Role Overview: We are seeking a highly skilled and motivated QA Lead to join our team. The role requires a self-starter who will be critical to the development of a cutting-edge data platform designed to empower our clients to install our identity tools directly to their own local (distributed) environments. The QA Lead will be responsible for defining, implementing, and managing the testing strategy and processes to ensure the delivery of high-quality, public facing software solutions. This role involves creative and investigative QA, with a focus on voice of the customer in UAT environments. You will be collaborating with cross-functional teams including other QA engineers, developers, product and marketing managers, and business owners to improve the testing process and meet business and technical requirements. Job Description: Job Title : QA Lead (L40) Key Responsibilities : Test Strategy and Planning : Define and implement the overall testing strategy, with a focus on scaling investigative QA approaches. Develop comprehensive testing approach and tooling aligned with project requirements and timelines. Standardize QA best practices for Snowflake Native Apps across teams. Monitor progress, and ensure timely delivery of testing milestones. Foster a culture of continuous improvement and innovation across QA teams. Testing and Quality Assurance : Conduct functional, regression, performance, and security testing to ensure software reliability and usability. Manage bug tracking and resolution processes using tools such as JIRA. Collaboration and Communication : Collaborate closely with development, product, DevOps and other QA teams to ensure alignment on quality goals and requirements. Participate in requirement reviews, design discussions, and sprint planning sessions to identify potential risks and dependencies. Provide regular updates on QA metrics, progress, and challenges to stakeholders. Qualifications and Certifications : Bachelor’s or Master’s degree in Computer Science, Information Technology, or a related field. Relevant certifications such as ISTQB, Certified Software Test Engineer (CSTE), or equivalent are highly desirable. Snowflake certifications Key Skills and Experience : Experience: 5+ years of SQL and database management 7+ years of experience in software testing and QA Proficiency in manual and automated testing techniques and platforms Expertise in QA methodologies, testing lifecycle (STLC), and Agile/Scrum processes. Strong knowledge of bug tracking tools (e.g., JIRA) test management tools (e.g., TestRail) and monitoring (e.g. Datadog) Hands-on experience with programming languages like Python or JavaScript Understanding of CI/CD pipelines and integration of testing into DevOps workflows. Familiarity with cloud-based testing environments Preferred Skills : Snowflake data or app developer Experience with API testing tools like Postman or SOAP UI. Knowledge of security testing and tools like OWASP ZAP or Burp Suite. Expertise in database testing using SQL Soft Skills : Strong analytical and problem-solving skills. Excellent communication and interpersonal skills to collaborate with cross-functional teams and stakeholders. Leadership abilities to motivate and guide the QA teams toward achieving quality goals. Location: Bengaluru Brand: Merkle Time Type: Full time Contract Type: Permanent Show more Show less

🔐 Cybersecurity Intern 📍 Location: Remote (100% Virtual) 📅 Duration: 3 Months 💸 Stipend for Top Interns: ₹15,000 🎁 Perks: Certificate | Letter of Recommendation | Full-Time Offer (Performance-Based) About INLIGHN TECH INLIGHN TECH is dedicated to delivering practical, industry-relevant learning experiences through immersive virtual internships. Our Cybersecurity Internship is designed to equip aspiring professionals with real-world skills in ethical hacking, threat analysis, and system defense through hands-on projects and guided mentorship. Internship Overview As a Cybersecurity Intern , you will gain critical exposure to information security principles, ethical hacking techniques, and cyber threat analysis . You will work on identifying vulnerabilities, simulating attacks, and building defenses — preparing you for roles in one of the most in-demand fields in tech. 🔧 Key Responsibilities Assist in conducting vulnerability assessments and penetration testing Analyze and monitor network traffic for suspicious activity Perform security audits and help develop incident response protocols Use industry-standard tools like Nmap, Wireshark, Burp Suite, Metasploit , etc. Research emerging threats and recommend mitigation strategies Learn and apply OWASP Top 10 concepts and security best practices Document findings and support internal cybersecurity reporting ✅ Qualifications Pursuing or recently completed a degree in Cybersecurity, IT, Computer Science , or related field Basic understanding of networking, operating systems, and web security concepts Familiarity with tools such as Kali Linux, Burp Suite, Nessus, or similar Passion for ethical hacking, threat hunting, and system security Strong analytical skills and eagerness to learn Knowledge of Linux/command-line interfaces is a plus 🎓 What You’ll Gain Hands-on experience with real-world cybersecurity tasks and tools Deep understanding of cyber threats, vulnerabilities, and protection strategies Internship Certificate of Completion Letter of Recommendation for top performers Potential Full-Time Offer based on performance A portfolio of cybersecurity assessments and reports to showcase your skills Show more Show less

Hello, Greetings for the day !!! Hiring "Dot Net Full Stack Developer" for one of our client based @ Mumbai !!! Experience: 3+ years Desirable Skill Sets for Developer – Microsoft .NET (Full stack) SQL Server: Performance optimization techniques jQuery Developing Secure code [ Keeping in mind OWASP Top 10] Version Control Tool – Git & Azure DevOps and above Consuming of SOAP/REST web services like SAP Gateway Services Development of .NET Web API/OData/REST services Automated/Unit Testing Frameworks like Microsoft Unit Test or NUNIT. Angular 16 and above Node.js TypeScript Design Patterns Knowledge of Cloud based development (App service, Code publish) LESS or SASS Interactive Visualizations and Analytical Reports using Power BI Object Storage like S3 Education Criteria: The resource should possess minimum qualification MCA with minimum passing marks of 60%. B.E /B.Tech in Computer Science or Computer Engineering or Information Technology Location: Sewree, Mumbai Job Type: Full-time Pay: ₹400,000.00 - ₹960,000.00 per year Schedule: Day shift Monday to Friday Morning shift Application Question(s): How soon you can join? Education: Bachelor's (Required) Experience: .NET Core: 3 years (Required) MVC: 3 years (Required) C#: 3 years (Required) SQL: 3 years (Required) OOPS Concept: 3 years (Required) Data structures: 3 years (Required) Web API: 3 years (Required) Language: English (Required) Location: Sewri, Mumbai, Maharashtra (Required) Work Location: In person

Job Description Responsible for testing our product software. Depending upon your project’s need may lead to functional or non-functional testing and manual or automated testing for such apps. This is a technical leadership role that involves testing complex features and working independently while collaborating with other leaders to meet the project’s objectives. Depending upon the project's need, may lead less experienced testers in the team and supervise their work. Responsibilities Study business requirements and approved architecture to understand the broader testing context. Based on this, create high-quality test strategies and test scenarios using appropriate tools and techniques. Own end-to-end test planning and management of all quality control activities in your project including functional / non-functional testing and manual / automated testing as appropriate. Test complex features and requirements effectively with the aim of detecting maximum defects. Use a risk-based approach to plan testing across requirements to ensure a good balance between effort and effectiveness. Follow all applicable processes and prepare necessary artifacts. Guide less experienced testers on their work and review their work for quality, completeness, and process compliance. Work with other leads to plan and lead sprint planning, daily stand-ups, sprint demos, and retrospectives. Provide technical coaching to less experienced testers and share relevant feedback with their managers. Present own work and learnings at internal forums. Develop a strong T-shaped technical skillset by undergoing appropriate training and courses and attending relevant industry events. Participate in hiring junior testers by conducting technical interviews. Participate in activities like vendor risk assessment and tool qualification for vendors and tools relevant to testers’ work. Work closely with your manager to meet your own goals. Qualifications Education: Bachelor’s or Master's degrees in Computer Science and engineering (CSE) or equivalent STEM degrees are preferred; however, experienced candidates from other disciplines with strong software testing skills may also be considered. Experience At least 5 years of hands-on experience in testing complex, rich, and highly interactive web applications, or desktop applications. Candidates with web app testing experience should have strong hands-on experience in at least one of these – manual or automated frontend testing, backend testing with API testing, and non-functional testing (load, performance, security, etc.). Strong experience working with SDLC tools like TestRail, JIRA, Confluence, and Bitbucket. Strong experience working in Agile Scrum teams and knowledge of frameworks like Scrum. Skills Knowledge of software design fundamentals and architectural patterns applicable to your project (client-server, layered architecture, microservices, etc.) Strong hands-on testing skills based on your role in the project: functional testing, backend / API testing, non-functional testing, test automation. Strong knowledge of appropriate testing tools based on your role (e.g., Postman, LoadRunner, JMeter, OWASP ZAP, Selenium, Ranorex, etc.) In the case of automation testers, strong knowledge of scripting languages used at Cytel, e.g., C#.NET, JavaScript, Python. Excellent verbal and written English communication skills as well as excellent interpersonal skills and a collaborative mindset. ISTQB, CAST, CSTE, or similar certification preferred. Specializations like security testing, performance testing, etc. may require additional skills and specific experience. Show more Show less

🚨 Hiring: Technical Sales & Client Success Executive (Commission-Based) Remote | Full-Time / Part-Time | Pan India About StartSecure StartSecure is a founder-led, lean cybersecurity company delivering Penetration Testing-as-a-Service (PTaaS) to startups, fintechs, and cloud-native companies. We secure digital assets through ethical hacking, VAPT, and continuous security assessments. We’re looking for a smart, persistent, and tech-savvy sales closer to turn inbound leads into paying B2B clients. Compensation (Commission-Only) No fixed salary – earn 10–12% commission per closed deal No cap on commissions 🛠 ️ Key Responsibilitie sCall & follow up with qualified B2B leads (provided daily )Pitch cybersecurity services: Web/Mobile/API/Cloud Pentests, VAPT, audit sSimplify technical services for decision-maker sHandle objections, pricing discussions, and close deal sUse WhatsApp, email, LinkedIn, and calls to nurture and convert lead sManage post-sale handoffs and CRM update sSet up meetings, share agendas, and conduct follow-up sSpeak with both Indian and international client s Required Skills & Experienc eMust-Hav e1–2+ years in IT/Technical Sale sExcellent English & Hindi communicatio nFamiliarity with Cybersecurity basics (VAPT, OWASP, etc. )Client relationship handling + deal-closing skill sComfort with virtual tools (Zoom, Meet, LinkedIn, etc. )Nice-to-Hav ePrior B2B experience selling to CTOs, founders, tech lead sKnowledge of CVSS, compliance, and security audit sCRM, Notion, Google Sheets, WhatsApp Business experienc e Requirement sOwn laptop, smartphone, and reliable interne tSelf-driven, organized, and great at follow-up sComfortable working on commission-onl yWilling to learn cybersecurity fundamentals (if new to the field ) Perk sDaily warm B2B leads (no cold calls )Branded email (e.g. yourname@startsecure.in )Mentorship from ethical hacking expert sFlexible hours and growth potentia lPath to fixed pay + commission rol e 👇 Apply No w 📩 Email your resume + intro to :sales@startsecure.in or dev.kumar@startsecure.i n 📞 WhatsApp: +91 8369899105Subj ect: Sales Executive – Your Nam e(Optional: Share a short 60-sec voice or video pitch! ) Show more Show less

