3198 Owasp Jobs - Page 10

Company Description CyberFort DigiSec Solution Private Ltd. is led by a team of seasoned Information Security Management professionals with over three decades of industry experience. They possess technical and managerial expertise, having held strategic roles in multinational corporations, government entities, Big4 firms, and the banking sector. The company is committed to agile digital transformation, enhancing customer experience, and reducing operational costs, while ensuring robust Information Security & Controls framework. Our team excels in IT Governance, Risk Management, System Audits & Compliance, OT/ICS Cyber Security, Data Privacy, CSOC, facilitating data protection, privacy, threat monitoring and developing Cybersecurity strategies to mitigate cyber risks. Role Description This is a full-time role for a Vulnerability and Penetration Testing with atleast 2-3 years of relevant hands-on experience. This position is for our Medavakkam Chennai CSOC Centre. Day-to-day tasks will include conducting vulnerability assessments, penetration testing engagements, red teaming, reverse engineering, and malware analysis. The role involves identifying security vulnerabilities in applications and systems, analyzing the impact of discovered vulnerabilities, and providing detailed reports with remediation strategies. Collaboration with other cybersecurity professionals to improve overall security posture of our client will be key part of the job. Also, selected candidate need to groom and lead a team of VAPT professionals for Cert-In empanelment process. Qualifications Experience in Vulnerability Assessments and Penetration Testing Skills in Reverse Engineering and Malware Analysis Proficiency in Application Security and Red Teaming Very strong in Threat Exposure Mangement, Threat Intelligence, Cyber Attack framework like att@ck.mitre, Strong understanding of fundamental cybersecurity principles Excellent analytical and problem-solving abilities Effective communication and teamwork skills Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field Very Good Exposure to OWASP Top 10 Web Application, Mobile Application, API Security, Code Review Very Good understanding of SBOM, CBOM, HBOM guidelines, Cyber Resilience frameworks like SEBI CSCRF, CISA CRR Relevant certifications such as OSCP, CPENT, GPEN, CEH, or similar are a plus

Role: Linux Administrator Experience: 6+ Years Location: Chennai Mandatory: Linux, GCP, AWS JD: Experience: o 6+ years of experience in cloud security, with a focus on enterprise product software in the cloud. o At least 3+ years of hands-on experience with major cloud platforms (AWS, Microsoft Azure, or Google Cloud Platform). o Proven experience with securing enterprise software applications and cloud infrastructures. o Strong background in securing complex, large-scale software environments with a focus on infrastructure security, data security, and application security. o Hands-on experience with the OWASP Top 10 and integrating security measures into cloud applications. o Experience with Hybrid Cloud environments and securing workloads that span on-premises and public cloud platforms. Technical Skills: o In-depth experience with cloud service models (IaaS, PaaS, SaaS) and cloud security tools (e.g., AWS Security Hub, Azure Security Center, GCP Security Command Center). o Expertise in securing enterprise applications, including web services, APIs, and microservices deployed in the cloud. o Strong experience with network security, encryption techniques, IAM policies, security automation, and vulnerability management in cloud environments. o Familiarity with container security (Docker, Kubernetes) and serverless computing security. o Hands-on experience with Infrastructure as Code (IaC) tools such as Terraform, CloudFormation, or similar tools. o Knowledge of regulatory compliance requirements such as SOC 2, GDPR, HIPAA, and how they apply to enterprise software hosted in the cloud.

As the Compliance Program Manager for Information & Cyber Security, your responsibilities will include setting and managing compliance programs to meet various requirements such as regulatory standards, ISO27001, and PCI DSS. You will be tasked with developing security standards, technical solutions, strategies, and best practices for the organization while recommending security enhancements to management as needed. Additionally, you will be responsible for driving large programs across teams to address Information Security needs and ensuring successful, on-time, and on-budget delivery of Information Security projects. Your role will also involve developing, maintaining, and overseeing Information Security Policies, Processes, and standards/guidelines to address all applicable regulatory and ISO requirements. You will work on implementing new security tools to mitigate vulnerabilities and automate tasks, as well as leading the development and implementation of Information & Cyber Security Assurance Program. Managing the Third Party Risk Assessment Program and handling InfoSec Audits (internal/external) will also be part of your responsibilities, along with conducting awareness trainings. Furthermore, you will assist the organization in planning and executing InfoSec needs, influencing successful delivery of Information Security projects. Your duties will also include writing comprehensive reports with assessment-based findings, outcomes, and suggestions for system security enhancement. The ideal candidate for this role should have a Bachelor's degree in Engineering or a technical field, along with relevant certifications in security specialization. Experience in driving and governing audits, practice standardization, and hands-on experience with audits, InfoSec compliances, and Vulnerability assessments are required. Familiarity with technologies and processes such as networks, encryption, vulnerability management, identity and access management, endpoint management, risk management, and cloud services is essential. Basic knowledge of software development lifecycles and methodologies is preferred, along with the ability to present and influence top-line management and executives on Information Security importance. Strong problem-solving skills, conflict management abilities, and a good understanding of infrastructure including web & cloud technologies and network architecture are also desired for this position.,

Job Description Your Impact: You will work in the spirit of agile & a product engineering mindset - delivering the sprint outcomes, iteratively & incrementally, following the agile ceremonies You’re expected to write clean,modular,production ready code and take it through production and post-production lifecycle. You will groom the stories functionally & help define the acceptance criteria (Functional & Non-Functional/NFRs) You will have breadth of concepts, tools & technologies to address NFRs like security, performance, reliability, maintainability and understand the need for trade-offs You will bring in expertise to optimize and make the relevant design decisions (considering trade-offs) at the module / components level Manage the product lifecycle from requirements gathering and feasibility analysis through high-level and low-level design, development, user acceptance testing (UAT), and staging deployment. Integrate SAST,DAST in detecting OWASP vulnerabilities, thereby securing a robust and scalable product journey roadmap Qualifications Your Skills & Experience: A Bachelor’s degree in engineering with 8.5+ years of experience in building large-scale, large-volume services & distributed apps. Proficiency in Java, Spring/Springboot/Micronaut framework,NodeJs,React,K8(Container Orchestrator),Message Queues(Kafka/ActiveMQ,Rabbit MQ/Tibco/JMS) You are aware of Multi-Cloud Platforms like AWS, GCP, Azure, etc. You apply SOLID, DRY design principles, design patterns & practice Clean Code You are an expert at String Manipulation, Data/Time Arithmetic, Collections & Generics You build reliable & high-performance apps leveraging Eventing, Streaming, Concurrency, You design and build microservices from the ground up, considering all NFRs & applying DDD, Bounded Contexts You use one or more databases (RDBMS or NoSQL) based on the needs You understand the significance of security aspects & compliance to data, code & application security policies; You write secure code to prevent known vulnerabilities. You understand HTTPS/TLS, Symmetric/Asymmetric Cryptography, CertificatesYou use logging frameworks like Log4j, NLog, etc. You use Logging/Monitoring solutions (Splunk, ELK, Grafana) Set Yourself Apart With You understand infra. as code (cattle over pets via Terraform/Cloud-Formation/Ansible) You understand reactive programming concepts, Actor models & use RX Java / Spring React / Akka / Play, etc. You are aware of distributed tracing, debugging, and troubleshooting You are aware of side-car, service mesh usage along with microservices You are aware of gateways, load-balancers, CDNs, Edge caching You are aware of gherkin and cucumber for BDD automation You are aware of one distributed caching solution like Redis, MemCache, etc. A Tip From The Hiring Manager Software Development Engineers (SDE-2) are bright, talented, and motivated young minds with strong technical skills, developing software applications and services that make life easier for customers. The SDE-2 is expected to work with an agile team to develop, test, and maintain digital business applications. Additional Information Gender Neutral Policy 18 paid holidays throughout the year. Generous parental leave and new parent transition program Flexible work arrangements Employee Assistance Programs to help you in wellness and well-being. Company Description Publicis Sapient is a digital transformation partner helping established organizations get to their future, digitally-enabled state, both in the way they work and the way they serve their customers. We help unlock value through a start-up mindset and modern methods, fusing strategy, consulting, and customer experience with agile engineering and problem-solving creativity. United by our core values and our purpose of helping people thrive in the brave pursuit of the next, our 20,000+ people in 53 offices around the world combine experience across technology, data sciences, consulting and customer obsession to accelerate our clients’ businesses through designing the products and services their customers truly value.

