3659 Nist Jobs - Page 6

Hi, We are having an opening for Network Security Operations Manager at our Mumbai location. Job Summary : We are looking for a highly capable Network Security Operations Manager to lead, manage, and enhance the organizations network security infrastructure and operations. This role will be responsible for managing key security technologies such as firewalls, proxies, VPNs, NAC, DNS security, WAF , EDR & Data Security and ensuring operational governance and compliance. The ideal candidate should have hands-on experience managing large-scale network security operations and coordinating with cross-functional and incident response teams. Areas Of Responsibility : Security Operations Management Lead day-to-day operations of all network security tools and platforms , including: Firewalls (NGFW Palo Alto, Fortinet, Cisco)- Policy governance, segmentation, and high-availability Web Proxy & Cloud Proxy (e.g., Zscaler, Netskope)- URL filtering, threat prevention, and data leak protection VPN (IPSec, SSL VPN, Remote Access Solutions)- Strong encryption and access control for workforce and partner Network Access Control (NAC)- Role-based access, posture checks, and OT/IoT security DNS Security & Filtering- DNS-layer protection, malicious domain filtering, and response management Web Application Firewall (WAF) On-prem & Cloud-based- Protection of patient data, portals, financial apps, and APIs Ensure continuous monitoring, tuning, and updating of policies and signatures across platforms. Manage security device configurations, rule optimization, and lifecycle management. Compliance, Audit & Governance Ensure adherence to security compliance requirements such as ISO 27001, NIST, GDPR, and internal IT security policies . Ensure full compliance with sector-specific regulations ( Pharma: GxP, 21 CFR Part 11, HIPAA) Prepare and present periodic audit reports, incident reports, and configuration review summaries . Drive risk assessments and remediation plans for security operations. Maintain security documentation, SOPs, and audit trails Team & Vendor Management Lead and mentor a team of network security engineers and analysts. Oversee vendor engagements, support contracts, SLAs, and AMC renewals for security technologies. Engage with audit, QA, compliance, and legal teams for incident reporting and regulatory inspections Coordinate with for integrated security coverage (EDR/DS, if escalation/overlap arises). Incident Response & Troubleshooting Collaborate with SOC for effective investigation and response to network security incidents . Coordinate the response to security incidents, including detection, analysis, containment, eradication, and recovery. Lead root cause analysis and containment for network-based threats (e.g., suspicious VPN activity, firewall rule violations). Manage escalations and coordinate with external vendors or OEMs for critical issues. Projects & Improvements Drive security hardening and optimization projects related to network security tools. Lead or support security hardening, firewall rule optimization, and proxy architecture redesign projects Lead or contribute to technology upgrades, migration projects, mergers, acquisitions, data center shifts. Maintain security documentation, playbooks, and standard operating procedures. Prepare and validate BOM, BOQ, and risk registers for new deployments Educational Qualification : Bachelor's or Masters in Computer Science, Information Security, or related field Specific Certification : CISSP, CISM, CCNP Security, CP, Palo Alto PCNSE, Fortinet NSE, ISO 27001 LA Experience : 10-12 years of experience in network operations, with 3-5 years in leadership or managerial role Skill (Functional & Behavioural): Firewalls: Checkpoint, Fortinet, Palo Alto, Cisco Firepower Proxies: Netskope, Forcepoint, Zscaler VPN: Cloudflare, Cisco AnyConnect, FortiClient, GlobalProtect NAC: Forescout, Cisco ISE, Aruba ClearPass DNS Security: Cisco Umbrella, Infoblox, Cloudflare DNS WAF: AWS/Azure WAF, F5, Imperva, Akamai, Cloudflare EDR & DS: Crowdstrike, Falcon, Trellix, MS Defender, Sentinel, etc

Line of Service Advisory Industry/Sector FS X-Sector Specialism Risk Management Level Specialist Job Description & Summary A career within Cybersecurity and Privacy services, will provide you with the opportunity to help our clients implement an effective cybersecurity programme that protects against threats, propels transformation, and drives growth. As companies pivot toward a digital business model, exponentially more data is generated and shared among organisations, partners and customers. We play an integral role in helping our clients ensure they are protected by developing transformation strategies focused on security, efficiently integrate and manage new or existing technology systems to deliver continuous operational improvements and increase their cybersecurity investment, and detect, respond, and remediate threats. Why PWC At PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes for our clients and communities. This purpose-led and values-driven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences for each other. Learn more about us. At PwC, we believe in providing equal employment opportunities, without any discrimination on the grounds of gender, ethnic background, age, disability, marital status, sexual orientation, pregnancy, gender identity or expression, religion or other beliefs, perceived differences and status protected by law. We strive to create an environment where each one of our people can bring their true selves and contribute to their personal growth and the firm’s growth. To enable this, we have zero tolerance for any discrimination and harassment based on the above considerations. " Job Description & Summary: We are seeking a professional to join our Cybersecurity and Privacy services team, where you will have the opportunity to help clients implement effective cybersecurity programs that protect against threats, drive transformation, and foster growth. As companies increasingly adopt digital business models, the generation and sharing of data among organizations, partners, and customers multiply. We play a crucial role in ensuring that our clients are protected by developing transformation strategies focused on security, efficiently integrating and managing new or existing technology systems, and enhancing their cybersecurity investments. As an L3 Analyst/SOC Manager, you will be responsible for overseeing regular operations, driving continuous improvement processes, and managing client and vendor interactions. This role involves managing complex incidents escalated from L2 analysts, operating the Security Incident process, and mentoring junior team members to build a cohesive and motivated unit. Responsibilities Review cybersecurity events analyzed by L2 security analysts, serving as the escalation point for detection, response, and remediation activities. Monitor and guide the team in triaging cybersecurity events, prioritizing, and recommending/performing response measures. Provide technical support for IT teams in response and remediation activities for escalated cybersecurity events/incidents. Follow up on cybersecurity incident tickets until closure. Guide L1 and L2 analysts in analyzing events and response activities. Expedite cyber incident response and remediation activities when delays occur, coordinating with L1 and L2 team members. Review and provide suggestions for information security policies and best practices in client environments. Ensure compliance with SLAs and contractual requirements, maintaining effective communication with stakeholders. Review and share daily, weekly, and monthly dashboard reports with relevant stakeholders. Update and review documents, playbooks, and standard operational procedures. Validate and update client systems and IT infrastructure documentation. Share knowledge on current security threats, attack patterns, and tools with team members. Create and review new use cases based on evolving attack trends. Analyze and interpret Windows, Linux OS, firewall, web proxy, DNS, IDS, and HIPS log events. Develop and maintain threat detection rules, parsers, and use cases. Understand security analytics and flows across SaaS applications and cloud computing tools. Validate use cases through selective testing and logic examination. Maintain continuous improvement processes and build/groom teams over time. Develop thought leadership within the SOC. Mandatory Skill Sets Bachelor’s degree (minimum requirement). 2-8 years of experience in SOC operations. Experience analyzing malicious traffic and building detections. Experience in application security, network security, and systems security. Knowledge of security testing tools (e.g., BurpSuite, Mimikatz, Cobalt Strike, PowerSploit, Metasploit, Nessus, HP Web Inspect). Proficiency in common programming and scripting languages (Python, PowerShell, Ruby, Perl, Bash, JavaScript, VBScript). Familiarity with cybersecurity frameworks and practices (OWASP, NIST CSF, PCI DSS, NY-DFS). Experience with traditional security operations, event monitoring, and SIEM tools. Knowledge of MITRE or similar frameworks and procedures used by adversaries. Ability to develop and maintain threat detection rules and use cases. Preferred Skill Sets Strong communication skills, both written and oral. Experience with SMB and large enterprise clients. Good understanding of ITIL processes (Change Management, Incident Management, Problem Management). Strong expertise in multiple SIEM tools and other SOC environment devices. Knowledge of firewalls, IDS/IPS, AVI, EDR, Proxy, DNS, email, AD, etc. Understanding of raw log formats of various security devices. Foundational knowledge of networking concepts (TCP/IP, LAN/WAN, Internet network topologies). Relevant certifications (CEH, CISA, CISM, etc.). Strong work ethic and time management skills. Coachability and dedication to consistent improvement. Ability to mentor and encourage junior teammates. Knowledge of regex and parser creation. Ability to deploy SIEM solutions in customer environments. Years Of Experience Required 2-12 + years Education Qualification B.Tech Education (if blank, degree and/or field of study not specified) Degrees/Field of Study required: Bachelor of Technology Degrees/Field Of Study Preferred Certifications (if blank, certifications not specified) Required Skills SoCs Optional Skills Accepting Feedback, Accepting Feedback, Active Listening, Agile Methodology, Azure Data Factory, Communication, Cybersecurity, Cybersecurity Framework, Cybersecurity Policy, Cybersecurity Requirements, Cybersecurity Strategy, Emotional Regulation, Empathy, Encryption Technologies, Inclusion, Intellectual Curiosity, Managed Services, Optimism, Privacy Compliance, Regulatory Response, Security Architecture, Security Compliance Management, Security Control, Security Incident Management, Security Monitoring {+ 3 more} Desired Languages (If blank, desired languages not specified) Travel Requirements Not Specified Available for Work Visa Sponsorship? No Government Clearance Required? No Job Posting End Date