Who are we? Checkmarx is the leader in application security and ensures that enterprises worldwide can secure their application development from code to cloud. Our consolidated platform and services address the needs of enterprises by improving security and reducing TCO, while simultaneously building trust between AppSec, developers, and CISOs. At Checkmarx, we believe it’s not just about finding risk, but remediating it across the entire application footprint and software supply chain with one seamless process for all relevant stakeholders. We are honored to serve more than 1,800 customers, which includes 40 percent of all Fortune 100 companies including Siemens, Airbus, SalesForce, Stellantis, Adidas, Wal-Mart and Sanofi. Who are we looking for? Appsec engineer that has worked with external customers and would like to train to become an architect. Focused on the customer, Managed Services' mission is to ensure that clients get the most out of Checkmarx Products and Solutions. We are looking to grow our team with a talented Application Security Architect to support Checkmarx services and our customers. We are looking for a resilient and self-motivated individual who wants to be part of an expanding team in a fast-growing industry. Responsibilities : Review customer’s software architectures with a focus on potential security threats Provide dev teams with explanation and mitigation advice for security vulnerabilities found in the Checkmarx scans; Design and coordinate the implementation and maintenance of tailored solutions that will meet customer requests, needs and requirements; Collaborate with Product Management, R&D and Support teams in handling customer issues or internal Checkmarx initiatives; Occasionally assist in pre-sale activities, like providing product demonstrations; Assistance in the implementation of Application Security Programs and processes; Providing training for developers and management Travel to customer sites for meetings and technical activities; What is needed to succeed? Degree in Software Engineering or equivalent At least 5 years of combined experience in development, in any programming language,and Application Security (minimum 2 years in AppSec). Previous experience in one or more Application Security practices, such as pen-testing, security code review, AST products, research Knowledge on how to conduct a Threat Modeling exercise. Knowledge of AppSec industry standards, frameworks and guidelines, such as OWASP Top 10 (Web, Api or Mobile) and Secure SDLC. Client handling skills for Security Engagements; Good written and verbal communication skills in English; Ability to travel (up to 20%); Pro-active and sense of ownership; Get an advantage if you have Security Certifications (CISSP, CSSLP, CEH, OSCP, etc.). Show more Show less

JOB DESCRIPTION ———————————————————————— Assistant Manager - IT & OT Infrastructure, Data and Applications Security Godrej Agrovet Limited (GAVL) Mumbai, Maharashtra, India ————————————————————————————————————— Job Title: Assistant Manager - IT & OT Infrastructure, Data and Applications Security Job Type: Permanent, Full-time Function: IT Business: Godrej Agrovet Limited - Corporate Location: Mumbai, Maharashtra, India About Godrej Industries Group (GIG) At the Godrej Industries Group, we are privileged to serve over 1.1 billion consumers globally through our businesses with market leadership positions in the consumer products, real estate, agriculture, financial services and chemicals industries. https://www.godrejindustries.com/ About Godrej Agrovet Limited (GAVL) Godrej Agrovet is a food and agri conglomerate, dedicated to improving the productivity of Indian farmers by innovating products and services that sustainably increase crop and livestock yields. www.godrejagrovet.com About the role We are seeking a highly skilled and experienced IT & OT Infrastructure, Data, and Applications Security Manager to lead the security strategy and implementation for IT & OT (Operational Technology) environments. This role is responsible for ensuring that critical infrastructure, network systems, and applications are secure from cyber threats while ensuring operational continuity in both the IT and OT domains. The position requires a deep understanding of both IT and OT security frameworks, as well as an ability to collaborate with cross-functional teams to safeguard digital assets and operations. Roles & Responsibilities: 1. IT & OT Infrastructure Security: Develop, implement, and maintain security policies, procedures, and controls to protect IT & OT infrastructure components, including servers, networks, industrial control systems (ICS), SCADA, and cloud environments. Collaborate with IT teams to ensure secure integration between IT and OT systems, addressing the unique security requirements of each domain. Conduct regular risk assessments, vulnerability scans, and penetration tests to identify and mitigate threats in IT & OT infrastructures. Manage the security of industrial networks, SCADA systems, and IIoT (Industrial Internet of Things) devices to prevent cyber threats and ensure safe operations. Implement and maintain security for cloud services, on-premises data centers, and critical OT assets, ensuring compliance with industry standards. 2. Data Security : Implement data encryption, tokenization, and masking techniques to protect sensitive and proprietary data across systems, databases, and storage devices. Oversee data classification processes and ensure data protection in compliance with legal and regulatory requirements (GDPR,CCPA, HIPAA, etc.). Ensure proper data backup, disaster recovery, and business continuity planning related to data security. Conduct data loss prevention (DLP) assessments and implement preventative controls. Manage access control policies for databases and ensure segregation of duties for sensitive information. 3. Network Security: Develop and maintain robust network security architecture for IT & OT networks, ensuring protection against unauthorized access, data breaches, and cyber-attacks. Monitor and analyze network traffic and logs to detect potential threats, vulnerabilities, and anomalous activities across IT & OT networks. Implement network segmentation to isolate IT and OT environments while ensuring controlled data exchange between systems. Configure and manage firewalls, intrusion detection/prevention systems (IDS/IPS), and secure VPNs to protect networks from external and internal threats. Manage secure communication channels for IT/OT devices and ensure the proper functioning of secure remote access protocols for IT/OT systems. 4. Applications Security: Lead the implementation of secure application development practices for OT applications. Work with development and OT engineering teams to incorporate secure coding practices into OT software systems. Conduct regular security assessments and code reviews for applications, ensuring that vulnerabilities are identified and mitigated. Oversee security testing of OT applications, including SCADA systems, human-machine interfaces (HMIs), and industrial control software, to ensure that security controls are in place. Implement security controls around application access, user authentication, and data integrity for OT applications. 5. Incident Response & Threat Management: Lead and coordinate response efforts to security incidents involving OT systems, ensuring that containment, investigation, and remediation processes are followed efficiently. Develop and maintain incident response plans that address OT-specific risks, ensuring minimal disruption to critical operations. Conduct post-incident analysis to identify root causes, recommend improvements, and apply corrective actions to prevent future occurrences. Collaborate with internal and external teams (e.g., law enforcement, vendors) during security incidents that may impact OT systems. 6. Security Governance and Compliance: Ensure compliance with relevant industry regulations, standards, and frameworks (e.g., NIST, ISO 27001, IEC 62443, NERC CIP) in OT environments. Implement and enforce security governance, risk management, and compliance strategies across OT assets. Perform regular audits and assessments of OT security controls to ensure compliance with security policies and regulatory requirements. Maintain comprehensive security documentation, including risk assessments, incident reports, and security project plans. 7. Security Awareness and Training: Develop and conduct security awareness training programs for OT staff, ensuring that they are educated on security best practices, emerging threats, and organizational policies. Provide ongoing education to the OT team about the importance of cybersecurity in the context of industrial operations and critical infrastructure. Stay current with emerging security trends, threats, and vulnerabilities specific to OT environments and incorporate new knowledge into security practices. Key Requirements: Education : Bachelor's degree in computer science, Information Security, Cybersecurity, Engineering, or a related field (Master’s preferred). Experience : Minimum of 5 to 6 years of experience in IT & OT security, Data security, and application security. Extensive experience securing both OT (industrial control systems, SCADA, ICS, IIoT) environments. Proven experience with network segmentation, firewalls, IDS/IPS, VPNs, and application security frameworks. Familiarity with securing operational technology, including understanding of industrial protocols (Modbus, OPC, DNP3, etc.). Hands-on experience with OT vulnerability management, incident response, and threat intelligence processes. Certifications : CISSP, CISM, CISA, or similar certifications are preferred. OT-specific certifications such as Certified SCADA Security Architect (CSSA) or IEC 62443 certification a plus. Network security certifications such as CCSP, AWS Certified Security Specialty, or CCNA Security are beneficial. Application security certifications (e.g., CEH, OWASP) are a bonus. Technical Skills: Expertise in securing network and infrastructure devices, systems, and industrial control systems (ICS). Deep knowledge of network protocols and security mechanisms (e.g., IP, TCP/IP, VPNs, firewalls). Proficiency in securing cloud environments (AWS, Azure, Google Cloud) as well as on-premises systems. Experience with tools for vulnerability scanning, penetration testing, and risk assessments (e.g., Nessus, Qualys, Burp Suite). Knowledge of SCADA systems, PLCs, and industrial protocols commonly used in OT environments. Personal Attributes: Strong analytical, problem-solving, and decision-making skills with the ability to think critically under pressure. Excellent communication and collaboration skills, able to work with both IT and OT teams to implement security solutions. Ability to manage multiple projects, prioritize tasks, and meet deadlines in a fast-paced environment. Proactive and forward-thinking, with a passion for staying ahead of emerging cybersecurity threats and trends. What’s in it for you? Be an equal parent Maternity support, including paid leave ahead of statutory guidelines, and flexible work options on return Paternity support, including paid leave New mothers can bring a caregiver and children under a year old, on work travel Adoption support; gender neutral and based on the primary caregiver, with paid leave options No place for discrimination at Godrej Gender-neutral anti-harassment policy Same sex partner benefits at par with married spouses Gender transition support We are selfish about your wellness Comprehensive health insurance plans, as well as accident coverage for you and your family, with top-up options Uncapped sick leave Mental wellness and self-care programmes, resources and counselling Celebrating wins, the Godrej Way Structured recognition platforms for individual, team and business-level achievements Performance-based earning opportunities https://www.godrejcareers.com/benefits/ If this sounds like a role for you, apply now! We look forward to meeting you. Show more Show less