Job Description Your Impact: You will work in the spirit of agile & a product engineering mindset - delivering the sprint outcomes, iteratively & incrementally, following the agile ceremonies You’re expected to write clean,modular,production ready code and take it through production and post-production lifecycle. You will groom the stories functionally & help define the acceptance criteria (Functional & Non-Functional/NFRs) You will have breadth of concepts, tools & technologies to address NFRs like security, performance, reliability, maintainability and understand the need for trade-offs You will bring in expertise to optimize and make the relevant design decisions (considering trade-offs) at the module / components level Manage the product lifecycle from requirements gathering and feasibility analysis through high-level and low-level design, development, user acceptance testing (UAT), and staging deployment. Integrate SAST,DAST in detecting OWASP vulnerabilities, thereby securing a robust and scalable product journey roadmap Qualifications Your Skills & Experience: A Bachelor’s degree in engineering with 8.5+ years of experience in building large-scale, large-volume services & distributed apps. Proficiency in Java, Spring/Springboot/Micronaut framework,NodeJs,React,K8(Container Orchestrator),Message Queues(Kafka/ActiveMQ,Rabbit MQ/Tibco/JMS) You are aware of Multi-Cloud Platforms like AWS, GCP, Azure, etc. You apply SOLID, DRY design principles, design patterns & practice Clean Code You are an expert at String Manipulation, Data/Time Arithmetic, Collections & Generics You build reliable & high-performance apps leveraging Eventing, Streaming, Concurrency, You design and build microservices from the ground up, considering all NFRs & applying DDD, Bounded Contexts You use one or more databases (RDBMS or NoSQL) based on the needs You understand the significance of security aspects & compliance to data, code & application security policies; You write secure code to prevent known vulnerabilities. You understand HTTPS/TLS, Symmetric/Asymmetric Cryptography, CertificatesYou use logging frameworks like Log4j, NLog, etc. You use Logging/Monitoring solutions (Splunk, ELK, Grafana) Set Yourself Apart With You understand infra. as code (cattle over pets via Terraform/Cloud-Formation/Ansible) You understand reactive programming concepts, Actor models & use RX Java / Spring React / Akka / Play, etc. You are aware of distributed tracing, debugging, and troubleshooting You are aware of side-car, service mesh usage along with microservices You are aware of gateways, load-balancers, CDNs, Edge caching You are aware of gherkin and cucumber for BDD automation You are aware of one distributed caching solution like Redis, MemCache, etc. A Tip From The Hiring Manager Software Development Engineers (SDE-2) are bright, talented, and motivated young minds with strong technical skills, developing software applications and services that make life easier for customers. The SDE-2 is expected to work with an agile team to develop, test, and maintain digital business applications. Additional Information Gender Neutral Policy 18 paid holidays throughout the year. Generous parental leave and new parent transition program Flexible work arrangements Employee Assistance Programs to help you in wellness and well-being. Company Description Publicis Sapient is a digital transformation partner helping established organizations get to their future, digitally-enabled state, both in the way they work and the way they serve their customers. We help unlock value through a start-up mindset and modern methods, fusing strategy, consulting, and customer experience with agile engineering and problem-solving creativity. United by our core values and our purpose of helping people thrive in the brave pursuit of the next, our 20,000+ people in 53 offices around the world combine experience across technology, data sciences, consulting and customer obsession to accelerate our clients’ businesses through designing the products and services their customers truly value.

Job Description Your Impact: You will work in the spirit of agile & a product engineering mindset - delivering the sprint outcomes, iteratively & incrementally, following the agile ceremonies You’re expected to write clean,modular,production ready code and take it through production and post-production lifecycle. You will groom the stories functionally & help define the acceptance criteria (Functional & Non-Functional/NFRs) You will have breadth of concepts, tools & technologies to address NFRs like security, performance, reliability, maintainability and understand the need for trade-offs You will bring in expertise to optimize and make the relevant design decisions (considering trade-offs) at the module / components level Manage the product lifecycle from requirements gathering and feasibility analysis through high-level and low-level design, development, user acceptance testing (UAT), and staging deployment. Integrate SAST,DAST in detecting OWASP vulnerabilities, thereby securing a robust and scalable product journey roadmap Qualifications Your Skills & Experience: A Bachelor’s degree in engineering with 8.5+ years of experience in building large-scale, large-volume services & distributed apps. Proficiency in Java, Spring/Springboot/Micronaut framework,NodeJs,React,K8(Container Orchestrator),Message Queues(Kafka/ActiveMQ,Rabbit MQ/Tibco/JMS) You are aware of Multi-Cloud Platforms like AWS, GCP, Azure, etc. You apply SOLID, DRY design principles, design patterns & practice Clean Code You are an expert at String Manipulation, Data/Time Arithmetic, Collections & Generics You build reliable & high-performance apps leveraging Eventing, Streaming, Concurrency, You design and build microservices from the ground up, considering all NFRs & applying DDD, Bounded Contexts You use one or more databases (RDBMS or NoSQL) based on the needs You understand the significance of security aspects & compliance to data, code & application security policies; You write secure code to prevent known vulnerabilities. You understand HTTPS/TLS, Symmetric/Asymmetric Cryptography, CertificatesYou use logging frameworks like Log4j, NLog, etc. You use Logging/Monitoring solutions (Splunk, ELK, Grafana) Set Yourself Apart With You understand infra. as code (cattle over pets via Terraform/Cloud-Formation/Ansible) You understand reactive programming concepts, Actor models & use RX Java / Spring React / Akka / Play, etc. You are aware of distributed tracing, debugging, and troubleshooting You are aware of side-car, service mesh usage along with microservices You are aware of gateways, load-balancers, CDNs, Edge caching You are aware of gherkin and cucumber for BDD automation You are aware of one distributed caching solution like Redis, MemCache, etc. A Tip From The Hiring Manager Software Development Engineers (SDE-2) are bright, talented, and motivated young minds with strong technical skills, developing software applications and services that make life easier for customers. The SDE-2 is expected to work with an agile team to develop, test, and maintain digital business applications. Additional Information Gender Neutral Policy 18 paid holidays throughout the year. Generous parental leave and new parent transition program Flexible work arrangements Employee Assistance Programs to help you in wellness and well-being. Company Description Publicis Sapient is a digital transformation partner helping established organizations get to their future, digitally-enabled state, both in the way they work and the way they serve their customers. We help unlock value through a start-up mindset and modern methods, fusing strategy, consulting, and customer experience with agile engineering and problem-solving creativity. United by our core values and our purpose of helping people thrive in the brave pursuit of the next, our 20,000+ people in 53 offices around the world combine experience across technology, data sciences, consulting and customer obsession to accelerate our clients’ businesses through designing the products and services their customers truly value.

