Job Title: Team Lead - SOC Analyst Team Department: Cybersecurity / Security Operations Job Type: Full-Time Key Responsibilities Guide and support a group of security analysts in their day-to-day work. Oversee daily SOC operations and ensure team adherence to processes, SLAs, and quality standards. Facilitate team meetings, knowledge-sharing sessions, and performance evaluations. Schedule and coordinate shifts, ensuring 24/7 coverage and proper workload distribution. Oversee detection, triage, investigation, and response to cybersecurity incidents. Work closely with threat intelligence, IT, and engineering teams to remediate threats. Conduct root cause analysis post-incident and recommend preventive measures. Skills Strong understanding of security frameworks (MITRE ATT&CK, NIST, etc.). Hands-on experience with CrowdStrike, Splunk, WIZ, VirusTotal, Jira, Confluence, AWS/Azure/GCP. Proficient in incident detection, investigation, and response. Familiar with handling various alert types including IDS/IPS alerts, EDR detections, malware and forensic investigations, phishing attempts, cloud-related security incidents, dynamic analysis, and static analysis. Excellent communication, leadership, and decision-making skills. Ability to manage pressure during security incidents and multitask in a dynamic environment. Strong analytical and problem-solving skills. Experience Minimum 5-7 years in a SOC environment. Working Conditions Minimum 1-2 years of team leadership or supervisory experience. The role involves working in rotational shifts to maintain 24/7 coverage of security operations. Certifications Such As Nice to Have (Optional but Valuable): CompTIA Security+ Google Cybersecurity Professional Training These are appreciated but not mandatory - hands-on experience and leadership ability come first. Show more Show less

Fynd is India’s largest omnichannel platform and multi-platform tech company with expertise in retail tech and products in AI, ML, big data ops, gaming+crypto, image editing and learning space. Founded in 2012 by 3 IIT Bombay alumni: Farooq Adam, Harsh Shah and Sreeraman MG. We are headquartered in Mumbai and have 1000+ brands under management, more than 10k stores and servicing 23k + pin codes. We are seeking a highly skilled Data Protection Officer (DPO) / GRC Officer responsible for ensuring compliance with global security and data protection regulations. The ideal candidate will oversee governance, risk, and compliance (GRC) programs, implement security frameworks, and safeguard sensitive data across the organization. What will you do at Fynd ? Governance, Risk, and Compliance (GRC): Develop, implement, and maintain GRC frameworks to align with regulatory and industry standards. Establish risk assessment methodologies and ensure mitigation strategies are in place. Conduct IT General Controls (ITGC) assessments to ensure effective security controls and processes. Oversee third-party risk assessments, ensuring vendors comply with security policies. Data Protection & Privacy Compliance: Implement and oversee compliance with DPDP (Digital Personal Data Protection Act, India) and GDPR regulations. Act as the point of contact for data protection authorities and internal privacy matters. Conduct Data Protection Impact Assessments (DPIAs) and privacy risk assessments. Develop and enforce privacy policies, data retention, and protection measures. Information Security Compliance & Certifications: Lead and maintain compliance with ISO 27001, ensuring policies and controls meet certification requirements. Manage SOC 2 compliance efforts, including security, availability, processing integrity, confidentiality, and privacy principles. Oversee PCI-DSS compliance for handling cardholder data securely. Ensure alignment with NIST security frameworks for risk management and cybersecurity resilience. Business Continuity & Incident Management: Develop and maintain a Business Continuity Management (BCM) program, including disaster recovery plans. Lead security incident response and investigations to mitigate data breaches and cybersecurity threats. Conduct regular tabletop exercises and audits to test resilience and readiness. Some Specific Requirements Bachelor’s/Master’s degree in Information Security, Cybersecurity, Compliance, or a related field. Professional certifications such as CIPP/E, CIPM, CISSP, CISM, CISA, ISO 27001 Lead Auditor, or CRISC are highly preferred. 5+ years of experience in Data Protection, Compliance, GRC, or Cybersecurity roles. Strong knowledge of regulatory frameworks (SOC2, ISO27001, GDPR, DPDP, PCI-DSS, NIST, ITGC, Third-Party Risk Management). Experience in implementing GRC tools and automating compliance processes. Excellent stakeholder management skills with the ability to work cross-functionally. Strong analytical, problem-solving, and decision-making skills. What do we offer? Growth Growth knows no bounds, as we foster an environment that encourages creativity, embraces challenges, and cultivates a culture of continuous expansion. We are looking at new product lines, international markets and brilliant people to grow even further. We teach, groom and nurture our people to become leaders. You get to grow with a company that is growing exponentially. Flex University We help you upskill by organising in-house courses on important subjects Learning Wallet: You can also do an external course to upskill and grow, we reimburse it for you. Culture Community and Team building activities Host weekly, quarterly and annual events/parties. Wellness Mediclaim policy for you + parents + spouse + kids Experienced therapist for better mental health, improve productivity & work-life balance We work from the office 5 days a week to promote collaboration and teamwork. Join us to make an impact in an engaging, in-person environment! Show more Show less

About The Role We are seeking a proactive and detail-oriented Cybersecurity Analyst with 1–3 years of experience to help safeguard our digital assets and protect our IT infrastructure from security threats. The ideal candidate will have hands-on experience in monitoring security systems, analyzing threats, and contributing to the organization's overall cyber defense strategy. Key Responsibilities Monitor security systems (SIEM, firewalls, IDS/IPS) for unusual activity or potential threats. Analyze and respond to security alerts, incidents, and breaches. Conduct regular vulnerability assessments and assist in remediation efforts. Support incident response processes, including investigation, documentation, and root cause analysis. Help implement and maintain cybersecurity policies, procedures, and best practices. Conduct user access reviews and manage security configurations across systems. Research and recommend security enhancements, tools, and techniques. Collaborate with IT and DevOps teams to ensure secure system deployments. Required Qualifications Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field. 1–3 years of hands-on experience in a cybersecurity or IT security role. Working knowledge of cybersecurity principles, tools, and frameworks (e.g., NIST, ISO 27001). Experience with SIEM tools (e.g., Splunk, IBM QRadar, ELK), firewalls, and endpoint protection. Familiarity with networking concepts, system administration (Windows/Linux), and cloud environments (AWS/Azure/GCP). Strong analytical, investigative, and problem-solving skills. Ability to work independently and in cross-functional teams. Preferred Qualifications Industry certifications such as CompTIA Security+, CEH, SSCP, or similar. Experience with scripting or automation (e.g., Python, Bash, PowerShell). Familiarity with DevSecOps practices or CI/CD pipelines. Understanding of regulatory standards (e.g., GDPR, HIPAA, PCI-DSS). What We Offer Competitive salary. Professional development opportunities and training support. Flexible work environment (including hybrid). Insurance Opportunity to work with modern security technologies in a dynamic team. Show more Show less

JOB DESCRIPTION: Job Title: Infrastructure Security Engineer Location: Hyderabad Job Summary: We are seeking a skilled Infrastructure Security Engineer to join our team and help secure our IT infrastructure. The ideal candidate will have hands-on experience in designing, implementing, and maintaining security controls across both on-premises and cloud environments. Key Responsibilities: Design and implement security measures to protect infrastructure, systems, and data Monitor network traffic, investigate security incidents, and coordinate response efforts Manage firewalls, VPNs, and IDS/IPS systems Conduct regular vulnerability assessments and penetration tests Harden cloud environments (AWS, Azure, GCP) following best practices Work with DevOps and IT teams to integrate security into CI/CD pipelines Maintain and enforce security policies, procedures, and standards Ensure compliance with regulatory frameworks (ISO 27001, NIST, SOC 2, etc.) Manage identity and access controls (IAM, LDAP, Active Directory) Automate security processes using scripting and tools like Terraform, Ansible Required Skills & Qualifications: Bachelor’s degree in computer science, Information Security, or a related field 3–5+ years of experience in infrastructure or information security Strong knowledge of networking, operating systems (Linux/Windows), and cloud security Hands-on experience with SIEM, IDS/IPS, and vulnerability scanning tools Proficiency in scripting (Python, Bash, PowerShell) and Infrastructure-as-Code (IaC) tools Security certifications preferred (CISSP, CISM, CEH, AWS Security Specialty) Please share your updated resume at Pravin.b@datasysamerica.com Show more Show less