Location: Noida, India Thales people architect identity management and data protection solutions at the heart of digital security. Business and governments rely on us to bring trust to the billons of digital interactions they have with people. Our technologies and services help banks exchange funds, people cross borders, energy become smarter and much more. More than 30,000 organizations already rely on us to verify the identities of people and things, grant access to digital services, analyze vast quantities of information and encrypt data to make the connected world more secure. Present in India since 1953, Thales is headquartered in Noida, Uttar Pradesh, and has operational offices and sites spread across Bengaluru, Delhi, Gurugram, Hyderabad, Mumbai, Pune among others. Over 1800 employees are working with Thales and its joint ventures in India. Since the beginning, Thales has been playing an essential role in India’s growth story by sharing its technologies and expertise in Defence, Transport, Aerospace and Digital Identity and Security markets. Mission description: Solution Architect PAY Digital engineering team has a team in charge of transversal activities around Security/Innovation/Automation/Cloud Transformation. As our strategy is to fully move to the cloud, we need to focus on new solution architecture for our products. Main mission : She/he is in charge of defining architecture patterns mainly in the cloud scope to help our teams to accelerate their cloud transformation. The role is not only around documenting these patterns but to experiment them and help the teams in their sprints to apply it. There’s also a large part of communication in the role to be able to share this expertise and help the team to take the ownership of the new architecture proposed. Technical skills / Environment : Responsibilities : You will be part of Thales CDI PAY Digital organization with a strong relation with the engineering director and all the squads around the world. Your role will mainly to study, synchronize, share advanced technical topics to support the teams in our location in Noida. You’ll have to be up to date in all the cloud technologies we’re using and the a learn the payment ecosystem we’re dealing with. Technical Skills: Software security: cryptography, PKI, Network, Web attack Software development: Web Applications, NodeJS, J2EE, Java Security, Web Service (REST/SOAP) Internet technology: HTTP(S), Web Service Security, PKI/X509 certificate, OAUTH2, Web Application Firewall, SAML/OIDC Cloud technology : Docker, K8S, AWS/GCP Database technology : SQL (MySQL/Postgre)/NoSQL(MongoDB/DynamoDB) Risk assessment: CVSSv2 scoring, Threat Modeling (OWASP, Microsoft SDL) Behavioral skills: Analytical, Autonomous, Creative Knowledge sharing Experience : 10+ years in software development or 2 years in similar position. At Thales we provide CAREERS and not only jobs. With Thales employing 80,000 employees in 68 countries our mobility policy enables thousands of employees each year to develop their careers at home and abroad, in their existing areas of expertise or by branching out into new fields. Together we believe that embracing flexibility is a smarter way of working. Great journeys start here, apply now!

Location: IN - Hyderabad Telangana Goodyear Talent Acquisition Representative: M Bhavya Sree Sponsorship Available: No Relocation Assistance Available: No Job Description: Required: 9+ years of experience with AWS (EC2, ECS/EKS, Lambda, IAM, VPC, CloudTrail, CloudWatch). Proven use of GitHub Actions , GitHub Enterprise , Terraform , Ansible . Strong expertise in SonarQube , code quality, and static analysis tooling. Experience with Datadog , APM tools, log aggregation, metrics dashboards. Strong foundation in testing strategies (unit, contract, performance, integration, E2E). Security automation experience (e.g., secrets management, container/image scanning). Proficient in scripting (e.g., Bash, Python) and YAML-based configuration. Preferred: Experience with OWASP , threat modeling, or policy-as-code (e.g., OPA). Familiarity with container orchestration (e.g., Kubernetes on EKS). Knowledge of service mesh , API gateways, and secure networking principles. Goodyear is an Equal Employment Opportunity and Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to that individual's race, color, religion or creed, national origin or ancestry, sex (including pregnancy), sexual orientation, gender identity, age, physical or mental disability, ethnicity, citizenship, or any other characteristic protected by law. Goodyear is one of the world’s largest tire companies. It employs about 68,000 people and manufactures its products in 53 facilities in 20 countries around the world. Its two Innovation Centers in Akron, Ohio and Colmar-Berg, Luxembourg strive to develop state-of-the-art products and services that set the technology and performance standard for the industry. For more information about Goodyear and its products, go to www.goodyear.com/corporate #Li-Hybrid

Company Description 👋🏼 We're Nagarro. We are a Digital Product Engineering company that is scaling in a big way! We build products, services, and experiences that inspire, excite, and delight. We work at scale — across all devices and digital mediums, and our people exist everywhere in the world (18000+ experts across 38 countries, to be exact). Our work culture is dynamic and non-hierarchical. We're looking for great new colleagues. That's where you come in! Job Description REQUIREMENTS: Total Experience 10+years. Strong working experience in Fullstack Developer with strong focus on JavaScript, Node.js and NestJS. Hands on working experience in Angular (v10+) and TypeScript knowledge, including RxJS, change-detection strategies, and state management patterns. Strong command of MySQL (schema design, indexing, query optimization) or another relational database. Proven experience designing and consuming RESTful APIs and applying secure coding practices (OWASP). Proficient with Git workflows and collaborative development (pull requests, trunk-based or Git-flow). Solid understanding of software engineering fundamentals: data structures, algorithms, design patterns, and unit/integration testing. Excellent verbal & written communication; ability to guide discussions and document technical decisions. RESPONSIBILITIES: Writing and reviewing great quality code. Understanding the client’s business use cases and technical requirements and be able to convert them into technical design which elegantly meets the requirements. Mapping decisions with requirements and be able to translate the same to developers. Identifying different solutions and being able to narrow down the best option that meets the client’s requirements. Defining guidelines and benchmarks for NFR considerations during project implementation. Writing and reviewing design document explaining overall architecture, framework, and high-level design of the application for the developers. Reviewing architecture and design on various aspects like extensibility, scalability, security, design patterns, user experience, NFRs, etc., and ensure that all relevant best practices are followed. Developing and designing the overall solution for defined functional and non-functional requirements; and defining technologies, patterns, and frameworks to materialize it. Understanding and relating technology integration scenarios and applying these learnings in projects. Resolving issues that are raised during code/review, through exhaustive systematic analysis of the root cause, and being able to justify the decision taken. Carrying out POCs to make sure that suggested design/technologies meet the requirements. Qualifications Bachelor’s or master’s degree in computer science, Information Technology, or a related field. Show more Show less

We’re Hiring: Software Engineer Front End! Looking for a role that fosters collaboration, creativity and career growth in a vibrant office environment? We got you covered! We are currently on the lookout for a Software Engineer Front End to join our team at Cloudstaff, the #1 workplace everywhere! Think you qualify for the role? Attach a 1-2 minute video intro and introduce yourself to us so we can meet you virtually. Attach this together with your updated CV to become a priority applicant! Send your application here ⤵️ CS Jobs - Software Engineer Frontend Role : Software Engineer Front End! Work Arrangement : Work from Home Location : India Schedule : Morning Shift Qualification and requirements (non-negotiable): Minimum 3-5 years of professional software development experience is required, including at least 2 years of experience in the following: Experience with NodeJS Proficiency with TypeScript or any typed language Experience with React or similar frameworks, developing performant and reusable components Your experience should also demonstrate: Strong understanding of software engineering best practices, such as SOLID, Design Patterns Deep understanding of JavaScript methodologies and design patterns Experience with backend principles and practices (databases, APIs) Experience with source control flow through Git or other distributed version control systems Familiarity with issue and project tracking software such as Jira It's a bonus if you have: Awareness of common security issues in client-side development, such as those in the OWASP top ten, and how to mitigate them Familiarity with UX, accessibility, internationalization, and localization concerns and solutions Experience with Grafana or other monitoring platforms Experience with breaking down product requirements into architecture design and implementation High-level understanding of cryptography concepts such as key exchange and the difference between symmetric and asymmetric encryption Experience working as part of a regionally distributed team Perks & Benefits: Comprehensive health and life insurance on your 16th day of employment, covering 1 free dependent on the 16th day of employment Flexible leave credits which may be used for vacation, emergency and sick leaves Quarterly perks boxes for WFH staff, offering groceries and snacks to keep you fueled Superb and exciting Mid-Year Parties – with items to give away and cash prizes! Endless opportunities for career advancement Annual Performance Review with Salary Increase We set you up for success with a company-provided PC/Laptop and fiber internet connection Tech-on-wheels Support Participate and join our CS Social Clubs and Special Interest Groups to connect with colleagues International career growth and connections Unlimited cash incentives for hired referrals Mental Wellness Employee Assistance program through Lifeworks In-house psychiatrist available to support employees' well-being Become part of the Employee Share Units program Cloudstaff Dream Points - To be used for bidding useful items like appliances, kitchenettes etc Cloudstaff: Build Your Career, Anywhere Established in 2005, Cloudstaff is a leading outsourcing company that empowers businesses to thrive through smarter talent solutions. We're passionate about creating a work environment that fosters your professional growth and overall well-being. Why Cloudstaff is the #1 Workplace? Award-winning Culture: We're committed to building the #1 Workplace Everywhere, with a proven track record of staff engagement initiatives and industry recognition Invest in You: We support your development through comprehensive training programs, mentoring and opportunities for career advancement Thrive as an Individual: We offer a strong work-life balance with flexible schedules, meaningful perks and a collaborative team environment. **To become a priority applicant, please share a 1-2 minute video introduction detailing your experience in this specific role. You can upload your video to the CSJobs platforms. Please use a clean, distraction-free background and speak clearly and articulately.** Show more Show less