Job Description Your Impact: You will work in the spirit of agile & a product engineering mindset - delivering the sprint outcomes, iteratively & incrementally, following the agile ceremonies You’re expected to write clean,modular,production ready code and take it through production and post-production lifecycle. You will groom the stories functionally & help define the acceptance criteria (Functional & Non-Functional/NFRs) You will have breadth of concepts, tools & technologies to address NFRs like security, performance, reliability, maintainability and understand the need for trade-offs You will bring in expertise to optimize and make the relevant design decisions (considering trade-offs) at the module / components level Manage the product lifecycle from requirements gathering and feasibility analysis through high-level and low-level design, development, user acceptance testing (UAT), and staging deployment. Integrate SAST,DAST in detecting OWASP vulnerabilities, thereby securing a robust and scalable product journey roadmap Qualifications Your Skills & Experience: A Bachelor’s degree in engineering with 8.5+ years of experience in building large-scale, large-volume services & distributed apps. Proficiency in Java, Spring/Springboot/Micronaut framework,NodeJs,React,K8(Container Orchestrator),Message Queues(Kafka/ActiveMQ,Rabbit MQ/Tibco/JMS) You are aware of Multi-Cloud Platforms like AWS, GCP, Azure, etc. You apply SOLID, DRY design principles, design patterns & practice Clean Code You are an expert at String Manipulation, Data/Time Arithmetic, Collections & Generics You build reliable & high-performance apps leveraging Eventing, Streaming, Concurrency, You design and build microservices from the ground up, considering all NFRs & applying DDD, Bounded Contexts You use one or more databases (RDBMS or NoSQL) based on the needs You understand the significance of security aspects & compliance to data, code & application security policies; You write secure code to prevent known vulnerabilities. You understand HTTPS/TLS, Symmetric/Asymmetric Cryptography, CertificatesYou use logging frameworks like Log4j, NLog, etc. You use Logging/Monitoring solutions (Splunk, ELK, Grafana) Set Yourself Apart With You understand infra. as code (cattle over pets via Terraform/Cloud-Formation/Ansible) You understand reactive programming concepts, Actor models & use RX Java / Spring React / Akka / Play, etc. You are aware of distributed tracing, debugging, and troubleshooting You are aware of side-car, service mesh usage along with microservices You are aware of gateways, load-balancers, CDNs, Edge caching You are aware of gherkin and cucumber for BDD automation You are aware of one distributed caching solution like Redis, MemCache, etc. A Tip From The Hiring Manager Software Development Engineers (SDE-2) are bright, talented, and motivated young minds with strong technical skills, developing software applications and services that make life easier for customers. The SDE-2 is expected to work with an agile team to develop, test, and maintain digital business applications. Additional Information Gender Neutral Policy 18 paid holidays throughout the year. Generous parental leave and new parent transition program Flexible work arrangements Employee Assistance Programs to help you in wellness and well-being. Company Description Publicis Sapient is a digital transformation partner helping established organizations get to their future, digitally-enabled state, both in the way they work and the way they serve their customers. We help unlock value through a start-up mindset and modern methods, fusing strategy, consulting, and customer experience with agile engineering and problem-solving creativity. United by our core values and our purpose of helping people thrive in the brave pursuit of the next, our 20,000+ people in 53 offices around the world combine experience across technology, data sciences, consulting and customer obsession to accelerate our clients’ businesses through designing the products and services their customers truly value.

Join US as a Principal Engineer Mobile Applications! Are you ready to lead the next generation of mobile innovation in the IoT spaceAt ORBCOMM, we re seeking a Principal Engineer Mobile Applications to spearhead the design, architecture, and development of transformative mobile experiences across Android, iOS, and cross-platform environments. This is more than a coding role it s a chance to define the future of how industries connect their physical and digital worlds. Why You ll Love Working Here: We foster a collaborative and forward-thinking culture where technical excellence and innovation are celebrated. As a Principal Engineer, you ll play a strategic role in shaping our mobile technology stack, mentoring development teams, and delivering impactful solutions in a global organization. With a flexible hybrid work schedule, collaborating onsite at our Hyderabad office 4 days a week while also benefiting from the flexibility of remote work. What You ll Do: Architect and design scalable, efficient mobile solutions across native (iOS, Android), hybrid, and progressive web applications. Translate customer requirements and product vision into technical specifications and reusable development assets. Lead development of mobile features using Kotlin Multiplatform and modern UI frameworks like Jetpack Compose and SwiftUI. Conduct detailed code reviews, establish coding standards, and promote clean, maintainable code across teams. Mentor junior and mid-level developers, fostering a culture of growth and technical excellence. Partner with Product Managers to align technical execution with strategic product goals. Represent mobile engineering in customer-facing meetings and cross-functional discussions. Evaluate and introduce new tools, technologies, and frameworks to elevate mobile development practices. Stay current with emerging trends in mobile, cross-platform, and IoT technologies. Contribute to ORBCOMM s long-term technical vision and innovation roadmap. Ensure robust mobile security practices aligned with OWASP and industry standards. Implement and optimize communication protocols including REST, GraphQL, WebSockets, MQTT, and CoAP. Support deployment through CI/CD pipelines and collaborate with DevOps for scalable delivery Who You Are: You re a mobile architecture expert, an innovative problem-solver, and a natural mentor. You re passionate about cutting-edge technologies and driven to build applications that are performant, secure, and built to scale. 10+ years of experience in mobile application development, with hands-on leadership in complex mobile projects. Proven expertise in Android (Kotlin) and iOS (Swift) development. Experience with hybrid frameworks such as React Native or Flutter. Strong command of Kotlin Multiplatform Mobile (KMM) and modern mobile architecture patterns. Familiarity with IoT protocols like MQTT or CoAP and cloud platforms such as AWS IoT or Azure IoT. Deep knowledge of secure mobile coding practices and RESTful API integrations. Excellent problem-solving and communication skills. A track record of mentoring developers and driving best practices across mobile teams. And ideally, also bring: Experience with Jetpack Compose and SwiftUI. Familiarity with CI/CD pipelines for mobile applications. Exposure to edge computing, ML integrations, or open-source contributions. Experience with Agile methodologies and distributed development teams. Speaking engagements or publications in mobile development or IoT spaces. Then we want to meet you! About Us: At ORBCOMM, we re pioneers in IoT technology, that drives innovation and empowers our clients to make data-driven decisions. Our industry-leading solutions enable customers to boost productivity, streamline operations and increase their bottom line. With over 30 years of experience and the most comprehensive solution portfolio in the industry, we enable the management of millions of assets worldwide across diverse sectors including transportation, heavy industries, satellite, and maritime. Discover how ORBCOMM is transforming industries and unlocking the potential of data to drive meaningful change by visiting us at www.orbcomm.com ! Ready to Join Us We believe that our people are our greatest asset. Your skills and passion can help us achieve remarkable things! If you re seeking a thrilling career opportunity in a vibrant, growth-oriented environment, ORBCOMM is the perfect fit for you. We are committed to building a diverse and inclusive workplace and appreciate all applicants for their interest in joining our team. Only candidates selected for an interview will be contacted. At ORBCOMM, we are also dedicated to ensuring accessibility and are pleased to offer accommodations for individuals with disabilities upon request throughout all aspects of the selection process.

About Us CLOUDSUFI, a Google Cloud Premier Partner, is a global leading provider of data-driven digital transformation across cloud-based enterprises. With a global presence and focus on Software & Platforms, Life sciences and Healthcare, Retail, CPG, financial services, and supply chain, CLOUDSUFI is positioned to meet customers where they are in their data monetization journey. Our Values We are a passionate and empathetic team that prioritizes human values. Our purpose is to elevate the quality of lives for our family, customers, partners and the community. Equal Opportunity Statement CLOUDSUFI is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. All qualified candidates receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, and national origin status. We provide equal opportunities in employment, advancement, and all other areas of our workplace. Please explore more at https://www.cloudsufi.com/ What We Are Looking For We are seeking an experienced Senior Full Stack Developer with deep expertise in C# .NET , React/JavaScript , and PostgreSQL to join our agile SCRUM team. In this role, you will collaborate closely with cross-functional team members to design, develop, and deliver scalable, enterprise-grade application design studio. You will be a member of our distributed Agile software development team, contributing to planning, coding, testing, and continuous improvement. Responsibilities Collaborate with product owners, UX/UI designers, and fellow developers to refine user stories and deliver high-quality software sprints Design, build, and maintain secure and scalable APIs and backend services using C# and .NET Core Develop and enhance responsive, component-based React front-end applications Implement complex data models and optimize performance with PostgreSQL Participate in daily stand-ups, sprint planning, retrospectives, and backlog grooming Write automated unit and integration tests to ensure code quality, maintainability and reliability Ensure application performance, scalability, security, and accessibility standards are met Contribute to continuous delivery processes and DevOps practices Work closely with DevOps to help enhance product environments and the automated build/deployment process. Include Security as a focus every time an application is created or modified. Requirements 4+ years of experience developing software applications Experience working with US based clients Strong hands-on experience with C# / .NET Core for backend development Advanced proficiency with JavaScript and React.js for front-end development Familiarity with RESTful API design, versioning, and integration Solid understanding of Agile methodologies, specifically SCRUM, and collaborative team development Proven experience with source code management and review process in github or gitlab. Intermediate ability to write unit and integration tests. Exceptional analytical and problem-solving skills. Nice To Have Experience developing enterprise multi-tenant SaaS solutions Experience using Monitoring and Alerting tools, (Datadog, etc.). Validated knowledge of Continuous Integration/Continuous Delivery tools (Azure DevOps, AWS, Gitlab) Comprehend and adhere to the OWASP Top 10 security best practices. Experience with Application/UI frameworks. (MaterialUI) Experience implementing Web Content Accessibility Guidelines. (WCAG) Behavioral Competencies Must have worked with US/Europe based clients in onsite/offshore delivery models. Should have very good verbal and written communication, technical articulation, listening and presentation skills. Should have proven analytical and problem solving skills. Should have collaborative mindset for cross-functional team work Passion for solving complex search problems Should have demonstrated effective task prioritization, time management and internal/external stakeholder management skills. Should be a quick learner, self starter, go-getter and team player. Should have experience of working under stringent deadlines in a Matrix organization structure. Skills:- C#, React.js, Javascript and API