About HackIT HackIT Technology and Advisory Services is an IT / Cyber Security company, operating since 2009. HackIT is an Indian Computer Emergency Response Team, CERT-IN (www.cert-in.org.in) empaneled provider for IT Security Audit Services. HackIT provides a broad range of security consulting and advisory services to a diverse group of clients, including government organizations, corporations, Military establishments, financial institutions and start-up, to name few. Our work spans multiple sectors and industries, including Telecommunications, Defense and Military, ITeS, Financial Services, Aviation, Hospitality, Healthcare and Research. We work end-to-end—from diagnosis to delivery of lasting impact — together generating tangible results that are improving the security posture of organizations worldwide. Job Title : Security Analyst (VA/PT) (Web / Mobile / Thick Client Application) Location : Kochi Job Overview : We are seeking a Security Analyst (VA/PT) to join our dynamic Security Testing team in performing security testing of applications, networks and infrastructures, including vulnerability assessments, penetration testing and manual testing techniques. Job Responsibilities : Hands-on role that also requires client interaction on a regular basis. Manual and automated security testing of Web applications, APIs, and Mobile Applications. Static and Dynamic testing (SAST & DAST) of thick clients / applications Develop Proof-of-Concept (PoC) for the identified vulnerabilities. Provide remediation guidance to identified vulnerabilities. Develop and execute security testing project plans. Incorporate metrics providing comprehensive insight about the security posture of an organization that will help senior management with decision making. Build and maintain strong relationships with key stakeholders. Technical Skillsets (Mandatory) : Hands on experience in Penetration Testing Strong analytical and problem-solving skills and the ability to explain complex technical concepts in a clear and concise manner and to provide remediation recommendations. Knowledge of / or experience with both Enterprise and open source offensive security tools for reconnaissance, scanning, exploitation Sound understanding of security frameworks (OWASP Top 10, NIST, MITRE ATT&CK). Technical Skillsets (Preferred) : Proficiency in a programming language(s) (e.g. Python, Ruby, Perl, PowerShell) Exposure to DevSecOps, Security Architecture review and Network Security assessment would be a bonus. Hands-on experience in Red Team Exercises, Threat Hunting, OSINT and Threat Modelling Job Types: Full-time, Permanent Pay: ₹300,000.00 - ₹600,000.00 per year Benefits: Cell phone reimbursement Health insurance Internet reimbursement Leave encashment Paid sick time Paid time off Provident Fund Schedule: Day shift Monday to Friday Work Location: In person

Company: Qualcomm India Private Limited Job Area: Finance & Accounting Group, Finance & Accounting Group > Internal Audit General Summary: Auditor, IT Internal Audit – Hyderabad Qualcomm is a company of inventors that unlocked 5G - ushering in an age of rapid acceleration in connectivity and new possibilities that will transform industries, create jobs, and enrich lives. But this is just the beginning. It takes inventive minds with diverse skills, backgrounds, and cultures to transform 5Gs potential into world-changing technologies and products. This is the Invention Age - and this is where you come in. This is a unique opportunity to join Qualcomm’s finance and accounting organization based in Hyderabad in the Corporate Internal Audit & Advisory Services (IA & AS) team. The department focuses on assisting the Audit Committee and management teams in the improvement of processes that manage risks related to achieving Qualcomm’s business objectives. Using Qualcomm’s risk-based audit methodology, the IT auditor will assist in the execution of internal audits. Specifically, the responsibilities include: Providing U.S. based time zone coverage as needed (up to 50% of time) Supporting the creation of initial planning memos and process flowcharts Identifying and assessing initial risks and control activities Designing audit procedures to evaluate control effectiveness Performing audit testing, identifying deviations from expected control activities, and effectively communicating observations to the audit team Leveraging data analytics throughout the audit process where feasible Staying abreast of changes in the business and industry to assess impacts to the company’s risk profile Contributing to the development of new concepts, techniques, and making continuous process improvements for the overall IA team All Qualcomm employees are expected to actively support diversity on their teams, and in the Company. One to three years of relevant experience in internal auditing, external auditing, or SOX compliance within a global public company (preferably in the high-tech industry), Big 4/mid-tier accounting firm or other fast-paced corporate setting Strong understanding of IT general controls, cybersecurity frameworks (e.g. NIST, COBIT), and ERP systems Fluent English; multi-lingual capability is a plus Successful candidate will possess the following characteristics: As feasible, ability to travel (infrequently) to Qualcomm’s domestic and international locations (e.g., U.S., Europe) Semiconductor business experience or familiarity Strong communication (oral and written) and presentation skills Fast learner with strong interpersonal, organization, analytical, critical thinking, and problem-solving skills Ability to work in a flexible and non-hierarchical team environment Willingness to get things done and take responsibility Ability to recognize and apply a sense of urgency, when necessary Comfortable with ambiguity Positive attitude, professional maturity, good work ethic Ability to work independently, handle multiple projects simultaneously and multi-task to meet deadlines with high-quality deliverables Controls, risk assessment, risks, internal audit, IT Bachelor's degree in Accounting, Finance, Computer Science, cyber security, or related field. CPA, CA, CIA, CISA, CFE, or other credentials, a plus. Minimum Qualifications: Bachelor's degree. 1+ year of Finance, Accounting, or related work experience. Completed advanced degree in a relevant field may be substituted for up to one year (Master’s = one year) of work experience. Applicants : Qualcomm is an equal opportunity employer. If you are an individual with a disability and need an accommodation during the application/hiring process, rest assured that Qualcomm is committed to providing an accessible process. You may e-mail disability-accomodations@qualcomm.com or call Qualcomm's toll-free number found here. Upon request, Qualcomm will provide reasonable accommodations to support individuals with disabilities to be able participate in the hiring process. Qualcomm is also committed to making our workplace accessible for individuals with disabilities. (Keep in mind that this email address is used to provide reasonable accommodations for individuals with disabilities. We will not respond here to requests for updates on applications or resume inquiries). Qualcomm expects its employees to abide by all applicable policies and procedures, including but not limited to security and other requirements regarding protection of Company confidential information and other confidential and/or proprietary information, to the extent those requirements are permissible under applicable law. To all Staffing and Recruiting Agencies : Our Careers Site is only for individuals seeking a job at Qualcomm. Staffing and recruiting agencies and individuals being represented by an agency are not authorized to use this site or to submit profiles, applications or resumes, and any such submissions will be considered unsolicited. Qualcomm does not accept unsolicited resumes or applications from agencies. Please do not forward resumes to our jobs alias, Qualcomm employees or any other company location. Qualcomm is not responsible for any fees related to unsolicited resumes/applications. If you would like more information about this role, please contact Qualcomm Careers.

This specialist combines expertise in cybersecurity and AI/ML to design, implement, and maintain security frameworks, ensuring the integrity, confidentiality, and compliance of AI-driven solutions throughout their lifecycle. This also involves collaboration with cross-functional, stakeholders and AI Engineers to build and deploy enterprise-wide AI security framework. Technical Skills : Strong understanding of AI/ML concepts, architectures, and security challenges. Strong programming skills in Python, R, or similar languages. Strong experience in Google Cloud Platform (GCP) or equivalent. Solid understanding of machine learning algorithms, neural networks, NLP, and computer vision. Experience with cloud AI/ML services and deployment pipelines is a plus. Experience with security frameworks (e.g., SAIF, NIST, FAICP) and regulatory compliance. Proficiency in data protection techniques, encryption, and secure access management. Familiarity with adversarial machine learning, model hardening, and input sanitization. Knowledge of incident response, monitoring tools, and threat intelligence platforms. Excellent communication and documentation skills for policy development and stakeholder engagement. Experience : Bachelor’s or Master’s degree in computer science, Data Science, Engineering, or a related field. 5+ years in AI/ML roles, including hands-on model development and deployment. Track record of delivering AI solutions that drive business value. Certifications : Relevant certifications such as CAISF, AICERTs, AI for Cybersecurity Specialization or equivalent. GCP Cloud certification or equivalent in AWS or Azure (preferred). Cybersecurity certificates (preferred). Design and maintain structured guidelines and controls to secure AI systems, covering data protection, model security, and compliance requirements. Evaluate and utilize established frameworks such as Google’s Secure AI Framework (SAIF), NIST AI Risk Management Framework, or the Framework for AI Cybersecurity Practices (FAICP) as references or baselines. Identify, assess, and mitigate security risks specific to AI, including adversarial attacks, data poisoning, model inversion, and unauthorized access. Conduct regular vulnerability assessments and penetration testing on AI models and data pipelines. Ensure data used in AI systems is encrypted, anonymized, and securely stored. Implement robust access controls (e.g., RBAC, ABAC, Zero Trust) for sensitive AI data and models Protect AI models from tampering, theft, or adversarial manipulation during training and deployment. Monitor and log AI system activity for anomalies or security incidents Develop and enforce policies to ensure AI systems adhere to industry regulations, ethical standards, and organizational governance requirements. Promote transparency, explainability, and fairness in AI models. Establish real-time monitoring and advanced threat detection for AI systems. Develop and maintain an AI incident response plan for prompt mitigation and recovery. Educate teams on AI security best practices and foster a security-aware culture. Collaborate with IT, data science, compliance, and business units to align AI security with organizational goals.

