Job Title: Information Security Analyst Experience Required: 2+ Years Location: WFO Job Type: Full-Time Role Overview: As an Information Security Analyst, you will be responsible for safeguarding the organization’s digital assets by identifying vulnerabilities, monitoring threats, and ensuring compliance with security frameworks such as ISO 27001 and SOC 2. You will work closely with IT, compliance, and risk teams to maintain a robust security posture. Key Responsibilities: Implement and manage an Information Security Management System (ISMS) in alignment with ISO 27001 . Support SOC 2 Type I & II audit activities including control implementation, evidence gathering, and remediation. Apply NIST Cybersecurity Framework (CSF) and CIS Benchmarks to enhance infrastructure security and compliance. Assist in internal and external audits , preparing documentation and audit artifacts. Deploy and manage SIEM tools (e.g., Microsoft Sentinel, Splunk) for log aggregation, threat detection, and incident response. Configure and monitor Azure security services , including Microsoft Defender for Cloud , Azure Policy , Key Vault , Network Security Groups (NSG) , Azure Firewall / WAF , Azure Security Center / Microsoft Purview Support Cloud Security Posture Management (CSPM) , Cloud Access Security Broker (CASB) , and Cloud Workload Protection (CWP) . Deploy, configure, and monitor Data Loss Prevention (DLP) controls across endpoints and cloud apps. Conduct risk assessments , vulnerability evaluations , and assist in incident handling . Stay updated on the latest threats, vulnerabilities, and security compliance requirements. Required Skills and Experience: Minimum of 2 years of experience in information security, cloud security, or related roles. Solid understanding of ISO/IEC 27001 implementation and audit processes. Experience supporting or conducting SOC 2 Type I/II readiness. Working knowledge of NIST CSF , NIST 800-53 , or similar frameworks. Proficiency with SIEM tools (especially Microsoft Sentinel ). Good understanding of cloud security controls , preferably in Microsoft Azure . Familiarity with DLP , antivirus/EDR/XDR solutions , and endpoint security . Preferred Certifications: ISO27001 Lead Implementer / Auditor. Nice to have: Microsoft Certified: Azure Security Engineer Associate. CompTIA Security+ About Company: Dynatech System is Gold partner of Microsoft , CMMI level 3 Multinational organization . DynaTech Systems is providing Consulting, Implementation, Support and Offshore development services designed to improve the productivity and performance of organizations. We help our clients become industry innovators through the use of effective technology and solutions, focusing on providing exceptional on stop service. With the right team composition, we are very well positioned to help our customers with every service related to Microsoft Dynamics 365, Dynamics AX 2012 and related technologies. We have a precise and the right team, that we think is the best fit to help our employees in the most effective ways. Our team strength is 200+ intellectual mates. Let’s join us and be a part of one of fastest growing organization! Company Website – Microsoft Dynamics Partner & Technology Experts - DynaTech Systems (dynatechconsultancy.com) LinkedIn - DynaTech Systems: My Company | LinkedIn Show more Show less

Job Profile: Cloud Practice Engineer Job Description : Implements organization's cloud strategy from a technical perspective, including design, planning, integration, maintenance and support of cloud architecture. Supports development and execution of cloud implementation strategy within organization's existing IT infrastructure. May work with stakeholders across organization to evaluate cloud systems and identify appropriate solutions. Responsible for adhering to company security policies and procedures and any other relevant policies and standards as directed. Job Description Critical Competencies Listens attentively to others, ensuring they have the opportunity to finish speaking without disruption or interruption; asks thought-provoking follow-up questions Picks up on non-verbal cues and uses own body language (e.g., eye contact, nodding head) to show receptiveness, attentiveness and interest Asks for clarification and validates understanding of messages by providing appropriate responses Anticipates and takes action on what needs to be done to accomplish an objective, task or goal; finds alternative or less obvious ways to carry out plans Sets challenging yet motivating short and long term goals which lead to beneficial individual and team results Accepts ownership for individual performance, results and actions; volunteers for tasks before being asked by others or being forced by events Gathers pertinent information about a problem by analyzing data and patterns and identifying underlying issues Researches and recommends more detailed solutions to resolve problems Implements solutions based on advanced knowledge of standard practices and previous experiences; escalates complex or unprecedented issues and needed Confirms comprehension and understanding of complex information (e.g., legal, operational risk, and regulatory data) by correctly and clearly answering routine questions Creates clear, concise and organized communication materials (e.g., policies & procedures, guidelines, presentations, messages) Considers and understands the audience’s specific needs and comprehension level to determine the most appropriate message and delivery method, limiting or explaining technical language Communicates effectively with customers; listens to customers’ concerns and issues regarding technology; determines customers’ needs and expectations and responds accordingly Ensures that operational teams and subcontractors have a clear understanding of customer requirements; identifies technical issues and provides data to support solutions Considers new ways of using technology to meet or enhance customers’ needs Makes accurate judgments regarding the time required to complete various work outputs Builds due dates into assignments and proactively follows up with team members to ensure deadlines are successfully met Balances several tasks and priorities simultaneously, and seeks guidance when necessary. Key Responsibilities o Other Incidental tasks related to the job, as necessary Create well-designed, documented, and tested software features that meet customer requirements Identify and address product bugs, deficiencies, and performance bottlenecks Working with customers engineering teams on a wide variety of projects Writing infrastructure as code (CloudFormation, Terraform) Implement automation/DevOps best practices for CI/CD, IaC, Containerization, etc Linux/Windows administration, automated deployments, scripting (Bash/PowerShell/Python) Collaborate with fellow Rackers and customer key stakeholders to deliver projects, such as implementing Cloud-based technical architectures, executing migrations, and optimizing applications that enable business objectives Serve as a technical advisor and perform troubleshooting to resolve technical challenges for customers. Knowledge Extensive knowledge of cloud services, methodologies, best practices, and tools Solid understanding of Cloud infrastructure Knowledge about common security frameworks and standards (NIST, HIPAA, PCI, etc) Skills Generic DevOps Skill Baseline Coding Scripting/ Programing language/ Configuration Management/ Container (1 or more at 100 level) Continuous Integration / Continuous Deployment VCS (Git Based VSC) family with commit, branch, merge, review process understand pre/post hook design/implement branching strategy (e.g., git flow, GitHub flow) design/implement group development collaboration process (access control, code review/approval, integration with other CI tools) Artifact Repository familiar with one of the popular antifactory management tools CI/CD tools implement CI services (VCS, antifactory repo, build, release) Design/implement CI/CD pipeline Operating System familiar with Linux or Windows OS Cloud Skill Baseline Automation IaC use cloud IaC language to implement cloud resources or operation process use orchestration tools to organize IaC code and inject configurations CI/CD Implement CI services (VSC, Artifacts repo, build service pipeline service) implement CI/CD pipeline to build/deploy infrastructure or application design/implement best practice CI/CD Landing Zone (Multi Account Framework) Identity Access Management (IAM) Security Networking Compute (VM, Container platform, Function) Virtual Machine workload Implement serverless solution for operational purpose Data storage, Database configuration management Secret Management Monitoring and Logging Message Queues Show more Show less

About the Role: Grade Level (for internal use): 10 The Team: Digital Solutions (DS) is an enterprise-shared technology service enabling people, functions, and divisions. We drive S&P Global to Power the Markets of the Future by working as trusted partners delivering secure, scalable, resilient, and innovative services and solutions that enable seamless experiences for our people and customers. The Impact: This role rolls up to the Head of Technology Risk and Governance, in the Global Digital Technology Organization . The Head of Technology Risk and Governance drives the Digital Solutions technology risk and governance strategy, partnering with the second line of defense in Information Security, Digital Technology Services, and Corporate Platforms, as well as with Enterprise Risk and Compliance, and Audit. Responsibilities and Impact: This role belongs to First Line of Defense. Support in defining a comprehensive risk inventory, focusing on granular-level risks. Support in development of detailed controls inventory for various technology processes based on various industry frameworks (COBIT, ITIL, ISO, NIST) and DS Technology Standards. Perform self- QA over the controls inventory to ensure key risks and controls are covered. Support in implementation of the Governance, Risk, and Compliance (GRC) tool, focusing on the technology aspects. Support in development of Key Risk Indicators (KRIs) and Key Control Indicators (KCIs) Establish and manage thresholds for risk indicators Coordinate with key stakeholders to ensure alignment and effective communication Develop and operationalize risk scorecards to track and report on risk metrics. Aggregate risk data to provide a holistic view of organizational risk Support in p repar ing and deliver ing comprehensive risk reports to measure performance against the organization's Risk Appetite. Prepare presentations for the Management reporting (requires very good PowerPoint presentation skills) ​ Basic Required Qualifications: Bachelor's Degree in a relevant field such as Engineering, Business, or Information Technology. 5 + years of experience in technology risk management and internal controls implementation, including both building and operating a function. Proven ability to convey complex risk topics to varied audiences, including executive leadership and technical teams. Successful track record in a global environment, with strong relationship-building and communication skills. Exceptional analytical skills and problem-solving abilities, with experience in high-pressure environments. ​ Additional Preferred Qualifications: 5 + years of experience in a large global organization in a technology risk function. Master of Business Administration or equivalent advanced degree preferred but not required . Role Location: Gurgaon, Noida, Bangalore What’s In It For You? Our Purpose: Progress is not a self-starter. It requires a catalyst to be set in motion. Information, imagination, people, technology–the right combination can unlock possibility and change the world. Our world is in transition and getting more complex by the day. We push past expected observations and seek out new levels of understanding so that we can help companies, governments and individuals make an impact on tomorrow. At S&P Global we transform data into Essential Intelligence®, pinpointing risks and opening possibilities. We Accelerate Progress. Our People: We're more than 35,000 strong worldwide—so we're able to understand nuances while having a broad perspective. Our team is driven by curiosity and a shared belief that Essential Intelligence can help build a more prosperous future for us all. From finding new ways to measure sustainability to analyzing energy transition across the supply chain to building workflow solutions that make it easy to tap into insight and apply it. We are changing the way people see things and empowering them to make an impact on the world we live in. We’re committed to a more equitable future and to helping our customers find new, sustainable ways of doing business. We’re constantly seeking new solutions that have progress in mind. Join us and help create the critical insights that truly make a difference. Our Values: Integrity, Discovery, Partnership At S&P Global, we focus on Powering Global Markets. Throughout our history, the world's leading organizations have relied on us for the Essential Intelligence they need to make confident decisions about the road ahead. We start with a foundation of integrity in all we do, bring a spirit of discovery to our work, and collaborate in close partnership with each other and our customers to achieve shared goals. Benefits: We take care of you, so you can take care of business. We care about our people. That’s why we provide everything you—and your career—need to thrive at S&P Global. Our benefits include: Health & Wellness: Health care coverage designed for the mind and body. Flexible Downtime: Generous time off helps keep you energized for your time on. Continuous Learning: Access a wealth of resources to grow your career and learn valuable new skills. Invest in Your Future: Secure your financial future through competitive pay, retirement planning, a continuing education program with a company-matched student loan contribution, and financial wellness programs. Family Friendly Perks: It’s not just about you. S&P Global has perks for your partners and little ones, too, with some best-in class benefits for families. Beyond the Basics: From retail discounts to referral incentive awards—small perks can make a big difference. For more information on benefits by country visit: https://spgbenefits.com/benefit-summaries Global Hiring and Opportunity at S&P Global: At S&P Global, we are committed to fostering a connected and engaged workplace where all individuals have access to opportunities based on their skills, experience, and contributions. Our hiring practices emphasize fairness, transparency, and merit, ensuring that we attract and retain top talent. By valuing different perspectives and promoting a culture of respect and collaboration, we drive innovation and power global markets. ----------------------------------------------------------- Equal Opportunity Employer S&P Global is an equal opportunity employer and all qualified candidates will receive consideration for employment without regard to race/ethnicity, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, marital status, military veteran status, unemployment status, or any other status protected by law. Only electronic job submissions will be considered for employment. If you need an accommodation during the application process due to a disability, please send an email to: EEO.Compliance@spglobal.com and your request will be forwarded to the appropriate person. US Candidates Only: The EEO is the Law Poster http://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf describes discrimination protections under federal law. Pay Transparency Nondiscrimination Provision - https://www.dol.gov/sites/dolgov/files/ofccp/pdf/pay-transp_%20English_formattedESQA508c.pdf ----------------------------------------------------------- 202 - Middle Professional (EEO Job Group) (inactive), 20 - Professional (EEO-2 Job Categories-United States of America), RSKMGT202.1 - Middle Professional Tier I (EEO Job Group) Job ID: 315516 Posted On: 2025-06-03 Location: Hyderabad, Telangana, India

