3229 Owasp Jobs - Page 14

About Responsive Responsive (formerly RFPIO) is the global leader in strategic response management software, transforming how organizations share and exchange critical information. The AI-powered Responsive Platform is purpose-built to manage responses at scale, empowering companies across the world to accelerate growth, mitigate risk and improve employee experiences. Nearly 2,000 customers have standardized on Responsive to respond to RFPs, RFIs, DDQs, ESGs, security questionnaires, ad hoc information requests and more. Learn more at responsive.io. About the Role Responsive is looking for a Senior Quality Engineer (Security) to ensure the security, reliability, and compliance of applications and infrastructure. You will design and execute security tests, identify vulnerabilities, and drive remediation strategies while collaborating with cross-functional teams in an Agile environment. What You’ll Be Doing Security Testing & Risk Assessment: Conduct penetration testing, vulnerability assessments, and threat modeling to identify security risks across applications, APIs, and infrastructure. Automation & Tooling: Develop and maintain security testing automation using tools like Burp Suite, ZAP or similar tools. Integrate security testing into CI/CD pipelines. Incident Response & Remediation: Collaborate with development, QE, and DevOps, teams to investigate security incidents, perform root cause analysis, and validate security fixes. Collaboration & Agile Practices: Work closely with engineering, product, and DevOps teams to embed security in the SDLC. What We’re Looking For Education Bachelor’s degree in Computer Science, IT, or related field. Experience 5-8 years of experience in security testing, penetration testing, and vulnerability assessment. Knowledge, Skills & Ability Strong experience in web, API, and cloud security testing. Proficiency in SAST/DAST tools and security frameworks like OWASP Top 10, CWE, and CVSS. Hands-on experience with Burp Suite, ZAP or similar tools. Familiarity with network security, authentication mechanisms (OAuth, JWT, SAML), and cryptographic protocols. Knowledge of DevSecOps practices and integrating security in CI/CD pipelines. Ability to analyze security logs, interpret alerts, and perform root cause analysis. Excellent communication skills to collaborate with cross-functional teams and present security findings. Why Join Us? Impact-Driven Work: Build innovative solutions that redefine strategic response management. Collaborative Environment: Work with a passionate team of technologists, designers, and product leaders. Career Growth: Be part of a company that values learning and professional development. Competitive Benefits: We offer comprehensive compensation and benefits to support our employees. Trusted by Industry Leaders: Be part of a product that is trusted by world-leading organizations. Cutting-Edge Technology: Work on AI-driven solutions, cloud-native architectures, and large-scale data processing. Diverse and Inclusive Workplace: Collaborate with a global team that values different perspectives and ideas.

Description We are seeking a highly technical Lead Software Engineer to drive the architecture, scalability, and engineering excellence of our core platforms. This role is ideal for someone who thrives on solving complex engineering problems and scaling distributed systems in production. You will design, build, and optimize full-stack systems with a strong focus on microservices, event-driven architecture, and cloud-native DevOps. You’ll work across the stack, from backend services and frontend performance to CI/CD, observability, and security. Responsibilities 1. Architecture & Scalabilit y • Architect and implement highly scalable microservices-based systems using Python (Django) or Node.js. • Design event-driven architectures using Kafka, RabbitMQ, or AWS SQS/SNS. • Build low-latency, high-throughput APIs, utilizing Redis/Memcached and CDNs. • Apply distributed systems patterns (e.g., CQRS, Saga, Circuit Breaker) for resilience and consistency. • Use container orchestration (e.g., Kubernetes) and serverless platforms (AWS Lambda, Azure Functions) for scalable, cloud-native deployments. 2. Full-Stack Engineeri ng • Build RESTful or gRPC APIs with Python (Django), or Node.js (Express/NestJS). • Develop high-performance frontend applications with React.js (Next.js), TypeScript, and state management (Redux, Zustand). • Design optimized database schemas across PostgreSQL, MySQL, MongoDB, or Cassandra, with attention to indexing, replication, and sharding. • Implement real-time features using WebSockets (Socket.io) or GraphQL subscription s. 3. DevOps & Cloud Infrastructure • Build and automate CI/CD pipelines using GitHub Actions, GitLab CI, or Jenkins with IaC tools like Terraform or Pulumi. • Manage Kubernetes clusters (EKS, GKE, AKS) using Helm and service meshes (Istio, Linkerd). • Set up robust monitoring and observability stacks (Prometheus, Grafana, OpenTelemetry, ELK). • Deploy security-first infrastructure in AWS, GCP, or Azure, following DevSecOps best practices. 4. Code Quality & Security • Enforce engineering standards via linters (ESLint, Pylint), static analysis (SonarQube), and automated testing (Jest, Pytest). • Conduct security audits and integrate SAST/DAST tools (Snyk, OWASP ZAP, Trivy) into CI/CD. • Implement zero-trust architectures using OAuth 2.0, JWT, and RBAC for access control. • Ensure compliance with OWASP Top 10 and other secure development standards. Eligibility ✅ 6+ years of hands-on experience building scalable, distributed software systems. ✅ Deep backend experience in Python (Django) or Node.js (Express/NestJS). ✅ Strong frontend experience with React.js, TypeScript, and Next.js. ✅ Proven experienc e in microservices, event-driven architect ures, and message br okers like Kafka or RabbitMQ. ✅ Hands-on expertise in both SQL (PostgreSQL, MySQL) and NoSQL (MongoDB, Redis, Cassandra). ✅ Solid DevOps skills including Kubernetes, Docker, and cloud plat forms (AWS/GCP/Azure). ✅ Strong knowledg e of secure coding practices, API security, and web application hardening. Preferred (Nice to Have): 🔹 Knowledge of blockchain technologies (Ethereum, Hyperledger, Solidity). 🔹 Experience with Web3 libraries (Web3.js, Ethers.js). 🔹 Contributions to open-source, technical blogs, or whitepapers. Educational Qualifications: 🎓 B.Tech / M.Tech in Computer Science or related field (Mandatory). Travel As and when required, across the country for project execution and monitoring as well as for coordination with geographically distributed teams. Communication Submit a cover letter summarising your experience in relevant technologies and software along with a resume and the Latest passport-size photograph.