Job Description Summary As a Cyber Security Engineer at GE Vernova Grid Solutions, you will play a crucial role in designing, implementing, and optimizing the cybersecurity requirement for EHV/HV substations (AIS/GIS/HVDC/FACTS/STATCOM/Onshore/Offshore/Renewable/etc.,) considering the safety/quality/Cost/time delivery criteria. In this role, you will be reporting directly to project and designated line manager, while as well indirectly reporting technically to the OT Engineering Cybersecurity Leader. The successful candidate will be part of a highly motivated and dynamic team of engineers working on the development of renewables project worldwide. The development of such projects is technically challenging and involves a variety of engineering disciplines, contribution through teamwork and an innovative approach. This position will provide the candidate an ideal opportunity to develop the problem solving and communication skills in a global environment and build up a network within the OT cybersecurity / engineering community. The position will be guided by professional practices and policies that are shaped by the role as per requirement. Job Description Roles and Responsibilities Conduct risk assessments and vulnerability assessments for operational technology systems to identify security weaknesses and potential threats. Design and implement security controls and measures to protect OT systems from cyber threats, including intrusion detection systems, firewalls, access controls, and network segmentation. Collaborate with cross-functional teams, including OT engineers, IT professionals, and management, to ensure cybersecurity considerations are integrated into the design, deployment, and maintenance of OT systems. Stay updated on emerging threats, vulnerabilities, and industry best practices related to OT cybersecurity and make recommendations for security enhancements. Conduct penetration testing and vulnerability assessments on OT systems to identify and remediate security weaknesses. Provide technical expertise and guidance to internal teams regarding OT security standards, policies, and procedures. Collaborate with third-party vendors and suppliers to ensure the security of OT systems and evaluate their cybersecurity capabilities. Conduct security training and awareness programs for OT operators and other personnel involved in OT operations. The Candidate Must Be Self-motivating, proactive and results driven approach. Curious, resilient, and willing to learn. Able to work to deadlines with high quality, sense of urgency and delivery. Focused on delivering value to customers. Strong problem-solving and root cause identification skills. Flexibility in working hours. Ability to work on high pressure environment. Required Qualifications University Degree qualified in an engineering discipline ideally with Cyber Security Engineering, Computer Science, Information Technology, or Computer and Electronics engineering. Minimum 2 years’ experience in project security, preferably in an Operational Technology (OT) environment. Minimum 2 years' experience within the Electrical Industry or in a similar role. Solid understanding of industrial control systems (ICS), supervisory control and data acquisition (SCADA) systems, and other OT technologies. Knowledge of OT-specific protocols and standards such as Modbus, DNP3, IEC 61850, and OPC. Experience in designing and implementing security controls for OT systems, including firewalls, intrusion detection systems, and access controls. Familiarity with network segmentation techniques and security architectures for OT systems. Experience in Industrial communication network and system security IEC 62443 standards. Knowledge of NIST Cyber security framework. Good knowledge of Cyber security principles, theories, and techniques. Desired Characteristics Pro-activeness, sense of urgency, resistance to pressure, autonomy ability to interact with multiple functions and teams worldwide. Acceptable level of English speaking and writing preferred. Strong oral and written communication skills. Cyber security certification is an advantage. About Grid Solutions GE Vernova's Grid Solutions business electrifies the world by delivering advanced grid technologies that enable efficient power transmission and distribution from generation to consumption. With a global footprint of 14,000 employees in around 80 countries, Grid Solutions serves 90% of the world’s power utilities, supporting a reliable, efficient, and decarbonized energy transition. Grid Solutions offers a wide range of products and services, including power electronics, high voltage equipment, automation & protection systems, software solutions, and turnkey projects, Grid Solutions also provides consulting, electrical balance of plant, E/HHV substations, and comprehensive maintenance and asset management services. GSI GEC (GSI Global Engineering Center) in India, is expanding to support all over the world / regions. We specialize in delivering high-quality engineering solutions across the various sectors, Power Transmission AC or DC station, FACTS, Oil and Gas, Renewable and Industrial market. This role involves enhancing the collaboration and efficiency between our global Regions—such as North America, South America, Europe, Africa, and others—and the GSI GEC. Why We Come To Work Our engineers are always up for the challenge - and we’re always driven to find the best solution. Our projects are unique and interesting, and you’ll need to bring a solution-focused, positive approach to each one to do your best. Surrounded by committed, loyal colleagues, if you can dare to bring your ingenuity and desire to make an impact, you’ll be exposed to game-changing, diverse projects that truly allow you to play your part in the energy transition. What We Offer A key role in a dynamic, international working environment with a large degree of flexibility of work agreements, Competitive benefits, and great development opportunities - including private health insurance. Additional Information Relocation Assistance Provided: Yes Show more Show less

Your day at NTT DATA The Senior Associate Information Security Analyst is a developing subject matter expert, responsible for designing and implementing security systems to protect the organization's computer networks from cyber-attacks, and to help set and maintain security standards. This role is required to monitor the organization's computer networks for security issues, install security software, and document any security issues or breaches found. The Senior Associate Information Security Analyst is responsible for assisting in the planning, implementation, and management of information security measures to safeguard the organization's digital assets and systems and contributes to maintaining a secure and compliant environment. What you'll be doing Key Responsibilities: Monitors security alerts and events from various sources, investigates potential threats, and escalates incidents as necessary. Assists in the implementation and monitoring of security controls, including firewalls, intrusion detection systems, and access controls. Performs regular vulnerability assessments, analyses scan results, and assists in prioritizing and remediating identified vulnerabilities. Supports the incident response team in investigating security incidents, documenting findings, and participating in remediation efforts. Assists in ensuring compliance with industry standards (for example, GDPR, ISO 27001) by conducting assessments and implementing necessary controls. Installs security measures and operates software to protect systems and information infrastructure, including firewalls and data encryption programs. Documents security breaches and assess the damage they cause. Works with the security team to perform tests and uncover network vulnerabilities. Fixes detected vulnerabilities to maintain a high-security standard. Develops organizational best practices for IT security. Performs penetration testing and upgrades systems to unable security software. Installs and upgrades antivirus software and tests and evaluates new technology. Assists with the installation of security software and understands information security management. Researches security enhancements and makes recommendations to management. Stays abreast of information technology trends and security standards. Contributes to security awareness initiatives by creating training materials, conducting workshops, and educating employees about best security practices. Maintains accurate records of security incidents, assessments, and actions taken for reporting and audit purposes. Assists in the management and maintenance of security tools, including antivirus software, encryption tools, and security information and event management (SIEM) systems. Participates in risk assessments to identify potential security threats, vulnerabilities, and associated risks to the organization. Collaborates with cross-functional teams, IT, and other teams to ensure security measures are integrated into the organization's processes and projects. Performs any other related task as required. Knowledge and Attributes: Good communication skills to effectively convey technical information to non-technical stakeholders. Good analytical thinking and problem-solving skills to prevent hacking on a network. Ability to identify and evaluate potential risks and to develop solutions. Ability to identify and mitigate network vulnerabilities and explain how to avoid them. Understands firewalls, proxies, SIEM, antivirus, and IDPS concepts. Understands patch management with the ability to deploy patches in a timely manner whilst understanding business impact. Developing proficiency with MAC and OS. Familiarity with security frameworks, standards, and regulations (for example, NIST, CIS, GDPR). Basic understanding of network and system architecture, protocols, and security controls. Ability to analyze security incidents and assess potential risks. Ability to work both independently and collaboratively in a fast-paced environment. Academic Qualifications and Certifications: Bachelor's degree or equivalent in information security, cybersecurity, computer science, or related. Security certifications such as CompTIA Security+, Certified Information Systems Security Professional (CISSP), or Certified Information Security Manager (CISM) are advantageous. Required Experience: Moderate level of demonstrated experience in information security or cybersecurity, or related roles. Moderate level of demonstrated experience working in a global IT organization. Moderate level of demonstrated experience with computer network penetration testing and techniques. Moderate level of demonstrated experience with security assessment and vulnerability scanning tools. Workplace type : On-site Working