Knowmax is a global B2B SaaS platform built to elevate customer experience through intelligent knowledge management. We enable customer-facing teams to access the right answers instantly—across contact centers, digital channels, and field support—driving consistency, efficiency, and satisfaction at scale. Preferred Profile: Candidates with prior experience working on product development in a startup environment. Core Backend Skills Node.js Mastery Deep understanding of event loop, async patterns (Promises, async/await). Experience with frameworks like Express, NestJS, Fastify. Writing scalable APIs (REST), middleware, and modular code. Database Expertise SQL/Postgres – schema design, complex joins, indexing, query optimization. Knowledge of transactions, isolation levels, and migrations. Basic familiarity with ORMs (Sequelize/TypeORM/Prisma) and raw queries. Architecture & Design Ability to design backend systems Good understanding of API versioning, caching strategies (Redis). Frontend (Average Skill Expected) Comfortable with React (or Nuxt/Vue) for building and maintaining UIs. Basic understanding of state management (Redux, Vuex, Pinia). Familiarity with component-based architecture and UI libraries (Material UI, Tailwind). Can debug UI issues but not expected to be a design/UX expert. Other Expectations Code Quality – Writing unit tests (Jest/Mocha), code reviews, and maintaining clean architecture. Problem-Solving – Strong data structures and algorithmic skills (not as intense as SD3/Architect). Collaboration – Able to mentor juniors, break down tasks, and work closely with product and QA. Performance & Security – Understands security best practices (OWASP) and performance profiling. Skills:- Javascript, NodeJS (Node.js), React.js, PostgreSQL and MySQL

We are looking for an experienced Application Security Engineer with 23 years of hands-on experience in security testing across web, mobile, API, and cloud environments. You will perform in-depth manual and automated testing, identify vulnerabilities using frameworks like OWASP and NIST, and provide actionable remediation guidance with clear PoCs. This role involves close collaboration with development and DevOps teams to integrate security into the SDLC, support secure coding practices, and contribute to threat simulations and R&D efforts. Strong knowledge of CVSS, MITRE ATT&CK, and scripting skills (Python, Bash) are essential, along with the ability to clearly communicate security findings to both technical and non-technical stakeholders Key Responsibilities: Conduct hands-on security testing of web applications, mobile apps, cloud environments, and APIs, identifying security vulnerabilities based on industry-standard methodologies (e.g., OWASP, SANS, NIST). Evaluate the risk and severity of discovered vulnerabilities using frameworks such as CVSS and document findings with clear Proof-of-Concepts (PoCs), highlighting real-world business impact and custom remediation guidance. Collaborate with development teams to explain vulnerabilities, answer technical queries, and recommend secure coding practices and mitigation strategies. Participate in research and development (R&D) initiatives, including the discovery of new attack vectors, tooling improvements, and security automation. Contribute to secure SDLC processes, including secure design reviews, code reviews alongside DevOps and architecture teams. Assist in conducting threat simulations, adversary emulation, and red team exercises when required. Maintain awareness of emerging threats, CVEs, and vulnerability trends affecting web, mobile, and cloud technologies. Required Skills & Tools 2-3 years of hands-on experience in security testing or penetration testing across web, mobile, API, and/or network layers. Bachelors degree in Computer Science or a related technical field (or equivalent experience). Having published CVEs is considered a strong advantage. Solid knowledge of OWASP Top 10, MITRE ATT&CK, and Secure Coding Guidelines. Strong understanding of manual testing approaches — not just tool-assisted scans. Hands-on experience with reporting, PoC generation, and remediation consulting. Scripting or automation skills in Python, Bash for creating custom tools. Effective communication skills to interact with both technical and non-technical stakeholders.

Description As an Experienced Penetration Tester, You Will: In this role, you’ll be instrumental in identifying, assessing, and mitigating security vulnerabilities across diverse TPD environments. Your expertise in ethical hacking, adversary simulation, and red teaming will be key in strengthening our organization’s security posture. You’ll work alongside security engineers, developers, and leadership teams to test, refine, and enhance our defenses against sophisticated cyber threats. What You’ll Need: Four or more years of hands-on experience in penetration testing & red teaming, Strong understanding of security vulnerabilities, exploitation techniques, and mitigation strategies. Proficiency in penetration testing tools (e.g., Burp Suite, Metasploit, Cobalt Strike, Nmap, Wireshark, BloodHound) Knowledge on AI Security & LLM security – Identify real time threats Good understating of OWASP Top 10 & SANS Top 25 Identify & address to stakeholders on zero day issues to mitigate on time Experience with cloud security assessments (AWS, Azure, GCP) and container security (Kubernetes, Docker). ○ Strong knowledge of Linux, Windows, and Active Directory security principles. ○ Scripting and coding skills in Python, Bash, or PowerShell. Even Better If You Have: Industry certifications such as OSCP, OSEP, OSWE, GPEN, GXPN, or CISSP. Experience with telecommunications security, network architecture, or wireless security Mobile App Security testing (Static & Dynamic Analysis) Hands-on knowledge of cloud security frameworks, DevSecOps, and CI/CD security. Strong communication skills and ability to present findings to technical and non-technical stakeholders. Support teams to fix the security bugs on time. Requirements As an Experienced Penetration Tester, You Will: In this role, you’ll be instrumental in identifying, assessing, and mitigating security vulnerabilities across diverse TPD environments. Your expertise in ethical hacking, adversary simulation, and red teaming will be key in strengthening our organization’s security posture. You’ll work alongside security engineers, developers, and leadership teams to test, refine, and enhance our defenses against sophisticated cyber threats. What You’ll Need: Four or more years of hands-on experience in penetration testing & red teaming, Strong understanding of security vulnerabilities, exploitation techniques, and mitigation strategies. Proficiency in penetration testing tools (e.g., Burp Suite, Metasploit, Cobalt Strike, Nmap, Wireshark, BloodHound) Knowledge on AI Security & LLM security – Identify real time threats Good understating of OWASP Top 10 & SANS Top 25 Identify & address to stakeholders on zero day issues to mitigate on time Experience with cloud security assessments (AWS, Azure, GCP) and container security (Kubernetes, Docker). Strong knowledge of Linux, Windows, and Active Directory security principles. Scripting and coding skills in Python, Bash, or PowerShell. Even Better If You Have: Industry certifications such as OSCP, OSEP, OSWE, GPEN, GXPN, or CISSP. Experience with telecommunications security, network architecture, or wireless security Mobile App Security testing (Static & Dynamic Analysis) Hands-on knowledge of cloud security frameworks, DevSecOps, and CI/CD security. Strong communication skills and ability to present findings to technical and non-technical stakeholders. Support teams to fix the security bugs on time. Job responsibilities Key Responsibilities: Offensive Security Assessments – Conduct network, application, and cloud penetration tests to uncover security flaws before attackers do. Threat modeling – Assess the architecture & Tech stack implementation discover the potential threats Threat Simulation – Emulate real-world attack scenarios to test defensive controls and incident response capabilities. Exploit Development & Tooling – Create or modify scripts and tools to automate and enhance security testing. Vulnerability Research & Reporting – Identify, analyze, and document security gaps with clear remediation strategies. Collaboration & Knowledge Sharing – Work closely with developers, security teams, and leadership to improve security awareness and best practices. Continuous Learning & Adaptation – Stay updated on the latest attack techniques, exploits, and security trends to refine penetration testing methodologies. What we offer Culture of caring. At GlobalLogic, we prioritize a culture of caring. Across every region and department, at every level, we consistently put people first. From day one, you’ll experience an inclusive culture of acceptance and belonging, where you’ll have the chance to build meaningful connections with collaborative teammates, supportive managers, and compassionate leaders. Learning and development. We are committed to your continuous learning and development. You’ll learn and grow daily in an environment with many opportunities to try new things, sharpen your skills, and advance your career at GlobalLogic. With our Career Navigator tool as just one example, GlobalLogic offers a rich array of programs, training curricula, and hands-on opportunities to grow personally and professionally. Interesting & meaningful work. GlobalLogic is known for engineering impact for and with clients around the world. As part of our team, you’ll have the chance to work on projects that matter. Each is a unique opportunity to engage your curiosity and creative problem-solving skills as you help clients reimagine what’s possible and bring new solutions to market. In the process, you’ll have the privilege of working on some of the most cutting-edge and impactful solutions shaping the world today. Balance and flexibility. We believe in the importance of balance and flexibility. With many functional career areas, roles, and work arrangements, you can explore ways of achieving the perfect balance between your work and life. Your life extends beyond the office, and we always do our best to help you integrate and balance the best of work and life, having fun along the way! High-trust organization. We are a high-trust organization where integrity is key. By joining GlobalLogic, you’re placing your trust in a safe, reliable, and ethical global company. Integrity and trust are a cornerstone of our value proposition to our employees and clients. You will find truthfulness, candor, and integrity in everything we do. About GlobalLogic GlobalLogic, a Hitachi Group Company, is a trusted digital engineering partner to the world’s largest and most forward-thinking companies. Since 2000, we’ve been at the forefront of the digital revolution – helping create some of the most innovative and widely used digital products and experiences. Today we continue to collaborate with clients in transforming businesses and redefining industries through intelligent products, platforms, and services.