Technology Risk Governance and Risk Reporting Specialist Hyderabad, India; Islamabad, Pakistan Risk Management 315516 Job Description About The Role: Grade Level (for internal use): 10 The Team: Digital Solutions (DS) is an enterprise-shared technology service enabling people, functions, and divisions. We drive S&P Global to Power the Markets of the Future by working as trusted partners delivering secure, scalable, resilient, and innovative services and solutions that enable seamless experiences for our people and customers. The Impact: This role rolls up to the Head of Technology Risk and Governance, in the Global Digital Technology Organization. The Head of Technology Risk and Governance drives the Digital Solutions technology risk and governance strategy, partnering with the second line of defense in Information Security, Digital Technology Services, and Corporate Platforms, as well as with Enterprise Risk and Compliance, and Audit. Responsibilities and Impact: This role belongs to First Line of Defense. Support in defining a comprehensive risk inventory, focusing on granular-level risks. Support in development of detailed controls inventory for various technology processes based on various industry frameworks (COBIT, ITIL, ISO, NIST) and DS Technology Standards. Perform self-QA over the controls inventory to ensure key risks and controls are covered. Support in implementation of the Governance, Risk, and Compliance (GRC) tool, focusing on the technology aspects. Support in development of Key Risk Indicators (KRIs) and Key Control Indicators (KCIs) Establish and manage thresholds for risk indicators Coordinate with key stakeholders to ensure alignment and effective communication Develop and operationalize risk scorecards to track and report on risk metrics. Aggregate risk data to provide a holistic view of organizational risk Support in preparing and delivering comprehensive risk reports to measure performance against the organization's Risk Appetite. Prepare presentations for the Management reporting (requires very good PowerPoint presentation skills) Basic Required Qualifications: Bachelor's Degree in a relevant field such as Engineering, Business, or Information Technology. 5+ years of experience in technology risk management and internal controls implementation, including both building and operating a function. Proven ability to convey complex risk topics to varied audiences, including executive leadership and technical teams. Successful track record in a global environment, with strong relationship-building and communication skills. Exceptional analytical skills and problem-solving abilities, with experience in high-pressure environments. Additional Preferred Qualifications: 5+ years of experience in a large global organization in a technology risk function. Master of Business Administration or equivalent advanced degree preferred but not required. Role Location: Gurgaon, Noida, Bangalore What’s In It For You? Our Purpose: Progress is not a self-starter. It requires a catalyst to be set in motion. Information, imagination, people, technology–the right combination can unlock possibility and change the world. Our world is in transition and getting more complex by the day. We push past expected observations and seek out new levels of understanding so that we can help companies, governments and individuals make an impact on tomorrow. At S&P Global we transform data into Essential Intelligence®, pinpointing risks and opening possibilities. We Accelerate Progress. Our People: We're more than 35,000 strong worldwide—so we're able to understand nuances while having a broad perspective. Our team is driven by curiosity and a shared belief that Essential Intelligence can help build a more prosperous future for us all. From finding new ways to measure sustainability to analyzing energy transition across the supply chain to building workflow solutions that make it easy to tap into insight and apply it. We are changing the way people see things and empowering them to make an impact on the world we live in. We’re committed to a more equitable future and to helping our customers find new, sustainable ways of doing business. We’re constantly seeking new solutions that have progress in mind. Join us and help create the critical insights that truly make a difference. Our Values: Integrity, Discovery, Partnership At S&P Global, we focus on Powering Global Markets. Throughout our history, the world's leading organizations have relied on us for the Essential Intelligence they need to make confident decisions about the road ahead. We start with a foundation of integrity in all we do, bring a spirit of discovery to our work, and collaborate in close partnership with each other and our customers to achieve shared goals. Benefits: We take care of you, so you can take care of business. We care about our people. That’s why we provide everything you—and your career—need to thrive at S&P Global. Our benefits include: Health & Wellness: Health care coverage designed for the mind and body. Flexible Downtime: Generous time off helps keep you energized for your time on. Continuous Learning: Access a wealth of resources to grow your career and learn valuable new skills. Invest in Your Future: Secure your financial future through competitive pay, retirement planning, a continuing education program with a company-matched student loan contribution, and financial wellness programs. Family Friendly Perks: It’s not just about you. S&P Global has perks for your partners and little ones, too, with some best-in class benefits for families. Beyond the Basics: From retail discounts to referral incentive awards—small perks can make a big difference. For more information on benefits by country visit: https://spgbenefits.com/benefit-summaries Global Hiring and Opportunity at S&P Global: At S&P Global, we are committed to fostering a connected and engaged workplace where all individuals have access to opportunities based on their skills, experience, and contributions. Our hiring practices emphasize fairness, transparency, and merit, ensuring that we attract and retain top talent. By valuing different perspectives and promoting a culture of respect and collaboration, we drive innovation and power global markets. - Equal Opportunity Employer S&P Global is an equal opportunity employer and all qualified candidates will receive consideration for employment without regard to race/ethnicity, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, marital status, military veteran status, unemployment status, or any other status protected by law. Only electronic job submissions will be considered for employment. If you need an accommodation during the application process due to a disability, please send an email to: EEO.Compliance@spglobal.com and your request will be forwarded to the appropriate person. US Candidates Only: The EEO is the Law Poster http://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf describes discrimination protections under federal law. Pay Transparency Nondiscrimination Provision - https://www.dol.gov/sites/dolgov/files/ofccp/pdf/pay-transp_%20English_formattedESQA508c.pdf - 202 - Middle Professional (EEO Job Group) (inactive), 20 - Professional (EEO-2 Job Categories-United States of America), RSKMGT202.1 - Middle Professional Tier I (EEO Job Group) Job ID: 315516 Posted On: 2025-06-03 Location: Hyderabad, Telangana, India

Hybrid Description and Requirements "At BMC trust is not just a word - it's a way of life!" We are an award-winning, equal opportunity, culturally diverse, fun place to be. Giving back to the community drives us to be better every single day. Our work environment allows you to balance your priorities, because we know you will bring your best every day. We will champion your wins and shout them from the rooftops. Your peers will inspire, drive, support you, and make you laugh out loud! We help our customers free up time and space to become an Autonomous Digital Enterprise that conquers the opportunities ahead - and are relentless in the pursuit of innovation! The IZOT product line includes BMC’s Intelligent Z Optimization & Transformation products, which help the world’s largest companies to monitor and manage their mainframe systems. The modernization of mainframe is the beating heart of our product line, and we achieve this goal by developing products that improve the developer experience, the mainframe integration, the speed of application development, the quality of the code and the applications’ security, while reducing operational costs and risks. We acquired several companies along the way, and we continue to grow, innovate, and perfect our solutions on an ongoing basis. We are looking for a Senior Penetration Tester to take ownership of security testing for enterprise products deployed on mainframe environments. In this role, you will assess application-layer security risks, identify vulnerabilities in product implementations, and lead secure architecture reviews. The ideal candidate brings deep offensive security skills along with familiarity in testing applications running on or integrated with IBM mainframe systems. Here is how, through this exciting role, YOU will contribute to BMC's and your own success: Primary Roles And Responsibilities Lead security assessments of applications and solutions deployed on IBM z/OS-based environments. Conduct penetration testing and red teaming exercises targeting mainframe environments and the surrounding application ecosystem. Perform code-assisted and black-box penetration testing against enterprise applications/systems interacting with RACF, DB2, CICS, MQ, and related subsystems. Identify risks in authentication, authorization, data handling, and communications within mainframe-integrated products. Create threat models and guide product teams in mitigating high-impact vulnerabilities early in the SDLC. Drive remediation efforts through hands-on collaboration and secure design guidance. Author technical reports and deliver executive summaries tailored to various audiences. Stay current on vulnerabilities, exploits, and testing techniques relevant to legacy enterprise technologies and mainframe ecosystems.. Assess common integration patterns (SOA, REST/JSON, MQ) for security risks. To ensure you’re set up for success, you will bring the following skillset & experience: 8+ years of experience in penetration testing, with a specialization in systems/applications integrating with mainframe environments. Deep knowledge of mainframe communication protocols and security mechanisms. Demonstrated experience conducting red team-style assessments or advanced threat emulation on mainframe systems. Proficient in tools such as: Mainframe utilities: REXX, ISPF panels, NetView Security tools: Nmap, Burp Suite, Wireshark, custom scripts Strong scripting and automation skills (Python, REXX, Bash, or similar). Strong communication and leadership skills, with a proven ability to lead technical teams or projects. Experience producing board-level reports and presenting findings to senior stakeholders. Exposure to hybrid environments (mainframe to cloud integrations, modernization efforts). Familiarity with modern enterprise integration methods (REST, SOAP, MQ, FTP) that interface with mainframe services Whilst these are nice to have, our team can help you develop in the following skills: Industry certifications such as OSCP, OSCE, CRTP, GIAC GPEN, GXPN, or CISSP. Background in regulated industries such as banking, insurance, or government, where mainframes are core infrastructure. Knowledge of COBOL, PL/I, or other mainframe-centric programming languages. Experience with compliance standards like PCI-DSS, NIST, or SOX as they apply to mainframes. CA-DNP Our commitment to you! BMC’s culture is built around its people. We have 6000+ brilliant minds working together across the globe. You won’t be known just by your employee number, but for your true authentic self. BMC lets you be YOU! If after reading the above, You’re unsure if you meet the qualifications of this role but are deeply excited about BMC and this team, we still encourage you to apply! We want to attract talents from diverse backgrounds and experience to ensure we face the world together with the best ideas! BMC is committed to equal opportunity employment regardless of race, age, sex, creed, color, religion, citizenship status, sexual orientation, gender, gender expression, gender identity, national origin, disability, marital status, pregnancy, disabled veteran or status as a protected veteran. If you need a reasonable accommodation for any part of the application and hiring process, visit the accommodation request page. < Back to search results BMC Software maintains a strict policy of not requesting any form of payment in exchange for employment opportunities, upholding a fair and ethical hiring process. At BMC we believe in pay transparency and have set the midpoint of the salary band for this role at 3,380,000 INR. Actual salaries depend on a wide range of factors that are considered in making compensation decisions, including but not limited to skill sets; experience and training, licensure, and certifications; and other business and organizational needs. The salary listed is just one component of BMC's employee compensation package. Other rewards may include a variable plan and country specific benefits. We are committed to ensuring that our employees are paid fairly and equitably, and that we are transparent about our compensation practices. ( Returnship@BMC ) Had a break in your career? No worries. This role is eligible for candidates who have taken a break in their career and want to re-enter the workforce. If your expertise matches the above job, visit to https://bmcrecruit.avature.net/returnship know more and how to apply. Min salary 2,535,000 Mid point salary 3,380,000 Max salary 4,225,000 Show more Show less