Your day at NTT DATA The Security Consultant is a seasoned level role, responsible for translating clients cybersecurity requirements and customizing and implementing security solutions into specific systems, applications and product designs. This role identifies and develops the security solutions for clients using company products, outsourced technology solutions and technical tools. This role consults with clients regarding secure product configuration, deployment, and security patches to minimize security vulnerabilities and provides comprehensive scanning, penetration testing, vulnerability assessments, monitoring services and source code analysis and delivers detailed results to clients. This role guides and supports clients in the development and implementation of product security controls. What you'll be doing Key Responsibilities: Works on strategic projects that ensure the efficient and effective reaction to security breaches to mitigate immediate and potential threats. Uses mitigation, preparedness, response and recovery approaches to minimize business disruptions and commercial consequences. Offers detailed technical support investigation and analysis response activities and evaluate the effectiveness of and improvements to existing practices. Conducts regular threat and vulnerability assessments and determine deviations from acceptable configurations or policies. Participates in the assessment of the level of risk and support the development of appropriate mitigation countermeasures in operational and non-operational situations. Analyzes evidence to support network vulnerability mitigation. Supports peers in the management and implementation of the information security management system. Participates in the implementation of policies, processes and guidelines to ensure the standardization of security management throughout the organization. Applies tactics, techniques, and procedures to a full range of tools and processes related to administrative, criminal, and counterintelligence gathering (e.g., in-depth case analyses, continuous monitoring, malware analysis, clear documentation). Proactively searches through our critical infrastructure, systems and networks to detect and isolate advanced threats that may cause harm to our organization. Use both manual approaches and automated tools to identify, analyze, and report events and support the development of countermeasures to proactively protect against these threats in the future. Knowledge and Attributes: Strong understanding of information technology and information security Solid understanding of security risks and preventative controls Excellent understanding of security operational processes and controls Service consulting aptitude, focusing on the business, service and sales aspects Excellent verbal and written communication skills Demonstrate impeccable attention to detail are able to translate internal customer requirements into solutions Maintain up-to-date knowledge of security threats, countermeasures, security tools, and network technologies High level of drive and ability to work under pressure Ability to build and maintain cross-functional relationships with a variety of stakeholders Understanding of relevant laws, regulations, and compliance frameworks affecting the technology sector. Good ability to assess and manage cybersecurity risks at both organizational and project levels. Good knowledge of security frameworks and standards like NIST, ISO/IEC 27001, CIS, etc. Academic Qualifications and Certifications: Bachelor's degree or equivalent in Information Technology or Computer Science or Engineering or related field. Industry relevant certifications such as CISSP, CISM, CEH, GSEC or CompTIA Security+ essential. Required Experience: Seasoned demonstrable experience in the Information Technology Security Industry or relevant experience in similar role within a related environment. Seasoned experience with security architecture design principles. Seasoned experience with industry compliance and standards such as ISO 27000, PCI DSS, NIST, HIPAA or others. Seasoned experience with security tools and techniques to cover SANS Top 25, OWASP or others. Seasoned experience working in a multi-team environment across multiple geographies. Workplace type : Hybrid Working

Overview We are seeking a highly skilled and motivated Associate Manager for Cloud Audit & Cyber Vulnerability. This individual will play a crucial role in ensuring the security and compliance of our cloud infrastructure and applications. The ideal candidate will have a strong background in cloud technologies, cybersecurity, and audit processes, along with excellent analytical and problem-solving skills. Responsibilities Lead and manage cloud security audits to ensure compliance with industry standards and regulatory requirements. Identify, analyze, and report on potential security vulnerabilities within cloud environments. Collaborate with cross-functional teams to implement and monitor security controls and measures. Develop and maintain comprehensive documentation of security policies, procedures, and audit findings. Stay current with the latest trends, tools, and best practices in cloud security and cyber vulnerability management. Conduct risk assessments and provide recommendations for mitigating security risks. Coordinate with external auditors and regulators during security assessments and audits. Train and mentor junior team members on cloud security and vulnerability management practices. Qualifications Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. Minimum 10 Y of experience. Minimum of 5 years of experience in cloud security, cybersecurity, or IT audit. Strong knowledge of cloud platforms such as AWS, Azure, or Google Cloud. Familiarity with security frameworks and standards (e.g., NIST, ISO 27001, PCI DSS). Experience with vulnerability assessment tools and techniques. Excellent written and verbal communication skills. Relevant certifications such as CISSP, CISM, CISA, or AWS Certified Security Specialist preferred. Skills and Competencies Strong analytical and problem-solving abilities. Ability to work independently and as part of a team. Attention to detail and an investigative mindset. Proficiency in preparing detailed reports and documentation. Effective time management and organizational skills. Show more Show less

Your day at NTT DATA The Senior Associate Security Consultant is responsible for developing expertise in their area of specialization. This role is responsible for translating clients cybersecurity requirements and customizing and implementing security solutions into specific systems, applications and product designs. This role identifies and develops the security solutions for clients using company products, outsourced technology solutions and technical tools. This role consults with clients regarding secure product configuration, deployment, and security patches to minimize security vulnerabilities. In addition, this role provides comprehensive scanning, penetration testing, vulnerability assessments, monitoring services and source code analysis and delivers detailed results to clients, as well as guides and supports clients in the development and implementation of product security controls. What you'll be doing Key Responsibilities: Assists in conducting security assessments, vulnerability scans, and penetration tests to identify weaknesses in client systems. Analyzes security data, logs, and reports to detect and investigate security incidents or anomalies. Prepares and maintains documentation, including security assessment reports, findings, and recommendations. Collaborates with senior consultants to provide advice and support to clients on security best practices and risk mitigation strategies. Learns and uses various security tools and technologies for assessments and monitoring. Stays updated on the latest cybersecurity threats, vulnerabilities, and industry best practices. Assists in evaluating client systems for compliance with industry standards (e.g., ISO 27001, NIST) and regulatory requirements. Communicates effectively with clients to understand their security needs and concerns. Participates in training programs and certifications to develop expertise in cybersecurity. Knowledge and Attributes: Strong interest in cybersecurity and a desire to learn and grow in the field. Knowledge of basic cybersecurity concepts, principles, and best practices. Familiarity with common security tools and technologies is a plus. Excellent analytical and problem-solving skills. Effective communication skills, both written and verbal. Ability to work collaboratively in a team environment. Eagerness to stay up to date with the evolving cybersecurity landscape. Academic Qualifications and Certifications: Bachelor's degree or equivalent in Information Technology or Computer Science or Engineering or related field. Industry relevant certifications such as CISSP, CISM, CEH, GSEC or CompTIA Security+ essential. Required Experience: Moderate level of demonstrable experience in the Information Technology Security Industry or relevant experience in similar role within a related environment. Moderate level of experience with security architecture design principles. Moderate level of experience with industry compliance and standards such as ISO 27000, PCI:DSS, NIST, HIPAA or others. Moderate level of experience with security tools and techniques to cover SANS Top 25, OWASP or others.

Your day at NTT DATA The Senior Security Sales Specialist is an advanced subject matter expert and is also quota-bearing sales persona. Thie primary purpose of this role is to pursue and land qualified leads identified by the Client Management team and other respective teams. The Senior Security Sales Specialist identifies new opportunities from a selection of existing accounts, and presents solutions, value propositions, partner configurations, cost structures, and revenue models to the client that meet their needs. The Senior Security Sales Specialist works directly with clients at a variety of levels, as well as internal subject matter experts. A substantial amount of time is spent on engaged selling or supporting the sales process in partnership with Client Managers. This role contributes to the pre-sales process by working with pre-sales architects to create the best solution design for the client, as well as building and developing excellent stakeholder relationships with new and existing clients, whilst developing new business channels and territories. What you'll be doing Key Responsibilities: Owns and drives pipeline to achieve allocated security budget numbers. Drives positive brand recognition on security business in-country and in-region. Maintains subject matter expertise in the Security technology domain or solutions set. Supports the closure of sales based on Security technology domain knowledge. Addresses the technology conceptual challenges during the sales process. Maintains a comprehensive level of relevant product and service knowledge to have meaningful conversations with potential and existing clients. Maintains awareness of the competitive landscape, market pricing, and strategy and how to penetrate a new market. Contributes to the knowledge base of the company's solutions and services within a practice area or service area by sharing best practices with internal teams, as well as client teams. Works with relevant technology vendors and ensures a deep understanding of their solutions and how they can contribute to our own solutions set. Articulates the Security solution/deliverables that the client requires, as opposed to the products that they need to buy. Prepares and conducts client workshops and presentations. Establishes relationships with multiple client stakeholders and secures deals with clients to achieve assigned sales quotas and targets. Uses understanding of the clients business and depth of knowledge on the Security solutions to personalize the recommended solution in line with the clients need. Capable of spotting new sales opportunities within an account and work with the sales teams to drive them to closure. Pursues and lands qualified leads identified by the client managers and other lead generation sources. Develops and maintains clear account plans for appropriate clients and targets. Discovers, forecasts, and runs opportunities in the medium and long-term. Identifies, assesses and highlights client risks that could prove detrimental to the clients organization and credibility. Collaboratively work with sales teams, especially Client Managers, to successfully close the deal. Works closely with other in-territory counterparts and matrix teams to achieve the shared goal of growth. Uses sales methodologies and tools such as target plans, opportunity plans, and account plans to drive the sales process. Develops and implements an opportunity plan, to provide regular check-ins with the primary point of contact and have an established process for getting buy-in from all stakeholders. Knowledge and Attributes: Advanced understanding of security principles, concepts, and technologies, including knowledge of NIST CSF, ISO 27001, cybersecurity solutions, network security, data security/privacy and best practices in securing data and IT infrastructure. Advanced understanding of the technical concepts of Security solutions and display the ability to provide technical consultation and guidance to customers. Displays success in achieving and exceeding sales and financial goals. Advanced proficiency in developing and encouraging meaningful customer relationships up to C-level. Displays ability to delivery engaging sales presentations and elevator pitches. Close attention to maintaining up to date, accurate sales forecast and close plans. Advanced proficiency in team selling approach. Advanced knowledge of competitors and ability to apply competing successful sales strategies. Client-centric approach, with ability to understand customer problems and find best-fit solutions. Flexible to adapt quickly to short, new missions or urgent deadlines. Displays negotiation capabilities to craft solutions that are beneficial to customers, partners, and organization overall. Academic Qualifications and Certifications: Bachelor's degree or equivalent in a Technical or Sales field or related is preferred. Certified in industry relevant structured sales methodologies and negotiation skills. Preferred certifications (but not limited to) CISSP, CompTIA Security+, GISF. Required Experience: Advanced sales experience in a technology or services environment, particularly selling Security solutions. Advanced experience of IT Managed Services environment. Advanced demonstrable experience of solution-based selling with a proven track record of sales over-achievement. Advanced experience in selling complex security solutions and services to C-Level clients. Advanced experience in resolving a wide range of issues in creative ways to meet targets and objectives. Workplace type : On-site Working