About Us Sophos is a global leader and innovator of advanced security solutions for defeating cyberattacks. The company acquired Secureworks in February 2025, bringing together two pioneers that have redefined the cybersecurity industry with their innovative, native AI-optimized services, technologies and products. Sophos is now the largest pure-play Managed Detection and Response (MDR) provider, supporting more than 28,000 organizations. In addition to MDR and other services, Sophos’ complete portfolio includes industry-leading endpoint, network, email, and cloud security that interoperate and adapt to defend through the Sophos Central platform. Secureworks provides the innovative, market-leading Taegis XDR/MDR, identity threat detection and response (ITDR), next-gen SIEM capabilities, managed risk, and a comprehensive set of advisory services. Sophos sells all these solutions through reseller partners, Managed Service Providers (MSPs) and Managed Security Service Providers (MSSPs) worldwide, defending more than 600,000 organizations worldwide from phishing, ransomware, data theft, other every day and state-sponsored cybercrimes. The solutions are powered by historical and real-time threat intelligence from Sophos X-Ops and the newly added Counter Threat Unit (CTU). Sophos is headquartered in Oxford, U.K. More information is available at www.sophos.com. Role Summary Sophos is seeking a talented, experienced Software Development Engineer in Test to join our Sophos Central team. As a member of the Sophos Central Software Development Engineer in Test team, you will be working directly with Development, UX, PM and other functional groups to ensure highest quality software development and releases for the Central product. We look forward to welcoming another fantastic member onto our team! What You Will Do Design, develop, and maintain scalable and reliable test automation frameworks to ensure thorough coverage of application features Create and execute comprehensive test plans, including unit, integration, functional, and end-to-end tests to ensure high-quality releases Implement and optimize test automation within CI/CD pipelines for faster feedback cycles, leveraging parallel test execution and intelligent test segmentation Continuously improve test coverage and maintain high-quality standards by identifying gaps and addressing flaky tests. Provide detailed reporting and metrics on test results and quality status Work closely with developers, product managers, and other stakeholders to understand requirements and deliver high-quality software with automated tests from the start Incorporate performance and security testing into the automation pipeline, using tools like JMeter and OWASP ZAP to ensure robust and secure applications What Will You Bring 3-8 years of experience in Java automation testing Proficiency in Java coding and experience in writing maintainable, efficient, and scalable Java test scripts Proven experience in test automation framework development (preferably using Selenium) Experience testing RESTful web services Strong knowledge of CI/CD pipelines and experience with automation in environments like Jenkins, GitLab CI, or similar Familiarity with performance testing tools (e.g., JMeter, Gatling) and security testing tools (e.g., OWASP ZAP, Burp Suite) Desired to have experience with version control systems (e.g., Git) and code coverage tools (e.g., JaCoCo, Istanbul) Solid understanding of Agile methodologies and test strategies (unit, integration, regression, E2E, TDD) Expertise in writing clear, maintainable, and scalable test scripts Familiarity with cloud environments (e.g., preferably AWS) and containerization technologies (e.g., Docker) for scalable test execution Strong problem-solving skills and the ability to troubleshoot complex test automation issues Ready to Join Us? At Sophos, we believe in the power of diverse perspectives to fuel innovation. Research shows that candidates sometimes hesitate to apply if they don't check every box in a job description. We challenge that notion. Your unique experiences and skills might be exactly what we need to enhance our team. Don't let a checklist hold you back – we encourage you to apply. What's Great About Sophos? · Sophos operates a remote-first working model, making remote work the primary option for most employees. However, some roles may necessitate a hybrid approach. Please refer to the location details in our job postings for further information. · Our people – we innovate and create, all of which are accompanied by a great sense of fun and team spirit · Employee-led diversity and inclusion networks that build community and provide education and advocacy · Annual charity and fundraising initiatives and volunteer days for employees to support local communities · Global employee sustainability initiatives to reduce our environmental footprint · Global fitness and trivia competitions to keep our bodies and minds sharp · Global wellbeing days for employees to relax and recharge · Monthly wellbeing webinars and training to support employee health and wellbeing Our Commitment To You We’re proud of the diverse and inclusive environment we have at Sophos, and we’re committed to ensuring equality of opportunity. We believe that diversity, combined with excellence, builds a better Sophos, so we encourage applicants who can contribute to the diversity of our team. All applicants will be treated in a fair and equal manner and in accordance with the law regardless of gender, sex, gender reassignment, marital status, race, religion or belief, color, age, military veteran status, disability, pregnancy, maternity or sexual orientation. We want to give you every opportunity to show us your best self, so if there are any adjustments we could make to the recruitment and selection process to support you, please let us know. Data Protection If you choose to explore an opportunity, and subsequently share your CV or other personal details with Sophos, these details will be held by Sophos for 12 months in accordance with our Privacy Policy and used by our recruitment team to contact you regarding this or other relevant opportunities at Sophos. If you would like Sophos to delete or update your details at any time, please follow the steps set out in the Privacy Policy describing your individual rights. For more information on Sophos’ data protection practices, please consult our Privacy Policy Cybersecurity as a Service Delivered | Sophos

Job Summary: We are seeking a highly experienced “Senior VAPT & Penetration Testing Specialist” to lead and ensure the quality and effectiveness of our vulnerability assessment and penetration testing operations. This role involves findings, validating findings, reviewing technical reports, ensuring compliance with standards (OWASP, PTES, NIST, etc.), and improving methodologies and tools. Key Responsibilities: Conduct in-depth vulnerability assessments and penetration tests on web, mobile, network, API, and cloud infrastructure using manual and automation. Utilize industry-standard tools like SQLMap, Burp Suite, Nessus, Nmap, and custom scripts for advanced exploitation techniques. Simulate various cyber-attacks including DDoS, Brute Force, XSS, SQL Injection, DNS attacks, and Social Engineering to identify system vulnerabilities. Perform peer reviews of technical deliverables and verify accuracy of findings and recommendations. Ensure that all assessments are aligned with industry standards such as OWASP, PTES, MITRE ATT&CK, and NIST. Act as a technical lead and mentor for junior VAPT team and QA team members. Identify gaps in the current testing methodologies and implement process improvements. Prepare detailed documentation and the VA report and ensure clear, actionable, and risk-rated reporting. Collaborate with clients and internal teams to understand scope and provide post-assessment clarifications. Present the client meeting for the future VAPT assignments. Stay updated with emerging threats, tools, techniques, and frameworks. Required Skills & Qualifications: Bachelor's or Master's degree in Computer Science, Cybersecurity, or related field. 3 to 5 years of hands-on experience in VAPT and penetration testing. In-depth knowledge of web, network, mobile, cloud, and API security. Strong understanding of secure coding practices and vulnerability management. Expertise in tools like Burp Suite, Nmap, Nessus, Metasploit, Qualys, Kali Linux, Wireshark, etc. Familiarity with SIEM, IDS/IPS, EDR tools is a plus. Excellent report writing and documentation skills. Strong communication and overseas client-interaction skills. Preferred Certifications: OSCP (Offensive Security Certified Professional) – Highly preferred CEH (Certified Ethical Hacker) CREST / GPEN / GWAPT / CISSP – Optional but desirable ISO 27001 Lead Auditor or Lead Implementer – Added advantage

Job Summary Excellent understanding of Linux and cyber security attacks like SQL Injection risks. Hands on experience on secure APIs, Container and Kubernetes security, etc. Knowledge on SAST (Static Analysis), DAST (Dynamic Analysis) and SCA (Software composition Analysis) tools, Threat Modelling & Risk Assessment, PEN testing Implement and manage tools for scanning and monitoring - AquaSec, X-Ray, SonarQube, Coverity, etc. Hands on Github experience, ability to own manual and automated security testing, investigation and troubleshoot of any issues. Proactively work towards fix and mitigation of common vulnerabilities. Investigate and propose practical solutions Ability to clearly communicate security issues to tech and non tech stakeholders Perform code reviews from security perspective. Security Testing & Validation Evaluate security of open-source and third-party dependencies and recommend safer versions. Knowledge on web certifications and related risks. Work with DevOps to implement runtime security measures (e.g., WAF, logging, monitoring). Strong understanding of products security concepts. Ensures product security aligns with industry standards (OWASP, ISO, GDPR, Etc.) Help define security acceptance criteria for user stories. Collaborate with architects to mitigate design-level vulnerabilities Educate team on secure coding practices