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Identity and Access Management (IAM) Operations Good to have skills : Microsoft Azure Active Directory Minimum 3 Year(s) Of Experience Is Required Educational Qualification : 15 years full time education Summary: As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to assess security needs, documenting the implementation of cloud security controls, and transitioning to cloud security-managed operations. You will engage in discussions to refine security strategies and ensure compliance with industry standards, all while adapting to the evolving landscape of cloud security. Roles & Responsibilities: - Expected to perform independently and become an SME. - Required active participation/contribution in team discussions. - Contribute in providing solutions to work related problems. - Conduct regular assessments of cloud security measures to ensure effectiveness and compliance. - Collaborate with cross-functional teams to integrate security best practices into cloud operations. Professional & Technical Skills: - Must To Have Skills: Proficiency in Identity and Access Management (IAM) Operations. - Good To Have Skills: Experience with Microsoft Azure Active Directory. - Strong understanding of cloud security principles and frameworks. - Experience in implementing security controls and risk management strategies. - Familiarity with compliance standards such as ISO 27001, NIST, or GDPR. Additional Information: - The candidate should have minimum 3 years of experience in Identity and Access Management (IAM) Operations. - This position is based at our Kolkata office. - A 15 years full time education is required. 15 years full time education Show more Show less

Area(s) of responsibility About Us Birlasoft, a global leader at the forefront of Cloud, AI, and Digital technologies, seamlessly blends domain expertise with enterprise solutions. The company’s consultative and design-thinking approach empowers societies worldwide, enhancing the efficiency and productivity of businesses. As part of the multibillion-dollar diversified CKA Birla Group, Birlasoft with its 12,000+ professionals, is committed to continuing the Group’s 170-year heritage of building sustainable communities. Job Title: Advanced Threat Management, Security Design, and Implementation Architect Job Summary: We are seeking a highly experienced Advanced Threat Management, Security Design, and Implementation Architect to lead our efforts in developing and deploying cutting-edge security solutions. The successful candidate will have deep expertise in advanced threat management, security architecture, and the implementation of robust security frameworks to protect an organization's critical assets. Key Responsibilities Design and implement advanced threat management strategies to identify, mitigate, and respond to security threats. Develop and maintain comprehensive security architectures that align with business goals and regulatory requirements. Lead security design initiatives for new and existing systems, ensuring robust protection against cyber threats. Oversee the implementation of security controls, policies, and procedures across the organization. In-depth knowledge of XDR Technology, SIEM, SOAR, SOC Architecture, Infrastructure and Data Security, Advisory and GRC Processes. Outstanding problem-solving skills and a strategic, analytical mindset, and be able to decipher the complex cybersecurity landscapes. Conduct strategies for vulnerability management and lead initiatives around effective VM in the organization. Collaborate with cross-functional teams to integrate security into the software development lifecycle (SDLC). Provide expert guidance on the latest security trends, tools, and technologies to enhance the organization’s security posture. Develop and deliver training programs to educate employees on security best practices and threat management. Ensure compliance with industry standards, regulations, and frameworks (e.g., NIST, ISO 27001). Professionalism, integrity, and a commitment to maintaining the highest ethical standards in conducting professional responsibilities Required Qualifications Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field. 10+ years of experience in advanced threat management, security design, and implementation. Proven expertise in developing and implementing security architectures and frameworks. Strong understanding of security assessment methodologies, vulnerability analysis, and penetration testing. Experience with security tools such as SIEM, SOAR, EDR, VM, Unified VM, ZTNA, IDS/IPS, firewalls, and endpoint protection, EASM, Deep/ Dark Web and Brand Protection. Excellent problem-solving skills and attention to detail. Strong communication and leadership skills. Experience with cloud security and securing hybrid environments. Preferred Qualifications Master’s degree in Information Security or a related field. Preferred certification in multiple SIEM and SOAR solution implementation (MS Sentinel, Splunk, Phantom, Swimlane, QRADAR) Relevant certifications such as CISSP, CISM, CEH, or OSCP. Show more Show less

Description and Requirements "At BMC trust is not just a word - it's a way of life!" We are an award-winning, equal opportunity, culturally diverse, fun place to be. Giving back to the community drives us to be better every single day. Our work environment allows you to balance your priorities, because we know you will bring your best every day. We will champion your wins and shout them from the rooftops. Your peers will inspire, drive, support you, and make you laugh out loud! We help our customers free up time and space to become an Autonomous Digital Enterprise that conquers the opportunities ahead - and are relentless in the pursuit of innovation! The IZOT product line includes BMC’s Intelligent Z Optimization & Transformation products, which help the world’s largest companies to monitor and manage their mainframe systems. The modernization of mainframe is the beating heart of our product line, and we achieve this goal by developing products that improve the developer experience, the mainframe integration, the speed of application development, the quality of the code and the applications’ security, while reducing operational costs and risks. We acquired several companies along the way, and we continue to grow, innovate, and perfect our solutions on an ongoing basis. We are looking for a Senior Penetration Tester to take ownership of security testing for enterprise products deployed on mainframe environments. In this role, you will assess application-layer security risks, identify vulnerabilities in product implementations, and lead secure architecture reviews. The ideal candidate brings deep offensive security skills along with familiarity in testing applications running on or integrated with IBM mainframe systems. Here is how, through this exciting role, YOU will contribute to BMC's and your own success: Primary Roles And Responsibilities Lead security assessments of applications and solutions deployed on IBM z/OS-based environments. Conduct penetration testing and red teaming exercises targeting mainframe environments and the surrounding application ecosystem. Perform code-assisted and black-box penetration testing against enterprise applications/systems interacting with RACF, DB2, CICS, MQ, and related subsystems. Identify risks in authentication, authorization, data handling, and communications within mainframe-integrated products. Create threat models and guide product teams in mitigating high-impact vulnerabilities early in the SDLC. Drive remediation efforts through hands-on collaboration and secure design guidance. Author technical reports and deliver executive summaries tailored to various audiences. Stay current on vulnerabilities, exploits, and testing techniques relevant to legacy enterprise technologies and mainframe ecosystems.. Assess common integration patterns (SOA, REST/JSON, MQ) for security risks. To ensure you’re set up for success, you will bring the following skillset & experience: 8+ years of experience in penetration testing, with a specialization in systems/applications integrating with mainframe environments. Deep knowledge of mainframe communication protocols and security mechanisms. Demonstrated experience conducting red team-style assessments or advanced threat emulation on mainframe systems. Proficient in tools such as: Mainframe utilities: REXX, ISPF panels, NetView Security tools: Nmap, Burp Suite, Wireshark, custom scripts Strong scripting and automation skills (Python, REXX, Bash, or similar). Strong communication and leadership skills, with a proven ability to lead technical teams or projects. Experience producing board-level reports and presenting findings to senior stakeholders. Exposure to hybrid environments (mainframe to cloud integrations, modernization efforts). Familiarity with modern enterprise integration methods (REST, SOAP, MQ, FTP) that interface with mainframe services Whilst these are nice to have, our team can help you develop in the following skills: Industry certifications such as OSCP, OSCE, CRTP, GIAC GPEN, GXPN, or CISSP. Background in regulated industries such as banking, insurance, or government, where mainframes are core infrastructure. Knowledge of COBOL, PL/I, or other mainframe-centric programming languages. Experience with compliance standards like PCI-DSS, NIST, or SOX as they apply to mainframes. CA-DNP Our commitment to you! BMC’s culture is built around its people. We have 6000+ brilliant minds working together across the globe. You won’t be known just by your employee number, but for your true authentic self. BMC lets you be YOU! If after reading the above, You’re unsure if you meet the qualifications of this role but are deeply excited about BMC and this team, we still encourage you to apply! We want to attract talents from diverse backgrounds and experience to ensure we face the world together with the best ideas! BMC is committed to equal opportunity employment regardless of race, age, sex, creed, color, religion, citizenship status, sexual orientation, gender, gender expression, gender identity, national origin, disability, marital status, pregnancy, disabled veteran or status as a protected veteran. If you need a reasonable accommodation for any part of the application and hiring process, visit the accommodation request page. < Back to search results BMC Software maintains a strict policy of not requesting any form of payment in exchange for employment opportunities, upholding a fair and ethical hiring process. At BMC we believe in pay transparency and have set the midpoint of the salary band for this role at 3,380,000 INR. Actual salaries depend on a wide range of factors that are considered in making compensation decisions, including but not limited to skill sets; experience and training, licensure, and certifications; and other business and organizational needs. The salary listed is just one component of BMC's employee compensation package. Other rewards may include a variable plan and country specific benefits. We are committed to ensuring that our employees are paid fairly and equitably, and that we are transparent about our compensation practices. ( Returnship@BMC ) Had a break in your career? No worries. This role is eligible for candidates who have taken a break in their career and want to re-enter the workforce. If your expertise matches the above job, visit to https://bmcrecruit.avature.net/returnship know more and how to apply. Show more Show less

Area(s) of responsibility About Us Birlasoft, a global leader at the forefront of Cloud, AI, and Digital technologies, seamlessly blends domain expertise with enterprise solutions. The company’s consultative and design-thinking approach empowers societies worldwide, enhancing the efficiency and productivity of businesses. As part of the multibillion-dollar diversified CKA Birla Group, Birlasoft with its 12,000+ professionals, is committed to continuing the Group’s 170-year heritage of building sustainable communities. Job Title: SME - CyberArk Job Description: We are looking for an experienced and dedicated CyberArk Architect to design, implement, and manage comprehensive CyberArk solutions. The successful candidate will be responsible for the end-to-end deployment of CyberArk Privileged Access Management (PAM) solutions, ensuring secure and efficient management of privileged accounts and access. Key Responsibilities Lead the design and architecture of CyberArk PAM solutions, ensuring alignment with business and security requirements. Plan and execute the end-to-end implementation of CyberArk solutions, including installation, configuration, and integration with existing systems. Develop and maintain CyberArk policies, procedures, and best practices. Conduct risk assessments and security audits to identify potential vulnerabilities and recommend mitigation strategies. Collaborate with cross-functional teams, including IT, security, and compliance, to ensure successful deployment and integration of CyberArk solutions. Provide technical leadership and guidance to junior team members and stakeholders. Monitor and maintain the health and performance of the CyberArk environment, ensuring optimal functionality and security. Stay current with the latest CyberArk technologies, features, and industry trends, and provide recommendations for continuous improvement. Qualifications Bachelor's degree in Computer Science, Information Security, or a related field. Master's degree preferred. Minimum of 10+ years of experience in cybersecurity, with a focus on Privileged Access Management (PAM) solutions. Proven experience in designing, implementing, and managing CyberArk solutions from scratch. Strong knowledge of CyberArk components, including the Enterprise Password Vault (EPV), Central Policy Manager (CPM), Privileged Session Manager (PSM), and more. Experience with security frameworks and standards such as NIST, ISO 27001, and CIS Controls. Proficiency in scripting and automation using tools such as PowerShell, Python, or similar. Excellent problem-solving skills and the ability to think strategically about security challenges. Strong communication and interpersonal skills, with the ability to work effectively with diverse teams and stakeholders. Certified in CyberArk Guardian/Sentry Show more Show less