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. EY- Cyber Security (Strategy, Risk, Compliance and Resilience) – Technology Consulting – Senior As part of our EY Strategy, Risk, Compliance and Resilience (SRCR) Technology Consulting team, you would work on various SRCR projects for our customers across the globe. An important part of your role will be to actively establish, maintain and strengthen internal and external relationships. You’ll also identify potential business opportunities for EY and GDS within existing engagements and escalate these as appropriate. Similarly, you’ll anticipate and identify risks within engagements and share any issues with senior members of the team. In line with EY’s commitment to quality, you’ll confirm that work is of the highest quality as per EY’s quality standards and is reviewed by the next-level reviewer. As an influential member of the team, you’ll help to create a positive learning culture, coach and counsel junior team members and help them to develop. The opportunity We’re looking for Senior Security Consultant with expertise in cyber / information security, risk and controls concepts. This is a fantastic opportunity to be part of a leading firm whilst being instrumental in the growth of a new service offering. Your Key Responsibilities Engage in Cyber Strategy & Governance, Cyber Risk & Compliance, Cyber Resilience, Cyber Transformation and Co-Sourcing, Application & Network Security engagements Work effectively as a team member, sharing responsibility, providing support, maintaining communication and updating senior team members on progress. Execute the engagement requirements, along with review of work by junior team members. Help prepare reports and schedules that will be delivered to clients and other parties. Develop and maintain productive working relationships with client personnel. Build strong internal relationships within EY Consulting Services and with other services across the organization Contribute to people related initiatives including recruiting and retaining Cyber Transformation professionals Maintain an educational program to continually develop personal skills of staff Understand and follow workplace policies and procedures Building a quality culture at GDS Help senior team members in performance reviews and contribute to performance feedback for staff/junior level team members Manage the performance management for the direct reportees, as per the organization policies. Foster teamwork and lead by example; training and mentoring of project resources Participating in the organization-wide people initiatives Skills And Attributes For Success Hands-on experience of more than 5 years with key components of cybersecurity including (but not limited to): Vendor/3rd Party Risk Management & Assessment Cyber Strategy & Governance, Cyber Transformation, Cyber Dashboarding Regulations/standards such as ISO 27001, PCI DSS, HIPAA, HITRUST, GDPR, CCPA, FISMA/FEDRAMP, COBIT, OWASP Top 10, NIST 800-53 Business Continuity & Disaster Recovery Must have experience in working in client facing roles, interacting with the third parties, assessing different kinds of environments (IT and non-IT) and ability to apply cyber security concepts in all these sectors. Experienced in creation and review of security policy/procedures, and in performing risk assessments. Good to have experience in assessing ITGC requirements across various industries including both Cybersecurity and resilience requirements. Should have a good understanding of VAPT process, common application security vulnerabilities, exploitation techniques and remediation measures. Basic understanding of Network Security and network architecture diagram reviews, access and perimeter control, vulnerability management and intrusion detection, firewall rule-based reviews. Good understanding of logging and monitoring tools (SIEM). Knowledge in any one of the SIEM tools is a plus. To qualify for the role, you must have: BE - B. Tech / MCA / M. Tech/ MBA with background in computer science and programming. More than 5 Years of relevant experience. Strong Excel and PowerPoint skills. Should be proficient in leading medium to large engagements and coach junior staff. Ideally, you’ll also have CISSP, CISA, CISM, CEH, ISO 27001 Lead Auditor and Lead Implementer. Project management skills. What We Look For A team of people with commercial acumen, technical experience and enthusiasm to learn new things in this fast-moving environment with consulting skills. An opportunity to be a part of market-leading, multi-disciplinary team of 1400 + professionals, in the only integrated global transaction business worldwide. Opportunities to work with EY Consulting practices globally with leading businesses across a range of industries. What Working At EY Offers At EY, we’re dedicated to helping our clients, from start–ups to Fortune 500 companies — and the work we do with them is as varied as they are. You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer: Support, coaching and feedback from some of the most engaging colleagues around Opportunities to develop new skills and progress your career The freedom and flexibility to handle your role in a way that’s right for you EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. EY- Cyber Security (Strategy, Risk, Compliance and Resilience) – Technology Consulting – Senior As part of our EY Strategy, Risk, Compliance and Resilience (SRCR) Technology Consulting team, you would work on various SRCR projects for our customers across the globe. An important part of your role will be to actively establish, maintain and strengthen internal and external relationships. You’ll also identify potential business opportunities for EY and GDS within existing engagements and escalate these as appropriate. Similarly, you’ll anticipate and identify risks within engagements and share any issues with senior members of the team. In line with EY’s commitment to quality, you’ll confirm that work is of the highest quality as per EY’s quality standards and is reviewed by the next-level reviewer. As an influential member of the team, you’ll help to create a positive learning culture, coach and counsel junior team members and help them to develop. The opportunity We’re looking for Senior Security Consultant with expertise in cyber / information security, risk and controls concepts. This is a fantastic opportunity to be part of a leading firm whilst being instrumental in the growth of a new service offering. Your Key Responsibilities Engage in Cyber Strategy & Governance, Cyber Risk & Compliance, Cyber Resilience, Cyber Transformation and Co-Sourcing, Application & Network Security engagements Work effectively as a team member, sharing responsibility, providing support, maintaining communication and updating senior team members on progress. Execute the engagement requirements, along with review of work by junior team members. Help prepare reports and schedules that will be delivered to clients and other parties. Develop and maintain productive working relationships with client personnel. Build strong internal relationships within EY Consulting Services and with other services across the organization Contribute to people related initiatives including recruiting and retaining Cyber Transformation professionals Maintain an educational program to continually develop personal skills of staff Understand and follow workplace policies and procedures Building a quality culture at GDS Help senior team members in performance reviews and contribute to performance feedback for staff/junior level team members Manage the performance management for the direct reportees, as per the organization policies. Foster teamwork and lead by example; training and mentoring of project resources Participating in the organization-wide people initiatives Skills And Attributes For Success Hands-on experience of more than 5 years with key components of cybersecurity including (but not limited to): Vendor/3rd Party Risk Management & Assessment Cyber Strategy & Governance, Cyber Transformation, Cyber Dashboarding Regulations/standards such as ISO 27001, PCI DSS, HIPAA, HITRUST, GDPR, CCPA, FISMA/FEDRAMP, COBIT, OWASP Top 10, NIST 800-53 Business Continuity & Disaster Recovery Must have experience in working in client facing roles, interacting with the third parties, assessing different kinds of environments (IT and non-IT) and ability to apply cyber security concepts in all these sectors. Experienced in creation and review of security policy/procedures, and in performing risk assessments. Good to have experience in assessing ITGC requirements across various industries including both Cybersecurity and resilience requirements. Should have a good understanding of VAPT process, common application security vulnerabilities, exploitation techniques and remediation measures. Basic understanding of Network Security and network architecture diagram reviews, access and perimeter control, vulnerability management and intrusion detection, firewall rule-based reviews. Good understanding of logging and monitoring tools (SIEM). Knowledge in any one of the SIEM tools is a plus. To qualify for the role, you must have: BE - B. Tech / MCA / M. Tech/ MBA with background in computer science and programming. More than 5 Years of relevant experience. Strong Excel and PowerPoint skills. Should be proficient in leading medium to large engagements and coach junior staff. Ideally, you’ll also have CISSP, CISA, CISM, CEH, ISO 27001 Lead Auditor and Lead Implementer. Project management skills. What We Look For A team of people with commercial acumen, technical experience and enthusiasm to learn new things in this fast-moving environment with consulting skills. An opportunity to be a part of market-leading, multi-disciplinary team of 1400 + professionals, in the only integrated global transaction business worldwide. Opportunities to work with EY Consulting practices globally with leading businesses across a range of industries. What Working At EY Offers At EY, we’re dedicated to helping our clients, from start–ups to Fortune 500 companies — and the work we do with them is as varied as they are. You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer: Support, coaching and feedback from some of the most engaging colleagues around Opportunities to develop new skills and progress your career The freedom and flexibility to handle your role in a way that’s right for you EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