Note : Face to face interview on 26 July - Saturday -Pune office - Hadapsar About the Position Reporting to the Software Engineering Manager as a member of the Development team in India, the Software Engineer is responsible for delivering quality and performant software and design to handle the vast array of use cases that our customers have today. This role is responsible for Developing Software Solutions by learning information needs, discussing with managers, studying systems flow, data usage, finding problem areas and coming up with solutions & following the software development lifecycle. Work Type: Hybrid (3 days a week in office) Office Address: 4th Floor, WeWork Amanora Crest, Amanora Park Town, Magarpatta, Hadapsar, Pune, Maharashtra 411028 We are looking for: 9+ years of experience in product development field 2+ years of recent experience in building products on cloud Strong understanding of data structures, algorithms, and designing for performance Strong knowledge in OOPS with .Net, Entity Framework, C# and SQL Server or any RDBMS Hands-on experience with Microservices Architecture Hands-on experience in building products for Unix systems in addition to Windows Hands-on experience with CI/CD pipelines and experience with any of the following cloud services (AWS/Azure/GCP/Private cloud) Knowledge of asynchronous programming and WebAPI development is required Knowledge and awareness of cloud/ application security is a must (OWASP at the minimum) Extensive experience in mentoring junior engineers to success Strong logical, analytics and problem-solving skills Must be able to work effectively across team boundaries Strong oral and written communication skills Good to have experience with either Angular, Vue or React Candidate Requirements & Qualifications: Graduate/Master's degree in Computer Science, Engineering, or a related discipline Strong logical, analytics and problem-solving skills Must be able to work effectively across team boundaries Attention to details Ability to work independentl

Job Title: Senior Software Architect & Technical Lead Location: Onsite – Ahmedabad, India Experience: 8+ Years Employment Type: Full-Time Role Overview We are looking for a highly skilled and hands-on Senior Software Architect & Technical Lead to join our core team in Ahmedabad. This individual will lead the end-to-end architecture, development, and technical execution across a range of enterprise, AI-powered, and end-user applications. The ideal candidate is both a builder and a strategist—equally comfortable writing code, guiding teams, and shaping the technical direction of the organization. Key Responsibilities Architecture & Design Architect scalable, modular, and secure platforms with long-term maintainability. Design system-wide components and enforce technical standards across teams. Own architecture reviews, risk mitigation, and technical documentation. AI-Enabled Development Architect and integrate AI tools (e.g., LLMs, recommendation engines, chatbots). Work with prompt engineering, vector databases, and generative AI APIs (e.g., OpenAI, Hugging Face). Guide team members on practical AI use cases across platforms. Security-Driven Engineering Implement secure-by-design principles across backend and frontend systems. Ensure alignment with OWASP, GDPR, SOC2, and other relevant compliance frameworks. Perform secure code reviews and threat modeling sessions. End-User Application Engineering Architect robust, performant user-facing applications (web/mobile/desktop). Collaborate with product and design teams on usability, accessibility, and interaction design. Define and promote frontend architecture and scalable design systems. Leadership & Mentorship Serve as a technical authority across engineering squads. Mentor engineers on design patterns, architecture principles, and technical strategy. Help define KPIs and performance benchmarks for team and product. Requirements Education & Experience Job Type: Full-time

We are seeking an experienced Cyber Security Tester to support our client’s security testing initiatives. You will be responsible for identifying vulnerabilities, assessing risks, and performing thorough security assessments on web/mobile applications, APIs, and infrastructure. This is a contract/project-based role , open to freelancers or vendor companies with proven expertise in security testing. Responsibilities: Conduct Web and Mobile Application Penetration Testing Perform Infrastructure Security Assessments Test and analyze APIs for vulnerabilities and misconfigurations Ensure compliance with OWASP Top 10 security standards Utilize tools such as Burp Suite, OWASP ZAP, Nessus, Nmap , etc. Deliver detailed technical reports with proof of concept (PoC) and mitigation recommendations Collaborate with client’s technical team to explain findings and remediation steps Ensure data privacy and confidentiality throughout the engagement Required Skills & Experience: 3+ years of hands-on experience in Cyber Security Testing / Penetration Testing Strong understanding of application, network, and API vulnerabilities Familiar with security testing tools: Burp Suite, OWASP ZAP, Nessus, Wireshark, Metasploit , etc. Experience creating clear and actionable vulnerability reports Good communication skills to present findings to non-technical stakeholders Relevant certifications are a plus (e.g., CEH, OSCP, CompTIA Security+ ) Preferred: Prior experience in handling client-facing security testing projects Familiarity with security compliance standards (e.g., ISO 27001, GDPR)

Job Information Work Experience 0-0.6 (Associate Cyber Security Analyst) Industry IT Services Job Type Full time Date Opened 07/24/2025 City Ahmedabad State/Province Gujarat Country India Zip/Postal Code 380015 About Us E2logy is a leading software solutions company dedicated to empowering businesses with innovative technology and exceptional service. We combine our expertise in various domains with cutting-edge development practices to deliver high-quality, custom software solutions that cater to your unique needs and goals. Visit our website: https://e2logy.com/ to learn more about our services and expertise. Job Description We are seeking a Fresher Associate Cyber Security Analyst – VAPT who will play a supportive role in helping protect the organization’s cloud infrastructure, web and mobile applications, and internal systems. This entry-level role is ideal for recent graduates passionate about cybersecurity and eager to begin their career in a hands-on, learning-focused environment. You will work under the guidance of senior team members to identify vulnerabilities, support penetration testing activities, and enhance our overall security posture in alignment with global security standards such as ISO/IEC 27001 . Responsibilities: Assist in conducting vulnerability assessments and penetration testing on Web applications,Mobile applications,Cloud-based environments,Internal systems and network infrastructure Support the use of tools like Burp Suite, Nmap, Wireshark, Nessus, OWASP ZAP, etc., under supervision. Document basic findings, potential risks, and help prepare technical reports for internal teams. Work closely with senior analysts, DevOps, and development teams to understand and remediate security weaknesses. Contribute to maintaining and improving the organization’s compliance with ISO/IEC 27001 security guidelines , including proper documentation, risk identification, and implementation of relevant controls. Stay updated with emerging threats, vulnerabilities, and VAPT methodologies aligned with industry standards like OWASP Top 10 , ISO 27001 etc . Help in maintaining compliance with key standards such as OWASP Top 10, ISO 27001, PCI-DSS, etc. Requirements Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field. Basic understanding of web application security, network protocols, and common attack vectors. Exposure to or academic use of tools such as Burp Suite, Nmap, Wireshark, or Kali Linux. Familiarity with OWASP Top 10, CVEs, and basic cybersecurity concepts. Strong curiosity, analytical mindset, and attention to detail. Good communication skills and a willingness to learn in a team-oriented environment. Preferred Skills : Basic awareness of secure coding practices or code review. Introductory knowledge of cloud security, SIEM, or IDS/IPS tools. knowledge of ISO/IEC 27001 controls , risk assessment, or compliance practices. Certifications Like CompTIA Security+,Certified Ethical Hacker (CEH),eLearnSecurity Junior Penetration Tester (eJPT),ISO/IEC 27001 Foundation or Practitioner(Not Mandatory) Benefits Competitive compensation and performance-linked incentives. Health insurance and employee wellness benefits. Career development support and learning resources. Opportunity to work with modern cybersecurity tools and frameworks. Work Environment: Collaborative and supportive office setting with Alternative Saturday Working Flexibility to extend working hours during high-priority assessments or audits. Application Process: Please submit your resume, cover letter, and optionally a portfolio of academic or personal projects to careers@e2logy.com