Area(s) of responsibility About Us Birlasoft, a global leader at the forefront of Cloud, AI, and Digital technologies, seamlessly blends domain expertise with enterprise solutions. The company’s consultative and design-thinking approach empowers societies worldwide, enhancing the efficiency and productivity of businesses. As part of the multibillion-dollar diversified CKA Birla Group, Birlasoft with its 12,000+ professionals, is committed to continuing the Group’s 170-year heritage of building sustainable communities. Job Title: Advanced Threat Management, Security Design, and Implementation Architect Job Summary: We are seeking a highly experienced Advanced Threat Management, Security Design, and Implementation Architect to lead our efforts in developing and deploying cutting-edge security solutions. The successful candidate will have deep expertise in advanced threat management, security architecture, and the implementation of robust security frameworks to protect an organization's critical assets. Key Responsibilities Design and implement advanced threat management strategies to identify, mitigate, and respond to security threats. Develop and maintain comprehensive security architectures that align with business goals and regulatory requirements. Lead security design initiatives for new and existing systems, ensuring robust protection against cyber threats. Oversee the implementation of security controls, policies, and procedures across the organization. In-depth knowledge of XDR Technology, SIEM, SOAR, SOC Architecture, Infrastructure and Data Security, Advisory and GRC Processes. Outstanding problem-solving skills and a strategic, analytical mindset, and be able to decipher the complex cybersecurity landscapes. Conduct strategies for vulnerability management and lead initiatives around effective VM in the organization. Collaborate with cross-functional teams to integrate security into the software development lifecycle (SDLC). Provide expert guidance on the latest security trends, tools, and technologies to enhance the organization’s security posture. Develop and deliver training programs to educate employees on security best practices and threat management. Ensure compliance with industry standards, regulations, and frameworks (e.g., NIST, ISO 27001). Professionalism, integrity, and a commitment to maintaining the highest ethical standards in conducting professional responsibilities Required Qualifications Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field. 10+ years of experience in advanced threat management, security design, and implementation. Proven expertise in developing and implementing security architectures and frameworks. Strong understanding of security assessment methodologies, vulnerability analysis, and penetration testing. Experience with security tools such as SIEM, SOAR, EDR, VM, Unified VM, ZTNA, IDS/IPS, firewalls, and endpoint protection, EASM, Deep/ Dark Web and Brand Protection. Excellent problem-solving skills and attention to detail. Strong communication and leadership skills. Experience with cloud security and securing hybrid environments. Preferred Qualifications Master’s degree in Information Security or a related field. Preferred certification in multiple SIEM and SOAR solution implementation (MS Sentinel, Splunk, Phantom, Swimlane, QRADAR) Relevant certifications such as CISSP, CISM, CEH, or OSCP. Show more Show less

Position Summary Global Risk & Brand Protection Technology Risk:Security Inquiry Response Center, Analyst This position will serve as an Analyst within the Security Inquiry Response Center under the Global Risk & Brand Protection organization. The Analyst’s role will involve the gathering and pre-population of information to respond to information security and other technology-related inquiries from Deloitte member firm clients and regulators through information security inquiries, questionnaires, assessments, or audits.This role will be facilitated through a global delivery team model, tasked with the coordination and completion of these security inquiries. The team The Security Inquiry Response Center team works behind the scenes to protect Deloitte’s brand and reputation. We take this protective role seriously, while simultaneously ensuring Deloitte meets client, legal, and regulatory requirements. This is an internal firm professional service position that supports firms of the Deloitte organization. Global Risk & Brand Protection (GR&BP) analysts play a critical role in enhancing, preserving and protecting the reputation of the Deloitte organization. Specifically, GR&BP analysts assist in ensuring compliance with firm policies and professional standards in the areas of auditor independence, regulatory compliance, and risk. Functions within GR&BP include Global Independence, Technology, Regulatory, Privacy, Risk and Ethics. The ideal GR&BP candidate must be able to work independently and as part of a team in a dynamic work environment. Work you’ll do Operational responsibilities of this role will include one or more of the following: Fulfill member firm and client, regulatory and audit-related information security requests as assigned through the global delivery team. Identifying, gathering, and pre-populating responses to questions using one or more Standard Answer Banks. Identifying the remaining questions that cannot be pre-populated and whether consultation is needed with the Client Security Lead. Responsible for highlighting issues found in the Standard Answer Banks and illustrating where changes are necessary. Standard Answer Bank maintenance. Support activities related to information security inquiries, including: Analyzing and evaluating client, regulator and member firm information security requests, assessments, and audits; and Gathering data and refinement activities using the global delivery team. Demonstrate and apply project management skills and use current technology and tools to enhance the effectiveness of deliverables and services. Support initiatives to educate technology functions on technology risk management requirements according to regulatory requirements, internal policy and standards, data classification, client commitments, etc. Demonstrate and apply a basic understanding of technology trends to identify issues and communicate this information to the management team through written correspondence and verbal presentations. Perform other job-related duties as assigned by the Manager or others within the Security Inquiry Response Center team. Qualifications Education Bachelor’s degree or higher in a technology-related field or a relevant IT security certification (if non-technical degree) or an equivalent experience, i.e. vendor or procurement audits, control reviews, etc. Work Experience One (1) to three (3) years demonstrated experience in applying leading practices in Information Security, Technology Risk or Operational Risk environment, or risk and governance function. Required Skills/abilities Proficient English skills in verbal, reading and writing, and the ability to understand nuances. Entry-level knowledge of Information Systems Security, cyber security, IT auditing, IT risk management and compliance and/or vendor security risk management Basic working knowledge of GRC tools (e.g., Archer, ServiceNow, etc.) Knowledge of various IT risk frameworks, methodologies, leading industry/assurance standards and regulations, as well as attestation reporting frameworks, such as the ISO family of standards (27001/2, ISO 22301, ISO 27017, etc.), NIST, COBIT, SOC2 reporting framework. Basic knowledge of significant security and privacy laws and regulations in the Americas, Europe, Middle East, Asia, Africa, and Oceania is preferable (e.g., GDPR). Analytical and problem-solving mindset; demonstrated ability to synthesize large amounts of data in short periods of time for consumption by multiple stakeholders. Effective relationship-building, communication, presentation, and interpersonal skills. Highly disciplined, with strong organizational abilities. Ability to multi-task, prioritize work and work independently. Possess exceptional level of integrity and customer focus. Work Location: Hyderabad Shift: 11:00 AM – 8:00 PM How You’ll Grow At Deloitte, we’ve invested a great deal to create a rich environment in which our professionals can grow. We want all our people to develop in their own way, playing to their own strengths as they hone their leadership skills. And, as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities— including exposure to leaders, sponsors, coaches, and challenging assignments—to help accelerate their careers along the way. No two people learn in exactly the same way. So, we provide a range of resources including live classrooms, team-based learning, and eLearning. DU: The Leadership Center in India, our state-of-the-art, world-class learning Center in the Hyderabad offices is an extension of the Deloitte University (DU) in Westlake, Texas, and represents a tangible symbol of our commitment to our people’s growth and development. Explore DU: The Leadership Center in India Benefits At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you. Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. We offer well-being programs and are continuously looking for new ways to maintain a culture that is inclusive, invites authenticity, leverages our diversity, and where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with our clients, our people and our communities.We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. #CA-VS #EAG-R&BP Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Benefits At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Professional development From entry-level employees to senior leaders, we believe there’s always room to learn. We offer opportunities to build new skills, take on leadership opportunities and connect and grow through mentorship. From on-the-job learning experiences to formal development programs, our professionals have a variety of opportunities to continue to grow throughout their career. Requisition code: 301025 Show more Show less

Requirements Description and Requirements Basic Function: As a Business Continuity, Crisis Management and Disaster Recovery (BCDR) Specialist, you will play a crucial role in developing, maintaining, and implementing program for MetLife. This position will focus on building, testing, and improving our business continuity plans and disaster recovery capabilities. You’ll work with cross-functional teams to ensure that our critical functions are resilient and can withstand potential disruptions. In this role, you’ll be responsible for conducting risk assessments, leading testing exercises, and driving the continuous improvement of our BCP practices, making sure that MetLife can respond to and recover from potential disruptions quickly and effectively. This is a hands-on role where you’ll balance strategic planning with tactical execution, and collaborate with global teams to ensure a seamless response to potential crises. Reporting directly to the Service Delivery Leader/ Director of Business Continuity and Disaster Recovery, this is a high-impact role in MetLife growing BCP organization. Responsibilities Business Continuity Planning (BCP) Development: Create, document, and update business continuity plans (BCPs) for all business functions Work closely with department leaders to align BCPs with business objectives, regulatory requirements, and best practices. Work on Techn Risk Assessment and Business Impact Analysis (BIA): Conduct regular risk assessments and business impact analyses to identify potential threats and vulnerabilities to MetLife operations. Evaluate the financial, operational, and reputational impact of potential disruptions. Incident Response and Crisis Management: Serve as a key stakeholder in the development of incident response plans, ensuring that all critical functions are prepared for swift recovery. Lead/ Participate in crisis management exercises and tabletop simulations to train staff and assess our readiness. Regulatory Compliance and Audit Support: Ensure compliance with industry regulations and standards, including ISO 22301, SOC 2, DORA and GDPR Support internal and external audits by maintaining accurate documentation and reporting on BCDR initiatives. Continuous Improvement and Innovation: Stay current on trends and emerging technologies in business continuity and disaster recovery. Disaster Recovery (DR) Strategy and Execution: There may be requirement to Design, implement, and maintain disaster recovery strategies for our IT infrastructure and cloud-based services (e.g., AWS, Azure). Coordinate disaster recovery drills, testing scenarios, and post-mortem reviews to ensure effectiveness and readiness Continuously refine and enhance MetLife BCP strategy based on lessons learned from testing, real incidents, and industry developments. Competencies & Skills: Minimum Qualifications: Bachelor’s degree in information technology, BCP, Risk Management, or a related field. 4+ years of experience in business continuity, disaster recovery, risk management, or a related field. Strong knowledge of business continuity standards (e.g., ISO 22301, NIST, DORA) and disaster recovery best practices. Experience with cloud platforms (AWS, Azure) and virtualization technologies. Preferred Qualifications: Professional certifications such as Certified Business Continuity Professional (CBCP), ISO 22301 Lead Auditor/Implementer, or CISSP Experience working within a SaaS or tech-driven environment. Ability to lead disaster recovery testing exercises and business continuity plan reviews. Soft Skills: Excellent communication and collaboration skills, with the ability to influence and coordinate across cross-functional teams. Strong analytical and problem-solving skills. Ability to thrive in a fast-paced, dynamic environment with a proactive and flexible approach to work. Work Experience : 4 yrs + of work experience in BCP, Data Privacy, Operations Risk, Corporate Ethics and Compliance. About MetLife Recognized on Fortune magazine's list of the 2024 "World's Most Admired Companies" and Fortune World’s 25 Best Workplaces™ for 2024, MetLife , through its subsidiaries and affiliates, is one of the world’s leading financial services companies; providing insurance, annuities, employee benefits and asset management to individual and institutional customers. With operations in more than 40 markets, we hold leading positions in the United States, Latin America, Asia, Europe, and the Middle East. Our purpose is simple - to help our colleagues, customers, communities, and the world at large create a more confident future. United by purpose and guided by empathy, we’re inspired to transform the next century in financial services. At MetLife, it’s #AllTogetherPossible . Join us! Show more Show less