Quality Assurance (QA) Tester Location: Only from office, TECHNOSOFT SOFTWARE SOLUTION, Aundh, Pune Employment Type: Full-Time Company Description Welcome to Technosoft Software Solutions , your partner in digital transformation. We specialize in crafting stunning websites, developing impactful mobile apps, and providing top-notch SaaS solutions and innovative social media strategies. Our mission is to offer cutting-edge software services that drive success and transform ideas into powerful digital solutions. With honesty and professionalism, we strive to build long-term partnerships and help clients reach new heights in their digital journey. Role Description We are looking for a detail-oriented and experienced Quality Assurance Tester to ensure the delivery of high-quality software solutions across web, mobile, and cloud platforms. This is an on-site, full-time role based in Pune. The ideal candidate will have a strong background in manual and automation testing , with exposure to advanced QA methodologies, tools, and continuous testing practices. Responsibilities Design, develop, and execute manual and automated test cases based on functional and non-functional requirements Conduct end-to-end testing across web, mobile (Android/iOS), API, and backend systems Perform regression testing , smoke testing , integration testing , performance testing , and cross-browser/device testing Use tools like Postman , Selenium , JMeter , or Appium to automate repetitive and complex test scenarios Create and maintain test plans , test reports , traceability matrices , and detailed bug reports Collaborate with developers, product managers, and UI/UX teams to resolve issues and validate fixes Implement CI/CD testing practices using tools like Jenkins , GitHub Actions , or Azure DevOps Participate in Agile/Scrum ceremonies and contribute to sprint planning, estimations, and retrospectives Proactively identify QA process improvements and contribute to QA documentation and knowledge base Required Qualifications 2+ years of experience in Software Testing with strong exposure to manual and automated testing Hands-on experience with test case design , test execution , defect tracking , and test reporting Experience in API testing using Postman or similar tools Familiarity with test automation frameworks like Selenium WebDriver, Cypress, or Playwright Experience testing mobile applications (Android/iOS) using emulators or tools like Appium Strong analytical, debugging, and problem-solving skills Working knowledge of SDLC , STLC , and Agile methodologies Understanding of version control systems (Git) and basic SQL queries for backend validation Bachelor’s degree in Computer Science , Information Technology , or related field Preferred Skills (Nice to Have) Experience with JMeter , LoadRunner , or Gatling for performance/load testing Knowledge of security testing techniques (OWASP, penetration testing tools) Familiarity with BDD frameworks (Cucumber, Behave) Basic scripting skills in JavaScript , Python , or Java Experience with cloud-based testing platforms (BrowserStack, Sauce Labs) What We Offer Dynamic and inclusive work culture Opportunity to work on a wide range of projects and industries Access to the latest tools and technologies in testing Competitive compensation and performance-based growth

Senior Cyber Security Partner | 8+ yrs exp | Lead threat modeling, secure SDLC, cloud security (AWS/Azure/GCP), compliance (OWASP/NIST/ISO), incident response, mentoring, and tool evaluation. Pref: CISSP/CISM/CEH. Hybrid – Bengaluru.

At Capgemini Engineering, the world leader in engineering services, we bring together a global team of engineers, scientists, and architects to help the world’s most innovative companies unleash their potential. From autonomous cars to life-saving robots, our digital and software technology experts think outside the box as they provide unique R&D and engineering services across all industries. Join us for a career full of opportunities. Where you can make a difference. Where no two days are the same. Your Role Perform static application security testing on source code using Fortify. Perform software composition analysis using Sonatype IQ Assist with scan onboarding and troubleshooting Integrate tools into Jenkins pipelines Collaborate with teams to remediate high/critical findings Generate and analyse SCA scan result Automate reporting and dashboards Works in the area of Software Engineering, which encompasses the development, maintenance and optimization of software solutions/applications.1. Applies scientific methods to analyse and solve software engineering problems.2. He/she is responsible for the development and application of software engineering practice and knowledge, in research, design, development and maintenance.3. His/her work requires the exercise of original thought and judgement and the ability to supervise the technical and administrative work of other software engineers.4. The software engineer builds skills and expertise of his/her software engineering discipline to reach standard software engineer skills expectations for the applicable role, as defined in Professional Communities.5. The software engineer collaborates and acts as team player with other software engineers and stakeholders. Your Profile Deep understanding of Source code review, SCA and SBOM Hands-on experience with SAST and SCA tool Fortify SCA, Sonatype IQ. Good understanding of secure coding practices for languages such as Java, .NET ,JavaScript,Python,etc. Strong knowledge of OWASP Top 10, CWE, and secure software development lifecycle (SSDLC). Familiarity with CI/CD pipelines and integrating security tools in DevOps. (Jenkins, GitHub) Security certifications such as OSCP, GWAPT, eWPTX, CEH, CRTP will be an added advantage. What Will You Love Working At Capgemini Every Monday, kick off the week with a musical performance by our in-house band - The Rubber Band. Also get to participate in internal sports events, yoga challenges, or marathons. At Capgemini, you can work on cutting-edge projects in tech and engineering with industry leaders or create solutions to overcome societal and environmental challenges. You will get comprehensive wellness benefits including health checks, telemedicine, insurance with top-ups, elder care, partner coverage or new parent support via flexible work. You will have the opportunity to learn on one of the industry's largest digital learning platforms, with access to 250,000+ courses and numerous certifications. Capgemini is a global business and technology transformation partner, helping organizations to accelerate their dual transition to a digital and sustainable world, while creating tangible impact for enterprises and society. It is a responsible and diverse group of 340,000 team members in more than 50 countries. With its strong over 55-year heritage, Capgemini is trusted by its clients to unlock the value of technology to address the entire breadth of their business needs. It delivers end-to-end services and solutions leveraging strengths from strategy and design to engineering, all fueled by its market leading capabilities in AI, generative AI, cloud and data, combined with its deep industry expertise and partner ecosystem.