Role : Security Test Engineer YOE : 3-5 yrs LOCATION : Eachanari, Coimbatore, Tamil Nadu About The Company Mallow Technologies is a custom software development company, and we have experts covering a wide variety of the latest software development domains. We take pride in delivering high-quality mobile and web applications based on client needs. We do not make apps, we make dreams come true. Mallow is a custom software development company. We have experienced professionals across a variety of trend-setting domains of software development. We have also developed many web and mobile applications. Our teams include RoR, PHP, DBA, DevOps, React. JS, Front-End, Android, iOS, QA and Business Analysts. Our client base is huge and so our professionals work to meet all the varied needs with one aspect, Quality. About Role Were looking for an experienced Security Tester to evaluate and strengthen the security of web and mobile applications. The role involves identifying vulnerabilities, performing penetration tests, and working closely with development teams to resolve issues. Security Tester Web and Mobile Applications Position : Security Tester Location : Coimbatore /Karur Experience Required : 3+ years Employment Type : Full-time Key Responsibilities Perform security testing for web/mobile apps (Android/iOS) Conduct vulnerability scanning and manual penetration testing Work closely with development teams & QA teams to fix identified issues and ensure vulnerabilities are addressed. Analyse APIs and code (static/dynamic). Ensure OWASP Top 10 and Mobile Top 10 coverage. Prepare detailed reports with fixes and support secure coding practices. Develop and execute security test plans and test cases. Stay up to date with the latest security threats, tools, and methodologies. Participate in security incident response activities. Assist in secure coding best practices and training. Required Skills Knowledge of HTTP, cookies, sessions, tokens Tools : Burp Suite, ZAP, MobSF, Postman, Frida Familiarity with SAST/DAST tools (e.g., SonarQube, Checkmarx) Understanding of encryption, authentication, secure storage Scripting in Python, Bash Preferred Qualifications Bachelor's degree in Computer Science, Information Security, or related field. 3+ years of experience in security testing or penetration testing. Certifications : CEH must to have. Strong understanding of application and network security concepts. Excellent problem-solving and analytical skills. Bonus Skills Secure DevOps & CI/CD pipeline awareness Cloud security basics (AWS, GCP, Azure) Reverse engineering for mobile apps Risk Analysis Job Types : Full-time, Permanent Benefits Cell phone reimbursement Flexible schedule Health insurance Paid sick time Provident Fund Work from home (ref:hirist.tech) Show more Show less

Job Description: Job Description - External About the Company: At AT&T, we’re connecting the world through the latest tech, top-of-the-line communications and the best in entertainment. Our groundbreaking digital solutions provide intuitive and integrated experiences for millions of customers across online, retail and care channels. Join our mission to deliver compelling communication and entertainment experiences to customers around the world as we continue to evolve as a technology-powered, human-centered organization. As part of our team, you’ll transform the way we deliver a seamless customer experience with digital at the center of all you do. In our world, digital is much larger than just an eCommerce channel, we are transforming all channels to digitally perform as one team to create a better customer experience. As we move into 2024, the digital transformation will revolutionize the digital space and you can build a career that will propel your future. About the Role: This career step requires senior level experience. Responsible for cyber security areas across products, services, infrastructure, networks, and/or applications while providing protection for AT&T, our customers and our vendors/partners. Works with senior team members on various projects relating to the protection of devices, customers, assets, data, information technology, and networks. Supports innovation, strategic planning, technical proof of concepts, testing, lab work, and various other technical program management related tasks associated with the cyber security programs. The Lead Engineer in this role will have expertise in holistic enterprise Web Application Firewall (WAF) policy management, architecture, configuration, management, troubleshooting, optimization, governance, risk assessment and automation. Roles & Responsibilities include: Perform Enterprise Web Application Firewall (WAF) policy management, architecture, configuration, management, troubleshooting, optimization, governance, risk assessment and automation Perform Proxy policy operations and provide required support. End to End life cycle of Web Application Firewalls (F5, Akamai, Barracuda, Cloud) Proxy SWATs and Call to Work – US off hours Perform migration of unprotected applications Perform API security (Akamai/NoName) related operations & tasks Required/Desired Skills Over 12 years of experience in Cybersecurity engineering with experience configuring, operating and managing forward and reverse proxies. Extensive experience providing SME level support in large, highly dynamic enterprise environment. Engineering, administrative, and operational experience supporting F5, Barracuda, Forcepoint, Secure Service Edge, Cloud Proxy and Cloud WAF platforms Understanding and practical experience with web applications, web platforms, application firewalls, frameworks and protocols with respect to application development, deployment, and operation including tuning of policies and signatures. Strong understanding of TCP/IP, web protocols and networking concepts Expertise with mainstream operating systems, web services, programming languages, regular expressions, analyzing log files, packet captures, network devices and attack vectors Script writing and programming using common shell and mainstream languages Senior level understanding of PKI Technology Experience exploiting web apps and web services security vulnerabilities including cross-site scripting, cross-site request forgery, SQL injection, DoS attacks, XML/SOAP, and API attacks Understanding of OWASP Risks, Vulnerabilities and Mitigation Mechanisms Lead, support and mentor team members on technical and non-technical matters as required Cyber Defense and Incident Response: Solid understanding of Incident Response process Prior experience in Cybersecurity operations and Incident Response Working level understanding of Cybersecurity operations and processes Desirable Skills: Excellent communication skills including metrics/performance documentation/presentation, technical drawing/architecture origination and modification Operates well under pressure and urgent circumstances Self-reliant and diligent in follow-through for assigned tasks Ability to work with a geographically disperse team Engaged collaborator, contributor and team player CISSP, CISM, SANS GIAC, GWEB or relevant cybersecurity Flexible to provide coverage in US morning hours on a need-basis, and as required Experience working in an environment where coordination with multiple teams is essential to success Ability to prioritize individual/group work in a high-stress and time-bound environment Weekly Hours: 40 Time Type: Regular Location: IND:AP:Hyderabad / Argus Bldg 4f & 5f, Sattva, Knowledge City- Adm: Argus Building, Sattva, Knowledge City It is the policy of AT&T to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, AT&T will provide reasonable accommodations for qualified individuals with disabilities. AT&T is a fair chance employer and does not initiate a background check until an offer is made. Show more Show less

Job Description Responsible for testing our product software. Depending upon your project’s need may lead to functional or non-functional testing and manual or automated testing for such apps. This is a technical leadership role that involves testing complex features and working independently while collaborating with other leaders to meet the project’s objectives. Depending upon the project's need, may lead less experienced testers in the team and supervise their work. Responsibilities Study business requirements and approved architecture to understand the broader testing context. Based on this, create high-quality test strategies and test scenarios using appropriate tools and techniques. Own end-to-end test planning and management of all quality control activities in your project including functional / non-functional testing and manual / automated testing as appropriate. Test complex features and requirements effectively with the aim of detecting maximum defects. Use a risk-based approach to plan testing across requirements to ensure a good balance between effort and effectiveness. Follow all applicable processes and prepare necessary artifacts. Guide less experienced testers on their work and review their work for quality, completeness, and process compliance. Work with other leads to plan and lead sprint planning, daily stand-ups, sprint demos, and retrospectives. Provide technical coaching to less experienced testers and share relevant feedback with their managers. Present own work and learnings at internal forums. Develop a strong T-shaped technical skillset by undergoing appropriate training and courses and attending relevant industry events. Participate in hiring junior testers by conducting technical interviews. Participate in activities like vendor risk assessment and tool qualification for vendors and tools relevant to testers’ work. Work closely with your manager to meet your own goals. Qualifications Education: Bachelor’s or Master's degrees in Computer Science and engineering (CSE) or equivalent STEM degrees are preferred; however, experienced candidates from other disciplines with strong software testing skills may also be considered. Experience At least 5 years of hands-on experience in testing complex, rich, and highly interactive web applications, or desktop applications. Candidates with web app testing experience should have strong hands-on experience in at least one of these – manual or automated frontend testing, backend testing with API testing, and non-functional testing (load, performance, security, etc.). Strong experience working with SDLC tools like TestRail, JIRA, Confluence, and Bitbucket. Strong experience working in Agile Scrum teams and knowledge of frameworks like Scrum. Skills Knowledge of software design fundamentals and architectural patterns applicable to your project (client-server, layered architecture, microservices, etc.) Strong hands-on testing skills based on your role in the project: functional testing, backend / API testing, non-functional testing, test automation. Strong knowledge of appropriate testing tools based on your role (e.g., Postman, LoadRunner, JMeter, OWASP ZAP, Selenium, Ranorex, etc.) In the case of automation testers, strong knowledge of scripting languages used at Cytel, e.g., C#.NET, JavaScript, Python. Excellent verbal and written English communication skills as well as excellent interpersonal skills and a collaborative mindset. ISTQB, CAST, CSTE, or similar certification preferred. Specializations like security testing, performance testing, etc. may require additional skills and specific experience. Job Info Job Identification 646 Job Category Software Quality Posting Date 06/11/2025, 02:17 PM Locations 5th Floor, Lohia-Jain IT Park, Pune, Maharashtra, 411038, IN Apply Before 06/12/2025, 11:00 AM Job Schedule Full time Show more Show less

SUMMARY Our client is IT MNC part of one of the major insurance groups based out of Germany and Europe. The Group is represented in around 30 countries worldwide, with Over 40,000 people worldwide, focusing mainly on Europe and Asia. Our client offers a comprehensive range of insurances, pensions, investments and services by focusing on all cutting edge technologies majorly on Could, Digital, Robotics Automation, IoT, Voice Recognition, Big Data science, advanced mobile solutions and much more to accommodate the customers future needs around the globe thru supporting millions of internal and external customers with state of-the-art IT solutions to everyday problems & dedicated to bringing digital innovations to every aspect of the landscape of insurance. Job Location: Hiranandani Gardens, Powai, Mumbai Mode: Work from Office Requirements Roles & Responsibilities: Define project scope, objectives, and deliverables in collaboration with stakeholders. Develop comprehensive project plans, including timelines, budgets, and resource allocation. Manage and coordinate project teams, including security engineers, analysts, and other technical resources. Track project progress, identify and manage risks and issues, and implement effective mitigation strategies. Ensure adherence to project management methodologies and best practices. Stay up-to-date with the latest cyber security trends and technologies. Skill & Competencies: Strong track record of delivering IT projects in a large, complex environment. (7 years), especially experience in the implementation of financial and regulatory requirements in the CFO context in Group-wide systems and their integration Proven 5+ years experience as a PM Bachelor's degree in Computer Science, Information Technology, or a related field. Proven experience (typically 5+ years) managing IT projects, with a significant focus on cyber security initiatives.