Hi, We are having an opening for Network Operations Manager at our Mumbai location. Job Summary : We are looking for a highly skilled and strategic Network Operations Manager to lead and manage our enterprise-wide IT and OT network infrastructure. The role demands an experienced professional with 12-15 years experience in network operations, demonstrating expertise in managing complex network environments, leading technical teams, and ensuring optimal network performance and security, network operations, IT/OT convergence, vendor and SLA governance , and segmentation strategies to ensure security, availability, and scalability of network services. The ideal candidate will play a key role in managing daily operations, overseeing major transformation projects, and driving secure connectivity across both corporate and industrial environments. Areas Of Responsibility : Network Operations & Monitoring Manage enterprise-wide IT and OT network operations, including LAN, WAN, SD-WAN, VPN, Wireless, Internet, MPLS, and data centre connectivity. Ensure 24/7 network availability, reliability, and performance through proactive monitoring, diagnostics, and troubleshooting. Implement and manage macro and micro segmentation strategies to enhance network security posture across IT and OT domains. Project & Transformation Leadership Lead technical delivery and end-to-end execution of network transformation and expansion projects (e.g., campus upgrades, cloud migrations, plant network segmentation, OT segmentation, new initiative roll-out, etc.). Coordinate with cross-functional IT/OT teams to ensure alignment with business objectives and compliance requirements. Own project lifecycle from requirement gathering and solutioning to handover and documentation. Vendor & SLA Management Manage relationships with OEMs, service providers, and system integrators to ensure optimal service delivery. Negotiate and monitor SLAs , ensure issue escalation procedures are followed, and drive continuous improvement with vendors. Coordinate with external vendors and service providers to procure network equipment and services, negotiating contracts and managing relationships. Infrastructure Governance & Compliance Establish and enforce network policies , standards, and compliance frameworks (ISO 27001, GxP, NIST, etc.). Develop and enforce network security policies and procedures to safeguard organizational data and comply with industry regulations. Coordinate periodic audits, risk assessments, and remediation's to meet regulatory and cybersecurity mandates. Ensure full adherence to compliance requirements for data privacy, pharma/life sciences, or regulated industrial operations. Security & Segmentation Implement network security controls including firewalls, NAC, IDS/IPS, and segmentation (macro & micro) between IT/OT zones. Collaborate with the cybersecurity team to align on zero-trust architecture and secure data flows across environments. Team Leadership, Knowledge Management & Resource allocation Lead and mentor a team of network engineers and analysts (L1L3). Develop SOPs, knowledge base articles, and ensure robust documentation for operational continuity. Prepare and manage the network operations budget, ensuring cost-effective utilization of resources. Educational Qualification : Bachelors degree in Computer Science, Information Technology, or related field Specific Certification : CCNP / CCIE ITIL v4 Foundation or Intermediate PMP / PRINCE2 (optional for project oversight) Experience : 10-12 years of experience in network operations, with 3-5 years in leadership or managerial role Skill (Functional & Behavioural): Strong expertise in enterprise networking (Cisco, Juniper, Fortinet, Palo Alto, etc.) Hands-on knowledge of SD-WAN, NAC, micro/macro segmentation, and hybrid cloud networks (AWS/Azure) Familiarity with OT protocols and systems (e.g., SCADA, PLC, Modbus) and secure IT/OT integration Proven experience in vendor/SLA governance, audit readiness, and compliance frameworks Excellent understanding of ITIL , network governance , and enterprise change control processes

The next frontier of AI begins with Centific Centific is a Seattle-based tech company pioneering the future of AI one breakthrough at a time. Learn how we’re transforming the world through safe and scalable AI and empowering businesses to unlock the full potential of their data. Domain: AI Platform & Data Foundry | Sectors: Healthcare, Public Sector, Retail Position Summary The Chief Information Security Officer (CISO) is responsible for leading the security, privacy, and compliance strategy across a cutting-edge AI platform and data foundry product suite. This role is critical in ensuring secure AI development and deployment across regulated industries such as healthcare, public services, and retail, where data sensitivity, ethical AI use, and regulatory compliance are paramount. Key Responsibilities Security Strategy & Architecture Define and execute a comprehensive security strategy aligned with business goals, product architecture, and sector-specific regulatory requirements. Lead the design and implementation of secure-by-design principles across AI pipelines, including RAG, RLHF, HITL, and red teaming modules. Governance & Risk Management Establish and maintain governance frameworks for AI model lifecycle management, including auditability, explainability, and safety scoring. Conduct regular risk assessments and threat modeling, particularly for AI-specific threats such as data poisoning and adversarial attacks. Incident Response & Resilience Develop and lead the enterprise-wide incident response program, including detection, containment, investigation, and recovery. Coordinate cross-functional response to security incidents and ensure continuous improvement through post-incident reviews and simulations. Compliance & Regulatory Alignment Ensure compliance with global and sector-specific regulations, including HIPAA, HITECH, GDPR, CCPA, PCI-DSS, FedRAMP, and the EU AI Act. Lead certification and audit readiness efforts (e.g., ISO 27001, SOC 2, HITRUST). Sector-Specific Security Oversight Healthcare: Secure PHI/PII in AI-driven diagnostics, imaging, and patient engagement systems. Public Sector: Align with NIST 800-53 and FedRAMP for civic AI deployments and law enforcement use cases. Retail: Protect customer data used in personalization, sentiment analysis, and recommendation engines. Security Awareness & Culture Champion a security-first culture through training, awareness campaigns, and executive engagement. Develop role-based security education programs tailored to engineering, product, and business teams. Customer & Partner Trust Serve as the executive voice on security in customer engagements, RFPs, and co-sell partnerships. Lead responses to customer security questionnaires and ensure transparency in data handling practices. Operational Excellence Build and manage a centralized Command Control Center for real-time monitoring of AI systems, infrastructure, and compliance metrics. Continuously improve security operations through automation, analytics, and threat intelligence integration. Qualifications 10+ years in cybersecurity leadership, with 3+ years in AI/ML or data platform environments. Proven experience securing AI systems in healthcare, public sector, or retail domains. Deep understanding of cloud-native architectures (AWS, Azure, GCP), DevSecOps, and infrastructure-as-code. Strong knowledge of regulatory frameworks: HIPAA, GDPR, CCPA, NIST, FedRAMP, PCI-DSS. Certifications such as CISSP, CISM, CCSP, or emerging AI governance credentials are preferred. Preferred Attributes Experience with AI-specific compliance frameworks and ethical AI principles. Familiarity with data marketplaces, synthetic data generation, and human-in-the-loop (HITL) systems. Ability to influence executive stakeholders and shape product security strategy in a fast-paced, innovation-driven environment.