Gist about our company: A leading venture capitalist (VC) in Silicon Valley commented that “ Evergent is a diamond in the rough ”. Evergent today manages over 560M+ user accounts in over 180+ countries on behalf of our customers. Globally Evergent is working with 5 of the top 10 carriers (AT&T, Etisalat, SingTel, Telkomsel, and AirTel) and 4 of the top 10 media companies (HBO, FOX, SONY and BBC). We are not surprised by the VC comment. We have done this with an amazing global team of 600+ professionals. Evergent is recognized as the global leader for Customer Lifecycle Management for launching new revenue streams without disturbing the inflexible legacy systems. The need for digital transformation in this subscription economy and our ability to launch services in weeks is what sets Evergent apart. We welcome you to come and meet with us. Job Title: Cloud & IT Security Analyst Location: Hyderabad Job duties include planning and implementing security measures to protect Evergent SaaS systems, Internal networks, and data Platform. Must have experience and be up-to-date on the latest Information Security intelligence, including hackers’ methodologies, to anticipate security breaches. You will be responsible for preventing data loss and service interruptions by researching new technologies that will effectively protect a network. Roles and Responsibilities: • Monitor and protect organizational cloud infrastructure and IT systems • Conduct security assessments and vulnerability scans Conduct Pen Testing, DAST and SAST • Analyze security logs and investigate potential threats • Implement and maintain security controls and policies • Manage cloud security configurations • Respond to and mitigate security incidents • Assist with annual Security Audits for PCI-DSS, SSAE18, GDPR and more • Respond to Client RFP/RFI as it relates to Evergent Security • Protect system by defining access privileges, control structures, and resources • Recognize problems by identifying abnormalities; reporting violations • Implement security improvements by assessing current situation; evaluating trends anticipating requirements Copyright © 2024 Evergent, Inc., All Rights Reserved Required Skills: - Cloud platform knowledge (AWS, Azure, Google Cloud) - Cybersecurity principles - Network security - Risk management - Compliance frameworks (NIST, ISO 27001) - Security tools (SIEM, IDS/IPS) Typical Certifications: - CompTIA Security+ - AWS Certified Security - Specialty - (ISC)² CCSP - CISSP Qualifications and Education Requirements: BE, B.Tech, M.Tech, MCA, or any Bachelor computer degree Preferred Skills: • 4 to 8 years of experience in information technology or security • Strong communications skills, both written and oral • Organized, responsive and highly thorough problem solver • Minimum Certification of Associate’s degree in Computers, Technology or related field • Technical Knowledge: UNIX, AIX, Linux, Cisco Network IDS, Cisco Host-based IDS, eTrust Access Control, ESM, and IDS. DES encryption, Digital Certificates, SSL, VPN, IPSec, TCP/IP, DNS and web security architecture, mySQL, subversion, AntiVirus,.. Experience: 4-8 Years Show more Show less

Job Description: About Us At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities, and shareholders every day. One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We’re devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being. Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization. Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us!\ Global Business Services Global Business Services delivers Technology and Operations capabilities to Lines of Business and Staff Support Functions of Bank of America through a centrally managed, globally integrated delivery model and globally resilient operations. Global Business Services is recognized for flawless execution, sound risk management, operational resiliency, operational excellence, and innovation. In India, we are present in five locations and operate as BA Continuum India Private Limited (BACI), a non-banking subsidiary of Bank of America Corporation and the operating company for India operations of Global Business Services Process Overview* Cyber Threat Evaluation Analyst The Global Information Security organization (GIS) at Bank of America protects bank information systems, confidential and proprietary data, and customer information. The Cyber Threat Evaluation and Prevention Team (CTEP) assesses threats and emerging risks, evaluates cyber security controls, and defines observations to remediate risks. Job Description* The Evaluation Analyst plays an essential role in the Cyber Threat Defense Framework. The CTEP Evaluation Analyst conducts threat and incident evaluations and identifies opportunities for process and control enhancement. They support the CTEP Evaluation Manager in improving defense capabilities based on threats, incidents, and issues throughout the bank. The analyst assists ongoing evaluations by comprehensively documenting threats and ensuring all threats/incidents are comprehensive, complete, and accurate. Analyses include reviews of: Threats identified from internal and external intelligence sources. Cyber incidents managed at the Bank (e.g., third-party incidents). Assessments conducted by GIS teams (e.g., Adaptive Threat Simulations). Responsibilities* Within CTEP, the Evaluation team: Analyzes threats and incidents sourced from GIS partner teams to identify and triage process and control weaknesses in context of risks arising from the threat. Documents defensive posture, process and control weaknesses, and overall risk of each threat. Reviews threats/incidents holistically to identify broad themes and strategic issues, enabling GIS to protect against cyber threats effectively and proactively. Requirements* Education* - BE/B.Tech/MCA Experience Range* - 8+ Years Foundational skills* Strong technical writing capabilities; writing technical content in a broadly consumable format. Functional knowledge of information security, IT infrastructure, and risk management. Ability to prioritize and manage time effectively and work independently with minimal direction. Knowledge of Cyber Industry Frameworks like MITRE/NIST. Strategic thinking AND attention to detail – ability to think “like a threat actor.” Proficient computer/analytics skills – esp. Jira, Excel, Word, Power Point, Alteryx, etc. Desired skills* Experience with cyber threat intelligence collection, analysis, and reporting. Experience responding to and managing security incidents and events. Experience creating, executing, and documenting assessments and exercises. General understanding of bank policies, specific to data and privacy, third parties, incident management, vulnerability management, etc. Work Timings* - 6:30 AM - 09:30 PM Job Location* - Hyderabad, Chennai, Mumbai Show more Show less