As a Head of Quality Assurance at Commcise located in Bangalore, you will play a crucial role in managing testing activities to ensure the best user product experience. With 13-15 years of relevant experience, you will need to have an Engineering or IT Degree. Your strong expertise in software testing concepts and methodologies, along with excellent communication skills and technical aptitude, especially in automation, will be essential for this role. Your responsibilities will include having a deep understanding of capital markets, trading platforms, wealth management, and regulatory frameworks such as MiFID, SEC, SEBI, FCA. Experience with financial instruments and post-trade processes will also be necessary. You will be required to define and implement comprehensive testing strategies covering functional and non-functional testing, as well as developing test governance models and enforcing QA best practices. Your role will involve a strong grasp of programming concepts, coding standards, and test frameworks like Java, Python, and JavaScript. Expertise in test automation frameworks such as Selenium and Appium, as well as API testing and knowledge of connectivity protocols, will be advantageous. Understanding AI and Machine Learning applications in test automation and driving AI-driven automation initiatives will be part of your responsibilities. Experience in continuous testing within CI/CD pipelines, knowledge of infrastructure as code and cloud platforms, and familiarity with observability tools for real-time monitoring will also be required. You should have expertise in performance testing tools, security testing methodologies, and experience with resilience testing and chaos engineering. Strong leadership skills, team development abilities, and stakeholder management across various teams will be crucial in this role. Having an Agile mindset, leading Agile testing transformations, and implementing BDD/TDD practices will be part of your responsibilities. Strong strategic planning and execution skills, along with a willingness to be hands-on when required, will be essential for driving collaborative test strategies. This role offers an opportunity to work in a dynamic environment and contribute significantly to ensuring the quality and reliability of products in the financial technology industry.,

As the System Architect for Enterprise Services - Treasury, Real Estate, and Audit Value Stream, your primary responsibility is to define and communicate a shared architectural vision that supports current and future business needs. You will collaborate with Agile teams to evaluate solutions, validate technology assumptions, and converge on the best possible solution. Working closely with Enterprise and Solution Architects, you will ensure that the solutions delivered align with broader architecture guardrails. Your role involves leading and participating in the planning, development, and high-level design of product solutions, as well as defining system interfaces, data structures, integrations, cybersecurity considerations, and deployment approaches. You will establish critical non-functional requirements, consider economic boundaries in design decisions, and enable a continuous delivery pipeline through proper design guidelines. Additionally, you will engage in solution planning, incremental planning, product demos, and inspect-and-adapt events. Your responsibilities include planning and developing the architectural runway to support desired business outcomes, providing technical oversight to promote security, quality, and automation, and negotiating with the business to prioritize non-functional work to reduce technical debt over time. Conducting requirements gathering activities such as brainstorming, focus groups, interviews, observation, and prototyping will be part of your daily tasks. You will document and validate requirements to ensure they meet stakeholders" needs, fall within the solution scope, and align with business objectives and solution design. Effective communication of requirements in a format understandable to stakeholders, including solution designers and developers, is essential. Qualifications: - Bachelor's degree from an accredited institution or equivalent level of education - 10+ years of experience in the software industry with a proven track record of shipping high-quality products Skills: - Extensive experience in software engineering best practices - Experience with Treasury, Audit systems, and associated development languages and platforms - Expert level skills in Java, C#, C++, and associated IDEs - Proficiency in software design principles, DevSecOps, CI/CD, and modern development principles - Basic understanding of cybersecurity concepts - Experience with Agile methodologies and cloud platforms - Strong communication, collaboration, presentation, and decision-making skills - Experience working with diverse, global cultures, organizations, and teams,

Job Title : Senior Software Engineer II (DevSecOps) Department : Technology Reports to : Software Engineering Manager / Infrastructure Manager Experience : 3+ years Location : Ahmedabad, India-Remote Overview As a DevSecOps Engineer at Genea, you will be a key player in shaping the secure delivery and operation of our SaaS products. You will ensure that security is embedded across our CI/CD pipelines, infrastructure, and software lifecycle while enabling developer productivity. You will champion secure-by-default practices and work closely with engineering teams to automate and monitor security controls, ensuring compliance and reliability at scale. Genea is an engineering company at heart. We hire people with a broad set of technical skills who are ready to take on some technologys greatest challenges and make an impact on Geneas end users. A DevSecOps Engineers approach should be customer-centric, security-focused, and results-driven. Transparency, teamwork, and dedication are essential qualities for this role. Duties And Responsibilities Embed security best practices into CI/CD pipelines and infrastructure as code. Design, implement, and maintain security scanning and monitoring tools for vulnerabilities across containers, applications, and cloud environments. Work with developers to integrate security tools and policies without impacting delivery velocity. Develop and enforce policies for secrets management, IAM least privilege, and secure artifact storage. Support audits (e.g., SOC 2) by maintaining evidence of security controls. Monitor, triage, and respond to security events, coordinating with engineering and management. Drive incident response and post-mortem processes for security-related issues. Perform code and infrastructure reviews from a security perspective. Automate compliance checks and security benchmarks (CIS, OWASP, etc.) Contribute to documentation, runbooks, and internal knowledge sharing. Participate in or lead infrastructure and architecture reviews, advising on secure designs. Be available to support urgent production or security events outside of business hours. Qualifications Bachelors degree in computer science, Information Security, or a related field. 3+ years of experience in DevOps, Cloud Infrastructure, or Security Engineering. Hands-on experience with AWS/Azure/GCP cloud security services and policies. Experience implementing vulnerability management (SCA, SAST, DAST) and container security tools (like Trivy, AWS Inspector, Aqua). Working knowledge of Infrastructure as Code (Terraform, CloudFormation, or similar). Experience managing CI/CD pipelines (GitHub Actions, Jenkins, or equivalent). Understanding of networking security, encryption, certificate management, and IAM. Familiarity with regulatory and compliance standards (SOC2, GDPR, etc.) is a plus. Strong scripting skills in Python, Bash, or similar. Experience with incident management and security monitoring tools (like GuardDuty, CloudTrail, ELK, etc.) Knowledge of Agile/Scrum development processes. Competencies Security-First Mindset Champions secure design and is vigilant about risk. Problem Solving Identifies and resolves infrastructure or security issues quickly. Teamwork Balances team and individual priorities; collaborates across teams to embed security. Adaptability Handles shifting priorities, compliance changes, and evolving threat landscapes. Professionalism & Ethics Upholds trust, integrity, and transparent communication. Technical Mastery Continuously develops technical skills and shares knowledge. Oral & Written Communication Clearly documents and explains security concepts to non-security teams. Perks And Benefits We Offer Work Your Way : Enjoy a flexible working environment that suits your lifestyle. Time Off : 24 days of PTO and 10 holidays to unwind and pursue your passions. Comprehensive Leave Options : Including maternity, paternity, adoption, wedding, and bereavement leaves to support you during important life events. Health & Safety First : Benefit from family health insurance and personal accident coverage beyond your CTC. Top Workplace Honors : Celebrated as a Top Workplace from 2021 to 2024. Balanced Workweek : Embrace a balanced life with our 5-day work schedule. (ref:hirist.tech)