About Us: Paytm is India's leading mobile payments and financial services distribution company. Pioneer of the mobile QR payments revolution in India, Paytm builds technologies that help small businesses with payments and commerce. Paytm’s mission is to serve half a billion Indians and bring them to the mainstream economy with the help of technology. Job Summary: We are seeking a highly motivated and skilled Akamai CDN & WAF Engineer with 2-5 years of hands-on experience in configuring, deploying, and managing Akamai's Content Delivery Network (CDN) and Web Application Firewall (WAF) solutions. The ideal candidate will possess a strong understanding of web performance optimization, security best practices, and have a proven track record of implementing and troubleshooting Akamai services in a production environment. This role requires a proactive individual with excellent problem-solving skills and the ability to collaborate effectively with cross-functional teams. Responsibilities: Configuration and Deployment: Configure and deploy Akamai CDN services (e.g., Domain onboarding, delivery rules, caching policies, origin configurations) and WAF rulesets (e.g., security policies, custom rules, DOS and client reputation) based on application requirements and security guidelines.Production Support: Provide day-to-day operational support for Akamai CDN and WAF infrastructure, including monitoring performance, identifying and resolving issues, and implementing necessary changes.Performance Optimization: Analyze website performance metrics and implement Akamai CDN features and configurations to optimize website speed, reduce latency, and improve user experience.Security Implementation: Implement and manage Akamai WAF policies to protect web applications from various security threats, including OWASP Top 10 vulnerabilities, bot attacks, and DDoS attacks.Rule Management: Create, review, and maintain custom WAF rules and exceptions based on application-specific needs and emerging security threats.Colloration: Collaborate with development, security, and operations teams to integrate Akamai services seamlessly into the existing infrastructure and deployment pipelines.Troubleshooting: Investigate and resolve complex issues related to CDN delivery, caching behavior, and WAF blocking in a timely and efficient manner.Monitoring and Alerting: Configure and maintain monitoring and alerting systems for Akamai services to proactively identify potential issues and ensure service availability.Documentation: Create and maintain comprehensive documentation for Akamai configurations, deployment procedures, and troubleshooting steps.Knowledge Sharing: Stay up-to-date with the latest Akamai features and security trends and share knowledge with the team.Vendor Management: Interact with Akamai support for technical assistance and escalations as needed.Capacity Planning: Participate in capacity planning activities for Akamai services to ensure scalability and performance. Qualifications: Bachelor's degree in Computer Science, Information Technology, or a related field. 2-5 years of hands-on experience in configuring and managing Akamai CDN and WAF solutions in a production environment.Strong understanding of web protocols (HTTP/HTTPS), caching mechanisms, and DNS.Solid understanding of web application security principles and common attack vectors (OWASP Top 10).Experience with Akamai configuration tools and APIs.Proven ability to troubleshoot complex technical issues.Excellent analytical and problem-solving skills.Strong communication and collaboration skills.Ability to work independently and as part of a team. Experience with scripting languages (e.g., Python) is a plus. Relevant Akamai certifications are a plus. Why join us: ● Because you get an opportunity to make a difference, and have a great time doing that. ● You are challenged and encouraged here to do stuff that is meaningful for you and for those we serve. ● You should work with us if you think seriously about what technology can do for people. ● We are successful, and our successes are rooted in our people collective energy and unwavering focus on the customer, and that's how it will always be. Compensation: If you are the right fit, we believe in creating wealth for you. With enviable 500 mn+ registered users, 21 mn+ merchants and depth of data in our ecosystem, we are in a unique position to democratize credit for deserving consumers & merchants – and we are committed to it. India’s largest digital lending story is brewing here. It’s your opportunity to be a part of the story! Show more Show less

Level: Consultant/ Assistant Manager Skills: IT Audit + ITGC + ITAC + Code Review Experience: 3-7 Years Job Location: Bangalore Role & responsibilities Perform testing of IT Application Controls, IPE, and Interface Controls through code reviews , IT General Controls review covering areas such as Change Management, Access Management, Backup Management, Incident and Problem Management, SDLC, Data Migration, Batch Job scheduling/monitoring and Business Continuity and Disaster Recovery Risk Based IT Internal Audit for Financial Services Entities IT SOX 404 Controls Testing, Quality Assurance Internal Financial Controls related to IT General Controls as part of Financial Statements Audits Business Systems Controls / IT Application Controls IT Risk & Control Self-Assessment Auditing Emerging Technologies such as Cloud Security, Intelligent Automation, RPA, IoT etc. Working knowledge of programming languages(C/C++/Java/SQL) Preferred candidate profile A Bachelor's degree in engineering and approximately 3-7 years of related work experience; or a masters or MBA degree in business, computer science, information systems, engineering Expertise in code review skills (e.g., Java, C++, C, SQL, Oracle) Experience in performing IT audits of banking/financial sector applications Good to have knowledge of other IT regulations, standards and benchmarks used by the IT industry (e.g., NIST, PCI-DSS, ITIL, OWASP, SOX, COBIT, SSAE18/ISAE 3402 etc.) Show more Show less

Not Applicable Specialism Microsoft Management Level Senior Associate & Summary At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data. Those in application security at PwC will be responsible for providing security services to development teams including code scanning, readiness testing, and penetration testing to enable application teams to build and deploy secure applications in Production. You will utilise a riskbased methodology and shiftleft approach to engage early in the software development lifecycle. & Summary Responsibilities 1. Review application source code based on the industry standard security frameworks and organizations internal security policy. 2. Running the source code scan and analyzing the results derived from the SAST platform. 3. Coordinate with application development teams to ensure identified gaps are fixed in proper time. 4. Work with the application development team to eliminate false positives, to clarify compensating security controls. 5. Closely work with issue management team to ensure proper remediation plans are in places with well documented records. 6. Collaborate with senior developers and architects to ensure security best practices and secured design patterns are followed. 7. Work closely with other team members, including project leads, regional leads and territory security leadership team. 8. Provide regular updates on progress and issues to project managers and stakeholders 9. Strong knowledge of secure coding practices and common security vulnerabilities (e.g., OWASP Top 10). 10. Strong knowledge of Industry standard SAST tools (e.g. Veracode, Fortify on Demand). 11. Strong knowledge of Industry standard SCA tools (e.g. Blackduck). 12. Strong knowledge in manual and toolbased code review process, focusing on OWASP methodology. 13. Strong Knowledge of security vulnerability identification and remediation methodologies. 14. Familiarity with industry standard security frameworks and policies. 15. Strong knowledge of DevSecOps practices and integration of security within CI/CD pipelines. Mandatory skill sets VAPT, source code analysis, remediation, mitigation, vulnerability assessment, SAST, SCA, application security, white box testing, Veracode, Checkmarx , source code review. Preferred skill sets CI/CD Pipelines Years of experience required 47 Years Education qualification B.Tech/B.E. Education Degrees/Field of Study required Bachelor of Technology, Bachelor of Engineering Degrees/Field of Study preferred Required Skills Code Review Accepting Feedback, Accepting Feedback, Active Listening, Analytical Thinking, Application Security, Application Security Assessment, Azure Data Factory, Cloud Application Development, Cloud Security, Coding Standards, Communication, Creativity, Cybersecurity, DevOps Practices, Embracing Change, Emotional Regulation, Empathy, Endpoint Security, Forensic Investigation, Hosting Controllers, Inclusion, Information Security, Intellectual Curiosity, Learning Agility, LoadRunner (Software Testing Tool) {+ 30 more} Travel Requirements Government Clearance Required?

Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by diversity and inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health equity on a global scale. Join us to start Caring. Connecting. Growing together. Cloud Segment Information Security Officer (SISO- GL28) Location - Gurgaon Position Overview: The Cloud Segment Information Security Officer (SISO) is responsible for overseeing and implementing security measures to protect the organization's cloud-based data and infrastructure. This role involves developing cloud-specific security strategies, managing risks, ensuring compliance, and leading incident response efforts. A key aspect of this role is fostering strong relationships and partnerships with business leaders and stakeholders to ensure security measures align with business objectives. Primary Responsibilities: Cloud Security StrategyDevelop and implement security strategies tailored to the cloud segment to ensure the protection of cloud-based data and infrastructure Risk ManagementIdentify, assess, and mitigate security risks associated with cloud operations and technologies Incident ResponseLead incident response efforts for security breaches within the cloud segment, including investigation, containment, and remediation ComplianceEnsure compliance with relevant cloud-specific regulations and standards CollaborationWork closely with other IT teams and cloud segment leaders to integrate security measures into cloud services and applications Training and AwarenessSupport security training and awareness programs for employees within the cloud segment to promote a security-conscious culture Policy DevelopmentDevelop and enforce security policies and procedures specific to cloud operations Audit and AssessmentSupport security audits and assessments to ensure the effectiveness of security measures within the cloud segment Business PartnershipFoster strong relationships with business leaders and stakeholders to ensure security measures support and enhance business objectives. Collaborate with business units to understand their needs and provide tailored cloud security solutions Comply with the terms and conditions of the employment contract, company policies and procedures, and any and all directives (such as, but not limited to, transfer and/or re-assignment to different work locations, change in teams and/or work shifts, policies in regards to flexibility of work benefits and/or work environment, alternative work arrangements, and other decisions that may arise due to the changing business environment). The Company may adopt, vary or rescind these policies and directives in its absolute discretion and without any limitation (implied or otherwise) on its ability to do so Required Qualifications Proven experience in developing and implementing cloud security strategies Experience in leading cloud incident response efforts Experience in conducting cloud security audits and assessments Solid knowledge of cloud risk management and security architecture Familiarity with cloud compliance regulations and security monitoring tools Proven excellent collaboration and communication skills Demonstrated ability to conduct training and develop cloud security policies Demonstrated ability to build and maintain relationships with business leaders and stakeholders