This role is for one of Weekday's clients Salary range: Rs 2000000 - Rs 2800000 (ie INR 20-28 LPA) Min Experience: 6 years Location: Mumbai JobType: full-time Requirements About the role A minimum experienceof 6-8 years in IT Services and Security Management with relevant 5 years in information / cyber security risk assessment or management or security risk advisory consulting experience Minimum 4 years of experience in web application/API/ mobile application development In depth understanding of OWASP & CWE application / API. Mobile security vulnerabilities Hands-on experience in implementingapplication security controlsas per NIST, OWASP Perform Threat Modelling of application considering internal and external risk factors Good hold in API and microservices security Ability to identify risk and threats based on overall environment and platform of application Detail understanding of web, app, middleware,and database security Excellentoral and writtencommunication skills preferred having customer or stakeholder interaction exposure Must be able to articulate risk observation in detail and simple understandable language Perform application & mobile security risk assessment as per best industry standards (NIST, ISO) Develop threat model as per the application applicability and business environment Share knowledge with other team members, provide inputs to provide quality risk reports Ensure risk tracker is kept updated for assessment performed Should be able to analyze risk for changes performed in application and recommend best practices Communicate effectively withproject managers, app owner and stakeholders Advises management of critical issues that may affect the risk posture in application Generate innovative ideas for achieving the objectives Demonstrate skills with upgrading knowledge quickly for latest platform level security such as for Kubernetes, OpenShift, microservices architecture security best practices Preferred Certifications CRISC/ CISSP/ OSCP/ CSSLP

NTT DATA strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now. We are currently seeking a QA Tester to join our team in Bangalore, Karnātaka (IN-KA), India (IN). Job Requirements: Quality Assurance Automation Tester responsible for designing, developing, and executing automated tests to ensure software quality and performance. The ideal candidate combines strong technical skills in automation frameworks and scripting with a solid understanding of testing methodologies and agile processes. Certifications and experience with CI/CD tools, API testing, and cloud platforms are highly desirable. Mandatory Skills: QA / SDET: Selenium, .NET, J¬Unit, N¬Unit, JMeter, Jenkins, SonarQube, Zap/OWASP, DevOps: GCP, Jenkins, scripting, SonarQube, Zap/OWASP, NetSparker Should have knowledge of APIs like Swagger, Postman Ideal Mindset: Lifelong Learner. You are always seeking to improve your technical and nontechnical skills. Team Player. You are someone who wants to see everyone on the team succeed and is willing to go the extra mile to help a teammate in need. Communicator. You know how to communicate your design ideas to both technical and nontechnical stakeholders, prioritizing critical information and leaving out extraneous details. About NTT DATA NTT DATA is a $30 billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long term success. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure and connectivity. We are one of the leading providers of digital and AI infrastructure in the world. NTT DATA is a part of NTT Group, which invests over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. Visit us at us.nttdata.com Whenever possible, we hire locally to NTT DATA offices or client sites. This ensures we can provide timely and effective support tailored to each client’s needs. While many positions offer remote or hybrid work options, these arrangements are subject to change based on client requirements. For employees near an NTT DATA office or client site, in-office attendance may be required for meetings or events, depending on business needs. At NTT DATA, we are committed to staying flexible and meeting the evolving needs of both our clients and employees. NTT DATA recruiters will never ask for payment or banking information and will only use @nttdata.com and @talent.nttdataservices.com email addresses. If you are requested to provide payment or disclose banking information, please submit a contact us form, https://us.nttdata.com/en/contact-us . NTT DATA endeavors to make https://us.nttdata.com accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact us at https://us.nttdata.com/en/contact-us . This contact information is for accommodation requests only and cannot be used to inquire about the status of applications. NTT DATA is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status. For our EEO Policy Statement, please click here . If you'd like more information on your EEO rights under the law, please click here . For Pay Transparency information, please click here .

The Security Operation Centre (SOC) Information Security Analyst are the first level responsible for ensuring the protection of digital assets from unauthorized access, identify security incidents and report to customers for both online and on-premises. The position monitors and responds to security events from managed customer security systems as part of a team on a rotating 24 x 7 x 365 basis. They are alert and aggressive to filter out suspicious activity and mitigate risks before any incident occur. Your background should include exposure to security technologies including firewalls, IPS/IDS, logging, monitoring and vulnerability management. You should understand network security practices. Excellent customer service while solving problems should be a top priority for you. Requirements Must-haves: Must have experience in SIEM, Threat hunting and Team management 6-8 Year Experience as SOC Analyst – (Experience in SIEM Tool ELK & Wazuh preferable) Process and Procedure adherence General network knowledge and TCP/IP Troubleshooting Ability to trace down an endpoint on the network, based on ticket information Familiarity with system log information and what it means Understanding of common network services (web, mail, DNS, authentication) Knowledge of host-based firewalls, Anti-Malware, HIDS Knowledge of creating and modifying the dashboards. Understanding of common network device functions (firewall, IPS/IDS, NAC) General Desktop OS and Server OS knowledge TCP/IP, Internet Routing, UNIX / LINUX & Windows Deep Knowledge in SIEM, Ticketing tool, EDR, Vulnerability Management, MimeCast, DMARC tool. Excellent written and verbal communication skills. Good to have: · Good to have industry certifications on any SIEM Platform, CEH, C|SA, CompTIA Security+ & Others Main Responsibilities Tier 1 SOC analysts are incident responders, remediating serious attacks escalated from junior analyst, assessing the scope of the attack, and affected systems, and collecting data for further analysis. Work proactively to seek out weaknesses and stealthy attackers, review vulnerability assessments(CVEs) on monitored assets. Focus more on doing deep dives into datasets to understand what's happening during and after attacks. Leading efforts to counter SLA breaches and anticipating the likelihood of future security alerts,incidents. Monitor security events from the various SOC entry channels (SIEM, Tickets, Email and Phone),based on the security event severity and suspicious activities, escalate to managed service support teams, tier 2 information security specialists, and/or customer as appropriate to perform further investigation and resolution. Works as a Team lead for the SOC Analysts helping them to ensure that corporate data and technology platform components are safeguarded from known threats. Analyse the Events & incidents and identify the root cause. Assist in keeping the SIEM platform up to date and contribute to security strategies as an when newthreats emerge. Staying up to date with emerging security threats including applicable regulatory security requirements. Bring enhancements to SOC security process, procedures, and policies. · Document and maintain customer build documents, security procedures and processes. Document incidents to contribute to incident response and disaster recovery plans. Review critical incident reports and scheduled weekly & monthly reports and make sure they are technically and grammatically accurate. Keep updated with new threats, vulnerabilities, create/contribute to use cases, threat hunting etc. Keep updated with the likes of OWASP Top 10 vulnerabilities, Bleeping Computer articles etc., for acquiring the knowledge over current threats in security perspective. Other responsibilities and additional duties as assigned by the security management team or service delivery manager. Skills: Excellent event or log analytical skills Proven experience as IT Security Monitoring or similar role Exceptional organizing and time-management skills Very good communication abilities ELK, Wazuh, Splunk, ArcSight SIEM management skills Reporting Job Type: Full-time Work Location: In person

Role Overview We are hiring a DevOps Engineer with expertise in AWS infrastructure, EC2, load balancers, DNS, network routing, and web server technologies. You will help build and manage secure, scalable, and high-availability infrastructure to support WAF services and microservice deployments. Key Responsibilities: Design, implement, and manage CI/CD pipelines for WAF components and internal cloud services. Provision and administer AWS EC2 instances, EBS volumes, and associated VM resources. Configure and maintain AWS Load Balancers (ALB/NLB), listener rules, target groups, and TLS termination. Set up and troubleshoot DNS records, zones, and routing policies using Route 53 or equivalent DNS services. Deploy and manage services on Kubernetes (EKS, GKE, AKS, or self-hosted clusters). Automate infrastructure using Terraform, Helm, and Ansible. Manage web server configurations (NGINX, Apache) including reverse proxy, SSL, and request routing. Handle TLS/SSL certificate management and traffic encryption. Monitor infrastructure with Prometheus, Grafana, CloudWatch, or ELK stack. Collaborate with security teams to implement WAF rules, hardening, and DevSecOps best practices. Participate in incident response, troubleshooting, and RCA documentation. Required Qualifications: 3+ years of experience in DevOps, SRE, or Infrastructure Engineering. Proficient in managing AWS EC2, Load Balancers, and cloud VM provisioning. Solid knowledge of DNS, routing concepts, and basic network troubleshooting. Experience configuring NGINX and Apache web servers (reverse proxy, SSL, performance tuning). Strong hands-on experience with Kubernetes, Docker, and containerized microservices. Infrastructure as Code (IaC) with Terraform, Helm, and Ansible. Experience with CI/CD tools like GitLab CI, Jenkins, or ArgoCD. Scripting in Bash, Python, or Go. Preferred Qualifications (Nice to Have) Experience configuring or deploying Web Application Firewalls (WAFs) such as Prophaze, ModSecurity, or AWS WAF. Familiarity with OWASP Top 10, container hardening, and CVE mitigation tools (Trivy, ZAP, etc.). Exposure to DevSecOps practices and multi-tenant SaaS environments. Relevant certifications such as: AWS Certified Solutions Architect – Associate or Professional AWS Certified DevOps Engineer Certified Kubernetes Administrator (CKA) Cisco Certified Network Associate (CCNA) Why Join Us: Build next-gen cloud infrastructure powering cutting-edge WAF technology. Work with a collaborative and fast-paced DevSecOps team. Flexible remote environment with opportunities for certification and upskilling. Directly influence performance, security, and scalability of core systems. Job Type: Full-time Pay: ₹45,000.00 - ₹80,000.00 per month Benefits: Health insurance Provident Fund Schedule: Day shift Monday to Friday Experience: DevOps: 3 years (Required) Work Location: In person