Global Service Lead, SAP BASIS & Security Sandoz continues to go through an exciting and transformative period as a global leader and pioneering provider of sustainable Biosimilar and Generic medicines. As we continue down this new and ambitious path, unique opportunities will present themselves, both professionally and personally. Join us, the future is ours to shape! Job Summary The Global Service Lead, SAP BASIS & Security will Leads SAP Platforms Technical and Security services with a team of specialized resources for both the existing on-premise legacy ECC estate, S/4HANA and the emerging SAP RISE footprint, ensuring to deliver a validated, secure and cost-effective SAP digital core. Your Key Responsibilities Your responsibilities include, but are not limited to: Leads the effective delivery and operations of SAP Technical Services ensuring best-in-class support and ensuring compliance to defined IT Governance controls, standards, and practices Accountable for SAP Technical Governance and strategy, defines and maintain technical framework and standards specific to SAP Services, ensuring enforcement of security and zero trust IAM Oversees operational results, management, security, lifecycle, and reliability of SAP Services Identify areas for optimization, implement strategies to enhance processes and procedures, maintaining proper life cycling of documentation and services artifacts Accountable for managing vendors, ensuring they deliver quality services and meet all contractual obligations Recruit, manages and coach a highly specialized and globally distributed team of technology professionals, serving as a role model, ensuring next line leaders are visible and effective partners with IT counterparts, broader Sandoz stakeholders, and service providers Oversees delivery of all projects under the scope of SAP Technical Services including support to RISE Transition Responsible for strategic deliverables: expansion of automation footprint and integrated pipelines, converge monitoring & observability, implementation of FinOps guardrails for SAP workloads, Zero‑Trust & Continuous Compliance Minimum Requirements What you’ll bring to the role: 15+ years’ experience SAP BASIS, SAP Security proven track record, with at least 5 years in a managerial or service‑owner role 5 + years in regulated (GxP/SOX) industries Proven delivery of large‑scale migrations (AnyDB→HANA, on‑prem→RISE‑hyperscaler) Deep knowledge of ITIL 4 service management, SLAs/OLAs, and tooling (ServiceNow, Jira Service Management). Hands‑on expertise in SAP Security (GRC, role design, audit controls) and industry frameworks (NIST, CIS, ISO 27001). · Exposure to S/4HANA Public Cloud extensibility and SAP BTP Kyma / CAP services Certifications (not mandatory): SAP Technology Architect, AWS/Azure Solutions Architect, ITIL 4 Strategist; CISSP/CISM Competencies: Leadership quality including the ability to motivate, inspire, counsel, and facilitate individuals and teams to take responsibility and accountability for the goals Proven ability to establish and maintain strong long-term relationships, communications and interact professionally with a diverse group of Executives, Managers, and Subject Matter Experts in IT and ability to translate business strategies, initiatives, goals, and objectives into actionable items Leadership and project management skills with the ability to effectively communicate and report to different levels Superior reasoning and decision-making skills Customer and service first attitude Why Sandoz? Generic and Biosimilar medicines are the backbone of the global medicines industry. Sandoz, a leader in this sector, provided more than 900 million patient treatments across 100+ countries in 2024 and while we are proud of this achievement, we have an ambition to do more! With investments in new development capabilities, production sites, new acquisitions, and partnerships, we have the opportunity to shape the future of Sandoz and help more patients gain access to low-cost, high-quality medicines, sustainably. Our momentum is powered by an open, collaborative culture driven by our talented and ambitious colleagues, who, in return for applying their skills experience an agile and collegiate environment with impactful, flexible-hybrid careers, where diversity is welcomed and where personal growth is supported! Join us! Commitment to Diversity & Inclusion (hard coded in Workday): We are committed to building an outstanding, inclusive work environment and diverse teams representative of the patients and communities we serve. If this role is not suitable to your experience or career goals but you wish to stay connected to hear more about Sandoz and our career opportunities, join the Network here: Sandoz Talentpool (novartis.com) #Sandoz Show more Show less

locationsBangalore, Indiaposted onPosted 14 Days Ago job requisition id30476 FICO (NYSEFICO) is a leading global analytics software company, helping businesses in 100+ countries make better decisions. Join our world-class team today and fulfill your career potential! The Opportunity " The Security Engineer is a highly visible and critical role, collaborating on complex cloud and corporate service edge protection technologies and oversight. With your proven history of technical knowledge of identity and access management systems and services you will be working on a variety of different challenges facing the organization. You will provide both guidance and direct input to help ensure a secure, well-protected environment that complies with all applicable security standards ". Director, Cyber Security. What Youll Contribute Assist with implementation of security tools and services to enhance the oversight and governance of all company identities. Assist with implementation of identity governance and administration (IGA) solutions for the company. Implement identity security detections using next-gen Identity Threat Detection and Response (ITDR) and Non-Human Identity (NHI) platforms and tools. Create automated tooling to test identity systems to ensure detections work as designed. Create automation to produce automated policy and posture collection and reporting, to allow for identity-specific proofs managed within Infrastructure as Code. Create pipelines to deploy and manage IAM solutions and tooling. Provide engineering and technical guidance for supporting the automation of interacting with security tools and services that support the IAM program within the company. Keep current on emerging security technologies and tools and provide recommendations. Support our compliance and certification initiatives and design with those in mind. Collaborate with other engineers on design, analysis, architecture, implementation, pen-testing, security reviews and process enhancements. What Were Seeking 2-4 years in a security role, preferably in financial services or technology. Experience in securing hybrid network infrastructure services. Expertise in security, identity, architecture, and design. Hands-on experience with AWS, Azure, or other cloud platforms and IAM best practices. 2-4 years of experience with privileged access management tools (CyberArk, SailPoint, Delinea). Experience with Okta preferred. Proficiency in identity-related technologies and protocols (LDAP, SAML, OAuth, OIDC). Experience with identity provider services (Active Directory, AWS IAM, Okta). Familiarity with Zero Trust security models (Zscaler, AWS networking). Knowledge of Identity Governance Administration services. Experience with automation scripting and API integrations. Familiarity with DevOps concepts, IaC tools, and CI/CD pipelines. Proficiency in at least one high-level language (e.g., Python). Understanding of compliance frameworks (PCI-DSS, ISO 27001, NIST). Certifications like CISSP, AWS Security Specialty, or Azure SC-300 preferred. Our Offer to You An inclusive culture strongly reflecting our core valuesAct Like an Owner, Delight Our Customers and Earn the Respect of Others. The opportunity to make an impact and develop professionally by leveraging your unique strengths and participating in valuable learning experiences. Highly competitive compensation, benefits and rewards programs that encourage you to bring your best every day and be recognized for doing so. An engaging, people-first work environment offering work/life balance, employee resource groups, and social events to promote interaction and camaraderie. Why Make a Move to FICO At FICO, you can develop your career with a leading organization in one of the fastest-growing fields in technology today Big Data analytics. Youll play a part in our commitment to help businesses use data to improve every choice they make, using advances in artificial intelligence, machine learning, optimization, and much more. FICO makes a real difference in the way businesses operate worldwide Credit Scoring FICO Scores are used by 90 of the top 100 US lenders. Fraud Detection and Security 4 billion payment cards globally are protected by FICO fraud systems. Lending 3/4 of US mortgages are approved using the FICO Score. Global trends toward digital transformation have created tremendous demand for FICOs solutions, placing us among the worlds top 100 software companies by revenue. We help many of the worlds largest banks, insurers, retailers, telecommunications providers and other firms reach a new level of success. Our success is dependent on really talented people just like you who thrive on the collaboration and innovation thats nurtured by a diverse and inclusive environment. Well provide the support you need, while ensuring you have the freedom to develop your skills and grow your career. Join FICO and help change the way business thinks! Learn more about how you can fulfil your potential at FICO promotes a culture of inclusion and seeks to attract a diverse set of candidates for each job opportunity. We are an equal employment opportunity employer and were proud to offer employment and advancement opportunities to all candidates without regard to race, color, ancestry, religion, sex, national origin, pregnancy, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. Research has shown that women and candidates from underrepresented communities may not apply for an opportunity if they dont meet all stated qualifications. While our qualifications are clearly related to role success, each candidates profile is unique and strengths in certain skill and/or experience areas can be equally effective. If you believe you have many, but not necessarily all, of the stated qualifications we encourage you to apply. Information submitted with your application is subject to theFICO Privacy policy at

locationsBangalore, Indiaposted onPosted 14 Days Ago job requisition id30669 FICO (NYSEFICO) is a leading global analytics software company, helping businesses in 100+ countries make better decisions. Join our world-class team today and fulfill your career potential! The Opportunity " FICO is seeking a Cyber/Cloud security Lead Engineer with Engineering experience to implement detections of Cloud and Container security.As a part of your role, you will be responsible for implementing automations to manage the Cloud and Container security solution. This role is specifically to build prototypes and orchestrate the manual tasks using automation in the cloud security space ." - Sr Director, Cyber Security What Youll Contribute Experience in Designing, Engineering, and Securing complex infrastructure architectures. Security relevant experience with AWS and implementing best practices regarding securing cloud infrastructure and cloud services (AWS certifications are desirable). Experience in working with Cloud security posture management (CSPM) with open source tooling or SAAS based product. Experience with tools like AWS CLI and creating resources in the cloud infra using Infra as a code (Terraform is desirable). Experience in Python scripting or programming languages with an automation mindset. Experience working on Multi account, multi region infrastructure setup. Should have experience with AWS Org, Cross account access and working with services like CloudWatch, CloudTrail, GuardDuty, Security Hub, AWS Inspector, AWS SSM and other security related services. Should have knowledge on CI/CD tools like Jenkins (especially pipelines creation). Experience with source control tools like Git, Bitbucket (Bitbucket is desirable). Experience with agile project management tools like JIRA, Confluence (JIRA is desirable). Experience working with artifactory tools like jfrog, Nexus (jfrog is desirable). What Were Seeking 3 or more years of Engineering experience specifically implementating automations using Python in AWS Public cloud environment. Experience working on containerized solutions with Docker, Kubernetes using ECR, ECS and EKS services in AWS. 2 or more years of security relevant experience with AWS and implementing best practices in regards to securing cloud infrastructure and cloud services (AWS certifications are desirable). Experience with tools like AWS CLI and creating resources in the cloud infra using Infra as a code (Terraform is desirable). Should have knowledge on CI/CD tools like Jenkins (especially pipelines creation). Experience with source control tools like Git, Bitbucket. Experience with agile project management tools like JIRA, Confluence. Experience working with artifactory tools like jfrog, Nexus (jfrog is desirable). Experience implementing automations using serverless platforms in the Cloud environment. Experience in working with Cloud security posture management (CSPM) with open source tooling or SAAS based product. Experience on integration with SIEM tool like Splunk Cloud. Experience with regulated environments in regards to exceeding published controls such as PCI-DSS, CIS, NIST, and/or STIG and meeting compliance. Our Offer to You An inclusive culture strongly reflecting our core values:Act Like an Owner, Delight Our Customers and Earn the Respect of Others. The opportunity to make an impact and develop professionally by leveraging your unique strengths and participating in valuable learning experiences. Highly competitive compensation, benefits and rewards programs that encourage you to bring your best every day and be recognized for doing so. An engaging, people-first work environment offering work/life balance, employee resource groups, and social events to promote interaction and camaraderie. Why Make a Move to FICO At FICO, you can develop your career with a leading organization in one of the fastest-growing fields in technology today Big Data analytics. Youll play a part in our commitment to help businesses use data to improve every choice they make, using advances in artificial intelligence, machine learning, optimization, and much more. FICO makes a real difference in the way businesses operate worldwide Credit Scoring FICO Scores are used by 90 of the top 100 US lenders. Fraud Detection and Security 4 billion payment cards globally are protected by FICO fraud systems. Lending 3/4 of US mortgages are approved using the FICO Score. Global trends toward digital transformation have created tremendous demand for FICOs solutions, placing us among the worlds top 100 software companies by revenue. We help many of the worlds largest banks, insurers, retailers, telecommunications providers and other firms reach a new level of success. Our success is dependent on really talented people just like you who thrive on the collaboration and innovation thats nurtured by a diverse and inclusive environment. Well provide the support you need, while ensuring you have the freedom to develop your skills and grow your career. Join FICO and help change the way business thinks! Learn more about how you can fulfil your potential at FICO promotes a culture of inclusion and seeks to attract a diverse set of candidates for each job opportunity. We are an equal employment opportunity employer and were proud to offer employment and advancement opportunities to all candidates without regard to race, color, ancestry, religion, sex, national origin, pregnancy, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. Research has shown that women and candidates from underrepresented communities may not apply for an opportunity if they dont meet all stated qualifications. While our qualifications are clearly related to role success, each candidates profile is unique and strengths in certain skill and/or experience areas can be equally effective. If you believe you have many, but not necessarily all, of the stated qualifications we encourage you to apply. Information submitted with your application is subject to theFICO Privacy policy at