Role Overview : As a Senior Analyst - Security Operations, you will play a critical role in implementing, managing, and optimizing Palo Alto Firewalls, SASE (Secure Access Service Edge) solutions, F5 WAF (Web Application Firewall), and other critical security infrastructure. Your deep understanding of networking, VPN, and cloud security concepts will be essential in ensuring the security, performance, and reliability of our systems. You will work closely with cross-functional teams to design and deploy solutions, monitor network traffic, and provide technical guidance to junior team members. Key Responsibilities : Palo Alto Firewalls : Lead the implementation, configuration, and management of Palo Alto firewalls for network security, ensuring policies, rule sets, and logging mechanisms align with best practices. Network Security Management : Implement and monitor network security measures, including VPN, IPSec, SSL VPN, and other secure tunnelling protocols, ensuring compliance with security policies. Networking & VPN : Utilize in-depth networking knowledge to manage and troubleshoot VPN technologies, including site-to-site and client-to-site VPN configurations, ensuring secure and reliable remote connectivity. Security Incident Response : Collaborate with incident response teams to identify, mitigate, and resolve security incidents related to network vulnerabilities, firewall breaches, and web application attacks. Cloud Security Integration : Assist in integrating security policies across cloud environments, working closely with cloud teams to ensure compliance and mitigate risks. Documentation & Reporting : Maintain clear, concise documentation of all network security configurations, policies, and changes. Provide regular reports and insights into system performance, security status, and risk assessment. Collaboration & Training : Mentor junior security team members, offering technical guidance and fostering a culture of continuous learning. Collaborate with various internal teams on best practices for security implementation. Preferred candidate profile Hands-on Experience: Proven experience configuring and managing Palo Alto Firewalls, F5 WAF, and SASE technologies in enterprise environments. Networking Knowledge: Strong understanding of networking concepts including IP addressing, routing, switching, VLANs, DNS, and DHCP. VPN Expertise: Expertise in implementing and troubleshooting VPN technologies, including IPSec, SSL VPN, and remote access solutions. Security Best Practices: Familiarity with network security principles, best practices, and frameworks such as NIST, CIS, and ISO 27001. Cloud Security: Experience with securing cloud infrastructure and applications, including AWS, Azure, or GCP environments. Analytical Skills: Strong ability to assess network security posture, identify vulnerabilities, and recommend solutions to enhance security operations. Communication Skills: Excellent verbal and written communication skills, with the ability to explain complex technical concepts to non-technical stakeholders. Preferred Qualifications: Certifications: Industry certifications such as Palo Alto Networks Certified Network Security Engineer (PCNSE), F5 Certified Technology Specialist (F5-CTS), or Certified Information Systems Security Professional (CISSP) are a plus. Scripting: Experience with automation and scripting (Python, PowerShell, etc.) to enhance security operations and reporting. Advanced Network Security Tools: Familiarity with additional security tools such as IDS/IPS, SIEM systems, or network monitoring platforms is desirable.

JOB TITILE: Security Engineer Level 2 – GRC Tech Solutions LOCATION: 100 % Remote JOB TYPE: Contract CONTRACT LENGTH: 6 months TIME: 8:30 PM to 5:30 AM IST Responsibilities: We’re looking for a “Security Engineer” with a tech-first mindset that can help grow and enhance client’s Cybersecurity and Privacy Organization. As an Engineer supporting the Governance, Risk, and Compliance (GRC) platform, you will play a crucial role in enhancing and maintaining our GRC infrastructure. Your technical expertise will ensure the efficiency, automation, and seamless operation of our GRC systems. You will help empower client's internal teams to achieve their best work through robust, stable, and innovative solutions. Design, deploy, manage, and improve critical security infrastructure services/tools, including those for authentication and authorization, PKI, secrets management, logging, detection, vulnerability management, and more. Develop and enhance our GRC platform, ensuring it meets evolving security needs. Maintain robust system connectivity by ensuring comprehensive logging, monitoring/auditing, and management of security events for clear visibility. Oversee workflow management to streamline and enhance security processes, ensuring efficient and effective handling of security operations and incident response. Collaborate with both internal and external partners on all platform designs. Continuously validate technology and processes to ensure alignment with our cyber strategy, risk management, and governance frameworks. Operate within an Agile or Kanban sprint framework. Prepare and maintain security documentation, including diagrams, standard build documents, and best practice procedures. Basic Qualifications: A bachelor’s degree in computer science, Engineering, or a related field, or equivalent education and experience. At least 3-5 years of experience in a security or technical engineering role. A minimum of 3-5 years of experience supporting engineering platforms. At least 3-5 years of experience with scripting and automation tools; certifications in Linux, Microsoft, or other network-related fields are preferred. A minimum of 3-5 years working in agile development methodologies. Proven ability to manage and track multiple projects and deliverables simultaneously. Strong knowledge of systems and networking software, hardware, and networking protocols. A minimum of 3-5 years’ experience with scripting and automation tools. A minimum of 3-5 years’ experience coding languages such as Python, or Java. Experience with Onspring, Archer or other similar GRC platforms. Preferred Qualifications: High-level understanding of a broad range of security topics, such as networking, cloud security, secure software, cryptography; CISSP or equivalent is a plus. Experience with industry/regulatory security compliance frameworks such as SOX, PCI DSS, NIST SP800-53 is a plus. Experience integrating AI into service platforms to automate evidence review and enhance compliance efficiency.

Job Title: Information Security Specialist Location: Gurugram Client: Global MNC Employment Type: Full-Time Employee (FTE) Key Responsibilities: Lead and support the implementation and maintenance of ISO 27001:2013 standards across the organization. Conduct internal audits and manage external audits for ISO 27001 compliance. Design, implement, and manage SOC (Security Operations Center) strategies and processes. Perform regular risk assessments to identify, assess, and mitigate security risks across IT infrastructure and applications. Must-Have Skills: Proven experience in ISO 27001 implementation and audit readiness. Strong understanding and hands-on experience with SOC (Security Operations Center) operations. Risk assessment and management expertise within enterprise environments. Familiarity with security frameworks and compliance requirements (e.g., NIST, GDPR, etc.) is a plus. Excellent analytical, communication, and stakeholder management skills. Preferred Qualifications: ISO 27001 Lead Implementer or Auditor certification.

T he Area: Morningstar is a leading global provider of independent investment insights. Our core competencies are data, research, and design, and we employ each of these to create products that clearly convey complex investment information. Our mission is to empower investor success and everything we do at Morningstar is in the service of the investor. Reporting to the Audit Committee of the Board of Directors, the purpose of the Global Audit and Assurance (GAA) function is to strengthen Morningstar’s ability to create, protect, and sustain value by providing the Company with organizationally independent, risk-based, and objective assurance and consulting services to evaluate and improve Morningstar’s governance, risk management, and control processes. The Role: Morningstar’s GAA function seeks a highly motivated Senior IT Internal Auditor who thrives on new experiences and challenges. As a Senior IT Internal Auditor, you will play an integral role in evaluating the company’s information technology and information security processes and effectiveness of internal controls. You will have the opportunity to work on a variety of information technology integrated reviews as well as evaluate the effectiveness of IT general controls over external financial reporting as part of the company’s Sarbanes-Oxley Section 404 compliance activities. Based in Mumbai, the Senior IT Internal Auditor may be required to travel to a number of domestic and international locations in support of our IT internal audit plan. You will work closely with all levels of management across the organization, recommending changes to strengthen controls for increased efficiencies and reduced risks. The Senior IT Internal Auditor will have the opportunity to utilize and reference world-class audit tools and audit methodologies in the performance of his or her duties. Key responsibilities: Planning and execution of information technology and integrated audit reviews. Perform walkthroughs of complex information technology and information security processes and test the design and effectiveness of internal controls. Document work and prepare observations and recommendations for corrective action. Supervise audit staff and/or external consultants, review workpapers, and provide appropriate coaching and feedback. Effectively apply the COSO internal control framework, COBIT IT governance framework, NIST Cybersecurity framework and IIA International Professional Practices Framework. Assist audit management with the execution of continuous risk assessment and audit plan development. Serve as a consultant and business partner with management. Requirements: Action-oriented, self-starter with strong verbal and written communication skills. Comfortable working both independently or in teams and working within a complex environment. Ability to diagnose problems, determine root causes, and recommend solutions to complex challenges. Strong understanding of information technology general computer controls, system development life cycle, and IT auditing techniques; including a broad knowledge of IT technologies, operating systems, databases, and application platforms. Knowledge of recognized IT audit and governance frameworks such as COBIT, ITIL, NIST, ISO, etc. Knowledge of General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA). Undergraduate degree in information technology, management information systems, or a related field. Minimum of 7 years of internal or external audit experience assessing information technology/security controls and/or internal controls over financial reporting. Proven ability in performing multiple projects and working with varying team members. Flexibility/ adaptability to work a non-standard schedule as needed to accommodate various time zones where some process owners are located. Willingness to travel to domestic and international offices. Experience in working for a Big 4 or Tier-Two public accounting firm is highly preferred. Experience performing data analytics and using data analysis or automated audit software is highly preferred. Professional accreditation (e.g., CIA, CISA, CPA) is highly preferred . Morningstar is an equal opportunity employer. Morningstar’s hybrid work environment gives you the opportunity to work remotely and collaborate in-person each week. We’ve found that we’re at our best when we’re purposely together on a regular basis, at least three days each week. A range of other benefits are also available to enhance flexibility as needs change. No matter where you are, you’ll have tools and resources to engage meaningfully with your global colleagues. I10_MstarIndiaPvtLtd Morningstar India Private Ltd. (Delhi) Legal Entity