Trivandrum, Kerala, India Job Type Full Time Workspace Hybrid About the Role This position entails the candidate to lead CI/CD and release management initiatives in a hybrid role based in Trivandrum. The candidate will be responsible for designing and optimizing secure, scalable CI/CD pipelines, integrating security tools aligned with OWASP Top 10, and managing deployments through change control processes using ServiceNow. This role involves active collaboration on branching strategies, automation improvements, production deployments, and supporting audits and release governance. The engineer will troubleshoot build and deployment issues across environments, mentor junior team members, and play a key role in delivering high-quality, secure software across enterprise projects in a cloud-native AWS ecosystem. Requirements 6–10 years of hands-on experience in DevOps/DevSecOps and release engineering Proficiency in Jenkins, Maven, NPM, Docker, Git, Helm, Artifactory/Nexus Strong experience with AWS (IaaS/PaaS), S3, Lambda@Edge, Kubernetes (EKS) Scripting expertise in Groovy and Bash In-depth understanding of CI/CD processes, security standards, and release governance Strong communication, documentation, and mentoring abilities Nice to Have : Experience with ServiceNow, Jira, Confluence, automated testing, and environment configuration About the Company Claidroid Technologies stands at the forefront of digital transformation, specializing in a comprehensive spectrum of Enterprise Service Management and Enterprise Security Management solutions. Our expertise includes ServiceNow Proficiency, Identity and Access Management (IAM), Customer Identity and Access Management (CIAM), and Identity as a Service (IDaaS), among others. Integrating the best of on-site and offshore resources, we strive to meet and exceed our clients' evolving needs. With our headquarters in India, we've broadened our reach by establishing Claidroid Technologies Oy in Helsinki, Finland, and Claidroid Technologies Americas LLC in the USA. Our expansion aims to deliver our bespoke services to a wider audience across these regions. Why Join Us? Competitive Compensation: Salary in line with the best in the industry, along with generous perks. Hybrid Working Model: Enjoy the flexibility to work remotely Generous Benefits: Comprehensive health insurance, performance bonuses, and other rewards. Career Growth: Opportunities to grow in a dynamic, innovative environment focused on leadership and continuous improvement. Work Culture: Be part of a collaborative and inclusive team that values your contributions and supports your professional development.

RESPONSIBILITIES: Establish security best processes and practices for our mobile, on-premises and cloud-based platforms. Provide expert knowledge and guidance to the product teams about security vulnerabilities and remediation controls. Support and consult with product and development teams in the area of application security, including threat modeling and Application Security reviews. Implement, continuously develop, and maintain secure Software Security Development Lifecycle processes and software maturity model. Perform threat modeling, secure design, and source code review. Conduct security assessments, security testing and validation of vulnerability scan results. Assist teams in reproducing, triaging, and addressing application security vulnerabilities. Incorporate security tools/tasks to automate product development and deployment. Develop, implement, and automate defensive controls, creating and tuning tools and rules to detect and address malicious activity. Responsible for integration of security controls into SDLC. Establish supply chain security process and ensure 3rd party software meet the standards. Facilitate injection, integration, and compliance for Static Application Security Testing (SAST), Container Security Scanning & Open-Source Security Analysis during development phase. Facilitate injection, integration, and compliance for Dynamic Application Security Testing (DAST) Contribute to triaging, addressing security issues and tracking remediation. Own and manage Secure SDLC tooling. Develop and customize security tools used by security teams and developers. Work closely with development teams to build security directly into their SDLCs. Provide remediation guidance to programmers and management. Support bug bounty program Support the preparation of security releases Mentor and train development teams on secure coding standards and techniques. Develop Secure Coding Program. Constantly innovate at the pace of the adversary using latest techniques. EDUCATIONAL REQUIREMENTS: Bachelor’s degree in computer science, Information Systems, or equivalent combination of education and experience Certifications in the field of Information Security (at least one of the following: CISSP, CEH, GIAC CPEN, OSCP, OSWE, CWAPT, GWAPT, GWEB) EXPERIENCE REQUIRED: A minimum of 3 to 5 years of experience. GENERAL KNOWLEDGE, SKILLS & ABILITIES: In-depth knowledge of web and mobile security vulnerabilities, attack vectors and mitigation techniques Experience with multiple programming languages (Java, JavaScript, Go, Python, Ruby, Objective-C, C#, PHP) with hands on level coding experience with at least one scripting and one objected oriented programming language. Fluent with security testing with SAST, SCA, DAST, IAST, Fuzz and penetration testing tools Understanding of application security standards such as OWASP ASVS/Top 10 and CWE 25 Ability to discover and patch SQLi, XSS, CSRF, SSRF, authentication and authorization flaws, and other web-based security vulnerabilities (OWASP Top 10 and beyond). Knowledge of common authentication technologies including OAuth, SAML, CAs, OTP/TOTP. Knowledge of DevSecOps to maintain security in CI/CD pipeline. Solid experience with security tools like Semgrep, CheckMarx, VeraCode, BurpSuite, Snyk, Nessus Familiar with tools like Git, Jenkins, CircleCI, Maven, Ant, Gradle, Nexus, SonarQube, Artifactory, Chef, Splunk Experience writing custom rules for static analysis tools. Experience with API Security, IaC, Containerization, RASP, IAST Experience with micro services, container deployment and service orchestration Strong knowledge of cryptography, API security, and secret management Ability to clearly and effectively communicate concerns and issues to the management and engineers. Experience with Cloud (AWS, Azure, GCP) Security Experience writing tools to automate tasks and integrate systems using scripting languages like Go, Python and REST APIs. Experience in delivering and educating development groups in Secure Coding Expertise with common vulnerabilities and attack vectors. Experience integrating security tools into developer pipelines. DevOps experience managing deployment and configuration. General skills include: Strong critical thinking and analytical skills Ability to approach problem solving in a constructive and collaborative way that does not require absolute security. The ability to communicate complicated technical issues and risks to programmers, network engineers and managers. Strong leadership, project, and team-building skills Exceptional communication skills with diverse audiences; the ability to be an application security subject matter expert who can explain relevant topics to general audiences.

Join US as a Principal Engineer – Mobile Applications! Are you ready to lead the next generation of mobile innovation in the IoT space? At ORBCOMM, we’re seeking a Principal Engineer – Mobile Applications to spearhead the design, architecture, and development of transformative mobile experiences across Android, iOS, and cross-platform environments. This is more than a coding role—it’s a chance to define the future of how industries connect their physical and digital worlds. Why You’ll Love Working Here: We foster a collaborative and forward-thinking culture where technical excellence and innovation are celebrated. As a Principal Engineer, you’ll play a strategic role in shaping our mobile technology stack, mentoring development teams, and delivering impactful solutions in a global organization. With a flexible hybrid work schedule, collaborating onsite at our Hyderabad office 4 days a week while also benefiting from the flexibility of remote work. What You’ll Do: Architect and design scalable, efficient mobile solutions across native (iOS, Android), hybrid, and progressive web applications. Translate customer requirements and product vision into technical specifications and reusable development assets. Lead development of mobile features using Kotlin Multiplatform and modern UI frameworks like Jetpack Compose and SwiftUI. Conduct detailed code reviews, establish coding standards, and promote clean, maintainable code across teams. Mentor junior and mid-level developers, fostering a culture of growth and technical excellence. Partner with Product Managers to align technical execution with strategic product goals. Represent mobile engineering in customer-facing meetings and cross-functional discussions. Evaluate and introduce new tools, technologies, and frameworks to elevate mobile development practices. Stay current with emerging trends in mobile, cross-platform, and IoT technologies. Contribute to ORBCOMM’s long-term technical vision and innovation roadmap. Ensure robust mobile security practices aligned with OWASP and industry standards. Implement and optimize communication protocols including REST, GraphQL, WebSockets, MQTT, and CoAP. Support deployment through CI/CD pipelines and collaborate with DevOps for scalable delivery Who You Are: You’re a mobile architecture expert, an innovative problem-solver, and a natural mentor. You’re passionate about cutting-edge technologies and driven to build applications that are performant, secure, and built to scale. 10+ years of experience in mobile application development, with hands-on leadership in complex mobile projects. Proven expertise in Android (Kotlin) and iOS (Swift) development. Experience with hybrid frameworks such as React Native or Flutter. Strong command of Kotlin Multiplatform Mobile (KMM) and modern mobile architecture patterns. Familiarity with IoT protocols like MQTT or CoAP and cloud platforms such as AWS IoT or Azure IoT. Deep knowledge of secure mobile coding practices and RESTful API integrations. Excellent problem-solving and communication skills. A track record of mentoring developers and driving best practices across mobile teams. And ideally, also bring: Experience with Jetpack Compose and SwiftUI. Familiarity with CI/CD pipelines for mobile applications. Exposure to edge computing, ML integrations, or open-source contributions. Experience with Agile methodologies and distributed development teams. Speaking engagements or publications in mobile development or IoT spaces. Then we want to meet you! About Us: At ORBCOMM, we’re pioneers in IoT technology, that drives innovation and empowers our clients to make data-driven decisions. Our industry-leading solutions enable customers to boost productivity, streamline operations and increase their bottom line. With over 30 years of experience and the most comprehensive solution portfolio in the industry, we enable the management of millions of assets worldwide across diverse sectors including transportation, heavy industries, satellite, and maritime. Discover how ORBCOMM is transforming industries and unlocking the potential of data to drive meaningful change by visiting us at www.orbcomm.com! Ready to Join Us? We believe that our people are our greatest asset. Your skills and passion can help us achieve remarkable things! If you’re seeking a thrilling career opportunity in a vibrant, growth-oriented environment, ORBCOMM is the perfect fit for you. We are committed to building a diverse and inclusive workplace and appreciate all applicants for their interest in joining our team. Only candidates selected for an interview will be contacted. At ORBCOMM, we are also dedicated to ensuring accessibility and are pleased to offer accommodations for individuals with disabilities upon request throughout all aspects of the selection process.