Associate Application Security Analyst Gurgaon/Bangalore, India An associate security analyst role within the Global Technology Transversal Application Services (TAS) function, supporting the provision of a robust and consistent security scanning, remediation and guidance service within the TAS Application Operations team The team provides a global, centralized Operations, Governance, Audit, Risk & Security service across Application Delivery What you ll be DOING What will your essential responsibilities include? Assist the Application Operations (Security) team in all security related activities, forums and discussions Perform application scanning across the Application Delivery estate using tools such as SonarQube, Checkmarx, JFrog Xray, CAST Highlight, Defender and Qualys Assist in setting up Jenkins pipeline integration to CI/CD lifecycle Perform Static Application Security Testing (SAST) and Software Composition Analysis (SCA), including analysis of components in applications to detect vulnerabilities and compliance issues Work with Application Delivery teams to communicate the outcome of scanning and analysis, and agree remediation actions including target dates for completion, in alignment with Information Security Policy requirements Assist in Risk Assessments, evaluating the severity of identified vulnerabilities and prioritizing remediation efforts based on potential impact to the organization Contribute to the production of reporting and metrics to both internal and external stakeholders You will report to the Head of Application Operations What you will BRING We re looking for someone who has these abilities and skills: Required Skills and Abilities: Security First mindset Understanding of vulnerability analysis, scanning and remediation processes Understanding of CVEs, CVSS Understanding of security industry compliancy benchmarks and standards i e CIS Understanding of security best practices/standards i e OWASP, NIST Preferable experience with at least 2 coding languages i e Java, Dot Net, C++, Python etc Excellent analytical, critical thinking and organizational skills, ability to multitask and work to deadlines Proficiency in Power BI, MS Work and MS Excel: We maintain and continually develop a number of Power BI Dashboards to support provision of critical data and use Excel to support our data capture and analysis and reporting Desired Skills and Abilities: Excellent communication, interpersonal and relationship building skills (verbal and written) Who WE are AXA XL, the P&C and specialty risk division of AXA, is known for solving complex risks For mid-sized companies, multinationals and even some inspirational individuals we don t just provide re/insurance, we reinvent it How? By combining a comprehensive and efficient capital platform, data-driven insights, leading technology, and the best talent in an agile and inclusive workspace, empowered to deliver top client service across all our lines of business property, casualty, professional, financial lines and specialty With an innovative and flexible approach to risk solutions, we partner with those who move the world forward Learn more at axaxl com What we OFFER Inclusion AXA XL is committed to equal employment opportunity and will consider applicants regardless of gender, sexual orientation, age, ethnicity and origins, marital status, religion, disability, or any other protected characteristic At AXA XL, we know that an inclusive culture and a diverse workforce enable business growth and are critical to our success That s why we have made a strategic commitment to attract, develop, advance and retain the most diverse workforce possible, and create an inclusive culture where everyone can bring their full selves to work and can reach their highest potential It s about helping one another and our business to move forward and succeed Five Business Resource Groups focused on gender, LGBTQ+, ethnicity and origins, disability and inclusion with 20 Chapters around the globe Robust support for Flexible Working Arrangements Enhanced family friendly leave benefits Named to the Diversity Best Practices Index Signatory to the UK Women in Finance Charter Learn more at axaxl com / about-us / inclusion-and-diversity AXA XL is an Equal Opportunity Employer Total Rewards AXA XL s Reward program is designed to take care of what matters most to you, covering the full picture of your health, wellbeing, lifestyle and financial security It provides competitive compensation and personalized, inclusive benefits that evolve as you do We re committed to rewarding your contribution for the long term, so you can be your best self today and look forward to the future with confidence Sustainability At AXA XL, Sustainability is integral to our business strategy In an ever-changing world, AXA XL protects what matters most for our clients and communities We know that sustainability is at the root of a more resilient future Our 2023-26 Sustainability strategy, called Roots of resilience , focuses on protecting natural ecosystems, addressing climate change, and embedding sustainable practices across our operations Our Pillars: Valuing nature: How we impact nature affects how nature impacts us Resilient ecosystems - the foundation of a sustainable planet and society - are essential to our future We re committed to protecting and restoring nature - from mangrove forests to the bees in our backyard - by increasing biodiversity awareness and inspiring clients and colleagues to put nature at the heart of their plans Addressing climate change: The effects of a changing climate are far reaching and significant Unpredictable weather, increasing temperatures, and rising sea levels cause both social inequalities and environmental disruption Were building a net zero strategy, developing insurance products and services, and mobilizing to advance thought leadership and investment in societal-led solutions Integrating ESG: All companies have a role to play in building a more resilient future Incorporating ESG considerations into our internal processes and practices builds resilience from the roots of our business We re training our colleagues, engaging our external partners, and evolving our sustainability governance and reporting AXA Hearts in Action: We have established volunteering and charitable giving programs to help colleagues support causes that matter most to them, known as AXA XL s Hearts in Action programs These include our Matching Gifts program, Volunteering Leave, and our annual volunteering day - the Global Day of Giving For more information, please see axaxl com/sustainability

Application Security Analyst Bangalore/ Gurgaon, India A security analyst role within the Global Technology Transversal Application Services (TAS) function, supporting the provision of a robust and consistent security scanning, remediation, and guidance service within the TAS Application Operations team The team provides a global, centralized Operations, Governance, Audit, Risk & Security service across Application Delivery What you ll be DOING What will your essential responsibilities include? Support the Application Operations (Security) team in all security related activities, forums and discussions Perform application scanning across the Application Delivery estate using tools such as SonarQube, Checkmarx, JFrog Xray, CAST Highlight, Defender and Qualys Assist in setting up Jenkins pipeline integration to CI/CD lifecycle Perform Static Application Security Testing (SAST) and Software Composition Analysis (SCA), including analysis of components in applications to detect vulnerabilities and compliance issues Work with Application Delivery teams to communicate the outcome of scanning and analysis, and agree remediation actions including target dates for completion, in alignment with Information Security Policy requirements Assist in Risk Assessments, evaluating the severity of identified vulnerabilities and prioritizing remediation efforts based on potential impact to the organization Assist in Policy development, contributing to the development and implementation of vulnerability management policies and procedures Manage the production of reporting and metrics to both internal and external stakeholders You will report to the Operations Lead What you will BRING We re looking for someone who has these abilities and skills: Required Skills and Abilities: Security First mindset Understanding of vulnerability analysis, scanning and remediation processes Understanding of CVEs, CVSS Understanding of security industry compliancy benchmarks and standards i e CIS Understanding of security best practices/standards i e OWASP, NIST Preferable experience with at least 2 coding languages i e Java, Dot Net, C++, Python etc Desired Skills and Abilities: Outstanding analytical, critical thinking and organizational skills, ability to multitask and work to deadlines Proficiency in Power BI, MS Work and MS Excel: We maintain and continually develop a number of Power BI Dashboards to support provision of critical data and use Excel to support our data capture and analysis and reporting Excellent communication, interpersonal and relationship building skills (verbal and written) Who WE are AXA XL, the P&C and specialty risk division of AXA, is known for solving complex risks For mid-sized companies, multinationals and even some inspirational individuals we don t just provide re/insurance, we reinvent it How? By combining a comprehensive and efficient capital platform, data-driven insights, leading technology, and the best talent in an agile and inclusive workspace, empowered to deliver top client service across all our lines of business property, casualty, professional, financial lines and specialty With an innovative and flexible approach to risk solutions, we partner with those who move the world forward Learn more at axaxl com What we OFFER Inclusion AXA XL is committed to equal employment opportunity and will consider applicants regardless of gender, sexual orientation, age, ethnicity and origins, marital status, religion, disability, or any other protected characteristic At AXA XL, we know that an inclusive culture and a diverse workforce enable business growth and are critical to our success That s why we have made a strategic commitment to attract, develop, advance and retain the most diverse workforce possible, and create an inclusive culture where everyone can bring their full selves to work and can reach their highest potential It s about helping one another and our business to move forward and succeed Five Business Resource Groups focused on gender, LGBTQ+, ethnicity and origins, disability and inclusion with 20 Chapters around the globe Robust support for Flexible Working Arrangements Enhanced family friendly leave benefits Named to the Diversity Best Practices Index Signatory to the UK Women in Finance Charter Learn more at axaxl com / about-us / inclusion-and-diversity AXA XL is an Equal Opportunity Employer Total Rewards AXA XL s Reward program is designed to take care of what matters most to you, covering the full picture of your health, wellbeing, lifestyle and financial security It provides competitive compensation and personalized, inclusive benefits that evolve as you do We re committed to rewarding your contribution for the long term, so you can be your best self today and look forward to the future with confidence Sustainability At AXA XL, Sustainability is integral to our business strategy In an ever-changing world, AXA XL protects what matters most for our clients and communities We know that sustainability is at the root of a more resilient future Our 2023-26 Sustainability strategy, called Roots of resilience , focuses on protecting natural ecosystems, addressing climate change, and embedding sustainable practices across our operations Our Pillars: Valuing nature: How we impact nature affects how nature impacts us Resilient ecosystems - the foundation of a sustainable planet and society - are essential to our future We re committed to protecting and restoring nature - from mangrove forests to the bees in our backyard - by increasing biodiversity awareness and inspiring clients and colleagues to put nature at the heart of their plans Addressing climate change: The effects of a changing climate are far reaching and significant Unpredictable weather, increasing temperatures, and rising sea levels cause both social inequalities and environmental disruption Were building a net zero strategy, developing insurance products and services, and mobilizing to advance thought leadership and investment in societal-led solutions Integrating ESG: All companies have a role to play in building a more resilient future Incorporating ESG considerations into our internal processes and practices builds resilience from the roots of our business We re training our colleagues, engaging our external partners, and evolving our sustainability governance and reporting AXA Hearts in Action: We have established volunteering and charitable giving programs to help colleagues support causes that matter most to them, known as AXA XL s Hearts in Action programs These include our Matching Gifts program, Volunteering Leave, and our annual volunteering day - the Global Day of Giving For more information, please see axaxl com/sustainability