Job Description KPMG in India, a professional services firm, is the Indian member firm affiliated with KPMG International and was established in September 1993. Our professionals leverage the global network of firms, providing detailed knowledge of local laws, regulations, markets, and competition. KPMG has offices across India in Ahmedabad, Bengaluru, Chandigarh, Chennai, Gurugram, Hyderabad, Jaipur, Kochi, Kolkata, Mumbai, Noida, Pune, and Vadodara. KPMG in India offers services to national and international clients in India across sectors. We strive to provide rapid, performance-based, industry-focused, and technology-enabled services, which reflect a shared knowledge of global and local industries and our experience of the Indian business environment KPMG Advisory professionals provide advice and assistance to enable companies, intermediaries, and public sector bodies to mitigate risk, improve performance, and create value. KPMG firms provide a wide range of Risk Advisory and Financial Advisory Services that can help clients respond to immediate needs as well as put in place the strategies for the longer term. Projects in IT Advisory focus on the assessment and/or evaluation of IT systems and the mitigation of IT-related business risks. They are either IS audit, SOX reviews, Internal audit engagements, IT infrastructure review and/or risk advisory including but not limited to IT audit supports in nature. Responsibilities Perform testing of IT Application Controls, IPE, and Interface Controls through code reviews, IT General Controls review covering areas such as Change Management, Access Management, Backup Management, Incident and Problem Management, SDLC, Data Migration, Batch Job scheduling/monitoring and Business Continuity and Disaster Recovery Perform Risk Assessment, identification, and Evaluation of Controls, prepare process flow diagrams and document the same in Risk & Control Matrix. Perform business process walkthrough and controls testing for IT Audits. Performing planning and executing audits, including - SOX, Internal Audits, External Audits Conducting controls assessment in manual/ automated environment Prepare/Review of Policies, Procedures, SOPs Maintain relationships with client management and the project Manager to manage expectations of service, including work products, timing, and deliverables. Demonstrate a thorough understanding of complex information systems and apply it to client situations. Use extensive knowledge of the client's business/industry to identify technological developments and evaluate impacts on the work to be performed. Coordinate effectively and efficiently with the Engagement manager and the client management keeping both constantly updated regarding project’s progress. Collaborate with other members of the engagement team to plan the engagement and develop relevant workpapers/deliverables. Perform fieldwork and share the daily progress of fieldwork, informing supervisors of engagement status. Qualifications IT Audit + SAP experience with knowledge of IT governance practices Prior IT Audit knowledge in areas of ITGC, ITAC (application/automated controls) SOX 404, SOC-1 and SOC-2 Audits Good to have knowledge of other IT regulations, standards and benchmarks used by the IT industry (e.g. NIST, PCI-DSS, ITIL, OWASP, SOX, COBIT, SSAE18/ISAE 3402 etc.) Technical Knowledge of IT Audit Tools with excellent knowledge of IT Audit process and methodology Exposure to Risk Management and Governance Frameworks/ Systems will be an added advantage Exposure to ERP systems will be added advantage Strong project management, communication (written and verbal) and presentation skills Knowledge of security measures and auditing practices within various applications, operating systems, and databases. Strong self-directed work habits, exhibiting initiative, drive, creativity, maturity, self-assurance, and professionalism Preferred Certifications – CISA/CISSP//CISM Exposure to automation Data Analytics tools such as QlikView/Qlik sense, ACL, Power BI will be an advantage Proficiency with Microsoft Word, Excel, Visio, and other MS Office tools Equal Employment Opportunity Information KPMG India has a policy of providing equal opportunity for all applicants and employees regardless of their color, caste, religion, age, sex/gender, national origin, citizenship, sexual orientation, gender identity or expression, disability or other legally protected status. KPMG India values diversity and we request you to submit the details below to support us in our endeavor for diversity. Providing the below information is voluntary and refusal to submit such information will not be prejudicial to you.

Position Title Cyber Security Analyst II Location Panchkula, India Date Posted July 21, 2025 Description Were hiring a skilled and proactive Cyber Security Analyst II to join our Information Security Group (ISG) at Grazitti Interactive. In this mid-level role, youll be at the forefront of managing advanced security incidents, conducting vulnerability assessments, and mentoring junior analysts. If youre passionate about cybersecurity, thrive in fast-paced environments, and want to play a pivotal role in strengthening enterprise security, this role is for you. Skills Key Skills 23 years of experience in cybersecurity or a related technical role Strong knowledge of cybersecurity principles, practices, technologies, and regulations In-depth understanding of network security, firewalls, and SIEM systems Experience with incident response and vulnerability management Familiarity with frameworks like OWASP Top 10 and SANS Top 25 Excellent analytical and problem-solving abilities Strong verbal and written communication skills Exposure to compliance frameworks and risk assessment methods Proficiency in MS Office tools (Excel, Word, PowerPoint) Relevant certifications (e.g., CompTIA Security , CEH, OSCP) preferred Responsibilities Roles And Responsibilities Monitor and analyze advanced threats using SIEM tools and threat intelligence Lead incident response efforts and coordinate with relevant stakeholders Conduct detailed vulnerability assessments and recommend remediation actions Enhance security policies and support continuous process improvements Prepare detailed reports and security metrics for senior management Create and distribute security awareness and compliance training materials Mentor junior analysts and support their professional development Work closely with IT and cross-functional teams to integrate security into business operations Regularly communicate cybersecurity updates to internal stakeholders Application Form Position: Cyber Security Analyst II Name * E-mail * Phone * CV & Documents * Add file (*Required fields) Phone Thank you for submitting your application. We will contact you shortly! Contacts Email: careers@grazitti.com Address HSIIDC Technology Park, Plot No 19, Sector 22, 134104, Panchkula, Haryana, India

Position Title SOC Analyst L2 Panchkula, India - Date Posted July 21, 2025 Description Were hiring a detail-oriented and experienced SOC Analyst L2 to join our Information Security Group (ISG) at Grazitti Interactive. In this role, youll investigate complex incidents, perform in-depth threat analysis, lead proactive threat-hunting efforts, and mentor junior analysts. If youre looking to deepen your cybersecurity expertise, manage critical incidents, and contribute to a mature SOC environment, this opportunity is tailor-made for you. Skills Key Skills 23 years of experience in SOC or a similar cybersecurity-focused role Strong understanding of networking protocols, subnetting, routing, and addressing Proficient in Linux and Windows OS, system hardening, and architecture Deep understanding of Active Directory attacks and defense mechanisms Expertise in ELK Stack (Elasticsearch, Logstash, Kibana) for threat detection Experience in incident response, threat hunting, and forensic investigation Familiarity with OWASP Top 10, digital forensics, and malware analysis Proficiency in tools like TheHive, Cortex, MISP, OpenCTI, and Jira Ability to write detection rules for OWASP vulnerabilities and custom use cases Skilled in KQL, ESQL, and other query languages for log analysis Excellent communication and documentation skills Certifications like CompTIA Security , CEH, OSDA, or BTL1 (preferred) Knowledge of frameworks such as MITRE ATT&CK and NIST CSF (a plus) Responsibilities Roles and Responsibilities Monitor security events and logs to detect advanced threats Conduct detailed investigations and lead real-time incident response Perform in-depth threat analysis using digital forensics tools Develop and optimize detection use cases and custom rules for SOC monitoring Harden Linux and Windows environments to prevent potential exploits Analyze threat intelligence and simulate attack scenarios to test detection readiness Collaborate across departments to embed cybersecurity into operations Mentor and guide junior SOC team members Regularly communicate security incidents and progress updates to stakeholders Position: SOC Analyst L2 Name* E-mail* Phone* CV & Documents* Add file Required fields Phone Thank you for submitting your application. We will contact you shortly! Contacts Email: careers@grazitti.com Address HSIIDC Technology Park, Plot No 19, Sector 22, 134104, Panchkula, Haryana, India