Position Overview Job Title: Senior Software Engineer (Typescript developer) Corporate Title: AVP Location: Pune, India Role Description You will be joining the TDI Engineering Platforms and Practice group as a full stack developer working on our target state secure pipelines and control automation stack. The pipeline is a key component in providing a frictionless software delivery experience for our customers and will be used by the entire organization. You will be responsible for designing, building and supporting a variety of automation including GitHub Actions and Workflows and backend process (Java/TypeScript) ensuring the highest standards of compliance without hindering the pace of delivery of our customer teams. This is a rare opportunity to help shape the future technology and culture of our firm. What We’ll Offer You As part of our flexible scheme, here are just some of the benefits that you’ll enjoy Best in class leave policy Gender neutral parental leaves 100% reimbursement under childcare assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Employee Assistance Program for you and your family members Comprehensive Hospitalization Insurance for you and your dependents Accident and Term life Insurance Complementary Health screening for 35 yrs. and above Your Key Responsibilities Building secure and reusable CICD components to provide provenance and governance around our SDLC practice ensuing high quality compliance Integrate with existing developer tooling to gather information and automate Ensuring the highest standards in security and supply chain integrity in-line with NIST, SLSA and other standards Direct customer engagement to gather requirements and understand the disparate ways teams build software today Developing supporting materials (software, training materials, workshops) to facilitate adoption Continuously measure the success of our solutions via a data driven approach, feedback and continuous improvement Your Skills And Experience Expertise in Typescript, Node, Jest likely 8+ years of industry experience. Expertise in Java a plus. Must have good understanding of SOLID principles. Must have good understanding of design principles. Extensive DevOps experience including CICD, SLI/SLOs, error budgets et al Extensive automation experience including GitHub Actions, TFE. Experience of varied orchestration technologies and tools such as TeamCity, Jenkins , Cloud ready , ArgoCD and Tekton a plus. Proven communication and influencing skills, experience coaching and mentoring a plus How We’ll Support You Training and development to help you excel in your career. Coaching and support from experts in your team. A culture of continuous learning to aid progression. A range of flexible benefits that you can tailor to suit your needs. About Us And Our Teams Please visit our company website for further information: https://www.db.com/company/company.htm We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively. Together we share and celebrate the successes of our people. Together we are Deutsche Bank Group. We welcome applications from all people and promote a positive, fair and inclusive work environment.

You might be a fit if you have ● 5 + yrs production ML / data-platform engineering (Python or Go/Kotlin). ● Deployed agentic or multi-agent systems (e.g., micro-policy nets, bandit ensembles) and reinforcement-learning pipelines at scal (ad budget, recommender, or game AI). ● Fluency with BigQuery / Snowflake SQL & ML plus streaming (Kafka / Pub/Sub). ● Hands-on LLM fine-tuning using LoRA/QLoRA and proven prompt-engineering skills (system / assist hierarchies, few-shot, prompt compression). ● Comfort running GPU & CPU model serving on GCP (Vertex AI, GKE, or bare-metal K8s). ● Solid causal-inference experience (CUPED, diff-in-diff, synthetic control, uplift). ● CI/CD, IaC (Terraform or Pulumi) & observability chops (Prometheus, Grafana). ● Bias toward shipping working software over polishing research papers. Bonus points for: ● Postal/geo datasets, ad-tech, or martech domain exposure. ● Packaging RL models as secure micro-services. ● VPC-SC, NIST, or SOC-2 controls in a regulated data environment. ● Green-field impact – architect the learning stack from scratch. ● Moat-worthy data – 260 M+ US consumer graph tying offline & online behavior. ● Tight feedback loops – your models go live in weeks, optimizing large amounts of marketing spend daily.

Role: DC LEAD Location : Gurgaon Sammaan Capital's corporate office at Augusta Point is located at 4th Floor, Augusta Point, Golf Course Road, DLF Phase-5, Sector-53, Gurugram, Haryana -122002, India. EXP: 8-9YRS BUDGET : 10-12LPA Working Days : 6 WFO Look for immediate joiners only 1. JOB DESCRIPTION – Data Centre Lead/ Data Centre Operation Manager 1. Windows Server Administration Windows Server (2016/2019/2022) installation, configuration, and troubleshooting Active Directory (AD) management, Group Policy, and Domain Controllers DNS, DHCP, and network services configuration PowerShell scripting for automation 2. Virtualization & Cloud Hyper-V and VMware administration Virtual Machine (VM) provisioning and maintenance 3. Security & Compliance Patch management and Windows Update services (WSUS) Endpoint security, antivirus, and malware protection Compliance with IT security frameworks (ISO 27001, NIST, GDPR) 4. Monitoring & Performance Optimization Performance tuning and resource optimization Monitoring tools (ME , Zabbix) Troubleshooting high CPU, memory, disk, and network utilization issues 5. High Availability & Disaster Recovery Failover clustering and load balancing Disaster recovery planning and execution Windows Server Backup and restore strategies 7. Incident & Problem Management ITIL framework and service management best practices RCA (Root Cause Analysis) and incident handling

Bengaluru, Karnataka Job ID 30187018 Job Category Digital Technology Job Title – AI Governance Specialist Preferred Location - Bangalore/Hyderabad, India Full time/Part Time - Full Time Build a career with confidence Carrier Global Corporation, global leader in intelligent climate and energy solutions is committed to creating solutions that matter for people and our planet for generations to come. From the beginning, we've led in inventing new technologies and entirely new industries. Today, we continue to lead because we have a world-class, diverse workforce that puts the customer at the center of everything we do Position Summary: We are seeking an experienced AI Governance Specialist to lead and support the development and implementation of governance frameworks for responsible AI across the organization. This role will help ensure that AI and machine learning systems are developed, deployed, and monitored in a way that is ethical, transparent, secure, compliant, and aligned with business goals and societal expectations. Key Responsibilities: AI Policy & Framework Development: Implement organizational AI governance policies and risk management frameworks. Align internal governance practices with global standards and regulations (e.g., EU AI Act, NIST AI RMF, ISO/IEC 42001). Collaborate with legal, compliance, data science, and product teams to ensure AI systems meet ethical and regulatory requirements. Risk Assessment & Compliance: Conduct AI risk and impact assessments across the model lifecycle. Monitor compliance with emerging AI regulations, data privacy laws (e.g., GDPR), and sector-specific requirements. Identify and escalate potential ethical, legal, or reputational risks. Ethical AI & Responsible Innovation: Promote fairness, transparency, accountability, explainability, and human oversight in AI/ML systems. Support initiatives for bias detection, algorithmic accountability, and model interpretability. Governance Operations & Tooling: Work with cross-functional teams to embed governance controls into MLOps and AI development pipelines. Evaluate or develop tools to support model documentation (e.g., model cards, datasheets), audit trails, and explainability. Stakeholder Engagement & Training: Act as a subject-matter expert on AI governance for internal and external stakeholders. Design and deliver training programs on responsible AI practices for technical and business teams. Qualifications: Education: Bachelor’s or Master’s degree in Law, Computer Science, Data Science, Ethics, Public Policy, or a related field. Additional certifications (e.g., in AI Ethics, Data Protection, Risk Management) are a plus. Experience: 4–8 years of experience in AI/ML, risk management, regulatory compliance, or corporate governance. Experience with responsible AI frameworks, audit processes, or regulatory readiness preferred. Skills: Deep understanding of AI/ML technologies and their societal and organizational impacts. Experience working in regulated industries (e.g., finance, healthcare, energy). Knowledge of cybersecurity, data governance, or digital ethics. Strong analytical, communication, and stakeholder management skills. Ability to navigate ambiguity and influence cross-functional teams in a fast-paced environment Benefits We are committed to offering competitive benefits programs for all of our employees and enhancing our programs when necessary. Have peace of mind and body with our health insurance Make yourself a priority with flexible schedules and leave Policy Drive forward your career through professional development opportunities Achieve your personal goals with our Employee Assistance Program. Our commitment to you Our greatest assets are the expertise, creativity and passion of our employees. We strive to provide a great place to work that attracts, develops and retains the best talent, promotes employee engagement, fosters teamwork and ultimately drives innovation for the benefit of our customers. We strive to create an environment where you feel that you belong, with diversity and inclusion as the engine to growth and innovation. We develop and deploy best-in-class programs and practices, providing enriching career opportunities, listening to employee feedback and always challenging ourselves to do better. This is The Carrier Way. Join us and make a difference. Now! Carrier is An Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age or any other federally protected class.