Role Description Job Title: Senior Network Engineer Experience: 18–23 Years Job Summary We are looking for a highly experienced Senior Network Engineer with 18–23 years of expertise in cloud networking , routing & switching , firewalls , and security compliance . The ideal candidate will possess deep technical knowledge in technologies such as Cisco, Palo Alto, ForeScout, Infoblox, Check Point, and F5 , and have hands-on experience in patching, firmware upgrades, vulnerability management, and regulatory compliance . You will be responsible for designing, implementing, optimizing, and securing enterprise and cloud network infrastructures to ensure maximum performance, security, and compliance. Key Responsibilities Network & Cloud Infrastructure Management Design, deploy, and maintain enterprise and cloud networking solutions (AWS, Azure, GCP). Manage routing and switching (Cisco or equivalent) with expertise in BGP, OSPF, EIGRP, VLANs, STP, QoS, and multicast. Implement and optimize load balancing using F5 (LTM, GTM, iRules). Administer Infoblox DNS, DHCP, and IPAM. Firewall, Security & Compliance Configure and manage firewall rules and security policies (Cisco ASA, Palo Alto, Check Point, ForeScout). Implement secure access using VPNs, zero-trust architecture, and micro-segmentation. Conduct regular patching, firmware updates, and vulnerability assessments. Align practices with compliance standards: ISO 27001, NIST, CIS, PCI-DSS, etc. Partner with security teams to analyze threats and improve posture. Performance Optimization & Troubleshooting Proactively monitor and troubleshoot network, cloud, and firewall performance issues. Ensure high availability and minimal downtime across LAN/WAN/cloud environments. Collaborate with vendors and cross-functional teams to ensure network reliability. Automation & Documentation Use automation tools (Ansible, Python, PowerShell, Terraform) for deployments and maintenance. Maintain up-to-date documentation (network diagrams, security policies, change logs). Provide mentorship and knowledge sharing to junior engineers and IT stakeholders. Qualifications & Experience 18–23 years of hands-on experience in network engineering and security. Expertise in routing & switching (Cisco, Juniper) and firewalls (Palo Alto, Check Point, Cisco ASA, ForeScout). Strong cloud networking experience (AWS, Azure, GCP) – VPCs, VPNs, NSGs, load balancers. Proficient in F5 load balancing technologies (LTM, GTM, ASM). Hands-on with patching, firmware upgrades, vulnerability remediation, and compliance. Skilled in automation (Python, Ansible, Terraform) and Infrastructure-as-Code (IaC). Strong troubleshooting skills in complex enterprise/cloud environments. Excellent documentation and stakeholder communication abilities. Preferred Certifications CCNP / CCIE PCNSE (Palo Alto) CCSA/CCSE (Check Point) F5-CA (F5 Certified Administrator) AWS / Azure Networking Specialty CISSP (preferred for security-focused profiles) Preferred Skills Experience with SIEM, IDS/IPS, and endpoint integration. Familiarity with Zero Trust Architecture, SD-WAN, and micro-segmentation. Exposure to monitoring tools: SolarWinds, Splunk, Wireshark, Logic Monitor, Big Panda. Knowledge of container networking: Kubernetes, Docker, CNI. Key Skills Routing & Switching | Network Security | Check Point | Palo Alto | Cisco ASA | ForeScout | F5 Load Balancers | Infoblox | AWS/Azure/GCP Networking | Ansible | Python | Compliance | Firewall Management Skills Routing And Switching,Checkpoint Firewall,palo alto,Network Security Show more Show less

Providing subject matter expertise in the creation, implementation, and maintenance of appropriate enterprise programs, policies, and procedures to be compliant with all applicable regulations including ISO, SOC, HIPAA, PCI, FedRAMP/FISMA Having the ability to utilize working knowledge of information security best practices such as: NIST 800 series, ISO 27000 series, GDPR, etc Interpreting standards, requirements, and their application to the enterprise Cloud environment in the most reasonable and cost-effective manner Developing, implementing, maintaining, and overseeing enforcement of security policies Supporting Data center audits focussed on Physical Security control assessments Collaborating with security architects and technical security teams to define and implement security processes and procedures based on industry-standard best practices and compliance requirements. Defining the requirements and validating the procedures and audit testing methodology Conducting regularly scheduled audits on systems and hosting third-party audits as required in order to maintain certifications and compliance certificates. Working with the DevOps teams to prepare ongoing client reporting, information for prospective clients, and marketing materials Providing training to teams as needed Assisting team members and internal clients in addressing highly complex security issues applicable to enterprise environment

As an Auditor, your job role will be planning, organizing and performing internal audits and handling the audit end to end for various compliance such as ISO 27001, RBI, SEBI, ITGC, NIST, PCI DSS. Manage risk assessment of internal processes and develop risk and control matrix (RCM) in line with COBIT, ISO, and ITIL best practices and recommendations Document control testing procedures, results and findings Review IT controls around user access management, change management, backup and restoration management, SDLC, database and operating system baseline security, and incident management. Evaluate SOC reports (Type I and II) of service organizations, and report on IT control issues and gaps to IT Controllership. Report audit/assessment results, remediation plans, timelines and key metrics to management Assisting with the support & ongoing maintenance of the ISO 27001 ISMS certification. As a Consultant, review of policies and procedures by co ordinating with various stakeholders. Perform pre and post-implementation reviews of system implementations or enhancements. Evaluate information general computing controls and provide value-added feedback. Test compliance with those controls. Coordinate with ISO 27001, HIPPA, EHNAC, PCI, HITRUST and IT teams as applicable. Planning and developing security policy and standard documents. Privacy Framework Implementation. Desired Qualification and Skills: Having good communication skills. Bachelor or Master’s degree, preferably in Computer Science or any related field of expertise. Must have certifications such as ISO 27001 LA/CISA/CISM. Experience with security and standards frameworks especially Implementing and auditing ISO/IEC 27000 series, NIST Cybersecurity Framework, PCI DSS, HIPAA, RBI Guidelines, SEBI Guidelines etc. Strong understanding of security principals: audit, policies, guidelines, and compliance. Deep understanding of infrastructure (data centre, network end user computing) security / cloud security / managed security services / security operations centre / compliance risk management. Continuously looking to grow and develop your technical and professional skills with a commitment to build and grow your cybersecurity career to the next level. Excellent written and communications skills for both technical and non-technical stake holders. Good teamwork and time management skills. Show more Show less

Key Responsibilities Lead and manage the enterprise migration from Ivanti SSL VPN to Netskope Private Access ZTNA Review and document existing Ivanti SSL VPN configurations across corporate desktops mobile devices and contractor endpoints Design and implement Netskope ZTNA configurations using Private Applications App Definitions Netskope Publisher deployment and configuration steering Configuration and Traffic Forwarding rules Netskope Client Agent deployment Collaborate with cross functional teams to plan test and implement changes in accordance with change management processes Provide Tier 23 support for ongoing issues related to Netskope Web Proxy including real time analysis of policy enforcement SSL inspection real time coaching and anomaly detection Monitor logs via Netskope Cloud Security Console and use tools like Security Diagnostics and Advanced Analytics for troubleshooting Document and maintain SOPs user guides and implementation runbooks Organize knowledge transfer session for network team for 247 support on Netskope ZTNA Proxy Solution Ensure endpoint compliance and secure access for all user groups postmigration Required Skills Experience 5 years of experience in network security access management or cloud security roles Deep handson expertise in Netskope ZTNA Private Access and Web Proxy configurations Solid experience with App Definitions and Private Access Policy creation Publisher deployments for data center cloud application access Netskope Client installation steering rules Working knowledge of Ivanti SSL VPN systems with experience in largescale enterprise migrations Familiarity with proxy chaining SSL decryption bypass lists real time policy enforcement Proficient in network protocols TCPIP DNS HTTPS and endpoint configuration across Windows macOS and mobile platforms Strong troubleshooting skills and comfort working in a high availability production environment Excellent communication documentation and stakeholder coordination skills Preferred Qualifications Netskope Certified Cloud Security Administrator NCCSA or relevant Netskope certification ITIL Foundation Certification or experience with structured IT change processes Experience with MDM platforms eg Intune Workspace ONE Familiarity with Zero Trust frameworks NIST standards and secure access architecture Work Model Location Noida Hybrid Model 3 days from office 2 days remote Flexibility in work hours depending on migration or support windows Skills Mandatory Skills : Network Security - Next Generation Firewalls/ NAC/ Zero Trust/ Segmentation/ APT / IPS/ IDS, Cisco - Umbrella, Firewall as a Service (FaaS),Forti SASE, Proxy, SASE - NetSkope, SASE - Palo Alto - Prisma SASE,SASE - Zscaler (ZPA, ZIA),Secure Web Gateway, ZTNA (Zero Trust) Show more Show less

Company Description Chemtron Science Laboratories Private Limited is India's leading Calibration gas manufacturer and exporter with a focus on NPL and NIST traceable gas standards. The company is divided into four divisions: Gases, Engineering, and Post Harvest Technology. Chemtron's calibration gases are utilized in various sectors including the automotive industry, chemical manufacturing, environmental protection, food industry, and oil and gas plants. The Engineering division specializes in manufacturing Cylinder Pressure regulators, sampling Cylinders, and sampling systems, while the Electronics division offers specialized products in Post Harvest Technology. Role Description This is a full-time on-site role for Procurement Manager located in Navi Mumbai at Chemtron Science Laboratories Private Limited. The Procurement Manager will be responsible for supplier evaluation, contract negotiation, analytical skills, procurement, and contract management on a day-to-day basis. Key Responsibilities -  Strategic Procurement Develop and implement procurement strategies aligned with business goals across all three divisions. Conduct spend analysis and identify cost-saving opportunities. Evaluate and mitigate procurement-related risks. Vendor Management Identify, qualify, and manage suppliers across diverse categories (gas materials, electronic components, and engineering parts). Negotiate contracts and agreements to ensure optimal pricing, quality, and delivery terms. Develop long-term relationships with key vendors and drive supplier performance metrics. Operational Execution Manage end-to-end procurement processes: requisition, purchase order, delivery, and invoice reconciliation. Ensure accurate and timely availability of materials to meet production schedules. Collaborate with production, R&D, and finance teams to understand material needs and budget constraints. Compliance & Documentation Ensure procurement activities comply with internal policies and external regulatory requirements. Maintain accurate records of purchases, pricing, and vendor data. Cross-Division Coordination Customize procurement practices to suit the unique needs of each business division. Standardize common procurement processes while allowing flexibility for division-specific requirements. Facilitate regular coordination meetings with division heads to ensure procurement alignment. Key Requirements Education : Bachelor’s degree in supply chain, Engineering, Business Administration, or related field. MBA or equivalent is a plus. Experience : Minimum 12-15 years in procurement or supply chain roles; experience in handling multi-category or technical products preferred. Industry Exposure : Background in gas, electronics, or engineering industries is advantageous. Skills : Knowledge of procurement tools and ERP/SAP systems. Analytical mindset with attention to detail. Ability to multitask and manage priorities in a fast-paced MSME environment. Supplier Evaluation and Contract Negotiation skills Analytical Skills for data interpretation and decision-making Procurement and Contract Management expertise Experience in the manufacturing industry is a must. Interested candidates please share your profile to careers@chemtron.net.in Show more Show less