About BNP Paribas India Solutions Established in 2005, BNP Paribas India Solutions is a wholly owned subsidiary of BNP Paribas SA, European Union’s leading bank with an international reach. With delivery centers located in Bengaluru, Chennai and Mumbai, we are a 24x7 global delivery center. India Solutions services three business lines: Corporate and Institutional Banking, Investment Solutions and Retail Banking for BNP Paribas across the Group. Driving innovation and growth, we are harnessing the potential of over 10000 employees, to provide support and develop best-in-class solutions. About BNP Paribas Group BNP Paribas is the European Union’s leading bank and key player in international banking. It operates in 65 countries and has nearly 185,000 employees, including more than 145,000 in Europe. The Group has key positions in its three main fields of activity: Commercial, Personal Banking & Services for the Group’s commercial & personal banking and several specialised businesses including BNP Paribas Personal Finance and Arval; Investment & Protection Services for savings, investment, and protection solutions; and Corporate & Institutional Banking, focused on corporate and institutional clients. Based on its strong diversified and integrated model, the Group helps all its clients (individuals, community associations, entrepreneurs, SMEs, corporates and institutional clients) to realize their projects through solutions spanning financing, investment, savings and protection insurance. In Europe, BNP Paribas has four domestic markets: Belgium, France, Italy, and Luxembourg. The Group is rolling out its integrated commercial & personal banking model across several Mediterranean countries, Turkey, and Eastern Europe. As a key player in international banking, the Group has leading platforms and business lines in Europe, a strong presence in the Americas as well as a solid and fast-growing business in Asia-Pacific. BNP Paribas has implemented a Corporate Social Responsibility approach in all its activities, enabling it to contribute to the construction of a sustainable future, while ensuring the Group's performance and stability. Commitment to Diversity and Inclusion At BNP Paribas, we passionately embrace diversity and are committed to fostering an inclusive workplace where all employees are valued, respected and can bring their authentic selves to work. We prohibit Discrimination and Harassment of any kind and our policies promote equal employment opportunity for all employees and applicants, irrespective of, but not limited to their gender, gender identity, sex, sexual orientation, ethnicity, race, colour, national origin, age, religion, social status, mental or physical disabilities, veteran status etc. As a global Bank, we truly believe that inclusion and diversity of our teams is key to our success in serving our clients and the communities we operate in. About Business Line/Function BNP Paribas PI Germany has 3 brands Consorsbank , DAB und Wealth Management Private Banking which are pure digital. The IT department supports Business building the IT landscape. At Architecture Services – Solution Architecture we create are taking care of the business requirements and find the best appropriate solutions for their needs. Job Title Web Developer Date 01-Jun-2025 Department IT-Solutions Location: Chennai Business Line / Function ISPL – PI Germany Reports To (Direct) Grade (if applicable) (Functional) Number Of Direct Reports Directorship / Registration: NA Position Purpose The developer helps with the development of Consors bank information systems, Business Applications and contributes to ensuring its continuity through personal effort as part of a team or to a limited extent within the department to achieve short-term and occasionally medium-term goals. They help in the development and realization of the software architecture as a contribution to high-quality software solutions in accordance with the applicable best practices (maintainable, safe, documented, scalable, testable and in accordance with the needs of the business area). Responsibilities Direct Responsibilities Software Development & Architecture Analysis of business requirements. Feasibility study of received business requirements. To design feasible and efficient solution for business requirement. To develop solution based on best practices, which conforms to business and technical requirements. To improve software source code and their maintainability. To maintain the conformity of BNPP group standards for development process, software quality and security Software Testing, Acceptance And Handover To define, to implement and to execute & document necessary tests. To update system document for particular applications affected. To integrate und configure developed software into different environments Software Maintenance To define and to execute 3rd level support tasks for systems and applications in charge. To do necessary bug fix and to execute small enhancement tasks To take care about prevention of obsolete components and libraries. Analysis Und Continuous Improvement To support optimization of software development processes & methods and possible usage of advanced tools and technologies To maintain and to improve stability and performance of development software solutions To develop prototypes which are based on new technologies by PoCs To improve operational aspects of developed solutions together with IT Production teams Contributing Responsibilities Cooperation Within Team And Company To define necessary infrastructure with configuration for software development activities To support the implementation and testing, acceptance of necessary infrastructure To contribute to system stability of the infrastructure and affected system components To support troubleshooting of urgent software or infrastructure issues. Knowhow And Knowledge To support sharing and transferring Knowhow and Knowledge with other colleagues To continuously support code reviews and pair programming with other colleagues To foster exchange of software development knowledge with internal channel and network, to share best practices To ensure necessary training and continuous improvement of knowledge and knowhow To ensure successful participation in mandatory regulatory trainings on-time Technical & Behavioral Competencies Degree in business informatics, computer science, engineering or comparable and several years of professional experience At least 8 years of experience in web application development Knowhow of modern software architectures and modern development concepts & processes Deep know how and understanding of respective development domain (Web, Mobile, Middleware, API, Platform, CRM, CMS etc.) Expert knowhow in necessary development tools and programming languages Expert knowhow in software requirement engineering and managing requirements Should be able to translate wireframes into actual Web page Design Knowledge in modern frontend frameworks to develop Web Application based on JS Frameworks Knowledge in software testing incl. unit test design & execution as well as E2E tests Basic knowledge in IT cyber security and secure software development Basic knowledge of banking economics (banking, trading, investing; products and transactions) Working in an agile environment with Scrum Very good English skills in words and writing Specific Qualifications (if Required) Angular/React JS/VueJS/ Typescript Javascript HTML CSS Webcomponents Lit EcmaScript 6 Storybook Webpack, Vite or Turbopack Testing frameworks & tools (Junit, Karma, JEST, Playwright) Browserstack Full stack developer with Spring Boot + RestAPI + Angular/React JS/VueJS/ + Webcomponents He should have worked with Security concepts (Oauth / Spring Security / OWASP / CSRF/XSS) for min 3 Yrs Should have min 5 Yrs exp in CSS and able to write custom styles ( Not Tailwind CSS exp) Should have 3 Yrs experience in creating WebComponents (Web Standard) Should have experience in tuning the performance of Web pages Knowledge of TDD / BDD framework with work experience in creating Unit Tests, Web Automation tests, Integration Tests is added advantage LIT Library is good to have but not mandatory Knowledge of Accessibility implementation framework to support Differently abled customers is good to have. Skills Referential Behavioural Skills: (Please select up to 4 skills) Ability to collaborate / Teamwork Ability to deliver / Results driven Communication skills - oral & written Ability to synthetize / simplify Transversal Skills: (Please select up to 5 skills) Ability to develop and adapt a process Ability to develop and leverage networks Choose an item. Choose an item. Choose an item. Education Level Bachelor Degree or equivalent Experience Level At least 8 years