At Broadridge, we have created a culture that aims to empower individuals to achieve more. If you are enthusiastic about advancing your career while supporting others in their journey, we invite you to become a part of the Broadridge team. Your role involves providing expert guidance for the implementation and advancement of secure cloud and container architectures, controls, and best practices across various cloud services such as IaaS, PaaS, SaaS, and hybrid configurations. You will collaborate closely with developers, system administrators, and IT management to drive proactive solutions. Additionally, you will be responsible for identifying, suggesting, and assessing new technology options to enhance process efficiency, automation, security, visibility, developer support, and operational streamlining in cloud and container environments. Furthermore, you will contribute to the enhancement of continuous monitoring solutions to verify systems against security standards and address policy breaches. Analyzing the latest attacker tactics and implementing strategies to mitigate associated risks is also a key aspect of your role. You will provide insights into the design and implementation of automated security solutions and work closely with product and development teams to ensure alignment with company directives and objectives. In terms of technical skills, you should have demonstrated expertise in cloud-native architectures, microservices, and operational best practices related to cloud and container orchestration. Experience in integrating enterprise-scale security solutions in AWS and/or Azure, including user, security, and networking configurations, is essential. Proficiency in full-stack cloud automation using tools like Git, Terraform, Ansible, and Jenkins is required. Previous programming experience is necessary, with a preference for familiarity with Python. A Bachelor's degree or higher in Computer Science, Engineering, or a related field, or equivalent certifications and practical experience, is expected. You should have at least 5 years of experience in network, application, or infrastructure security. A solid understanding of IT Risk Management, Security Policies and Procedures, Internal Audit, and Compliance Standards is vital, along with familiarity with SOC, FFIEC, CSA, and FedRAMP. Experience in aligning security programs with benchmarks and standards such as NIST, CIS, FIPS, PCI DSS, HIPAA, and FIPS 140-2 is advantageous. Regarding soft skills, excellent communication skills in both oral and written English are crucial. You should be able to articulate complex ideas effectively to ensure clear direction and outcomes. Adaptability to changing technology landscapes and requirements is also a key attribute for this role.,

Role : Cybersecurity Compliance Responsibilities : Conduct internal cybersecurity compliance assessments and assist with external audits (e.g., ISO 27001, NIST, DPDP, CEA) by collecting evidence, documenting controls, and coordinating with auditors. Monitor and analyze emerging cybersecurity regulations and standards, evaluate their impact on business operations, and recommend compliance adjustments. Develop, review, and maintain cybersecurity policies, procedures, and comprehensive documentation aligned with regulatory requirements and best practices. Collaborate with IT, legal, and business units to implement security controls and enforce compliance across the organization. Identify cybersecurity compliance gaps and risks; propose and track practical remediation plans. Prepare and present clear, concise reports and presentations on compliance status and audit outcomes to both technical and non-technical : Minimum 3 years of relevant experience in cybersecurity compliance, with proven involvement in internal and external audits. Strong knowledge of cybersecurity frameworks and regulations such as ISO 27001, NIST, DPDP, CEA, or equivalent. Relevant certifications (e.g., CISA, CISM, CISSP, or equivalent) are a plus. Proficient in conducting and managing cybersecurity audits and compliance assessments. Solid understanding of risk management and remediation strategies in cybersecurity. Ability to interpret and apply complex regulatory requirements into practical controls. Strong documentation skills including policy writing and evidence gathering. Excellent communication skills for effectively liaising with auditors, technical teams, and business stakeholders. Analytical mindset with keen attention to detail and problem-solving capabilities. Familiarity with tools and platforms used in compliance tracking and audit management (e.g., GRC tools). (ref:hirist.tech)

Job Description KPMG in India, a professional services firm, is the Indian member firm affiliated with KPMG International and was established in September 1993. Our professionals leverage the global network of firms, providing detailed knowledge of local laws, regulations, markets, and competition. KPMG has offices across India in Ahmedabad, Bengaluru, Chandigarh, Chennai, Gurugram, Hyderabad, Jaipur, Kochi, Kolkata, Mumbai, Noida, Pune, and Vadodara. KPMG in India offers services to national and international clients in India across sectors. We strive to provide rapid, performance-based, industry-focused, and technology-enabled services, which reflect a shared knowledge of global and local industries and our experience of the Indian business environment KPMG Advisory professionals provide advice and assistance to enable companies, intermediaries, and public sector bodies to mitigate risk, improve performance, and create value. KPMG firms provide a wide range of Risk Advisory and Financial Advisory Services that can help clients respond to immediate needs as well as put in place the strategies for the longer term. Projects in IT Advisory focus on the assessment and/or evaluation of IT systems and the mitigation of IT-related business risks. They are either IS audit, SOX reviews, Internal audit engagements, IT infrastructure review and/or risk advisory including but not limited to IT audit supports in nature. Responsibilities Perform testing of IT Application Controls, IPE, and Interface Controls through code reviews, IT General Controls review covering areas such as Change Management, Access Management, Backup Management, Incident and Problem Management, SDLC, Data Migration, Batch Job scheduling/monitoring and Business Continuity and Disaster Recovery Perform Risk Assessment, identification, and Evaluation of Controls, prepare process flow diagrams and document the same in Risk & Control Matrix. Perform business process walkthrough and controls testing for IT Audits. Performing planning and executing audits, including - SOX, Internal Audits, External Audits Conducting controls assessment in manual/ automated environment Prepare/Review of Policies, Procedures, SOPs Maintain relationships with client management and the project Manager to manage expectations of service, including work products, timing, and deliverables. Demonstrate a thorough understanding of complex information systems and apply it to client situations. Use extensive knowledge of the client's business/industry to identify technological developments and evaluate impacts on the work to be performed. Coordinate effectively and efficiently with the Engagement manager and the client management keeping both constantly updated regarding project’s progress. Collaborate with other members of the engagement team to plan the engagement and develop relevant workpapers/deliverables. Perform fieldwork and share the daily progress of fieldwork, informing supervisors of engagement status. Qualifications IT Audit + SAP experience with knowledge of IT governance practices Prior IT Audit knowledge in areas of ITGC, ITAC (application/automated controls) SOX 404, SOC-1 and SOC-2 Audits Good to have knowledge of other IT regulations, standards and benchmarks used by the IT industry (e.g. NIST, PCI-DSS, ITIL, OWASP, SOX, COBIT, SSAE18/ISAE 3402 etc.) Technical Knowledge of IT Audit Tools with excellent knowledge of IT Audit process and methodology Exposure to Risk Management and Governance Frameworks/ Systems will be an added advantage Exposure to ERP systems will be added advantage Strong project management, communication (written and verbal) and presentation skills Knowledge of security measures and auditing practices within various applications, operating systems, and databases. Strong self-directed work habits, exhibiting initiative, drive, creativity, maturity, self-assurance, and professionalism Preferred Certifications – CISA/CISSP//CISM Exposure to automation Data Analytics tools such as QlikView/Qlik sense, ACL, Power BI will be an advantage Proficiency with Microsoft Word, Excel, Visio, and other MS Office tools Equal Employment Opportunity Information KPMG India has a policy of providing equal opportunity for all applicants and employees regardless of their color, caste, religion, age, sex/gender, national origin, citizenship, sexual orientation, gender identity or expression, disability or other legally protected status. KPMG India values diversity and we request you to submit the details below to support us in our endeavor for diversity. Providing the below information is voluntary and refusal to submit such information will not be prejudicial to you.