locationsBangalore, Indiaposted onPosted 14 Days Ago job requisition id30672 FICO (NYSEFICO) is a leading global analytics software company, helping businesses in 100+ countries make better decisions. Join our world-class team today and fulfill your career potential! The Opportunity We are seeking a skilled and proactive Cybersecurity Engineer/Analyst to join our Product Security Testing Team. This team helps ensure that our products and clients are protected and maintain trust in our security processes. We protect the FICO brand and our products by engaging with development teams at every step of the product development lifecycle. We assess and influence product design, analyze applications for flaws that may lead to security issues, and provide security testing to help ensure our products are secure. We seek candidates who are focused on delivery, prioritize data-driven decisions over opinions, are continuous learners, passionate about information security and love their work. This role focuses on validating secure coding practices, conduct and coordinate security testing/pen testing .- Sr Manager, Cyber Security What You'll Contribute Collaborate with engineers, consultants and leadership to identify security risks and recommend mitigations within the Secure Development Lifecycle (SDLC). Perform activities such as secure code reviews, security testing and vulnerability triage across various applications. Regularly interact with internal and external customers on security-related projects and operational tasks. Develop understanding of business functionality and apply testing methodology as appropriate to technologies and risks. Analyse test results, draw conclusions from results, and develop targeted exploit examples. Clearly and professionally document root cause and risk analysis of findings. Consult with operations and software development teams to help ensure potential weaknesses are tracked and addressed. Collaborate with other teams to improve the overall security posture of applications/infrastructure. Stay current on security best practices, vulnerabilities, and attacker tactics, techniques, and procedures. Develop and test effective functional security testing strategies for new/emerging product security requirements. Suggest improvements to existing processes/tooling; ideate and implement automation where possible. What We're Seeking Bachelor's degree in computer science, Cybersecurity, or a related field. Relevant cyber security certifications (e.g., CEH, CCSP, CISSP, OSCP etc) are highly desirable. Proven experience of at least 3 years in a similar role within Cybersecurity. Strong understanding of AWS infrastructure and cloud security principles. In-depth knowledge of cybersecurity principles, methodologies, frameworks and best practices. (OSI, NIST, OWASP, SANS, PCI etc) Knowledge of secure coding principles and experience with code review processes and tools. Experience with Pen testing, infrastructure as a code scan reviews and dynamic application security testing (DAST) methodologies and tools. Knowledge and experience in CI/CD, shift left security. Strong analytical and problem-solving skills with a keen attention to detail. Strong written and oral communication skills with the ability to convey complex security concepts to non-technical stakeholders. Strong organizational and interpersonal skills. Our Offer to You An inclusive culture strongly reflecting our core valuesAct Like an Owner, Delight Our Customers and Earn the Respect of Others. The opportunity to make an impact and develop professionally by leveraging your unique strengths and participating in valuable learning experiences. Highly competitive compensation, benefits and rewards programs that encourage you to bring your best every day and be recognized for doing so. An engaging, people-first work environment offering work/life balance, employee resource groups, and social events to promote interaction and camaraderie. Why Make a Move to FICO At FICO, you can develop your career with a leading organization in one of the fastest-growing fields in technology today Big Data analytics. Youll play a part in our commitment to help businesses use data to improve every choice they make, using advances in artificial intelligence, machine learning, optimization, and much more. FICO makes a real difference in the way businesses operate worldwide Credit Scoring FICO Scores are used by 90 of the top 100 US lenders. Fraud Detection and Security 4 billion payment cards globally are protected by FICO fraud systems. Lending 3/4 of US mortgages are approved using the FICO Score. Global trends toward digital transformation have created tremendous demand for FICOs solutions, placing us among the worlds top 100 software companies by revenue. We help many of the worlds largest banks, insurers, retailers, telecommunications providers and other firms reach a new level of success. Our success is dependent on really talented people just like you who thrive on the collaboration and innovation thats nurtured by a diverse and inclusive environment. Well provide the support you need, while ensuring you have the freedom to develop your skills and grow your career. Join FICO and help change the way business thinks! Learn more about how you can fulfil your potential at FICO promotes a culture of inclusion and seeks to attract a diverse set of candidates for each job opportunity. We are an equal employment opportunity employer and were proud to offer employment and advancement opportunities to all candidates without regard to race, color, ancestry, religion, sex, national origin, pregnancy, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. Research has shown that women and candidates from underrepresented communities may not apply for an opportunity if they dont meet all stated qualifications. While our qualifications are clearly related to role success, each candidates profile is unique and strengths in certain skill and/or experience areas can be equally effective. If you believe you have many, but not necessarily all, of the stated qualifications we encourage you to apply. Information submitted with your application is subject to theFICO Privacy policy at

locationsBangalore, Indiaposted onPosted 11 Days Ago job requisition id30648 FICO (NYSEFICO) is a leading global analytics software company, helping businesses in 100+ countries make better decisions. Join our world-class team today and fulfill your career potential! The Opportunity FICO is seeking Cyber Security Engineer to join our growing GRC Team. This is a full-time regular position (hybrid), and a great opportunity for an individual with strong PCI, ISO 27001, SOC2 audit skills or great interest in security Compliance and Risk Management frameworks and grow in exciting field of GRC". Cyber Security - Director What Youll Contribute A pplicable work experience, in performing and running audits, certification programs and control assessments, including but not limited to scope planning, defining control procedures based on requirements, policies and standards, control testing, mapping issues to risks and socializing results. Coordinate audit-related tasks to ensure the readiness of managers and their teams for audit testing and facilitate the timely resolution of any audit findings. Strong knowledge of common security legal and regulatory requirements. (e.g., PCI, SOC, CSA STAR, NIST, ISO/IEC 27001, COBIT, etc.) Work on compliance initiatives to ensure operational effectiveness with applicable laws and regulations, as well as internal policies and procedures. Monitor activities of assigned IT areas to ensure compliance with internal policies and standards. Assist Corporate Compliance and the Business with all required compliance/security-related documentation. Facilitate for external audits to ensure compliance with all industry-mandated regulations. Participate in the development and implementation of new business initiatives to ensure functionality required to support compliance. Provide guidance to business functions on compliance/security-related matters. Good understanding of IT concepts, including Cloud hosting, containerization, encryption, networking, operating systems, databases, middleware, and applications. Knowledge of or experience working with, Cloud technologies/environments, AWS or other related cloud experience is required. Ability to effectively communicate to all levels of the organization, including senior management, and other stakeholders that influence the security and compliance posture of FICO. Ability to assess the nature of controls and identify automation opportunities for increased monitoring and scaling coverage. What Were Seeking Bachelors degree in the field of Information Security, Computer Science or discipline and/or certifications. (e.g., ISO 27001 LI/LA, ISA/QSA, CISSP, CISA, CISM, and related GIAC.) Demonstrated ability to apply IT-related knowledge and experience in solving compliance issues. Experience implementing cloud security and compliance standards, frameworks, and controls (ISO/IEC 27001, SOC 2, PCI, NIST) for cloud service delivery models (IaaS, PaaS, SaaS). AWS Certifications (added advantage). Experience or understanding of governance, risk and compliance (GRC) processes and solutions. Background in security controls, auditing, network and system security. Ability to express technical concepts in business terms. Able to work well under deadlines in a changing environment and complete multiple projects effectively and concurrently. Evaluate effectiveness of the internal security control framework and recommend adjustments as business needs change. Regularly interact with all levels of management to present and discuss audit results and obtain gap remediation status. Our Offer to You An inclusive culture strongly reflectingourcore valuesAct Like an Owner, DelightOurCustomers and Earn the Respect of Others. The opportunitytomake an impact and develop professionally by leveraging yourunique strengths and participating in valuable learning experiences. Highly competitive compensation, benefits and rewards programs that encourageyoutobring yourbest every day and be recognized for doing so. An engaging, people-first work environmentoffering work/life balance, employee resource groups, and social eventstopromote interaction and camaraderie. Why Make a Move to FICO At FICO, you can develop your career with a leading organization in one of the fastest-growing fields in technology today Big Data analytics. Youll play a part in our commitment to help businesses use data to improve every choice they make, using advances in artificial intelligence, machine learning, optimization, and much more. FICO makes a real difference in the way businesses operate worldwide Credit Scoring FICO Scores are used by 90 of the top 100 US lenders. Fraud Detection and Security 4 billion payment cards globally are protected by FICO fraud systems. Lending 3/4 of US mortgages are approved using the FICO Score. Global trends toward digital transformation have created tremendous demand for FICOs solutions, placing us among the worlds top 100 software companies by revenue. We help many of the worlds largest banks, insurers, retailers, telecommunications providers and other firms reach a new level of success. Our success is dependent on really talented people just like you who thrive on the collaboration and innovation thats nurtured by a diverse and inclusive environment. Well provide the support you need, while ensuring you have the freedom to develop your skills and grow your career. Join FICO and help change the way business thinks! Learn more about how you can fulfil your potential at FICO promotes a culture of inclusion and seeks to attract a diverse set of candidates for each job opportunity. We are an equal employment opportunity employer and were proud to offer employment and advancement opportunities to all candidates without regard to race, color, ancestry, religion, sex, national origin, pregnancy, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. Research has shown that women and candidates from underrepresented communities may not apply for an opportunity if they dont meet all stated qualifications. While our qualifications are clearly related to role success, each candidates profile is unique and strengths in certain skill and/or experience areas can be equally effective. If you believe you have many, but not necessarily all, of the stated qualifications we encourage you to apply. Information submitted with your application is subject to theFICO Privacy policy at

>> JOB DESCRIPTION ROLE & RESPONSIBILTY: • Conduct thorough and detailed cyber risk assessments for our clients, analyzing their digital infrastructure, systems, and security controls. • Collaborate with cross-functional teams to gather essential information and data required for comprehensive risk assessments. • Evaluate and interpret assessment results to identify potential vulnerabilities and risks, and provide actionable recommendations for risk mitigation. • Stay up-to-date with the latest cyber threats, attack vectors, and industry best practices to enhance the effectiveness of risk assessments. • Prepare and deliver clear and concise reports summarizing the findings of risk assessments to clients and internal stakeholders. • Provide expert advice and consultancy to clients, guiding them in implementing robust cybersecurity risk management strategies. • Mentor and support junior team members to foster their professional growth and skills in cyber risk assessments. REQUIREMENTS: • Bachelor's or Master's degree in Computer Science, Cybersecurity, Information Technology, or related fields. • A minimum of 5+ years of hands-on experience in conducting cyber risk assessments and related security assessments. • Industry certifications such as CISSP, CCSP, CISA, CISM, CRISC, ISO/IEC:27001/22301/20000 LI/LA or equivalent are highly valued. • Profound knowledge of cybersecurity frameworks, industry standards, and best practices. • Proficiency in using various security assessment and techniques. • Strong analytical and problem-solving skills, with the ability to think critically and strategically. • Excellent communication and presentation skills, capable of effectively communicating technical concepts to both technical and non-technical audiences. • Demonstrated experience in project management and handling multiple assessments simultaneously. • A proactive and self-motivated approach to work, with a commitment to continuous learning and professional development. • Network Security, infrastructure assessment and network architecture design review. • Conceptual knowledge of OT Security/ISA 62443 standard is preferable.