Job Information Work Experience 0-0.6 (Associate Cyber Security Analyst) Industry IT Services Job Type Full time Date Opened 07/24/2025 City Ahmedabad State/Province Gujarat Country India Zip/Postal Code 380015 About Us E2logy is a leading software solutions company dedicated to empowering businesses with innovative technology and exceptional service. We combine our expertise in various domains with cutting-edge development practices to deliver high-quality, custom software solutions that cater to your unique needs and goals. Visit our website: https://e2logy.com/ to learn more about our services and expertise. Job Description We are seeking a Fresher Associate Cyber Security Analyst – VAPT who will play a supportive role in helping protect the organization’s cloud infrastructure, web and mobile applications, and internal systems. This entry-level role is ideal for recent graduates passionate about cybersecurity and eager to begin their career in a hands-on, learning-focused environment. You will work under the guidance of senior team members to identify vulnerabilities, support penetration testing activities, and enhance our overall security posture in alignment with global security standards such as ISO/IEC 27001 . Responsibilities: Assist in conducting vulnerability assessments and penetration testing on Web applications,Mobile applications,Cloud-based environments,Internal systems and network infrastructure Support the use of tools like Burp Suite, Nmap, Wireshark, Nessus, OWASP ZAP, etc., under supervision. Document basic findings, potential risks, and help prepare technical reports for internal teams. Work closely with senior analysts, DevOps, and development teams to understand and remediate security weaknesses. Contribute to maintaining and improving the organization’s compliance with ISO/IEC 27001 security guidelines , including proper documentation, risk identification, and implementation of relevant controls. Stay updated with emerging threats, vulnerabilities, and VAPT methodologies aligned with industry standards like OWASP Top 10 , ISO 27001 etc . Help in maintaining compliance with key standards such as OWASP Top 10, ISO 27001, PCI-DSS, etc. Requirements Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field. Basic understanding of web application security, network protocols, and common attack vectors. Exposure to or academic use of tools such as Burp Suite, Nmap, Wireshark, or Kali Linux. Familiarity with OWASP Top 10, CVEs, and basic cybersecurity concepts. Strong curiosity, analytical mindset, and attention to detail. Good communication skills and a willingness to learn in a team-oriented environment. Preferred Skills : Basic awareness of secure coding practices or code review. Introductory knowledge of cloud security, SIEM, or IDS/IPS tools. knowledge of ISO/IEC 27001 controls , risk assessment, or compliance practices. Certifications Like CompTIA Security+,Certified Ethical Hacker (CEH),eLearnSecurity Junior Penetration Tester (eJPT),ISO/IEC 27001 Foundation or Practitioner(Not Mandatory) Benefits Competitive compensation and performance-linked incentives. Health insurance and employee wellness benefits. Career development support and learning resources. Opportunity to work with modern cybersecurity tools and frameworks. Work Environment: Collaborative and supportive office setting with Alternative Saturday Working Flexibility to extend working hours during high-priority assessments or audits. Application Process: Please submit your resume, cover letter, and optionally a portfolio of academic or personal projects to careers@e2logy.com

Company Description Empay Software Solutions specializes in providing cutting-edge solutions and services for the financial services industry, particularly in electronic and mobile payment verticals. Since our founding in 2008, we have remained committed to delivering innovative and effective solutions in the transaction processing and payment services domain. Our mission is to help our clients become and stay pioneers in the industry. Our team combines technological expertise with in-depth knowledge of the retail payments business. Role Description We are hiring an experienced Java Team Lead with a strong technical background and leadership capabilities. The successful candidate will oversee the design, development, and deployment of Java-based applications and provide mentorship to a growing development team. Experience: 5+ Years (Including 2+ Years in a Lead Role) Location: Infopark Kochi | Work Mode: On-site (Mandatory) Key Responsibilities: Lead the design, development, and implementation of Java-based applications. Review, test, and debug team members’ code to ensure code quality and performance. Drive SDLC processes, timelines, and deliverables in coordination with cross-functional teams. Provide technical mentorship, assign tasks, and support junior developers. Ensure the application is secure and aligned with OWASP guidelines and industry best practices. Key Requirements: 5+ years of Java development experience, including 2+ years in a technical leadership role. Proficient in Spring MVC, Spring Boot, Spring Security, JPA, Hibernate, HTML/JSP/React, and Eclipse. Strong database expertise in SQL Server or Oracle. In-depth understanding of OWASP vulnerabilities, DAST, SAST, and familiarity with security tools such as Burp Suite, OWASP ZAP, and SonarQube. Experience in microservices architectures and cloud services (AWS, Azure, or GCP). Bachelor's/Master’s degree in Computer Science, Engineering, or a related field. Experience in Banking, EFT, and Card Payments domain is a strong plus.

About Organization: Larsen & Toubro Ltd, commonly known as L&T, is an Indian multinational conglomerate company, with business interests in engineering, construction, manufacturing, technology, information technology and financial services, headquartered in Mumbai. The company is counted among world's top five construction companies. The L&T Group comprises of 93 subsidiaries, 5 associate companies, 27 joint ventures and 35 jointly held operations, operating across basic and heavy engineering, construction, realty, manufacturing of capital goods, information technology, and financial services. Specialties: Aerospace, Infrastructure, Shipbuilding, Construction, Defense, Finance, Forging, Hydrocarbon, Information Technology & Engineering Services, Construction Equipment, Railways, Boilers, Process Plant, Turbines, Power, Renewable Energy, Manufacturing and Green Hydrogen. Job Role - Application Security (Cyber), Corporate IT Educational Qualifications - B.Tech/B.E Experience - Around 2-4 years in (IT) information technology along with information security Job Location - Mumbai Job Profile Sound knowledge of Info Sec standards such as ISO27001 Understanding of technology security architecture concepts Understanding Application Risk Management Framework Should possess good interfacing skills Should possess good application security knowledge, experience on tools & methodologies related to secure software development (OWASP top20, AppScan, Metasploit, WAF) for web, mobility, API, ERP & cloud apps. Job Responsibilities Keep track of latest tools & technologies being introduced in application security arena Roll out "security by design" structure in software projects (secure SDLC) Work with solution providers to conduct limited proof of concept testing for products through well-defined measurement criteria Implement security tools & technologies as per project plans with vendors & partners Conducting software security awareness trainings for stakeholders in respective areas Good communication skills ( verbal / written ) Should be a self-starter, motivated Competencies Required Security certifications (CISSP, OSCP, CEH) desirable