Job Description KPMG in India, a professional services firm, is the Indian member firm affiliated with KPMG International and was established in September 1993. Our professionals leverage the global network of firms, providing detailed knowledge of local laws, regulations, markets, and competition. KPMG has offices across India in Ahmedabad, Bengaluru, Chandigarh, Chennai, Gurugram, Hyderabad, Jaipur, Kochi, Kolkata, Mumbai, Noida, Pune, and Vadodara. KPMG in India offers services to national and international clients in India across sectors. We strive to provide rapid, performance-based, industry-focused, and technology-enabled services, which reflect a shared knowledge of global and local industries and our experience of the Indian business environment KPMG Advisory professionals provide advice and assistance to enable companies, intermediaries, and public sector bodies to mitigate risk, improve performance, and create value. KPMG firms provide a wide range of Risk Advisory and Financial Advisory Services that can help clients respond to immediate needs as well as put in place the strategies for the longer term. Projects in IT Advisory focus on the assessment and/or evaluation of IT systems and the mitigation of IT-related business risks. They are either IS audit, SOX reviews, Internal audit engagements, IT infrastructure review and/or risk advisory including but not limited to IT audit supports in nature. Responsibilities Perform testing of IT Application Controls, IPE, and Interface Controls through code reviews, IT General Controls review covering areas such as Change Management, Access Management, Backup Management, Incident and Problem Management, SDLC, Data Migration, Batch Job scheduling/monitoring and Business Continuity and Disaster Recovery Perform Risk Assessment, identification, and Evaluation of Controls, prepare process flow diagrams and document the same in Risk & Control Matrix. Perform business process walkthrough and controls testing for IT Audits. Performing planning and executing audits, including - SOX, Internal Audits, External Audits Conducting controls assessment in manual/ automated environment Prepare/Review of Policies, Procedures, SOPs Maintain relationships with client management and the project Manager to manage expectations of service, including work products, timing, and deliverables. Demonstrate a thorough understanding of complex information systems and apply it to client situations. Use extensive knowledge of the client's business/industry to identify technological developments and evaluate impacts on the work to be performed. Coordinate effectively and efficiently with the Engagement manager and the client management keeping both constantly updated regarding project’s progress. Collaborate with other members of the engagement team to plan the engagement and develop relevant workpapers/deliverables. Perform fieldwork and share the daily progress of fieldwork, informing supervisors of engagement status. Qualifications IT Audit + SAP experience with knowledge of IT governance practices Prior IT Audit knowledge in areas of ITGC, ITAC (application/automated controls) SOX 404, SOC-1 and SOC-2 Audits Good to have knowledge of other IT regulations, standards and benchmarks used by the IT industry (e.g. NIST, PCI-DSS, ITIL, OWASP, SOX, COBIT, SSAE18/ISAE 3402 etc.) Technical Knowledge of IT Audit Tools with excellent knowledge of IT Audit process and methodology Exposure to Risk Management and Governance Frameworks/ Systems will be an added advantage Exposure to ERP systems will be added advantage Strong project management, communication (written and verbal) and presentation skills Knowledge of security measures and auditing practices within various applications, operating systems, and databases. Strong self-directed work habits, exhibiting initiative, drive, creativity, maturity, self-assurance, and professionalism Preferred Certifications – CISA/CISSP//CISM Exposure to automation Data Analytics tools such as QlikView/Qlik sense, ACL, Power BI will be an advantage Proficiency with Microsoft Word, Excel, Visio, and other MS Office tools Equal Employment Opportunity Information KPMG India has a policy of providing equal opportunity for all applicants and employees regardless of their color, caste, religion, age, sex/gender, national origin, citizenship, sexual orientation, gender identity or expression, disability or other legally protected status. KPMG India values diversity and we request you to submit the details below to support us in our endeavor for diversity. Providing the below information is voluntary and refusal to submit such information will not be prejudicial to you.

About The Company TSC Redefines Connectivity with Innovation and IntelligenceDriving the next level of intelligence powered by Cloud, Mobility, Internet of Things, Collaboration, Security, Media services and Network services, we at Tata Communications are envisaging a New World of Communications 1 We are seeking a highly skilled L3 Cloud Engineer specializing in AWS Cloud Service Provider (CSP) environments. This role requires deep expertise in AWS cloud infrastructure, automation, security, performance optimization, and troubleshooting. You will be responsible for designing, implementing, and maintaining scalable and highly available AWS solutions, as well as serving as the final escalation point for complex cloud-related incidents. 2 As a senior cloud engineer, you will also work on cloud migration projects, automation strategies, and infrastructure-as-code (IaC) deployments while collaborating with cross-functional teams to ensure best practices and security compliance. Major Duties & Responsibilities AWS Cloud Infrastructure Design & Operations: Architect, deploy, and manage highly available AWS cloud environments. Optimize and maintain AWS services such as EC2, S3, RDS, Lambda, Route 53, VPC, ELB, and CloudFront. Implement AWS Well-Architected Framework best practices for performance, cost efficiency, and security. Manage multi-account AWS environments using AWS Organizations and Control Tower. Optimize networking and connectivity between AWS services and on-premise/hybrid infrastructure. Automation & Infrastructure As Code (IaC) Automate cloud infrastructure deployment using Terraform, AWS CloudFormation, and Ansible. Utilize AWS Systems Manager (SSM), AWS Lambda, and Step Functions for automation and orchestration. Develop CI/CD pipelines using AWS CodePipeline, Jenkins, GitHub Actions, or GitLab CI/CD. Automate patch management, compliance enforcement, and resource provisioning in AWS. Security, Compliance & Governance Implement AWS security best practices, including IAM roles, least privilege policies, security groups, and KMS encryption. Monitor security threats using AWS Security Hub, GuardDuty, and CloudTrail. Ensure compliance with ISO 27001, NIST, CIS, SOC2, HIPAA, and GDPR standards. Implement AWS Backup, disaster recovery (DR), and business continuity strategies. Monitoring, Troubleshooting & Performance Optimization Act as the final escalation point for AWS cloud-related incidents. Monitor cloud infrastructure using AWS CloudWatch, CloudTrail, AWS Config, and third-party tools (Datadog, Splunk, Prometheus, Grafana, etc.). Troubleshoot network, compute, storage, and security issues in AWS environments. Perform root cause analysis (RCA) and implement permanent fixes for AWS-related outages. Cloud Migration & Optimization Lead cloud migration projects from on-premises or other cloud providers to AWS. Optimize AWS resource allocation and cost management using AWS Cost Explorer and Savings Plans. Implement hybrid cloud solutions with AWS Direct Connect, VPN, and AWS Outposts. Collaboration & Technical Leadership Work closely with DevOps, security, networking, and application teams to enhance AWS cloud solutions. Mentor and provide technical guidance to L1 and L2 engineers. Create and maintain technical documentation, SOPs, and knowledge bases. Participate in design and architecture reviews for AWS cloud environments.