Summary Job description Job Title: ServiceNow Architect – ITSM, CSM & SecOps Position Overview: We are seeking an accomplished ServiceNow Architect with extensive hands-on experience across IT Service Management (ITSM), Customer Service Management (CSM), and Security Operations (SecOps). This role requires deep technical expertise, a strategic mindset, and the ability to lead and deliver end-to-end ServiceNow solutions in alignment with enterprise objectives. Key Responsibilities: Architect and lead the implementation of ServiceNow solutions across ITSM, CSM, and SecOps modules Define and enforce platform governance, development standards, and best practices Drive automation initiatives using Flow Designer, Orchestration, and IntegrationHub Design and execute integrations with third-party platforms (e.g., CRM, SIEM tools) via REST, SOAP, and MID Server Conduct performance tuning, system upgrades, and code reviews to ensure platform stability and scalability Collaborate with stakeholders, developers, and business leaders to align solutions with business requirements Mentor and guide developers and administrators on platform capabilities and best practices Required Qualifications: 10+ years of overall IT experience, with 7+ years in ServiceNow architecture and implementation Proven hands-on expertise in ITSM, CSM, and preferably SecOps modules Proficient in JavaScript, Glide API, Business Rules, Script Includes, and Flow Designer Strong understanding of ServiceNow database architecture, ACLs, and security models Demonstrated experience in integrating ServiceNow with external systems and tools In-depth knowledge of ITIL and NIST frameworks Strong communication, leadership, and stakeholder management skills Preferred Certifications: ServiceNow Certified System Administrator (CSA) Certified Implementation Specialist – ITSM, CSM, and SecOps ServiceNow Certified Application Developer (CAD) ITIL v4 Foundation CISSP (preferred for SecOps expertise) Show more Show less

Company Qualcomm India Private Limited Job Area Finance & Accounting Group, Finance & Accounting Group > Internal Audit General Summary Auditor, IT Internal Audit – Hyderabad Qualcomm is a company of inventors that unlocked 5G - ushering in an age of rapid acceleration in connectivity and new possibilities that will transform industries, create jobs, and enrich lives. But this is just the beginning. It takes inventive minds with diverse skills, backgrounds, and cultures to transform 5Gs potential into world-changing technologies and products. This is the Invention Age - and this is where you come in. This is a unique opportunity to join Qualcomm’s finance and accounting organization based in Hyderabad in the Corporate Internal Audit & Advisory Services (IA & AS) team. The department focuses on assisting the Audit Committee and management teams in the improvement of processes that manage risks related to achieving Qualcomm’s business objectives. Responsibilities Using Qualcomm’s risk-based audit methodology, the IT auditor will assist in the execution of internal audits. Specifically, the responsibilities include: Providing U.S. based time zone coverage as needed (up to 50% of time) Supporting the creation of initial planning memos and process flowcharts Identifying and assessing initial risks and control activities Designing audit procedures to evaluate control effectiveness Performing audit testing, identifying deviations from expected control activities, and effectively communicating observations to the audit team Leveraging data analytics throughout the audit process where feasible Staying abreast of changes in the business and industry to assess impacts to the company’s risk profile Contributing to the development of new concepts, techniques, and making continuous process improvements for the overall IA team All Qualcomm employees are expected to actively support diversity on their teams, and in the Company. One to three years of relevant experience in internal auditing, external auditing, or SOX compliance within a global public company (preferably in the high-tech industry), Big 4/mid-tier accounting firm or other fast-paced corporate setting Strong understanding of IT general controls, cybersecurity frameworks (e.g. NIST, COBIT), and ERP systems Fluent English; multi-lingual capability is a plus Successful Candidate Will Possess The Following Characteristics As feasible, ability to travel (infrequently) to Qualcomm’s domestic and international locations (e.g., U.S., Europe) Semiconductor business experience or familiarity Strong communication (oral and written) and presentation skills Fast learner with strong interpersonal, organization, analytical, critical thinking, and problem-solving skills Ability to work in a flexible and non-hierarchical team environment Willingness to get things done and take responsibility Ability to recognize and apply a sense of urgency, when necessary Comfortable with ambiguity Positive attitude, professional maturity, good work ethic Ability to work independently, handle multiple projects simultaneously and multi-task to meet deadlines with high-quality deliverables Controls, risk assessment, risks, internal audit, IT Bachelor's degree in Accounting, Finance, Computer Science, cyber security, or related field. CPA, CA, CIA, CISA, CFE, or other credentials, a plus. Minimum Qualifications Bachelor's degree. 1+ year of Finance, Accounting, or related work experience. Completed advanced degree in a relevant field may be substituted for up to one year (Master’s = one year) of work experience. Applicants : Qualcomm is an equal opportunity employer. If you are an individual with a disability and need an accommodation during the application/hiring process, rest assured that Qualcomm is committed to providing an accessible process. You may e-mail disability-accomodations@qualcomm.com or call Qualcomm's toll-free number found here. Upon request, Qualcomm will provide reasonable accommodations to support individuals with disabilities to be able participate in the hiring process. Qualcomm is also committed to making our workplace accessible for individuals with disabilities. (Keep in mind that this email address is used to provide reasonable accommodations for individuals with disabilities. We will not respond here to requests for updates on applications or resume inquiries). Qualcomm expects its employees to abide by all applicable policies and procedures, including but not limited to security and other requirements regarding protection of Company confidential information and other confidential and/or proprietary information, to the extent those requirements are permissible under applicable law. To all Staffing and Recruiting Agencies : Our Careers Site is only for individuals seeking a job at Qualcomm. Staffing and recruiting agencies and individuals being represented by an agency are not authorized to use this site or to submit profiles, applications or resumes, and any such submissions will be considered unsolicited. Qualcomm does not accept unsolicited resumes or applications from agencies. Please do not forward resumes to our jobs alias, Qualcomm employees or any other company location. Qualcomm is not responsible for any fees related to unsolicited resumes/applications. If you would like more information about this role, please contact Qualcomm Careers. 3076736 Show more Show less

Summary Job description Job Title: ServiceNow Architect – ITSM, CSM & SecOps Position Overview: We are seeking an accomplished ServiceNow Architect with extensive hands-on experience across IT Service Management (ITSM), Customer Service Management (CSM), and Security Operations (SecOps). This role requires deep technical expertise, a strategic mindset, and the ability to lead and deliver end-to-end ServiceNow solutions in alignment with enterprise objectives. Key Responsibilities: Architect and lead the implementation of ServiceNow solutions across ITSM, CSM, and SecOps modules Define and enforce platform governance, development standards, and best practices Drive automation initiatives using Flow Designer, Orchestration, and IntegrationHub Design and execute integrations with third-party platforms (e.g., CRM, SIEM tools) via REST, SOAP, and MID Server Conduct performance tuning, system upgrades, and code reviews to ensure platform stability and scalability Collaborate with stakeholders, developers, and business leaders to align solutions with business requirements Mentor and guide developers and administrators on platform capabilities and best practices Required Qualifications: 10+ years of overall IT experience, with 7+ years in ServiceNow architecture and implementation Proven hands-on expertise in ITSM, CSM, and preferably SecOps modules Proficient in JavaScript, Glide API, Business Rules, Script Includes, and Flow Designer Strong understanding of ServiceNow database architecture, ACLs, and security models Demonstrated experience in integrating ServiceNow with external systems and tools In-depth knowledge of ITIL and NIST frameworks Strong communication, leadership, and stakeholder management skills Preferred Certifications: ServiceNow Certified System Administrator (CSA) Certified Implementation Specialist – ITSM, CSM, and SecOps ServiceNow Certified Application Developer (CAD) ITIL v4 Foundation CISSP (preferred for SecOps expertise) Show more Show less