Line of Service Advisory Industry/Sector FS X-Sector Specialism Risk Management Level Director Job Description & Summary At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data. As a cybersecurity generalist at PwC, you will focus on providing comprehensive security solutions and experience across various domains, maintaining the protection of client systems and data. You will apply a broad understanding of cybersecurity principles and practices to address diverse security challenges effectively. Why PWC At PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes for our clients and communities. This purpose-led and values-driven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences for each other. Learn more about us. At PwC, we believe in providing equal employment opportunities, without any discrimination on the grounds of gender, ethnic background, age, disability, marital status, sexual orientation, pregnancy, gender identity or expression, religion or other beliefs, perceived differences and status protected by law. We strive to create an environment where each one of our people can bring their true selves and contribute to their personal growth and the firm’s growth. To enable this, we have zero tolerance for any discrimination and harassment based on the above considerations. " Job Description & Summary: We are seeking a professional to join our Cybersecurity and Privacy services team, where you will have the opportunity to help clients implement effective cybersecurity programs that protect against threats, drive transformation, and foster growth. As companies increasingly adopt digital business models, the generation and sharing of data among organizations, partners, and customers multiply. We play a crucial role in ensuring that our clients are protected by developing transformation strategies focused on security, efficiently integrating and managing new or existing technology systems, and enhancing their cybersecurity investments. As a Director, you will be responsible for overseeing regular operations, driving continuous improvement processes, and managing client and vendor interactions. This role involves managing complex incidents escalated from L2 analysts, operating the Security Incident process, and mentoring junior team members to build a cohesive and motivated unit. Responsibilities Review cybersecurity events analyzed by L2 security analysts, serving as the escalation point for detection, response, and remediation activities. Monitor and guide the team in triaging cybersecurity events, prioritizing, and recommending/performing response measures. Provide technical support for IT teams in response and remediation activities for escalated cybersecurity events/incidents. Follow up on cybersecurity incident tickets until closure. Guide L1 and L2 analysts in analyzing events and response activities. Expedite cyber incident response and remediation activities when delays occur, coordinating with L1 and L2 team members. Review and provide suggestions for information security policies and best practices in client environments. Ensure compliance with SLAs and contractual requirements, maintaining effective communication with stakeholders. Review and share daily, weekly, and monthly dashboard reports with relevant stakeholders. Update and review documents, playbooks, and standard operational procedures. Validate and update client systems and IT infrastructure documentation. Share knowledge on current security threats, attack patterns, and tools with team members. Create and review new use cases based on evolving attack trends. Analyze and interpret Windows, Linux OS, firewall, web proxy, DNS, IDS, and HIPS log events. Develop and maintain threat detection rules, parsers, and use cases. Understand security analytics and flows across SaaS applications and cloud computing tools. Validate use cases through selective testing and logic examination. Maintain continuous improvement processes and build/groom teams over time. Develop thought leadership within the SOC. Mandatory Skill Sets Bachelor’s degree (minimum requirement). 12+years of experience in SOC operations. Experience analyzing malicious traffic and building detections. Experience in application security, network security, and systems security. Knowledge of security testing tools (e.g., BurpSuite, Mimikatz, Cobalt Strike, PowerSploit, Metasploit, Nessus, HP Web Inspect). Proficiency in common programming and scripting languages (Python, PowerShell, Ruby, Perl, Bash, JavaScript, VBScript). Familiarity with cybersecurity frameworks and practices (OWASP, NIST CSF, PCI DSS, NY-DFS). Experience with traditional security operations, event monitoring, and SIEM tools. Knowledge of MITRE or similar frameworks and procedures used by adversaries. Ability to develop and maintain threat detection rules and use cases. Preferred Skill Sets Strong communication skills, both written and oral. Experience with SMB and large enterprise clients. Good understanding of ITIL processes (Change Management, Incident Management, Problem Management). Strong expertise in multiple SIEM tools and other SOC environment devices. Knowledge of firewalls, IDS/IPS, AVI, EDR, Proxy, DNS, email, AD, etc. Understanding of raw log formats of various security devices. Foundational knowledge of networking concepts (TCP/IP, LAN/WAN, Internet network topologies). Relevant certifications (CEH, CISA, CISM, etc.). Strong work ethic and time management skills. Coachability and dedication to consistent improvement. Ability to mentor and encourage junior teammates. Knowledge of regex and parser creation. Ability to deploy SIEM solutions in customer environments. Years Of Experience Required 12 + years Education Qualification B.Tech Education (if blank, degree and/or field of study not specified) Degrees/Field of Study required: Bachelor of Engineering Degrees/Field Of Study Preferred Certifications (if blank, certifications not specified) Required Skills Accenture Managed Detection and Response (MDR) Ops Security Engineering Optional Skills Accepting Feedback, Accepting Feedback, Active Listening, Agile Methodology, Analytical Thinking, Azure Data Factory, Coaching and Feedback, Communication, Creativity, Cybersecurity, Cybersecurity Framework, Cybersecurity Policy, Cybersecurity Requirements, Cybersecurity Strategy, Embracing Change, Emotional Regulation, Empathy, Encryption Technologies, Inclusion, Influence, Innovation, Intellectual Curiosity, Learning Agility, Managed Services, Optimism {+ 20 more} Desired Languages (If blank, desired languages not specified) Travel Requirements Not Specified Available for Work Visa Sponsorship? No Government Clearance Required? No Job Posting End Date Show more Show less

Bangalore/ Gurgaon, India A security analyst role within the Global Technology Transversal Application Services (TAS) function, supporting the provision of a robust and consistent security scanning, remediation, and guidance service within the TAS Application Operations team. The team provides a global, centralized Operations, Governance, Audit, Risk & Security service across Application Delivery. What You’ll Be DOING What will your essential responsibilities include? Support the Application Operations (Security) team in all security related activities, forums and discussions. Perform application scanning across the Application Delivery estate using tools such as SonarQube, Checkmarx, JFrog Xray, CAST Highlight, Defender and Qualys. Assist in setting up Jenkins pipeline integration to CI/CD lifecycle. Perform Static Application Security Testing (SAST) and Software Composition Analysis (SCA), including analysis of components in applications to detect vulnerabilities and compliance issues. Work with Application Delivery teams to communicate the outcome of scanning and analysis, and agree remediation actions including target dates for completion, in alignment with Information Security Policy requirements. Assist in Risk Assessments, evaluating the severity of identified vulnerabilities and prioritizing remediation efforts based on potential impact to the organization. Assist in Policy development, contributing to the development and implementation of vulnerability management policies and procedures. Manage the production of reporting and metrics to both internal and external stakeholders. You will report to the Operations Lead. What You Will BRING We’re looking for someone who has these abilities and skills: Required Skills And Abilities Security First mindset. Understanding of vulnerability analysis, scanning and remediation processes. Understanding of CVEs, CVSS. Understanding of security industry compliancy benchmarks and standards i.e. CIS. Understanding of security best practices/standards i.e. OWASP, NIST. Preferable experience with at least 2 coding languages i.e. Java, .NET, C++, Python etc. Desired Skills And Abilities Outstanding analytical, critical thinking and organizational skills, ability to multitask and work to deadlines. Proficiency in Power BI, MS Work and MS Excel: We maintain and continually develop a number of Power BI Dashboards to support provision of critical data and use Excel to support our data capture and analysis and reporting. Excellent communication, interpersonal and relationship building skills (verbal and written) Who WE are AXA XL, the P&C and specialty risk division of AXA, is known for solving complex risks. For mid-sized companies, multinationals and even some inspirational individuals we don’t just provide re/insurance, we reinvent it. How? By combining a comprehensive and efficient capital platform, data-driven insights, leading technology, and the best talent in an agile and inclusive workspace, empowered to deliver top client service across all our lines of business − property, casualty, professional, financial lines and specialty. With an innovative and flexible approach to risk solutions, we partner with those who move the world forward. Learn more at axaxl.com What we OFFER Inclusion AXA XL is committed to equal employment opportunity and will consider applicants regardless of gender, sexual orientation, age, ethnicity and origins, marital status, religion, disability, or any other protected characteristic. At AXA XL, we know that an inclusive culture and a diverse workforce enable business growth and are critical to our success. That’s why we have made a strategic commitment to attract, develop, advance and retain the most diverse workforce possible, and create an inclusive culture where everyone can bring their full selves to work and can reach their highest potential. It’s about helping one another — and our business — to move forward and succeed. Five Business Resource Groups focused on gender, LGBTQ+, ethnicity and origins, disability and inclusion with 20 Chapters around the globe Robust support for Flexible Working Arrangements Enhanced family friendly leave benefits Named to the Diversity Best Practices Index Signatory to the UK Women in Finance Charter Learn more at axaxl.com/about-us/inclusion-and-diversity. AXA XL is an Equal Opportunity Employer. Total Rewards AXA XL’s Reward program is designed to take care of what matters most to you, covering the full picture of your health, wellbeing, lifestyle and financial security. It provides competitive compensation and personalized, inclusive benefits that evolve as you do. We’re committed to rewarding your contribution for the long term, so you can be your best self today and look forward to the future with confidence. Sustainability At AXA XL, Sustainability is integral to our business strategy. In an ever-changing world, AXA XL protects what matters most for our clients and communities. We know that sustainability is at the root of a more resilient future. Our 2023-26 Sustainability strategy, called “Roots of resilience”, focuses on protecting natural ecosystems, addressing climate change, and embedding sustainable practices across our operations. Our Pillars Valuing nature: How we impact nature affects how nature impacts us. Resilient ecosystems - the foundation of a sustainable planet and society - are essential to our future. We’re committed to protecting and restoring nature - from mangrove forests to the bees in our backyard - by increasing biodiversity awareness and inspiring clients and colleagues to put nature at the heart of their plans. Addressing climate change: The effects of a changing climate are far reaching and significant. Unpredictable weather, increasing temperatures, and rising sea levels cause both social inequalities and environmental disruption. We're building a net zero strategy, developing insurance products and services, and mobilizing to advance thought leadership and investment in societal-led solutions. Integrating ESG: All companies have a role to play in building a more resilient future. Incorporating ESG considerations into our internal processes and practices builds resilience from the roots of our business. We’re training our colleagues, engaging our external partners, and evolving our sustainability governance and reporting. AXA Hearts in Action: We have established volunteering and charitable giving programs to help colleagues support causes that matter most to them, known as AXA XL’s “Hearts in Action” programs. These include our Matching Gifts program, Volunteering Leave, and our annual volunteering day - the Global Day of Giving. For more information, please see axaxl.com/sustainability. Show more Show less

