@oracle.com or by calling +1 888 404 2494 in the United States. Oracle is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans’ status, or any other characteristic protected by law. Oracle will consider for employment qualified applicants with arrest and conviction records pursuant to applicable law. Show more Show less