As an Analyst, Risk & Control in the Center of Excellence at Booking Holdings India, your role will involve supporting the Risk & Control team with SOx testing of IT General Controls and Application controls. Your primary responsibility will be to conduct internal control testing to facilitate SOX302 attestation. You will serve as a subject matter expert, providing guidance to the Risk team on controls design, evaluation of deficiencies, and enhancements across various processes from a SOx testing perspective. It is essential for you to possess a dynamic personality and the ability to adapt to a rapidly changing environment. Key responsibilities will include: - Designing and executing day-to-day testing activities of IT and application controls, focusing on regulatory/compliance (SOX) risks - Analyzing information to assess and conclude on each assigned testing area with clear documentation - Identifying gaps in design and execution, and communicating issues and recommendations to the R&C team and control owners - Developing and maintaining comprehensive documentation including process walkthrough documentation and control testing documentation - Collaborating with the R&C team to ensure critical SOx controls are well-designed and documented to strengthen the control environment and support business objectives - Participating in efforts to continuously improve R&C capabilities and governance related to SOx testing The ideal candidate for this role should have: - Strong background in IT Risk Management, IT Frameworks, Governance, and Controls, with at least 4 years of experience in IT compliance, internal controls, or internal/external audit - Experience in designing and/or testing IT General Controls and automated process controls - Familiarity with risk management fields and frameworks such as SOx, COSO, NIST, and COBIT - Proficiency in English (both written and spoken) and the ability to work independently while being a team player - Relevant professional certification (e.g., CPA/ACCA/CISA/CRISC) would be advantageous - A Bachelor's degree in a related field is required Preferred qualifications include experience in designing or testing controls for in-house built software, technology-based product development/DevOps processes, or working in large e-commerce or tech companies. Booking Holdings is a global leader in online travel services, offering seamless technology across brands like Booking.com, KAYAK, Priceline, Agoda, Rentalcars.com, and OpenTable. By joining our diverse team, you will contribute to our mission of making travel more accessible and enjoyable for customers worldwide. We value inclusivity and strive to create an environment that fosters innovation, creativity, and collaboration. Booking Holdings is an Equal Employment Opportunity employer that welcomes all job seekers, including individuals with disabilities and veterans. If you require reasonable accommodation during the application process, please contact reasonableaccommodation@bookingholdings.com. Please note that if your application is successful, pre-employment screening checks may be conducted by a third party in accordance with applicable laws to verify your qualifications and suitability for the position.,

About The Company TSC Redefines Connectivity with Innovation and IntelligenceDriving the next level of intelligence powered by Cloud, Mobility, Internet of Things, Collaboration, Security, Media services and Network services, we at Tata Communications are envisaging a New World of Communications Linux Administrator L3 Engineer ( IT Operations & Infrastructure ) Employment Type On-roll Reporting Manager Direct reports Role Purpose Linux Administrator L3 Engineer - IT Operations & Infrastructure Key Responsibilities / Accountabilities We are seeking an experienced Linux Administrator Engineer (L3) to lead and manage Linux-based infrastructure across on-premises and cloud environments. This role requires expertise in advanced Linux system administration, performance tuning, security hardening, automation, high availability (HA) configurations, and troubleshooting complex issues. The ideal candidate should have deep knowledge of RHEL, CentOS, Ubuntu, SUSE, Oracle Linux, along with cloud Linux workloads (AWS, GCP, Azure, OCI), containerization (Docker, Kubernetes, OpenShift), and automation (Ansible, Terraform, Python, Bash). Major Duties & Responsibilities Linux Infrastructure Design & Management: Architect, deploy, and maintain enterprise-grade Linux environments (RHEL, CentOS, Ubuntu, SUSE, Oracle Linux). Design and implement scalable, highly available, and secure Linux-based systems. Perform advanced troubleshooting, root cause analysis (RCA), and performance tuning. Ensure system reliability, patching, and security updates for production servers. Cloud & Virtualization Administration: Optimize cloud-based Linux instances, auto-scaling, and cost management strategies. Work with VMware, KVM, Hyper-V, OpenStack for on-prem virtualization. Automation & Configuration Management: Automate Linux system administration tasks using Ansible, Terraform, Bash, Python, PowerShell. Implement Infrastructure as Code (IaC) to automate provisioning and configuration. Develop cron jobs, systemd services, and log rotation scripts. Security & Compliance: Implement Linux system hardening (CIS benchmarks, SELinux, AppArmor, PAM, SSH security). Configure firewall rules (iptables, nftables, firewalld), VPN, and access control policies. Ensure compliance with ISO 27001, PCI-DSS, HIPAA, and NIST security standards. Conduct vulnerability scanning, penetration testing, and security audits. Networking & High Availability (HA) Solutions: Configure and manage DNS, DHCP, NFS, iSCSI, SAN, CIFS, VLANs, and network bonding. Deploy Linux clusters, failover setups, and high-availability solutions (Pacemaker, Corosync, DRBD, Ceph, GlusterFS). Work with load balancing solutions (HAProxy, Nginx, F5, Cloud Load Balancers). Monitoring & Performance Optimization: Set up real-time monitoring tools (Prometheus, Grafana, Nagios, Zabbix, ELK, Site 24x7). Optimize CPU, memory, disk IO, and network performance for Linux workloads. Analyze and resolve kernel panics, memory leaks, and slow system responses. Backup & Disaster Recovery: Design and implement Linux backup & disaster recovery strategies (CommVault, Veeam, Rsync, AWS Backup, GCP Backup & DR, OCI Vaults). Perform snapshot-based recovery, failover testing, and disaster recovery planning. Collaboration & Documentation: Mentor L1 and L2 engineers, provide escalation support for critical incidents. Maintain technical documentation, SOPs, and knowledge base articles. Assist in capacity planning, forecasting, and IT infrastructure roadmaps. Required Knowledge, Skills And Abilities Expert-level knowledge of Linux OS administration, troubleshooting, and performance tuning. Strong hands-on expertise in server patching, automation, and security best practices. Deep understanding of cloud platforms (AWS, GCP, Azure, OCI) and virtualization (VMware, KVM, Hyper-V, OpenStack). Advanced networking skills in firewalls, VLANs, VPN, DNS, and routing. Proficiency in scripting (Bash, Python, Ansible, Terraform, PowerShell). Experience with high-availability architectures and clustering solutions. Strong problem-solving, analytical, and troubleshooting skills for mission-critical environments. Preferred Additional Skills And Abilities Experience with Linux-based Kubernetes clusters (EKS, AKS, GKE, OpenShift, Rancher). Understanding of CI/CD pipelines and DevOps tools (Jenkins, Git, GitLab, ArgoCD, Helm). Knowledge of big data, logging, and analytics tools (Splunk, ELK Stack, Kafka, Hadoop). Familiarity with database management on Linux (MySQL, PostgreSQL, MariaDB, MongoDB, Redis). Qualifications And Experience Following are the key skills and experience expected out of the candidate Bachelors in Communications / Computer Science OR Software Engineering OR related technical degree OR Experience 7+ years of experience in Linux administration and enterprise infrastructure. Proven track record in designing, implementing, and optimizing Linux environments. Experience with multi-cloud Linux workloads, scripting, security, and high availability. Certifications (Preferred But Not Mandatory) Red Hat Certified Engineer (RHCE) or RHCSA LPIC-3 (Linux Professional Institute Certification Level 3)

Company Description Tumeryk is a pioneering company providing a quantitative Trust & Safety score for Generative AI systems. We ensure user trust and safety for non-deterministic systems like Chatbots and Agentic Apps, offering demonstrative evidence of app reliability. Our patent-pending Tumeryk AI Trust Score™ is the industry's first to quantify AI system risks, enabling compliance with regulations such as the EU AI Act, ISO 42001, and NIST RMF 600.1. Role Description This is a full-time on-site role for a Full Stack Engineer located in the Greater Delhi Area. The Full Stack Engineer will be responsible for developing and maintaining both front-end and back-end components of web applications. Daily tasks will include designing user interactions, developing servers and databases, ensuring cross-platform optimization, and collaborating with other team members on various projects. Qualifications Back-End Web Development and Software Development skills Front-End Development and Cascading Style Sheets (CSS) skills Full-Stack Development experience Excellent problem-solving and analytical skills Strong collaborative abilities and effective communication skills Experience with cloud services and database management is a plus Bachelor's degree in Computer Science, Engineering, or related field Must Have Skills Experience with React Experience with RDBMS Experience using Fast API To Apply https://docs.google.com/forms/d/1ORETZY1NxQQKfusC-30fF7XIV460p1J9WDUAxzWWtmw/edit