About Us: Birlasoft, a global leader at the forefront of Cloud, AI, and Digital technologies, seamlessly blends domain expertise with enterprise solutions. The company’s consultative and design-thinking approach empowers societies worldwide, enhancing the efficiency and productivity of businesses. As part of the multibillion-dollar diversified CKA Birla Group, Birlasoft with its 12,000+ professionals, is committed to continuing the Group’s 170-year heritage of building sustainable communities. Job Title : Advanced Threat Management, Security Design, and Implementation Architec tJob Summary : We are seeking a highly experienced Advanced Threat Management, Security Design, and Implementation Architect to lead our efforts in developing and deploying cutting-edge security solutions. The successful candidate will have deep expertise in advanced threat management, security architecture, and the implementation of robust security frameworks to protect an organization's critical assets .Key Responsibilities :Design and implement advanced threat management strategies to identify, mitigate, and respond to security threats .Develop and maintain comprehensive security architectures that align with business goals and regulatory requirements .Lead security design initiatives for new and existing systems, ensuring robust protection against cyber threats .Oversee the implementation of security controls, policies, and procedures across the organization .In-depth knowledge of XDR Technology, SIEM, SOAR, SOC Architecture, Infrastructure and Data Security, Advisory and GRC Processes .Outstanding problem-solving skills and a strategic, analytical mindset, and be able to decipher the complex cybersecurity landscapes .Conduct strategies for vulnerability management and lead initiatives around effective VM in the organization .Collaborate with cross-functional teams to integrate security into the software development lifecycle (SDLC) .Provide expert guidance on the latest security trends, tools, and technologies to enhance the organization’s security posture .Develop and deliver training programs to educate employees on security best practices and threat management .Ensure compliance with industry standards, regulations, and frameworks (e.g., NIST, ISO 27001) .Professionalism, integrity, and a commitment to maintaining the highest ethical standards in conducting professional responsibilitie s Required Qualification s:Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related fiel d.10+ years of experience in advanced threat management, security design, and implementatio n.Proven expertise in developing and implementing security architectures and framework s.Strong understanding of security assessment methodologies, vulnerability analysis, and penetration testin g.Experience with security tools such as SIEM, SOAR, EDR, VM, Unified VM, ZTNA, IDS/IPS, firewalls, and endpoint protection, EASM, Deep/ Dark Web and Brand Protectio n.Excellent problem-solving skills and attention to detai l.Strong communication and leadership skill s.Experience with cloud security and securing hybrid environment s. Preferred Qualificatio ns:Master’s degree in Information Security or a related fie ld.Preferred certification in multiple SIEM and SOAR solution implementation (MS Sentinel, Splunk, Phantom, Swimlane, QRAD AR)Relevant certifications such as CISSP, CISM, CEH, or OS CP. Show more Show less

About Us: Birlasoft, a global leader at the forefront of Cloud, AI, and Digital technologies, seamlessly blends domain expertise with enterprise solutions. The company’s consultative and design-thinking approach empowers societies worldwide, enhancing the efficiency and productivity of businesses. As part of the multibillion-dollar diversified CKA Birla Group, Birlasoft with its 12,000+ professionals, is committed to continuing the Group’s 170-year heritage of building sustainable communities. Job Titl e: SME - CyberAr kJob Descriptio n: We are looking for an experienced and dedicated CyberArk Architect to design, implement, and manage comprehensive CyberArk solutions. The successful candidate will be responsible for the end-to-end deployment of CyberArk Privileged Access Management (PAM) solutions, ensuring secure and efficient management of privileged accounts and access .Key Responsibilitie s :Lead the design and architecture of CyberArk PAM solutions, ensuring alignment with business and security requirements .Plan and execute the end-to-end implementation of CyberArk solutions, including installation, configuration, and integration with existing systems .Develop and maintain CyberArk policies, procedures, and best practices .Conduct risk assessments and security audits to identify potential vulnerabilities and recommend mitigation strategies .Collaborate with cross-functional teams, including IT, security, and compliance, to ensure successful deployment and integration of CyberArk solutions .Provide technical leadership and guidance to junior team members and stakeholders .Monitor and maintain the health and performance of the CyberArk environment, ensuring optimal functionality and security .Stay current with the latest CyberArk technologies, features, and industry trends, and provide recommendations for continuous improvement .Qualification s :Bachelor's degree in Computer Science, Information Security, or a related field. Master's degree preferred .Minimum of 10+ years of experience in cybersecurity, with a focus on Privileged Access Management (PAM) solutions .Proven experience in designing, implementing, and managing CyberArk solutions from scratch .Strong knowledge of CyberArk components, including the Enterprise Password Vault (EPV), Central Policy Manager (CPM), Privileged Session Manager (PSM), and more .Experience with security frameworks and standards such as NIST, ISO 27001, and CIS Controls .Proficiency in scripting and automation using tools such as PowerShell, Python, or similar .Excellent problem-solving skills and the ability to think strategically about security challenges .Strong communication and interpersonal skills, with the ability to work effectively with diverse teams and stakeholders .Certified in CyberArk Guardian/Sentr y Show more Show less

Opening from Default - All locations The Company Serving the People Who Serve the People Granicus is driven by the excitement of building, implementing, and maintaining technology that is transforming the Govtech industry by bringing governments and their constituents together. We are on a mission to support our customers by meeting the needs of their communities and implementing our technology in ways that are equitable and inclusive. Granicus has consistently appeared on the GovTech 100 list over the past 5 years and has been recognized as the best companies to work on BuiltIn. Over the last 25 years, we have served 5,500 federal, state, and local government agencies and more than 300 million citizen subscribers powering an unmatched Subscriber Network that uses our digital solutions to make the world a better place. With comprehensive cloud-based solutions for communications, government website design, meeting and agenda management software, records management, and digital services, Granicus empowers stronger relationships between government and residents across the U.S., U.K., Australia, New Zealand, and Canada. By simplifying interactions with residents, while disseminating critical information, Granicus brings governments closer to the people they serve—driving meaningful change for communities around the globe. Want to know more? See more of what we do here. What You'll Do: Follow infrastructure team processes and actively seek to improve them, especially as it relates to implementing automation of repeatable tasks Identify and fix problem areas in Windows servers that run Granicus products Execute quality changes and perform code and change request reviews As part of an on-call team, triage and troubleshoot efficiently and effectively during production incidents Ensure system resources and assets are logged and monitored along with appropriate actions for events Analyze log files and other infrastructure data using available tools Develop documentation to empower other team members and accurately represent projects and procedures Plan for and install new software/firmware releases and hardware/software upgrades to meet security and supportability requirements Who You Are: You have 3+ years of experience supporting Windows servers in a data center or cloud environment You have experience with MS Active Directory configuration and management You have specific technical experience with: regular patching of infrastructure hardware and software systems certificates and certificate management Scripting / automation (e.g., Bash, Python, Ansible, Terraform, Git, PowerShell) Linux or any other Patching experience is a huge plus You have an understanding of security frameworks such as ISO 27001, NIST 800-53 and/or FedRAMP You have worked in a large enterprise environment, providing Windows support You are passionate about technology and keep abreast of technical developments in your field You have the ability to adapt to a changing environment Specific System|Network Experience: The ideal candidate has some level of experience with the following infrastructure|network technologies (bonus if your experience matches the specific products at Granicus in parenthesis): Windows Server OS Windows Active Directory System monitoring tools (LogicMonitor, LogRhythm, Elastic) DNS and IP Management (Infoblox) Cloud computing (AWS, Azure) Security and Privacy Requirements Responsible for Granicus information security by appropriately preserving the Confidentiality, Integrity, and Availability (CIA) of Granicus information assets in accordance with the company's information security program. Responsible for ensuring the data privacy of our employees and customers, their data, as well as taking all required privacy training in a timely manner, in accordance with company policies. Closing from Default - All locations Don’t have all the skills/experience mentioned above? At Granicus, we are trying to build diverse, inclusive teams. We do not have degree requirements for most of our roles. If you don’t meet every requirement above but are excited to learn more, we encourage you to apply. We might just be able to find another role that could be a perfect fit! Security and Privacy Requirements - Responsible for Granicus information security by appropriately preserving the Confidentiality, Integrity, and Availability (CIA) of Granicus information assets in accordance with the company's information security program. - Responsible for ensuring the data privacy of our employees and customers, their data, as well as taking all required privacy training in a timely manner, in accordance with company policies. The Team - We are a remote-first company with a globally distributed workforce across the United States, Canada, United Kingdom, India, Armenia, Australia, and New Zealand. The Culture - At Granicus, we are building a transparent, inclusive, and safe space for everyone who wants to be a part of our journey. - A few culture highlights include – Employee Resource Groups to encourage diverse voices - Coffee with Mark sessions – Our employees get to interact with our CEO on very important and sometimes difficult issues ranging from mental health to work-life balance and current affairs. - Microsoft Teams communities focused on wellness, art, furbabies, family, parenting, and more.-=- - We bring in special guests from time to time to discuss issues that impact our employee population The Impact - We are proud to serve dynamic organizations around the globe that use our digital solutions to make the world a better place — quite literally. We have so many powerful success stories that illustrate how our solutions are impacting the world. See more of our impact here. Granicus is committed to providing equal employment opportunities. All qualified applicants and employees will be considered for employment and advancement without regard to race, color, religion, creed, national origin, ancestry, sex, gender, gender identity, gender expression, physical or mental disability, age, genetic information, sexual or affectional orientation, marital status, status regarding public assistance, familial status, military or veteran status or any other status protected by applicable law. Show more Show less

Job Description Who we are looking for - Alpha Platform is looking for an experienced risk professional to join their Business Risk Management (BRM) team. A candidate for this position is expected to work in a fast-paced environment akin to a commercial software company in order to meet the expectations of this rapidly growing business. Risk management skills, especially those acquired at G-SIFI organizations and/or large public accounting firms, balanced with technology and data skills will contribute to a candidate’s success in this position. This is a full-time position located at our Burlington, Massachusetts office. Why this role is important to us - Effective risk management is a top priority for a G-SIFI organization. As a member of the BRM team you will assist in the execution of a risk management program aimed at governing, overseeing and managing risks, in support of the firm’s risk excellence goals. What You Will Be Responsible For - Identify and assess risks and controls within business and technology processes Test design and operating effectiveness of controls as part of periodic required process and control reviews Self-identify, and assist the business in self-identifying, control issues, analyze their root causes, draft / assist in drafting appropriate and timely remediation plans, and continuously monitor remediation progress Advise the business on risks and control design, adopting a partnership approach, especially during introduction of new technology and business processes Assist with the execution of key business risk programs, including regular risk reviews, risk reporting, oversight and governance activities (including issue and incident management), and monitoring control performance Assist with the preparation and coordination of outside reviews, including audit events and/or regulatory examinations Escalate any perceived violations of rules, regulations, policies, procedures and recommend a course of action What We Value - Ability to effectively prioritize multiple tasks and work independently in non-routine situations Willingness to learn new technologies and processes Strong analytical, interpersonal, organizational, research, and communication (verbal and written) skills Good understanding of the role of first, second and third line of defense Strong influencing, collaboration, and project management skills Critical thinking and intellectual curiosity Initiative, ownership and energetic Excellent analytical skills Self-motivation, self-assurance and self-management Excellent team player and treating others with respect Education & Preferred Qualifications - University degree in information systems, computer science, or related field Proficiency in IT and risk management Knowledge of industry Risk and Control frameworks (COSO, COBIT, NIST, ISO, etc.) Experience with Microsoft Tools, Archer platform, Open Pages, Tableau, SharePoint Technical certifications preferred e.g. CISA, CISM, CRISC, CISSP Who We Are - Alpha Platform builds and operates technology platforms and harmonizes data for use across the end-to-end investment management cycle so clients can overcome silos, work smarter and stay in sync. The Alpha Platform organization includes Alpha Data Platform, Charles River Development, Mercatus, Commercialization, and Platform Management. We are part of State Street, a Global Systemic Important Financial Institution (G-SIFI), who is one of the largest custodian banks, asset managers and asset intelligence companies in the world. From technology to product innovation, we’re making our mark in the financial services industry. For more than two centuries, we’ve been helping our clients safeguard and steward the investments of millions of people. We provide investment servicing, data & analytics, investment research & trading and investment management to institutional clients. We make all efforts to create a great work environment. Our benefits packages are competitive and comprehensive. Details vary in location, but you may expect generous medical care, insurance and savings plans among other perks. You’ll have access to flexible Work Program to help you match your needs. And our wealth of development programs and educational support will help you reach your full potential. We truly believe our employees’ diverse backgrounds, experiences and perspective are a powerful contributor to creating an inclusive environment where everyone can thrive and reach their maximum potential while adding value to both our organization and our clients. We warmly welcome candidates of diverse origin, background, ability, age, sexual orientation, gender identity and personality. Another fundamental value at State Street is active engagement with our communities around the world, both as a partner and a leader. You will have tools to help balance your professional and personal life, paid volunteer days, matching gift programs and access to employee networks that help you stay connected to what matters to you. State Street is an equal opportunity and affirmative action employer. Interested in learning more about us? Visit our www.statestreet.com www.ssga.com www.crd.com LinkedIn page: State Street on LinkedIn Job ID: R-772428 Show more Show less