About BNP Paribas India Solutions Established in 2005, BNP Paribas India Solutions is a wholly owned subsidiary of BNP Paribas SA, European Union’s leading bank with an international reach. With delivery centers located in Bengaluru, Chennai and Mumbai, we are a 24x7 global delivery center. India Solutions services three business lines: Corporate and Institutional Banking, Investment Solutions and Retail Banking for BNP Paribas across the Group. Driving innovation and growth, we are harnessing the potential of over 10000 employees, to provide support and develop best-in-class solutions. About BNP Paribas Group BNP Paribas is the European Union’s leading bank and key player in international banking. It operates in 65 countries and has nearly 185,000 employees, including more than 145,000 in Europe. The Group has key positions in its three main fields of activity: Commercial, Personal Banking & Services for the Group’s commercial & personal banking and several specialized businesses including BNP Paribas Personal Finance and Arval; Investment & Protection Services for savings, investment, and protection solutions; and Corporate & Institutional Banking, focused on corporate and institutional clients. Based on its strong diversified and integrated model, the Group helps all its clients (individuals, community associations, entrepreneurs, SMEs, corporate and institutional clients) to realize their projects through solutions spanning financing, investment, savings and protection insurance. In Europe, BNP Paribas has four domestic markets: Belgium, France, Italy, and Luxembourg. The Group is rolling out its integrated commercial & personal banking model across several Mediterranean countries, Turkey, and Eastern Europe. As a key player in international banking, the Group has leading platforms and business lines in Europe, a strong presence in the Americas as well as a solid and fast-growing business in Asia-Pacific. BNP Paribas has implemented a Corporate Social Responsibility approach in all its activities, enabling it to contribute to the construction of a sustainable future, while ensuring the Group's performance and stability Commitment to Diversity and Inclusion At BNP Paribas, we passionately embrace diversity and are committed to fostering an inclusive workplace where all employees are valued, respected and can bring their authentic selves to work. We prohibit Discrimination and Harassment of any kind, and our policies promote equal employment opportunity for all employees and applicants, irrespective of, but not limited to their gender, gender identity, sex, sexual orientation, ethnicity, race, color, national origin, age, religion, social status, mental or physical disabilities, veteran status etc. As a global Bank, we truly believe that inclusion and diversity of our teams is key to our success in serving our clients and the communities we operate in. About Business Line/Function ITG is a group function established recently in ISPL since 2019 with presence in Mumbai, Chennai. We collaborate with various business lines of the group to provide IT Services. Job Title Developer Date 18/Jul/2025 Department ITG - IT Transversal & Functions::iCHROM Location: Chennai Business Line / Function iCHROM:Compliance IT Reports To (Direct) ISPL – ITG CPL IT - Manager Grade (if applicable) Number Of Direct Reports NA Directorship / Registration NA Position Purpose In the context of development of applications for the Compliance domain of BNPP, the developer will be part of a team of developers, align with the local team lead, take ownership, and deliver quality for all the user stories worked upon. We are looking for a highly skilled backend developer with strong experience in Java 8+, Spring Boot and Microservices. Responsibilities Direct Responsibilities Design and develop backend services using Java 8+, Spring boot & JUnit. Build and maintain robust RESTful APIs. Integrate with MongoDB and ensure performance and security. Ensure coding standards are followed Ensure collaboration, good rapport & teamwork with ISPL and Paris team members Contributing Responsibilities Take ownership and commit towards quality deliverables within estimated timelines, avoiding global schedule shift Participate in code reviews and documentation process. Contribute to continuous improvement in development practices processes and code quality. Participation in projects meetings: fine-tuning, daily, retrospective. Collaboration with the team members: the ability to collect, analyze, synthesize and present information in a clear, concise and precise way Technical & Behavioral Competencies Expert in Java 8+ and Spring Boot, ETL RESTful API and Microservices architecture. Hands-on experience with MongoDB, PostgreSql Apache Kafka for messaging Junit and Spring boot testing frameworks and code quality tools like Sonar API Gateways like APIGEE and authentication strategies Clean coding practices. Maven and swagger tools. Good to have Familiar with payment systems or related compliance driven systems Knowledge of Docker and Kubernetes and CI/CD pipelines using GitLab Experience in Integrated AI tool and knowledge on efficient prompting Knowledge of Web security principles (OWASP, Auth double factor, encryption, etc.) Knowledge of hexagonal architecture, event-oriented architecture and DDD Specific Qualifications (if Required) Experience in Linux, DevOps, IntelliJ, Gitlab (Pipeline CI/CD), Cloud Object Storage, Kafka Skills Referential Behavioural Skills: (Please select up to 4 skills) Ability to collaborate / Teamwork Attention to detail / rigor Communication skills - oral & written Ability to deliver / Results driven Transversal Skills: (Please select up to 5 skills) Analytical Ability Ability to develop and adapt a process Choose an item. Choose an item. Choose an item. Education Level Bachelor Degree or equivalent Experience Level At least 3 years

We are looking for a skilled and motivated Software Engineer who excels in Java, data structures and algorithms, REST APIs, and Spring Boot to join our growing team. This role is key to building scalable, enterprise-grade applications and contributing to our innovative software development processes. This is a fantastic opportunity to solve complex challenges and contribute to the building and growing of cutting-edge technologies within a dynamic and collaborative environment. Responsibilities Collaborate with product owners and architects on making design decisions Develop end user application with high scalability and high throughput Provide technical and design guidance and create standards Improve, optimize and identify opportunities for improved software development processes Contribute to designing and maintaining enterprise applications Requirements 4+ years of experience with Java and open-source Java frameworks like Spring Boot At least 3 years’ experience working with microservices and distributed computing-based architectures on a large scale Hands-on experience with Java 8+ and REST APIs Strong knowledge of Data Structures and Algorithms - Stacks, Queues, Linked Lists, Trees, Searching, Sorting, String Manipulation, Greedy Algorithms Background in core and enterprise design patterns, object-oriented programming, and distributed computing Knowledge of creating and integrating APIs using REST and SOAP protocols, familiarity with gRPC/Thrift frameworks Capability to work with AWS tools such as S3, Lambda, DynamoDB, and API Gateway Proficiency in resiliency patterns (throttling, circuit breakers, bulkheading), error handling, and monitoring tools like Grafana, Kibana, and Prometheus Familiarity with Git or similar version control tools and monorepositories Experience in automated testing including TDD, Unit/Functional/Integration testing Understanding of security mechanisms like OAuth2.0, TLS, and OWASP best practices Ability to communicate effectively in both written and spoken English with external and internal teams Technologies Java 8 & above DS Algo Microservices Spring Boot REST API Design Patterns, System Design AWS cloud #EasyApply

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : SailPoint IdentityNow Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :We are seeking a skilled and experienced Senior SailPoint Identity Security Cloud (ISC) professional to lead the development and support of our identity governance solutions. This role requires deep hands-on experience with SailPoint ISC, advanced troubleshooting capabilities, performing root cause analysis, and developing custom connectors or workflows to meet complex business requirements Roles & Responsibilities:-Customize identity workflows to meet business needs--Provide advanced troubleshooting of SailPoint ISC issues-Track and close defects through to permanent fix-Act as L3 SME support for SailPoint ISC issues-Integrate SailPoint ISC with target systems (AD, Azure AD, SAP, cloud SaaS apps)-Build or modify custom connectors where OOTB does not fit-Advise on SailPoint best practices and standards-Contribute to process improvements and automation within the identity team-Hands-on with SailPoint Identity Security Cloud (or IdentityNow with migration to ISC)-Familiarity with REST APIs, JSON, SCIM, and modern identity protocols (OAuth, SAML, OIDC) Professional & Technical Skills: - Must To Have Skills: Proficiency in SailPoint IdentityNow.- Strong understanding of cloud security principles and best practices.- Experience with identity governance and administration solutions.- Familiarity with regulatory compliance requirements related to cloud security.- Ability to analyze and mitigate security risks in cloud environments.-Hands-on Exp with SailPoint Identity Security Cloud (or IdentityNow with migration to ISC)-Familiarity with REST APIs, JSON, SCIM, and modern identity protocols (OAuth, SAML, OIDC) Additional Information:- The candidate should have minimum 7.5 years of experience in SailPoint IdentityNow.- This position is based at our Bengaluru office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : ForgeRock Identity Management Good to have skills : Test Data Management ImplementationMinimum 15 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to assess security needs, documenting security controls, and transitioning to cloud security-managed operations, all while ensuring compliance with industry standards and best practices. You will engage in strategic discussions to align security initiatives with organizational objectives, providing guidance and expertise to enhance the overall security posture of the organization. Roles & Responsibilities:- Expected to be a Subject Matter Expert with deep knowledge and experience.- Should have influencing and advisory skills.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Expected to provide solutions to problems that apply across multiple teams.- Facilitate workshops and training sessions to enhance team understanding of security protocols.- Continuously evaluate and improve security processes and frameworks to adapt to evolving threats. Professional & Technical Skills: - Must To Have Skills: Proficiency in ForgeRock Identity Management.- Good To Have Skills: Experience with Test Data Management Implementation.- Strong understanding of cloud security principles and practices.- Experience in designing and implementing security architectures.- Familiarity with compliance frameworks such as ISO 27001, NIST, or GDPR. Additional Information:- The candidate should have minimum 15 years of experience in ForgeRock Identity Management.- This position is based at our Mumbai office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Omada Identity Cloud Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to document the implementation of cloud security controls and facilitating the transition to cloud security-managed operations. You will engage in discussions to align security strategies with organizational objectives, ensuring that all security measures are effectively integrated into the cloud environment. Your role will also require you to stay updated on the latest security trends and technologies to enhance the overall security posture of the organization. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Facilitate training sessions to enhance team knowledge and skills in cloud security.- Evaluate and recommend new security technologies and practices to improve the cloud security framework. Professional & Technical Skills: - Must To Have Skills: Proficiency in Omada Identity Cloud.- Strong understanding of cloud security principles and best practices.- Experience with identity and access management solutions.- Familiarity with regulatory compliance requirements related to cloud security.- Ability to assess and mitigate security risks in cloud environments. Additional Information:- The candidate should have minimum 5 years of experience in Omada Identity Cloud.- This position is based at our Gurugram office.- A 10 years full time education is required. Qualification 15 years full time education