Job Description Oracle Customer Success Services Building on the mindset that "Who knows Oracle …. better than Oracle?" Oracle Customer Success Services assists customers with their requirements for some of the most cutting-edge applications and solutions by utilizing the strengths of more than two decades of expertise in developing mission-critical solutions for enterprise customers and combining it with cutting-edge technology to provide our customers' speed, flexibility, resiliency, and security to enable customers to optimize their investment, minimize risk, and achieve more. The business was established with an entrepreneurial mindset and supports a vibrant, imaginative, and highly varied workplace. We are free of obligations, so we'll need your help to turn it into a premier engineering hub that prioritizes quality. Why? Oracle Customer Success Services Engineering is responsible for designing, building, and managing cutting-edge solutions, services, and core platforms to support the managed cloud business including but not limited to Oracle Cloud Infrastructure (OCI), Oracle Cloud Applications (SaaS) & Oracle Enterprise Applications. This position is for CSS Architecture Team, and we are searching for the finest and brightest technologists as we begin on the road of cloud-native digital transformation. We operate under a garage culture, rely on cutting-edge technology in our daily work, and provide a highly innovative, creative, and experimental work environment. We prefer to innovate and move quickly, putting a strong emphasis on scalability and robustness. We need your assistance to build a top-tier engineering team that has a significant influence. What? We are seeking a hands-on fullstack Senior Software Developer who will be part of our Architecture Team that shares our passion and excitement of building and operating distributed systems at hyperscale serving thousands of customers using cloud native technologies and software architecture design principles. As a Senior Software Developer within our team; you’ll lead efforts in designing and building scalable, distributed, resilient services & platforms that run mission-critical services for our customers. As a Senior Software Developer, you will be responsible for the design and development of software systems and applications, ensuring they meet the needs of our clients and align with the company's strategic objectives. The ideal candidate will have extensive experience in software architecture, design patterns, and software development methodologies. We strongly believe in ownership and challenging the status quo. We expect you to bring critical thinking and long-term design impact while building solutions and products defining system integrations, and cross-cutting concerns. Being part of the architecture function also provides you with the unique ability to enforce new processes and design patterns that will be future-proof while building new services or products. As a thought leader, you will own and lead the complete SDLC from Architecture Design, Development, Test, Operational Readiness, and Platform SRE Responsibilities Responsibilities As a senior member of the architecture team, you will be in charge of designing software products, services, and platforms, as well as creating, testing, and managing the systems and applications we create in line with the architecture patterns and standards. As a core member of the Architecture Chapter, you will be expected to advocate for the adoption of software architecture and design patterns among cross-functional teams both within and outside of engineering roles. You will also be expected to act as a mentor and advisor to the team(s) within the software domain as a leader. As we push for digital transformation throughout the organization, you will constantly be expected to think creatively and optimize and harmonize business processes. Core Responsibilities include: Lead the development and implementation of software architecture and design strategies. Collaborate with product managers and development teams to identify software requirements and define project scopes. Develop and maintain technical documentation, including architecture diagrams, design specifications, and system diagrams. Analyze and recommend new software technologies and platforms to ensure the company stays ahead of the curve. Work with development teams to ensure software projects are delivered on time, within budget, and to the required quality standards. Provide guidance and mentorship to junior developers. Stay up-to-date with industry trends and developments in software architecture and development practices. Minimum Qualifications Bachelor's or Masters's Degree in Computer Science or equivalent. 8 + Years of experience in software development & design. Demonstrate ability in building, and operating enterprise-distributed applications and/ or cloud-native systems. Extensive knowledge of software development methodologies and design patterns. Strong experience in developing and implementing software architecture and design strategies. Experience in defining strategies for critical platforms and services for large digital transformation programs. Strong expertise in utilizing software design concepts, patterns such as 12 Factor Apps, and tools to create software and solutions that are founded on the principles of CNCF design. Demonstrated ability in building and deploying software applications on one or more public cloud providers such as OCI, AWS, Azure, GCP, or equivalent. Demonstrated ability in writing full-stack applications leveraging polyglot programming with languages/ frameworks such as Fast API Python, Golang, Helidon Java, Node JS, OJET, Web Components, React, Javascript & Typescript. Experience in designing API First systems with application stacks such as but not limited to FARM, MERN, and technologies such as gRPC and REST. Firm grasp of Design Thinking, Test Driven Development(TDD), BDD, and end-to-end SDLC. Experience in DevOps practices involving containers in Kubernetes, CI/CD, Blue Green, and Canary Deployments. Experience with Microservice architecture patterns such as but not limited to API Gateways, Event Driven & Reactive Architecture, CQRS, and SAGA. Experience in testing strategies involving Unit, Integration, Contract, Regression, UI & Browser, Performance, and Stress Tests. Good understanding of Secure by Design and knowledge of implementing security controls and patterns for compliance systems spanning across involving NIST, OWASP, PCI DSS, ISO & SOC, etc. Familiarity with implementing OOP system design principles such as SOLID, DRY, KISS, Common Closure, and Module Encapsulation. Demonstrated ability in designing software systems involving one or more design principles such as Creational Design Patterns, Structural Design Patterns, and Behavioural Design Patterns. Strong interpersonal skills involving business stakeholders with an ability to think on your feet. Demonstrated ability in driving technology evangelism in software and cloud technologies. Excellent analytical and problem-solving skills. Excellent communication and leadership skills. Qualifications Career Level - IC4 About Us As a world leader in cloud solutions, Oracle uses tomorrow’s technology to tackle today’s challenges. We’ve partnered with industry-leaders in almost every sector—and continue to thrive after 40+ years of change by operating with integrity. We know that true innovation starts when everyone is empowered to contribute. That’s why we’re committed to growing an inclusive workforce that promotes opportunities for all. Oracle careers open the door to global opportunities where work-life balance flourishes. We offer competitive benefits based on parity and consistency and support our people with flexible medical, life insurance, and retirement options. We also encourage employees to give back to their communities through our volunteer programs. We’re committed to including people with disabilities at all stages of the employment process. If you require accessibility assistance or accommodation for a disability at any point, let us know by emailing accommodation-request_mb@oracle.com or by calling +1 888 404 2494 in the United States. Oracle is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans’ status, or any other characteristic protected by law. Oracle will consider for employment qualified applicants with arrest and conviction records pursuant to applicable law. Show more Show less

Matillion is The Data Productivity Cloud. We are on a mission to power the data productivity of our customers and the world, by helping teams get data business ready, faster. Our technology allows customers to load, transform, sync and orchestrate their data. We are looking for passionate, high-integrity individuals to help us scale up our growing business. Together, we can make a dent in the universe bigger than ourselves. With offices in the UK, US and Spain, we are now thrilled to announce the opening of our new office in Hyderabad, India. This marks an exciting milestone in our global expansion, and we are now looking for talented professionals to join us as part of our founding team. Role Purpose Matillion is built around small development teams utilising a modern, cloud-based technology stack to deliver products. The AppSec Engineer will work in an engineering capacity to product and engineering teams to ensure security is baked into the product from the design phase creating a SecDevOps workflow. What you will be doing Design Establish and lead security champions programme across the development squads Build functional and nonfunctional requirements for the application in conjunction with the product team Input abuse case stories into the product backlog Evangelise security across the product team, ensuring security stories are prioritised against feature goals Assess SDLC security gap risks and propose remedies Consult Instruct and guide developers on how to conduct Threat Modelling during application Design Act as the single point of contact for security concerns arising from the development team providing advice on how to solve technical software issues Lead the pentesting cadence around the core application set by conducting hacking exercises Provide application code reviews against known development frameworks such as OWASP ASVS Provide input into the design of functional and non-functional security controls such as customer authentication workflows Run Security Champion sessions to keep developers aware of security developments Engineer Establish security into the CICD pipeline such as SAST/IAST/DAST Automate and build nifty security tools to test Matillion applications Integrate testing, build failures and outputs to the development team to ensure passage to production is secure Create security tests for code and assist developers in building security unit testing Support Responsive support to the development teams Analysis of logs to identify issues and provide solutions Innovation Research projects, including prototyping, to explore future opportunities Investigate new technologies Optimise the infrastructure deployment process through use of automation, in-house and open source solutions Self-Development and Growth Develop new skills by working with other members of the team Work with the Team Lead to identify training goals Lead and partake in technical discussions within the team Actively identify and complete opportunities for self-training and external training Drive the team’s process of continual improvement What we are looking for Technical / Role Specific Essential A passion and drive to succeed in Application Security Understanding of Software Development Life Cycle Desirable Security professional at heart borne from a software engineering background Experience of working with the OWASP ASVS framework Experience in Agile delivery environments Greenfield experience setting up security technologies from scratch Outgoing and able to build relationships with key stakeholders Personal Capabilities Required, e.g. skills, attitude, strengths Can do attitude, willing to take on a wide range of security issues Keeps up to date with security developments Keen to engage with the security community on a range of topics Fast learner Matillion has fostered a culture that is collaborative, fast-paced, ambitious, and transparent, and an environment where people genuinely care about their colleagues and communities. Our 6 core values guide how we work together and with our customers and partners. We operate a truly flexible and hybrid working culture that promotes work-life balance, and are proud to be able to offer the following benefits: - Company Equity - 27 days paid time off - 12 days of Company Holiday - 5 days paid volunteering leave - Group Mediclaim (GMC) - Enhanced parental leave policies - MacBook Pro - Access to various tools to aid your career development More about Matillion Thousands of enterprises including Cisco, DocuSign, Slack, and TUI trust Matillion technology to load, transform, sync, and orchestrate their data for a wide range of use cases from insights and operational analytics, to data science, machine learning, and AI. With over $300M raised from top Silicon Valley investors, we are on a mission to power the data productivity of our customers and the world. We are passionate about doing things in a smart, considerate way. We’re honoured to be named a great place to work for several years running by multiple industry research firms. We are dual headquartered in Manchester, UK and Denver, Colorado. We are keen to hear from prospective Matillioners, so even if you don’t feel you match all the criteria please apply and a member of our Talent Acquisition team will be in touch. Alternatively, if you are interested in Matillion but don't see a suitable role, please email talent@matillion.com. Matillion is an equal opportunity employer. We celebrate diversity and we are committed to creating an inclusive environment for all of our team. Matillion prohibits discrimination and harassment of any type. Matillion does not discriminate on the basis of race, colour, religion, age, sex, national origin, disability status, genetics, sexual orientation, gender identity or expression, or any other characteristic protected by law. Show more Show less