Who We Are Looking For - Alpha Platform is looking for an experienced risk professional to join their Business Risk Management (BRM) team. A candidate for this position is expected to work in a fast-paced environment akin to a commercial software company in order to meet the expectations of this rapidly growing business. Risk management skills, especially those acquired at G-SIFI organizations and/or large public accounting firms, balanced with technology and data skills will contribute to a candidate’s success in this position. This is a full-time position located at our Burlington, Massachusetts office. Why this role is important to us - Effective risk management is a top priority for a G-SIFI organization. As a member of the BRM team you will assist in the execution of a risk management program aimed at governing, overseeing and managing risks, in support of the firm’s risk excellence goals. What You Will Be Responsible For - Identify and assess risks and controls within business and technology processes Test design and operating effectiveness of controls as part of periodic required process and control reviews Self-identify, and assist the business in self-identifying, control issues, analyze their root causes, draft / assist in drafting appropriate and timely remediation plans, and continuously monitor remediation progress Advise the business on risks and control design, adopting a partnership approach, especially during introduction of new technology and business processes Assist with the execution of key business risk programs, including regular risk reviews, risk reporting, oversight and governance activities (including issue and incident management), and monitoring control performance Assist with the preparation and coordination of outside reviews, including audit events and/or regulatory examinations Escalate any perceived violations of rules, regulations, policies, procedures and recommend a course of action What We Value - Ability to effectively prioritize multiple tasks and work independently in non-routine situations Willingness to learn new technologies and processes Strong analytical, interpersonal, organizational, research, and communication (verbal and written) skills Good understanding of the role of first, second and third line of defense Strong influencing, collaboration, and project management skills Critical thinking and intellectual curiosity Initiative, ownership and energetic Excellent analytical skills Self-motivation, self-assurance and self-management Excellent team player and treating others with respect Education & Preferred Qualifications - University degree in information systems, computer science, or related field Proficiency in IT and risk management Knowledge of industry Risk and Control frameworks (COSO, COBIT, NIST, ISO, etc.) Experience with Microsoft Tools, Archer platform, Open Pages, Tableau, SharePoint Technical certifications preferred e.g. CISA, CISM, CRISC, CISSP Who We Are - Alpha Platform builds and operates technology platforms and harmonizes data for use across the end-to-end investment management cycle so clients can overcome silos, work smarter and stay in sync. The Alpha Platform organization includes Alpha Data Platform, Charles River Development, Mercatus, Commercialization, and Platform Management. We are part of State Street, a Global Systemic Important Financial Institution (G-SIFI), who is one of the largest custodian banks, asset managers and asset intelligence companies in the world. From technology to product innovation, we’re making our mark in the financial services industry. For more than two centuries, we’ve been helping our clients safeguard and steward the investments of millions of people. We provide investment servicing, data & analytics, investment research & trading and investment management to institutional clients. We make all efforts to create a great work environment. Our benefits packages are competitive and comprehensive. Details vary in location, but you may expect generous medical care, insurance and savings plans among other perks. You’ll have access to flexible Work Program to help you match your needs. And our wealth of development programs and educational support will help you reach your full potential. We truly believe our employees’ diverse backgrounds, experiences and perspective are a powerful contributor to creating an inclusive environment where everyone can thrive and reach their maximum potential while adding value to both our organization and our clients. We warmly welcome candidates of diverse origin, background, ability, age, sexual orientation, gender identity and personality. Another fundamental value at State Street is active engagement with our communities around the world, both as a partner and a leader. You will have tools to help balance your professional and personal life, paid volunteer days, matching gift programs and access to employee networks that help you stay connected to what matters to you. State Street is an equal opportunity and affirmative action employer. Interested in learning more about us? Visit our www.statestreet.com www.ssga.com www.crd.com LinkedIn page: State Street on LinkedIn Job ID: R-772423 Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. GDS SaT – EYP IDD IT – Cyber - Manager – India Competitive business today is all about making intelligent, informed decisions. As a Manager within EY GDS SaT you will help make that happen. You will be an important part of our diversely talented, highly experienced Cyber team and work at the forefront of high-profile transactions. The cyber team is part of the Integrated due diligence (IDD) team which is a competency within SaT EYP. GDS EYP IDD has a market-leading proposition to create and maximize value for our clients, whether they are acquiring or divesting assets, or undertaking operational restructuring. The opportunity Cyber team of EYP IDD competency works on the most complex and high-profile global transactions, across a broad portfolio of clients and industry sectors. We are a group of experienced cyber professionals bringing deep sector and functional knowledge to our clients. As a team, we provide variety of cyber services to our clients helping them with during the transaction life cycle i.e. Predeal, sign to close and post deal stages of any transaction. We offer services like Cyber due diligence, Cyber security (Maturity) assessment, Cyber Red flag assessment, Cyber PMO support for Buy & Integrate / Sell & Separate projects, Target operating model (ToM), etc. We prepare and execute separation and integration plans, identify ideas and sources of value enhancement, as well as advise on risk mitigation. Your Key Responsibilities As a Manager of Integrated due diligence function, you will be a vital member of the team supporting global EY practice teams to sell, manage and execute Cybersecurity focused projects. Lead client conversations and meetings, guide and mentor junior team members, understand the business requirements in transactions space and develop new cyber services to support the growth of cyber team. Part of your role will also involve developing experience across a range of different type of engagements, including pre-deal (e.g. Cyber due diligence, remediation cost estimates, Security spend benchmarking) and post-deal (e.g. integration / separation planning, Day 1 readiness, TSA support, project tracking etc). Having a commercial mind-set is key to this consulting-based role. Conduct security assessments, identify gaps and red flags assessing client’s on prem / cloud hosted applications, data and infrastructure Conduct research on deep and dark web using various open-source intelligence (OSINT) tools to reveal potential data breaches, provide recommendations and roadmap to mitigate the security gaps. Develop assessment reports, target operating models, target state security strategy, security roadmaps, data privacy and protection assessment reports, Day one readiness plans, 100 days plan, benchmarking analysis from security costing perspectives. You will be exclusively focused on supporting transactions from a Cybersecurity perspective pre and post deal working primarily with Private Equity and Corporate clients executing deal mandates. You will be a vital member of the team advising clients across all industries and sectors. Supporting key decision makers in developing and executing strategies for transactions. You will work in a transaction environment operating under tight M&A timeframes and demands. Develop strong relationships with regional EYP practice teams and establish yourself as a trusted point of contact. You will also assist in aspects of business origination, including pitches and presentations, and attending meetings with clients to generate new business opportunities. Demonstrate strong knowledge in the Information and Cyber security and Data privacy area. Should be able to translate Cyber and data privacy risks in business language for business leaders at client side. Experience on strategic consulting engagements developing detailed, compelling and analytical PowerPoint/Word/Excel/Visio deliverables to convey complex thoughts and ideas. Skills And Attributes For Success Experience in a range of different type of engagements, including pre-deal (e.g. operational Cyber due diligence, carve-out planning), post-deal (e.g. integration planning, tracking) and restructuring (e.g. rapid cost reduction). Lead work-streams comprising members of the client and colleagues from our transactions and advisory practices. Lead meetings with senior client stakeholders to advise, shape and drive the strategy and planning for pre-deal diligence, integration, carve-out / separation and operational restructuring. Contribute to our practice development initiatives, supporting the continued focus on our team as a great place to work. Have innovative mindset to think out of the box for development of new services as per client needs Act as a role model and support development of junior team members, coupled with the recruitment and training responsibilities. Be flexible to support for broader IT, Cyber & Operational transaction work. Willingness to undertake international travel as per business requirement To qualify for the role, you must have 10-14 years with technical experience in information and cybersecurity management, security testing, privacy and data protection, IT Audits etc B Tech / M. Tech. / MCA/MBA /PGDM (part time / full time) from a reputed institute with a technology background. Excellent presentation and analytical skills to produce quality presentations for client executives. A leading cybersecurity qualification, such as CISSP, CISA, CCSP, CISM or ISO 27001 ISMS. Well versed with cybersecurity and privacy requirements as defined in GDPR & CCPA. Practical exposure to security framework and standards such as PCI, NIST & CIS, ISO 27001. Good understanding about cloud security risks and controls. Hands-on experience with internal/external security audits assessment and readiness around SOC 1, SOC 2 or SOX controls. In-depth knowledge on various security platforms and technologies such as DLP, Firewalls, Vulnerability Scanning, Penetration Testing & Security Incident Response. Ideally, you’ll also have Project management skills Strong communication and presentation skills with proven experience of producing high quality reports, papers, presentations and thought leadership Program and project management expertise with demonstrable experience in managing and being responsible for the delivery of successful cyber programs What We Offer EY Global Delivery Services (GDS) is a dynamic and truly global delivery network. We work across six locations – Argentina, China, India, the Philippines, Poland and the UK – and with teams from all EY service lines, geographies and sectors, playing a vital role in the delivery of the EY growth strategy. From accountants to coders to advisory consultants, we offer a wide variety of fulfilling career opportunities that span all business disciplines. In GDS, you will collaborate with EY teams on exciting projects and work with well-known brands from across the globe. We’ll introduce you to an ever-expanding ecosystem of people, learning, skills and insights that will stay with you throughout your career. Continuous learning: You’ll develop the mindset and skills to navigate whatever comes next. Success as defined by you: We’ll provide the tools and flexibility, so you can make a meaningful impact, your way. Transformative leadership: We’ll give you the insights, coaching and confidence to be the leader the world needs. Diverse and inclusive culture: You’ll be embraced for who you are and empowered to use your voice to help others find theirs. EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

Inviting Applications Academic Counsellor for the Admission Office at NIST University, Odisha Responsibilities: • Provide timely responses to inquiries and guide students through the admission process. • Counsel prospective students and their parents on academic programs, scholarships, and career opportunities. • Maintain and update prospective student data in the CRM system. • Guide students through the application and admission process, ensuring compliance with university policies. • Prepare weekly and monthly reports on admission activities and student conversions. Essential Qualifications: • Bachelor's or Master's degree in any discipline (preferably in Marketing, Business Administration, or a related field). • Strong communication and interpersonal skills. • Proficiency in MS Office, Excel, CRM Tool, and basic data handling. • Prior experience in admissions, sales, or customer service will be an advantage. Application Link: https://forms.gle/TEfaJVBMbQZcVUrYA Please submit your application/resume via email at: career@nist.edu latest by 10th June 2025. Show more Show less