As a shift lead in the Security Operations Center (SOC) at Virtusa, you will play a crucial role in supporting SOC operations by conducting detailed threat-based investigations, making recommendations for incident detection methodologies, and offering expert assistance for incident response and monitoring activities. Your responsibilities will include being a technical and strategic leader in driving key performance indicator (KPI) metrics, promoting automation, analytics, and operational efficiencies to enhance the overall security posture. You will be tasked with providing suggestions to enhance security postures, minimize security risks, and identify opportunities for automation to streamline manual efforts. Your role will involve ensuring the highest quality of SOC service delivery and aiding in the development of incident response actions, policies, and procedures, including process enhancements. As the escalation point for advanced security incident escalations from Level 1 SOC analysts, you will oversee all SOC activities and business-as-usual (BAU) tasks during your shift, which involves 24/7 support. Additionally, you will review and improve run books, operating procedures, and playbooks, as well as assign and prioritize tasks and incidents for Level 1 SOC team members. You will manage the incident pipeline, including escalating outstanding incidents, updating incidents as needed, and escalating open incidents when necessary. Furthermore, you will be responsible for meeting service level agreements (SLAs) and leading SOC shift handover calls. Your role will also involve providing continuous improvement initiatives and on-the-job training for Level 1 SOC analysts. Your expertise will be paramount in analyzing logs from various sources such as network devices, applications, infrastructure services, security products, and endpoint data using Security Information and Event Management (SIEM) tools and other security technologies. You will also lead security event and incident investigations, applying industry-recognized incident detection and response frameworks like NIST, MITRE, and others. At Virtusa, we prioritize teamwork, quality of life, and professional development. Join our global team of 30,000 professionals who are dedicated to fostering your personal and career growth. We offer exciting projects, opportunities to work with cutting-edge technologies, and a collaborative environment where great minds come together to innovate and excel.,

We are searching for a proficient Information Security Auditor to become a part of our team. In this position, you will play a key role in safeguarding our organization's data and IT systems against cyber threats and ensuring compliance with industry standards. To qualify for this role, you should hold a Bachelor's or Master's degree in Computer Science, Information Technology, or Cybersecurity. In addition, you must have a minimum of two years of experience in IT Security or IT Audit. It is essential to possess knowledge of software development processes and hold at least one IT Security certification, such as CISA, CISSP, or a similar technical certification. You should have a deep understanding of industry security frameworks like NIST and CIS, along with a grasp of inherent and control risks. Proficiency in ISO 27001/2 standards is crucial. Moreover, you should have proven experience in implementing or testing IT General Controls and possess excellent verbal and written communication skills to effectively interact with leaders at all levels. The capability to work autonomously in a dynamic environment is also required. Desirable qualifications include diverse IT experience in areas like programming, systems analysis, and security administration. Strong project management skills and the ability to manage multiple tasks simultaneously are also beneficial. Join our team and play a vital role in protecting our information systems while gaining exposure to cutting-edge technologies and business processes. Your responsibilities will include gaining a comprehensive understanding of the organization's business objectives, processes, goals, and strategies to analyze and interpret IT risks and technology challenges effectively. You will be responsible for examining and assessing technology and business risks through IT audits, defining audit plans, scope, and procedures, and preparing detailed audit reports. Stay updated on industry trends relevant to our environment, including those in automotive, finance, mobility, technology, cybersecurity, and auditing. Contribute to the development of a risk-based IT audit plan and evaluate areas of risk that require IT audit procedures. Execute these audit procedures based on their risk and impact on the business, covering various applications, technologies, and business processes. Collaborate with internal and external partners and oversee the completion of planned actions. Support departmental transformation initiatives by testing new processes and creating audit responses. Proactively identify business initiatives and changes in the business environment and assess their impact on both the business and control environment. Collaborate with global business auditors on combined business and IT audits. Maintain regular communication with the Internal Controls, Office of General Counsel (OGC), and Enterprise Cybersecurity & Policy teams. This role may involve travel as needed.,

We are seeking an experienced and visionary Head of Cyber Security to lead our global and regional cybersecurity efforts. This senior leadership role will be responsible for defining and executing a comprehensive security strategy that safeguards our digital assets and operations across multiple geographies. Key Responsibilities Develop and implement a robust cybersecurity strategy aligned with global and regional business goals. Lead the design, development, and operation of a world-class Security Operations Center (SOC) . Oversee threat monitoring , incident response , digital forensics , and penetration testing activities. Manage cybersecurity architecture and ensure compliance with international standards, including ISO 27001 , NIST , and GDPR . Architect and implement proprietary threat detection and cyber defense platforms. Serve as the principal cybersecurity advisor to internal stakeholders, clients, regulatory bodies, and strategic partners. Drive cyber readiness, conduct internal risk assessments, and lead employee awareness training programs. Recruit, mentor, and develop high-performing cybersecurity teams and technical staff. Qualifications & Experience 5+ years in a senior cybersecurity leadership role , preferably in critical infrastructure, defense, or government environments. Deep expertise in network security , SIEM , IDS/IPS , incident response , and digital forensics tools and methodologies. Proven experience managing large-scale cyber operations across multiple countries or regions. Strong understanding of global cybersecurity frameworks: ISO 27001 , NIST , GDPR , etc. Excellent leadership, communication, and stakeholder engagement skills. Show more Show less

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Identity Access Management (IAM) Good to have skills : Microsoft Active Directory Minimum 2 Year(s) Of Experience Is Required Educational Qualification : 15 years full time education Summary: As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to assess security needs, designing security solutions, and documenting the implementation of cloud security controls. You will also engage in discussions to refine security strategies and ensure a smooth transition to cloud security-managed operations, all while staying updated on the latest security trends and technologies. Roles & Responsibilities: - Expected to perform independently and become an SME. - Required active participation/contribution in team discussions. - Contribute in providing solutions to work related problems. - Assist in the development and documentation of security policies and procedures. - Evaluate and recommend security technologies and tools to enhance the security posture. Professional & Technical Skills: - Must To Have Skills: Proficiency in Identity Access Management (IAM). - Good To Have Skills: Experience with Microsoft Active Directory. - Strong understanding of cloud security principles and best practices. - Experience in risk assessment and vulnerability management. - Familiarity with compliance frameworks such as ISO 27001, NIST, or GDPR. Additional Information: - The candidate should have minimum 2 years of experience in Identity Access Management (IAM). - This position is based at our Kolkata office. - A 15 years full time education is required.

Information Security Head : Responsibilities: Develop, implement and monitor a strategic, comprehensive enterprise information security and IT risk management program Work directly with the business units to facilitate risk assessment and risk management processes Develop and enhance an information security management framework Understand and interact with related disciplines through committees to ensure the consistent application of policies and standards across all technology projects, systems and services Partner with business stakeholders across the company to raise awareness of risk management concerns Assist with the overall business technology planning, providing a current knowledge and future vision of technology and systems Requirements: Degree in business administration or a technology-related field required Professional security management certification Minimum of 7+ to 11 years of experience in a combination of risk management, information security and IT jobs Knowledge of common information security management frameworks, such as ISO/IEC 27001, NIST, SOC 2 and GDPR Excellent written and verbal communication skills and high level of personal integrity Innovative thinking and leadership with an ability to lead and motivate cross-functional, interdisciplinary teams Hands-on experience in managing information /cyber security systems and solutions Having exposure in formulation and implementation of information security policies and procedures Experience with contract and vendor negotiations and management including managed services Specific experience in Agile (scaled) software development or other best in class development practices Experience with Cloud computing/Elastic computing across virtualized environments A good understanding or working knowledge of, Vulnerability assessments and penetration testing Application security source code reviews Incident management and investigations life cycle Security Architecture design principles and its applications in real world scenarios Show more Show less