Project Role : Security Engineer Project Role Description : Apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Must have skills : Security Platform Engineering Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :We are seeking a skilled Security Engineer with expertise in Google Chronicle SIEM, parser development, and foundational knowledge of cybersecurity. The ideal candidate will be responsible for analyzing security data and logs, ensuring accurate aggregation, normalization, tagging, and classification. You will work closely with log sources, particularly security and networking devices, to enhance our security monitoring capabilities. Roles & Responsibilities:Conduct security and data/log analysis, focusing on the aggregation, normalization, tagging, and classification of logs.Research, analyze, and understand log sources for security monitoring, with a particular focus on security and networking devices such as firewalls, routers, antivirus products, proxies, IDS/IPS, and operating systems.Validate log sources and indexed data, optimizing search criteria to improve search efficiency.Utilize automation tools to build and validate log collectors for parsing aggregated logs. Professional & Technical Skills: Proficiency in log analysis and SIEM tools, including but not limited to Google Chronicle, Splunk, ArcSight, and QRadar. Experience in SIEM content creation and reporting is essential.Strong experience in manual security log review and analysis, such as Windows Event Log and Linux Syslog, including incident classification, investigation, and remediation.Solid understanding of multiple attack vectors, including malware, Trojans, exploit kits, ransomware, phishing techniques, and APTs, as well as familiarity with attack techniques outlined in the OWASP Top 10.Knowledge of security and networking devices, including firewalls, routers, antivirus products, proxies, IDS/IPS, and operating systems.TCP/IP networking skills for packet and log analysis.Experience working with Windows and Unix platforms.Familiarity with databases is an advantage.Experience in GCP, AWS and Azure environments is a plus. Additional Information:- The candidate should have minimum 5 years of experience in Security Platform Engineering.- This position is based at our Pune office.- A 15 years full time education is required. Qualification 15 years full time education

Fynd is India s largest omnichannel platform and a multi-platform tech company specialising in retail technology and products in AI, ML, big data, image editing, and the learning space. It provides a unified platform for businesses to seamlessly manage online and offline sales, store operations, inventory, and customer engagement. Serving over 2,300 brands, Fynd is at the forefront of retail technology, transforming customer experiences and business processes across various industries. At Fynd, we re looking for an Offensive Security Engineer to lead red teaming and penetration testing efforts across our digital ecosystem. You ll simulate real-world attacks, identify complex vulnerabilities, and partner with teams to strengthen our security posture from product design to production. This role is ideal for engineers passionate about adversary emulation, building tools, and driving secure innovation at scale. What will you do at Fynd Conduct deep-dive penetration testing and red team simulations on web, mobile, cloud, APIs, and thick client systems. Perform proactive threat modeling during product development to identify design-stage risks. Build custom scripts/tools and automate offensive security workflows. Report technical findings with clear, actionable remediation strategies. Collaborate with engineering and product teams to embed offensive security into the SDLC. Stay updated on latest threat techniques, CVEs, exploits, and red team tooling. Some more requirements 5+ years in offensive security, penetration testing, or red teaming. Experience with OWASP Top 10, ASVS, MITRE ATT&CK, and threat modeling frameworks. Hands-on with cloud platforms (AWS/GCP/Azure), thick clients, and secure app architecture. Proficiency in scripting (Python, Go, Bash) and tools like Burp Suite, ZAP, Metasploit, Cobalt Strike. Strong communication and reporting skills for both technical and business audiences. Additional Skills Experience in ecommerce or AI/ML-driven platforms. Prior work in vulnerability research, CVE publication, or exploit development. Certifications: OSCP, OSWE, OSEP, CRTO or cloud security certs. Contributions to open-source tools, blogs, or conferences in the infosec community. What do we offer Growth Growth knows no bounds, as we foster an environment that encourages creativity, embraces challenges, and cultivates a culture of continuous expansion. We are looking at new product lines, international markets and brilliant people to grow even further. We teach, groom and nurture our people to become leaders. You get to grow with a company that is growing exponentially. Flex University : We help you upskill by organising in-house courses on important subjects Learning Wallet: You can also do an external course to upskill and grow, we reimburse it for you. Culture Community and Team building activities Host weekly, quarterly and annual events/parties. Wellness Mediclaim policy for you + parents + spouse + kids Experienced therapist for better mental health, improve productivity & work-life balance We work from the office 5 days a week to promote collaboration and teamwork. Join us to make an impact in an engaging, in-person environment!

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Omada Identity Cloud Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to document the implementation of cloud security controls and facilitating the transition to cloud security-managed operations. You will engage in discussions to align security strategies with organizational objectives, ensuring that all security measures are effectively integrated into the cloud environment. Your role will also require you to stay updated on the latest security trends and technologies to enhance the overall security posture of the organization. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Facilitate training sessions to enhance team knowledge and skills in cloud security.- Develop and maintain comprehensive documentation of security policies and procedures. Professional & Technical Skills: - Must To Have Skills: Proficiency in Omada Identity Cloud.- Good To Have Skills: Experience with cloud security frameworks and compliance standards.- Strong understanding of identity and access management principles.- Experience with security incident response and risk management.- Familiarity with cloud service providers and their security offerings. Additional Information:- The candidate should have minimum 7.5 years of experience in Omada Identity Cloud.- This position is based at our Gurugram office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Omada Identity Cloud Good to have skills : NAMinimum 12 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to document the implementation of cloud security controls and facilitating the transition to cloud security-managed operations. You will engage in discussions to align security strategies with organizational objectives, ensuring that all security measures are effectively integrated into the cloud environment. Your role will also require you to stay updated on the latest security trends and technologies to enhance the overall security posture of the organization. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Expected to provide solutions to problems that apply across multiple teams.- Facilitate training sessions to enhance team knowledge and skills in cloud security.- Conduct regular assessments of cloud security measures to identify areas for improvement. Professional & Technical Skills: - Must To Have Skills: Proficiency in Omada Identity Cloud.- Strong understanding of cloud security frameworks and best practices.- Experience with identity and access management solutions.- Familiarity with compliance standards and regulations related to cloud security.- Ability to analyze and mitigate security risks in cloud environments. Additional Information:- The candidate should have minimum 12 years of experience in Omada Identity Cloud.- This position is based at our Gurugram office.- A 15 years full time education is required. Qualification 15 years full time education